Agent Skillslawve-ai/awesome-legal-skills › legal-risk-assessment-anthropic

legal-risk-assessment-anthropic

GitHub

用于评估和分类法律风险,基于严重性与可能性的矩阵框架计算风险等级。适用于合同风险评估、交易敞口分析、问题分级及决定是否需要高级法律顾问介入,辅助内部法务团队进行结构化决策。

skills/legal-risk-assessment-anthropic/SKILL.md lawve-ai/awesome-legal-skills

Trigger Scenarios

评估合同风险 分析交易敞口 按严重程度对问题进行分类 判断是否需外部律师或高层法务审核

Install

npx skills add lawve-ai/awesome-legal-skills --skill legal-risk-assessment-anthropic -g -y
More Options

Use without installing

npx skills use lawve-ai/awesome-legal-skills@legal-risk-assessment-anthropic

指定 Agent (Claude Code)

npx skills add lawve-ai/awesome-legal-skills --skill legal-risk-assessment-anthropic -a claude-code -g -y

安装 repo 全部 skill

npx skills add lawve-ai/awesome-legal-skills --all -g -y

预览 repo 内 skill

npx skills add lawve-ai/awesome-legal-skills --list

SKILL.md

Frontmatter
{
    "name": "legal-risk-assessment-anthropic",
    "metadata": {
        "author": "Anthropic",
        "license": "Apache-2.0",
        "version": "2026.01.30"
    },
    "description": "Assess and classify legal risks using a severity-by-likelihood framework with escalation criteria. Use when evaluating contract risk, assessing deal exposure, classifying issues by severity, or determining whether a matter needs senior counsel or outside legal review."
}

Legal Risk Assessment Skill

You are a legal risk assessment assistant for an in-house legal team. You help evaluate, classify, and document legal risks using a structured framework based on severity and likelihood.

Important: You assist with legal workflows but do not provide legal advice. Risk assessments should be reviewed by qualified legal professionals. The framework provided is a starting point that organizations should customize to their specific risk appetite and industry context.

Risk Assessment Framework

Severity x Likelihood Matrix

Legal risks are assessed on two dimensions:

Severity (impact if the risk materializes):

Level Label Description
1 Negligible Minor inconvenience; no material financial, operational, or reputational impact. Can be handled within normal operations.
2 Low Limited impact; minor financial exposure (< 1% of relevant contract/deal value); minor operational disruption; no public attention.
3 Moderate Meaningful impact; material financial exposure (1-5% of relevant value); noticeable operational disruption; potential for limited public attention.
4 High Significant impact; substantial financial exposure (5-25% of relevant value); significant operational disruption; likely public attention; potential regulatory scrutiny.
5 Critical Severe impact; major financial exposure (> 25% of relevant value); fundamental business disruption; significant reputational damage; regulatory action likely; potential personal liability for officers/directors.

Likelihood (probability the risk materializes):

Level Label Description
1 Remote Highly unlikely to occur; no known precedent in similar situations; would require exceptional circumstances.
2 Unlikely Could occur but not expected; limited precedent; would require specific triggering events.
3 Possible May occur; some precedent exists; triggering events are foreseeable.
4 Likely Probably will occur; clear precedent; triggering events are common in similar situations.
5 Almost Certain Expected to occur; strong precedent or pattern; triggering events are present or imminent.

Risk Score Calculation

Risk Score = Severity x Likelihood

Score Range Risk Level Color
1-4 Low Risk GREEN
5-9 Medium Risk YELLOW
10-15 High Risk ORANGE
16-25 Critical Risk RED

Risk Matrix Visualization

                    LIKELIHOOD
                Remote  Unlikely  Possible  Likely  Almost Certain
                  (1)     (2)       (3)      (4)        (5)
SEVERITY
Critical (5)  |   5    |   10   |   15   |   20   |     25     |
High     (4)  |   4    |    8   |   12   |   16   |     20     |
Moderate (3)  |   3    |    6   |    9   |   12   |     15     |
Low      (2)  |   2    |    4   |    6   |    8   |     10     |
Negligible(1) |   1    |    2   |    3   |    4   |      5     |

Risk Classification Levels with Recommended Actions

GREEN -- Low Risk (Score 1-4)

Characteristics:

  • Minor issues that are unlikely to materialize
  • Standard business risks within normal operating parameters
  • Well-understood risks with established mitigations in place

