npm - @blamejs/exceptd-skills - Versions diffs - 0.13.21 → 0.13.23 - Mend

@blamejs/exceptd-skills 0.13.21 → 0.13.23

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,37 @@
 # Changelog
+## 0.13.23 — 2026-05-19
+Continuation of the v0.13.22 UX pass: stage-by-stage next-step guidance so an operator (or an AI walking the workflow cold) never has to ask "what do I do now?"
+### Features
+- **`ci` human renderer emits a "Next steps" block per verdict.** BLOCKED → one `exceptd lint <playbook> -` command per blocked playbook plus the `--evidence <file>` re-run. NO_EVIDENCE → lint the first playbook + `ci --evidence-dir <dir>`. FAIL/detected → `run <playbook> --format markdown` / `--format csaf-2.0`. CLOCK_STARTED → `--format csaf-2.0` for the advisory draft. Pre-0.13.23 a blocked or no-evidence run printed only the reason — operators saw *why* they were stuck without the concrete command to unblock.
+- **`run` verdict line surfaces evidence_completeness.** Every successful run now shows `evidence: complete (13/13 indicators evaluated)` (or `partial` / `missing`) under the classification line. Distinguishes "ran every indicator and found nothing" from "couldn't evaluate, no evidence supplied" — pre-0.13.23 both states printed identically. When evidence is partial or missing, a `→ next: exceptd lint <playbook> -` pointer is appended.
+- **`run` attestation persistence is now visible.** Successful runs print `Attestation written: <full path>` followed by `exceptd attest verify <session-id>` and `exceptd attest diff <session-id>` so the operator knows where the JSON lives and how to verify or diff it. The persisted file path is also hoisted to the result envelope as `attestation_path`. Pre-0.13.23 the attestation went to `~/.exceptd/attestations/<repo>@<branch>/<session-id>/attestation.json` with zero indication in any output.
+- **`run` remediation prose matches the verdict.** Pre-0.13.23 every classification printed `Recommended remediation: <id>` — misleading on `not_detected` and `inconclusive` runs, where there is nothing to remediate. Now non-detect runs print `Remediation path (informational — verdict=<x>, no action required now): <id>`; detected runs are unchanged.
+### Bugs
+- **Stale playbook count in error messages.** `exceptd run <unknown-id>` (and the lint-not-found path) said "Run \`exceptd brief --all\` to list the 13 playbooks." There are 23 playbooks shipped. Now uses the live `listPlaybooks().length`.
+- **`lint` did not warn on the artifact-only-no-signal_overrides path.** An operator following lint's per-artifact guidance for a nested submission populated every required artifact, ran the playbook, and got every indicator = inconclusive with no explanation. The detect phase needs `signal_overrides` (or a `verdict.classification` override) to mark indicators as hit / miss — artifact presence alone is not enough. The flat-shape path already surfaced this as `detect_will_be_inconclusive`; the nested-shape path was silent. Now lint emits `no_signal_overrides_supplied` with the exact JSON shape to add.
+## 0.13.22 — 2026-05-19
+`ci` is now usable at the terminal without piping through `jq`.
+### Features
+- **Human-readable `ci` output by default.** Pre-0.13.22 the default `ci` output was 1000+ lines of indented JSON on every run. Now the default is a one-screen digest: verdict line, per-playbook table (id / verdict / rwep / evidence-completeness / top-finding), session-level warnings, scope-selection rules, framework gap rollup, and fail reasons. Pass `--json` or `--pretty` to get the structured body for automation.
+- **Per-result hoisted summary fields.** Every `run()` result now carries `verdict`, `rwep_score`, `top_finding`, `summary_line`, and `evidence_completeness` (one of `complete` / `partial` / `missing` / `unknown` / `not-evaluated`) at the top level. Machine-readable consumers no longer walk `phases.analyze.rwep.adjusted` and `phases.detect.classification` separately to extract the headline numbers.
+- **`indicators_evaluated` + `indicators_known` per result.** Surface how many of the playbook's known indicators were actually exercised by the operator's evidence, so a result that returns `verdict=inconclusive` with `indicators_evaluated=0` is distinguishable from one that evaluated every indicator and found no hits.
+- **Session-level warning de-duplication.** `ci` runs that span N playbooks no longer emit the same `bundle_publisher_unclaimed` warning N times. The summary now carries `runtime_warnings` and `runtime_warnings_count` with one entry per unique (kind, reason) across the session.
+- **Scope-inclusion transparency.** When `ci --scope <type>` is used, the summary now lists `scope_request` plus `scope_inclusion_rules` explaining that cross-cutting playbooks are always added and (for `--scope code`) that `sbom` is auto-included on repos with a lockfile.
+### Bugs
+- **Blocked results now carry `playbook_id`.** Previously, a playbook that halted at preflight returned `{ ok:false, blocked_by, reason }` with no playbook identifier — operators iterating `results[]` for failure rows had to correlate by array index. Now every result, blocked or not, carries `playbook_id` at the top level.
 ## 0.13.21 — 2026-05-19
 Seven new catalog-gap detection classes wired into the predeploy gate. The v0.13.19 detector covered missing-context / dangling-ref / draft-debt; the v0.13.20 audit confirmed that left genuine gap classes unsurfaced. v0.13.21 adds the seven cross-cutting classes the prior detector missed and wires them into a budget gate that runs alongside the existing tests + predeploy gates.

package/bin/exceptd.js CHANGED Viewed

@@ -1624,7 +1624,7 @@ function buildSkillToPlaybookHint(runner, wanted) {
     if (matches.length > 0) {
       return `That is a SKILL (read-only knowledge unit), not a PLAYBOOK (executable). Skill "${wanted}" is loaded by playbook${matches.length === 1 ? "" : "s"}: ${matches.join(", ")}. ` +
              `To execute: \`exceptd run ${matches[0]}\`. To read the skill: \`exceptd skill ${wanted}\`. ` +
-             `Tip: \`exceptd brief --all\` lists all 13 playbooks; \`exceptd watch\` lists skills.`;
+             `Tip: \`exceptd brief --all\` lists all ${ids.length} playbooks; \`exceptd watch\` lists skills.`;
     }
     // No matching skill either — provide nearest-playbook suggestions.
     // v0.12.9 (P3 #9 from production smoke): substring fallback first (cheap),
@@ -1638,7 +1638,7 @@ function buildSkillToPlaybookHint(runner, wanted) {
     if (near.length > 0) {
       return `Did you mean: ${near.join(", ")}? Run \`exceptd brief --all\` for the full list.`;
     }
-    return `Run \`exceptd brief --all\` to list the 13 playbooks.`;
+    return `Run \`exceptd brief --all\` to list the ${ids.length} playbooks.`;
   } catch { return null; }
 }
@@ -2288,6 +2288,27 @@ function cmdLint(runner, args, runOpts, pretty) {
         hint: `Flat submission with ${observationsCount} observation(s) but no indicator+result fields and no verdict.classification. detect() will return 'inconclusive'. Each observation needs { "indicator": "<id>", "result": "hit"|"miss"|"inconclusive" } to drive an indicator outcome. Run \`exceptd run ${playbookId} --signal-list\` for the indicator IDs.`,
       });
     }
+  } else {
+    // v0.13.23 — nested submission with artifacts but no signal_overrides
+    // also lands every indicator on inconclusive. The flat-shape branch
+    // already surfaced this; the nested-shape silence was the workflow gap
+    // operators hit: they fill in lint's per-artifact guidance, run, and
+    // get an opaque "every indicator inconclusive" result. Surface the
+    // signal_overrides shape explicitly so the operator/AI knows the
+    // next step is to set `signal_overrides[<indicator-id>] = "hit" |
+    // "miss" | "inconclusive"` per indicator they investigated.
