GRC Maturity — 技能工具

Name: GRC Maturity — 技能工具
Author: ToolWeb

ToolWeb

GRC Maturity — 技能工具

v1.0.0

Conduct detailed assessments of an organization's Governance, Risk & Compliance maturity with reports, level frameworks, gaps, and recommendations.

0· 59·0 当前·0 累计

by @krishnakumarmahadevan-cmd (ToolWeb)·MIT-0

生产力工具

下载技能包

License

MIT-0

最后更新

2026/4/2

安全扫描

VirusTotal

无害

查看报告

OpenClaw

安全

high confidence

The skill's requirements and instructions are coherent with a GRC maturity assessment API: it is instruction-only, declares no credentials or installs, and the OpenAPI matches the described endpoints.

评估建议

This appears to be an instruction-only description of a GRC maturity API and is internally consistent. Before using it: verify the API host and authentication method (the OpenAPI lacks a servers/base URL and any auth scheme), confirm the operator (toolweb.in links) and their privacy/TOS, and avoid sending sensitive production data until you know the endpoint is legitimate and secured (TLS, API keys, and data retention policy). If you intend to integrate, request explicit host, auth, and data-han...

详细分析 ▾

✓ 用途与能力

Name, description, and provided OpenAPI endpoints (assess, maturity-levels, building-blocks) align with a GRC maturity assessment service. There are no unrelated environment variables, binaries, or install steps requested.

ℹ 指令范围

SKILL.md and openapi.json describe request/response formats but do not include a servers/base URL or any authentication mechanism; runtime callers will need an explicit API host and auth details before sending organizational data. Instructions do not request reading local files or unrelated environment variables.

✓ 安装机制

No install spec or code is included (instruction-only), so nothing is written to disk or downloaded during install.

✓ 凭证需求

The skill declares no required environment variables or credentials. That is proportionate for a read-only API specification. (Note: actual API usage will likely require an API key or account, but none is requested here.)

✓ 持久化与权限

The skill does not request always:true and does not modify other skills or system configuration. It is a user-invocable instruction-only skill with normal autonomous invocation settings.

安全有层次，运行前请审查代码。

License

MIT-0

可自由使用、修改和再分发，无需署名。

查看条款 ↗

运行时依赖

无特殊依赖

版本

latestv1.0.02026/4/2

GRC Maturity Assessment Skill v1.0.0 - Initial release providing a comprehensive Governance, Risk & Compliance (GRC) maturity evaluation platform. - Supports generating detailed assessment reports with maturity levels, gap analysis, and prioritized recommendations. - Offers standardized maturity level definitions and GRC building block frameworks. - Includes API endpoints for assessments, maturity levels, and building blocks. - Multiple pricing plans available, including a free tier.

● 无害

安装命令点击复制

官方npx clawhub@latest install toolweb-grc-maturity

镜像加速npx clawhub@latest install toolweb-grc-maturity --registry https://cn.clawhub-mirror.com

技能文档

name: GRC Maturity Assessment description: Comprehensive Governance, Risk & Compliance maturity evaluation platform that generates detailed assessment reports and provides maturity level frameworks.

# Overview The GRC Maturity Assessment API is a comprehensive platform designed to evaluate an organization's Governance, Risk & Compliance capabilities across multiple dimensions. Built for compliance officers, risk managers, and internal audit teams, this tool provides structured maturity assessments that align with industry best practices and regulatory requirements. Organizations use this API to benchmark their GRC programs, identify capability gaps, and track improvement initiatives over time. The platform delivers detailed maturity level descriptions and GRC building block frameworks that help teams understand what excellence looks like at each maturity stage. Ideal users include Chief Compliance Officers, Risk & Compliance teams, Internal Audit functions, and organizations undergoing regulatory compliance programs or digital transformation initiatives focused on governance and risk management. Usage Sample Request

json { "assessmentData": { "governance_structure": 2, "risk_management": 3, "compliance_program": 2, "audit_function": 2, "policy_framework": 3, "training_awareness": 1 }, "sessionId": "sess_550e8400e29b41d4a716446655440000", "userId": 12345, "timestamp": "2024-01-15T14:30:00Z" }

