By geoffbelknap
ASK (Agent Security Framework) compliance reviewer, architecture designer, and threat analyst. Three skills: ask-review (25-tenet audit), ask-design (enforcement architecture and config generation), ask-threats (threat model and XPIA analysis). Updated for ASK 2026.03.
ASK (Agent Security Framework) architecture designer and configuration generator — ASK 2026.03. Use this skill whenever the user wants to: design ASK-compliant agent architectures; generate configuration files (Mind/mind.yaml, Gateway policy, Egress proxy denylist, Enforcer sidecar, Delegation bus, Audit log format); understand ASK enforcement layers; design multi-agent systems with proper delegation and isolation; plan deployment topology; or evaluate how enforcement components fit together. Trigger on any mention of ASK architecture design, enforcement layer design, mind.yaml generation, gateway policy creation, egress proxy configuration, enforcer sidecar setup, delegation bus design, ASK deployment topology, multi-agent architecture, agent isolation design, or ASK configuration generation.
ASK (Agent Security Framework) compliance reviewer — ASK 2026.03 (25 tenets). Use this skill whenever the user wants to: review code, specs, architecture, or designs for ASK compliance; check whether an AI agent system satisfies ASK tenets; verify cognitive model separation (Constraints/Session/Identity); assess trust spectrum positioning; audit agent lifecycle and halt governance; check principal model coverage; or evaluate whether enforcement logic is correctly placed outside the agent's trust boundary. Trigger on any mention of ASK compliance review, ASK tenet audit, agent compliance check, cognitive model verification, trust spectrum assessment, enforcement gap identification, ASK checklist, agent quarantine review, halt governance audit, or principal model verification.
ASK (Agent Security Framework) threat analyst — ASK 2026.03. Use this skill whenever the user wants to: analyze threats to AI agent systems; assess XPIA (cross-prompt injection attack) kill chain posture; evaluate attack surfaces; review defensive architecture against specific threat categories; understand traditional vs novel vs hybrid threats to agents; analyze MCP security risks; assess identity/memory poisoning risks; evaluate behavioral drift detection; review multi-agent cascade failure risks; or understand ASK framework limitations and known gaps. Trigger on any mention of agent threat model, XPIA analysis, prompt injection defense, agent attack surface, MCP security, identity poisoning, behavioral drift, cascade failures, agent threat assessment, kill chain analysis, or ASK limitations.
Own this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimOwn this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimBased on adoption, maintenance, documentation, and repository signals. Not a security audit or endorsement.
A Claude Code plugin marketplace by Geoff Belknap.
| Plugin | Description |
|---|---|
| ask-framework | ASK (Agent Security Framework) compliance reviewer, architecture designer, and threat analyst — audit agent architectures against 25 security tenets, design seven-layer enforcement architectures, verify cognitive model separation, assess XPIA kill chain posture, analyze traditional/novel/hybrid threats, and generate compliant configurations. Updated for ASK 2026.03. |
# Add the marketplace
/plugin marketplace add geoffbelknap/geoffs-plugins
# Install a plugin
/plugin install ask-framework@geoffs-plugins
The ASK framework treats AI agents as principals to be governed, not tools to be configured. It assumes the agent is always compromisable and requires all enforcement to exist outside the agent's reach.
ASK defines four non-negotiable elements (Workspace, Mediation Layer, Audit Log, Human Override), a cognitive model (Mind/Body/Workspace with Constraints/Session/Identity separation), 25 tenets organized across 8 categories, seven enforcement layers, and a trust spectrum from Assisted to Delegated autonomy.
Full framework documentation: github.com/geoffbelknap/ask
Creative Commons Attribution 4.0 International (CC BY 4.0) — free to share and adapt for any purpose, including commercial, with attribution.
npx claudepluginhub geoffbelknap/geoffs-plugins --plugin ask-frameworkAgency platform — manage AI agent teams with enforced isolation, credential scoping, and continuous audit
geoffbelknapASK (Agent Security Framework) compliance reviewer, architecture designer, and threat analyst. Three skills: ask-review (27-tenet audit), ask-design (enforcement architecture and config generation), ask-threats (threat model and XPIA analysis). Updated for ASK 2026.04.
Harness-native ECC operator layer - 67 agents, 271 skills, 92 legacy command shims, reusable hooks, rules, selective install profiles, and production-ready workflows for Claude Code, Codex, OpenCode, Cursor, and related agent harnesses
affaan-mComprehensive skill pack with 66 specialized skills for full-stack developers: 12 language experts (Python, TypeScript, Go, Rust, C++, Swift, Kotlin, C#, PHP, Java, SQL, JavaScript), 10 backend frameworks, 6 frontend/mobile, plus infrastructure, DevOps, security, and testing. Features progressive disclosure architecture for 50% faster loading.
JeffallanBinary reverse engineering, malware analysis, firmware security, and software protection research for authorized security research, CTF competitions, and defensive security
wshobsonv9.44.1 — Patch release for Gemini environment/version detection and qwen auth gating. Run /octo:setup.
nyldnNext.js development expertise with skills for App Router, Server Components, Route Handlers, Server Actions, and authentication patterns
davepoonComprehensive .NET development skills for modern C#, ASP.NET, MAUI, Blazor, Aspire, EF Core, Native AOT, testing, security, performance optimization, CI/CD, and cloud-native applications
wshaddix