@blamejs/exceptd-skills 0.13.0 → 0.13.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (40) hide show
  1. package/CHANGELOG.md +67 -0
  2. package/bin/exceptd.js +35 -6
  3. package/data/_indexes/_meta.json +26 -26
  4. package/data/_indexes/activity-feed.json +3 -3
  5. package/data/_indexes/catalog-summaries.json +3 -3
  6. package/data/_indexes/chains.json +2868 -700
  7. package/data/_indexes/frequency.json +8 -0
  8. package/data/_indexes/section-offsets.json +517 -517
  9. package/data/_indexes/token-budget.json +66 -66
  10. package/data/atlas-ttps.json +3 -0
  11. package/data/attack-techniques.json +35 -7
  12. package/data/cve-catalog.json +177 -31
  13. package/data/cwe-catalog.json +26 -6
  14. package/data/framework-control-gaps.json +310 -8
  15. package/data/zeroday-lessons.json +996 -0
  16. package/lib/lint-skills.js +50 -1
  17. package/lib/refresh-external.js +7 -0
  18. package/lib/source-advisories.js +281 -0
  19. package/manifest.json +60 -60
  20. package/orchestrator/index.js +183 -1
  21. package/package.json +1 -1
  22. package/sbom.cdx.json +59 -37
  23. package/scripts/check-test-count.js +146 -0
  24. package/scripts/predeploy.js +16 -0
  25. package/skills/age-gates-child-safety/skill.md +1 -0
  26. package/skills/ai-risk-management/skill.md +1 -0
  27. package/skills/defensive-countermeasure-mapping/skill.md +1 -0
  28. package/skills/email-security-anti-phishing/skill.md +1 -0
  29. package/skills/fuzz-testing-strategy/skill.md +1 -0
  30. package/skills/mlops-security/skill.md +1 -0
  31. package/skills/ot-ics-security/skill.md +1 -0
  32. package/skills/researcher/skill.md +1 -0
  33. package/skills/sector-energy/skill.md +1 -0
  34. package/skills/sector-federal-government/skill.md +1 -0
  35. package/skills/sector-telecom/skill.md +1 -0
  36. package/skills/skill-update-loop/skill.md +1 -0
  37. package/skills/threat-model-currency/skill.md +1 -0
  38. package/skills/threat-modeling-methodology/skill.md +1 -0
  39. package/skills/webapp-security/skill.md +1 -0
  40. package/skills/zeroday-gap-learn/skill.md +1 -0
package/data/_indexes/frequency.json CHANGED
@@ -2522,6 +2522,7 @@
2522
2522
  "AU-Essential-8-Patch",
2523
2523
  "AU-ISM-1546",
2524
2524
  "CIS-Controls-v8-10.1",
2525
+ "CIS-Kubernetes-Benchmark-5.7",
2525
2526
  "DORA-Art-9",
2526
2527
  "DORA-Art28",
2527
2528
  "DORA-IA-CTPP-Oversight",
@@ -2539,20 +2540,27 @@
2539
2540
  "HIPAA-Security-Rule-2026-NPRM-164.312",
2540
2541
  "HIPAA-Security-Rule-2026-NPRM-164.314",
2541
2542
  "ISO-27001-2022-A.5.7",
2543
+ "ISO-27001-2022-A.8.22",
2542
2544
  "ISO-27001-2022-A.8.7",
2543
2545
  "NIS2-Art21-identity-management",
2544
2546
  "NIS2-Art21-incident-handling",
2545
2547
  "NIS2-Art21-supply-chain",
2546
2548
  "NIS2-Art21-vulnerability-management",
2549
+ "NIST-800-218-SSDF-PW.4",
2547
2550
  "NIST-800-53-AC-3",
2548
2551
  "NIST-800-53-AC-6",
2552
+ "NIST-800-53-SC-39",
2549
2553
  "NIST-800-53-SC-44",
2550
2554
  "NIST-800-53-SI-10",
2555
+ "NIST-800-53-SR-3",
2556
+ "NIST-AI-RMF-MAP-3.4",
2551
2557
  "OWASP-LLM-Top-10-2025-LLM05",
2558
+ "OWASP-Top-10-2021-A06",
2552
2559
  "PCI-DSS-4.0.1-11.6.1",
2553
2560
  "PCI-DSS-4.0.1-12.10.7",
2554
2561
  "PCI-DSS-4.0.1-12.3.3",
2555
2562
  "PCI-DSS-4.0.1-6.4.3",
2563
+ "SLSA-v1.0-Source-L3",
2556
2564
  "UK-CAF-A1",
2557
2565
  "UK-CAF-B2",
2558
2566
  "UK-CAF-B4",