@blamejs/exceptd-skills 0.12.26 → 0.12.27

package/CHANGELOG.md

@@ -1,5 +1,43 @@
 # Changelog
 
+## 0.12.27 — 2026-05-15
+
+**Patch: opt-in `--bundle-deterministic` mode for reproducible CSAF + OpenVEX + close-envelope bytes. Closes cycle 6 III P2-E + cycle 7 CCC bundle-non-determinism finding.**
+
+### New flags
+
+- **`--bundle-deterministic`** (boolean, off by default) — when set, the bundle-emit path produces byte-stable output for the same inputs. CSAF `tracking.initial_release_date` / `current_release_date` / `generator.date` / `revision_history[0].date`, OpenVEX top-level `timestamp` + per-statement `timestamp`, close-envelope `acceptance_date` + `regression_schedule.next_run` + `generated_at` all freeze to a single epoch. Auto-generated session IDs derive deterministically from `sha256(playbook_id ∥ evidence_hash ∥ engine_version)` rather than `crypto.randomBytes`. CSAF `vulnerabilities[]` + OpenVEX `statements[]` arrays sort by primary id.
+- **`--bundle-epoch <ISO-8601>`** (value-bearing, optional) — operator-supplied freeze epoch. When omitted, the deterministic mode falls back to `playbook._meta.last_threat_review` (the canonical "this catalog was last reviewed at" timestamp). Honored only when `--bundle-deterministic` is set.
+
+Both flags wired for `run`, `ci`, `run-all`, `ai-run`, `ingest`. Per-verb help blocks document them.
+
+### Why
+
+- **CI bundle diffing**: `git diff` over `evidence_package.bundle_body` against a baseline becomes signal-bearing only when drift is signal, not noise. Pre-v0.12.27 the same evidence produced ~640 bytes of timestamp drift across CSAF + OpenVEX + close-envelope per run.
+- **Auditor evidence reuse**: ISO 27001 / SOC 2 audits expect re-emit against the same submission to produce byte-equal evidence.
+- **SLSA / Sigstore alignment**: reproducible build evidence requires deterministic outputs the verifier can hash and compare.
+
+CSAF 2.0 §3.1.11.2-5 permits identical `initial_release_date` / `current_release_date` for never-revised advisories; freezing to a catalog epoch is spec-compliant. The strict-validator pass (BSI CSAF Validator) accepts the deterministic-mode output unchanged.
+
+### Default-mode regression guard
+
+When neither flag is set, bundle output is byte-identical to v0.12.26 — no existing operator sees a behavioral change. A regression test pins this: two consecutive runs in default mode produce different CSAF `tracking.initial_release_date` values, asserting the determinism is opt-in and cannot accidentally activate.
+
+### Test coverage
+
+`tests/bundle-determinism.test.js` (new, 7 exact-code tests):
+1. Two runs same inputs + same epoch → byte-identical CSAF/OpenVEX/summary
+2. Different `--bundle-epoch` → bundles differ only in timestamp fields
+3. Different evidence → bundles differ in `vulnerabilities[]` length; timestamps frozen
+4. Default mode → regression-guard timestamp drift
+5. `--bundle-epoch invalid-iso` → exit 1 + structured error
+6. `--bundle-deterministic` without `--bundle-epoch` falls back to `playbook._meta.last_threat_review`
+7. Array sort: random-order CVE evidence → `vulnerabilities[]` always ascending by `cve_id`
+
+Existing CSAF + OpenVEX + CLI test suites pass unchanged (53/53 + 30/30; no default-mode regression).
+
+Test count: 1058 pass (5 skipped). Predeploy gates: 14/14. Skills: 39/39 signed.
+
 ## 0.12.26 — 2026-05-15
 
 **Patch: sector-telecom skill ships, with supporting framework-gap and ATLAS catalog scaffolding. Closes the cycle 8 LLL P1 finding that the unmodeled RWEP signal from Salt Typhoon-class campaigns was the highest gap in the catalog.**

package/bin/exceptd.js

@@ -909,6 +909,11 @@ function dispatchPlaybook(cmd, argv) {
             "force-overwrite", "no-stream", "block-on-jurisdiction-clock",
             "force-replay",
             "json-stdout-only", "fix", "human", "json", "strict-preconditions",
+            // v0.12.27: --bundle-deterministic opts the bundle build into
+            // byte-stable output (frozen timestamps, deterministic session_id
+            // fallback, sorted vulnerabilities[] / statements[]). Pairs with
+            // --bundle-epoch <ISO> for the frozen timestamp value.
+            "bundle-deterministic",
             // v0.12.9: doctor --shipped-tarball runs the verify-shipped-tarball
             // gate alongside --signatures. doctor --registry-check + --signatures
             // were already accepted; explicit registration removes the silent
@@ -1266,6 +1271,55 @@ function dispatchPlaybook(cmd, argv) {
     runOpts.csafStatus = cs;
   }
 
