Cybriq
@dougschaefer/cybriqv2026.05.29.1
Security Notice
This extension includes AI agent skills that can modify AI assistant behavior. Review the skill files before installing.
01README
Integrate with a CybrIQ (Sepio) asset-visibility / hardware-access-control platform over its REST + GraphQL API. Local-login bearer auth with vault-resolved credentials. Read the asset dashboard, inventory, device types, risk insights, switches, external scan engines (Netpollers), events, alarm destinations, policies, scopes, tags, and user attributes; create tags, user attributes, policies, and scopes; and reach any other endpoint through a generic authenticated passthrough.
02Release Notes
Add listScanEngines (Switches/NetPollers) for external scan-engine visibility; bundle the cybriq-connectivity-health workflow and the cybriq skill.
03Models
@dougschaefer/cybriqv2026.05.29.1cybriq/cybriq.ts
fn getStatus()
Authenticate (local login) and report account + license status. Read-only health check.
fn assetsOverview()
Fetch the asset dashboard summary (counts + risk breakdown) from transformerDataApi/assetsOverview.
fn listAssets(pageSize: number, pageNumber: number, sortBy: string, globalSearch: string)
List discovered assets (risk level, vendor, type, connection data) via the /sepio-data GraphQL layer.
| Argument | Type | Description |
|---|---|---|
| pageSize | number | Rows per page |
| pageNumber | number | 1-based page number |
| sortBy | string | Sort key, e.g. riskLevel_desc or lastSeen_desc |
| globalSearch | string | Free-text search across assets |
fn listDeviceTypes()
List the device-type distribution (asset categories with asset/risk counts) from transformerDataApi/assetsDistribuition.
fn analyzeRisks()
Risk-insights rollup: network port anomalies, vulnerable switches, and uncommon + vulnerable peripherals. Per-source detail is in `raw`.
fn listEvents(pageSize: number, pageNumber: number, minimumSeverity?: number, category?: string, globalSearch?: string)
List events from the event log (Events/GetEvents), with severity/category/search filters.
| Argument | Type | Description |
|---|---|---|
| pageSize | number | Rows per page |
| pageNumber | number | 1-based page number |
| minimumSeverity? | number | Minimum severity to include |
| category? | string | Filter by event category |
| globalSearch? | string | Free-text search |
fn listAlarmDestinations()
List configured alarm destinations / SIEM-syslog targets (Events/GetAlarmDests).
fn listPolicies()
List policy-engine policies (policyEngine/policy).
fn listScopes()
List scopes (scopes-api/scopes).
fn listTags()
List all tags (tagsApi/tags).
fn listUserAttributes(pageSize: number, pageNumber: number, globalSearch?: string)
List user attributes (UserAttributes), paginated.
| Argument | Type | Description |
|---|---|---|
| pageSize | number | Rows per page |
| pageNumber | number | 1-based page number |
| globalSearch? | string | Free-text search |
fn createTag(tagName: string)
Create a tag by name (tagsApi/tags/add-tag/{tagName}). Idempotent — already-exists converges on the existing tag. Mutating.
| Argument | Type | Description |
|---|---|---|
| tagName | string | Tag name to create |
fn addUserAttribute(field: string)
Create a user attribute (UserAttributes/AddUserAttribute). Mutating.
| Argument | Type | Description |
|---|---|---|
| field | string | User-attribute name/field to add |
fn createPolicy(policy: record)
Create a policy (policyEngine/policy). `policy` is a PolicyDto: name, description, ruleList[], matchCriteria[], defaultAction/defaultActionType, isActive, scopes[]. Mutating.
| Argument | Type | Description |
|---|---|---|
| policy | record | PolicyDto object |
fn createScope(scope: record)
Create a scope (scopes-api/scope). `scope` is a ScopeDto: name, matchCriteria[], agentMode. Mutating.
| Argument | Type | Description |
|---|---|---|
| scope | record | ScopeDto object |
fn listSwitches()
List switches Sepio sees on the network (Switches/Switches).
fn getSwitchPort(switchDataId: string, portDataId: string)
Get detail for one switch port (Switches/Switches/{switchDataId}/{portDataId}).
| Argument | Type | Description |
|---|---|---|
| switchDataId | string | Switch data id |
| portDataId | string | Port data id |
fn listScanEngines()
List external scan engines (Netpollers) the platform knows about, with connection status, admin/activation status, poller health (alive/total), version, CPU, utilization, and error count (Switches/NetPollers). Note: scan engines are NOT host agents — they do not appear in listAgents.
fn listPeripherals(pageSize: number, pageNumber: number, globalSearch?: string, severity?: string, sortBy: string)
List connected peripherals/endpoints with vendor and risk via the transformer view (transformerDataApi/GetPeripherals).
