원클릭으로 Manus에서 모든 스킬 실행

시작하기

$pwd:

scan

Name: Scan
Author: transilienceai

// Run SOC 2 compliance checks against connected cloud accounts (AWS, Azure, and/or GCP) and display findings.

Manus에서 실행

$ git log --oneline --stat

stars:136

forks:28

updated:2026년 5월 15일 14:33

SKILL.md

readonly

name	scan
description	Run SOC 2 compliance checks against connected cloud accounts (AWS, Azure, and/or GCP) and display findings.
user-invocable	true

Scan

You are running a SOC 2 compliance scan for a semi-technical founder. Explain findings in plain English.

What to do

Read shasta.config.json for python_cmd, aws_profile, azure_subscription_id, and gcp_project_id. Use that for all commands (shown as <PYTHON_CMD>).

Determine which clouds to scan:

If aws_profile is set (non-empty) → scan AWS
If azure_subscription_id is set (non-empty) → scan Azure
If gcp_project_id is set (non-empty) → scan GCP
Any combination of the above is scanned together in a single pass
If none are set → tell the user to run /connect-aws, /connect-azure, or /connect-gcp first

Check for a recent scan first

<PYTHON_CMD> -c "
from shasta.db.schema import ShastaDB
db = ShastaDB(); db.initialize()
scan = db.get_recent_scan(max_age_minutes=60)
if scan:
    print(f'RECENT_SCAN_FOUND|{scan.id}|{scan.completed_at}|{scan.summary.total_findings if scan.summary else 0} findings')
else:
    print('NO_RECENT_SCAN')
last_review = db.get_last_review_date()
if last_review: print(f'LAST_ACCESS_REVIEW|{last_review}')
else: print('NO_ACCESS_REVIEW_FOUND')
"

If a recent scan exists, tell the user and ask if they want to reuse it or run fresh.

Run fresh scan + generate reports

The scanner takes AWS, Azure, and GCP clients together and scans whatever is passed in a single pass. The snippet below builds only the clients that are configured, so the same command works for any cloud or combination — no need to pick a cloud-specific variant.

<PYTHON_CMD> -c "
import json
from shasta.config import load_config, get_aws_client, get_azure_client, get_gcp_client
from shasta.scanner import run_full_scan
from shasta.compliance.mapper import get_control_summary
from shasta.compliance.scorer import calculate_score
from shasta.reports.summary import summarize_scan
from shasta.reports.generator import save_markdown_report, save_html_report
from shasta.db.schema import ShastaDB

cfg = load_config()
clients = {}
if cfg.get('aws_profile'):
    c = get_aws_client(); c.validate_credentials(); clients['client'] = c
if cfg.get('azure_subscription_id'):
    a = get_azure_client(); a.validate_credentials(); clients['azure_client'] = a
if cfg.get('gcp_project_id'):
    g = get_gcp_client(); g.validate_credentials(); clients['gcp_client'] = g
if not clients:
    raise SystemExit('No clouds configured. Run /connect-aws, /connect-azure, or /connect-gcp first.')

labels = {'client': 'AWS', 'azure_client': 'Azure', 'gcp_client': 'GCP'}
print(f\"Running full compliance scan ({' + '.join(labels[k] for k in clients)})...\")
scan = run_full_scan(**clients)
db = ShastaDB(); db.initialize(); db.save_scan(scan)

md = save_markdown_report(scan)
html = save_html_report(scan)
print(f'Reports saved: {md} | {html}')

score = calculate_score(scan.findings)
summary = summarize_scan(scan)
summary['score'] = {
    'percentage': score.score_percentage,
    'grade': score.grade,
    'controls_passing': score.passing,
    'controls_failing': score.failing,
}
summary['control_summary'] = {
    k: {'title': v['title'], 'overall_status': v['overall_status'], 'pass_count': v['pass_count'], 'fail_count': v['fail_count']}
    for k, v in get_control_summary(scan.findings).items()
    if v['has_automated_checks'] or v['overall_status'] != 'not_assessed'
}
print(json.dumps(summary, indent=2))
"

Present results

Show scan timestamp and report file paths
Overall score and grade
For each check group: "X of Y resources non-compliant — top 5 shown, full list in report"
Critical & high findings with remediation
SOC 2 control status table
If last access review is >90 days ago, warn: "Quarterly access review overdue — run /review-access"
Mention the saved reports: "Full Markdown report at , HTML at . Run /report for PDF."

Tone

Use analogies, be specific, celebrate what's passing, frame low scores as roadmaps

related-skills.json

같은 저장소

connect-gcp.md

from "transilienceai/shasta"

Connect to a GCP project, validate credentials, and discover what services are in use.

2026-05-15136

ai-code-review.md

from "transilienceai/shasta"

Deep code scan for AI security issues — prompt injection, PII in prompts, hardcoded keys, unguarded agents.

2026-04-21136

ai-scan.md

from "transilienceai/shasta"

Run AI governance checks across cloud accounts and code repos — ISO 42001, EU AI Act, NIST AI RMF compliance.

