@blamejs/exceptd-skills 0.16.11 → 0.16.13

package/data/_indexes/currency.json

@@ -6,7 +6,7 @@
     "decay_formula": "100 base; -30/-20/-10/-5 at 180/90/60/30-day thresholds. forward_watch count does NOT affect the score (it's a maintenance signal, not a staleness one). Label thresholds: ≥90 current, ≥70 acceptable, ≥50 stale, <50 critical_stale."
   },
   "summary": {
-    "current": 43,
+    "current": 45,
     "acceptable": 0,
     "stale": 0,
     "critical_stale": 0,
@@ -211,6 +211,15 @@
       "forward_watch_count": 4,
       "action_required": false
     },
+    {
+      "skill": "mail-server-hardening",
+      "last_threat_review": "2026-06-02",
+      "days_since_review": -18,
+      "currency_score": 100,
+      "currency_label": "current",
+      "forward_watch_count": 0,
+      "action_required": false
+    },
     {
       "skill": "mcp-agent-trust",
       "last_threat_review": "2026-05-17",
@@ -229,6 +238,15 @@
       "forward_watch_count": 6,
       "action_required": false
     },
+    {
+      "skill": "network-trust",
+      "last_threat_review": "2026-06-02",
+      "days_since_review": -18,
+      "currency_score": 100,
+      "currency_label": "current",
+      "forward_watch_count": 0,
+      "action_required": false
+    },
     {
       "skill": "ot-ics-security",
       "last_threat_review": "2026-05-11",

