Agent → Routine Catalog
The advanced workflows shipped so far were all
converted from existing msp-claude-plugins subagents. This page classifies the
whole agent library — every subagent in the repository — by how well it fits
the Claude-managed scheduled-routine pattern: a cron, a set of MCP gateway connectors, and a
prompt, with no servers to run. It is the backlog the next conversion batches are picked from.
The four archetypes
A scheduled routine is triggered by a clock, runs unattended, and surfaces a result to a human. That shape fits some agents cleanly and fights others. Every agent sorts into one of four archetypes:
- A — Scheduled reporter / auditor / scorer. Read-mostly, produces a periodic report. The cleanest routine fit: a cron is exactly the right trigger.
- B — Triage / queue manager. Makes bounded writes and uses a status transition as an idempotency guard — the way the Autotask Ticket Triage agent advances a ticket to In Progress so a rerun skips it. Fits as a routine.
- C — Investigation. Event-triggered, deep, human-in-the-loop. A cron is the wrong trigger — these run when something fires, not on a schedule. Does not fit a routine.
- D — Remediation / provisioning. Makes consequential writes and needs human input mid-task — offboarding, deployment, quoting. A poor unattended fit. Does not fit a routine.
The routine-fit verdict in each table summarises this: ✅ fits (clean — most A and B), ⚠️ fits with caveats (workable but needs scoping or a narrowed prompt), ❌ wrong fit (a routine is the wrong tool — most C and D). The connector(s) column lists the MCP gateway connectors a routine version would need; the cadence column is a suggested cron interval.
Archetype A — Scheduled reporters, auditors & scorers
Read-mostly agents that produce a periodic report. The cleanest routine fits — a cron is exactly the right trigger and the only write is delivering the report.
| Agent | Plugin | Fit | Connector(s) | Cadence | Note |
|---|---|---|---|---|---|
| threat-report-generator | abnormal-security | ✅ | abnormal | monthly | Portfolio threat-trend rollup; clean reporter. |
| customer-health-scorer | atera | ✅ | atera | weekly | Scores client health; pure scorer. |
| sla-uptime-reporter | betterstack | ✅ | betterstack | monthly | SLA achievement report; clean reporter. |
| exposure-analyst | blackpoint | ✅ | blackpoint | weekly | Attack-surface / exposure rollup; reporter. |
| compliance-reporter | blumira | ✅ | blumira | monthly | SIEM compliance evidence packages; reporter. |
| security-posture-reviewer | cipp | ✅ | cipp | monthly | M365 portfolio posture sweep; auditor. CIPP posture is now partly covered by the Compliance Drift Reporter. |
| automation-health-checker | connectwise-automate | ✅ | connectwise-automate | weekly | RMM environment health audit. |
| project-tracker | connectwise-manage | ✅ | connectwise-manage | weekly | Open-project health review; reporter. |
| tenant-policy-auditor | checkpoint-avanan | ✅ | checkpoint-avanan | monthly | Email-policy completeness audit. |
| security-awareness-analyst | knowbe4 | ✅ | knowbe4 | monthly | Phishing-sim and training results analysis. |
| email-security-auditor | proofpoint | ✅ | proofpoint | monthly | Per-org email security posture report. |
| vap-reporter | proofpoint | ✅ | proofpoint | monthly | Very-Attacked-Persons report; reporter. |
| sla-performance-reporter | halopsa | ✅ | halopsa | monthly | Retrospective SLA compliance reporting. |
| client-relationship-manager | hubspot | ✅ | hubspot | weekly | Account-health portfolio review; reporter. |
| pipeline-health-reporter | hubspot | ✅ | hubspot | weekly | Pipeline health and forecast report. |
| documentation-auditor | hudu | ✅ | hudu | monthly | Documentation-debt audit; auditor. |
| runbook-freshness-auditor | hudu | ✅ | hudu | monthly | Runbook currency/coverage audit. |
| compliance-auditor | immybot | ✅ | immybot | monthly | Software-compliance scorecards; auditor. |
