npm - @blamejs/exceptd-skills - Versions diffs - 0.15.52 → 0.15.53 - Mend

@blamejs/exceptd-skills 0.15.52 → 0.15.53

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/CHANGELOG.md +6 -0
package/data/_indexes/_meta.json +3 -3
package/data/cve-catalog.json +91 -8
package/lib/citation-resolve.js +23 -1
package/lib/schemas/cve-catalog.schema.json +23 -0
package/lib/scoring.js +33 -0
package/manifest.json +44 -44
package/package.json +1 -1
package/sbom.cdx.json +20 -20

package/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,11 @@
 # Changelog
+## 0.15.53 — 2026-05-30
+Catalog: package-class entries can now carry an optional package-confidence signal — a 0–100 supply-chain trustworthiness score with inverse polarity to RWEP (high = trustworthy provenance, low = behaves like malware), derived from maintainer, code-quality, behavioral, and provenance sub-signals. It is surfaced alongside RWEP and never feeds or replaces it: RWEP answers "how urgently must I act on this known vulnerability," while package-confidence answers "how much do I trust this package's provenance." Populated on the supply-chain malware entries (the MOIKA dependency-confusion campaign, TrapDoor, Shai-Hulud, the node-ipc credential-stealer, and the node-ipc protestware incident).
+The Shai-Hulud worm entry now also covers the PyTorch Lightning PyPI compromise (CVE-2026-44484 / `lightning` 2.6.2–2.6.3) as the PyPI side of the same Mini Shai-Hulud wave, with its Bun-runtime infostealer indicators and disclosure sources.
 ## 0.15.52 — 2026-05-30
 Supply-chain playbook: three new detection-depth checks. Typosquat / homoglyph detection flags a direct dependency whose name impersonates a popular package by edit-distance or a visually-confusable Unicode substitution (reusing the Trojan-Source codepoint tables) — a lure signal that precedes any payload. A static content red-flag screen flags packages that ship only minified/obfuscated source, carry a high ratio of high-entropy strings, are a trivial shell that nonetheless runs an install script or opens the network, or combine dynamic `eval` with dynamic `require` (CWE/ATT&CK T1027) — orthogonal to the capability screens. A dependency-confusion resolution check flags an internal-looking package name served from the public registry, or an inflated-version public squat that wins resolution over the private package — the resolution-source signature that precedes execution, correlated to the MOIKA campaign. Each ships with a paired evidence artifact and false-positive profile.

package/data/_indexes/_meta.json CHANGED Viewed

@@ -1,13 +1,13 @@
 {
   "schema_version": "1.1.0",
-  "generated_at": "2026-05-31T04:31:02.570Z",
+  "generated_at": "2026-05-31T05:03:02.966Z",
   "generator": "scripts/build-indexes.js",
   "source_count": 54,
   "source_hashes": {
-    "manifest.json": "e5f2d2a803f6972ef1759593ddbec1e3badc297b8f83e667fedeaf4b68fd9819",
+    "manifest.json": "4359446f2ab6bfb0484b716ca15b81755ca4075d941b0c8caa5d2d4ad1c4f0a7",
     "data/atlas-ttps.json": "878b4a08bb73c8d20396d85cf433a88f2bc5e7a8cbf7f6ab773ce7ede0a11251",
     "data/attack-techniques.json": "318bf8e9c5aee1d0a4a1dc37c4b211f2fbc937bf332a401a22483cc7d0547252",
-    "data/cve-catalog.json": "cb5e305b5488a2a02e177f10e913d22f602d6016109f152903093e9614e0b470",
+    "data/cve-catalog.json": "1aac7e75eae24ece2ef09d1c63977bdd7a1f81a9f11609ebb966109be316426c",
     "data/cwe-catalog.json": "b0e4d8f90b655b2b35b1e91c682ee66f2aa51ae5d38efb14f0e1b77f75ec5f7b",
     "data/d3fend-catalog.json": "9a54bccb9f24f84b32024216cc3f53819a053721ac8ab43c326859e68fc0ffaf",
     "data/dlp-controls.json": "d2406c482dddd30e49203879999dc4b3a7fd4d0494d6a61d86b91ee76415df19",