+    const verdictClass = submission.verdict?.classification;
+    const verdictWillDrive = verdictClass === "clean" || verdictClass === "not_detected" || verdictClass === "detected" || verdictClass === "inconclusive";
+    const normalizedHasOverrides = Object.keys(normalized.signal_overrides || {}).length > 0;
+    const submissionHasArtifacts = Object.keys(submission.artifacts || {}).length > 0;
+    if (submissionHasArtifacts && !verdictWillDrive && !normalizedHasOverrides) {
+      const someIndicatorIds = [...knownIndicators].slice(0, 3).join('", "');
+      issues.push({
+        severity: "info",
+        kind: "no_signal_overrides_supplied",
+        hint: `Nested submission has artifacts but no signal_overrides — every indicator will return 'inconclusive' (verdict will be 'inconclusive', not 'detected' / 'not_detected'). To drive a concrete verdict, populate \`signal_overrides\` with the indicators you investigated: { "${someIndicatorIds}": "hit"|"miss" }. ${knownIndicators.size} indicator(s) known — see \`exceptd brief ${playbookId}\` for the full list. Alternatively, supply \`verdict.classification = "clean"|"not_detected"|"detected"\` to bypass indicator evaluation.`,
+      });
+    }
   }
   const ok = issues.every(i => i.severity !== "error");
@@ -2928,6 +2949,12 @@ function cmdRun(runner, args, runOpts, pretty) {
       result.prior_session_id = persistResult.prior_session_id;
       result.overwrote_at = persistResult.overwrote_at;
     }
+    // v0.13.23 — surface the attestation file path so the human renderer
+    // can echo it and the next-step guidance (attest verify <sid>) lands
+    // on an artifact the operator can actually find.
+    if (persistResult.attestation_path) {
+      result.attestation_path = persistResult.attestation_path;
+    }
   }
   if (result && result.ok === false) {
@@ -3151,6 +3178,21 @@ function cmdRun(runner, args, runOpts, pretty) {
     const top = rwep?.threshold?.escalate ?? "n/a";
     const verdictIcon = cls === "detected" ? "[!! DETECTED]" : cls === "inconclusive" ? "[i  INCONCLUSIVE]" : "[ok]";
     lines.push(`\n${verdictIcon}  classification=${cls}  RWEP ${adj}/${top}${adj !== base ? ` (Δ${adj - base} from operator evidence)` : " (catalog baseline)"}  blast_radius=${obj.phases?.analyze?.blast_radius_score ?? "n/a"}/5`);
+    // v0.13.23 — surface evidence_completeness on the verdict line so
+    // operators distinguish "ran every indicator and found nothing"
+    // (evidence=complete) from "couldn't evaluate, no evidence supplied"
+    // (evidence=missing). Pre-v0.13.23 the two states printed identically
+    // — a not_detected run with zero evidence looked the same as one
+    // with a fully-populated submission.
+    if (obj.evidence_completeness && obj.indicators_known != null) {
+      const ev = obj.evidence_completeness;
+      const ke = obj.indicators_evaluated ?? 0;
+      const kn = obj.indicators_known;
+      lines.push(`  evidence: ${ev}  (${ke}/${kn} indicators evaluated)`);
+      if (ev === "missing" || ev === "partial") {
+        lines.push(`  → next: exceptd lint ${obj.playbook_id} -    # paste {} on stdin, see exact JSON paths to populate`);
+      }
+    }
     // F11: surface --diff-from-latest verdict in the human renderer so
     // operators see whether the run drifted from the previous attestation
     // without adding --json. One summary line follows the classification.
@@ -3189,9 +3231,20 @@ function cmdRun(runner, args, runOpts, pretty) {
       lines.push(`\nIndicators that fired (${hits.length}):`);
       for (const i of hits.slice(0, 8)) lines.push(`  ${i.id}  (${i.confidence}${i.deterministic ? "/deterministic" : ""})`);
     }
+    // v0.13.23 — selected_remediation is informational on non-detect
+    // runs (validate() always picks the highest-priority remediation
+    // path as a "what would you do IF you found something" anchor).
+    // Rendering it as "Recommended remediation:" on a not_detected /
+    // inconclusive verdict misleads operators into thinking action is
+    // required. Tag it conditionally so the operator-facing prose
+    // matches the verdict.
     const rem = obj.phases?.validate?.selected_remediation;
     if (rem) {
-      lines.push(`\nRecommended remediation: ${rem.id} (priority ${rem.priority})`);
+      if (cls === "detected") {
+        lines.push(`\nRecommended remediation: ${rem.id} (priority ${rem.priority})`);
+      } else {
+        lines.push(`\nRemediation path (informational — verdict=${cls}, no action required now): ${rem.id} (priority ${rem.priority})`);
+      }
       lines.push(`  ${rem.description?.slice(0, 200) || ""}`);
     }
     const notif = (obj.phases?.close?.notification_actions || []).filter(n => n.clock_started_at);
@@ -3201,6 +3254,18 @@ function cmdRun(runner, args, runOpts, pretty) {
     }
     const feeds = obj.phases?.close?.feeds_into || [];
     if (feeds.length) lines.push(`\nNext playbooks suggested: ${feeds.join(", ")}`);
+    // v0.13.23 — tell the operator WHERE the attestation went and HOW
+    // to verify/diff it. Pre-v0.13.23 a successful run silently wrote
+    // ~/.exceptd/attestations/<repo>@<branch>/<sid>/attestation.json
+    // with zero indication to the operator. The next-time-they-asked-
+    // about-this-run lookup ("attest verify <sid>") then failed with
+    // "no session dir" because they were in a different cwd.
+    if (obj.attestation_path) {
+      lines.push(`\nAttestation written: ${obj.attestation_path}`);
+      lines.push(`  exceptd attest verify ${obj.session_id}     # tamper check`);
+      lines.push(`  exceptd attest diff ${obj.session_id}       # vs. most-recent prior for this playbook`);
+    }
     const issues = obj.preflight_issues || [];
     if (issues.length) {
       lines.push(`\nPreflight warnings (${issues.length}):`);
@@ -3757,7 +3822,12 @@ function persistAttestation(args) {
     try {
       writeAttestation(null, null, "wx");
-      return { ok: true, prior_session_id: null, overwrote_at: null };
+      // v0.13.23 — surface the absolute path so the caller can echo it
+      // in the human renderer. Pre-v0.13.23 the attestation was silently
+      // written to ~/.exceptd/attestations/<repo>@<branch>/<session-id>/
+      // and the operator had no way to find it short of grepping the
+      // filesystem.
+      return { ok: true, prior_session_id: null, overwrote_at: null, attestation_path: filePath };
     } catch (eExcl) {
       if (eExcl.code !== "EEXIST") throw eExcl;
       // Slot already taken — read prior to chain audit trail, then decide.
@@ -3874,6 +3944,7 @@ function persistAttestation(args) {
           ok: true,
           prior_session_id: lockedPrior ? sessionId : null,
           overwrote_at: lockedPrior ? lockedPrior.captured_at : null,
+          attestation_path: filePath,
         };
       } finally {
         try { fs.unlinkSync(lockPath); } catch {}
@@ -6814,6 +6885,46 @@ function cmdCi(runner, args, runOpts, pretty) {
     clock_started_reasons: clockStartedReasons,
   };
+  // v0.13.22 B5: Each `run()` call independently surfaces session-level
+  // runtime conditions (e.g. bundle_publisher_unclaimed) into its own
+  // phases.analyze.runtime_errors. On a ci run that spans 9 playbooks, the
+  // operator saw the same warning 9 times. Dedupe across results by
+  // (kind, reason) so a session-level condition surfaces once at the ci
+  // summary level — operators read one row, not N copies.