2026-04-21136

discover-ai.md

from "transilienceai/shasta"

Scan cloud accounts and GitHub repos to discover AI/ML services and build an AI system inventory.

2026-04-21136

audit.md

from "transilienceai/shasta"

Walk staged changes against the engineering principles checklist and report pass/fail per principle. Run before any non-trivial commit. Catches doc drift, stub functions, single-region defaults, missing framework mappings, and other regressions before they ship.

2026-04-16136

trust-center.md

from "transilienceai/shasta"

Generate a public-facing security trust page from scan data. Produces a single deployable index.html that shows compliance framework scores, security policies, infrastructure overview, and data protection posture. Deployable to S3, Vercel, Netlify, or GitHub Pages.

2026-04-10136

package.json

"author": "transilienceai"

"repository": "transilienceai/shasta"

GitHub 저장소 열기 Creator 저장소 보기

$ install --global

$ download --local

Manus에서 실행

$ useful --forSOC

정보 보안 분석가컴퓨터 및 수학직15-1212L4

Scan

You are running a SOC 2 compliance scan for a semi-technical founder. Explain findings in plain English.

What to do

Read shasta.config.json for python_cmd, aws_profile, azure_subscription_id, and gcp_project_id. Use that for all commands (shown as <PYTHON_CMD>).

Determine which clouds to scan:

If aws_profile is set (non-empty) → scan AWS

If azure_subscription_id is set (non-empty) → scan Azure

If gcp_project_id is set (non-empty) → scan GCP

Any combination of the above is scanned together in a single pass

If none are set → tell the user to run /connect-aws, /connect-azure, or /connect-gcp first

Check for a recent scan first

<PYTHON_CMD> -c " from shasta.db.schema import ShastaDB db = ShastaDB(); db.initialize() scan = db.get_recent_scan(max_age_minutes=60) if scan: print(f'RECENT_SCAN_FOUND|{scan.id}|{scan.completed_at}|{scan.summary.total_findings if scan.summary else 0} findings') else: print('NO_RECENT_SCAN') last_review = db.get_last_review_date() if last_review: print(f'LAST_ACCESS_REVIEW|{last_review}') else: print('NO_ACCESS_REVIEW_FOUND') "

If a recent scan exists, tell the user and ask if they want to reuse it or run fresh.

Run fresh scan + generate reports

<PYTHON_CMD> -c " import json from shasta.config import load_config, get_aws_client, get_azure_client, get_gcp_client from shasta.scanner import run_full_scan from shasta.compliance.mapper import get_control_summary from shasta.compliance.scorer import calculate_score from shasta.reports.summary import summarize_scan from shasta.reports.generator import save_markdown_report, save_html_report from shasta.db.schema import ShastaDB cfg = load_config() clients = {} if cfg.get('aws_profile'): c = get_aws_client(); c.validate_credentials(); clients['client'] = c if cfg.get('azure_subscription_id'): a = get_azure_client(); a.validate_credentials(); clients['azure_client'] = a if cfg.get('gcp_project_id'): g = get_gcp_client(); g.validate_credentials(); clients['gcp_client'] = g if not clients: raise SystemExit('No clouds configured. Run /connect-aws, /connect-azure, or /connect-gcp first.') labels = {'client': 'AWS', 'azure_client': 'Azure', 'gcp_client': 'GCP'} print(f\"Running full compliance scan ({' + '.join(labels[k] for k in clients)})...\") scan = run_full_scan(**clients) db = ShastaDB(); db.initialize(); db.save_scan(scan) md = save_markdown_report(scan) html = save_html_report(scan) print(f'Reports saved: {md} | {html}') score = calculate_score(scan.findings) summary = summarize_scan(scan) summary['score'] = { 'percentage': score.score_percentage, 'grade': score.grade, 'controls_passing': score.passing, 'controls_failing': score.failing, } summary['control_summary'] = { k: {'title': v['title'], 'overall_status': v['overall_status'], 'pass_count': v['pass_count'], 'fail_count': v['fail_count']} for k, v in get_control_summary(scan.findings).items() if v['has_automated_checks'] or v['overall_status'] != 'not_assessed' } print(json.dumps(summary, indent=2)) "

Present results

Show scan timestamp and report file paths

Overall score and grade

For each check group: "X of Y resources non-compliant — top 5 shown, full list in report"

Critical & high findings with remediation

SOC 2 control status table

If last access review is >90 days ago, warn: "Quarterly access review overdue — run /review-access"

Mention the saved reports: "Full Markdown report at , HTML at . Run /report for PDF."

Tone

Use analogies, be specific, celebrate what's passing, frame low scores as roadmaps

scan

Scan

What to do

Check for a recent scan first

Run fresh scan + generate reports

Present results

Tone

이 저장소의 다른 Skills

이 저장소의 다른 Skills

Scan

What to do

Check for a recent scan first

Run fresh scan + generate reports

Present results

Tone