| crowdsourced-intel-harvester | ironscales | ✅ | ironscales | monthly | Threat-intel briefing from network signal. |
| contract-renewal-tracker | autotask | ✅ | autotask | weekly | Expiring-contract and MRR tracker. |
| rmm-health-auditor | datto-rmm | ✅ | datto-rmm | daily | ✅ built — batch 1 (Device Health Auditor). |
| asset-documentation-linker | it-glue | ✅ | itglue | monthly | Finds broken IT Glue object linkages. |
| documentation-auditor | it-glue | ✅ | itglue | monthly | IT Glue completeness/freshness audit. |
| compliance-drift-reporter | liongard | ✅ | liongard, cipp | weekly | ✅ built — batch 1, expanded to CIPP baseline + posture drift. |
| identity-auditor | m365 | ✅ | m365 | monthly | M365 tenant security audit; auditor. |
| license-auditor | m365 | ✅ | m365 | monthly | ✅ built — batch 1 (M365 License Auditor). |
| email-continuity-checker | mimecast | ✅ | mimecast | daily | Continuity/archive health check. |
| device-health-auditor | ninjaone-rmm | ✅ | ninjaone-rmm | daily | NinjaOne fleet health audit; auditor. |
| patch-compliance-reporter | ninjaone-rmm | ✅ | ninjaone-rmm | weekly | ✅ built — batch 1 (Patch Drift Reporter). |
| on-call-scheduler | pagerduty | ⚠️ | pagerduty | weekly | Schedule-health audit fits; rota edits would need scoping out. |
| contract-tracker | pandadoc | ✅ | pandadoc | weekly | Pending-proposal status tracker; reporter. |
| license-optimizer | pax8 | ✅ | pax8 | monthly | License-utilisation analysis; reporter. |
| renewal-calendar | pax8 | ✅ | pax8 | weekly | Upcoming-renewal calendar; reporter. |
| billing-reconciler | quickbooks | ✅ | quickbooks | weekly | ✅ built — batch 1 (Billing Reconciler). |
| profitability-reporter | quickbooks | ✅ | quickbooks | monthly | Per-client margin analysis; reporter. |
| margin-analyzer | salesbuildr | ✅ | salesbuildr | weekly | Quote-margin health analysis; reporter. |
| endpoint-hardening-auditor | sentinelone | ✅ | sentinelone | weekly | Endpoint config-hardening audit. |
| billing-reconciler | sherweb | ✅ | sherweb | monthly | Distributor billing reconciliation; reporter. |
| customer-account-auditor | sherweb | ✅ | sherweb | weekly | Portfolio AR/account-health audit. |
| automation-opportunity-finder | superops-ai | ✅ | superops-ai | monthly | Retrospective ticket-pattern analysis. |
| billing-auditor | syncro-msp | ✅ | syncro-msp | weekly | Billing completeness/accuracy audit. |
| fleet-health-auditor | threatlocker | ✅ | threatlocker | weekly | Fleet inventory/hygiene report; auditor. |
| booking-pipeline-auditor | timezest | ✅ | timezest | weekly | Scheduling-pipeline report; reporter. |
| client-360-briefer | wyre-gateway | ⚠️ | wyre-gateway (multi) | on-demand | Per-client briefing; better on-demand than crewed, but read-only and routine-shaped. |
| renewal-risk-analyzer | wyre-gateway | ✅ | wyre-gateway (multi) | weekly | Churn-risk scoring across accounts; scorer. |
| security-posture-scorer | wyre-gateway | ✅ | wyre-gateway (multi) | monthly | vCISO-style scored security health check. |
| technician-performance-coach | wyre-gateway | ✅ | wyre-gateway (multi) | monthly | Technician-performance trend report. |
| qbr-prep-agent | wyre-gateway | ✅ | wyre-gateway (multi) | weekly | ✅ built — batch 1 (QBR Prep). |
| onboarding-completeness-checker | wyre-gateway | ⚠️ | wyre-gateway (multi) | on-demand | Onboarding checklist; routine-shaped but naturally event-triggered per new client. |
| gateway-ops | wyre-gateway | ✅ | wyre-gateway (admin) | weekly | Gateway usage/anomaly audit; reporter. |
| billing-reconciler | xero | ✅ | xero | weekly | Xero billing reconciliation; reporter. |
| cash-flow-analyzer | xero | ✅ | xero | weekly | 90-day cash-flow projection; reporter. |
Archetype B — Triage & queue managers
Agents that work a queue and make bounded writes. They fit as routines when a status transition acts as an idempotency guard, so a scheduled rerun skips what it already handled.