+  const warningSeen = new Set();
+  const runtimeWarningsDedup = [];
+  for (const r of results) {
+    const errs = r?.phases?.analyze?.runtime_errors || [];
+    for (const e of errs) {
+      const key = `${e.kind || ""}::${e.reason || ""}`;
+      if (warningSeen.has(key)) continue;
+      warningSeen.add(key);
+      runtimeWarningsDedup.push({
+        kind: e.kind || null,
+        reason: e.reason || null,
+        remediation: e.remediation || null,
+      });
+    }
+  }
+  summary.runtime_warnings = runtimeWarningsDedup;
+  summary.runtime_warnings_count = runtimeWarningsDedup.length;
+  // v0.13.22 B8 (transparency): document why each playbook was selected.
+  // --scope <s> always adds cross-cutting; --scope code on a repo with a
+  // lockfile also adds sbom. The selection rule was buried in code; surface
+  // it in the summary so operators reading the JSON / pretty trailer can
+  // see what was scoped vs. auto-included.
+  if (scope) {
+    summary.scope_request = scope;
+    summary.scope_inclusion_rules = [
+      `--scope ${scope} selected playbooks with _meta.scope === "${scope}"`,
+      `cross-cutting playbooks are always added (apply to every scope by design)`,
+    ];
+    if (scope === "code") {
+      summary.scope_inclusion_rules.push("--scope code also adds sbom when the cwd is a git repo with a lockfile");
+    }
+  }
   // v0.11.4 (#72): ci --format <fmt> previously emitted the full bundle
   // regardless of flag. Now honors the same shortcuts as `run --format`:
   //   summary  → one-line JSON of session + verdict + counts
@@ -6856,7 +6967,163 @@ function cmdCi(runner, args, runOpts, pretty) {
     );
     return;
   } else {
-    emit({ verb: "ci", session_id: sessionId, playbooks_run: ids, summary, results }, pretty);
+    // v0.13.22 B3+B4+B6: human renderer for `ci` default output. Pre-0.13.22
+    // the only output was indented JSON (or compact JSON when not TTY) —
+    // operators running `exceptd ci` at the terminal saw 1000+ lines of JSON
+    // for a 9-playbook scan and had to grep for the verdict by hand.
+    //
+    // Renderer shape (one screen for a typical 9-playbook scope):
+    //   - one verdict line (PASS/FAIL/BLOCKED + counts)
+    //   - per-playbook row: id | verdict | rwep | evidence | top_finding
+    //   - deduped session-level runtime warnings (B5)
+    //   - scope inclusion rules (B8 transparency) when --scope was used
+    //   - footer pointing at --json / --format for the structured body
+    emit({ verb: "ci", session_id: sessionId, playbooks_run: ids, summary, results }, pretty, (obj) => {
+      const s = obj.summary;
+      const lines = [];
+      lines.push(`ci: ${obj.playbooks_run.length} playbook(s)  session-id: ${obj.session_id}`);
+      const verdictIcon = s.verdict === "PASS"
+        ? "[ok]"
+        : s.verdict === "BLOCKED"
+          ? "[!! BLOCKED]"
+          : s.verdict === "CLOCK_STARTED"
+            ? "[!! CLOCK]"
+            : s.verdict === "NO_EVIDENCE"
+              ? "[i  NO_EVIDENCE]"
+              : "[!! FAIL]";
+      lines.push(`\n${verdictIcon}  verdict=${s.verdict}  detected=${s.detected}  inconclusive=${s.inconclusive}  clean=${s.not_detected}  blocked=${s.blocked}  max_rwep=${s.max_rwep_observed}`);
+      // Per-playbook table.
+      const rows = (obj.results || []).map(r => {
+        if (r && r.ok === false) {
+          return {
+            id: r.playbook_id || "?",
+            verdict: "blocked",
+            rwep: "-",
+            evidence: r.evidence_completeness || "not-evaluated",
+            top: r.blocked_by || r.reason || r.error || "",
+          };
+        }
+        const cls = r?.phases?.detect?.classification || r?.verdict || "?";
+        return {
+          id: r.playbook_id || "?",
+          verdict: cls,
+          rwep: (r?.rwep_score != null) ? String(r.rwep_score) : "-",
+          evidence: r?.evidence_completeness || "unknown",
+          top: r?.top_finding || "",
+        };
+      });
+      const wId = Math.max(8, ...rows.map(r => r.id.length));
+      const wV = Math.max(8, ...rows.map(r => r.verdict.length));
+      const wR = Math.max(4, ...rows.map(r => r.rwep.length));
+      const wE = Math.max(8, ...rows.map(r => r.evidence.length));
+      const pad = (s, w) => (s + " ".repeat(w)).slice(0, w);
+      lines.push("");
+      lines.push(`  ${pad("playbook", wId)}  ${pad("verdict", wV)}  ${pad("rwep", wR)}  ${pad("evidence", wE)}  finding`);
+      lines.push(`  ${"-".repeat(wId)}  ${"-".repeat(wV)}  ${"-".repeat(wR)}  ${"-".repeat(wE)}  -------`);
+      for (const row of rows) {
+        const finding = row.top.length > 80 ? row.top.slice(0, 77) + "..." : row.top;
+        lines.push(`  ${pad(row.id, wId)}  ${pad(row.verdict, wV)}  ${pad(row.rwep, wR)}  ${pad(row.evidence, wE)}  ${finding}`);
+      }
+      // Session-level deduped runtime warnings (B5).
+      if (s.runtime_warnings && s.runtime_warnings.length) {
+        lines.push(`\nSession warnings (${s.runtime_warnings_count}):`);
+        for (const w of s.runtime_warnings) {
+          const reason = (w.reason || "").length > 200 ? (w.reason || "").slice(0, 197) + "..." : (w.reason || "");
+          lines.push(`  [${w.kind || "warning"}] ${reason}`);
+          if (w.remediation) lines.push(`    → ${w.remediation}`);
+        }
+      }
+      // Scope inclusion (B8 transparency).
+      if (s.scope_inclusion_rules && s.scope_inclusion_rules.length) {
+        lines.push(`\nScope selection (${s.scope_request}):`);
+        for (const rule of s.scope_inclusion_rules) lines.push(`  - ${rule}`);
+      }
+      // Jurisdiction clocks.
+      if (s.jurisdiction_clocks_started > 0) {
+        lines.push(`\nJurisdiction clocks started: ${s.jurisdiction_clocks_started}`);
+        for (const n of (s.jurisdiction_clock_rollup || []).slice(0, 5)) {
+          lines.push(`  ${n.jurisdiction || "?"}/${n.regulation || "?"} → deadline ${n.deadline || "?"}`);
+        }
+      }
+      // Framework gap rollup.
+      if (s.framework_gap_count > 0) {
+        lines.push(`\nFramework gaps (${s.framework_gap_count}):`);
+        for (const g of (s.framework_gap_rollup || []).slice(0, 5)) {
+          lines.push(`  ${g.framework || "?"} :: ${g.claimed_control || "?"}  (${g.playbooks.length} playbook(s))`);
+        }
+      }
+      // Fail reasons.
+      if (s.fail_reasons && s.fail_reasons.length) {
+        lines.push(`\nFail reasons:`);
+        for (const r of s.fail_reasons) lines.push(`  - ${r}`);
+      }
+      // v0.13.23 — Next-step guidance. An operator (or an AI walking the
+      // workflow cold) reading the ci output should never have to ask
+      // "what do I do now?" The verdict dictates the next move:
+      //   BLOCKED        → operator must supply evidence asserting the
+      //                    halted preconditions; `exceptd lint <pb> -`
+      //                    emits the exact JSON paths to fill in.
+      //   NO_EVIDENCE    → no --evidence was supplied and every playbook
+      //                    returned inconclusive; same lint -> run loop.
