@blamejs/exceptd-skills 0.12.34 → 0.12.35

package/CHANGELOG.md

@@ -1,5 +1,38 @@
 # Changelog
 
+## 0.12.35 — 2026-05-16
+
+Cycle 15 audit pass — security hardening + ATLAS pin sweep across skills + forward-watch backfill. Three angles audited in parallel (performance, exceptd's own input-handling security, forward-watch staleness); two surfaced P1 fixes that ship here.
+
+### Security
+
+**`--evidence -` (stdin) now enforces the 32 MiB cap.** Pre-fix the stdin branch did `fs.readFileSync(0, "utf8")` with no length limit while the file-path branch enforced `MAX_EVIDENCE_BYTES`. An attacker piping multi-GB JSON would OOM the runner. Stdin now reads in 1 MB chunks and bails at the cap with a structured `ok:false` error + exit 1. New `tests/evidence-input-hardening.test.js` pins both the cap and the small-payload happy path.
+
+**Prototype-pollution defense on operator-submitted `precondition_checks`.** Pre-fix `Object.assign(out.precondition_checks, submission.precondition_checks)` re-invoked the `__proto__` setter when the operator's JSON contained a `__proto__` key. JSON.parse keeps `__proto__` as an own data property (CreateDataProperty), but Object.assign reads via `[[Get]]` and writes via `[[Set]]`, which triggers the prototype-rebinding setter. Global `Object.prototype` stayed clean (Node confines the rebind to the assignment target), but the polluted local prototype was a defense-in-depth gap — any future code path calling `.hasOwnProperty()` directly on the bag would observe pollution. Switched to own-key iteration that explicitly skips `__proto__` / `constructor` / `prototype` keys.
+
+### Bugs
+
+**ATLAS v5.1.0 → v5.4.0 sweep across operator-facing surface.** v0.12.34 fixed README + ARCHITECTURE but cycle 15 found 27 skill bodies, 2 builder scripts, the skill-frontmatter schema, and 17 derived indexes all still citing the stale pin. 30 files modified; canonical pin string `ATLAS v5.4.0 (February 2026)` used uniformly. NYDFS rollout reference "phased in through November 2025" in sector-financial intentionally preserved (different context). The extended docs-pin test now scans `skills/` + `data/_indexes/` + `scripts/` for ATLAS-context mismatches in addition to README + ARCHITECTURE.
+
+**5 past-due forward_watch entries re-dated with realized backfill.**
+- *mlops-security* — predicted "ATLAS v5.2 — track AML.T0010 sub-technique expansion." ATLAS shipped v5.4.0 on 2026-02-06; the expansion landed plus "Publish Poisoned AI Agent Tool" and "Escape to Host" techniques. Backfilled with the realized state + re-anchored to ATLAS v5.5 / v6.0 horizon.
+- *age-gates-child-safety AU under-16 ban* — predicted "implementation deferred to late 2025." AU Online Safety Amendment (Social Media Minimum Age) Act 2024 entered force 2025-12-10; 4.7M+ accounts deactivated by mid-Jan 2026; 31 March 2026 formal investigations of Facebook / Instagram / Snapchat / TikTok / YouTube. Backfilled + re-anchored to first civil-penalty proceedings (H2 2026).
+- *age-gates-child-safety UK OSA enforcement* — predicted "first enforcement decisions expected late 2025 / 2026." Ofcom has 80+ investigations open; first £1M OSA fine issued for age-assurance failure. Backfilled + re-anchored to the April / July / November 2026 OSA milestones.
+- *age-gates-child-safety eSafety actions* — same shape; backfilled to the 31 March 2026 formal investigations.
+- *sector-energy TSA Pipeline SD* — predicted "next reissue cycle anticipated mid-2026." Current cadence: SD-Pipeline-2021-02F expires 2 May 2026; expected 02G now overdue as of cycle 15. Updated to reflect current series + re-anchored to H2 2026.
+
+### Features
+
+**Extended `tests/docs-catalog-counts-pinned.test.js`** to scan `skills/**/*.md`, `data/_indexes/*.json`, and `scripts/**/*.js` for ATLAS version mentions in addition to README + ARCHITECTURE. A future stale-pin in any of those operator-facing files now fails the gate at CI time. Closes the cycle 15 P2 F6 finding which revealed v0.12.34's docs-pin gate was scoped too narrowly.
+
+### Internal
+
+- Cycle 15 audit: 3 read-only agents dispatched (performance, security, forward-watch). Performance audit confirmed no regression — every CLI op within budget; `cross-ref-api.js` mtime-keyed catalog cache + per-run playbook cache prevent N+1 patterns. Watchlist verb at 99ms has a 30-40ms caching opportunity (deferred to v0.13 backlog).
+- 16/16 playbooks now validate clean (no warnings) — same green state as v0.12.33's cred-stores cleanup.
+- Test count 1125 → 1131 (4 new evidence-input-hardening tests + 1 extended docs-pin test + 1 sanity sweep).
+- 14/14 predeploy gates green.
+
+
 ## 0.12.34 — 2026-05-15
 
