Risk Management Bundle | Prompeteer.ai

Included Skills (50)

1. Claude Hook Development — This skill helps developers create and implement Claude Code plugin hooks for event-driven automation, validation, and workflow integration.
2. Claude Hook Development — This skill guides developers in creating and implementing Claude Code plugin hooks for event-driven automation and workflow customization.
3. Electron App Automation — Automate Electron desktop applications using agent-browser and Chrome DevTools Protocol, assisting users needing to interact with, control, or test these apps.
4. Opencli Browser — Use when an agent needs to drive a real Chrome window via opencli — inspect a page, fill forms, click through logged-in flows, or extract data ad-hoc. Covers the selector-first target contract, compound form fields, stale-ref handling, network capture, and the agent-native envelopes the CLI returns. Not for writing adapters — see opencli-adapter-author for that.
5. ADR Workflow Manager — This skill creates and maintains Architecture Decision Records (ADRs), optimized for agentic coding workflows, to guide development decisions.
6. Opencli Browser — Use when an agent needs to drive a real Chrome window via opencli — inspect a page, fill forms, click through logged-in flows, or extract data ad-hoc. Covers the selector-first target contract, compound form fields, stale-ref handling, network capture, and the agent-native envelopes the CLI returns. Not for writing adapters — see opencli-adapter-author for that.
7. Compliance Os — Compliance OS — meta-orchestrator that lets compliance teams CONFIGURE which frameworks apply, COMPUTE cross-framework control overlap, SIMULATE internal audits, and CONSOLIDATE evidence across multiple frameworks. Four decisions: (1) Given a company profile, which of the 12 supported frameworks apply (ISO 27001/13485/42001/14971, EU AI Act, MDR 745, GDPR, SOC 2, FDA QSR, NIST CSF 2.0, NIS2, HIPAA)? (2) Across selected frameworks, which controls overlap and how much evidence reuses? (3) For a given framework + scope, what does a realistic mock audit produce — drawing from the 205-scenario library? (4) Across selected frameworks, what's the unified evidence checklist with reuse map? Use when standing up a multi-framework program, planning the annual audit calendar, or preparing for certification stage 1. Does NOT replace per-framework skills (it orchestrates them).
8. ISMS Audit Assistant — This skill helps security professionals conduct ISO 27001 ISMS audits, assess controls, and prepare for certification.
9. Security Incident Responder — This skill classifies, triages, and manages declared security incidents, determining severity, escalation paths, and initiating forensic evidence collection for security teams.
10. Programmatic Seo — When the user wants to create SEO-driven pages at scale using templates and data. Also use when the user mentions "programmatic SEO," "template pages," "pages at scale," "directory pages," "location pages," "[keyword] + [city] pages," "comparison pages," "integration pages," or "building many pages for SEO." For auditing existing SEO issues, see seo-audit.
11. CLAUDE.md Optimizer — This skill audits and improves CLAUDE.md files within a repository, ensuring optimal project context for Claude Code assistants.
12. CLAUDE.md Optimizer — This skill audits and improves CLAUDE.md files within a repository, ensuring optimal project context for Claude Code and aiding developers.
13. Feature Flag Architect — This skill helps software teams manage feature flags throughout their lifecycle, from creation and rollout to auditing and removal.
14. Feature Flag Architect — This skill helps software teams manage feature flags throughout their lifecycle, from creation and rollout to auditing and eventual removal.
15. Answer Engine Optimization (AEO) — Answer Engine Optimization (AEO) skill — optimize content to be cited by AI language models (ChatGPT, Perplexity, Claude, Gemini, Mistral) as authoritative sources. Distinct from SEO — AEO optimizes for citation in LLM-generated responses, not search rankings. Use when planning content for AI-first search audiences, auditing existing content for E-E-A-T signals, tracking which pages get cited by which LLMs, or building a citation-friendly content strategy. Triggers — 'AEO audit', 'optimize for ChatGPT', 'get cited by Perplexity', 'LLM citation strategy', 'answer engine optimization', 'content for AI search', 'E-E-A-T audit'. Output is a markdown audit report (default) or JSON for pipeline integration. Stdlib-only Python tools.