+      //   FAIL/detected  → look at the matched_cves + recommended
+      //                    remediation in the per-playbook results.
+      //   CLOCK_STARTED  → notification clock running; see deadline above.
+      //   PASS           → nothing to do.
+      const blockedRows = (obj.results || []).filter(r => r && r.ok === false);
+      const lintCmd = (id) => `  exceptd lint ${id} -                          # paste {} on stdin, get exact JSON paths`;
+      if (s.verdict === "BLOCKED" && blockedRows.length) {
+        lines.push(`\nNext steps (unblock the ${blockedRows.length} halted playbook(s)):`);
+        for (const row of blockedRows.slice(0, 4)) {
+          lines.push(lintCmd(row.playbook_id || "?"));
+        }
+        lines.push(`  exceptd run <playbook> --evidence <file>     # re-run after filling in evidence`);
+      } else if (s.verdict === "NO_EVIDENCE") {
+        const firstId = (obj.results[0] && obj.results[0].playbook_id) || (obj.playbooks_run[0]) || "<playbook>";
+        lines.push(`\nNext steps (every playbook ran inconclusive — no evidence supplied):`);
+        lines.push(lintCmd(firstId));
+        lines.push(`  exceptd ci --scope <type> --evidence-dir <dir>  # gate again with real submissions`);
+      } else if (s.verdict === "FAIL") {
+        // codex P2 (PR #63): FAIL can fire in two distinct shapes —
+        //   (a) at least one playbook classification=detected → s.detected > 0
+        //   (b) inconclusive playbook(s) whose rwep_delta (operator
+        //       evidence) crossed the cap → s.detected stays at 0
+        // Pre-fix this branch was keyed on `s.detected > 0`, so the
+        // shape-(b) FAIL exited with no "Next steps" footer at all,
+        // contradicting the v0.13.23 stage-by-stage promise.
+        if (s.detected > 0) {
+          lines.push(`\nNext steps (review the ${s.detected} detected finding(s)):`);
+          lines.push(`  exceptd run <playbook> --format markdown    # operator-readable digest`);
+          lines.push(`  exceptd run <playbook> --format csaf-2.0    # advisory bundle for downstream`);
+        } else {
+          // Operator evidence pushed RWEP across --max-rwep cap on an
+          // otherwise-inconclusive run. The fix is to review which
+          // signals moved the score and decide whether they warrant
+          // escalation or whether the cap is set too low for the
+          // current evidence quality.
+          const inconclusivePb = (obj.results || [])
+            .filter(r => r && r.ok !== false && r.phases?.detect?.classification === "inconclusive")
+            .map(r => r.playbook_id)
+            .filter(Boolean);
+          const exampleId = inconclusivePb[0] || (obj.playbooks_run && obj.playbooks_run[0]) || "<playbook>";
+          lines.push(`\nNext steps (RWEP-delta cap exceeded — no playbook hit "detected", but operator evidence raised at least one score past --max-rwep):`);
+          lines.push(`  exceptd run ${exampleId} --pretty           # inspect phases.analyze.rwep.base + adjusted to see which signal moved the score`);
+          lines.push(`  exceptd ci ... --max-rwep <higher>           # raise the cap if the evidence-driven escalation is acceptable for your gate`);
+        }
+      } else if (s.verdict === "CLOCK_STARTED") {
+        lines.push(`\nNext steps (jurisdiction clock running — notification deadlines above):`);
+        lines.push(`  exceptd run <playbook> --format csaf-2.0    # draft the operator-of-record advisory`);
+      }
+      lines.push(`\nFull structured result: --json (or --pretty for indented JSON).`);
+      return lines.join("\n");
+    });
   }
   // v0.11.14 (#134): exit-code matrix with BLOCKED before FAIL.
   // Pre-0.11.14 the `if (fail)` check fired first for blocked runs (because

package/data/_indexes/_meta.json CHANGED Viewed

@@ -1,10 +1,10 @@
 {
   "schema_version": "1.1.0",
-  "generated_at": "2026-05-19T20:58:49.735Z",
+  "generated_at": "2026-05-20T00:05:26.090Z",
   "generator": "scripts/build-indexes.js",
   "source_count": 54,
   "source_hashes": {
-    "manifest.json": "b8676a67b642f623974dccf3ba0f1df95836541b7c1dcd0c63cef2b71fa1a88a",
+    "manifest.json": "4756b56a56128891bc4b4728ebfd16e4a52e6b3f40dd0140250b8a6cfda30122",
     "data/atlas-ttps.json": "d296c1d3e71807c9279b731f047e57796e85137f186586743a8cdad214b408f9",
     "data/attack-techniques.json": "49b6010b317edd219def135171ea8f3b1bbf1e00e9c5a08bf7237215ff54e2c3",
     "data/cve-catalog.json": "a09c83af3f9679a7ea73935726a1ff9de2cab94b4ab6321fc017fc147747d7c3",

package/lib/playbook-runner.js CHANGED Viewed

@@ -3058,7 +3058,28 @@ function run(playbookId, directiveId, agentSubmission = {}, runOpts = {}) {
   }
   const pre = preflight(playbook, { ...runOpts, precondition_checks: mergedPCs });
   if (!pre.ok) {
-    return { ok: false, phase: 'preflight', blocked_by: pre.blocked_by, reason: pre.reason, issues: pre.issues, precondition_check_source: pcSource };
+    // v0.13.22 (B7 fix): blocked results MUST carry playbook_id +
+    // directive_id at the result root. Pre-v0.13.22 a `ci --scope code`
+    // run produced 9 results where the 3 blocked rows had no
+    // playbook_id, so operators iterating results[] couldn't tell
+    // which playbook produced which preflight failure without joining
+    // against playbooks_run[] by index. Also include `verdict:"blocked"`
+    // and a one-line `summary_line` for B2 + B6 flat-result-shape fixes.
+    const summaryLine = `${playbookId}: blocked at preflight (${pre.blocked_by || 'unknown'}) — ${pre.reason || ''}`.slice(0, 240);
+    return {
+      ok: false,
+      playbook_id: playbookId,
+      directive_id: directiveId,
+      verdict: 'blocked',
+      summary_line: summaryLine,
+      phase: 'preflight',
+      blocked_by: pre.blocked_by,
+      reason: pre.reason,
+      remediation: pre.remediation,
+      issues: pre.issues,
+      precondition_check_source: pcSource,
+      evidence_completeness: 'not-evaluated'
+    };
   }
   _activeRuns.add(playbookId);
@@ -3205,11 +3226,66 @@ function run(playbookId, directiveId, agentSubmission = {}, runOpts = {}) {
       }))
       .digest('hex');
+    // v0.13.22 — hoist the operator-facing summary to the result root
+    // (B2). Pre-v0.13.22 a `ci` consumer had to spelunk into
+    // phases.detect.classification + phases.analyze.rwep.adjusted to
+    // find the answer; the most common ops question ("did this
+    // playbook detect anything?") needs a one-line answer at the top.
+    //
+    // Verdict source: phases.detect.classification is the canonical
+    // verdict signal — one of detected / not_detected / inconclusive /
+    // pending / skipped. validate() does NOT carry a `verdict` field;
+    // an earlier draft of this hoist read phases.validate.verdict and
+    // therefore degraded every non-blocked result to "inconclusive"
+    // (codex P1 on PR #62).
+    const verdict = (phases.detect && phases.detect.classification) || 'inconclusive';
+    const rwepScore = phases.analyze && phases.analyze.rwep && typeof phases.analyze.rwep.adjusted === 'number'
+      ? phases.analyze.rwep.adjusted : null;
+    // Top finding = first matched CVE-id when present; otherwise the
+    // dominant indicator classification. The full set lives in phases.