| Agent | Plugin | Fit | Connector(s) | Cadence | Note |
|---|---|---|---|---|---|
| msp-ops-assistant | atera | ⚠️ | atera | daily | Combined alert/ticket triage; narrow to a triage-only routine. |
| alert-response-coordinator | blackpoint | ⚠️ | blackpoint | hourly | Ranks the detection queue; routine-fit if it only triages, not escalates autonomously. |
| service-desk-ops | connectwise-manage | ✅ | connectwise-manage | hourly | Queue/SLA review; status transition guards reruns. |
| training-enforcer | knowbe4 | ✅ | knowbe4 | weekly | Flags overdue training, drafts re-enrol campaigns; bounded writes. |
| service-desk-ops | halopsa | ✅ | halopsa | hourly | HaloPSA queue triage; idempotent via ticket status. |
| ticket-dispatcher | autotask | ✅ | autotask | hourly | Autotask queue triage — the canonical archetype-B fit. |
| quarantine-release-reviewer | spamtitan | ⚠️ | spamtitan | daily | Quarantine digest fits; releasing mail is a consequential write — keep it digest-only. |
| msp-service-ops | superops-ai | ⚠️ | superops-ai | daily | Combined PSA/RMM review; narrow to a triage-only routine. |
| msp-service-ops | syncro-msp | ⚠️ | syncro-msp | daily | Combined queue/device/billing review; narrow to a triage-only routine. |
| approval-triage-analyst | threatlocker | ✅ | threatlocker | hourly | Classifies the approval queue; recommends rather than auto-approves. |
| incident-war-room-coordinator | wyre-gateway | ❌ | wyre-gateway (multi) | n/a | Triage-shaped but fires on a declared P1 — event-triggered, not scheduled. |
Archetype C — Investigations
Event-triggered, deep, human-in-the-loop. These run when an alert, detection, or report fires — a cron is the wrong trigger, so they are a wrong fit for a routine.
| Agent | Plugin | Fit | Connector(s) | Cadence | Note |
|---|---|---|---|---|---|
| email-threat-analyst | abnormal-security | ❌ | abnormal | n/a | BEC/ATO investigation; triggered by a detected threat. |
| uptime-incident-responder | betterstack | ❌ | betterstack | n/a | Responds to a fired uptime incident. |
| detection-investigator | blackpoint | ❌ | blackpoint | n/a | MDR detection deep-dive; event-triggered forensics. |
| siem-investigator | blumira | ❌ | blumira | n/a | SIEM finding investigation; human-in-loop. |
| cloud-email-defender | checkpoint-avanan | ❌ | checkpoint-avanan | n/a | Quarantine/threat-event investigation. |
| incident-responder | huntress | ❌ | huntress | n/a | SOC-escalation triage and live incident response. |
| soc-alert-investigator | rocketcyber | ❌ | rocketcyber | n/a | SOC incident investigation; event-triggered. |
| threat-correlation-analyst | rocketcyber | ❌ | rocketcyber, datto-rmm, itglue, autotask | n/a | Cross-platform threat correlation; investigation. |
| change-detective | liongard | ⚠️ | liongard | weekly | Change detection is partly schedulable, but unauthorised-change follow-up is investigative. |
| email-threat-investigator | mimecast | ❌ | mimecast | n/a | Email-threat tracing; investigation. |
| incident-commander | pagerduty | ❌ | pagerduty | n/a | Commands an active incident; event-triggered. |
| incident-commander | rootly | ❌ | rootly | n/a | Commands an active Rootly incident; event-triggered. |
| post-mortem-writer | rootly | ❌ | rootly | n/a | PIR writeup; triggered by a resolved incident, not a clock. |
| threat-hunter | sentinelone | ❌ | sentinelone | n/a | IOC sweeps and threat hunts; deep investigation. |
| spam-filter-analyst | spamtitan | ❌ | spamtitan | n/a | Held-email investigation and filter tuning. |
| threat-investigator | threatlocker | ❌ | threatlocker | n/a | Security-event timeline reconstruction; investigation. |
Archetype D — Remediation & provisioning
Consequential writes that need human input mid-task — offboarding, deployment, provisioning, quoting. A poor unattended fit; a routine is the wrong tool.