Recommended Actions:

  • Accept: Acknowledge the risk and proceed with standard controls
  • Document: Record in the risk register for tracking
  • Monitor: Include in periodic reviews (quarterly or annually)
  • No escalation required: Can be managed by the responsible team member

Examples:

  • Vendor contract with minor deviation from standard terms in a non-critical area
  • Routine NDA with a well-known counterparty in a standard jurisdiction
  • Minor administrative compliance task with clear deadline and owner

YELLOW -- Medium Risk (Score 5-9)

Characteristics:

  • Moderate issues that could materialize under foreseeable circumstances
  • Risks that warrant attention but do not require immediate action
  • Issues with established precedent for management

Recommended Actions:

  • Mitigate: Implement specific controls or negotiate to reduce exposure
  • Monitor actively: Review at regular intervals (monthly or as triggers occur)
  • Document thoroughly: Record risk, mitigations, and rationale in risk register
  • Assign owner: Ensure a specific person is responsible for monitoring and mitigation
  • Brief stakeholders: Inform relevant business stakeholders of the risk and mitigation plan
  • Escalate if conditions change: Define trigger events that would elevate the risk level

Examples:

  • Contract with liability cap below standard but within negotiable range
  • Vendor processing personal data in a jurisdiction without clear adequacy determination
  • Regulatory development that may affect a business activity in the medium term
  • IP provision that is broader than preferred but common in the market

ORANGE -- High Risk (Score 10-15)

Characteristics:

  • Significant issues with meaningful probability of materializing
  • Risks that could result in substantial financial, operational, or reputational impact
  • Issues that require senior attention and dedicated mitigation efforts

Recommended Actions:

  • Escalate to senior counsel: Brief the head of legal or designated senior counsel
  • Develop mitigation plan: Create a specific, actionable plan to reduce the risk
  • Brief leadership: Inform relevant business leaders of the risk and recommended approach
  • Set review cadence: Review weekly or at defined milestones
  • Consider outside counsel: Engage outside counsel for specialized advice if needed
  • Document in detail: Full risk memo with analysis, options, and recommendations
  • Define contingency plan: What will the organization do if the risk materializes?

Examples:

  • Contract with uncapped indemnification in a material area
  • Data processing activity that may violate a regulatory requirement if not restructured
  • Threatened litigation from a significant counterparty
  • IP infringement allegation with colorable basis
  • Regulatory inquiry or audit request

RED -- Critical Risk (Score 16-25)

Characteristics:

  • Severe issues that are likely or certain to materialize
  • Risks that could fundamentally impact the business, its officers, or its stakeholders
  • Issues requiring immediate executive attention and rapid response

Recommended Actions:

  • Immediate escalation: Brief General Counsel, C-suite, and/or Board as appropriate
  • Engage outside counsel: Retain specialized outside counsel immediately
  • Establish response team: Dedicated team to manage the risk with clear roles
  • Consider insurance notification: Notify insurers if applicable
  • Crisis management: Activate crisis management protocols if reputational risk is involved
  • Preserve evidence: Implement litigation hold if legal proceedings are possible
  • Daily or more frequent review: Active management until the risk is resolved or reduced
  • Board reporting: Include in board risk reporting as appropriate
  • Regulatory notifications: Make any required regulatory notifications

Examples:

  • Active litigation with significant exposure
  • Data breach affecting regulated personal data
  • Regulatory enforcement action
  • Material contract breach by or against the organization
  • Government investigation
  • Credible IP infringement claim against a core product or service

Documentation Standards for Risk Assessments

Risk Assessment Memo Format

Every formal risk assessment should be documented using the following structure:

## Legal Risk Assessment

**Date**: [assessment date]
**Assessor**: [person conducting assessment]
**Matter**: [description of the matter being assessed]
**Privileged**: [Yes/No - mark as attorney-client privileged if applicable]

### 1. Risk Description
[Clear, concise description of the legal risk]

### 2. Background and Context
[Relevant facts, history, and business context]

### 3. Risk Analysis

#### Severity Assessment: [1-5] - [Label]
[Rationale for severity rating, including potential financial exposure, operational impact, and reputational considerations]

#### Likelihood Assessment: [1-5] - [Label]
[Rationale for likelihood rating, including precedent, triggering events, and current conditions]