 Documentation accuracy pass. README.md + ARCHITECTURE.md were still pinning ATLAS v5.1.0 and ATT&CK v17 — outdated for nine releases. v0.12.29 fixed the manifest.json pin (cycle 9 Hard Rule #8 audit) but the operator-facing docs weren't updated. Plus catalog count drift (38 skills → 42; 28 D3FEND entries → 29).

package/bin/exceptd.js

@@ -732,16 +732,34 @@ function readJsonFile(filePath) {
 
 function readEvidence(evidenceFlag) {
   if (!evidenceFlag) return {};
-  if (evidenceFlag === "-") {
-    const buf = fs.readFileSync(0, "utf8"); // stdin
-    if (!buf.trim()) return {};
-    return JSON.parse(buf);
-  }
-  // v0.12.12: read enforces a max size to defend against an operator
-  // accidentally passing a multi-gigabyte file (binary, log, or
+  // v0.12.12: file-path branch enforces a max size to defend against an
+  // operator accidentally passing a multi-gigabyte file (binary, log, or
   // adversarial JSON bomb). 32 MB is well beyond any legitimate
   // submission and still drains in a single read on modern hardware.
+  // v0.12.35 (cycle 15 security F1): apply the SAME cap to the stdin
+  // branch. Pre-fix `--evidence -` was uncapped — an attacker piping
+  // multi-GB JSON would OOM the runner. Read in 1 MB chunks and bail
+  // at the limit rather than letting Node grow the heap unbounded.
   const MAX_EVIDENCE_BYTES = 32 * 1024 * 1024;
+  if (evidenceFlag === "-") {
+    // fs.readFileSync(0) does NOT respect a maxBuffer option, so we read
+    // incrementally to enforce the cap. Stdin is a pipe / fifo on every
+    // platform; reading until EOF in chunks is correct.
+    const chunks = [];
+    let total = 0;
+    const buf = Buffer.alloc(1024 * 1024);
+    let n;
+    while ((n = fs.readSync(0, buf, 0, buf.length, null)) > 0) {
+      total += n;
+      if (total > MAX_EVIDENCE_BYTES) {
+        throw new Error(`evidence on stdin exceeds size limit: ${total}+ bytes > ${MAX_EVIDENCE_BYTES} byte limit. Pipe a smaller submission, or split into multiple playbook runs.`);
+      }
+      chunks.push(Buffer.from(buf.subarray(0, n)));
+    }
+    const text = Buffer.concat(chunks).toString("utf8");
+    if (!text.trim()) return {};
+    return JSON.parse(text);
+  }
   let stat;
   try { stat = fs.statSync(evidenceFlag); }
   catch (e) { throw new Error(`evidence path not readable: ${e.message}`); }