| Agent | Plugin | Fit | Connector(s) | Cadence | Note |
|---|---|---|---|---|---|
| user-offboarding-runner | cipp | ❌ | cipp | n/a | Full M365 offboarding sequence; consequential, human-driven. |
| procurement-specialist | connectwise-manage | ❌ | connectwise-manage | n/a | Catalog edits and quote assembly; needs human input. |
| client-onboarding-validator | huntress | ⚠️ | huntress | on-demand | Mostly validation/reporting; runs per onboarding, so event-triggered not crewed. |
| endpoint-remediation-specialist | immybot | ❌ | immybot | n/a | Runs remediation scripts on endpoints; consequential writes. |
| software-deployment-orchestrator | immybot | ❌ | immybot | n/a | Plans and executes software rollouts; needs human gating. |
| phishing-responder | ironscales | ❌ | ironscales | n/a | Quarantine/remediation of reported phishing; consequential. |
| backup-health-monitor | datto-rmm | ❌ | datto-rmm | n/a | Reporter-shaped but not viable — see note below; no backup data in Datto RMM. |
| quote-builder | salesbuildr | ❌ | salesbuildr | n/a | Builds quotes; consequential and needs human input. |
| subscription-provisioner | sherweb | ❌ | sherweb | n/a | Provisions/changes subscriptions; consequential writes. |
| template-standardizer | pandadoc | ❌ | pandadoc | n/a | Edits proposal templates; consequential and judgement-heavy. |
| psa-integration-specialist | timezest | ❌ | timezest | n/a | Builds/repairs PSA association payloads; consequential config work. |
| scheduling-dispatcher | timezest | ❌ | timezest | n/a | Books technicians against tickets; consequential, request-driven. |
| compliance-evidence-packager | wyre-gateway | ⚠️ | wyre-gateway (multi) | on-demand | Largely read+assemble, but runs per formal audit — event-triggered, not crewed. |
Reading this as a backlog
Archetype A and B agents are the program backlog: A agents convert almost verbatim into scheduled reporting routines, and B agents convert once a status transition is identified as the idempotency guard. Future conversion batches are picked from this catalog — an archetype-A or archetype-B row, paired with a delivery adapter, is a workflow waiting to be written. Archetype C and D agents are deliberately left alone: they are real, useful agents, but a cron is the wrong trigger for them.
The catalog also records agents that look convertible but are not.
datto-rmm's backup-health-monitor reads as a textbook
archetype-A reporter — a scheduled backup-health rollup. It is listed under archetype D as
not routine-viable today for a different reason: Datto RMM exposes no backup
data. Backup and BC/DR live in the separate Datto BCDR product, which the gateway does not
connect. A routine built from this agent would have nothing to read. It is a useful reminder
that this catalog classifies fit — and that connector coverage, not just archetype,
decides whether a workflow can actually be built.
Spotted an agent that should be the next workflow?
Open an issue
in the msp-claude-plugins repository.