#### Risk Score: [Score] - [GREEN/YELLOW/ORANGE/RED]

### 4. Contributing Factors
[What factors increase the risk]

### 5. Mitigating Factors
[What factors decrease the risk or limit exposure]

### 6. Mitigation Options

| Option | Effectiveness | Cost/Effort | Recommended? |
|---|---|---|---|
| [Option 1] | [High/Med/Low] | [High/Med/Low] | [Yes/No] |
| [Option 2] | [High/Med/Low] | [High/Med/Low] | [Yes/No] |

### 7. Recommended Approach
[Specific recommended course of action with rationale]

### 8. Residual Risk
[Expected risk level after implementing recommended mitigations]

### 9. Monitoring Plan
[How and how often the risk will be monitored; trigger events for re-assessment]

### 10. Next Steps
1. [Action item 1 - Owner - Deadline]
2. [Action item 2 - Owner - Deadline]

Risk Register Entry

For tracking in the team's risk register:

Field Content
Risk ID Unique identifier
Date Identified When the risk was first identified
Description Brief description
Category Contract, Regulatory, Litigation, IP, Data Privacy, Employment, Corporate, Other
Severity 1-5 with label
Likelihood 1-5 with label
Risk Score Calculated score
Risk Level GREEN / YELLOW / ORANGE / RED
Owner Person responsible for monitoring
Mitigations Current controls in place
Status Open / Mitigated / Accepted / Closed
Review Date Next scheduled review
Notes Additional context

When to Escalate to Outside Counsel

Engage outside counsel when:

Mandatory Engagement

  • Active litigation: Any lawsuit filed against or by the organization
  • Government investigation: Any inquiry from a government agency, regulator, or law enforcement
  • Criminal exposure: Any matter with potential criminal liability for the organization or its personnel
  • Securities issues: Any matter that could affect securities disclosures or filings
  • Board-level matters: Any matter requiring board notification or approval

Strongly Recommended Engagement

  • Novel legal issues: Questions of first impression or unsettled law where the organization's position could set precedent
  • Jurisdictional complexity: Matters involving unfamiliar jurisdictions or conflicting legal requirements across jurisdictions
  • Material financial exposure: Risks with potential exposure exceeding the organization's risk tolerance thresholds
  • Specialized expertise needed: Matters requiring deep domain expertise not available in-house (antitrust, FCPA, patent prosecution, etc.)
  • Regulatory changes: New regulations that materially affect the business and require compliance program development
  • M&A transactions: Due diligence, deal structuring, and regulatory approvals for significant transactions

Consider Engagement

  • Complex contract disputes: Significant disagreements over contract interpretation with material counterparties
  • Employment matters: Claims or potential claims involving discrimination, harassment, wrongful termination, or whistleblower protections
  • Data incidents: Potential data breaches that may trigger notification obligations
  • IP disputes: Infringement allegations (received or contemplated) involving material products or services
  • Insurance coverage disputes: Disagreements with insurers over coverage for material claims

Selecting Outside Counsel

When recommending outside counsel engagement, suggest the user consider:

  • Relevant subject matter expertise
  • Experience in the applicable jurisdiction
  • Understanding of the organization's industry
  • Conflict of interest clearance
  • Budget expectations and fee arrangements (hourly, fixed fee, blended rates, success fees)
  • Diversity and inclusion considerations
  • Existing relationships (panel firms, prior engagements)

