by Ricky-7-Yan
Enterprise audit agent workspace with Agentic RAG, governed tool use, evaluation harness, memory, and human-review delivery workflows.
# Add to your Claude Code skills
git clone https://github.com/Ricky-7-Yan/intelligent-audit-systemGuides for using ai agents skills like intelligent-audit-system.
Last scanned: 7/19/2026
{
"issues": [
{
"type": "npm-audit",
"message": "axios: Axios Cross-Site Request Forgery Vulnerability",
"severity": "high"
},
{
"type": "npm-audit",
"message": "localtunnel: Vulnerability found",
"severity": "high"
}
],
"status": "WARNING",
"scannedAt": "2026-07-19T06:29:54.322Z",
"npmAuditRan": true,
"pipAuditRan": false,
"promptInjectionRan": true
}intelligent-audit-system is an open-source ai agents skill for AI coding assistants such as Claude Code, Codex CLI, and ChatGPT, built by Ricky-7-Yan. Enterprise audit agent workspace with Agentic RAG, governed tool use, evaluation harness, memory, and human-review delivery workflows. It has 1,161 GitHub stars.
intelligent-audit-system returned warnings in SkillsLLM's automated security scan. It has no critical vulnerabilities, but review the flagged issues in the Security Report section before adding it to your workflow.
Clone the repository with "git clone https://github.com/Ricky-7-Yan/intelligent-audit-system" and add it to your Claude Code skills directory (see the Installation section above).
intelligent-audit-system is primarily written in Python. It is open-source under Ricky-7-Yan on GitHub, so you can review or fork the full source.
Yes. SkillsLLM lists many other AI Agents skills you can browse and compare side by side. Open the AI Agents category from the badge at the top of this page, or use the Related Skills and comparison links further down to weigh intelligent-audit-system against similar tools.
No comments yet. Be the first to share your thoughts!
Requires a passing catalog security scan. Resolve the flagged issues and resubmit to enable featuring.

很多 Agent 项目停留在聊天框或 Demo。AuditPilot 选择一个更“硬”的落地场景:企业审计交付。它需要证据、控制、风险、复核、报告和整改闭环,也天然要求可追溯、可回归、可解释。
AuditPilot 的目标不是替代审计师,而是把审计师反复执行的取证、映射、检查、补证和交付动作,组织成一套可治理的 Agent 工作流。
| 模块 | 能力 |
|---|---|
| Audit Workspace | 审计立项、控制矩阵、审计程序、抽样计划、发现、整改和交付包。 |
| Agent Runtime | Plan / Execute / Reflect、任务产物、失败恢复、安全门和运行指标。 |
| Agentic RAG | 知识写入、切块、检索、来源引用、证据质量门和缺证提示。 |
| Skills / MCP-style Tools | 工具 Schema、权限声明、TTL 缓存、熔断器、调用日志和工具指标。 |
| Memory | Working / Episodic / Profile Memory,保留多轮审计上下文。 |
| Evaluation Harness | Agent / RAG / Research 评测、基线对比、release gate 和 badcase 沉淀。 |
| Interview-driven Diagnostics | 将大厂 Agent 面经/JD 中常问的 Runtime、RAG、Tool、Memory、评测和生产化问题转成可执行诊断。 |
| Audit workspace | Agent runtime |
|---|---|
![]() |
![]() |
| Agent collaboration | Mobile overview |
|---|---|
![]() |
![]() |
Audit request
-> Hybrid Intent Router
-> Working + Episodic + Profile Memory
-> Planner / Evidence / Control / Risk / Compliance / Remediation Agents
-> Agentic RAG + Knowledge Graph + Skills / MCP-style Tools
-> Safety Gate + Reflection + Human Review
-> Audit Repository + Evaluation Baseline + Delivery Package
Design boundaries:
python -m venv .venv
.\.venv\Scripts\Activate.ps1
pip install -r requirements.txt
Copy-Item config.env.example config.env
python start.py
The system can run in deterministic fallback mode without model keys. Add an OpenAI-compatible provider only when you want LLM-enhanced analysis.
Do not commit real API keys.
config.env.config.env, .env*, runtime data, logs, model artifacts and local databases are ignored by Git..\.venv\Scripts\python.exe -m compileall -q agents services rag web tests scripts
.\.venv\Scripts\python.exe -m unittest discover -s tests -p "test_*.py"
Current tests cover intent routing, memory compaction, skill validation/cache, runtime reflection, evaluation regression, self-evolution harness, quality diagnostics and global search.
agents/ audit agent chain and control library
services/ runtime, memory, router, skills, safety, evaluation, delivery
rag/ agentic RAG and persisted knowledge base
knowledge_graph/ optional graph construction and Neo4j adapter
training/ evaluation and offline training entry points
web/ FastAPI application and APIs
templates/ + static/ product UI
tests/ regression tests
docs/ project archive, interview material and screenshots
data/ local runtime data, mostly ignored by Git