package/data/_indexes/_meta.json

@@ -1,10 +1,10 @@
 {
   "schema_version": "1.1.0",
-  "generated_at": "2026-05-16T05:57:55.851Z",
+  "generated_at": "2026-05-16T06:44:58.896Z",
   "generator": "scripts/build-indexes.js",
   "source_count": 54,
   "source_hashes": {
-    "manifest.json": "50090cebd148a129469ac8d38995d93882f16b2c3bad8a0f8bb27c0104bb3377",
+    "manifest.json": "2132d625977bfc7e5715ba150c82dc432460db46b9063e562d4bad44608a244a",
     "data/atlas-ttps.json": "259e76e4252c7a56c17bbe96982a5e37ac89131c2d37a547fe38d64dcacfd763",
     "data/attack-techniques.json": "51f60819aef36e960fd768e44dcc725e137781534fbbb028e5ef6baa21defa1d",
     "data/cve-catalog.json": "55aa571423fd254e6581b22a189a1c0eeb76d467b0ef645d1dfa39f74b28c569",
@@ -17,45 +17,45 @@
     "data/rfc-references.json": "e253a548c8a829d178d5aea601e268724b85c936ccbfa51c2e5d80c5f8efe2b0",
     "data/zeroday-lessons.json": "c927653e6d9d86d1a36c23a3d782b099a49675ccd928cdc204887c79b0cfbbf1",
     "skills/kernel-lpe-triage/skill.md": "8e94bfd38d6db47342fbbe95a0c8df8f7c38743982c13e9de6a1c59cd3783d33",
-    "skills/ai-attack-surface/skill.md": "13e543fc92b9b27cdb647dce96a9eeb44919e0fa92ec41e8265a9981a23e7b79",
-    "skills/mcp-agent-trust/skill.md": "3cec1dce668deec44cb7330e165e89cee8379dd90833519004d566baf72c038c",
-    "skills/framework-gap-analysis/skill.md": "573a097ceb4c952fe7ab3db765c942d06cc8e90f7cda3c42928db35cdcd7cf7b",
-    "skills/compliance-theater/skill.md": "367cde42553dfb59b0cb6e8afb6e88be28ec0ab73682ea3a9d397ca0068753bc",
-    "skills/exploit-scoring/skill.md": "4213724d59d33d8fe768b3ce58edc3aed25c0f06031183542937a14d538ea94d",
-    "skills/rag-pipeline-security/skill.md": "fc027d5e101a9934b402ed4086b9cbb8b2ee6b86f00e1feb54fe15a2018d89fc",
-    "skills/ai-c2-detection/skill.md": "cdfbc086ed2b755a9d3170d66d0c33519478b693fb59944ac95a1749beb5c810",
-    "skills/policy-exception-gen/skill.md": "79db45ba722a6dd9bba25bf84e0b52cf659b56b662193cef80a8273337e41df9",
-    "skills/threat-model-currency/skill.md": "d1cf822c1e8a81466dc49e81b19f42d863c82bd8f8c878215a738e6ae9112fc5",
+    "skills/ai-attack-surface/skill.md": "853ea46b500fa60b5f5db1137629f8b64447b5df2c8346c15c6cbd1e59285532",
+    "skills/mcp-agent-trust/skill.md": "b09a33e71a0cc13ec70e7e750ac4b91887b657d293d92c3cdb49a4e094adcfea",
+    "skills/framework-gap-analysis/skill.md": "4994b47c2618d24e5557f2a23de21960f6f12a6d66d1b8780b4de6d9d3735dfe",
+    "skills/compliance-theater/skill.md": "5fa6207256d002c42a28a90d15b9a9ef0503ae7dba9b55b4098e2e52607377f4",
+    "skills/exploit-scoring/skill.md": "91bab353257383bd21e49005c1c8188b98b46642184dea29729ad45fc732d698",
+    "skills/rag-pipeline-security/skill.md": "96d26b90539bda836032c2fc2935e0d5736f40bcd286165979c0ed34f47f3ce6",
+    "skills/ai-c2-detection/skill.md": "4f986ac65d4cba36ef9173d204acaf81646a9f7c42623ebba0973ea0108133c0",
+    "skills/policy-exception-gen/skill.md": "78a8623700eab1801387e4792611529089b6248ff3faef15d70c0093609ec323",
+    "skills/threat-model-currency/skill.md": "9fcddaa06334d104cb160bace92c92cdcb6b2881f579b82970e42fbd3d213a05",
     "skills/global-grc/skill.md": "e0487de49679172347653d8c191d1f269193de6f444f6b0c6396d326e45bd72e",
-    "skills/zeroday-gap-learn/skill.md": "5caa007d8c95f49ded22db581fd447f735c713b60866d18f5371457b0a60778b",
+    "skills/zeroday-gap-learn/skill.md": "59a0d7cd85b923b3f5633bdc15c1a88eef7dea6332480d93b0bb0ae93a4cd0fe",
     "skills/pqc-first/skill.md": "a5eb776e1ea3bb422a4c18a3bdf39ad2ec1651b3c25e65c89428ba319141b275",
-    "skills/skill-update-loop/skill.md": "48617511ee8efdb257e9caee543009150f0638380ad92882b62021c7eb2f9d16",
-    "skills/security-maturity-tiers/skill.md": "817f0bca44297d03fb206c446fbf3f93aa3a64c309d6ef5efd046e6e47874030",
+    "skills/skill-update-loop/skill.md": "0d5b08f71e4853a634344eaf260da90bd7a29d4df48200ee75be878dce3467e2",
+    "skills/security-maturity-tiers/skill.md": "2027161ab0a3382ba506cca7be1966e11367bbdf861de316facd54e25fef5761",
     "skills/researcher/skill.md": "51d03d9eaea52d2bbbdd67709035db494d44819ce58931ca025cab3025c9fad7",
-    "skills/attack-surface-pentest/skill.md": "3c42af04a5db79ce10c952f4bc7c9216116e77d38e6d57feb1f1c13678c94e53",
-    "skills/fuzz-testing-strategy/skill.md": "83b1929a0d1e09a58908b91125ebc91ff14323ab9acc9bab6c4b04903b69b837",
-    "skills/dlp-gap-analysis/skill.md": "eed1a5de55a9200e6f5c8ac49b0240b54d30b895ce40ccce9d286f5d9b40f664",
-    "skills/supply-chain-integrity/skill.md": "2f9bc5d5f0b70bf468d02a71ced718b50196e6139dfb1424d31cbe017d422027",
+    "skills/attack-surface-pentest/skill.md": "9cb02d9d428ef674ba8af8c935f86ddca197f0ba1f7d216d76ce1b268ae4bb6a",
+    "skills/fuzz-testing-strategy/skill.md": "eaab866236c8cb8a6c8ddc5e65d786ee6d598682de6014ed4e83c6cd163a2128",