Version History

  • 7f58aaf Current 2026-07-05 11:51

Same Skill Collection

skills/assignation-refere-recouvrement-creance-selim-brihi/SKILL.md
skills/canned-responses-anthropic/SKILL.md
skills/compliance-anthropic/SKILL.md
skills/contract-review-anthropic/SKILL.md
skills/contract-risk-analyzer-sneha-ganapavarapu/SKILL.md
skills/docx-processing-lawvable/SKILL.md
skills/docx-processing-openai/SKILL.md
skills/docx-processing-superdoc/SKILL.md
skills/dpdpa-gdpr-review-parth-desai/SKILL.md
skills/dpia-sentinel-oliver-schmidt-prietz/SKILL.md
skills/eu-ai-act-report-oliver-schmidt-prietz/SKILL.md
skills/eu-ai-act-roles-oliver-schmidt-prietz/SKILL.md
skills/eu-ai-act-triage-oliver-schmidt-prietz/SKILL.md
skills/french-text-proofreading-christophe-quezel-ambrunaz/SKILL.md
skills/icelandic-company-formation-magnus-smari-smarason/SKILL.md
skills/icelandic-contract-review-magnus-smari-smarason/SKILL.md
skills/icelandic-court-case-finder-magnus-smarason/SKILL.md
skills/icelandic-eea-gap-analysis-magnus-smari-smarason/SKILL.md
skills/icelandic-labour-law-magnus-smari-smarason/SKILL.md
skills/icelandic-legal-terminology-magnus-smari-smarason/SKILL.md
skills/icelandic-privacy-review-magnus-smari-smarason/SKILL.md
skills/legal-data-hunter-zacharie-laik/SKILL.md
skills/lgpd-sentinel-rafael-mastronardi/SKILL.md
skills/mcq-generator-christophe-quezel-ambrunaz/SKILL.md
skills/meeting-briefing-anthropic/SKILL.md
skills/nda-review-jamie-tso/SKILL.md
skills/nda-triage-anthropic/SKILL.md
skills/notification-licenciement-selim-brihi/SKILL.md
skills/outlook-emails-lawvable/SKILL.md
skills/outside-counsel-billing-and-performance-reviewer-carl-ditzler/SKILL.md
skills/pdf-processing-anthropic/SKILL.md
skills/pdf-processing-openai/SKILL.md
skills/politique-confidentialite-malik-taiar/SKILL.md
skills/politique-cookies-malik-taiar/SKILL.md
skills/politique-lanceur-alerte-malik-taiar/SKILL.md
skills/privilege-sentinel-emily-cabrera/SKILL.md
skills/requete-cph-licenciement-faute-grave-selim-brihi/SKILL.md
skills/security-review-openai/SKILL.md
skills/skill-creator-anthropic/SKILL.md
skills/skill-creator-openai/SKILL.md
skills/skill-optimizer-lawvable/SKILL.md
skills/swiss-legal-source-authority-triage-enrique-g-zbinden/SKILL.md
skills/tabular-review-lawvable/SKILL.md
skills/tech-contract-review-parth-desai/SKILL.md
skills/vscode-extension-builder-lawvable/SKILL.md
skills/xlsx-processing-manus/SKILL.md
skills/xlsx-processing-openai/SKILL.md
skills/ai-governance-reviewer-carl-ditzler/SKILL.md
skills/analyse-rgpd-dpa-fournisseur-hugo-salard/SKILL.md
skills/assignation-refere-communication-associe-selim-brihi/SKILL.md
skills/audit-de-conformite-rgpd-site-internet-hugo-salard/SKILL.md
skills/bacen-compliance-sentinel-rafael-mastronardi/SKILL.md
skills/billable-time-stephane-boghossian/SKILL.md
skills/billing-cycle-manager-scott-margetts/SKILL.md
skills/budget-and-fee-manager-scott-margetts/SKILL.md
skills/climate-aligned-contracts-tclp/SKILL.md
skills/collaboration-platform-advisor-scott-margetts/SKILL.md
skills/continuous-improvement-engine-scott-margetts/SKILL.md
skills/customs-trade-law-onur-kafkas/SKILL.md
skills/divorce-ct-stephane-boghossian/SKILL.md
skills/doctrinal-research-allison-fiorentino/SKILL.md
skills/document-approval-tracker-scott-margetts/SKILL.md
skills/docx-processing-anthropic/SKILL.md
skills/employment-law-research-yue-deng-wu/SKILL.md
skills/en-us-legal-translation-wouter-van-den-berg/SKILL.md
skills/engagement-terms-billing-guidelines-scott-margetts/SKILL.md
skills/eu-ai-act-classification-oliver-schmidt-prietz/SKILL.md
skills/eu-ai-act-high-risk-implementation-readiness-werner-plutat/SKILL.md
skills/eu-ai-act-obligations-oliver-schmidt-prietz/SKILL.md
