Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

melodic-software/assess-ai

Name: assess-ai
Author: melodic-software

plugins/compliance-planning/skills/assess-ai/SKILL.md

npx skillsauth add melodic-software/claude-code-plugins assess-ai

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

AI Governance Assessment

Conduct a comprehensive AI governance and responsible AI assessment.

Workflow

Step 1: Load Required Skills

Load these skills:

ai-governance - EU AI Act and NIST AI RMF
ethics-review - Ethical impact assessment

Step 2: Conduct Risk Classification

First, determine the AI system's risk classification under EU AI Act:

Classification Criteria:

Unacceptable Risk (Prohibited)
High Risk (Strict requirements)
Limited Risk (Transparency obligations)
Minimal Risk (No specific requirements)

Step 3: Conduct AI Safety Assessment

Research AI safety frameworks using MCP servers (perplexity for NIST AI RMF, EU AI Act guidance) and conduct assessment based on current standards.

Conduct a comprehensive AI governance assessment for: $ARGUMENTS

Perform the following assessments:

1. EU AI Act Classification
   - Determine risk category
   - Identify applicable requirements
   - Check for prohibited use cases

2. NIST AI RMF Evaluation
   - Govern: Policies, accountability, oversight
   - Map: Stakeholders, impacts, constraints
   - Measure: Metrics, testing, monitoring
   - Manage: Mitigations, responses

3. Responsible AI Assessment
   - Fairness evaluation
   - Transparency requirements
   - Accountability structures
   - Privacy considerations
   - Safety measures
   - Human oversight mechanisms

4. Ethical Impact Assessment
   - Stakeholder analysis
   - Potential harms identification
   - Benefit-harm balance
   - Vulnerable population impact

5. Documentation Requirements
   - Technical documentation
   - Model card
   - Risk assessments
   - Human oversight procedures

6. Compliance Roadmap
   - Gap identification
   - Remediation priorities
   - Timeline for compliance

Provide a complete AI governance assessment with:
- Risk classification with justification
- Compliance gaps by framework
- Ethical risk evaluation
- Remediation roadmap

Step 4: Generate Assessment Report

Ensure the report includes:

Executive summary with risk classification
Framework compliance assessment
Ethical impact evaluation
Prioritized remediation plan
Ongoing monitoring requirements

Example Usage

# Assess a hiring AI system
/compliance-planning:assess-ai "AI-powered resume screening and candidate ranking"

# Assess a customer service chatbot
/compliance-planning:assess-ai "customer service chatbot for financial services"

# Assess a content moderation system
/compliance-planning:assess-ai "automated content moderation for social platform"

Output Format

# AI Governance Assessment: [System Name]

## Executive Summary

### EU AI Act Classification: [UNACCEPTABLE / HIGH RISK / LIMITED / MINIMAL]

**Justification:**
[Why this classification applies]

### Overall Governance Readiness: [HIGH / MEDIUM / LOW]

| Framework | Score | Status |
|-----------|-------|--------|
| EU AI Act | [X/10] | [Status] |
| NIST AI RMF | [X/10] | [Status] |
| Responsible AI | [X/10] | [Status] |

### Key Findings
- [Finding 1]
- [Finding 2]

---

## EU AI Act Compliance

### Risk Classification

**Category:** [Category]

**Applicable Requirements:**
| Requirement | Status | Gap |
|-------------|--------|-----|

### Prohibited Use Check
- [ ] Not social scoring
- [ ] Not subliminal manipulation
- [ ] Not exploiting vulnerabilities
- [ ] [Other checks]

---

## NIST AI RMF Assessment

### Govern
| Requirement | Status | Gap |
|-------------|--------|-----|

### Map
| Requirement | Status | Gap |
|-------------|--------|-----|

### Measure
| Requirement | Status | Gap |
|-------------|--------|-----|

### Manage
| Requirement | Status | Gap |
|-------------|--------|-----|

---

## Responsible AI Assessment

### Fairness
| Metric | Status | Finding |
|--------|--------|---------|

### Transparency
| Requirement | Status | Gap |
|-------------|--------|-----|

### Accountability
| Requirement | Status | Gap |
|-------------|--------|-----|

### Human Oversight
| Mechanism | Status | Gap |
|-----------|--------|-----|

---

## Ethical Impact Assessment

### Stakeholder Impact
| Stakeholder | Impact Type | Severity | Mitigation |
|-------------|-------------|----------|------------|