+    let topFinding = null;
+    if (phases.analyze && Array.isArray(phases.analyze.matched_cves) && phases.analyze.matched_cves.length) {
+      topFinding = phases.analyze.matched_cves[0].cve_id;
+    } else if (phases.detect && phases.detect.classification
+        && phases.detect.classification !== 'not-detected'
+        && phases.detect.classification !== 'not_detected'
+        && phases.detect.classification !== 'inconclusive'
+        && phases.detect.classification !== 'pending') {
+      topFinding = phases.detect.classification;
+    }
+    // Evidence completeness (B9): the indicators-evaluated count vs
+    // the indicators-known count distinguishes "ran fully and found
+    // nothing" from "couldn't actually evaluate". Pre-v0.13.22 the two
+    // states looked identical at the result-root level.
+    const indicatorsKnown = (playbook.phases && playbook.phases.detect && playbook.phases.detect.indicators)
+      ? playbook.phases.detect.indicators.length : null;
+    const indicatorsEvaluated = phases.detect && typeof phases.detect.indicators_evaluated_count === 'number'
+      ? phases.detect.indicators_evaluated_count : null;
+    let evidenceCompleteness;
+    if (indicatorsKnown == null) evidenceCompleteness = 'unknown';
+    else if (indicatorsEvaluated == null) evidenceCompleteness = 'not-evaluated';
+    else if (indicatorsEvaluated === 0) evidenceCompleteness = 'missing';
+    else if (indicatorsEvaluated < indicatorsKnown) evidenceCompleteness = 'partial';
+    else evidenceCompleteness = 'complete';
+    const summaryLine = (rwepScore != null && rwepScore > 0)
+      ? `${playbookId}: ${verdict} (rwep=${rwepScore}${topFinding ? `, ${topFinding}` : ''}, evidence=${evidenceCompleteness})`
+      : `${playbookId}: ${verdict} (evidence=${evidenceCompleteness}${topFinding ? `, ${topFinding}` : ''})`;
     return {
       ok: true,
       playbook_id: playbookId,
       directive_id: directiveId,
       session_id: sessionId,
+      // Flat top-level fields (B2 + B6 + B9). Operators no longer need
+      // to spelunk through phases.* to get the answer to the most
+      // common question. The phases tree is still present below for
+      // anyone who needs the full CSAF / analyze / detect dumps.
+      verdict,
+      rwep_score: rwepScore,
+      top_finding: topFinding,
+      summary_line: summaryLine,
+      evidence_completeness: evidenceCompleteness,
+      indicators_evaluated: indicatorsEvaluated,
+      indicators_known: indicatorsKnown,
       evidence_hash: evidenceHash,
       submission_digest: submissionDigest,
       preflight_issues: pre.issues,

package/manifest.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "exceptd-security",
-  "version": "0.13.21",
+  "version": "0.13.23",
   "description": "AI security skills grounded in mid-2026 threat reality, not stale framework documentation",
   "homepage": "https://exceptd.com",
   "license": "Apache-2.0",
@@ -53,7 +53,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "lXhZgoIrrVloO3XaTvo/43AxZn4mwErstd7DR0O/oVhD3AOGODM4HqrageYEou9WKOdMEGP5mJNTjJsXdP5NDA==",
-      "signed_at": "2026-05-19T20:58:00.287Z",
+      "signed_at": "2026-05-20T00:04:36.383Z",
       "cwe_refs": [
         "CWE-125",
         "CWE-362",
@@ -117,7 +117,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "vSVqu4wBm+d68ujZmM6Rto/HzViCkE0gPUcv/MYE/bjFiqamf/s0On4kTOo1KIveV9cOwYNxiItaGEWlVkRFDg==",
-      "signed_at": "2026-05-19T20:58:00.289Z",
+      "signed_at": "2026-05-20T00:04:36.384Z",
       "cwe_refs": [
         "CWE-1039",
         "CWE-1426",
@@ -180,7 +180,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "RIgXKvolQjgJdnlrDnVOd90IOY1B7VHHZD/YJQRzouL+wUeOLclPrdK/EgEuFyiu7lR4bi+Pl6aGB9G9tOxYCQ==",
-      "signed_at": "2026-05-19T20:58:00.289Z",
+      "signed_at": "2026-05-20T00:04:36.385Z",
       "cwe_refs": [
         "CWE-22",
         "CWE-345",
@@ -226,7 +226,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-01",
       "signature": "RYOxeq/o3uTwTWq4H7RcdH2Aclg9UyCERfUH9Frwkzncsowg7LgxpaEDc3swTCv73HMEGbU8wVbXguZ4JxHUCQ==",
-      "signed_at": "2026-05-19T20:58:00.290Z"
+      "signed_at": "2026-05-20T00:04:36.385Z"
     },
     {
       "name": "compliance-theater",
@@ -257,7 +257,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "DneJCPKCPcoe6nQ82XptqSqNfSRdt1orKaO+o7K36YCciDrzwJb+1BuBLusPDtpcdDaGY0y0e+AqiTYJklhBAQ==",
-      "signed_at": "2026-05-19T20:58:00.290Z"
+      "signed_at": "2026-05-20T00:04:36.385Z"
     },
     {
       "name": "exploit-scoring",
@@ -286,7 +286,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "NA1hoQycvQhSUoG5rwlXX0mOVmGxoXRVezkELGEA2nZOdGis4gXkHT3O6Sfw7zxE4JuMrsCb65TEeOWk9WEPDg==",
-      "signed_at": "2026-05-19T20:58:00.291Z"
+      "signed_at": "2026-05-20T00:04:36.386Z"
     },
     {
       "name": "rag-pipeline-security",
@@ -323,7 +323,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "XgrzcA2brPhXrSTxrcLnJec0OpgGYJBoSTUlJ10UdePHffxqb9LTVGnfbmEk1ykQifXREZexui2bG7X/+eFfCQ==",
-      "signed_at": "2026-05-19T20:58:00.291Z",
+      "signed_at": "2026-05-20T00:04:36.386Z",
       "cwe_refs": [
         "CWE-1395",
         "CWE-1426"
@@ -380,7 +380,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "9+hZlZOqZdeACUmamQk66L5levZhhwnFXuYRhdT6Mce99eQaKT7wNfWq12hXQztkRcVRKaFH+a01zwJQwsRQCA==",
-      "signed_at": "2026-05-19T20:58:00.291Z",
+      "signed_at": "2026-05-20T00:04:36.387Z",
       "d3fend_refs": [
         "D3-CA",
         "D3-CSPP",
@@ -415,7 +415,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-01",
       "signature": "ciqhVloMWWXEigPZvvwoV2c54tEqsDqsoc+sS/mNTFFJk2H+tz2+XUrgfEPRuYw0FeyNB6/+27pL2NpKHzUqAg==",
-      "signed_at": "2026-05-19T20:58:00.292Z",
+      "signed_at": "2026-05-20T00:04:36.387Z",
       "cwe_refs": [
