Security Audit Automation

This tutorial runs a read-first security evidence pass for compliance and operational reviews.

Copy-paste prompt

Run a mittwald security audit snapshot for my account and organization.

Include:
1) API token inventory,
2) SSH key inventory,
3) active sessions,
4) organization membership overview,
5) certificate expiration risks.

Read-only only. Return findings with severity and resource IDs.

What the agent will do automatically

Collect token/key/session/membership/certificate data.
Highlight stale or risky items.
Produce a severity-ranked report.

What you (human) must still do

Decide remediation priorities.
Approve any revocation/removal follow-up work.
Store evidence in your compliance system.

Likely questions the agent will ask and good answers

What time range for session review? -> Last 30 days.
Should unknown sessions be revoked now? -> No, report-only for this pass.
Which org is in scope? -> Use organization <org-id>.

Verification prompt

Re-run the same audit queries and confirm the final report includes all token, key, session, membership, and certificate IDs.

Rollback/cleanup prompt

No rollback is required for read-only auditing. If any write action occurred by mistake, list affected IDs and propose corrective steps.

Resume after failure

Resume the audit from the first incomplete security category and preserve completed categories.

Copy-paste prompt​

What the agent will do automatically​

What you (human) must still do​

Likely questions the agent will ask and good answers​

Verification prompt​

Rollback/cleanup prompt​

Resume after failure​

Copy-paste prompt

What the agent will do automatically

What you (human) must still do

Likely questions the agent will ask and good answers

Verification prompt

Rollback/cleanup prompt

Resume after failure