+  // --bundle-deterministic + --bundle-epoch (v0.12.27): opt-in deterministic
+  // bundle emit. When set, CSAF / OpenVEX / close-envelope timestamps freeze
+  // to the supplied epoch (or the playbook's last_threat_review fallback),
+  // the auto-generated session_id derives from sha256(playbook + evidence_hash
+  // + engine_version) when the operator did not pass --session-id, and
+  // vulnerabilities[] / statements[] sort deterministically. Opt-in so the
+  // default emit path stays byte-identical to pre-v0.12.27 output.
+  if (args["bundle-deterministic"] !== undefined && args["bundle-deterministic"] !== false) {
+    if (!BUNDLE_FLAG_RELEVANT_VERBS.has(cmd)) {
+      return emitError(
+        `${cmd}: --bundle-deterministic is irrelevant on this verb (no bundle is assembled). --bundle-deterministic only applies to verbs that drive phases 5-7: ${[...BUNDLE_FLAG_RELEVANT_VERBS].sort().join(", ")}.`,
+        { verb: cmd, flag: "bundle-deterministic", error_class: "irrelevant-flag", accepted_verbs: [...BUNDLE_FLAG_RELEVANT_VERBS].sort() },
+        pretty
+      );
+    }
+    runOpts.bundleDeterministic = true;
+  }
+  if (args["bundle-epoch"] !== undefined) {
+    if (!BUNDLE_FLAG_RELEVANT_VERBS.has(cmd)) {
+      return emitError(
+        `${cmd}: --bundle-epoch is irrelevant on this verb (no bundle is assembled). --bundle-epoch only applies to verbs that drive phases 5-7: ${[...BUNDLE_FLAG_RELEVANT_VERBS].sort().join(", ")}.`,
+        { verb: cmd, flag: "bundle-epoch", error_class: "irrelevant-flag", accepted_verbs: [...BUNDLE_FLAG_RELEVANT_VERBS].sort() },
+        pretty
+      );
+    }
+    const epoch = args["bundle-epoch"];
+    if (typeof epoch !== "string") {
+      return emitError(
+        `${cmd}: --bundle-epoch must be a string ISO-8601 timestamp.`,
+        { verb: cmd, flag: "bundle-epoch", provided: typeof epoch },
+        pretty
+      );
+    }
+    // Reuse validateIsoSince — the same calendar-shape gate used for --since.
+    const isoErr = validateIsoSince(epoch);
+    if (isoErr) {
+      return emitError(
+        `${cmd}: --bundle-epoch must be a parseable ISO-8601 calendar timestamp (e.g. 2026-01-01T00:00:00Z). Got: ${JSON.stringify(epoch).slice(0, 80)}`,
+        { verb: cmd, flag: "bundle-epoch", provided: epoch.slice(0, 80) },
+        pretty
+      );
+    }
+    // Normalise to a full ISO timestamp so downstream consumers don't have
+    // to handle the date-only shape. Date-only inputs render as
+    // YYYY-MM-DDT00:00:00.000Z; full timestamps round-trip unchanged modulo
+    // ms precision (Date.prototype.toISOString always emits ms).
+    runOpts.bundleEpoch = new Date(epoch).toISOString();
+  }
+
   // --ack: operator acknowledges the jurisdiction obligations surfaced by
   // govern. Captured in attestation; downstream tooling can check whether
   // consent was explicit vs. implicit. AGENTS.md says the AI should surface
@@ -1512,6 +1566,16 @@ Flags:
                           publisher trust anchor — i.e. the operator's
                           organisation, NOT the tooling vendor. Must be an
                           http://… or https://… URL, ≤256 chars.
+  --bundle-deterministic  Emit byte-stable CSAF / OpenVEX / close envelope.
+                          Freezes tracking + timestamp fields to a single
+                          epoch, derives session_id from evidence hash when
+                          not supplied via --session-id, and sorts
+                          vulnerabilities[] / statements[] ascending.
+                          Off by default; opt-in for reproducible-build
+                          pipelines + diff-friendly attestation review.
+  --bundle-epoch <ISO>    Frozen epoch for --bundle-deterministic. ISO-8601
+                          calendar timestamp (date or date+time). Falls back
+                          to the playbook's last_threat_review when omitted.
   --diff-from-latest      Compare evidence_hash against the most recent prior
                           attestation for the same playbook in
                           .exceptd/attestations/. Emits status: unchanged | drifted.
@@ -1589,6 +1653,8 @@ Flags:
                           CSAF document.publisher.namespace (§3.1.7.4). The
                           operator's organisation URL, NOT the tooling vendor.
                           Must be an http://… or https://… URL, ≤256 chars.
+  --bundle-deterministic  Emit byte-stable bundles (frozen timestamps).
+  --bundle-epoch <ISO>    Frozen epoch for --bundle-deterministic.
   --pretty                Indented JSON output.
 
 Exit codes: 0 PASS, 1 framework, 4 blocked, 7 SESSION_ID_COLLISION,
@@ -1716,6 +1782,8 @@ Flags:
                           CSAF document.publisher.namespace (§3.1.7.4). The
                           operator's organisation URL, NOT the tooling vendor.
                           Must be an http://… or https://… URL, ≤256 chars.
+  --bundle-deterministic  Emit byte-stable bundles for reproducible pipelines.
+  --bundle-epoch <ISO>    Frozen epoch for --bundle-deterministic.
   --evidence <file|->     Single-shot mode: pre-supplied submission JSON.
   --operator <name>       Bind the attestation to a specific identity.
   --ack                   Mark explicit operator consent (jurisdiction clock).
@@ -1794,6 +1862,8 @@ Flags:
   --publisher-namespace <url>
                           CSAF document.publisher.namespace (§3.1.7.4). The
                           operator's organisation URL, NOT the tooling vendor.
+  --bundle-deterministic  Emit byte-stable bundles across per-playbook runs.
+  --bundle-epoch <ISO>    Frozen epoch for --bundle-deterministic.
   --json                  Force single-line JSON (overrides any TTY heuristics).
   --pretty                Indented JSON output (implies --json).
 
@@ -1874,7 +1944,9 @@ Flags (selected — see \`exceptd run --help\` for the full list):
   --publisher-namespace <url>
                           CSAF document.publisher.namespace (§3.1.7.4). The
                           operator's organisation URL, NOT the tooling vendor.
-                          Must be an http://… or https://… URL, ≤256 chars.`,
+                          Must be an http://… or https://… URL, ≤256 chars.
+  --bundle-deterministic  Emit byte-stable bundles across the multi-run set.
+  --bundle-epoch <ISO>    Frozen epoch for --bundle-deterministic.`,
   };
   process.stdout.write((cmds[verb] || `${verb} — no per-verb help available; see \`exceptd help\` for the full list.`) + "\n");
 }