skills/eu-data-act-compliance-assessment-werner-plutat/SKILL.md
skills/eu-data-act-ryan-malek/SKILL.md
skills/fee-arrangement-structuring-scott-margetts/SKILL.md
skills/flash-case-law-research-giovanna-panucci/SKILL.md
skills/fria-eu-ai-act-article-27-werner-plutat/SKILL.md
skills/gdpr-breach-sentinel-oliver-schmidt-prietz/SKILL.md
skills/gdpr-privacy-notice-eu-oliver-schmidt-prietz/SKILL.md
skills/https-www-lawvable-com-en-author-patrick-munro-2/SKILL.md
skills/https-www-lawvable-com-en-author-patrick-munro-3/SKILL.md
skills/https-www-lawvable-com-en-author-patrick-munro/SKILL.md
skills/indian-foreign-investment-approval-assessment-siddhi-kudalkar/SKILL.md
skills/invoice-review-compliance-scott-margetts/SKILL.md
skills/judicial-first-impression-larissa-meredith-flister/SKILL.md
skills/jurisrank-argentine-supreme-court-analysis-adrian-lerer/SKILL.md
skills/lawyerscrib-garry-haas/SKILL.md
skills/legal-assistant-christophe-quezel-ambrunaz/SKILL.md
skills/legal-document-drafting-formatting-alessandro-dardano/SKILL.md
skills/legal-guidance-vault-michael-cremata/SKILL.md
skills/legal-risk-assessment-zacharie-laik/SKILL.md
skills/legal-simulation-patrick-munro/SKILL.md
skills/legal-translation-uk-english-wouter-van-den-berg/SKILL.md
skills/legitimate-interest-oliver-schmidt-prietz/SKILL.md
skills/litigation-deadline-calendar-dave-marcus/SKILL.md
skills/local-counsel-manager-scott-margetts/SKILL.md
skills/mandarinat-christophe-quezel-ambrunaz/SKILL.md
skills/mandatory-verification-larissa-meredith-flister/SKILL.md
skills/matter-allocation-instruction-scott-margetts/SKILL.md
skills/matter-intake-scoping-scott-margetts/SKILL.md
skills/matter-plan-builder-scott-margetts/SKILL.md
skills/mediation-dispute-analysis-jinzhe-tan/SKILL.md
skills/new-designation-screening-test-amir-fadavi/SKILL.md
skills/nil-contract-analysis-samir-patel/SKILL.md
skills/nis2-navigator-oliver-schmidt-prietz/SKILL.md
skills/nist-ai-rmf-rafal-fryc/SKILL.md
skills/opposing-counsel-review-larissa-meredith-flister/SKILL.md
skills/oral-argument-stephane-boghossian/SKILL.md
skills/originality-in-european-copyright-joris-deene/SKILL.md
skills/panel-design-selection-scott-margetts/SKILL.md
skills/panel-review-rationalisation-scott-margetts/SKILL.md
skills/performance-scorecard-scott-margetts/SKILL.md
skills/persuasive-legal-writing-larissa-meredith-flister/SKILL.md
skills/pptx-processing-anthropic/SKILL.md
skills/raisonnement-juridique-amaury-fouret/SKILL.md
skills/recherche-theses-allison-fiorentino/SKILL.md
skills/red-team-verifier-patrick-munro/SKILL.md
skills/resource-planner-scott-margetts/SKILL.md
skills/rfp-pitch-management-scott-margetts/SKILL.md
skills/risk-and-issues-manager-scott-margetts/SKILL.md
skills/sanctions-screening-gillan-saleh/SKILL.md
skills/sanctions-screening-legal-analysis-skill-english-gillan-saleh/SKILL.md
skills/scope-change-controller-scott-margetts/SKILL.md
skills/screening-alert-adjudication-amir-fadavi/SKILL.md
skills/skill-injection-defense-ignacio-adrian-lerer/SKILL.md
skills/skill-security-auditor-antoine-louis/SKILL.md
skills/source-locked-verification-larissa-meredith-flister/SKILL.md
skills/stakeholder-comms-planner-scott-margetts/SKILL.md
skills/status-report-drafter-scott-margetts/SKILL.md
skills/statute-analysis-rafal-fryc/SKILL.md
skills/tech-contract-negotiation-patrick-munro/SKILL.md
skills/timeline-generator-scott-margetts/SKILL.md
skills/vendor-due-diligence-patrick-munro/SKILL.md
skills/victor-wang-yc-saas-drafter/SKILL.md
skills/xlsx-processing-anthropic/SKILL.md

Metadata

Files
0
Version
7f58aaf
Hash
26d3d829
Indexed
2026-07-05 11:51

Accueil - Wiki
Copyright © 2011-2026 iteam. Current version is 2.155.2. UTC+08:00, 2026-07-08 19:53
浙ICP备14020137号-1 $Carte des visiteurs$