16. Schema Markup — When the user wants to implement, audit, or validate structured data (schema markup) on their website. Use when the user mentions 'structured data,' 'schema.org,' 'JSON-LD,' 'rich results,' 'rich snippets,' 'schema markup,' 'FAQ schema,' 'Product schema,' 'HowTo schema,' or 'structured data errors in Search Console.' Also use when someone asks why their content isn't showing rich results or wants to improve AI search visibility. NOT for general SEO audits (use seo-audit) or technical SEO crawl issues (use site-architecture).
17. Site Architecture — When the user wants to audit, redesign, or plan their website's structure, URL hierarchy, navigation design, or internal linking strategy. Use when the user mentions 'site architecture,' 'URL structure,' 'internal links,' 'site navigation,' 'breadcrumbs,' 'topic clusters,' 'hub pages,' 'orphan pages,' 'silo structure,' 'information architecture,' or 'website reorganization.' Also use when someone has SEO problems and the root cause is structural (not content or schema). NOT for content strategy decisions about what to write (use content-strategy) or for schema markup (use schema-markup).
18. Robotics Security Hardening — This skill hardens robotic systems by implementing security best practices for ROS2, DDS, network segmentation, and secrets management.
19. Information Security Manager Iso27001 — ISO 27001 ISMS implementation and cybersecurity governance for HealthTech and MedTech companies. Use when designing an ISMS, running security risk assessments, implementing controls, pursuing ISO 27001 certification, preparing security audits, responding to security incidents, or verifying compliance. Covers ISO 27001, ISO 27002, healthcare security, and medical device cybersecurity.
20. Senior Secops — Senior SecOps engineer skill for application security, vulnerability management, compliance verification, and secure development practices. Runs SAST/DAST scans, generates CVE remediation plans, checks dependency vulnerabilities, creates security policies, enforces secure coding patterns, and automates compliance checks against SOC2, PCI-DSS, HIPAA, and GDPR. Use when conducting a security review or audit, responding to a CVE or security incident, hardening infrastructure, implementing authentication or secrets management, running penetration test prep, checking OWASP Top 10 exposure, or enforcing security controls in CI/CD pipelines.
21. AI Security Assessor — Assess AI/ML systems for vulnerabilities like prompt injection, model inversion, and data poisoning, aiding security engineers and AI developers.
22. Subdomain Discovery Tool — Subfinder discovers subdomains for a target domain using passive enumeration, aiding security professionals and developers in attack surface mapping.
23. HIPAA Compliance Implementation — This skill helps developers implement HIPAA compliance in healthcare applications, covering PHI handling, encryption, audit logging, and access controls.
24. Email Discovery Tool — Find and verify corporate email addresses by domain using the Hunter.io API, assisting lead generation and OSINT.
25. SOC2 Compliance Assistant — Helps SaaS companies achieve SOC 2 Type II compliance by implementing controls and preparing for audits to meet enterprise requirements.
26. Risk Management Specialist — Medical device risk management specialist implementing ISO 14971 throughout product lifecycle. Provides risk analysis, risk evaluation, risk control, and post-production information analysis. Use when user mentions risk management, ISO 14971, risk analysis, FMEA, fault tree analysis, hazard identification, risk control, risk matrix, benefit-risk analysis, residual risk, risk acceptability, or post-market risk.
27. Warp Terminal Assistant — Provides expert guidance for Warp, helping developers create workflows, configure Warp Drive, and leverage AI features for efficient terminal usage.
28. Quality Manager Qms Iso13485 — ISO 13485 Quality Management System implementation and maintenance for medical device organizations. Provides QMS design, documentation control, internal auditing, CAPA management, and certification support. Use when working with medical device quality systems, preparing for ISO 13485 audits, managing regulatory compliance documentation, setting up corrective actions, or building audit preparation programs. Useful for quality management, audit preparation, regulatory compliance, medical device documentation, and corrective action workflows.
29. ARM Cortex Firmware — Assists embedded software engineers with firmware and driver development for ARM Cortex-M microcontrollers, offering expert-level guidance.
30. ARM Cortex Firmware — This skill assists embedded engineers with firmware and driver development for ARM Cortex-M microcontrollers, offering expert-level guidance.