package/data/_indexes/_meta.json

@@ -1,10 +1,10 @@
 {
   "schema_version": "1.1.0",
-  "generated_at": "2026-05-15T22:17:17.497Z",
+  "generated_at": "2026-05-15T22:38:59.213Z",
   "generator": "scripts/build-indexes.js",
   "source_count": 51,
   "source_hashes": {
-    "manifest.json": "492f8548ab8dc7d8edba1666d07c401d77e9459e356e3c30283888c73be6f005",
+    "manifest.json": "9862095ee05729021d2dd51765c370ed24377e73c536b237817ef7ce4a7ba437",
     "data/atlas-ttps.json": "db52a797f6ba7c9a61fd7b1225ebbc268ddf21abe29a106c4246c2ed2e617b86",
     "data/attack-techniques.json": "6b45448aa42cc6664376c93da73356624708e935c12589ee8c776a10215bce3a",
     "data/cve-catalog.json": "a2acad16f5e3856b07019fa00110e9dcb38ec5cc71b318d0e164bfcba7f4f644",

package/lib/flag-suggest.js

@@ -79,21 +79,25 @@ const VERB_FLAG_ALLOWLIST = Object.freeze({
     'mode', 'air-gap', 'force-stale', 'operator', 'ack', 'csaf-status',
     'publisher-namespace', 'vex', 'all', 'scope', 'required', 'format',
     'strict-preconditions', 'block-on-jurisdiction-clock', 'tlp',
+    'bundle-deterministic', 'bundle-epoch',
   ],
   'run-all': [
     'evidence', 'evidence-dir', 'session-id', 'force-overwrite', 'attestation-root',
     'mode', 'air-gap', 'force-stale', 'operator', 'ack', 'csaf-status',
     'publisher-namespace', 'vex', 'scope', 'strict-preconditions', 'tlp',
+    'bundle-deterministic', 'bundle-epoch',
   ],
   'ai-run': [
     'evidence', 'no-stream', 'session-id', 'force-overwrite', 'attestation-root',
     'operator', 'ack', 'csaf-status', 'publisher-namespace', 'air-gap',
     'mode', 'force-stale', 'tlp',
+    'bundle-deterministic', 'bundle-epoch',
   ],
   ingest: [
     'evidence', 'session-id', 'force-overwrite', 'attestation-root', 'operator',
     'ack', 'csaf-status', 'publisher-namespace', 'air-gap', 'force-stale',
     'strict-preconditions',
+    'bundle-deterministic', 'bundle-epoch',
   ],
   brief: ['all', 'scope', 'directives', 'flat', 'phase'],
   discover: ['scan-only', 'scope'],

package/lib/playbook-runner.js

@@ -1515,6 +1515,13 @@ function close(playbookId, directiveId, analyzeResult, validateResult, agentSign
   // bypass run() (e.g. unit tests).
   const sessionId = runOpts.session_id || crypto.randomBytes(8).toString('hex');
 
+  // v0.12.27: when opt-in deterministic bundle mode is set, resolve the
+  // single frozen epoch used by every timestamp surface below. Cached for
+  // the whole close() call so notification_actions, regression_schedule,
+  // and the bundle emitter all agree on the same Date.
+  const deterministic = runOpts.bundleDeterministic === true;
+  const frozenEpoch = deterministic ? resolveFrozenEpoch(runOpts, playbook) : null;
+
   // notification_actions — compute ISO deadlines from clock_starts events.
   // v0.11.12 (#123): enrich each entry with the matched obligation's
   // jurisdiction/regulation/window_hours/evidence_required fields. The
@@ -1605,7 +1612,10 @@ function close(playbookId, directiveId, analyzeResult, validateResult, agentSign
           framework_id: playbook.domain.frameworks_in_scope[0] || 'unspecified',
           control_id: analyzeResult.framework_gap_mapping?.[0]?.claimed_control || 'unspecified',
           ciso_name: agentSignals.ciso_name || '<CISO NAME>',
-          acceptance_date: new Date().toISOString().slice(0, 10),
+          // v0.12.27: deterministic mode roots acceptance_date in the
+          // frozen epoch so two runs against the same evidence emit the
+          // same auditor-facing date.
+          acceptance_date: (deterministic ? frozenEpoch : new Date().toISOString()).slice(0, 10),
           duration_expiry: agentSignals.duration_expiry || 'until vendor patch'
         })
       };
@@ -1628,7 +1638,11 @@ function close(playbookId, directiveId, analyzeResult, validateResult, agentSign
   // spurious millisecond drift on tracking.initial_release_date /
   // timestamp / current_release_date.
   const evidencePackage = c.evidence_package ? (() => {
-    const issuedAt = new Date().toISOString();
+    // v0.12.27: deterministic mode pins issuedAt to the frozen epoch so
+    // CSAF tracking.{initial_release_date,current_release_date,
+    // generator.date,revision_history[0].date} and OpenVEX timestamp +
+    // statements[].timestamp all collapse to a single, byte-stable value.
+    const issuedAt = deterministic ? frozenEpoch : new Date().toISOString();
     const builtFormats = new Map();
     const buildOnce = (format) => {
       if (!builtFormats.has(format)) {
@@ -1680,11 +1694,27 @@ function close(playbookId, directiveId, analyzeResult, validateResult, agentSign
   } : { enabled: false };
 
   // regression_schedule
-  const regressionSchedule = c.regression_schedule ? {
-    next_run: validateResult.regression_next_run,
-    trigger: c.regression_schedule.trigger,
-    notify_on_skip: c.regression_schedule.notify_on_skip !== false
-  } : null;
+  //
+  // v0.12.27: deterministic mode re-derives next_run from the frozen epoch
+  // rather than wall-clock-now-at-validate-time. Without this, two runs
+  // against the same evidence diverge on next_run by the interval between
+  // the two `validate()` invocations. Frozen base + the same interval set
+  // = byte-identical schedule.
+  const regressionSchedule = c.regression_schedule ? (() => {
+    let nextRun = validateResult.regression_next_run;
+    if (deterministic) {
+      // Re-derive against the validate phase's trigger set (not the
+      // close phase's regression_schedule subtree — close has no triggers
+      // of its own, just the canonical interval declared upstream).
+      const v = resolvedPhase(playbook, directiveId, 'validate');
+      nextRun = frozenRegressionNextRun(v.regression_trigger || [], new Date(frozenEpoch));
+    }
+    return {
+      next_run: nextRun,
+      trigger: c.regression_schedule.trigger,
+      notify_on_skip: c.regression_schedule.notify_on_skip !== false
+    };
+  })() : null;
 