         "CWE-1188"
       ]
@@ -443,7 +443,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-01",
       "signature": "xiHAhhdufm9hCKU8PLiPE0MX65ej2F4OZwtlWLGLCiie9/km+Kiqbt192LcMvr94v83C98pb9wIaqFsFWft6AQ==",
-      "signed_at": "2026-05-19T20:58:00.292Z"
+      "signed_at": "2026-05-20T00:04:36.387Z"
     },
     {
       "name": "global-grc",
@@ -475,7 +475,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-01",
       "signature": "oYsSk35N2Uzq7MRofACykylcVwkgPhI4luWZ14vmQT+gUKLyZiKVOUJbe1+7lGl6BYPRN0sUDQ0f7S5Eu5w2Ag==",
-      "signed_at": "2026-05-19T20:58:00.292Z"
+      "signed_at": "2026-05-20T00:04:36.388Z"
     },
     {
       "name": "zeroday-gap-learn",
@@ -502,7 +502,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-01",
       "signature": "igRqYyU1unRFH40BsPyAR62SPrk8QZv8dPGb8S9O9EvLCNOZAzm3t+HdT/NKqzWHwrpomOzkkkyLfYI/0qTUDA==",
-      "signed_at": "2026-05-19T20:58:00.293Z"
+      "signed_at": "2026-05-20T00:04:36.388Z"
     },
     {
       "name": "pqc-first",
@@ -554,7 +554,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "vhc3wuQEro/86s1ro2b/KakUXg8QVnySYTBqA7ebzv9oeR2HYO5bvGEJp3oOHWtL37JDqcCAHYadSN/qxIyCCA==",
-      "signed_at": "2026-05-19T20:58:00.293Z",
+      "signed_at": "2026-05-20T00:04:36.388Z",
       "cwe_refs": [
         "CWE-327"
       ],
@@ -601,7 +601,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "MS35nWm8djfJGn4OOoT0JKJ2aO+Dkbb6wOOWJYvNZlRKT3UGA59o2gxg1JOnD20hb/RwxtkmCujhl2tuYSR+AQ==",
-      "signed_at": "2026-05-19T20:58:00.293Z"
+      "signed_at": "2026-05-20T00:04:36.389Z"
     },
     {
       "name": "security-maturity-tiers",
@@ -638,7 +638,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "8Px1s2lDj10/Q6erwEQlXgUHM1+OTruUR8qAHPX7Oo3k/l69N6P9sm0PsafS9wDFtj9l5C/OiLiFgzMlMt6vBw==",
-      "signed_at": "2026-05-19T20:58:00.294Z",
+      "signed_at": "2026-05-20T00:04:36.389Z",
       "cwe_refs": [
         "CWE-1188"
       ]
@@ -673,7 +673,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-11",
       "signature": "WAu5fRirzSOcnnZsTx2d/JJZwa/LPpXCi+31qATTGLmoNuhyy81k3ooPe9kCM3E0CLMtvTePg9DagYqBninZDQ==",
-      "signed_at": "2026-05-19T20:58:00.294Z"
+      "signed_at": "2026-05-20T00:04:36.389Z"
     },
     {
       "name": "attack-surface-pentest",
@@ -744,7 +744,7 @@
         "PTES revision incorporating AI-surface enumeration"
       ],
       "signature": "7eEwCXFd9pDKUw7yCUbRJSjfzozE44dwwwemCQUPm8JBPztLltibD9bL/RszSbYyCrYJmVb5Drncz2cGe62gCw==",
-      "signed_at": "2026-05-19T20:58:00.294Z"
+      "signed_at": "2026-05-20T00:04:36.390Z"
     },
     {
       "name": "fuzz-testing-strategy",
@@ -804,7 +804,7 @@
         "OSS-Fuzz-Gen / AI-assisted harness generation becoming the default expectation for OSS maintainers"
       ],
       "signature": "Z7ypCUnXx8JpLtgxxB6RHNi39w74AmrGY1N4ofAGCXhkuM2EaFVm1AU0dvl9UQ1bVLfHKEDGqMO/TwlIY7RABg==",
-      "signed_at": "2026-05-19T20:58:00.295Z"
+      "signed_at": "2026-05-20T00:04:36.390Z"
     },
     {
       "name": "dlp-gap-analysis",
@@ -879,7 +879,7 @@
         "Quebec Law 25, India DPDPA, KSA PDPL enforcement actions naming AI-tool prompt data as in-scope personal information"
       ],
       "signature": "fgxG344JGYBWWWwFXZ1IzGipWKP7EyBhrsvsbsb0CCGXfv/MvNHVNI6G0zQddCsWX1JeQbhZT3Vk8v1uJKDTDA==",
-      "signed_at": "2026-05-19T20:58:00.295Z"
+      "signed_at": "2026-05-20T00:04:36.390Z"
     },
     {
       "name": "supply-chain-integrity",
@@ -956,7 +956,7 @@
         "OpenSSF model-signing — emerging Sigstore-based signing standard for ML model weights; track for production adoption"
       ],
       "signature": "pcLrM98A3vUSZRjwNAk0aZ9umvOwB41XCLLsCOy/IebB2F/06oIrGUKkMHtHwm4pTVPShMMcKdZQQ3jz30FnCg==",
-      "signed_at": "2026-05-19T20:58:00.295Z"
+      "signed_at": "2026-05-20T00:04:36.390Z"
     },
     {
       "name": "defensive-countermeasure-mapping",
@@ -1013,7 +1013,7 @@
       ],
       "last_threat_review": "2026-05-11",
       "signature": "gqF8eU3VBrZhO2WnlcqKa7wm1d2mmWtvpbmx0kNCgHojNV+qEt+Ij84RO6bZvaUqhfYPWizWL79Fa4DL0curAQ==",
-      "signed_at": "2026-05-19T20:58:00.295Z"
+      "signed_at": "2026-05-20T00:04:36.391Z"
     },
     {
       "name": "identity-assurance",
@@ -1080,7 +1080,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "Wv5hGMeHjlaQK1zwicVCA7AvdKgJBgvcjdpGM9Ywahh9tagAKhbkOjybowDQZzu7OZ3bDkbh6pBYc1Sdwr6NAA==",
-      "signed_at": "2026-05-19T20:58:00.296Z"
+      "signed_at": "2026-05-20T00:04:36.391Z"
     },
     {
       "name": "ot-ics-security",
@@ -1136,7 +1136,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "8t5qKHd3yWi57dvG36YQkLN/X9bQWqtEiYjay4IfSmqhJpM/xXPaQVKNGz3wscrO8OLKUZ0OaX7Mj5kzpgBKBQ==",
-      "signed_at": "2026-05-19T20:58:00.296Z"
+      "signed_at": "2026-05-20T00:04:36.391Z"
     },
     {
       "name": "coordinated-vuln-disclosure",
@@ -1188,7 +1188,7 @@
         "NYDFS 23 NYCRR 500 amendments potentially adding explicit CVD program requirements"
       ],
       "signature": "GDGt4UPqBa04PjlpSmpyihGzd3OgfBN7jaAK5tfwp+LRSs3ygKOdbeivUCCHNagTY1hE6hG2Ou40ADfBFuXeAg==",
-      "signed_at": "2026-05-19T20:58:00.296Z"
+      "signed_at": "2026-05-20T00:04:36.392Z"
     },
     {
       "name": "threat-modeling-methodology",
@@ -1238,7 +1238,7 @@
         "PASTA v2 updates incorporating AI/ML application threats"
       ],
       "signature": "rFBpOQEJUPpl+v88Lw/WqVJRhTl80vy0VbPAbzQj3Q0suJRRrJg368I9uKu5LXIBKFDvKxnGIcIzbGg9NUtaCA==",
-      "signed_at": "2026-05-19T20:58:00.297Z"
+      "signed_at": "2026-05-20T00:04:36.392Z"
     },
     {
       "name": "webapp-security",
@@ -1312,7 +1312,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "ux85YI4t2mVHOyt744Yin1HHy+z11JIFygjKfFfQOBBl5QVV3A267jeIy7utix85irMcpZm/T3yx/ooqiK2tBA==",
-      "signed_at": "2026-05-19T20:58:00.297Z"