package/data/cve-catalog.json CHANGED Viewed

@@ -200,7 +200,20 @@
     "remediation_status": "patched_upstream",
     "remediation_note": "node-ipc 10.1.3 removed the destructive payload (2022-03-08). The 11.0.0+ peacenotwar protestware remained per NVD scoping. Novel defended class for this catalog: trusted-maintainer protestware / sabotage of a high-reach dependency (the catalog previously had account-takeover and typosquat supply-chain classes, not insider-maintainer sabotage).",
     "remediation_status_verified_at": "2026-05-30",
-    "_editorial_note": "CVE-2022-23812 intake: first trusted-maintainer-protestware/sabotage entry in the catalog. Distinct from MAL-2026-NODE-IPC-STEALER (account-recovery takeover, credential-stealer): this is the original maintainer authoring a geo-targeted destructive payload. Paired zeroday-lesson generates NEW-CTRL-114 (main-module-payload detection — the --ignore-scripts blind spot)."
+    "_editorial_note": "CVE-2022-23812 intake: first trusted-maintainer-protestware/sabotage entry in the catalog. Distinct from MAL-2026-NODE-IPC-STEALER (account-recovery takeover, credential-stealer): this is the original maintainer authoring a geo-targeted destructive payload. Paired zeroday-lesson generates NEW-CTRL-114 (main-module-payload detection — the --ignore-scripts blind spot).",
+    "package_confidence": {
+      "score": 31,
+      "polarity": "trust",
+      "inputs": {
+        "maintainer": 25,
+        "quality": 60,
+        "behavioral": 10,
+        "provenance": 30
+      },
+      "rationale": "node-ipc was a genuine, high-quality, high-reach package (quality high) but the TRUSTED maintainer authored a geo-targeted destructive payload (behavioral collapse); maintainer-intent is the risk, not a takeover. Provenance existed pre-incident.",
+      "method": "supplementary-supply-chain-trust (equal-weight mean of present sub-signals; never feeds RWEP)",
+      "as_of": "2026-05-30"
+    }
   },
   "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM": {
     "name": "TrapDoor cross-ecosystem crypto-stealer + AI-assistant poisoning campaign (npm/PyPI/crates.io)",
@@ -364,7 +377,20 @@
       "npm: 19 lure packages across the campaign (10 in the GHSA-7r6r-hqg7-f6mq anchor cluster, by maintainer ddjidd5640, published 2026-05-19..21) — all published versions of the named packages are malicious (e.g. eth-wallet-sentinel@2.1.2, SHA-256 in OSV MAL-2026-4207)",
       "PyPI: cryptowallet-safety / defi-risk-scanner / eth-security-auditor (earliest eth-security-auditor@0.1.0, 2026-05-22) — all published versions malicious (OSV MAL-2026-4259/4260/4261)",
       "crates.io: move-* / sui-* build-helper packages — all published versions malicious; no OSV MAL-* assigned as of 2026-05-30 (UNVERIFIED pending OSV coverage)"
-    ]
+    ],
+    "package_confidence": {
+      "score": 6,
+      "polarity": "trust",
+      "inputs": {
+        "maintainer": 5,
+        "quality": 15,
+        "behavioral": 3,
+        "provenance": 0
+      },
+      "rationale": "Cross-ecosystem lure packages (security/crypto/AI-tooling themes) from a single actor cluster; install/import/build-time credential stealer + AI-assistant config poisoning; no provenance.",
+      "method": "supplementary-supply-chain-trust (equal-weight mean of present sub-signals; never feeds RWEP)",
+      "as_of": "2026-05-30"
+    }
   },
   "MAL-2026-MOIKA-DEPCONFUSION": {
     "name": "oob.moika.tech dependency-confusion credential-exfiltration campaign (internal-scope namespace squat)",
@@ -538,7 +564,20 @@
     "_editorial_note": "MOIKA (oob.moika.tech) intake: NOVEL attack class for this catalog — first dependency-confusion / internal-scope-squat entry (catalog previously had zero). Distinct from MAL-2026-NODE-IPC-STEALER (account-recovery, main-module payload, DNS-TXT exfil): MOIKA is namespace-confusion, postinstall stager, HTTPS-POST exfil, --ignore-scripts-mitigable. Likely warrants a new zeroday-lessons control (PACKAGE-INTERNAL-SCOPE-REGISTRY-PINNING). RWEP 43 (exemplar convention: live_patch_available credited -10).js (would be 43 under the exemplar's -10 convention).",
     "remediation_status": "partially_removed_from_registry",
     "remediation_note": "Malicious packages were reported and are being removed from npm; OSV/GHSA records published 2026-05-28/29. Removal is per-package and reactive — the structural risk (any attacker can re-publish an inflated version under an unpinned internal scope) persists until consuming orgs pin internal scopes to their private registry. UNVERIFIED: whether all ~179 packages were removed and whether all four publisher accounts were deactivated as of 2026-05-30 (no source confirms complete takedown).",
-    "remediation_status_verified_at": "2026-05-30"
+    "remediation_status_verified_at": "2026-05-30",
+    "package_confidence": {
+      "score": 5,
+      "polarity": "trust",
+      "inputs": {
+        "maintainer": 5,
+        "quality": 10,
+        "behavioral": 5,
+        "provenance": 0
+      },
+      "rationale": "Dependency-confusion squat: fresh attacker accounts (mr.4nd3r50n / t-in-one), inflated 99.99.99 semver, obfuscated postinstall stager exfiltrating process.env, no repo link, no provenance attestation.",
+      "method": "supplementary-supply-chain-trust (equal-weight mean of present sub-signals; never feeds RWEP)",
+      "as_of": "2026-05-30"
+    }
   },
   "CVE-2025-0282": {
     "ai_assisted_weaponization": false,
@@ -4880,7 +4919,20 @@
     "_editorial_note": "Cycle 13 intake (v0.12.33): cycle 13 agent C surfaced node-ipc 2026-05-14 publish event in the 24h-window check. Novel attack precondition (expired-domain re-registration + npm password-reset abuse) makes this a distinct supply-chain class from the Shai-Hulud (token-compromise) and elementary-data (typosquat + orphan-commit) precedents; warrants its own NEW-CTRL-047 in zeroday-lessons.json. RWEP factors satisfy Shape B invariant (0 + 20 + 0 + 20 + 28 - 15 - 10 + 0 = 43); discovery_attribution_note cites multiple firms with URLs.",
     "remediation_status": "removed_from_registry",
     "remediation_note": "npm removed all 3 malicious versions (9.1.6, 9.2.3, 12.0.1) within ~2 hours of publication on 2026-05-14. Publisher account atiertant was deactivated. The expired-domain TTP (atlantis-software.net re-registered via Namecheap on 2026-05-07 after Jan 2025 expiry) remains the novel attack class to defend against — see zeroday-lessons NEW-CTRL-047 (PACKAGE-MAINTAINER-DOMAIN-EXPIRY-MONITORING).",
-    "remediation_status_verified_at": "2026-05-16"
+    "remediation_status_verified_at": "2026-05-16",
+    "package_confidence": {
+      "score": 11,
+      "polarity": "trust",
+      "inputs": {
+        "maintainer": 8,
+        "quality": 30,
+        "behavioral": 5,
+        "provenance": 0
+      },
+      "rationale": "Account-takeover (expired-domain account-recovery) of a real 3.35M-download package: the package WAS legitimate (quality moderate) but the publish account was attacker-controlled, shipping a main-module credential stealer; provenance absent post-takeover.",
+      "method": "supplementary-supply-chain-trust (equal-weight mean of present sub-signals; never feeds RWEP)",
+      "as_of": "2026-05-30"
+    }
   },
   "CVE-2026-46333": {
     "name": "ssh-keysign-pwn",
@@ -4990,7 +5042,8 @@
     "active_exploitation_notes": "Copycat modifications observed by Ox Security within hours of the 2026-05-12 release. Mini Shai-Hulud wave (Microsoft Security Research, 2026-05-11) compromised 170+ npm packages + 2 PyPI packages across 404 malicious versions. MAL-2026-TANSTACK-MINI in this catalog is an in-the-wild Shai-Hulud-class incident. Continuous active exploitation expected through 2026.",
     "affected": "npm registry (170+ confirmed packages in May 2026 wave), PyPI (2 confirmed), GitHub Actions runners, developer workstations with credentials staged in ~/.aws, ~/.config/gcloud, ~/.kube, ~/.ssh, ~/.cursor, ~/.codeium, ~/.claude, ~/.npmrc. Any package-registry account whose maintainer workstation runs the framework. Any AI-assistant config file with API tokens or MCP server credentials.",
     "affected_versions": [
-      "shai-hulud-framework all forks post-2026-05-12"
+      "shai-hulud-framework all forks post-2026-05-12",
+      "PyPI lightning / pytorch-lightning 2.6.2 and 2.6.3 (Mini Shai-Hulud PyPI wave; last clean 2.6.1, 2026-01-30; CVE-2026-44484 / GHSA-w37p-236h-pfx3 / OSV MAL-2026-3201, published 2026-04-30)"
     ],
     "vector": "Self-replicating npm worm with maintainer-account-pivot. Phase 1: credential harvest via package post-install OR require-time activation (variant-dependent) reads cloud + AI-assistant + version-control configs from operator HOME. Phase 2: stolen npm token authenticates to registry as compromised maintainer; enumerates other packages owned by same maintainer; injects malware; publishes new compromised versions. Phase 3: encrypted exfil to attacker-controlled GitHub repos matching the \"A Gift From TeamPCP\" naming pattern + secondary C2 channels. Phase 4 (variant-dependent): local-environment wipe — destructive opt-in by attacker.",
     "complexity": "turnkey post-source-release",
@@ -5050,7 +5103,12 @@
       "https://www.microsoft.com/en-us/security/blog/2025/12/09/shai-hulud-2-0-guidance-for-detecting-investigating-and-defending-against-the-supply-chain-attack/",
       "https://www.cisa.gov/news-events/alerts/2025/09/23/widespread-supply-chain-compromise-impacting-npm-ecosystem",
       "https://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attack",
-      "https://snyk.io/blog/tanstack-npm-packages-compromised/"
+      "https://snyk.io/blog/tanstack-npm-packages-compromised/",
+      "https://osv.dev/vulnerability/MAL-2026-3201",
+      "https://github.com/Lightning-AI/pytorch-lightning/security/advisories/GHSA-w37p-236h-pfx3",
+      "https://www.stepsecurity.io/blog/lightning-obfuscated-javascript-credential-stealer-bundled-in-pypi-wheel",
+      "https://www.aikido.dev/blog/pytorch-lightning-pypi-compromise-mini-shai-hulud",
+      "https://socket.dev/blog/lightning-pypi-package-compromised"
     ],
     "last_updated": "2026-05-17",
     "discovery_attribution_note": "TeamPCP threat-actor framework, not a vulnerability discovery. The framework was open-sourced 2026-05-12 on GitHub under MIT license by the same actor group responsible for the September 2025 / November 2025 / May 2026 Shai-Hulud npm-worm waves. TeamPCP self-describes the framework as \"vibe coded\" — AI-coding-assistant-mediated authoring. Adoption-side weaponization is accelerated by AI coding assistants + the BreachForums-hosted $1,000 USD bounty contest.",
@@ -5061,8 +5119,33 @@
         "Self-republication attempts from a package-install context and creation of attacker-controlled public repositories for exfiltration (worm propagation via maintainer-account pivot).",
         "Outbound exfiltration of harvested secrets from a CI runner or developer host shortly after an affected dependency install."
       ],
-      "_ioc_source_note": "Anchored to NVD/advisory references and the public Shai-Hulud worm analyses cited in verification_sources."
-    }
+      "_ioc_source_note": "Anchored to NVD/advisory references and the public Shai-Hulud worm analyses cited in verification_sources.",
+      "pypi_lightning_subincident": [
+        "PyPI lightning 2.6.2/2.6.3 wheel ships _runtime/start.py + _runtime/router_runtime.js (~11 MB obfuscated JS infostealer)",
+        "Import-triggered payload downloads the Bun JavaScript runtime v1.3.13 and executes router_runtime.js (credential harvest of CI/CD, SSH keyrings, crypto wallets, PyPI publish tokens)",
+        "Cross-ecosystem spread: injects into npm package tarballs on the developer machine for downstream npm propagation"
+      ]
+    },
+    "package_confidence": {
+      "score": 3,
+      "polarity": "trust",
+      "inputs": {
+        "maintainer": 3,
+        "quality": 5,
+        "behavioral": 2,
+        "provenance": 0
+      },
+      "rationale": "Self-replicating worm framework (TeamPCP) compromising 170+ npm + PyPI packages; credential harvest + repo poisoning + self-propagation; no legitimate provenance.",
+      "method": "supplementary-supply-chain-trust (equal-weight mean of present sub-signals; never feeds RWEP)",
+      "as_of": "2026-05-30"
+    },
+    "aliases": [
+      "CVE-2026-44484",
+      "MAL-2026-3201",
+      "GHSA-w37p-236h-pfx3"
+    ],
+    "aliases_note": "CVE-2026-44484 / OSV MAL-2026-3201 / GHSA-w37p-236h-pfx3 cover the PyPI lightning (PyTorch Lightning) sub-incident of this Mini Shai-Hulud wave — distinct ids for the same campaign, tracked here rather than as a separate entry (adversarial dedup 2026-05-30 confirmed it is the PyPI side of this wave, not a distinct incident).",
+    "_editorial_note_lightning": "PyPI lightning (PyTorch Lightning) 2.6.2/2.6.3 compromise (disclosed 2026-04-30, CVE-2026-44484) folded into this entry on 2026-05-30: an adversarial dedup found it is the PyPI side of the Mini Shai-Hulud wave already scoped here (shared Bun-runtime/router_runtime.js IoCs, same campaign/timeline), not a distinct incident warranting a separate MAL-* key."
   },
   "CVE-2024-21762": {
     "ai_assisted_weaponization": false,