31. Changelog Generator — Produce consistent, auditable release notes from Conventional Commits. Separates commit parsing, semantic-bump logic, and changelog rendering for automated releases with editorial control. Use when cutting a release, generating CHANGELOG.md from git history, computing the next semantic version from commits, automating release notes in CI, or planning a hotfix/rollback. Examples: 'generate the changelog for v1.4.0', 'what version bump do these commits require', 'we need an emergency hotfix process'.
32. Content Production — Full content production pipeline — takes a topic from blank page to published-ready piece. Use when you need to execute content: write a blog post, article, or guide end-to-end. Triggers: 'write a post about', 'draft an article', 'create content for', 'help me write', 'I need a blog post'. NOT for content strategy or calendar planning (use content-strategy). NOT for repurposing existing content (use content-repurposing). NOT for social captions only.
33. Gdpr Dsgvo Expert — GDPR and German DSGVO compliance automation. Scans codebases for privacy risks, generates DPIA documentation, tracks data subject rights requests with Art. 12(3) one-month deadlines. Use when running GDPR compliance assessments, privacy audits, data protection planning, DPIA generation, or data subject rights (DSAR) management (e.g., 'check this service for GDPR risks', 'track an access request deadline'). Final compliance determinations route to the DPO or legal counsel.
34. Confluence Expert — Atlassian Confluence expert for creating and managing spaces, knowledge bases, and documentation. Configures space permissions and hierarchies, creates page templates with macros, sets up documentation taxonomies, designs page layouts, and manages content governance. Use when users need to build or restructure a Confluence space, design page hierarchies with permission structures, author or standardise documentation templates, embed Jira reports in pages, run knowledge base audits, or establish documentation standards and collaborative workflows.
35. Actions Security Auditor — This skill audits GitHub Actions workflows for security vulnerabilities in AI agent integrations, assisting developers in securing their CI/CD pipelines.
36. Agentic Action Auditor — This skill audits GitHub Actions workflows for security vulnerabilities in AI agent integrations, helping developers secure their CI/CD pipelines.
37. Operator Building Assistant — This skill helps developers build robust Kubernetes Operators by providing tools for CRD validation, reconcile-loop linting, and capability auditing.
38. Operator Building Assistant — This skill assists developers building Kubernetes Operators by providing tools for CRD validation, reconcile loop linting, and capability auditing.
39. Karpathy AI Simulator — Simulates Andrej Karpathy, providing deep learning expertise and educational insights for users interested in AI and neural networks.
40. Karpathy AI Simulator — Emulates Andrej Karpathy, offering deep learning expertise and educational insights for users seeking AI knowledge and practical guidance.
41. Secrets Hygiene Auditor — Audits codebases for leaked secrets and insecure environment variable practices, helping developers and security teams improve application security.
42. AI Safety Guardrails — Implement safety guardrails for AI systems, including content filtering and prompt injection detection, to ensure responsible AI practices.
43. Assumption Validation Engine — This skill audits assumptions, classifies them by type and impact, and rebuilds conclusions from verified premises, assisting users in critical decision-making.
44. AWS Bedrock Integrator — Deploys and manages foundation models on AWS Bedrock, enabling compliant and secure AI applications for enterprise users.
45. Security Audit Agent — This skill performs comprehensive security audits, threat modeling, and hardening for software and infrastructure projects, aiding security professionals.
46. Security Audit Agent — This skill conducts security audits, threat modeling, and provides hardening recommendations for software and infrastructure projects, aiding security professionals.
47. ComfyUI Workflow Generator — Empower users to visually construct intricate Stable Diffusion pipelines, leveraging custom nodes and advanced controls for tailored image generation workflows.
48. Opsgenie Configuration Manager — Configure Opsgenie for alert management, on-call scheduling, and incident response, helping users automate workflows and integrate with monitoring tools.
49. Employment Offer Generator — This skill creates formal employment offer letters with compensation details and terms, assisting HR professionals and hiring managers.
50. Status Page Manager — Configure status pages, manage incidents, and automate updates for transparent service health communication with users and stakeholders.