@blamejs/exceptd-skills 0.13.104 → 0.13.105

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +4 -0
  2. package/data/_indexes/_meta.json +9 -9
  3. package/data/_indexes/activity-feed.json +2 -2
  4. package/data/_indexes/catalog-summaries.json +2 -2
  5. package/data/_indexes/chains.json +680 -0
  6. package/data/atlas-ttps.json +4 -0
  7. package/data/attack-techniques.json +5 -0
  8. package/data/cve-catalog.json +211 -0
  9. package/data/cwe-catalog.json +2 -0
  10. package/data/framework-control-gaps.json +18 -0
  11. package/data/zeroday-lessons.json +100 -0
  12. package/manifest.json +44 -44
  13. package/package.json +2 -2
  14. package/sbom.cdx.json +25 -25
package/CHANGELOG.md CHANGED
@@ -1,5 +1,9 @@
1
1
  # Changelog
2
2
 
3
+ ## 0.13.105 — 2026-05-26
4
+
5
+ CVE catalog — H2O-3 ML platform unauthenticated control plane. Adds two huntr.dev / Protect AI flaws in H2O-3, the open-source ML/AutoML platform, both reachable without authentication. **CVE-2023-6016** (CWE-94, NVD CVSS 9.8 CRITICAL; huntr CNA 10.0) — the dashboard's POJO (Java) model-import feature compiles and runs the imported model code with no authentication, so importing a malicious model gives remote code execution. **CVE-2023-6038** (CWE-862, NVD CVSS 7.5 HIGH; huntr CNA 9.3) — the REST API's file-import path performs no authorization check, letting an unauthenticated attacker read arbitrary files on the host. H2O.ai documents H2O-3 as a trusted-environment product and ships no fix, so both are scored without patch credit and the only remediation is network isolation plus authenticated access control. CVE-2023-6016 reuses the untrusted-model-artifact control (NEW-CTRL-091) — a POJO model is executable code, the same class as the Keras / Hugging Face / NeMo / PyTorch entries — and CVE-2023-6038 reuses the AI-compute control-plane authentication control (NEW-CTRL-088) shared with the Ray entries. CVE count 386 → 388.
6
+
3
7
  ## 0.13.104 — 2026-05-26
4
8
 
