Agent skill

vendor-risk-scorer

Comprehensive supplier risk scoring skill with multi-dimensional risk assessment

View SKILL.md on GitHub Repository
Stars 514
Forks 31

Install this agent skill to your Project

npx add-skill https://github.com/a5c-ai/babysitter/tree/main/library/specializations/domains/business/supply-chain/skills/vendor-risk-scorer

Metadata

Additional technical details for this skill

domain
business
category
supplier-management
priority
medium
specialization
supply-chain

SKILL.md

Vendor Risk Scorer

Overview

The Vendor Risk Scorer provides comprehensive supplier risk assessment across multiple dimensions including financial, operational, geopolitical, compliance, and cyber security risks. It calculates weighted risk scores and assigns risk ratings to support informed supplier management decisions.

Capabilities

  • Financial Risk Assessment: Credit ratings, D&B scores, payment behavior
  • Operational Risk Evaluation: Capacity, quality systems, business continuity
  • Geopolitical Risk Scoring: Country risk, trade sanctions, political stability
  • Compliance Risk Assessment: Regulatory, ESG, industry standards
  • Cyber Security Risk Evaluation: Information security posture
  • Concentration Risk Analysis: Dependency and single-source risk
  • Weighted Risk Score Calculation: Configurable risk weighting
  • Risk Rating Assignment and Trending: Rating levels and trajectory

Input Schema

yaml
risk_scoring_request:
  supplier_id: string
  risk_data:
    financial:
      credit_rating: string
      duns_score: integer
      payment_history: object
      revenue_trend: string
    operational:
      capacity_utilization: float
      quality_certifications: array
      bcp_status: string
    geopolitical:
      country: string
      sanctions_status: string
      political_stability: float
    compliance:
      regulatory_violations: array
      esg_rating: string
      audit_findings: array
    cyber:
      security_certifications: array
      incident_history: array
  concentration_data:
    spend_percentage: float
    alternative_suppliers: integer
    switching_cost: string
  weighting_profile: object

Output Schema

yaml
risk_scoring_output:
  supplier_id: string
  assessment_date: date
  category_scores:
    financial_risk:
      score: float
      factors: array
      trend: string
    operational_risk:
      score: float
      factors: array
      trend: string
    geopolitical_risk:
      score: float
      factors: array
      trend: string
    compliance_risk:
      score: float
      factors: array
      trend: string
    cyber_risk:
      score: float
      factors: array
      trend: string
    concentration_risk:
      score: float
      factors: array
  composite_risk_score: float
  risk_rating: string             # Low, Medium, High, Critical
  risk_drivers: array
  mitigation_recommendations: array
  monitoring_frequency: string

Usage

Comprehensive Risk Assessment

Input: Supplier financial, operational, compliance data
Process: Score each risk dimension, calculate composite
Output: Overall risk rating with driver analysis

Financial Risk Monitoring

Input: Updated D&B data, credit rating changes
Process: Recalculate financial risk component
Output: Updated financial risk score with alerts

Concentration Risk Analysis

Input: Spend data, alternative supplier availability
Process: Assess single-source and dependency risks
Output: Concentration risk score with mitigation options

Integration Points

  • Risk Data Providers: D&B, Resilinc, EcoVadis
  • Credit Agencies: Credit rating feeds
  • Compliance Databases: Sanctions lists, regulatory databases
  • Tools/Libraries: Risk frameworks, scoring algorithms

Process Dependencies

  • Supply Chain Risk Assessment
  • Supplier Risk Monitoring and Early Warning
  • Supplier Evaluation and Selection

Best Practices

  1. Establish clear risk appetite thresholds
  2. Validate risk data sources regularly
  3. Include supplier self-assessment where appropriate
  4. Escalate high-risk ratings promptly
  5. Document risk mitigation actions
  6. Review risk weightings based on business priorities

Recommended Agent Skills

Expand your agent's capabilities with these related and highly-rated skills.

a5c-ai/babysitter

gsd-tools

Central utility skill for GSD operations. Provides config parsing, slug generation, timestamps, path operations, and orchestrates calls to other specialized skills. Acts as the unified entry point that the original gsd-tools.cjs provided via its lib/ modules (commands, config, core, init).

514 31
Explore
a5c-ai/babysitter

model-profile-resolution

Resolve model profile (quality/balanced/budget) at orchestration start and map agents to specific models. Enables cost/quality tradeoffs by selecting appropriate AI models for each agent role.

514 31
Explore
a5c-ai/babysitter

verification-suite

Plan structure validation, phase completeness checks, reference integrity verification, and artifact existence confirmation. Provides the structured verification layer ensuring GSD artifacts are well-formed and complete.

514 31
Explore
a5c-ai/babysitter

state-management

STATE.md reading, writing, and field-level updates. Provides cross-session state persistence via .planning/STATE.md with structured fields for current task, completed phases, blockers, decisions, and quick tasks.

514 31
Explore
a5c-ai/babysitter

git-integration

Git commit patterns, formats, and conventions for GSD methodology. Provides atomic commits per task, structured commit messages, planning file commits, branch management, and milestone tag operations.

514 31
Explore
a5c-ai/babysitter

frontmatter-parsing

YAML frontmatter parsing and manipulation for .planning/ documents. Provides read, write, update, query, and validation operations on frontmatter blocks in GSD markdown artifacts.

514 31
Explore

Didn't find tool you were looking for?

Be as detailed as possible for better results