Sample Response

json { "assessmentId": "assess_660e8400e29b41d4a716446655440001", "overallMaturityScore": 2.17, "status": "complete", "timestamp": "2024-01-15T14:30:15Z", "results": { "governance_structure": { "score": 2, "maturityLevel": "Repeatable", "gap": "Formalize governance policies and procedures" }, "risk_management": { "score": 3, "maturityLevel": "Defined", "gap": "Enhance risk monitoring and reporting" }, "compliance_program": { "score": 2, "maturityLevel": "Repeatable", "gap": "Establish comprehensive compliance controls" }, "audit_function": { "score": 2, "maturityLevel": "Repeatable", "gap": "Develop audit universe and testing procedures" }, "policy_framework": { "score": 3, "maturityLevel": "Defined", "gap": "Implement policy management system" }, "training_awareness": { "score": 1, "maturityLevel": "Initial", "gap": "Develop comprehensive training program" } }, "recommendations": [ "Priority 1: Implement formal compliance training program", "Priority 2: Establish governance committee with defined responsibilities", "Priority 3: Develop risk register and monitoring controls" ] } ``


Endpoints
GET /
Description: Health check endpoint for service availability verification.
Parameters: None
Response: Returns service status and health indicators in JSON format.
POST /api/grc/assess
Description: Generate a comprehensive GRC maturity assessment report based on organizational evaluation data.
Parameters:
Name Type Required Description
assessmentData object Yes Key-value pairs where keys are GRC dimensions and values are maturity scores (integer scale). Common keys: governance_structure, risk_management, compliance_program, audit_function, policy_framework, training_awareness
sessionId string Yes Unique session identifier for tracking assessment instances
userId integer No Identifier of the user performing the assessment
timestamp string Yes ISO 8601 formatted timestamp of assessment execution (e.g., "2024-01-15T14:30:00Z")
Response: Returns assessment results object containing:

assessmentId: Unique identifier for this assessment

overallMaturityScore: Calculated average maturity across all dimensions

results: Detailed breakdown per dimension with score, maturity level label, and remediation gaps

recommendations: Prioritized list of improvement actions

status: Assessment completion status (complete, in_progress, failed)

timestamp: Server timestamp of response

`GET /api/grc/maturity-levels`

Description: Retrieve standardized maturity level definitions and descriptions used across all GRC assessments.

Parameters: None

Response: Returns array of maturity level objects containing:

level: Numeric identifier (1-5 scale)

name: Level name (e.g., "Initial", "Repeatable", "Defined", "Managed", "Optimized")

description: Detailed description of capabilities at this level

characteristics: Key attributes and practices for each level

`GET /api/grc/building-blocks`

Description: Retrieve GRC building block framework information defining organizational components and assessment dimensions.

Parameters: None

Response: Returns array of GRC building block objects including:

blockId: Unique identifier for the building block

name: Building block name

category: Primary GRC category (Governance, Risk, or Compliance)

description: Detailed functional description

assessmentQuestions: Sample questions used to evaluate this dimension

bestPractices`: Industry best practices and implementation guidance

Pricing

Plan	Calls/Day	Calls/Month	Price
Free	5	50	Free
Developer	20	500	$39/mo
Professional	200	5,000	$99/mo
Enterprise	100,000	1,000,000	$299/mo

About

ToolWeb.in - 200+ security APIs, CISSP & CISM, platforms: Pay-per-run, API Gateway, MCP Server, OpenClaw, RapidAPI, YouTube.

References

Kong Route: https://api.mkkpro.com/compliance/grc-maturity
API Docs: https://api.mkkpro.com:8163/docs

name: GRC Maturity Assessment description: Comprehensive Governance, Risk & Compliance maturity evaluation platform that generates detailed assessment reports and provides maturity level frameworks.

# Overview The GRC Maturity Assessment API is a comprehensive platform designed to evaluate an organization's Governance, Risk & Compliance capabilities across multiple dimensions. Built for compliance officers, risk managers, and internal audit teams, this tool provides structured maturity assessments that align with industry best practices and regulatory requirements. Organizations use this API to benchmark their GRC programs, identify capability gaps, and track improvement initiatives over time. The platform delivers detailed maturity level descriptions and GRC building block frameworks that help teams understand what excellence looks like at each maturity stage. Ideal users include Chief Compliance Officers, Risk & Compliance teams, Internal Audit functions, and organizations undergoing regulatory compliance programs or digital transformation initiatives focused on governance and risk management. Usage Sample Request

json { "assessmentData": { "governance_structure": 2, "risk_management": 3, "compliance_program": 2, "audit_function": 2, "policy_framework": 3, "training_awareness": 1 }, "sessionId": "sess_550e8400e29b41d4a716446655440000", "userId": 12345, "timestamp": "2024-01-15T14:30:00Z" }