   // feeds_into chaining — full analyze result is exposed so conditions can
   // reference `analyze.compliance_theater_check.verdict` etc.
@@ -1996,6 +2026,40 @@ function getEngineVersion() {
   return _CACHED_PKG_VERSION;
 }
 
+// v0.12.27: deterministic-bundle epoch resolution. Priority:
+//   1. runOpts.bundleEpoch (operator-supplied --bundle-epoch <ISO>)
+//   2. playbook._meta.last_threat_review (the freshness anchor that already
+//      gates every shipped playbook — stable across re-runs of the same
+//      catalog version)
+//   3. '1970-01-01T00:00:00Z' fallback (effectively impossible in practice
+//      because every shipped playbook carries last_threat_review, but
+//      guarantees the deterministic path never crashes on a malformed
+//      playbook).
+// Returns a full ISO-8601 timestamp (date-only inputs are normalised).
+function resolveFrozenEpoch(runOpts, playbook) {
+  const raw = runOpts && runOpts.bundleEpoch
+    ? runOpts.bundleEpoch
+    : (playbook && playbook._meta && playbook._meta.last_threat_review)
+      || '1970-01-01T00:00:00Z';
+  try { return new Date(raw).toISOString(); }
+  catch { return '1970-01-01T00:00:00Z'; }
+}
+
+// Recompute regression_schedule.next_run against a frozen `now` so two
+// deterministic-mode runs of the same playbook produce byte-identical
+// schedules. Mirrors computeRegressionNextRun but with an injected base
+// date. Returns the soonest ISO timestamp or null when no interval-based
+// trigger fired.
+function frozenRegressionNextRun(triggers, frozenNow) {
+  let soonest = null;
+  for (const t of (triggers || [])) {
+    const parsed = parseInterval(t.interval, frozenNow);
+    if (!parsed || !parsed.date) continue;
+    if (!soonest || parsed.date < soonest) soonest = parsed.date;
+  }
+  return soonest ? soonest.toISOString() : null;
+}
+
 // Operator-supplied identity strings (--operator) and publisher namespace
 // URLs (--publisher-namespace) flow into operator-facing CSAF surfaces.
 // Strip ASCII control characters as defence in depth — bin/exceptd.js
@@ -2410,7 +2474,19 @@ function buildEvidenceBundle(format, playbook, analyze, validate, agentSignals,
         if (branches.length > 0) tree.branches = branches;
         return tree;
       })(),
-      vulnerabilities: [...cveVulns, ...indicatorVulns],
+      vulnerabilities: (function () {
+        // v0.12.27: deterministic mode sorts vulnerabilities[] by their
+        // primary identifier (cve_id for CVE entries, ids[0].text otherwise)
+        // ascending. Default mode preserves insertion order so existing
+        // operators see byte-identical output to pre-v0.12.27.
+        const all = [...cveVulns, ...indicatorVulns];
+        if (runOpts && runOpts.bundleDeterministic === true) {
+          const keyOf = (v) => (typeof v.cve === 'string' && v.cve)
+            || (Array.isArray(v.ids) && v.ids[0] && typeof v.ids[0].text === 'string' ? v.ids[0].text : '');
+          return all.slice().sort((a, b) => keyOf(a).localeCompare(keyOf(b)));
+        }
+        return all;
+      })(),
       exceptd_extension: {
         classification: analyze._detect_classification,
         rwep: analyze.rwep,
@@ -2642,7 +2718,17 @@ function buildEvidenceBundle(format, playbook, analyze, validate, agentSignals,
       author: 'exceptd',
       timestamp: issued,
       version: 1,
-      statements: [...cveStatements, ...indicatorStatements],
+      statements: (function () {
+        // v0.12.27: deterministic mode sorts statements[] by
+        // vulnerability['@id'] ascending. Insertion order otherwise.
+        const all = [...cveStatements, ...indicatorStatements];
+        if (runOpts && runOpts.bundleDeterministic === true) {
+          const keyOf = (s) => (s && s.vulnerability && typeof s.vulnerability['@id'] === 'string')
+            ? s.vulnerability['@id'] : '';
+          return all.slice().sort((a, b) => keyOf(a).localeCompare(keyOf(b)));
+        }
+        return all;
+      })(),
     };
   }
 
@@ -2948,7 +3034,28 @@ function run(playbookId, directiveId, agentSubmission = {}, runOpts = {}) {
   // Without the single-source-of-truth, close() would mint its own id
   // and operators correlating attestation files to embedded bundle URNs
   // would see mismatches.
-  const sessionId = runOpts.session_id || crypto.randomBytes(8).toString('hex');
+  //
+  // v0.12.27: when runOpts.bundleDeterministic is set AND the operator did
+  // not pass --session-id, derive the session_id from the submission shape
+  // so two runs against identical evidence produce the same id (and
+  // therefore the same CSAF tracking.id / OpenVEX @id / attestation file
+  // name). Mirrors the evidence_hash path further down but is computed
+  // here so close() can thread it through. Operator-supplied --session-id
+  // still wins on collision.
+  let sessionId;
+  if (runOpts.session_id) {
+    sessionId = runOpts.session_id;
+  } else if (runOpts.bundleDeterministic) {
+    const submissionDigest = crypto.createHash('sha256')
+      .update(canonicalStringify(extractSubmissionForHash(agentSubmission)))
+      .digest('hex');
+    sessionId = crypto.createHash('sha256')
+      .update(`${playbookId}\0${submissionDigest}\0${getEngineVersion()}`)
+      .digest('hex')
+      .slice(0, 16);
+  } else {
+    sessionId = crypto.randomBytes(8).toString('hex');
+  }
   const cachedRunOpts = { ...runOpts, _playbookCache: playbook, session_id: sessionId };
   // Run-time error accumulator for evalCondition regex failures and other
   // non-fatal anomalies surfaced into analyze.runtime_errors[].