+    "skills/dlp-gap-analysis/skill.md": "ee9fd4928d96b2e9957d8db9dec90c844443fbcf2a292e69040bfa47c78a4f4b",
+    "skills/supply-chain-integrity/skill.md": "b44a8704e37d8efcd97d8e998e6b2b454e1bc3ba956c6aaf105aa155ffffd2a8",
     "skills/defensive-countermeasure-mapping/skill.md": "e62c71ba3be2b4d0f7dfa529fec007cba6bee3013f76b93756e3e6310f2d22ab",
     "skills/identity-assurance/skill.md": "6fd734d5cf8eed031537c9ccb1ad11c09ec4e88d31c45d86046a2154a6770990",
-    "skills/ot-ics-security/skill.md": "d239ed497816e00ad14568e9fcca68ffdc7cb0c2a2cbd4960b35fab2065cce31",
-    "skills/coordinated-vuln-disclosure/skill.md": "c96fd2254abf8a29819f8175da85094bea1afe589fecc92abcf1289b30895030",
-    "skills/threat-modeling-methodology/skill.md": "d57d1acc46851d4f1580858c60a90cc20732ca8a5a46da2c50e71c9bdf4cc0b4",
-    "skills/webapp-security/skill.md": "69b16f51ce79cbebd15120d6a0de1c116439bc4739c7dcaa0ecd451614038ad5",
+    "skills/ot-ics-security/skill.md": "2a30c888e515bed3c121e7396f841e15cad53fe443b3f0a1c3f2670c8c317339",
+    "skills/coordinated-vuln-disclosure/skill.md": "0e875953bb8a38a89c8ec5d2a9ef967b12e9a9f166dc9356723f10304fd0535e",
+    "skills/threat-modeling-methodology/skill.md": "bb34933a1eee2cd1da98da5a5dada2c7fc7ebb0bddf5afb39e1f6ee26064d151",
+    "skills/webapp-security/skill.md": "6fdae41856963df0f8655fb52df7cd26b6b47031f55dfe897003ed9647a73ab5",
     "skills/ai-risk-management/skill.md": "10d31ca594449e1fef4c34ea45448ab30a6ffdc2fe1faf4ccaf0a1dd05d67774",
-    "skills/sector-healthcare/skill.md": "97b4486419ab4480266bf2e938564d52bb1cdd70faae09697f695772adf02029",
-    "skills/sector-financial/skill.md": "eec3ce95f36a0f70532aac2f658ad6fb350233dd49c7d95da91144e6c4c4d16c",
-    "skills/sector-federal-government/skill.md": "48c3c019502c8b758598331dbad8a9b121f8dd3dc6fc68bfaf506eba7e3843e5",
-    "skills/sector-energy/skill.md": "875799aa2ad88744b646583fef0a3399abd42a979541dc99bf39825a5ef48ce9",
+    "skills/sector-healthcare/skill.md": "217066e5961fbc3fcd1b5e3df42f299d7aeaf3b5f25e913152836b77f211f96d",
+    "skills/sector-financial/skill.md": "77f6355eb7672f2157bf3d18bfe1d6042efe302468ebddd48ffc385655bf4d10",
+    "skills/sector-federal-government/skill.md": "4b5b2f46c97a1571eecbb1c92ca40ac69a8cafc9f74f39539a08cb539ee65f39",
+    "skills/sector-energy/skill.md": "b3f1a979beab4f22d689ea74c6aa43b7f1b9017a9b2110310adc2af8305fa134",
     "skills/sector-telecom/skill.md": "3489410b0905cbf6b392ea7f7cde35ccd4b03de0d22d2d1b0c671e46d70962c9",
-    "skills/api-security/skill.md": "302f7f6a071b856cc55a4cb5f0bc3f8566e31b5ebca58ca3bd78a91d4b6665ca",
-    "skills/cloud-security/skill.md": "e0574c153aefbb0fc4581c78bc2d708ab7c49d6b5a45a985e51967b8ea740eb9",
-    "skills/container-runtime-security/skill.md": "f06260f0c468d6a4f0409294899017edab45c98d71db1fedd7a630fe6a7bf53a",
-    "skills/mlops-security/skill.md": "e6a296fc67724aa3b026c0039f44867b44cf0926eade4fe616bfd0a4c77310bf",
-    "skills/incident-response-playbook/skill.md": "8ef7ce1246dc1329b6df3cc9de8d79d35e2c02c703dcef20f35b312b1c24fd52",
-    "skills/ransomware-response/skill.md": "603126d81f6c3619f0b2f6d81ea1d6b64f9c8c1296f877ad2e6d802ddab09165",
+    "skills/api-security/skill.md": "75dcb1b9395de2be4ca60e53f900692721b7ef66ded3e510a20d17f35daf982d",
+    "skills/cloud-security/skill.md": "56f0d5d6cf182d347e84baa95a04c39be51e82da3360dac48fcf5d8c4e56a9c3",
+    "skills/container-runtime-security/skill.md": "7e0806b9e13db120f9b65d5f48b33db9f1026c4c2d719838ef0f0c8778ec4365",
+    "skills/mlops-security/skill.md": "cb6871691028f55d59e3efe47be2f1d6bf65fa8c6f3cf301e78d5d119fe3616d",
+    "skills/incident-response-playbook/skill.md": "0695ee43881527459f657a90276748922347f16dd494ae2b98e2a9396c570a44",
+    "skills/ransomware-response/skill.md": "15de039c5679215b7ceb9a55494f614b06fe618aa0f69ce8aff004dc9a841fa4",
     "skills/email-security-anti-phishing/skill.md": "b5a7693b3ddbd6cd83303d092bc5e324db431245d25c4945d9f65fcffa1995e7",
-    "skills/age-gates-child-safety/skill.md": "c741d7dca9da0abb09bdebb8a02e803ce4ae9fb9a6904fb8df3ec19cae83917d",
+    "skills/age-gates-child-safety/skill.md": "66c7f6537077e4e949214ebf3864cb75de0f50f80fa25d25365c6d7fe485dc7a",
     "skills/cloud-iam-incident/skill.md": "10e2af2cf8292f457cd3877bcee37f6ee30c80037a3ef5b367fba25195c7a791",
     "skills/idp-incident-response/skill.md": "3d75d7a0fc5b9a3c584ac5c6510f8b6bd63b7b780488541eb193250ae795b4e2"
   },
@@ -78,7 +78,7 @@
     "handoff_dag_nodes": 42,
     "summary_cards": 42,
     "section_offsets_skills": 42,
-    "token_budget_total_approx": 397485,
+    "token_budget_total_approx": 397777,
     "recipes": 8,
     "jurisdiction_clocks": 29,
     "did_ladders": 8,

