How does the skill determine which policies to execute?

It reads the policy_plan.md file in your repository to discover the specific paths and policy commands that need to be evaluated.

Where are the results of the policy checks stored?

Results are output to policy_runner_output.log for raw data and policy_runner_summary.md for a high-level overview of passes and failures.

What policy engines does this skill support?

The Policy Runner skill is designed to work with policy-as-code tools such as OPA (Open Policy Agent) and Conftest by executing their CLI commands.

Does this skill automatically fix policy violations?

No, the skill is strictly for evaluation and reporting. It identifies and logs violations but does not modify your policy files or source code.

Policy Runner

Name: Policy Runner
Author: EffortlessMetrics

byEffortlessMetrics

0•

보안 및 테스팅

Executes policy-as-code checks to ensure security compliance and governance throughout the development lifecycle.

The Policy Runner skill automates the evaluation of governance rules using industry-standard tools like OPA and Conftest. By interpreting structured policy plans, it executes specific security and compliance checks, captures raw execution logs, and generates comprehensive summaries of passes and failures. This skill is a core component of a governed SDLC within Claude Code, providing a deterministic audit trail and ensuring that every code change adheres to organizational standards without manual intervention.

주요 기능

01Non-destructive operation that maintains code integrity

02Comprehensive summary reporting of check results

030 GitHub stars

04Automated OPA and Conftest policy evaluation

05Dynamic execution based on policy_plan.md configurations

06Detailed logging of raw runner output for audit trails

사용 사례

01Enforcing organizational compliance rules during the development process

02Generating deterministic audit logs for regulated software environments

03Validating infrastructure-as-code templates against security benchmarks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add effortlessmetrics/demo-swarm policy-runner

For use in Claude.ai and ChatGPT

주요 기능

01Non-destructive operation that maintains code integrity

02Comprehensive summary reporting of check results

030 GitHub stars

04Automated OPA and Conftest policy evaluation

05Dynamic execution based on policy_plan.md configurations

06Detailed logging of raw runner output for audit trails

사용 사례

01Enforcing organizational compliance rules during the development process

02Generating deterministic audit logs for regulated software environments

03Validating infrastructure-as-code templates against security benchmarks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add effortlessmetrics/demo-swarm policy-runner

For use in Claude.ai and ChatGPT