5
9
  CVE catalog — ClearML MLOps platform artifact trust. Adds two flaws in ClearML, the MLOps / experiment-tracking platform, where the client SDK mishandles content other collaborators uploaded (HiddenLayer disclosure). **CVE-2024-24590** (CWE-502, NVD CVSS 8.8 HIGH; HiddenLayer CNA 8.0) — the SDK reconstructs a stored artifact through an unsafe object-deserialization path on retrieval, so a maliciously uploaded artifact runs code on the retrieving user's system. **CVE-2024-24591** (CWE-22, NVD CVSS 8.8 HIGH; HiddenLayer CNA 8.0) — the SDK writes dataset entries without path containment, so a malicious dataset writes files to arbitrary locations (escalating to code execution by overwriting startup files). Neither has a fixed SDK version published in the advisory, so both are scored without patch credit and remediation is to retrieve artifacts/datasets only from trusted projects. Both map MITRE ATLAS AML.T0010 and ATT&CK T1204, and introduce NEW-CTRL-104: an MLOps platform must treat every uploaded artifact and dataset as untrusted — never auto-deserialize through an unsafe loader, and contain dataset extraction paths. CVE count 384 → 386.
package/data/_indexes/_meta.json CHANGED
@@ -1,21 +1,21 @@
1
1
  {
2
2
  "schema_version": "1.1.0",
3
- "generated_at": "2026-05-26T07:55:13.595Z",
3
+ "generated_at": "2026-05-26T08:18:31.425Z",
4
4
  "generator": "scripts/build-indexes.js",
5
5
  "source_count": 54,
6
6
  "source_hashes": {
7
- "manifest.json": "825c47e7f776d5dc4b467fffef2bd145b324db4f30d5621f8f1b0dc145091007",
8
- "data/atlas-ttps.json": "6a2712428cca495e31d92c18cf129cddfbd92e7f62e6a351ce637105703cb295",
9
- "data/attack-techniques.json": "2253d4953c5398205f3289db8ef49f89bf53f0b468760c4663733946a2576e59",
10
- "data/cve-catalog.json": "467876ef62f14943e1f972c6902d279134863cf7ef43512fd5a5c77b7705f7e8",
11
- "data/cwe-catalog.json": "4bfab7469bee2dd3b6a82081800c936c7461b16b33be0b7791527f4623261623",
7
+ "manifest.json": "998bbbed9265b1421598713e0ffee3232c5fe25bbb6c400899b8dceb99e749d8",
8
+ "data/atlas-ttps.json": "3263b100824c69cabc2d13a6f643a7a28d8a58f8f7b787951d72473d7a617cfd",
9
+ "data/attack-techniques.json": "1caef2a1bccec4f8becf2011927a4720f2b7a16ee2d019f2ecad5e5ae6c5c093",
10
+ "data/cve-catalog.json": "4c54dfc23e191b8583b34885b6a067f1bbd5931dae800ed1b9b87b2bf32700ab",
11
+ "data/cwe-catalog.json": "33b0eba66adaa67fcb7e62f58608cd7c9627851cdc1b88b0b4e9ce83f8f408c9",
12
12
  "data/d3fend-catalog.json": "9a54bccb9f24f84b32024216cc3f53819a053721ac8ab43c326859e68fc0ffaf",
13
13
  "data/dlp-controls.json": "d2406c482dddd30e49203879999dc4b3a7fd4d0494d6a61d86b91ee76415df19",
14
14
  "data/exploit-availability.json": "ec2656f0d9a893610e27b43eb6035fe9b18e057c9f6dfaac7e7d4959bbcbb795",
15
- "data/framework-control-gaps.json": "aea2e7dccb03f35772a54a01e40333d0cef9ea1fd26ec0b35112637fb61af75d",
15
+ "data/framework-control-gaps.json": "796ccb301ad9d9d3894807604c7f3a4f9e50e293c49af84ee4c59007997faaec",
16
16
  "data/global-frameworks.json": "9ba563a85f7f8d6c3c957de64945e20925a89d0ed6ea6fc561cf093811acf558",
17
17
  "data/rfc-references.json": "66ef2e1f444a2cf0c2700a754f0a66030bb8a91d9e68394b9537ea1fe8b904fe",
18
- "data/zeroday-lessons.json": "76aa3616bf7986f353200f28e3f8bbce8602b4f2806a9795e086b0cb3ca90018",
18
+ "data/zeroday-lessons.json": "b945976846cf63ffc77a12331e9f89eb933325aeea191140c37518bce9f603a0",
19
19
  "skills/kernel-lpe-triage/skill.md": "08b3e9815ba481c57c80f5fc0ccbf5bb7cbb41f570c235ba6ff9596b8c07354d",
20
20
  "skills/ai-attack-surface/skill.md": "c4c1eb22a38ca7a959b5725222bab8fbd4f4044a548a93f3e288e6f698334b72",
21
21
  "skills/mcp-agent-trust/skill.md": "89ac89084391d2341b6513fefb1be2d36b93de1c130f057696219c1c59440f13",
@@ -72,7 +72,7 @@
72
72
  "dlp_refs": 0
73
73
  },
74
74
  "trigger_table_entries": 538,
75
- "chains_cve_entries": 375,
75
+ "chains_cve_entries": 377,
76
76
  "chains_cwe_entries": 171,
77
77
  "jurisdictions_indexed": 29,
78
78
  "handoff_dag_nodes": 42,
package/data/_indexes/activity-feed.json CHANGED
@@ -149,7 +149,7 @@
149
149
  "artifact": "data/cve-catalog.json",
150
150
  "path": "data/cve-catalog.json",
151
151
  "schema_version": "1.0.0",
152
- "entry_count": 386
152
+ "entry_count": 388
153
153
  },
154
154
  {
155
155
  "date": "2026-05-18",
@@ -165,7 +165,7 @@
165
165
  "artifact": "data/zeroday-lessons.json",
166
166
  "path": "data/zeroday-lessons.json",
167
167
  "schema_version": "1.1.0",
168
- "entry_count": 381
168
+ "entry_count": 383
169
169
  },
170
170
  {
171
171
  "date": "2026-05-17",
package/data/_indexes/catalog-summaries.json CHANGED
@@ -62,7 +62,7 @@
62
62
  "rebuild_after_days": 365,
63
63
  "note": "Per-entry last_verified governs decay. Skills depending on this catalog must check entry freshness before high-stakes use."
64
64
  },
65
- "entry_count": 386,
65
+ "entry_count": 388,
66
66
  "sample_keys": [
67
67
  "CVE-2025-53773",
68
68
  "CVE-2026-30615",
@@ -238,7 +238,7 @@
238
238
  "rebuild_after_days": 365,
239
239
  "note": "Per-entry last_verified governs decay. Skills depending on this catalog must check entry freshness before high-stakes use."
240
240
  },
241
- "entry_count": 381,
241
+ "entry_count": 383,
242
242
  "sample_keys": [
243
243
  "CVE-2026-31431",
244
244
  "CVE-2025-53773",