Afrexai Vendor Risk
Skill by 1kalin
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/1kalin/afrexai-vendor-riskWhat This Skill Does
The Afrexai Vendor Risk skill provides a structured framework for procurement teams, CISOs, and operations leaders to systematically assess third-party service providers. By evaluating vendors across five critical domains—Security Posture, Financial Stability, Compliance, Operational Dependency, and Data Handling—the agent calculates an aggregate risk score (0-500). This score allows organizations to categorize vendors into specific risk tiers, automatically triggering appropriate review cadences and remediation workflows. It helps mitigate supply chain risks by identifying concentration dependencies and assessing the cost of vendor failure, ensuring your organization maintains visibility into its operational health.
Installation
To integrate this skill into your environment, run the following command within your OpenClaw terminal: clawhub install openclaw/skills/skills/1kalin/afrexai-vendor-risk
Use Cases
This skill is designed for organizations managing 10+ vendors who need standardized oversight. Key use cases include: 1) Initial vetting of new SaaS vendors before contract signing. 2) Conducting annual audits of critical service providers. 3) Portfolio-wide risk reporting for board presentations. 4) Identifying vendors that represent a 'single point of failure' to trigger contingency planning.
Example Prompts
- "Run a risk assessment for our new cloud infrastructure provider and calculate their score based on their SOC 2 and financial reports."
- "Generate a portfolio risk view for all current vendors and identify which ones fall into the 'Critical' category requiring a 90-day exit plan."
- "Analyze our current dependency on major vendors; create a list of the top 3 concentration risks based on their operational impact and annual spend."
Tips & Limitations
The tool is most effective when data inputs are consistent. Ensure your security team provides current documentation for each domain to maintain accurate scoring. Note that this skill is a decision-support tool; while it identifies risks, it does not replace manual legal review or financial due diligence by your professional staff. Always verify the 'single point of failure' assessment against actual business continuity testing results before making final procurement decisions.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-1kalin-afrexai-vendor-risk": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: data-collection