package/lib/citation-resolve.js CHANGED Viewed

@@ -128,7 +128,8 @@ async function resolveCve(id, opts = {}) {
   }
   // 1. curated catalog (offline, authoritative for the ids it covers)
-  const entry = cveCatalog()[cveId];
+  const catalog = cveCatalog();
+  const entry = catalog[cveId];
   if (entry && typeof entry === "object") {
     return {
       ...base,
@@ -141,6 +142,27 @@ async function resolveCve(id, opts = {}) {
     };
   }
+  // 1b. alias lookup — an id may be carried as an alias of a curated entry
+  //     (e.g. a CVE for a sub-incident folded into a campaign-level MAL-* key).
+  //     Catalogued-by-alias must resolve offline too, or `exceptd cve <alias>`
+  //     would report unknown for an incident the catalog actually covers.
+  for (const k of Object.keys(catalog)) {
+    if (k === "_meta") continue;
+    const e = catalog[k];
+    if (e && Array.isArray(e.aliases) && e.aliases.includes(cveId)) {
+      return {
+        ...base,
+        status: e.status || "published",
+        cvss: e.cvss_score ?? null,
+        kev: e.cisa_kev ?? null,
+        product: e.name || e.type || null,
+        exploitation: e.active_exploitation ?? null,
+        from: "catalog-alias",
+        aliased_to: k,
+      };
+    }
+  }
   // 2. resolved cache (offline, warmed by a prior agent's lookup)
   const cached = cacheGet("cve", cveId);
   if (cached) return { ...cached, from: "cache" };

package/lib/schemas/cve-catalog.schema.json CHANGED Viewed

@@ -187,6 +187,29 @@
     "last_updated": {
       "type": "string",
       "pattern": "^[0-9]{4}-[0-9]{2}-[0-9]{2}$"
+    },
+    "package_confidence": {
+      "type": "object",
+      "description": "Optional supplementary supply-chain trustworthiness signal (Package-Confidence Score), surfaced ALONGSIDE rwep_score and never feeding it. Polarity is INVERSE of RWEP: high score = trustworthy provenance/behaviour, low = behaves like malware. Present only on package-class entries (MAL-*, supply-chain-* CVEs); never participates in the RWEP sum invariant.",
+      "required": ["score", "polarity"],
+      "properties": {
+        "score": { "type": "integer", "minimum": 0, "maximum": 100 },
+        "polarity": { "enum": ["trust"] },
+        "inputs": {
+          "type": "object",
+          "properties": {
+            "maintainer": { "type": "number", "minimum": 0, "maximum": 100 },
+            "quality": { "type": "number", "minimum": 0, "maximum": 100 },
+            "behavioral": { "type": "number", "minimum": 0, "maximum": 100 },
+            "provenance": { "type": "number", "minimum": 0, "maximum": 100 }
+          },
+          "additionalProperties": false
+        },
+        "rationale": { "type": "string" },
+        "method": { "type": "string" },
+        "as_of": { "type": "string", "pattern": "^[0-9]{4}-[0-9]{2}-[0-9]{2}$" }
+      },
+      "additionalProperties": false
     }
   }
 }