| Argument | Type | Description |
|---|---|---|
| pageSize | number | Rows per page |
| pageNumber | number | 1-based page number |
| globalSearch? | string | Free-text search |
| severity? | string | Filter by severity |
| sortBy | string | Sort key (required by this endpoint, e.g. severity_desc) |
fn getPeripheral(uuid: string)
Get detail for one peripheral by uuid (peripherals/{uuid}). Requires the agent peripherals API (agent-mode deployments); on agentless instances use getAsset.
| Argument | Type | Description |
|---|---|---|
| uuid | string | Peripheral uuid |
fn listAgents(pageSize: number, pageNumber: number, globalSearch?: string, status?: string)
List Sepio agents/collectors with status, version, and risk flags (agents).
| Argument | Type | Description |
|---|---|---|
| pageSize | number | Rows per page |
| pageNumber | number | 1-based page number |
| globalSearch? | string | Free-text search |
| status? | string | Filter by agent status |
fn getAgent(agentId: string)
Get detail for one agent by id (agents/agent/{agentId}).
| Argument | Type | Description |
|---|---|---|
| agentId | string | Agent id |
fn getAsset(assetId: string)
Full detail for one asset by id (fingerprint, connection, risk) via the /sepio-data GraphQL layer.
| Argument | Type | Description |
|---|---|---|
| assetId | string | Asset id (the `id` field from listAssets) |
fn listReports()
List stored report queries you can run (reportManagerApi/queries).
fn listReportDownloads()
List generated report downloads (reportManagerApi/available-downloads).
fn triggerReport(id: string, request?: record)
Trigger a stored report query to generate a download (reportManagerApi/trigger). `request` is a TriggerRequestViewRequest body. Mutating.
| Argument | Type | Description |
|---|---|---|
| id | string | Stored query id to trigger |
| request? | record | TriggerRequestViewRequest body |
fn apiRequest(method: enum, path: string, query?: record, body?: unknown)
Generic authenticated passthrough to any CybrIQ endpoint (all /prime/webui/* REST routes or /sepio-data). Logs in, attaches the bearer token, returns the JSON response.
| Argument | Type | Description |
|---|---|---|
| method | enum | HTTP method |
| path | string | Host-relative path (e.g. /prime/webui/Switches/Switches) or an absolute https URL |
| query? | record | Query-string parameters |
| body? | unknown | JSON request body for POST/PUT/PATCH (or a {operationName,query,variables} object for /sepio-data) |
Resources
status(1d)— Authenticated account + license status
assetsOverview(7d)— Asset dashboard summary: counts and risk breakdown
assets(7d)— A page of discovered assets from the GraphQL data layer
collection(7d)— Generic list/analysis result (device types, risks, events, alarms, policies, scopes, tags, user attributes)
mutationResult(30d)— Result of a create/update operation (tag, user attribute, policy, scope)
detail(7d)— Single-object drill-down detail (switch port, peripheral, agent, asset)
apiResult(7d)— Result of a generic authenticated API passthrough call
04Workflows
@dougschaefer/cybriq-connectivity-health7328bc9c-e489-4068-bb76-f2720b9ed3b2
Snapshot the health of a CybrIQ (Sepio) deployment: confirm authentication, list external scan engines (Netpollers) with their connection/activation status, capture every switch's polling/connection state, surface recent "Switch Unable to Connect" events, and pull the asset/risk overview. Read-only. Steps run sequentially because they target one model instance and would otherwise contend on the per-model lock. Pass the name of your @dougschaefer/cybriq model instance via the `instance` input.
snapshotRead-only CybrIQ connectivity + risk snapshot
1.auth${{ inputs.instance }}.getStatus— Authenticate and confirm account/license status
2.scan-engines${{ inputs.instance }}.listScanEngines— List external scan engines (Netpollers) and connection status
3.switches${{ inputs.instance }}.listSwitches— List switches with polling/connection data (lastSeen, swPollingStatus, pollingGroupName)
4.connectivity-events${{ inputs.instance }}.listEvents— Surface recent connectivity events (e.g. Switch Unable to Connect)
5.overview${{ inputs.instance }}.assetsOverview— Pull the asset/risk dashboard rollup
05Skills
cybriq1 file
06Previous Versions
2026.05.27.1May 27, 2026
Modernization: idempotency, live pre-flight checks, sensitive-field marking, resource-write fixes per audit. No breaking API changes.
2026.05.22.4May 22, 2026
2026.05.22.3May 22, 2026
Modified 1 models
2026.05.22.2May 22, 2026
07Stats
A
100 / 100
Downloads
1
Archive size
24.4 KB
- Has README or module doc2/2earned
- README has a code example1/1earned
- README is substantive1/1earned
- Most symbols documented1/1earned
- No slow types1/1earned
- Dependencies pass trust audit2/2earned
- Has description1/1earned
- Platform support declared (or universal)2/2earned
- License declared1/1earned
- Verified public repository2/2earned
08Platforms
09Labels