compliance-management

Quick Review

The skill provides useful compliance checklists and frameworks for GDPR and SOC 2, with clear structure covering when to use it and core concepts. However, it falls short in several areas: (1) The description suggests mastery of ISO 27001, audit preparation, and regulatory requirements, but ISO 27001 content is minimal and audit preparation lacks actionable guidance. (2) Task knowledge is limited to static checklists without implementation scripts, templates, or detailed procedures that would help complete actual compliance tasks. (3) Novelty is low—these are standard checklists readily available online that a CLI agent could easily retrieve or generate without specialized tooling. The skill would benefit from executable scripts for evidence collection, automated gap analysis tools, templated policy generators, or audit report automation to justify its existence as a specialized skill rather than reference documentation.