package/lib/scoring.js CHANGED Viewed

@@ -498,11 +498,44 @@ function parseCvss31Vector(v) {
   return { ok: true, version };
 }
+/**
+ * Package-Confidence Score (PCS) — a SUPPLEMENTARY 0-100 supply-chain
+ * trustworthiness signal, surfaced ALONGSIDE RWEP, never replacing it.
+ *
+ * Polarity is the INVERSE of RWEP: high PCS = trustworthy provenance/behaviour;
+ * low PCS = behaves like malware. RWEP answers "how urgently must I act on this
+ * known vulnerability"; PCS answers "how much do I trust this package's
+ * provenance/behaviour, independent of any CVE." The two are different axes and
+ * must never be summed or compared numerically (the `package_confidence.polarity:
+ * "trust"` const on catalog entries exists to assert direction before display).
+ *
+ * CRITICAL: this function is NEVER called inside validate() / scoreCustom() /
+ * deriveRwepFromFactors(). PCS lives OUTSIDE the RWEP factor key set so the
+ * RWEP sum invariant + >5 divergence gate cannot see it — adding it is purely
+ * additive and cannot perturb any stored rwep_score.
+ *
+ * Equal-weight mean of the PRESENT sub-signals (maintainer / quality /
+ * behavioral / provenance), each 0-100, clamped to [0,100]. Absent sub-signals
+ * are skipped (not treated as 0) so a partially-curated entry isn't punished
+ * for un-assessed dimensions. Returns null when no usable input is present.
+ */
+function packageConfidence(inputs) {
+  if (!inputs || typeof inputs !== 'object') return null;
+  const dims = ['maintainer', 'quality', 'behavioral', 'provenance'];
+  const present = dims
+    .map((d) => inputs[d])
+    .filter((v) => typeof v === 'number' && Number.isFinite(v));
+  if (!present.length) return null;
+  const mean = present.reduce((a, b) => a + b, 0) / present.length;
+  return Math.max(0, Math.min(100, Math.round(mean)));
+}
 module.exports = {
   score,
   scoreCustom,
   timeline,
   compare,
+  packageConfidence,
   validate,
   validateFactors,
   deriveRwepFromFactors,

