MCP App StoreMCP App Store
from ai-safe2-framework126
A governance and security copilot that applies the AI SAFE2 v3.0 framework to design, review, and govern agentic AI systems — mapping controls, scoring risk, an
AI SAFE2 Secure Build Copilot embeds the AI SAFE2 v3.0 framework into conversational workflows to help builders design secure-by-default AI systems. It guides security architecture reviews, code reviews for agent-specific risks, agent classification by ACT tier, risk scoring (including AAF), and compliance mapping across many regulatory frameworks. The skill references 161 controls across five operational pillars plus cross-pillar governance.
Activate when designing or reviewing AI agents, multi-agent systems, RAG/CAG pipelines, MCP servers, or when auditing production incidents that involve agent behavior, prompt injection, or other AI-specific security concerns. Also used for compliance mapping (ISO 42001, NIST AI RMF, EU AI Act, SOC 2, HIPAA, etc.) and constructing governance evidence packages.
skills/mcp/ for live control lookup.Model-neutral guidance intended for use with Claude, OpenAI, Gemini, local models, and MCP servers. The skill includes tooling hooks for an MCP server when available.
This skill has not been reviewed by our automated audit pipeline yet.
AWP (Agent Work Protocol)
Tooling and scripts for onboarding, staking, allocation, and managing agents on the AWP network (Base/Ethereum/Arbitrum/BSC). Includes safe, opt-in daemon and r
Reverse Engineer
Provides step-by-step guidance and best practices for binary reverse engineering: static analysis, dynamic tracing, disassembly, and documentation workflows for
Sandbox0 Integration
Guidance and templates for integrating Sandbox0 sandboxing into AI agents — CLI/SDK patterns, templates, volumes, network policy, and deployment choices.
OpenTestAI
Automated, high-confidence AI testing: bug detection, persona feedback, and prioritized test-case generation using many specialized tester profiles.
CTF Write-up Generator
Generate a concise, reproducible submission-style CTF writeup with a one-path solution script, metadata, and a short checklist for fast verification.
Minimal Run & Audit (repro reporting)
Execute a README-first smoke test and produce standardized reproducibility outputs (`repro_outputs/`) and PATCHES.md — trusted reporting for repo reproduction r
Skill Issue — Skill Auditor
Scan and audit installed agent skills to produce a health report covering inventory, usage, dependency checks, version status, and actionable recommendations.
GRC & Compliance (ServiceNow)
Guides Governance, Risk & Compliance (GRC) work in ServiceNow: policies, controls, risk records, audits and ES5 script examples for automating GRC workflows.