package/manifest-snapshot.json

@@ -1,6 +1,6 @@
 {
   "_comment": "Auto-generated by scripts/refresh-manifest-snapshot.js — do not hand-edit. Public skill surface used by check-manifest-snapshot.js to detect breaking removals.",
-  "_generated_at": "2026-05-15T22:10:24.906Z",
+  "_generated_at": "2026-05-15T22:38:13.114Z",
   "atlas_version": "5.1.0",
   "skill_count": 39,
   "skills": [
@@ -1570,7 +1570,14 @@
         "uk tsa 2021",
         "volt typhoon"
       ],
-      "data_deps": [],
+      "data_deps": [
+        "atlas-ttps.json",
+        "cve-catalog.json",
+        "cwe-catalog.json",
+        "d3fend-catalog.json",
+        "framework-control-gaps.json",
+        "global-frameworks.json"
+      ],
       "atlas_refs": [
         "AML.T0040"
       ],

package/manifest-snapshot.sha256

@@ -1 +1 @@
-3b2e3c3a40554d760ee71eded57828b0dcd3237ed0c4499ee123606d041bf1dc  manifest-snapshot.json
+259bbbc7ec375bfb21c2e8fe4c397cca265b33b357e19282d34acff932752237  manifest-snapshot.json

package/manifest.json

@@ -1,6 +1,6 @@
 {
   "name": "exceptd-security",
-  "version": "0.12.26",
+  "version": "0.12.27",
   "description": "AI security skills grounded in mid-2026 threat reality, not stale framework documentation",
   "homepage": "https://exceptd.com",
   "license": "Apache-2.0",
@@ -52,7 +52,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "N6H4u/u1fCFE6f/3QVkAr2cumZvLNE+xYBC91CCxKoeaSKm5zqbwzb2mvFDk9XKUegUy5W6npLFGi75yxNMIAg==",
-      "signed_at": "2026-05-15T22:15:26.972Z",
+      "signed_at": "2026-05-15T22:38:12.653Z",
       "cwe_refs": [
         "CWE-125",
         "CWE-362",
@@ -116,7 +116,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "Xen6ojQGzT4AZUN/WtuQon+gT2UrJyX50nrZwEdxLw5aiz8gDaeMkWo/Bic+h4NFEF7MRd7uDTm0dvKgWnlRBA==",
-      "signed_at": "2026-05-15T22:15:26.974Z",
+      "signed_at": "2026-05-15T22:38:12.655Z",
       "cwe_refs": [
         "CWE-1039",
         "CWE-1426",
@@ -179,7 +179,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "IDhdamTvyWfnz7SvIMrVMz2cwLuiP2/Iw2iYHFNbI1O302XnrGyIVsJcoKZa5QFClBYPiABVt+yI5HEuLxMCBw==",
-      "signed_at": "2026-05-15T22:15:26.975Z",
+      "signed_at": "2026-05-15T22:38:12.655Z",
       "cwe_refs": [
         "CWE-22",
         "CWE-345",
@@ -225,7 +225,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-01",
       "signature": "cPRRTsNQT1MYR3cE5O3KdC4MB037EMc0fsMIbOyfOv16sR+DkiXmAhQOjlIC47HngHz3vhLI+rbqItN91VWpBg==",
-      "signed_at": "2026-05-15T22:15:26.975Z"
+      "signed_at": "2026-05-15T22:38:12.656Z"
     },
     {
       "name": "compliance-theater",
@@ -256,7 +256,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "79NrFMRsqGsipWeE5ETQSVICGO4BjTJYgyir+PSaNVFpkLqLcwZd8Dr1V7iwX0H0fXFL3WpPz35gtrYCEG32BQ==",
-      "signed_at": "2026-05-15T22:15:26.976Z"
+      "signed_at": "2026-05-15T22:38:12.656Z"
     },
     {
       "name": "exploit-scoring",
@@ -285,7 +285,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "O7YIzAOQtSCFD0pyUdF0otYy9xwksrRGCLnSw5aMMGOs0SYeYA1JsMX5XLxNOQJC8tURC21HgQc/yx22jLtvAw==",
-      "signed_at": "2026-05-15T22:15:26.976Z"
+      "signed_at": "2026-05-15T22:38:12.656Z"
     },
     {
       "name": "rag-pipeline-security",
@@ -322,7 +322,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "ai6ebp9pz7dBigm2rQvQ0SklhDZtHqP3exKtolbEBiN0shQScypJfDBaQN2J3aoOC4dZjjTgIZvGfWLmBxrxBA==",
-      "signed_at": "2026-05-15T22:15:26.976Z",
+      "signed_at": "2026-05-15T22:38:12.657Z",
       "cwe_refs": [
         "CWE-1395",
         "CWE-1426"
@@ -379,7 +379,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "BkDjyCF53MAATVfzERmIhEhi474eWloxD0qyw9Gvw+VFE8aH3pOi+yeCpc0kq0vHAVmAEszwxBKEcuLkJbmSBg==",
-      "signed_at": "2026-05-15T22:15:26.977Z",
+      "signed_at": "2026-05-15T22:38:12.657Z",
       "d3fend_refs": [
         "D3-CA",
         "D3-CSPP",
@@ -414,7 +414,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-01",
       "signature": "DxfXhSyoAGUo1emHh0uIIcg324ZreBYxmFdBDVAKOOuPmMlfN4RqNc/JGDSfVmMv5CjgYCUcSmkcYB0A5lk0Cg==",
-      "signed_at": "2026-05-15T22:15:26.977Z",
+      "signed_at": "2026-05-15T22:38:12.657Z",
       "cwe_refs": [
         "CWE-1188"
       ]
@@ -442,7 +442,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-01",
       "signature": "rFQ82v+1oAHWixWcGwokKhjZHfXUf6N7EfSgldhQ5Jrbiy3kv5CIbnOCsI6zPWyErSnpKVeBFTabJXnzLrzDCQ==",
-      "signed_at": "2026-05-15T22:15:26.978Z"
+      "signed_at": "2026-05-15T22:38:12.658Z"
     },
     {
       "name": "global-grc",
@@ -474,7 +474,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-01",
       "signature": "7yVjZkanFMKDQqXdX4B/7oLc2Rz72xHC1zscYd8F/+e5UAbR7ikK8Bn5EKZt3aBEOhHPAviSQNCMxpZD9U00CA==",
-      "signed_at": "2026-05-15T22:15:26.978Z"
+      "signed_at": "2026-05-15T22:38:12.658Z"
     },
     {
       "name": "zeroday-gap-learn",
@@ -501,7 +501,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-01",
       "signature": "VlPR7yY39hEwDJYYKPgHAOeax9LU0X7eIrR8L7zMFJWS0SdKTalOXXJtD9GppByftnkYAAdryZ8tHQ/KWLtaBQ==",
-      "signed_at": "2026-05-15T22:15:26.979Z"
+      "signed_at": "2026-05-15T22:38:12.659Z"
     },
     {
       "name": "pqc-first",
