Is Auditoria Skills free?

Yes, Auditoria Skills is free to use.

How do I install Auditoria Skills?

Auditoria Skills is a local plugin. Install it using PyPI package: auditoria-skills-mcp and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

Is Auditoria Skills safe to use?

Auditoria Skills scored 5.2/10 (moderate risk) in MCP Marketplace's automated security scan. It has 3 high or critical findings to review. It's listed, but review the security report on this page before installing.

What AI apps work with Auditoria Skills?

Auditoria Skills uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Auditoria Skills MCP Server

by Marcelinero

Developer ToolsModerate5.2MCP RegistryLocal

Free

Server data from the Official MCP Registry

20 SKILLs de auditoría interna para agentes de IA según IIA, COSO, NIST, ISO, COBIT y ACFE.

About

20 SKILLs de auditoría interna para agentes de IA según IIA, COSO, NIST, ISO, COBIT y ACFE.

Security Report

5.2

Moderate5.2Moderate Risk

This is a well-structured MCP server that exposes read-only audit SKILLs with appropriate path validation and input handling. The codebase demonstrates good security practices including path traversal prevention, proper error handling, and no external network calls or credential management. Permissions are minimal and appropriate for the stated purpose of serving static audit content. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue.

5 files analyzed · 7 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

File System Read

Reads files on your machine. Normal for tools that analyze or process local data.

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-marcelinero-auditoria-skills": {
      "args": [
        "auditoria-skills-mcp"
      ],
      "command": "uvx"
    }
  }
}

Documentation

View on GitHub

From the project's GitHub README.

auditoria-skills-mcp

mcp-name: io.github.marcelinero/auditoria-skills

Model Context Protocol (MCP) server exposing 20 internal-audit SKILLs grounded in globally accepted standards (IIA, COSO, NIST, ISO, IFRS, COBIT, ACFE). SKILLs are written in Spanish — the working language of the target audience.

Zero-install — one command, no repo cloning, no path configuration.

Quickstart

Claude Desktop

Add to claude_desktop_config.json:

macOS: ~/Library/Application Support/Claude/claude_desktop_config.json
Windows: %APPDATA%\Claude\claude_desktop_config.json

{
  "mcpServers": {
    "auditoria-skills": {
      "command": "uvx",
      "args": ["auditoria-skills-mcp"]
    }
  }
}

Restart Claude Desktop. No repo cloning, no absolute paths.

Claude Code (CLI)

claude mcp add auditoria-skills -- uvx auditoria-skills-mcp

Prerequisite: `uv`

# macOS / Linux
curl -LsSf https://astral.sh/uv/install.sh | sh

# Windows (PowerShell)
powershell -ExecutionPolicy ByPass -c "irm https://astral.sh/uv/install.ps1 | iex"

Mantener actualizado

uvx resuelve la versión en cada ejecución desde PyPI. Para forzar la última versión publicada:

# Forzar última versión (recomendado tras una actualización de marcos)
uvx auditoria-skills-mcp@latest

# Verificar la versión instalada en caché
uvx auditoria-skills-mcp --version

Cuando un marco de referencia se revisa (COSO, NIST, IIA, ISO…), se publica una nueva versión en PyPI y queda registrada en el CHANGELOG. Si detectas que un estándar fue actualizado y el SKILL no lo refleja, abre un issue — no hace falta escribir código.

Personalizar para tu entidad

Los SKILLs son Markdown + YAML — editables, versionables, y reutilizables.

Opción 1: Adaptar localmente (sin PRs)

# Clona el repo
git clone https://github.com/marcelinero/auditoria-skills-mcp.git
cd auditoria-skills-mcp

# Edita los SKILLs en ./auditoria_skills_mcp/data/skills/
# Ejemplo: ajusta matriz de controles en auditoria_skills_mcp/data/skills/procesos/evaluacion-controles/SKILL.md

# Ejecuta localmente
uv run python -m auditoria_skills_mcp

Esta es tu copia adaptada a tu contexto (matriz interna, normativa local, procedimientos propios). No requiere aprobación ni PRs.

Opción 2: Proponer mejoras genéricas (con PRs)

Si mejoras algo reutilizable para otros auditores, abre un Pull Request:

Claridad o completitud de un SKILL.
Actualización por cambio en estándar (COSO 2023, NIST 2.0, ISO nuevo).
Nuevo SKILL alineado con un estándar global.

Ver CONTRIBUTING.md para detalles.