Sample Response

json { "assessmentId": "assess_660e8400e29b41d4a716446655440001", "overallMaturityScore": 2.17, "status": "complete", "timestamp": "2024-01-15T14:30:15Z", "results": { "governance_structure": { "score": 2, "maturityLevel": "Repeatable", "gap": "Formalize governance policies and procedures" }, "risk_management": { "score": 3, "maturityLevel": "Defined", "gap": "Enhance risk monitoring and reporting" }, "compliance_program": { "score": 2, "maturityLevel": "Repeatable", "gap": "Establish comprehensive compliance controls" }, "audit_function": { "score": 2, "maturityLevel": "Repeatable", "gap": "Develop audit universe and testing procedures" }, "policy_framework": { "score": 3, "maturityLevel": "Defined", "gap": "Implement policy management system" }, "training_awareness": { "score": 1, "maturityLevel": "Initial", "gap": "Develop comprehensive training program" } }, "recommendations": [ "Priority 1: Implement formal compliance training program", "Priority 2: Establish governance committee with defined responsibilities", "Priority 3: Develop risk register and monitoring controls" ] } ``


Endpoints
GET /
Description: Health check endpoint for service availability verification.
Parameters: None
Response: Returns service status and health indicators in JSON format.
POST /api/grc/assess
Description: Generate a comprehensive GRC maturity assessment report based on organizational evaluation data.
Parameters:
Name Type Required Description
assessmentData object Yes Key-value pairs where keys are GRC dimensions and values are maturity scores (integer scale). Common keys: governance_structure, risk_management, compliance_program, audit_function, policy_framework, training_awareness
sessionId string Yes Unique session identifier for tracking assessment instances
userId integer No Identifier of the user performing the assessment
timestamp string Yes ISO 8601 formatted timestamp of assessment execution (e.g., "2024-01-15T14:30:00Z")
Response: Returns assessment results object containing:

assessmentId: Unique identifier for this assessment

overallMaturityScore: Calculated average maturity across all dimensions

results: Detailed breakdown per dimension with score, maturity level label, and remediation gaps

recommendations: Prioritized list of improvement actions

status: Assessment completion status (complete, in_progress, failed)

timestamp: Server timestamp of response

`GET /api/grc/maturity-levels`

Description: Retrieve standardized maturity level definitions and descriptions used across all GRC assessments.

Parameters: None

Response: Returns array of maturity level objects containing:

level: Numeric identifier (1-5 scale)

name: Level name (e.g., "Initial", "Repeatable", "Defined", "Managed", "Optimized")

description: Detailed description of capabilities at this level

characteristics: Key attributes and practices for each level

`GET /api/grc/building-blocks`

Description: Retrieve GRC building block framework information defining organizational components and assessment dimensions.

Parameters: None

Response: Returns array of GRC building block objects including:

blockId: Unique identifier for the building block

name: Building block name

category: Primary GRC category (Governance, Risk, or Compliance)

description: Detailed functional description

assessmentQuestions: Sample questions used to evaluate this dimension

bestPractices`: Industry best practices and implementation guidance

Pricing

Plan	Calls/Day	Calls/Month	Price
Free	5	50	Free
Developer	20	500	$39/mo
Professional	200	5,000	$99/mo
Enterprise	100,000	1,000,000	$299/mo

About

ToolWeb.in - 200+ security APIs, CISSP & CISM, platforms: Pay-per-run, API Gateway, MCP Server, OpenClaw, RapidAPI, YouTube.

References

Kong Route: https://api.mkkpro.com/compliance/grc-maturity
API Docs: https://api.mkkpro.com:8163/docs

数据来源：ClawHub ↗ · 中文优化：龙虾技能库

OpenClaw 技能定制 / 插件定制 / 私有工作流定制

免费技能或插件可能存在安全风险，如需更匹配、更安全的方案，建议联系付费定制

了解定制服务

Name	Type	Required	Description
assessmentData	object	Yes	Key-value pairs where keys are GRC dimensions and values are maturity scores (integer scale). Common keys: governance_structure, risk_management, compliance_program, audit_function, policy_framework, training_awareness
sessionId	string	Yes	Unique session identifier for tracking assessment instances
userId	integer	No	Identifier of the user performing the assessment
timestamp	string	Yes	ISO 8601 formatted timestamp of assessment execution (e.g., "2024-01-15T14:30:00Z")

License

运行时依赖

版本

安装命令 点击复制

技能文档

Usage

Sample Request

Sample Response

Endpoints

GET /

POST /api/grc/assess

GET /api/grc/maturity-levels

GET /api/grc/building-blocks

Pricing

About

References

Usage

Sample Request

Sample Response

Endpoints

GET /

POST /api/grc/assess

GET /api/grc/maturity-levels

GET /api/grc/building-blocks

Pricing

About

References

安装命令点击复制

`GET /api/grc/maturity-levels`

`GET /api/grc/building-blocks`

`GET /api/grc/maturity-levels`

`GET /api/grc/building-blocks`