### Potential Harms
| Harm | Likelihood | Severity | Mitigation |
|------|------------|----------|------------|

---

## Documentation Status

- [ ] Technical documentation
- [ ] Model card
- [ ] Data documentation
- [ ] Risk assessment
- [ ] Human oversight procedures
- [ ] Monitoring plan

---

## Remediation Roadmap

### Phase 1: Critical (High-Risk Systems)
1. [Action with owner and deadline]

### Phase 2: Compliance Requirements
1. [Action]

### Phase 3: Best Practices
1. [Action]

---

## Ongoing Monitoring

| Metric | Target | Frequency | Owner |
|--------|--------|-----------|-------|

melodic-software/assess-ai

plugins/compliance-planning/skills/assess-ai/SKILL.md

Conduct an AI governance and responsible AI assessment using EU AI Act and NIST AI RMF.

47 stars

development

Updated Apr 7, 2026

$ install --global

skillsauth

npx skillsauth add melodic-software/claude-code-plugins assess-ai

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 7, 2026, 8:36 AM17.8s1 file scanned

SKILL.md

name:: assess-ai
description:: Conduct an AI governance and responsible AI assessment using EU AI Act and NIST AI RMF.
argument-hint:: <system-description>
allowed-tools:: Task, Skill

AI Governance Assessment

Conduct a comprehensive AI governance and responsible AI assessment.

Workflow

Step 1: Load Required Skills

Load these skills:

ai-governance - EU AI Act and NIST AI RMF
ethics-review - Ethical impact assessment

Step 2: Conduct Risk Classification

First, determine the AI system's risk classification under EU AI Act:

Classification Criteria:

Unacceptable Risk (Prohibited)
High Risk (Strict requirements)
Limited Risk (Transparency obligations)
Minimal Risk (No specific requirements)

Step 3: Conduct AI Safety Assessment

Research AI safety frameworks using MCP servers (perplexity for NIST AI RMF, EU AI Act guidance) and conduct assessment based on current standards.

Conduct a comprehensive AI governance assessment for: $ARGUMENTS

Perform the following assessments:

1. EU AI Act Classification
   - Determine risk category
   - Identify applicable requirements
   - Check for prohibited use cases

2. NIST AI RMF Evaluation
   - Govern: Policies, accountability, oversight
   - Map: Stakeholders, impacts, constraints
   - Measure: Metrics, testing, monitoring
   - Manage: Mitigations, responses

3. Responsible AI Assessment
   - Fairness evaluation
   - Transparency requirements
   - Accountability structures
   - Privacy considerations
   - Safety measures
   - Human oversight mechanisms

4. Ethical Impact Assessment
   - Stakeholder analysis
   - Potential harms identification
   - Benefit-harm balance
   - Vulnerable population impact

5. Documentation Requirements
   - Technical documentation
   - Model card
   - Risk assessments
   - Human oversight procedures

6. Compliance Roadmap
   - Gap identification
   - Remediation priorities
   - Timeline for compliance

Provide a complete AI governance assessment with:
- Risk classification with justification
- Compliance gaps by framework
- Ethical risk evaluation
- Remediation roadmap

Step 4: Generate Assessment Report

Ensure the report includes:

Executive summary with risk classification
Framework compliance assessment
Ethical impact evaluation
Prioritized remediation plan
Ongoing monitoring requirements