+      "signed_at": "2026-05-20T00:04:36.392Z"
     },
     {
       "name": "ai-risk-management",
@@ -1362,7 +1362,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "IIXnkZ5ZNqFwOto5KfytADTLLZLoyXNZACD1ORZ40P1HUAQxe6u2uyXFzzsfuob4Uy06jNkRGr2FFgCphUH1Cw==",
-      "signed_at": "2026-05-19T20:58:00.297Z"
+      "signed_at": "2026-05-20T00:04:36.393Z"
     },
     {
       "name": "sector-healthcare",
@@ -1422,7 +1422,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "AhF9KF8ZBlDteciV+F8IBSmFVYCvQOn44GmD4rZjgLoPxfIv/QE1/vSkK32zyqDKtHWkLSXExbkkPkxA/V6dDw==",
-      "signed_at": "2026-05-19T20:58:00.298Z"
+      "signed_at": "2026-05-20T00:04:36.393Z"
     },
     {
       "name": "sector-financial",
@@ -1503,7 +1503,7 @@
         "TIBER-EU framework v2.0 alignment with DORA TLPT RTS (JC 2024/40); cross-recognition with CBEST and iCAST"
       ],
       "signature": "HQgZvb4ReziEz5rNFr8i/O8/rJEZR+iHRROT7m/D2QUqhrcNISPkYXENsUZlG8xapzy/Ik92ehkseyj4hdmhCQ==",
-      "signed_at": "2026-05-19T20:58:00.298Z"
+      "signed_at": "2026-05-20T00:04:36.394Z"
     },
     {
       "name": "sector-federal-government",
@@ -1572,7 +1572,7 @@
         "Australia PSPF 2024 revision and ISM quarterly updates — track for Essential Eight Maturity Level requirements for federal entities"
       ],
       "signature": "linxmsXZiOYtcs71sSWgGCrvb8xQfmxmtTY5PRvZJ0/8FgJulo0tQtejzexYG775s7XhjAmGsDP238BQTQ8ADA==",
-      "signed_at": "2026-05-19T20:58:00.299Z"
+      "signed_at": "2026-05-20T00:04:36.394Z"
     },
     {
       "name": "sector-energy",
@@ -1637,7 +1637,7 @@
         "ICS-CERT advisory feed (https://www.cisa.gov/news-events/cybersecurity-advisories/ics-advisories) for vendor CVEs in Siemens, Rockwell, Schneider Electric, ABB, GE Vernova, Hitachi Energy, AVEVA / OSIsoft PI"
       ],
       "signature": "JjBfc0ovta560Clk0x3QGRM5osFJDwcvpy3rT7QEGdCIL827jzE8QCow1C8deXq+4JhY2sA/d7/8IsxikdlkCg==",
-      "signed_at": "2026-05-19T20:58:00.299Z"
+      "signed_at": "2026-05-20T00:04:36.394Z"
     },
     {
       "name": "sector-telecom",
@@ -1723,7 +1723,7 @@
         "O-RAN SFG / WG11 security specifications"
       ],
       "signature": "JWVxKFoKrbX4d+Tko1d4OBdwyg25MfFFKn4CT6E/CzH+YwnU3T6Y76uBQIKg3+gIGTvPduqyvQwQQ5FxKDuPBw==",
-      "signed_at": "2026-05-19T20:58:00.299Z"
+      "signed_at": "2026-05-20T00:04:36.394Z"
     },
     {
       "name": "api-security",
@@ -1792,7 +1792,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "BmCRCestWqr55+fCynEhtAl5NWLT+xLTkpwS0Icp3SaoZOw/ce3Y6TtqjHRSKn4CBJq7YDiLRWxmhO3MStvOAA==",
-      "signed_at": "2026-05-19T20:58:00.299Z"
+      "signed_at": "2026-05-20T00:04:36.395Z"
     },
     {
       "name": "cloud-security",
@@ -1873,7 +1873,7 @@
         "CISA KEV additions for cloud-control-plane CVEs (IMDSv1 abuses, federation token mishandling, cross-tenant boundary failures); CISA Cybersecurity Advisories for cross-cloud advisories"
       ],
       "signature": "/DV3pmZwrRySrk1OCbyI+0BQESacjupJfUX3eC2NGtXuYOBro0vndIP+z27heFxumnjU3a9sfla7/U9X+pqnDw==",
-      "signed_at": "2026-05-19T20:58:00.300Z"
+      "signed_at": "2026-05-20T00:04:36.395Z"
     },
     {
       "name": "container-runtime-security",
@@ -1935,7 +1935,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "E2UGSf9ATyYgzBr8uM/0ubOUmDqo1jVA7f9mVxv6LHfWGCNuQNXDyuNou9VAmUCeeXEeUYIi3AFjXkJqpOkxDA==",
-      "signed_at": "2026-05-19T20:58:00.300Z"
+      "signed_at": "2026-05-20T00:04:36.395Z"
     },
     {
       "name": "mlops-security",
@@ -2006,7 +2006,7 @@
         "MITRE ATLAS v5.6.0 (released February 2026) shipped the AML.T0010 sub-technique expansion this forecast tracked plus new techniques (\"Publish Poisoned AI Agent Tool\", \"Escape to Host\"); inventory now 16 tactics, 84 techniques, 56 sub-techniques. Forward watch: ATLAS v5.5 / v6.0 — track next-cadence updates to agentic-AI TTPs and MLOps-pipeline-specific techniques"
       ],
       "signature": "BGNE6ZQWBA1LmsUFe8tU0L67iGDSrFqiuqaZD2f1KqfcyqqzQfMs9PWNHFzxxaJmXeKlm87eU8lgELF0bX+RBA==",
-      "signed_at": "2026-05-19T20:58:00.300Z"
+      "signed_at": "2026-05-20T00:04:36.396Z"
     },
     {
       "name": "incident-response-playbook",
@@ -2068,7 +2068,7 @@
         "NYDFS 23 NYCRR 500.17 amendments tightening ransom-payment 24h disclosure operationalization"
       ],
       "signature": "FkZQerh3VHVJAwIcCktDyMRh5KE2+Em/i0ek8zEz7JG/PXtQx8ujHWTh3VjZbOLhPNtdB2qxgXOIAYIofaVOAQ==",
-      "signed_at": "2026-05-19T20:58:00.301Z"
+      "signed_at": "2026-05-20T00:04:36.396Z"
     },
     {
       "name": "ransomware-response",
@@ -2148,7 +2148,7 @@
       ],
       "last_threat_review": "2026-05-15",
       "signature": "n3UToNuN3A1HgLvcuqmIx8vrZY71+r/79waK92jG+rSX4uYOzkmxMUpROrE5K9bDwMezNBHdjWv8Uul6zugyDQ==",
-      "signed_at": "2026-05-19T20:58:00.301Z"
+      "signed_at": "2026-05-20T00:04:36.396Z"
     },
     {
       "name": "email-security-anti-phishing",
@@ -2201,7 +2201,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "rK+WnuS+9tqEABmwc0jO/PEmxcLjG1/tmUb897HsClQeKzf+TQOlwBE+OsbtuKxpjYNwur62Xxs3TxObkwm8Cw==",
-      "signed_at": "2026-05-19T20:58:00.301Z"
+      "signed_at": "2026-05-20T00:04:36.397Z"
     },
     {
       "name": "age-gates-child-safety",
@@ -2269,7 +2269,7 @@
         "US state adult-site age-verification laws — 19+ states by mid-2026 (TX HB 18 upheld by SCOTUS June 2025 in Free Speech Coalition v. Paxton); track ongoing challenges in remaining states"
       ],
       "signature": "+OO0RhQ303RJV7kaH38IuZpLeQbapep6Ds4Re/WEZu0FHBwKSlwvF7jbtP7KQ57xldJYn/xZm2jaszyOacMfDg==",
-      "signed_at": "2026-05-19T20:58:00.302Z"
+      "signed_at": "2026-05-20T00:04:36.397Z"
     },
     {
       "name": "cloud-iam-incident",
@@ -2349,7 +2349,7 @@
       ],
       "last_threat_review": "2026-05-15",