package/manifest.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "exceptd-security",
-  "version": "0.15.52",
+  "version": "0.15.53",
   "description": "AI security skills grounded in mid-2026 threat reality, not stale framework documentation",
   "homepage": "https://exceptd.com",
   "license": "Apache-2.0",
@@ -53,7 +53,7 @@
       ],
       "last_threat_review": "2026-05-15",
       "signature": "0H+JfyUVmo/pVFEi5rLENATHjlukPVUqnOWmNPEH77wm8svKGK0aNJ46k6QU5GdHb8c9X9pVJKiuhON6AxDjDw==",
-      "signed_at": "2026-05-31T03:55:39.537Z",
+      "signed_at": "2026-05-31T04:48:21.114Z",
       "cwe_refs": [
         "CWE-125",
         "CWE-362",
@@ -123,7 +123,7 @@
       ],
       "last_threat_review": "2026-05-17",
       "signature": "PHwHEsoy7ctBYOtlAfAdCDVfsq2Bpk9+qESSF+5dVkDcez2zp2v9Ihsv2vqMEs3QxMndyQ+t7NVezyt5VamSCg==",
-      "signed_at": "2026-05-31T03:55:39.539Z",
+      "signed_at": "2026-05-31T04:48:21.116Z",
       "cwe_refs": [
         "CWE-1039",
         "CWE-1426",
@@ -196,7 +196,7 @@
       ],
       "last_threat_review": "2026-05-17",
       "signature": "dD4p7lcRtMyfITOncqLkpOeMy6x6gM0V7UlWHgLEdcxqODb1s75ar1cBtTqDWPbMv6ZAzVo2HJLDK1hVjjU2AQ==",
-      "signed_at": "2026-05-31T03:55:39.539Z",
+      "signed_at": "2026-05-31T04:48:21.116Z",
       "cwe_refs": [
         "CWE-22",
         "CWE-345",
@@ -248,7 +248,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-22",
       "signature": "wsw8Mlr/gyw6S7Iaao9BVHdU5LFPWl8WVymW17Lkq9J1Mui0+fCrTg6UbrsaeE3s7EW3TVgzBuK+8EFd1+H5AA==",
-      "signed_at": "2026-05-31T03:55:39.539Z"
+      "signed_at": "2026-05-31T04:48:21.117Z"
     },
     {
       "name": "compliance-theater",
@@ -279,7 +279,7 @@
       ],
       "last_threat_review": "2026-05-22",
       "signature": "uVTc1QRKOKcIVDajBz+q2egjiEAyOQaDNsvVI2ghj5FD0VvquoUBBE5Naca2FkaZa790EHWCsVZ4hhdaSQs2DQ==",
-      "signed_at": "2026-05-31T03:55:39.540Z"
+      "signed_at": "2026-05-31T04:48:21.117Z"
     },
     {
       "name": "exploit-scoring",
@@ -308,7 +308,7 @@
       ],
       "last_threat_review": "2026-05-18",
       "signature": "QuNpwnZ6HkCEAXTPC/jLbXSmMIc1JnBczqZAAIZmZj8OcEMVnw9mJYAnU3CxaEI7rvbcMkN2uS5E8yUCm/NiAg==",
-      "signed_at": "2026-05-31T03:55:39.541Z"
+      "signed_at": "2026-05-31T04:48:21.118Z"
     },
     {
       "name": "rag-pipeline-security",
@@ -345,7 +345,7 @@
       ],
       "last_threat_review": "2026-05-22",
       "signature": "5rw2i39SxY2WphBbDLEP28wufnbPPE9+PWt54hmaGdwHXr9RLiVt5liL/5xp14sehlVgFsfpR/bg9vy//xV0DA==",
-      "signed_at": "2026-05-31T03:55:39.541Z",
+      "signed_at": "2026-05-31T04:48:21.118Z",
       "cwe_refs": [
         "CWE-1395",
         "CWE-1426"
@@ -405,7 +405,7 @@
       ],
       "last_threat_review": "2026-05-17",
       "signature": "Vqu49nzntFWjn9A/QeJzm7q/2xk/cZJ6HFQKtiNi1zgcxzXKm+MlFdkaLgYHWj5/9HJohxyIDyBJQTvcJ20eDQ==",
-      "signed_at": "2026-05-31T03:55:39.541Z",
+      "signed_at": "2026-05-31T04:48:21.118Z",
       "d3fend_refs": [
         "D3-CA",
         "D3-CSPP",
@@ -440,7 +440,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-22",
       "signature": "W87VdyVdAxAdcRI6P/8StaV+MS8ZSPKM9HOCK9n/bBO6BM3ZSE3uImVoyJVpAXQlUpUGN+A3lCJZXv64LuxwDg==",
-      "signed_at": "2026-05-31T03:55:39.542Z",
+      "signed_at": "2026-05-31T04:48:21.119Z",
       "cwe_refs": [
         "CWE-1188"
       ],
@@ -474,7 +474,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-18",
       "signature": "wdVX+edeNekpaIldqkhvtraV6DquLvIsKAjuZVwPQYn3l1vS99HXuFxmNsD7UeMlO3qgC6Dysfsto9EnuH0RBg==",
-      "signed_at": "2026-05-31T03:55:39.542Z",
+      "signed_at": "2026-05-31T04:48:21.119Z",
       "forward_watch": [
         "New AI attack classes as ATLAS v6 publishes",
         "Post-quantum adversary capability timeline",
@@ -513,7 +513,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-01",
       "signature": "b5miTiY0cnxETd2btxorfZBdJKt/fLnQx20sGYUb9zEqGqtm0LMLpghkW68j4/9k48KNyuGMtNWiKTSnodUGBw==",
-      "signed_at": "2026-05-31T03:55:39.542Z"
+      "signed_at": "2026-05-31T04:48:21.119Z"
     },
     {
       "name": "zeroday-gap-learn",
@@ -540,7 +540,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-18",
       "signature": "xbkip0AQtWQKAu+O6r/gYECNjezS6O9k9xkkJsYbMlr+j8CdqH3p5/0l+GZmDidImRC/DL07GCnKrk9HRR/yDQ==",
-      "signed_at": "2026-05-31T03:55:39.543Z",
+      "signed_at": "2026-05-31T04:48:21.120Z",
       "forward_watch": [
         "New CISA KEV entries",
         "New ATLAS TTP additions in each ATLAS release",
@@ -604,7 +604,7 @@
       ],
       "last_threat_review": "2026-05-22",
       "signature": "li2NnC1oeVIr22ComP5QbcQoh5xpWITuaKpza1s2SsUkH6kGnnt4wFfFAzaC1ORmH9x2cr8hN8kaNANG/eIMBQ==",
-      "signed_at": "2026-05-31T03:55:39.543Z",
+      "signed_at": "2026-05-31T04:48:21.120Z",
       "cwe_refs": [
         "CWE-327"
       ],
@@ -652,7 +652,7 @@
       ],
       "last_threat_review": "2026-05-22",
       "signature": "sZHlJ7ueHPdtzVbR+yXQ5+wKgNyjWsa1LKVg9aWTmg/Onl71DvEILMyJiLpPQjseT56Mnr1DMYJE8xOGlffBAw==",
-      "signed_at": "2026-05-31T03:55:39.543Z"
+      "signed_at": "2026-05-31T04:48:21.121Z"
     },
     {
       "name": "security-maturity-tiers",
@@ -689,7 +689,7 @@
       ],
       "last_threat_review": "2026-05-01",
       "signature": "3AwFnEJu6DukPPNep/3SnuPWEuV060fJEQIwThFm7ujmdbFk0/Ii0XwGv1dkvbbK7ymMdOQpp35l4aLONAucDA==",
-      "signed_at": "2026-05-31T03:55:39.544Z",
+      "signed_at": "2026-05-31T04:48:21.121Z",
       "cwe_refs": [
         "CWE-1188"
       ]
@@ -724,7 +724,7 @@
       "framework_gaps": [],
       "last_threat_review": "2026-05-11",
       "signature": "iJWevUBurLvt2v8X+Ch2eHmZkPWpKeAtIpxTIP4MwbUHyco3igDeBywJCyaR2vURYRx8LkzzIMM8DxQM4LAXBQ==",
-      "signed_at": "2026-05-31T03:55:39.544Z"
+      "signed_at": "2026-05-31T04:48:21.121Z"
     },
     {
       "name": "attack-surface-pentest",
@@ -796,7 +796,7 @@
         "Pwn2Own Berlin 2026 (disclosed 2026-05-14, embargo ends 2026-08-12) — Microsoft Edge 4-bug sandbox escape by Orange Tsai (DEVCORE); forward-watch only (browser sandbox, out of current playbook scope); track Microsoft Edge security advisory and KEV add"
       ],