Example Usage

# Assess a hiring AI system
/compliance-planning:assess-ai "AI-powered resume screening and candidate ranking"

# Assess a customer service chatbot
/compliance-planning:assess-ai "customer service chatbot for financial services"

# Assess a content moderation system
/compliance-planning:assess-ai "automated content moderation for social platform"

Output Format

# AI Governance Assessment: [System Name]

## Executive Summary

### EU AI Act Classification: [UNACCEPTABLE / HIGH RISK / LIMITED / MINIMAL]

**Justification:**
[Why this classification applies]

### Overall Governance Readiness: [HIGH / MEDIUM / LOW]

| Framework | Score | Status |
|-----------|-------|--------|
| EU AI Act | [X/10] | [Status] |
| NIST AI RMF | [X/10] | [Status] |
| Responsible AI | [X/10] | [Status] |

### Key Findings
- [Finding 1]
- [Finding 2]

---

## EU AI Act Compliance

### Risk Classification

**Category:** [Category]

**Applicable Requirements:**
| Requirement | Status | Gap |
|-------------|--------|-----|

### Prohibited Use Check
- [ ] Not social scoring
- [ ] Not subliminal manipulation
- [ ] Not exploiting vulnerabilities
- [ ] [Other checks]

---

## NIST AI RMF Assessment

### Govern
| Requirement | Status | Gap |
|-------------|--------|-----|

### Map
| Requirement | Status | Gap |
|-------------|--------|-----|

### Measure
| Requirement | Status | Gap |
|-------------|--------|-----|

### Manage
| Requirement | Status | Gap |
|-------------|--------|-----|

---

## Responsible AI Assessment

### Fairness
| Metric | Status | Finding |
|--------|--------|---------|

### Transparency
| Requirement | Status | Gap |
|-------------|--------|-----|

### Accountability
| Requirement | Status | Gap |
|-------------|--------|-----|

### Human Oversight
| Mechanism | Status | Gap |
|-----------|--------|-----|

---

## Ethical Impact Assessment

### Stakeholder Impact
| Stakeholder | Impact Type | Severity | Mitigation |
|-------------|-------------|----------|------------|

### Potential Harms
| Harm | Likelihood | Severity | Mitigation |
|------|------------|----------|------------|

---

## Documentation Status

- [ ] Technical documentation
- [ ] Model card
- [ ] Data documentation
- [ ] Risk assessment
- [ ] Human oversight procedures
- [ ] Monitoring plan

---

## Remediation Roadmap

### Phase 1: Critical (High-Risk Systems)
1. [Action with owner and deadline]

### Phase 2: Compliance Requirements
1. [Action]

### Phase 3: Best Practices
1. [Action]

---

## Ongoing Monitoring

| Metric | Target | Frequency | Owner |
|--------|--------|-----------|-------|

Related Skills

melodic-software/milan-jovanovic-blog

development

VerifiedTrustedCommunity

Search Milan Jovanovic's .NET blog for Clean Architecture, DDD, CQRS, EF Core, and ASP.NET Core patterns. Use for finding applicable patterns, code examples, and architecture guidance. Invoke when working with .NET projects that could benefit from proven architectural patterns.

47SKILL.mdUpdated Apr 7, 2026

melodic-software/milan-jovanovic-blog

melodic-software/setup-dab

tools

VerifiedTrustedCommunity

Install and configure Data API Builder (DAB) for production SQL Server MCP access with RBAC

47SKILL.mdUpdated Apr 7, 2026

melodic-software/setup-dab

melodic-software/mssql

tools

VerifiedTrustedCommunity

Manage MssqlMcp servers - status, rebuild, and upstream updates

47SKILL.mdUpdated Apr 7, 2026

melodic-software/mssql

melodic-software/onboarding

tools

VerifiedTrustedCommunity

Developer environment setup guides for Windows, macOS, Linux, and WSL. Use when setting up development machines, installing tools, configuring environments, or following platform-specific setup guides. Covers package management, shell/terminal, code editors, AI tooling, containerization, databases, and more.

47SKILL.mdUpdated Apr 7, 2026

melodic-software/onboarding

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/melodic-software/claude-code-plugins.git

# Copy into Claude Code skills folder (global)
cp -r claude-code-plugins/plugins/compliance-planning/skills/assess-ai ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

melodic-software/claude-code-plugins

47 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT