@blamejs/exceptd-skills 0.13.62 → 0.13.64
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +8 -0
- package/data/_indexes/_meta.json +8 -8
- package/data/_indexes/activity-feed.json +157 -157
- package/data/_indexes/catalog-summaries.json +2 -2
- package/data/_indexes/currency.json +46 -46
- package/data/_indexes/handoff-dag.json +9 -5
- package/data/_indexes/section-offsets.json +29 -29
- package/data/_indexes/stale-content.json +2 -8
- package/data/_indexes/summary-cards.json +23 -23
- package/data/_indexes/token-budget.json +18 -18
- package/data/atlas-ttps.json +1 -1
- package/data/framework-control-gaps.json +3 -3
- package/manifest.json +178 -87
- package/package.json +2 -2
- package/sbom.cdx.json +40 -25
- package/scripts/audit-cross-skill.js +6 -1
- package/scripts/builders/catalog-summaries.js +2 -2
- package/scripts/sync-manifest-metadata.js +88 -0
- package/skills/defensive-countermeasure-mapping/skill.md +2 -2
- package/skills/researcher/skill.md +6 -2
|
@@ -3,8 +3,8 @@
|
|
|
3
3
|
"schema_version": "1.0.0",
|
|
4
4
|
"tokenizer_note": "Character-density approximation: 1 token ≈ 4 chars. This is the canonical rule-of-thumb for OpenAI tokenizers on English+technical text. Claude's tokenizer is typically more efficient on prose; treat this as an upper-bound budget for both. Consumers with stricter precision needs should re-tokenize with their own tokenizer.",
|
|
5
5
|
"approx_chars_per_token": 4,
|
|
6
|
-
"total_chars":
|
|
7
|
-
"total_approx_tokens":
|
|
6
|
+
"total_chars": 1672960,
|
|
7
|
+
"total_approx_tokens": 418246,
|
|
8
8
|
"skill_count": 42
|
|
9
9
|
},
|
|
10
10
|
"skills": {
|
|
@@ -1015,10 +1015,10 @@
|
|
|
1015
1015
|
},
|
|
1016
1016
|
"researcher": {
|
|
1017
1017
|
"path": "skills/researcher/skill.md",
|
|
1018
|
-
"bytes":
|
|
1019
|
-
"chars":
|
|
1020
|
-
"lines":
|
|
1021
|
-
"approx_tokens":
|
|
1018
|
+
"bytes": 33661,
|
|
1019
|
+
"chars": 33479,
|
|
1020
|
+
"lines": 342,
|
|
1021
|
+
"approx_tokens": 8370,
|
|
1022
1022
|
"approx_chars_per_token": 4,
|
|
1023
1023
|
"sections": {
|
|
1024
1024
|
"frontmatter-scope": {
|
|
@@ -1047,9 +1047,9 @@
|
|
|
1047
1047
|
"approx_tokens": 377
|
|
1048
1048
|
},
|
|
1049
1049
|
"analysis-procedure": {
|
|
1050
|
-
"bytes":
|
|
1051
|
-
"chars":
|
|
1052
|
-
"approx_tokens":
|
|
1050
|
+
"bytes": 14860,
|
|
1051
|
+
"chars": 14724,
|
|
1052
|
+
"approx_tokens": 3681
|
|
1053
1053
|
},
|
|
1054
1054
|
"output-format": {
|
|
1055
1055
|
"bytes": 3163,
|
|
@@ -1270,10 +1270,10 @@
|
|
|
1270
1270
|
},
|
|
1271
1271
|
"defensive-countermeasure-mapping": {
|
|
1272
1272
|
"path": "skills/defensive-countermeasure-mapping/skill.md",
|
|
1273
|
-
"bytes":
|
|
1274
|
-
"chars":
|
|
1273
|
+
"bytes": 33707,
|
|
1274
|
+
"chars": 33565,
|
|
1275
1275
|
"lines": 304,
|
|
1276
|
-
"approx_tokens":
|
|
1276
|
+
"approx_tokens": 8391,
|
|
1277
1277
|
"approx_chars_per_token": 4,
|
|
1278
1278
|
"sections": {
|
|
1279
1279
|
"threat-context": {
|
|
@@ -1282,9 +1282,9 @@
|
|
|
1282
1282
|
"approx_tokens": 882
|
|
1283
1283
|
},
|
|
1284
1284
|
"framework-lag-declaration": {
|
|
1285
|
-
"bytes":
|
|
1286
|
-
"chars":
|
|
1287
|
-
"approx_tokens":
|
|
1285
|
+
"bytes": 4556,
|
|
1286
|
+
"chars": 4536,
|
|
1287
|
+
"approx_tokens": 1134
|
|
1288
1288
|
},
|
|
1289
1289
|
"ttp-mapping": {
|
|
1290
1290
|
"bytes": 1957,
|
|
@@ -1312,9 +1312,9 @@
|
|
|
1312
1312
|
"approx_tokens": 694
|
|
1313
1313
|
},
|
|
1314
1314
|
"defensive-countermeasure-mapping": {
|
|
1315
|
-
"bytes":
|
|
1316
|
-
"chars":
|
|
1317
|
-
"approx_tokens":
|
|
1315
|
+
"bytes": 3429,
|
|
1316
|
+
"chars": 3403,
|
|
1317
|
+
"approx_tokens": 851
|
|
1318
1318
|
}
|
|
1319
1319
|
}
|
|
1320
1320
|
},
|
package/data/atlas-ttps.json
CHANGED
|
@@ -512,7 +512,7 @@
|
|
|
512
512
|
"Multiple production AI assistant prompt injection incidents 2025-2026"
|
|
513
513
|
],
|
|
514
514
|
"framework_gap": true,
|
|
515
|
-
"framework_gap_detail": "No framework has a control for prompt injection as an access control failure vector. The attack uses the AI service account's authorized permissions — from AC-2's perspective, the access is authorized. MITRE ATLAS v5.
