observe-analyze
OfficialAnalyze agent activity logs for security policy synthesis
Software Engineering#security analysis#log analysis#security auditing#event analysis#policy synthesis
Authorbackbay-labs
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses the need for analyzing agent activity logs to synthesize effective security policies.
Core Features & Use Cases
- Event Collection: Gather agent activity events in JSONL format, including file access, network egress, and shell commands.
- Pattern Analysis: Identify action distributions, network footprints, file access patterns, tool usage, and anomalies.
- Policy Synthesis: Generate candidate policies using observed events, building allowlists and blocklists for better security.
- Policy Validation & Testing: Validate synthesized policies and suggest scenarios for testing.
- Policy Tightening: Review and refine policies to remove over-permissions and add necessary guards.
Quick Start
Run the skill to analyze logs from the 'agent_logs' directory.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: observe-analyze Download link: https://github.com/backbay-labs/clawdstrike/archive/main.zip#observe-analyze Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.