package/data/_indexes/activity-feed.json

@@ -301,7 +301,7 @@
       "type": "skill_review",
       "artifact": "ai-attack-surface",
       "path": "skills/ai-attack-surface/skill.md",
-      "note": "Comprehensive AI/ML attack surface assessment mapped to MITRE ATLAS v5.1.0 with gap flags"
+      "note": "Comprehensive AI/ML attack surface assessment mapped to MITRE ATLAS v5.4.0 with gap flags"
     },
     {
       "date": "2026-05-01",

package/data/_indexes/catalog-summaries.json

@@ -7,7 +7,7 @@
   "catalogs": {
     "atlas-ttps.json": {
       "path": "data/atlas-ttps.json",
-      "purpose": "MITRE ATLAS TTPs (AML.T0xxx) cited by skills, with tactic, name, description. Pinned to ATLAS v5.1.0 (November 2025).",
+      "purpose": "MITRE ATLAS TTPs (AML.T0xxx) cited by skills, with tactic, name, description. Pinned to ATLAS v5.4.0 (February 2026).",
       "schema_version": "1.0.0",
       "last_updated": "2026-05-15",
       "tlp": "CLEAR",

package/data/_indexes/recipes.json

@@ -19,7 +19,7 @@
       "steps": [
         {
           "skill": "ai-attack-surface",
-          "why": "Comprehensive attack-surface inventory mapped to ATLAS v5.1.0 with gap flags."
+          "why": "Comprehensive attack-surface inventory mapped to ATLAS v5.4.0 with gap flags."
         },
         {
           "skill": "ai-c2-detection",