|
|
515
|
+
"framework_gap_detail": "No framework has a control for prompt injection as an access control failure vector. The attack uses the AI service account's authorized permissions — from AC-2's perspective, the access is authorized. MITRE ATLAS v5.6.0 documents the technique; no framework has implemented controls. OWASP LLM Top 10 documents the class; it is not incorporated in any compliance framework.",
|
|
516
516
|
"controls_that_partially_help": [
|
|
517
517
|
"NIST-800-53-AC-2",
|
|
518
518
|
"ISO-27001-2022-A.8.28"
|
|
@@ -365,7 +365,7 @@
|
|
|
365
365
|
"Treating 'Top 25 addressed' as a compliance signal creates a compliance-theatre risk for organisations with significant AI surface",
|
|
366
366
|
"No cross-walk requirement to ATLAS TTPs — CWE addresses weaknesses; ATLAS addresses adversary techniques. Both are needed for AI coverage"
|
|
367
367
|
],
|
|
368
|
-
"real_requirement": "Programmes that claim 'Top 25 addressed' as compliance evidence must additionally: (1) enumerate AI-relevant CWEs outside the Top 25 (CWE-1426 Improper Output Validation, CWE-1039 Inadequate Detection of Adversarial Input, CWE-1230 Exposure of Sensitive Info Through Metadata) with explicit treatment, (2) cross-walk to ATLAS v5.
|
|
368
|
+
"real_requirement": "Programmes that claim 'Top 25 addressed' as compliance evidence must additionally: (1) enumerate AI-relevant CWEs outside the Top 25 (CWE-1426 Improper Output Validation, CWE-1039 Inadequate Detection of Adversarial Input, CWE-1230 Exposure of Sensitive Info Through Metadata) with explicit treatment, (2) cross-walk to ATLAS v5.6.0 TTPs for adversarial coverage, (3) re-baseline against the next-published Top 25 with delta analysis. Aligns with EU CRA Annex I, UK NCSC, AU ISM, ISO 27001 A.8.28.",
|
|
369
369
|
"status": "open",
|
|
370
370
|
"opened_date": "2026-05-11",
|
|
371
371
|
"evidence_cves": [],
|
|
@@ -1586,7 +1586,7 @@
|
|
|
1586
1586
|
"LLM-API-as-C2 (SesameOp pattern, ATLAS AML.T0096) is not in the clause 6.1.2 example threat list — risk register templates omit it",
|
|
1587
1587
|
"No requirement to link AI risk register entries to specific TTP IDs (ATLAS / ATT&CK) — risks remain framework-internal abstractions"
|
|
1588
1588
|
],
|
|
1589
|
-
"real_requirement": "Clause 6.1.2 risk registers must (1) ingest ATLAS v5.
|
|
1589
|
+
"real_requirement": "Clause 6.1.2 risk registers must (1) ingest ATLAS v5.6.0 TTPs as enumerated AI-specific threat sources, (2) cross-reference jurisdictional obligations (EU AI Act Annex III, NIS2 Art. 21, DORA Art. 28, UK CAF B4, AU ISM AI annex, ISO 27001:2022 A.5.7), (3) include AI-API-as-C2 and prompt-injection-as-RCE as named scenarios, (4) be re-run on threat-intel triggers, not only on calendar cycles.",
|
|
1590
1590
|
"status": "open",
|
|
1591
1591
|
"opened_date": "2026-05-11",
|
|
1592
1592
|
"evidence_cves": [],
|
|
@@ -6199,7 +6199,7 @@
|
|
|
6199
6199
|
}
|
|
6200
6200
|
},
|
|
6201
6201
|
"ATLAS-AML.T0048": {
|
|
6202
|
-
"framework": "MITRE ATLAS v5.
|
|
6202
|
+
"framework": "MITRE ATLAS v5.6.0",
|
|
6203
6203
|
"control_id": "AML.T0048",
|
|
6204
6204
|
"control_name": "External Harms — ML Supply Chain Compromise (bundled-codec / inference-server class)",
|
|
6205
6205
|
"designed_for": "ATLAS AML.T0048 catalogues external harms from ML supply-chain compromise, including malicious model weights, poisoned training data, and compromised ML libraries. The technique-level guidance covers detection and mitigation at the model-artifact and library-consumption layer.",
|