@@ -553,7 +553,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "V+qn5FqUlETfsEjvvi6jZGuQdqLFtFejfgPA6KSYxSlBXBTbOBXP3BGk5S+ba9akIzgbKh1j9VGB1MqsIt56DA==",
-      "signed_at": "2026-05-15T22:15:26.979Z",
+      "signed_at": "2026-05-15T22:38:12.659Z",
       "cwe_refs": [
         "CWE-327"
       ],
@@ -600,7 +600,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "WCNz19186cER1eEhCophTIbnL3ltS3FC98I1rfv463aRnuVxPB3sUlD9xHTbxTM2rUABhqKijhdkWiMh2uKxCQ==",
-      "signed_at": "2026-05-15T22:15:26.979Z"
+      "signed_at": "2026-05-15T22:38:12.659Z"
     },
     {
       "name": "security-maturity-tiers",
@@ -637,7 +637,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "zjq6ACAHD46xvhvQJKlrCPh5xDCuBuIWBI+QJB8RxcudpC7p7I1pqv+BY8DZdsAgU4tquCU8KC+xlduMIk3/DQ==",
-      "signed_at": "2026-05-15T22:15:26.980Z",
+      "signed_at": "2026-05-15T22:38:12.660Z",
       "cwe_refs": [
         "CWE-1188"
       ]
@@ -672,7 +672,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-11",
       "signature": "/lGgWehCMQUXjI6w4FUa+5wrbyRnct+txvVcXA+D2/ZEkoJKh+J/psO3j5HPf7Hpv+Y5SmkH71CoO+9qilyVDQ==",
-      "signed_at": "2026-05-15T22:15:26.980Z"
+      "signed_at": "2026-05-15T22:38:12.660Z"
     },
     {
       "name": "attack-surface-pentest",
@@ -743,7 +743,7 @@
         "PTES revision incorporating AI-surface enumeration"
       ],
       "signature": "RqQMwOKK7xjG9e/Ls4986NOrDwKz/nQmpw1DwNJwV2nlOztyo7MgxUG3kTuLbuW3qCrrkO+CbpBA5nGS1cmKBQ==",
-      "signed_at": "2026-05-15T22:15:26.980Z"
+      "signed_at": "2026-05-15T22:38:12.660Z"
     },
     {
       "name": "fuzz-testing-strategy",
@@ -803,7 +803,7 @@
         "OSS-Fuzz-Gen / AI-assisted harness generation becoming the default expectation for OSS maintainers"
       ],
       "signature": "+ELdD+1AY5DymBitH7wU65CS60NY1nDoLowJAFn7cE5Gr/5jy9BTkyxsm7PEXaSlXWMOkTf/HQ+uyzyxUVD/Bw==",
-      "signed_at": "2026-05-15T22:15:26.981Z"
+      "signed_at": "2026-05-15T22:38:12.661Z"
     },
     {
       "name": "dlp-gap-analysis",
@@ -878,7 +878,7 @@
         "Quebec Law 25, India DPDPA, KSA PDPL enforcement actions naming AI-tool prompt data as in-scope personal information"
       ],
       "signature": "vL5XeQOk7vwX0sLMuKghj6XLnXsqKcGpCUNMui9HwqnWyNQwgSRGu+JFqP7ZqpP3SUYRZHcVlWhXeTJHyOtiAA==",
-      "signed_at": "2026-05-15T22:15:26.981Z"
+      "signed_at": "2026-05-15T22:38:12.661Z"
     },
     {
       "name": "supply-chain-integrity",
@@ -955,7 +955,7 @@
         "OpenSSF model-signing — emerging Sigstore-based signing standard for ML model weights; track for production adoption"
       ],
       "signature": "jp3MxKukV7zW47eX3VcAIMG5WxypMDcfHqwYDodI9YQgTxEojCrRcMSApaoZHTdD3yTQC1JtkXeKxU6K3C5NCg==",
-      "signed_at": "2026-05-15T22:15:26.981Z"
+      "signed_at": "2026-05-15T22:38:12.661Z"
     },
     {
       "name": "defensive-countermeasure-mapping",
@@ -1012,7 +1012,7 @@
       ],
       "last_threat_review": "2026-05-11",
       "signature": "XZigwq8X/csfrdG10O6Q1V5q0zUqSQGd3QrjRKkZ4fkaodG4mZahYuIQqxc8rU9jjtGAm9LtBXYB+I5csqj9Bw==",
-      "signed_at": "2026-05-15T22:15:26.982Z"
+      "signed_at": "2026-05-15T22:38:12.662Z"
     },
     {
       "name": "identity-assurance",
@@ -1079,7 +1079,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "k0HrsZMBxiPWB1jl4dRwhv/R5IsqbZ+SLDv1Jx3/sRl51JyXjtm8vyogTNhSwsl5/IkaRakqIPJFRFRl5h/9CQ==",
-      "signed_at": "2026-05-15T22:15:26.982Z"
+      "signed_at": "2026-05-15T22:38:12.662Z"
     },
     {
       "name": "ot-ics-security",
@@ -1135,7 +1135,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "oHxjumOhk8y86WcwhAX8sSWIlPzt60KfTMn4DCJLeRrrQd5+i54fVADKAdZ3vOqfDN+DexO0uX4f5dLPtacRCQ==",
-      "signed_at": "2026-05-15T22:15:26.982Z"
+      "signed_at": "2026-05-15T22:38:12.662Z"
     },
     {
       "name": "coordinated-vuln-disclosure",
@@ -1187,7 +1187,7 @@
         "NYDFS 23 NYCRR 500 amendments potentially adding explicit CVD program requirements"
       ],
       "signature": "UCiNjncvhkZItmLQA/Sm1/NCsOiLMwdCjfUw+067v4NIxhaMMaqRrAeD3KgMyEtov7m2Hq2kfwYSt5+DQsYDCQ==",
-      "signed_at": "2026-05-15T22:15:26.983Z"
+      "signed_at": "2026-05-15T22:38:12.663Z"
     },
     {
       "name": "threat-modeling-methodology",
@@ -1237,7 +1237,7 @@
         "PASTA v2 updates incorporating AI/ML application threats"
       ],
       "signature": "V9kl8Cf8UMjNFyn3D/fSyhWHLeXWlx3WV/jT9jdF9SrjfDqymimuTt2o91cZ2FOEJndAH9V0JGXB13Ohz8K4CQ==",
-      "signed_at": "2026-05-15T22:15:26.983Z"
+      "signed_at": "2026-05-15T22:38:12.663Z"
     },
     {
       "name": "webapp-security",
@@ -1311,7 +1311,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "ENSL4MJSNXhriKsTVBjg2jTc7JTtb6mxqbfBw/SVVajPMkLMcLBk4Gem9LhZWZ8DSqyWLnFO2d6hlz5q8bjuCg==",
-      "signed_at": "2026-05-15T22:15:26.983Z"
+      "signed_at": "2026-05-15T22:38:12.663Z"
     },
     {
       "name": "ai-risk-management",
@@ -1361,7 +1361,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "8E82UwKFNraXV/MKAbiUV6gUryYuN+Ff/kiv1aW4/XtriShdTyt/UgRuQJ8LXGXl0jMH8hRJ/xTAV8LOJqexDA==",
-      "signed_at": "2026-05-15T22:15:26.984Z"
+      "signed_at": "2026-05-15T22:38:12.663Z"
     },
     {
       "name": "sector-healthcare",
@@ -1421,7 +1421,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "BDuLcpTeFp2BNSf1q4rYOhYKNhlgd3o5RZ0Uw9xW5olyYxPbZSgqekQ+6Ggaec09s7y6sqR37GS0vuAMdbrdDQ==",
-      "signed_at": "2026-05-15T22:15:26.984Z"
+      "signed_at": "2026-05-15T22:38:12.664Z"
     },
     {
       "name": "sector-financial",
@@ -1502,7 +1502,7 @@
         "TIBER-EU framework v2.0 alignment with DORA TLPT RTS (JC 2024/40); cross-recognition with CBEST and iCAST"
       ],
       "signature": "w12QqGBlRDaDVYug9uQVmEbxR7+gX23rOKZSjlt3XcszYDHBCRiP4cBRKMuEguu44DCaQsg+Btu4vAVMlss9Dg==",
-      "signed_at": "2026-05-15T22:15:26.984Z"
+      "signed_at": "2026-05-15T22:38:12.664Z"
     },
     {
       "name": "sector-federal-government",
@@ -1571,7 +1571,7 @@
         "Australia PSPF 2024 revision and ISM quarterly updates — track for Essential Eight Maturity Level requirements for federal entities"
       ],
       "signature": "nMsyJ+rp5fM8/VjC7zsZyDjOC4hpxB+noT1VX7W0HBlq5t3SY56cwOGApwES/kBcCuf4qexKY376OxUr93zvCQ==",
-      "signed_at": "2026-05-15T22:15:26.985Z"
+      "signed_at": "2026-05-15T22:38:12.665Z"
     },
     {
       "name": "sector-energy",
@@ -1636,7 +1636,7 @@
         "ICS-CERT advisory feed (https://www.cisa.gov/news-events/cybersecurity-advisories/ics-advisories) for vendor CVEs in Siemens, Rockwell, Schneider Electric, ABB, GE Vernova, Hitachi Energy, AVEVA / OSIsoft PI"
       ],
       "signature": "L1moEqEGkBkqY/3ohJcfqrlJn40UurDCyb2MOP/IwTAeZD+QbVZ17/drdsydkJ6qSXPiyiE6u8HDfZsDS13NBQ==",
-      "signed_at": "2026-05-15T22:15:26.985Z"
+      "signed_at": "2026-05-15T22:38:12.665Z"
     },
     {
       "name": "sector-telecom",
@@ -1722,7 +1722,7 @@
         "O-RAN SFG / WG11 security specifications"
       ],
       "signature": "VKLuoRkFq7lNXqySipwzPSaiHaqemHQ2cReemF/Xy9hUpD9orQaTVZWClOA4lzoF6d2eQ/CeS///Jjnj4g9dCg==",
-      "signed_at": "2026-05-15T22:15:26.986Z"
+      "signed_at": "2026-05-15T22:38:12.666Z"
     },
     {
       "name": "api-security",
@@ -1791,7 +1791,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "JHGu5OI35payaFR1At3XZIX4HnflgF3lI9vk/XsHpu0loWHtbTiA/SrNzTuWO+be8aIfd36uNz7WnJNwBTCHDA==",
-      "signed_at": "2026-05-15T22:15:26.986Z"
+      "signed_at": "2026-05-15T22:38:12.666Z"
     },
     {
       "name": "cloud-security",
@@ -1872,7 +1872,7 @@
         "CISA KEV additions for cloud-control-plane CVEs (IMDSv1 abuses, federation token mishandling, cross-tenant boundary failures); CISA Cybersecurity Advisories for cross-cloud advisories"
       ],
       "signature": "UEn0305KAEqIfYOdzadLBdPG/PJ+3sJ/8ubvPFNcXfqXp2uOWTfqGUqY65PApA992VEEa1RBQt5R7Nyhd/OjDQ==",
-      "signed_at": "2026-05-15T22:15:26.986Z"
+      "signed_at": "2026-05-15T22:38:12.666Z"
     },
     {
       "name": "container-runtime-security",
@@ -1934,7 +1934,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "lPd9tHAskNapjrWwFWhsb8ntAL0xovDCIGElsOCyjcafzby4ArwRw5Lq28sfNloJZAhMN+AWj+lDdFytiUQHCQ==",
-      "signed_at": "2026-05-15T22:15:26.987Z"
+      "signed_at": "2026-05-15T22:38:12.667Z"
     },
     {
       "name": "mlops-security",
@@ -2005,7 +2005,7 @@
         "MITRE ATLAS v5.2 — track AML.T0010 sub-technique expansion and any new MLOps-pipeline-specific TTPs"
       ],
       "signature": "U+HyElcP007FIblXUE/nFpj/rZ5z3VohsvxRCWEuuJDLdOnsXYEadb7ccr3X7S4aRG2MC4T2KtVtgbKIuO5QDw==",
-      "signed_at": "2026-05-15T22:15:26.987Z"
+      "signed_at": "2026-05-15T22:38:12.667Z"
     },
     {
       "name": "incident-response-playbook",
@@ -2067,7 +2067,7 @@
         "NYDFS 23 NYCRR 500.17 amendments tightening ransom-payment 24h disclosure operationalization"
       ],
       "signature": "XB3TVjNRBlqqbIhatFoYtTJHTS51nVt9k7DVrb2roUflLDjbCnaTbrpztA2oqJyyxwgnLlX+K7NW8oYOYEMeCg==",
-      "signed_at": "2026-05-15T22:15:26.987Z"
+      "signed_at": "2026-05-15T22:38:12.667Z"
     },
     {
       "name": "email-security-anti-phishing",
@@ -2120,7 +2120,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "RiCryJEd66T2NNcSo/mZTd3sGWDycE3C37guLJanLdVL5co35DrPFmIl8qy3ZM/y+Wzg5vpny8VKgr1//1/bCA==",
-      "signed_at": "2026-05-15T22:15:26.988Z"
+      "signed_at": "2026-05-15T22:38:12.668Z"
     },
     {
       "name": "age-gates-child-safety",
@@ -2188,11 +2188,11 @@
         "US state adult-site age-verification laws — 19+ states by mid-2026 (TX HB 18 upheld by SCOTUS June 2025 in Free Speech Coalition v. Paxton); track ongoing challenges in remaining states"
       ],
       "signature": "MMWvg3lIf5ygm31zyf1E43t3W9MfRbMBBPrqlj1wOa8AxVJL8LICnAXfmyJ/TNJXwpF+rfZeDdoxXkql8wmtBA==",
-      "signed_at": "2026-05-15T22:15:26.988Z"
+      "signed_at": "2026-05-15T22:38:12.668Z"
     }
   ],
   "manifest_signature": {
     "algorithm": "Ed25519",
-    "signature_base64": "G344ApDWCadCdjzlTgTMnX/DbpyebRxP+TCeSpUVupPmXHX6EL9Sq61YmAbliIzvktl8xK5JerqbGAXXFOPaDA=="
+    "signature_base64": "hRjCIjBncoCecBmhExyEZhUaTyUAe0s3pbLg1Oj7eHaSsdEfynFJ2RvW+LqpEPokeS6HgaU9ORyC4LMNBiWeAQ=="
   }
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@blamejs/exceptd-skills",
-  "version": "0.12.26",
+  "version": "0.12.27",
   "description": "AI security skills grounded in mid-2026 threat reality, not stale framework documentation. 38 skills, 10 catalogs, 34 jurisdictions, pre-computed indexes, Ed25519-signed.",
   "keywords": [
     "ai-security",

package/sbom.cdx.json

@@ -1,10 +1,10 @@
 {
   "bomFormat": "CycloneDX",
   "specVersion": "1.6",
-  "serialNumber": "urn:uuid:b073ce4f-f31d-4836-a0fb-181ae601a5cf",
+  "serialNumber": "urn:uuid:c26c612d-400e-4270-9716-299e76224a35",
   "version": 1,
   "metadata": {
-    "timestamp": "2026-05-15T22:10:26.119Z",
+    "timestamp": "2026-05-15T22:38:14.241Z",
     "tools": [
       {
         "name": "hand-written",
@@ -13,10 +13,10 @@
       }
     ],
     "component": {
-      "bom-ref": "pkg:npm/@blamejs/exceptd-skills@0.12.26",
+      "bom-ref": "pkg:npm/@blamejs/exceptd-skills@0.12.27",
       "type": "application",
       "name": "@blamejs/exceptd-skills",
-      "version": "0.12.26",
+      "version": "0.12.27",
       "description": "AI security skills grounded in mid-2026 threat reality, not stale framework documentation. 38 skills, 10 catalogs, 34 jurisdictions, pre-computed indexes, Ed25519-signed.",
       "licenses": [
         {
@@ -25,11 +25,11 @@
           }
         }
       ],
-      "purl": "pkg:npm/%40blamejs/exceptd-skills@0.12.26",
+      "purl": "pkg:npm/%40blamejs/exceptd-skills@0.12.27",
       "externalReferences": [
         {
           "type": "distribution",
-          "url": "https://www.npmjs.com/package/@blamejs/exceptd-skills/v/0.12.26"
+          "url": "https://www.npmjs.com/package/@blamejs/exceptd-skills/v/0.12.27"
         },
         {
           "type": "vcs",