package/data/_indexes/section-offsets.json

@@ -150,7 +150,7 @@
           "h3_count": 0
         },
         {
-          "name": "TTP Mapping (MITRE ATLAS v5.1.0)",
+          "name": "TTP Mapping (MITRE ATLAS v5.4.0)",
           "normalized_name": "ttp-mapping",
           "line": 166,
           "byte_start": 13330,
@@ -329,7 +329,7 @@
           "h3_count": 1
         },
         {
-          "name": "TTP Mapping (MITRE ATLAS v5.1.0 and ATT&CK)",
+          "name": "TTP Mapping (MITRE ATLAS v5.4.0 and ATT&CK)",
           "normalized_name": "ttp-mapping",
           "line": 70,
           "byte_start": 5908,
@@ -432,7 +432,7 @@
           "h3_count": 0
         },
         {
-          "name": "TTP Mapping (MITRE ATLAS v5.1.0 and ATT&CK)",
+          "name": "TTP Mapping (MITRE ATLAS v5.4.0 and ATT&CK)",
           "normalized_name": "ttp-mapping",
           "line": 73,
           "byte_start": 7766,
@@ -674,7 +674,7 @@
           "h3_count": 0
         },
         {
-          "name": "TTP Mapping (MITRE ATLAS v5.1.0)",
+          "name": "TTP Mapping (MITRE ATLAS v5.4.0)",
           "normalized_name": "ttp-mapping",
           "line": 183,
           "byte_start": 12490,
@@ -795,7 +795,7 @@
           "h3_count": 2
         },
         {
-          "name": "TTP Mapping (MITRE ATLAS v5.1.0 + MITRE ATT&CK)",
+          "name": "TTP Mapping (MITRE ATLAS v5.4.0 + MITRE ATT&CK)",
           "normalized_name": "ttp-mapping",
           "line": 324,
           "byte_start": 14009,
@@ -898,7 +898,7 @@
           "h3_count": 0
         },
         {
-          "name": "TTP Mapping (MITRE ATLAS v5.1.0 and ATT&CK)",
+          "name": "TTP Mapping (MITRE ATLAS v5.4.0 and ATT&CK)",
           "normalized_name": "ttp-mapping",
           "line": 83,
           "byte_start": 6689,
@@ -1812,7 +1812,7 @@
           "h3_count": 0
         },
         {
-          "name": "TTP Mapping (MITRE ATLAS v5.1.0 + MITRE ATT&CK v17)",
+          "name": "TTP Mapping (MITRE ATLAS v5.4.0 + MITRE ATT&CK v17)",
           "normalized_name": "ttp-mapping",
           "line": 124,
           "byte_start": 10961,
@@ -1897,7 +1897,7 @@
           "h3_count": 0
         },
         {
-          "name": "TTP Mapping (MITRE ATLAS v5.1.0 + MITRE ATT&CK Enterprise)",
+          "name": "TTP Mapping (MITRE ATLAS v5.4.0 + MITRE ATT&CK Enterprise)",
           "normalized_name": "ttp-mapping",
           "line": 90,
           "byte_start": 9741,
@@ -1982,7 +1982,7 @@
           "h3_count": 1
         },
         {
-          "name": "TTP Mapping (MITRE ATLAS v5.1.0 + MITRE ATT&CK)",
+          "name": "TTP Mapping (MITRE ATLAS v5.4.0 + MITRE ATT&CK)",
           "normalized_name": "ttp-mapping",
           "line": 128,
           "byte_start": 15001,
@@ -2622,7 +2622,7 @@
           "h3_count": 0
         },
         {
-          "name": "TTP Mapping (MITRE ATT&CK Enterprise + ATLAS v5.1.0)",
+          "name": "TTP Mapping (MITRE ATT&CK Enterprise + ATLAS v5.4.0)",
           "normalized_name": "ttp-mapping",
           "line": 112,
           "byte_start": 8673,
@@ -3073,21 +3073,21 @@
     },
     "sector-energy": {
       "path": "skills/sector-energy/skill.md",
-      "total_bytes": 53837,
+      "total_bytes": 54006,
       "total_lines": 413,
       "frontmatter": {
         "line_start": 1,
         "line_end": 64,
         "byte_start": 0,
-        "byte_end": 2378
+        "byte_end": 2547
       },
       "sections": [
         {
           "name": "Threat Context (mid-2026)",
           "normalized_name": "threat-context",
           "line": 70,
-          "byte_start": 3114,
-          "byte_end": 8467,
+          "byte_start": 3283,
+          "byte_end": 8636,
           "bytes": 5353,
           "h3_count": 0
         },
@@ -3095,8 +3095,8 @@
           "name": "Framework Lag Declaration",
           "normalized_name": "framework-lag-declaration",
           "line": 96,
-          "byte_start": 8467,
-          "byte_end": 16804,
+          "byte_start": 8636,
+          "byte_end": 16973,
           "bytes": 8337,
           "h3_count": 0
         },
@@ -3104,8 +3104,8 @@
           "name": "TTP Mapping",
           "normalized_name": "ttp-mapping",
           "line": 121,
-          "byte_start": 16804,
-          "byte_end": 23180,
+          "byte_start": 16973,
+          "byte_end": 23349,
           "bytes": 6376,
           "h3_count": 0
         },
@@ -3113,8 +3113,8 @@
           "name": "Exploit Availability Matrix",
           "normalized_name": "exploit-availability-matrix",
           "line": 147,
-          "byte_start": 23180,
-          "byte_end": 27186,
+          "byte_start": 23349,
+          "byte_end": 27355,
           "bytes": 4006,
           "h3_count": 0
         },
@@ -3122,8 +3122,8 @@
           "name": "Analysis Procedure",
           "normalized_name": "analysis-procedure",
           "line": 165,
-          "byte_start": 27186,
-          "byte_end": 38132,
+          "byte_start": 27355,
+          "byte_end": 38301,
           "bytes": 10946,
           "h3_count": 13
         },
@@ -3131,8 +3131,8 @@
           "name": "Output Format",
           "normalized_name": "output-format",
           "line": 277,
-          "byte_start": 38132,
-          "byte_end": 40920,
+          "byte_start": 38301,
+          "byte_end": 41089,
           "bytes": 2788,
           "h3_count": 13
         },
@@ -3140,8 +3140,8 @@
           "name": "Compliance Theater Check",
           "normalized_name": "compliance-theater-check",
           "line": 342,
-          "byte_start": 40920,
-          "byte_end": 45911,
+          "byte_start": 41089,
+          "byte_end": 46080,
           "bytes": 4991,
           "h3_count": 0
         },
@@ -3149,8 +3149,8 @@
           "name": "Defensive Countermeasure Mapping",
           "normalized_name": "defensive-countermeasure-mapping",
           "line": 380,
-          "byte_start": 45911,
-          "byte_end": 50462,
+          "byte_start": 46080,
+          "byte_end": 50631,
           "bytes": 4551,
           "h3_count": 0
         },
@@ -3158,8 +3158,8 @@
           "name": "Hand-Off / Related Skills",
           "normalized_name": "hand-off",
           "line": 396,
-          "byte_start": 50462,
-          "byte_end": 53837,
+          "byte_start": 50631,
+          "byte_end": 54006,
           "bytes": 3375,
           "h3_count": 0
         }
@@ -3289,7 +3289,7 @@
           "h3_count": 0
         },
         {
-          "name": "TTP Mapping (MITRE ATT&CK Enterprise + ATLAS v5.1.0)",
+          "name": "TTP Mapping (MITRE ATT&CK Enterprise + ATLAS v5.4.0)",
           "normalized_name": "ttp-mapping",
           "line": 124,
           "byte_start": 10439,
@@ -3543,21 +3543,21 @@
     },
     "mlops-security": {
       "path": "skills/mlops-security/skill.md",
-      "total_bytes": 45173,
+      "total_bytes": 45439,
       "total_lines": 330,
       "frontmatter": {
         "line_start": 1,
         "line_end": 66,
         "byte_start": 0,
-        "byte_end": 2132
+        "byte_end": 2398
       },
       "sections": [
         {
           "name": "Threat Context (mid-2026)",
           "normalized_name": "threat-context",
           "line": 70,
-          "byte_start": 2171,
-          "byte_end": 8001,
+          "byte_start": 2437,
+          "byte_end": 8267,
           "bytes": 5830,
           "h3_count": 0
         },
@@ -3565,8 +3565,8 @@
           "name": "Framework Lag Declaration",
           "normalized_name": "framework-lag-declaration",
           "line": 88,
-          "byte_start": 8001,
-          "byte_end": 13783,
+          "byte_start": 8267,
+          "byte_end": 14049,
           "bytes": 5782,
           "h3_count": 0
         },
@@ -3574,8 +3574,8 @@
           "name": "TTP Mapping",
           "normalized_name": "ttp-mapping",
           "line": 112,
-          "byte_start": 13783,
-          "byte_end": 18159,
+          "byte_start": 14049,
+          "byte_end": 18425,
           "bytes": 4376,
           "h3_count": 0
         },
@@ -3583,8 +3583,8 @@
           "name": "Exploit Availability Matrix",
           "normalized_name": "exploit-availability-matrix",
           "line": 137,
-          "byte_start": 18159,
-          "byte_end": 23645,
+          "byte_start": 18425,
+          "byte_end": 23911,
           "bytes": 5486,
           "h3_count": 0
         },
@@ -3592,8 +3592,8 @@
           "name": "Analysis Procedure",
           "normalized_name": "analysis-procedure",
           "line": 163,
-          "byte_start": 23645,
-          "byte_end": 32714,
+          "byte_start": 23911,
+          "byte_end": 32980,
           "bytes": 9069,
           "h3_count": 4
         },
@@ -3601,8 +3601,8 @@
           "name": "Output Format",
           "normalized_name": "output-format",
           "line": 228,
-          "byte_start": 32714,
-          "byte_end": 35392,
+          "byte_start": 32980,