       "signature": "DDMzI+4En4aIkwBUCGW6nj1eEkCyLqHGn2LJ2rnwWfYatjPI1U5HrTZNAN/n9JqWtAzk8F3rmsKehaaz5iNWDA==",
-      "signed_at": "2026-05-31T03:55:39.544Z"
+      "signed_at": "2026-05-31T04:48:21.121Z"
     },
     {
       "name": "fuzz-testing-strategy",
@@ -856,7 +856,7 @@
         "OSS-Fuzz-Gen / AI-assisted harness generation becoming the default expectation for OSS maintainers"
       ],
       "signature": "dJB0iAstIUbyny+udl3OIkaLScEmqS97LNP73yQ8mxt+0bcqxZjpfXaWLzLuIQblGYvUvz75/H6rO2EJuGd4AQ==",
-      "signed_at": "2026-05-31T03:55:39.545Z"
+      "signed_at": "2026-05-31T04:48:21.122Z"
     },
     {
       "name": "dlp-gap-analysis",
@@ -931,7 +931,7 @@
         "Quebec Law 25, India DPDPA, KSA PDPL enforcement actions naming AI-tool prompt data as in-scope personal information"
       ],
       "signature": "KEAoMji3VcPX/ZXXqVe6OStxSkTssfY9fIRPyPcDYqh50GzOFQ6koNOTBVAiWOvjDjQ38g12xun5srbqgmvRAw==",
-      "signed_at": "2026-05-31T03:55:39.545Z"
+      "signed_at": "2026-05-31T04:48:21.122Z"
     },
     {
       "name": "supply-chain-integrity",
@@ -1010,7 +1010,7 @@
         "Pwn2Own Berlin 2026 (disclosed 2026-05-14, embargo ends 2026-08-12) — NVIDIA Megatron Bridge path traversal by haehae; AI training-stack file-system trust boundary; track patch and SBOM-attestation impact"
       ],
       "signature": "zuW8T0EMbVV83GsUP/W20Use2gBTicBW021T0sY7qsRY/U5qsPWkXYIWp3SdiKLTIKqTEd/0T7LQebjIs2QKCA==",
-      "signed_at": "2026-05-31T03:55:39.545Z"
+      "signed_at": "2026-05-31T04:48:21.123Z"
     },
     {
       "name": "defensive-countermeasure-mapping",
@@ -1067,7 +1067,7 @@
       ],
       "last_threat_review": "2026-05-11",
       "signature": "Qe0Hg9BrX3Zm5pj0n2z/oiHbAXWdA2Dq461zc4izkkUjEX2CZ02rODjCI2ELbrVOU3GC7edxqAxA+5U/ObnHDQ==",
-      "signed_at": "2026-05-31T03:55:39.546Z"
+      "signed_at": "2026-05-31T04:48:21.123Z"
     },
     {
       "name": "identity-assurance",
@@ -1134,7 +1134,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "UV3458QXSkEpenzrOmdlTTfPHUD4hNyKMDHoeZDq/kiFb4mAG0ghQGTTgI9Ru8cJbSmYM1++m9N5TFIJ6JJPBg==",
-      "signed_at": "2026-05-31T03:55:39.546Z"
+      "signed_at": "2026-05-31T04:48:21.123Z"
     },
     {
       "name": "ot-ics-security",
@@ -1190,7 +1190,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "kIVzsPsJ72PzzWQwTuvjoHHoVEDCday5I52M9ohjB3/Ak+zlA8oyWLO/BKb/XuYY4fOApjfxTErSWv5uHQ2zDw==",
-      "signed_at": "2026-05-31T03:55:39.546Z"
+      "signed_at": "2026-05-31T04:48:21.123Z"
     },
     {
       "name": "coordinated-vuln-disclosure",
@@ -1242,7 +1242,7 @@
         "NYDFS 23 NYCRR 500 amendments potentially adding explicit CVD program requirements"
       ],
       "signature": "bWr27Q1uN9xCe1ib4QulszBa7YIDNkGqo72k5nm2cK98LyPblicD+sO9MnGckAyB22BTN/cIB+FwFMcI5IxvBw==",
-      "signed_at": "2026-05-31T03:55:39.547Z"
+      "signed_at": "2026-05-31T04:48:21.124Z"
     },
     {
       "name": "threat-modeling-methodology",
@@ -1292,7 +1292,7 @@
         "PASTA v2 updates incorporating AI/ML application threats"
       ],
       "signature": "Q854yzLqXdOazc6EyQbZzgAlivuq2vGFDVUCrxSldSvx/HX/ZM/uzmJyP7aBG7ZsMHxj6Lmj/H82YQoo1e+NCQ==",
-      "signed_at": "2026-05-31T03:55:39.547Z"
+      "signed_at": "2026-05-31T04:48:21.124Z"
     },
     {
       "name": "webapp-security",
@@ -1366,7 +1366,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "4ccahkJpGJZtwD7EBpnGcN0sEGPMEw8eqV+tvePVS04YAkLgYVWtlkasI/8n0be9xB+77x+Sjj3kIi2j2Lf9CA==",
-      "signed_at": "2026-05-31T03:55:39.547Z",
+      "signed_at": "2026-05-31T04:48:21.124Z",
       "forward_watch": [
         "NGINX Rift CVE-2026-42945 (disclosed 2026-05-13, source depthfirst) — KEV-watch predicted CISA KEV listing by 2026-05-29; AI-assisted discovery angle; track for active-exploitation confirmation and patch advisory affecting front-door web app deployments"
       ]
@@ -1419,7 +1419,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-15",
       "signature": "SBB7c3wNYfIdkyOp4g4nW0WP7xS+YokMzg32aaeJdbf14LTGQRzQUvSqb2TCj2HFUSHESOyKT1JpkAfyHLSQBQ==",
-      "signed_at": "2026-05-31T03:55:39.548Z"
+      "signed_at": "2026-05-31T04:48:21.125Z"
     },
     {
       "name": "sector-healthcare",
@@ -1479,7 +1479,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-11",
       "signature": "U04GNLyRas1VmfEsB8khH4iqFZPwx96sPY0Kw9iVsSPU+KTeEFqwgtWK1X1pzgb+T16Pc7HSrCaXDOpTFvQEDw==",
-      "signed_at": "2026-05-31T03:55:39.548Z"
+      "signed_at": "2026-05-31T04:48:21.125Z"
     },
     {
       "name": "sector-financial",
@@ -1560,7 +1560,7 @@
         "TIBER-EU framework v2.0 alignment with DORA TLPT RTS (JC 2024/40); cross-recognition with CBEST and iCAST"
       ],
       "signature": "xbylLqNPBuEsFE/MNVeGy/01K6yiJXMxQbzC1F4RWU5aseDGbNy5HrAv2JWI2+Aft05ozreNPjccvu66yJ5EBw==",
-      "signed_at": "2026-05-31T03:55:39.549Z"
+      "signed_at": "2026-05-31T04:48:21.126Z"
     },
     {
       "name": "sector-federal-government",
@@ -1629,7 +1629,7 @@
         "Australia PSPF 2024 revision and ISM quarterly updates — track for Essential Eight Maturity Level requirements for federal entities"
       ],
       "signature": "C9c3JuBhUbwcb7uZpDdy+PNT8sYmYIxzD4uRHu421ePW1aSFJ8fkMvuTzSO8vD/F/jOOg5opM4kov/xSAn+qCg==",
-      "signed_at": "2026-05-31T03:55:39.549Z"
+      "signed_at": "2026-05-31T04:48:21.126Z"
     },
     {
       "name": "sector-energy",
@@ -1694,7 +1694,7 @@
         "ICS-CERT advisory feed (https://www.cisa.gov/news-events/cybersecurity-advisories/ics-advisories) for vendor CVEs in Siemens, Rockwell, Schneider Electric, ABB, GE Vernova, Hitachi Energy, AVEVA / OSIsoft PI"
       ],
       "signature": "oz8Q5WVaY8au4IjbaZahx/DSaC00Q44ylSL3mDkTerCEpW/EyPUeiLeGxSrWxBCwVFEKSSJvnhJjhvX5lDPcCg==",
-      "signed_at": "2026-05-31T03:55:39.549Z"
+      "signed_at": "2026-05-31T04:48:21.126Z"
     },
     {
       "name": "sector-telecom",
@@ -1780,7 +1780,7 @@
         "O-RAN SFG / WG11 security specifications"
       ],
       "signature": "NAtyzfLPXlUuB78Snb9nWmbZalC1CNlIYN9rYhdEmtB/xQGC6vVnThgrEAHlm7v/jMCFuknvEpUHKdscUnUADw==",
-      "signed_at": "2026-05-31T03:55:39.550Z"
+      "signed_at": "2026-05-31T04:48:21.127Z"
     },
     {
