Stats
Actions
Tags
From compliance-pilot
Runs Prowler compliance scans (SOC2 + HIPAA) on AWS accounts with smart auto-detection of active services/regions, full scans, or filters by service/check/severity/profile/region.
How this skill is triggered — by the user, by Claude, or both
Slash command
/compliance-pilot:scanThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Run a compliance scan using Prowler against your AWS account.
Run a compliance scan using Prowler against your AWS account.
Use the Agent tool to spawn the scanner agent:
subagent_type: scanner$ARGUMENTS to the agent prompt so it knows what flags to useExample agent prompt:
Run a Prowler compliance scan with these arguments: $ARGUMENTS
If no arguments provided, run a smart scan: discover active services and regions first, then scan only those, filtering noise.
If --full is passed, run a full SOC2 + HIPAA scan across all regions.
When no flags are provided, the scanner will:
--service and --region with only the discovered valuesThis typically reduces findings from 200-300 to 50-80 real compliance gaps.
/scan # Smart scan: auto-detect services + regions, filter noise
/scan --full # Full scan: all regions, all services, no filtering
/scan s3 # Scan S3 service only
/scan --service s3,iam # Scan S3 and IAM
/scan --check iam_root_mfa_enabled # Single check
/scan --severity critical,high # Only critical and high
/scan --profile production # Use specific AWS profile
/scan --region us-east-1 # Limit to one region (overrides auto-detection)
| Flag | Description |
|---|---|
--full | Skip service/region auto-detection, scan everything (all regions, all services) |
--service s3,iam | Override service auto-detection, scan only these services |
--region us-east-1 | Override region auto-detection, scan only this region |
--check check_id | Run specific Prowler check(s) |
--profile name | Use a specific AWS profile |
--severity critical,high | Filter by severity level |
The scanner will:
.compliance/scans/.compliance/findings/npx claudepluginhub prajapatimehul/comp-agent --plugin compliance-pilotRuns automated compliance checks for AWS against CIS, PCI-DSS, HIPAA, and SOC 2 benchmarks. Useful for audit preparation and continuous compliance monitoring.
Interprets AWS Inspector CLI outputs for IAM, S3, CloudTrail, EBS compliance checks. Maps to SCF controls and frameworks like SOC 2, FedRAMP, NIST. Distinguishes failures from permission issues.
Conducts cloud security audits using CIS benchmarks for AWS, Azure, and GCP. Covers running Prowler/ScoutSuite assessments, interpreting controls, and remediating failures.