+          "byte_end": 35658,
           "bytes": 2678,
           "h3_count": 10
         },
@@ -3610,8 +3610,8 @@
           "name": "Compliance Theater Check",
           "normalized_name": "compliance-theater-check",
           "line": 281,
-          "byte_start": 35392,
-          "byte_end": 38323,
+          "byte_start": 35658,
+          "byte_end": 38589,
           "bytes": 2931,
           "h3_count": 0
         },
@@ -3619,8 +3619,8 @@
           "name": "Defensive Countermeasure Mapping",
           "normalized_name": "defensive-countermeasure-mapping",
           "line": 297,
-          "byte_start": 38323,
-          "byte_end": 42243,
+          "byte_start": 38589,
+          "byte_end": 42509,
           "bytes": 3920,
           "h3_count": 0
         },
@@ -3628,8 +3628,8 @@
           "name": "Hand-Off / Related Skills",
           "normalized_name": "hand-off",
           "line": 317,
-          "byte_start": 42243,
-          "byte_end": 45173,
+          "byte_start": 42509,
+          "byte_end": 45439,
           "bytes": 2930,
           "h3_count": 0
         }
@@ -3919,7 +3919,7 @@
     },
     "age-gates-child-safety": {
       "path": "skills/age-gates-child-safety/skill.md",
-      "total_bytes": 68916,
+      "total_bytes": 69650,
       "total_lines": 460,
       "frontmatter": {
         "line_start": 1,
@@ -3960,16 +3960,16 @@
           "normalized_name": "exploit-availability-matrix",
           "line": 144,
           "byte_start": 27288,
-          "byte_end": 34620,
-          "bytes": 7332,
+          "byte_end": 35354,
+          "bytes": 8066,
           "h3_count": 0
         },
         {
           "name": "Analysis Procedure",
           "normalized_name": "analysis-procedure",
           "line": 167,
-          "byte_start": 34620,
-          "byte_end": 48753,
+          "byte_start": 35354,
+          "byte_end": 49487,
           "bytes": 14133,
           "h3_count": 4
         },
@@ -3977,8 +3977,8 @@
           "name": "Output Format",
           "normalized_name": "output-format",
           "line": 291,
-          "byte_start": 48753,
-          "byte_end": 53356,
+          "byte_start": 49487,
+          "byte_end": 54090,
           "bytes": 4603,
           "h3_count": 14
         },
@@ -3986,8 +3986,8 @@
           "name": "Compliance Theater Check",
           "normalized_name": "compliance-theater-check",
           "line": 372,
-          "byte_start": 53356,
-          "byte_end": 59441,
+          "byte_start": 54090,
+          "byte_end": 60175,
           "bytes": 6085,
           "h3_count": 0
         },
@@ -3995,8 +3995,8 @@
           "name": "Defensive Countermeasure Mapping",
           "normalized_name": "defensive-countermeasure-mapping",
           "line": 422,
-          "byte_start": 59441,
-          "byte_end": 64583,
+          "byte_start": 60175,
+          "byte_end": 65317,
           "bytes": 5142,
           "h3_count": 0
         },
@@ -4004,8 +4004,8 @@
           "name": "Hand-Off / Related Skills",
           "normalized_name": "hand-off",
           "line": 442,
-          "byte_start": 64583,
-          "byte_end": 68916,
+          "byte_start": 65317,
+          "byte_end": 69650,
           "bytes": 4333,
           "h3_count": 0
         }

package/data/_indexes/summary-cards.json

@@ -60,7 +60,7 @@
       ]
     },
     "ai-attack-surface": {
-      "description": "Comprehensive AI/ML attack surface assessment mapped to MITRE ATLAS v5.1.0 with gap flags",
+      "description": "Comprehensive AI/ML attack surface assessment mapped to MITRE ATLAS v5.4.0 with gap flags",
       "threat_context_excerpt": "The AI attack surface is not speculative. It is actively exploited. The following are confirmed, documented threats as of mid-2026.",
       "produces": "```\n## AI Attack Surface Assessment\n\n**Assessment Date:** YYYY-MM-DD\n**Scope:** [systems/applications assessed]\n\n### Surface Inventory\n| Component | Type | External Input | Tool Use | Risk Level |\n|-----------|------|---------------|----------|------------|\n| [name] | [LLM app / MCP server / coding assistant] | [Yes/No] | [Yes/No] | [Critical/High/Medium/Low] |\n\n### Prompt Injection Exposure\n[Per component: injection surface score, current defenses, estimated bypass rate, recommended controls]\n\n### MCP Trust Assessment\n[Per installed MCP server: signed/unsigned, allowlist status, auth status,  ...",
       "key_xrefs": {