       "name": "api-security",
@@ -1849,7 +1849,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-18",
       "signature": "1UTjZNC5Lyrgw93LAizdXVeSmv3jS8YQNT1db5OKsldub50+o1FXmAH4+3MxZozaOGDCX3yXbdDJSJaaSmfuAA==",
-      "signed_at": "2026-05-31T03:55:39.550Z",
+      "signed_at": "2026-05-31T04:48:21.127Z",
       "forward_watch": [
         "NGINX Rift CVE-2026-42945 (disclosed 2026-05-13, source depthfirst) — KEV-watch predicted CISA KEV listing by 2026-05-29; track for active-exploitation confirmation and patch advisory affecting API gateway / reverse-proxy deployments",
         "Pwn2Own Berlin 2026 (disclosed 2026-05-14, embargo ends 2026-08-12) — LiteLLM 3-bug SSRF + Code Injection chain by k3vg3n; LLM-proxy API surface; track upstream patch and CVE assignments",
@@ -1935,7 +1935,7 @@
         "CISA KEV additions for cloud-control-plane CVEs (IMDSv1 abuses, federation token mishandling, cross-tenant boundary failures); CISA Cybersecurity Advisories for cross-cloud advisories"
       ],
       "signature": "EdsY4xe7YA8X8m+KZUbq49JwoCXgRKEz2eg3m86O37rvBmpm8ppvl9hrsekygvpBh2VmCHL2dEYiOD8OM2n7CA==",
-      "signed_at": "2026-05-31T03:55:39.550Z"
+      "signed_at": "2026-05-31T04:48:21.127Z"
     },
     {
       "name": "container-runtime-security",
@@ -1997,7 +1997,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-15",
       "signature": "fnLKPLkjjRCJ/F9wdmZ1w1lXmqEJvTYkv6Uu+9OTd5vZTWKz3QMuxKOsas+ctCdOvTaeloqPUUprXx+ZZdDpCg==",
-      "signed_at": "2026-05-31T03:55:39.551Z",
+      "signed_at": "2026-05-31T04:48:21.128Z",
       "forward_watch": [
         "Pwn2Own Berlin 2026 (disclosed 2026-05-14, embargo ends 2026-08-12) — NVIDIA Container Toolkit container escape ($50K award) by chompie / IBM X-Force XOR; high-severity container/hypervisor boundary break; track patch and KEV add post-embargo"
       ]
@@ -2071,7 +2071,7 @@
         "MITRE ATLAS v5.6.0 (released May 2026) shipped the AML.T0010 sub-technique expansion this forecast tracked plus new techniques (\"Publish Poisoned AI Agent Tool\", \"Escape to Host\"); inventory now 16 tactics, 84 techniques, 56 sub-techniques. Forward watch: subsequent ATLAS minor and major releases — track next-cadence updates to agentic-AI TTPs and MLOps-pipeline-specific techniques"
       ],
       "signature": "t3dkdpTX04zvjitEeOJThpgjurLd1UO9GOut4LXSZgY3ULhfknI4zT7G5+m2RSZZTo7yyeZrwpg+7vEg9K6mAw==",
-      "signed_at": "2026-05-31T03:55:39.551Z"
+      "signed_at": "2026-05-31T04:48:21.128Z"
     },
     {
       "name": "incident-response-playbook",
@@ -2133,7 +2133,7 @@
         "NYDFS 23 NYCRR 500.17 amendments tightening ransom-payment 24h disclosure operationalization"
       ],
       "signature": "+1kmtA6rAvIyDjjy+cJHK6BcfylyVsa5cUjRFijlFR9GsQfB93JnmkEJOqML50pdlcxtJI3yUodHpL3/YJGtCA==",
-      "signed_at": "2026-05-31T03:55:39.551Z"
+      "signed_at": "2026-05-31T04:48:21.129Z"
     },
     {
       "name": "ransomware-response",
@@ -2213,7 +2213,7 @@
       ],
       "last_threat_review": "2026-05-22",
       "signature": "h48ASCz63aBfHzLKxMVDADMuT4atriK0iE6bJeVzZTsx/e8+hyv4fLP7+zYxT9Oe0Gss3v/Xy+t+Wd9uwzV+Aw==",
-      "signed_at": "2026-05-31T03:55:39.552Z"
+      "signed_at": "2026-05-31T04:48:21.129Z"
     },
     {
       "name": "email-security-anti-phishing",
@@ -2266,7 +2266,7 @@
       "d3fend_refs": [],
       "last_threat_review": "2026-05-18",
       "signature": "FVBn4ex2qPIo9SHMVJ6tntoz4tVwjbIq3m6wDjjZyv2JODlS+90GBYCOkNamxxkmw/6de6SMs0YHQiF/xjo/DQ==",
-      "signed_at": "2026-05-31T03:55:39.552Z"
+      "signed_at": "2026-05-31T04:48:21.129Z"
     },
     {
       "name": "age-gates-child-safety",
@@ -2334,7 +2334,7 @@
         "US state adult-site age-verification laws — 19+ states by mid-2026 (TX HB 18 upheld by SCOTUS June 2025 in Free Speech Coalition v. Paxton); track ongoing challenges in remaining states"
       ],
       "signature": "ZHVdGWCcfG98tSVB0b9mwrsYwv71V3uUEl+6ss7omSQhmNvqV5s6MAZM5YladBt9MK/8T/zBrTYN4gAonOP+BQ==",
-      "signed_at": "2026-05-31T03:55:39.553Z"
+      "signed_at": "2026-05-31T04:48:21.130Z"
     },
     {
       "name": "cloud-iam-incident",
@@ -2414,7 +2414,7 @@
       ],
       "last_threat_review": "2026-05-15",
       "signature": "r9ii4nb3HJELdtKCGF5qy9PHOiot3GC24yfxfGAKlLENHkdRvRkvvL99eV/6RXyfUaMyrnc2Te8tPQcNu5bsDg==",
-      "signed_at": "2026-05-31T03:55:39.553Z",
+      "signed_at": "2026-05-31T04:48:21.130Z",
       "forward_watch": [
         "AWS IAM Identity Center session-policy refresh and step-up-on-admin enforcement (anticipated 2026-H2 release)",
         "GCP Workload Identity Federation principal-set attribute mapping tightening (post-2026 Q3 Federation hardening guide)",
@@ -2508,7 +2508,7 @@
       ],
       "last_threat_review": "2026-05-15",
       "signature": "9mfDtMApMAg9V/lmwpniNxo/6gNZoOEoYDfyFvyWvKrPMtc7H9F8uz06FVoARe/J49saAKTVXOurNE1D/KtpCQ==",
-      "signed_at": "2026-05-31T03:55:39.553Z",
+      "signed_at": "2026-05-31T04:48:21.130Z",
       "forward_watch": [
         "Entra ID conditional access evolution post-Midnight Blizzard — Microsoft's 2025-2026 commitments on legacy-tenant MFA enforcement and OAuth-app consent gating",
         "Okta IPSIE (Interoperability Profile for Secure Identity in the Enterprise) OpenID Foundation working-group output and adoption timeline",
@@ -2526,6 +2526,6 @@
   ],
   "manifest_signature": {
     "algorithm": "Ed25519",
-    "signature_base64": "QhxlOl0wE0iDAOFceWx3srt8+wJQXv///CcqkbNxd/1sosR8aW9nVGfr1Ry9PlVibVFmpFareUeFy3S78rI9Dw=="
+    "signature_base64": "Adyk095vyeY0icGDAti1GLURbVDE5HhVHyMtgeQ8WwncoOKIrngDjqi/VU9junhfoQtMCktYjJFE56yoi2DTCw=="
   }
 }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@blamejs/exceptd-skills",
-  "version": "0.15.52",
+  "version": "0.15.53",
   "description": "AI security skills grounded in mid-2026 threat reality, not stale framework documentation. 42 skills, 11 catalogs (427 CVEs / 173 CWEs / 805 ATT&CK + ICS / 170 ATLAS / 468 D3FEND / 8888 RFCs), 35 jurisdictions, 10-class catalog gap detector + budget gate, real XML parser + canonical-form diff + content-pattern regression detection, Ed25519-signed.",
   "keywords": [
     "ai-security",

