Star0

Review risk

Legal, policy, and compliance review skills

Browse skills for contract analysis, policy review, privacy checks, compliance workflows, governance notes, and document risk review.

Browse matching skillsRead guideAgent API prompt

Try this task

I need my agent to review contracts, privacy policies, or compliance documents and summarize risks.

Agent should be able to

  • +Extract obligations
  • +Highlight risky clauses
  • +Prepare review-ready summaries

Workflow map

What to build with these skills

01

Review contracts

02

Summarize policy risk

03

Check privacy requirements

04

Prepare compliance notes

Best first installs

Start with high-signal skills

18 matched skills

Kyverno

VERIFIED

Unified Policy as Code

7.8K stars69 qualityJun 8, 2026 push
$ npx skills add kyverno/kyverno

Agent Governance Toolkit

VERIFIED

AI Agent Governance Toolkit — Policy enforcement, zero-trust identity, execution sandboxing, and reliability engineering for autonomous AI agents. Covers 10/10 OWASP Agentic Top 10.

4.1K stars67 qualityJun 8, 2026 push
$ npx skills add microsoft/agent-governance-toolkit

Bearer

VERIFIED

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

2.7K stars66 qualityJun 15, 2026 push
$ npx skills add Bearer/bearer

Skill shortlist

More options for this use case

Browse full marketplace

Lynis

security

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

16K stars70 quality

Opa

security

Open Policy Agent (OPA) is an open source, general-purpose policy engine.

12K stars72 quality

Cloud Custodian

security

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

6.0K stars68 quality

Siyuan

agent-frameworks

A privacy-first, self-hosted, fully open source personal knowledge management software, written in typescript and golang.

44K stars76 quality

Logseq

rag-knowledge

A privacy-first, open-source platform for knowledge management and collaboration. Download link: http://github.com/logseq/logseq/releases. roadmap: https://logseq.io/p/NX4mc_ggEV

43K stars76 quality

Mlflow

development

The open source AI engineering platform for agents, LLMs, and ML models. MLflow enables teams of all sizes to debug, evaluate, monitor, and optimize production-quality AI applications while controlling costs and managing access to models and data.

27K stars74 quality

Goaccess

data-analysis

GoAccess is a real-time web log analyzer and interactive viewer that runs in a terminal in *nix systems or through your browser.

21K stars73 quality

Claude Skills

agent-skills

337 Claude Code skills & agent skills & plugins (30+ Agents, 70+ custom commands, 330+ skills, customizable references, scripts)for Claude Code, Codex, Gemini CLI, Cursor, and 8 more coding agents — engineering, marketing, product, compliance, C-level advisory, research, business operations, commercial & finance, and your daily productivity skills.

18K stars73 quality

Wazuh

security

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

16K stars73 quality

SurfSense

data

An open source, privacy focused alternative to NotebookLM for teams with no data limits. Join our Discord: https://discord.gg/ejRNvftDp9

14K stars72 quality

Bentopdf

document-processing

The Privacy First PDF Toolkit

14K stars72 quality

Karate

testing-qa

Test Automation Made Simple

8.9K stars69 quality

Checkov

development

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

8.8K stars69 quality

OneForAll

security

OneForAll是一款功能强大的子域收集工具

9.8K stars67 quality

Datahaven

agent-frameworks

An EVM compatible Substrate chain, powered by StorageHub and secured by EigenLayer

7.9K stars66 quality

FAQ

How to choose skills for this workflow

These answers are written for both human builders and agents consuming the Registry API.

What are the best AI agent skills for legal and compliance?

Start by comparing Kyverno, Agent Governance Toolkit, Bearer. OpenAgentSkill ranks them by workflow fit, GitHub adoption, quality, and install readiness.

Can an AI agent use this page directly?

Yes. Use the linked Registry API prompt to query /api/skills/search with the task: "I need my agent to review contracts, privacy policies, or compliance documents and summarize risks." and retrieve install handoff links for the top results.

Should I install every recommended skill?

No. Start with the highest-fit skill, test it in a sandbox workflow, and add companion skills only when the task needs extra coverage.