Ciclo de vida de los SKILLs

Nivel	Qué es	Quién	Control
Canónico	Versión oficial en PyPI	Mantendedor	Centralizado, sigue estándares globales
Local	Adaptado a tu entidad	Tú	Descentralizado, sin tocar lo común
Comunitario	Mejoras genéricas aceptadas	PR + revisión	Se fusionan a `main` si pasan criterios

Available tools

Tool	Description
`list_skills`	List all 20 SKILLs with type, category, and anchor standards
`get_skill`	Load the full content of a SKILL by name
`search_skills`	Filter by type (`proceso`/`especialidad`) and/or framework (ISO, NIST, IIA…)

Included SKILLs

Process SKILLs — cross-cutting (8)

SKILL	Anchor standards
`planeacion-basada-riesgos`	IIA, COSO ERM, ISO 31000
`evaluacion-controles`	COSO IC-IF, IIA, SOX 404
`muestreo`	NIA/ISA 530, AICPA
`papeles-trabajo`	NIA/ISA 230, IIA
`comunicacion-hallazgos`	IIA Standards
`seguimiento-recomendaciones`	IIA Standards
`aseguramiento-calidad`	IIA, IIA QA Manual
`analitica-datos`	GTAG 16, ISACA

Specialty SKILLs — by domain (12)

SKILL	Anchor standards
`auditoria-financiera`	NIA/ISA, NIIF/IFRS, SOX, COSO IC-IF
`auditoria-operativa`	IIA, ISO 9001, INTOSAI
`auditoria-tecnologia-informacion`	COBIT 2019, ITAF, ISO 27001
`auditoria-forense`	ACFE, NIA 240, FATF
`auditoria-cumplimiento`	ISO 37301, ISO 37001
`auditoria-esg-sostenibilidad`	ISSB IFRS S1/S2, GRI, TCFD, SASB
`auditoria-ciberseguridad`	NIST CSF 2.0, ISO 27001/27002, CIS
`auditoria-inteligencia-artificial`	ISO/IEC 42001, NIST AI RMF, EU AI Act
`auditoria-calidad`	ISO 9001, ISO 19011
`auditoria-ambiental`	ISO 14001, ISO 14064, GHG Protocol
`auditoria-gestion-desempeno`	IIA, INTOSAI ISSAI, COSO ERM
`auditoria-continua`	GTAG 3, AICPA, ISACA

Usage examples

Load the auditoria-ciberseguridad SKILL and help me plan
an audit based on NIST CSF 2.0.

Which SKILLs in the catalog apply to ISO standards?

I'm doing a compliance audit for ISO 37301.
Load the relevant SKILLs and build the engagement plan.

Content repository

SKILLs live in the main repository: github.com/marcelinero/auditoria-skills

Issues and contributions (new SKILLs, framework updates) → this repository.

Acerca de / About

Español: Servidor MCP con 20 SKILLs de auditoría interna redactadas en español neutro, ancladas a normas globales (IIA, COSO, NIST, ISO, IFRS, COBIT, ACFE). Cubre procesos transversales (planeación, muestreo, papeles de trabajo) y especialidades (financiera, TI, forense, ESG, ciberseguridad, IA y más).

License

CC BY-SA 4.0

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Fetch

Free

by Modelcontextprotocol · Developer Tools

Web content fetching and conversion for efficient LLM usage

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

mcp-creator-python

Free

by mcp-marketplace · Developer Tools

Create, build, and publish Python MCP servers to PyPI — conversationally.

Auditoria Skills MCP Server

About

Security Report

Findings (7)Action required

Permissions Required

How to Install

Documentation

auditoria-skills-mcp

Quickstart

Claude Desktop

Claude Code (CLI)

Prerequisite: `uv`

Mantener actualizado

Personalizar para tu entidad

Opción 1: Adaptar localmente (sin PRs)

Opción 2: Proponer mejoras genéricas (con PRs)

Ciclo de vida de los SKILLs

Available tools

Included SKILLs

Process SKILLs — cross-cutting (8)

Specialty SKILLs — by domain (12)

Usage examples

Content repository

Acerca de / About

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Fetch

Toleno

mcp-creator-python

MarkItDown

FinAgent

mcp-creator-typescript

Auditoria Skills MCP Server

About

Security Report

Findings (7)Action required

Permissions Required

How to Install

Documentation

auditoria-skills-mcp

Quickstart

Claude Desktop

Claude Code (CLI)

Prerequisite: uv

Mantener actualizado

Personalizar para tu entidad

Opción 1: Adaptar localmente (sin PRs)

Opción 2: Proponer mejoras genéricas (con PRs)

Ciclo de vida de los SKILLs

Available tools

Included SKILLs

Process SKILLs — cross-cutting (8)

Specialty SKILLs — by domain (12)

Usage examples

Content repository

Acerca de / About

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Fetch

Toleno

mcp-creator-python

MarkItDown

FinAgent

mcp-creator-typescript

Prerequisite: `uv`