package/sbom.cdx.json CHANGED Viewed

@@ -1,22 +1,22 @@
 {
   "bomFormat": "CycloneDX",
   "specVersion": "1.6",
-  "serialNumber": "urn:uuid:7ed2b616-e18e-40a0-bf4e-b08af006675e",
+  "serialNumber": "urn:uuid:347093c0-9155-471a-9a22-58cb926555f2",
   "version": 1,
   "metadata": {
-    "timestamp": "2093-06-04T14:26:30.000Z",
+    "timestamp": "2053-11-17T18:58:08.000Z",
     "tools": [
       {
         "vendor": "blamejs",
         "name": "scripts/refresh-sbom.js",
-        "version": "0.15.52"
+        "version": "0.15.53"
       }
     ],
     "component": {
-      "bom-ref": "pkg:npm/@blamejs/exceptd-skills@0.15.52",
+      "bom-ref": "pkg:npm/@blamejs/exceptd-skills@0.15.53",
       "type": "application",
       "name": "@blamejs/exceptd-skills",
-      "version": "0.15.52",
+      "version": "0.15.53",
       "description": "AI security skills grounded in mid-2026 threat reality, not stale framework documentation. 42 skills, 11 catalogs (427 CVEs / 173 CWEs / 805 ATT&CK + ICS / 170 ATLAS / 468 D3FEND / 8888 RFCs), 35 jurisdictions, 10-class catalog gap detector + budget gate, real XML parser + canonical-form diff + content-pattern regression detection, Ed25519-signed.",
       "licenses": [
         {
@@ -25,17 +25,17 @@
           }
         }
       ],
-      "purl": "pkg:npm/%40blamejs/exceptd-skills@0.15.52",
+      "purl": "pkg:npm/%40blamejs/exceptd-skills@0.15.53",
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "926aefd5a4e9417e02388bf3fba187507cb15c4d562d1b73383978b440923626"
+          "content": "5fde4e0c2d0ef764c883ff21dbe1f4c5dbc9e74c675e59c15a6941a7e6d68c70"
         }
       ],
       "externalReferences": [
         {
           "type": "distribution",
-          "url": "https://www.npmjs.com/package/@blamejs/exceptd-skills/v/0.15.52"
+          "url": "https://www.npmjs.com/package/@blamejs/exceptd-skills/v/0.15.53"
         },
         {
           "type": "vcs",
@@ -116,11 +116,11 @@
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "efc1b8a8b88115b6f3c39a68fd41633df8bc7992f72ec4683e3c1760323df012"
+          "content": "3f31b297747c16270e24932a2d762bc06655b2d4d7bc2a5c9943e7eccf2a6839"
         },
         {
           "alg": "SHA3-512",
-          "content": "8191b5774e3f765a359738f31c9f1dae30e1fae21e9d65c6dd2abc4531823c08761b037bb808ab6cd57815145b15057aeefef9a103e9222e19502315e13bcf7b"
+          "content": "6489d29205b4185795b070e341e3290de0368f0dafb096907c1a912ccb5576dfb096fa020cff503d24bf830a9f1c3170ca8897daebcef3542ee6af6b6fae86b4"
         }
       ]
     },
@@ -326,11 +326,11 @@
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "cb5e305b5488a2a02e177f10e913d22f602d6016109f152903093e9614e0b470"
+          "content": "1aac7e75eae24ece2ef09d1c63977bdd7a1f81a9f11609ebb966109be316426c"
         },
         {
           "alg": "SHA3-512",
-          "content": "a7abc804efd7dfd46056a857ee13e19b8d99cdd46db7390845f4036b1e4b97bce0e00ec3f677322716f6c74b071340561fdf8cfda9b2f5ff3b502353eaf4d135"
+          "content": "24df35aa1e38b1d24d29957e06da86e71cce646d6b21a1e5b326e752803cca5441a0d618a763f5648a10cbda50728d8fc28e94dcee3e54eab4a081ee3ebdb156"
         }
       ]
     },
@@ -881,11 +881,11 @@
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "da169b55e9a96d766f63f6b1b63785f98611a56a1cc78d619ec757ce4d5204f8"
+          "content": "27e0665cd005f7c5b3bee0de927c8b43d7193933b44d8ca0fe832a754f0fd6f7"
         },
         {
           "alg": "SHA3-512",
-          "content": "74c4f21e05eb245de61c810f7094fb877601b6137ab8dc984f2e64feac4c8fb4d05cd871988b105f8894f356e87f6fc3e09ebf0733d8000f6e7c52f6b84ad1dd"
+          "content": "c2a42a955e05a9bde003eaddba6c49fea138c215ca0ad9b0876949743fcbfe3f4753fe063a19339729a289a751bc8572f2e59d007f770ca8d1ab5e66841971e3"
         }
       ]
     },
@@ -1391,11 +1391,11 @@
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "8ed8c965f9f1725313333abbc032b0d85a03653cc979781948cc770b88c11659"
+          "content": "b7ace475bc015e13890ed08de28a94195f7672ea7c0dbc08ca2dc62bda78d291"
         },
         {
           "alg": "SHA3-512",
-          "content": "91b4583a35b86beecc84f6c217b5b3bc5a432f4b6c56667c9d83aad774b44fedc00d42186394084828abe7978f1bc645dc213a8aeccfe714f5b6dcdb3273b1fa"
+          "content": "216e86bd9b695771287f29797d07cbef1f7cff4bdffa30749c351ec654e62888c7857a29c48b2fe09809c610f3522219712a322437d92c00bf8b6e8954431c74"
         }
       ]
     },
@@ -1451,11 +1451,11 @@
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "2f782451d36dc9c6022a49b0eca1ef038304af4aa3fa1f1dced71ebe5bbe1e2e"
+          "content": "ed49d69da4ef5acb4fd827deaaaf280bd6317a5defa96f6fa5696dc96c2929b4"
         },
         {
           "alg": "SHA3-512",
-          "content": "b1c7b066701bcdc650dc09509822ab0d4f9842b562b85d03f3e24c641f1a15fd55a42d09f51b3b056f0c093090ee322298c9f8c322baa434b5742b868d14e564"
+          "content": "cee40245e9bb979c399942241faf038e95adb38ad66b6f3e70ba6034b78f774241310369773bd9ab36ceb0af1fe92e8f8b7e9b9965b3f629ab2847152f892530"
         }
       ]
     },
@@ -1751,11 +1751,11 @@
       "hashes": [
         {
           "alg": "SHA-256",
-          "content": "e5f2d2a803f6972ef1759593ddbec1e3badc297b8f83e667fedeaf4b68fd9819"
+          "content": "4359446f2ab6bfb0484b716ca15b81755ca4075d941b0c8caa5d2d4ad1c4f0a7"
         },
         {
           "alg": "SHA3-512",
-          "content": "3388f49da3b6e08d553623d467dc0114c41c3ff39cc780751867908fcc0ba503f8236f1e740700befc5b862e471196a20ebe9590c2200c81e62db12bebe63dfd"
+          "content": "26d55c25bbbc0e76e1592fd5633b87858c6cf3ba281e0d6b19ce17761af9468992564c0f040110e541a63492f384e3c982c3afd5f4a05596a08f03e9c93ca2fa"
         }
       ]
     },