Skills
.Work. You
Rest

oscal-assess

Official

Map security gaps to frameworks.

Legal & Compliance#gap analysis#security assessment#oscal#sscf#compliance mapping#remediation backlog#salesforce security
Authordfirs1car1o
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill automates the complex and time-consuming process of mapping security control findings against various compliance frameworks, generating clear gap analyses and actionable remediation plans.

Core Features & Use Cases

  • Automated Gap Mapping: Directly maps findings to specific controls within the Security Benchmark for Salesforce (SBS) catalog and the CSA SSCF framework.
  • Gap Matrix Generation: Produces a human-readable Markdown table detailing control gaps, their status, and mapping confidence.
  • Remediation Backlog Creation: Generates a structured JSON output that prioritizes remediation efforts based on identified gaps.
  • Use Case: After an initial security assessment of Salesforce, use this Skill to automatically determine which SSCF controls are not met, visualize these gaps in a report, and create a prioritized list of tasks for the security team to address.

Quick Start

Run the oscal-assess skill to map the provided gap analysis JSON file against the SBS controls and output a gap matrix markdown file and a remediation backlog JSON file.

Dependency Matrix

Required Modules

None required

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: oscal-assess
Download link: https://github.com/dfirs1car1o/saas-posture/archive/main.zip#oscal-assess

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.