       "signature": "e/kij7GtKaytROyIj7V5RH+FC9WtmVFzrmG2kIlNDNn29ep/CRNlIQKwXLpzo/81AIf634pmdr1qy/+vwIuUDA==",
-      "signed_at": "2026-05-19T20:58:00.302Z"
+      "signed_at": "2026-05-20T00:04:36.397Z"
     },
     {
       "name": "idp-incident-response",
@@ -2430,11 +2430,11 @@
       ],
       "last_threat_review": "2026-05-15",
       "signature": "ew9Kglc9fAZzbn0ZIfGP7WSK/j4eV2VhSvpy+s5bEfNEVYIMa2kZjnGBapgUsyGDLes9H9K2ovjQyX17+GKiBw==",
-      "signed_at": "2026-05-19T20:58:00.302Z"
+      "signed_at": "2026-05-20T00:04:36.398Z"
     }
   ],
   "manifest_signature": {
     "algorithm": "Ed25519",
-    "signature_base64": "EF8rdCmuUPJcyaBWGybS3mVEFH5OfQIz9PwmoySOh9OQtSKk3s23EnUcJlVZ9hU1kpdUM2Duv1at/PbwZprOCg=="
+    "signature_base64": "oB+aN96PBr0pNB2V6wOJGOVIjCQ7jIK/jrWyRDZH4ickaer4SeSkCuHK8BoWIDtx8EsJoYoc09VkI0dacCITAA=="
   }
 }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@blamejs/exceptd-skills",
-  "version": "0.13.21",
+  "version": "0.13.23",
   "description": "AI security skills grounded in mid-2026 threat reality, not stale framework documentation. 42 skills, 10 catalogs (312 CVEs / 171 CWEs / 805 ATT&CK + ICS / 170 ATLAS / 468 D3FEND / 7476 RFCs), 34 jurisdictions, 10-class catalog gap detector + budget gate, real XML parser + canonical-form diff + content-pattern regression detection, Ed25519-signed.",
   "keywords": [
     "ai-security",

package/sbom.cdx.json CHANGED Viewed

@@ -1,22 +1,22 @@
 {
   "bomFormat": "CycloneDX",
   "specVersion": "1.6",
-  "serialNumber": "urn:uuid:e9cd326f-3ca4-4e4f-987e-2d0206d0d1ac",
+  "serialNumber": "urn:uuid:0b35ef72-bc48-426e-9842-a51f9ab45d9f",
   "version": 1,
   "metadata": {
-    "timestamp": "2150-04-20T18:11:59.000Z",
+    "timestamp": "2031-12-17T21:34:42.000Z",
     "tools": [
       {
         "vendor": "blamejs",
         "name": "scripts/refresh-sbom.js",
-        "version": "0.13.21"
+        "version": "0.13.23"
       }
     ],
     "component": {
-      "bom-ref": "pkg:npm/@blamejs/exceptd-skills@0.13.21",
+      "bom-ref": "pkg:npm/@blamejs/exceptd-skills@0.13.23",
       "type": "application",
       "name": "@blamejs/exceptd-skills",
-      "version": "0.13.21",
+      "version": "0.13.23",
       "description": "AI security skills grounded in mid-2026 threat reality, not stale framework documentation. 42 skills, 10 catalogs (312 CVEs / 171 CWEs / 805 ATT&CK + ICS / 170 ATLAS / 468 D3FEND / 7476 RFCs), 34 jurisdictions, 10-class catalog gap detector + budget gate, real XML parser + canonical-form diff + content-pattern regression detection, Ed25519-signed.",
       "licenses": [
         {
@@ -25,17 +25,17 @@
           }
         }
       ],
-      "purl": "pkg:npm/%40blamejs/exceptd-skills@0.13.21",
+      "purl": "pkg:npm/%40blamejs/exceptd-skills@0.13.23",
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "0008dc2b26d4e59fc6986791da6277d43639c811ac5af5aa10f9b234a155921e"
+          "content": "8ce461e956e6ab5472e4e7a296b6ab310f6c4edf12448899533912e5c295df58"
         }
       ],
       "externalReferences": [
         {
           "type": "distribution",
-          "url": "https://www.npmjs.com/package/@blamejs/exceptd-skills/v/0.13.21"
+          "url": "https://www.npmjs.com/package/@blamejs/exceptd-skills/v/0.13.23"
         },
         {
           "type": "vcs",
@@ -116,11 +116,11 @@
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "c06c6600a1d4cbf20f87d080d9441658f0b4444023a565e1c3fe478fa35edab4"
+          "content": "aed90527cd8340db58b7763fe0592157998d95fcfadad636a1f70797a6dbe7b3"
         },
         {
           "alg": "SHA3-512",
-          "content": "7b16e8b3b6d2a68892f336bd7b07159c2750e9fca29539cba437bdcae3be48e10c66c1c529c7f9a4fe71f0eab9a79d0a596f740ab5bc9f9d20fb6e51d555f17e"
+          "content": "41d5327db07cc516a2a9acc167aea7a368e2980b2ef41de793a129594ea7fdbfeef70b7be871a27c4725bb3b00ea38ac3bbf59c9e55861c9d2ffc411ba6bf1df"
         }
       ]
     },
@@ -281,11 +281,11 @@
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "1b86a9695a7438b4b87d90b1a0240daf0a2dc3e780761c0d73e53e3bbdc58cd9"
+          "content": "7a98ba6ee033390ae445719a8fafc98de314449831ebc862d47dda0604f9173f"
         },
         {
           "alg": "SHA3-512",
-          "content": "d79eabbafc3bce52e718c0f13603a133ac90107303a2266d02ad4041256e7d591c93389b1cbdffff1cbd80c73d178f6c5903d9e4064cdd1a1803c9979c00bb03"
+          "content": "c503c9557768f9fa7f83cb56415f508cb47291ad0050e7567ba3b06b63d302492c3e5338bb8af00b3bc87a2af9d3c509c25dc546704b0b96a65b4e078df8e12b"
         }
       ]
     },
@@ -1031,11 +1031,11 @@
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "f5395b0e858ba67d5c78fe61dcb50ebbe8cff01ce38d7fdbf3cab6b30aa84afd"
+          "content": "34b9a8ed6d468fe83422e7fa1aae30d205ccd01e8f9e9e3f4a2273ab10f5cfc5"
         },
         {
           "alg": "SHA3-512",
-          "content": "1158047605ad81345d4899a29341be469f0f643bf16e7fd4455750d9934902ec6e1313968aca0cbba77224c35c37283b1683822760bf1042bc754d3940ea81b0"
+          "content": "fa5b647c27f0252d9ae1eae179a1b9e10c3186a87328f428c716c7adc74eac347aea5c6094fb7997295d32b3bfd18536709e1dba9659a4b807a274a233d227d8"
         }
       ]
     },
@@ -1451,11 +1451,11 @@
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "b8676a67b642f623974dccf3ba0f1df95836541b7c1dcd0c63cef2b71fa1a88a"
+          "content": "4756b56a56128891bc4b4728ebfd16e4a52e6b3f40dd0140250b8a6cfda30122"
         },
         {
           "alg": "SHA3-512",
-          "content": "fc5556bf27093bda786f564caaba523dec5d39f92e1b09ce9e5011f8411cf3add4892cd28330ec4f0b08e8bb6ba61c7a1849cc4ecdad64bd8df7b03afc58650d"
+          "content": "8775bbc3434cb337d49d9f198a60a913929c5965b6ef47bc201e527a377c3b6e2e64f9708412fb4f10195f2f45e275bdd39255850167506790a10403102bfa0f"
         }
       ]
     },