package/data/_indexes/frequency.json

@@ -78,19 +78,21 @@
         ]
       },
       "CWE-22": {
-        "count": 4,
+        "count": 5,
         "skills": [
           "api-security",
           "attack-surface-pentest",
+          "mail-server-hardening",
           "mcp-agent-trust",
           "webapp-security"
         ]
       },
       "CWE-345": {
-        "count": 2,
+        "count": 3,
         "skills": [
           "idp-incident-response",
-          "mcp-agent-trust"
+          "mcp-agent-trust",
+          "network-trust"
         ]
       },
       "CWE-352": {
@@ -119,19 +121,21 @@
         ]
       },
       "CWE-77": {
-        "count": 3,
+        "count": 4,
         "skills": [
           "api-security",
+          "mail-server-hardening",
           "mcp-agent-trust",
           "webapp-security"
         ]
       },
       "CWE-918": {
-        "count": 5,
+        "count": 6,
         "skills": [
           "api-security",
           "attack-surface-pentest",
           "mcp-agent-trust",
+          "network-trust",
           "sector-telecom",
           "webapp-security"
         ]
@@ -302,12 +306,13 @@
         ]
       },
       "CWE-863": {
-        "count": 7,
+        "count": 8,
         "skills": [
           "api-security",
           "cloud-iam-incident",
           "identity-assurance",
           "idp-incident-response",
+          "mail-server-hardening",
           "sector-financial",
           "vc-wallet-trust",
           "webapp-security"
@@ -334,16 +339,36 @@
         ]
       },
       "CWE-347": {
-        "count": 1,
+        "count": 2,
         "skills": [
+          "network-trust",
           "vc-wallet-trust"
         ]
       },
       "CWE-290": {
-        "count": 1,
+        "count": 2,
         "skills": [
+          "network-trust",
           "vc-wallet-trust"
         ]
+      },
+      "CWE-93": {
+        "count": 1,
+        "skills": [
+          "mail-server-hardening"
+        ]
+      },
+      "CWE-611": {
+        "count": 1,
+        "skills": [
+          "mail-server-hardening"
+        ]
+      },
+      "CWE-400": {
+        "count": 1,
+        "skills": [
+          "mail-server-hardening"
+        ]
       }
     },
     "d3fend_refs": {
@@ -529,22 +554,25 @@
     },
     "framework_gaps": {
       "NIST-800-53-SI-2": {
-        "count": 1,
+        "count": 2,
         "skills": [
-          "kernel-lpe-triage"
+          "kernel-lpe-triage",
+          "mail-server-hardening"
         ]
       },
       "ISO-27001-2022-A.8.8": {
-        "count": 2,
+        "count": 3,
         "skills": [
           "coordinated-vuln-disclosure",
-          "kernel-lpe-triage"
+          "kernel-lpe-triage",
+          "mail-server-hardening"
         ]
       },
       "PCI-DSS-4.0-6.3.3": {
-        "count": 1,
+        "count": 2,
         "skills": [
-          "kernel-lpe-triage"
+          "kernel-lpe-triage",
+          "mail-server-hardening"
         ]
       },
       "NIS2-Art21-patch-management": {
@@ -557,9 +585,10 @@
         ]
       },
       "NIST-800-53-SC-8": {
-        "count": 2,
+        "count": 3,
         "skills": [
           "kernel-lpe-triage",
+          "network-trust",
           "pqc-first"
         ]
       },
@@ -1094,6 +1123,25 @@
         "skills": [
           "vc-wallet-trust"
         ]
+      },
+      "NIS2-Art21-network-security": {
+        "count": 2,
+        "skills": [
+          "mail-server-hardening",
+          "network-trust"
+        ]
+      },
+      "ISO-27001-2022-A.8.21": {
+        "count": 1,
+        "skills": [
+          "network-trust"
+        ]
+      },
+      "UK-CAF-B4": {
+        "count": 1,
+        "skills": [
+          "network-trust"
+        ]
       }
     },
     "atlas_refs": {
@@ -1232,7 +1280,7 @@
         ]
       },
       "T1190": {
-        "count": 13,
+        "count": 14,
         "skills": [
           "ai-attack-surface",
           "api-security",
@@ -1240,6 +1288,7 @@
           "cloud-security",
           "container-runtime-security",
           "fuzz-testing-strategy",
+          "mail-server-hardening",
           "mcp-agent-trust",
           "ot-ics-security",
           "sector-energy",
@@ -1355,9 +1404,10 @@
         ]
       },
       "T1556": {
-        "count": 3,
+        "count": 4,
         "skills": [
           "identity-assurance",
+          "network-trust",
           "sector-telecom",
           "vc-wallet-trust"
         ]
@@ -1500,6 +1550,25 @@
         "skills": [
           "vc-wallet-trust"
         ]
+      },
+      "T1071.003": {
+        "count": 1,
+        "skills": [
+          "mail-server-hardening"
+        ]
+      },
+      "T1557": {
+        "count": 2,
+        "skills": [
+          "mail-server-hardening",
+          "network-trust"
+        ]
+      },
+      "T1071.004": {
+        "count": 1,
+        "skills": [
+          "network-trust"
+        ]
       }
     },
     "rfc_refs": {
@@ -1709,6 +1778,20 @@
           "webapp-security"
         ]
       },
+      {
+        "id": "CWE-863",
+        "count": 8,
+        "skills": [
+          "api-security",
+          "cloud-iam-incident",
+          "identity-assurance",
+          "idp-incident-response",
+          "mail-server-hardening",
+          "sector-financial",
+          "vc-wallet-trust",
+          "webapp-security"
+        ]
+      },
       {
         "id": "CWE-200",
         "count": 7,
@@ -1748,19 +1831,6 @@
           "webapp-security"
         ]
       },
-      {
-        "id": "CWE-863",
-        "count": 7,
-        "skills": [
-          "api-security",
-          "cloud-iam-incident",
-          "identity-assurance",
-          "idp-incident-response",
-          "sector-financial",
-          "vc-wallet-trust",
-          "webapp-security"
-        ]
-      },
       {
         "id": "CWE-1188",
         "count": 6,
@@ -2167,41 +2237,42 @@
     ],
     "attack_refs": [
       {
-        "id": "T1078",
-        "count": 13,
+        "id": "T1190",
+        "count": 14,
         "skills": [
-          "age-gates-child-safety",
+          "ai-attack-surface",
           "api-security",
           "attack-surface-pentest",
-          "cloud-iam-incident",
           "cloud-security",
-          "email-security-anti-phishing",
-          "identity-assurance",
-          "incident-response-playbook",
-          "ransomware-response",
+          "container-runtime-security",
+          "fuzz-testing-strategy",
+          "mail-server-hardening",
+          "mcp-agent-trust",
+          "ot-ics-security",
           "sector-energy",
+          "sector-federal-government",
           "sector-financial",
-          "sector-healthcare",
-          "sector-telecom"
+          "sector-telecom",
+          "webapp-security"
         ]
       },
       {
-        "id": "T1190",
+        "id": "T1078",
         "count": 13,
         "skills": [
-          "ai-attack-surface",
+          "age-gates-child-safety",
           "api-security",
           "attack-surface-pentest",
+          "cloud-iam-incident",
           "cloud-security",
-          "container-runtime-security",
-          "fuzz-testing-strategy",
-          "mcp-agent-trust",
-          "ot-ics-security",
+          "email-security-anti-phishing",
+          "identity-assurance",
+          "incident-response-playbook",
+          "ransomware-response",
           "sector-energy",
-          "sector-federal-government",
           "sector-financial",
-          "sector-telecom",
-          "webapp-security"
+          "sector-healthcare",
+          "sector-telecom"
         ]
       },
       {
@@ -2238,6 +2309,16 @@
           "supply-chain-integrity"
         ]
       },
+      {
+        "id": "T1556",
+        "count": 4,
+        "skills": [
+          "identity-assurance",
+          "network-trust",
+          "sector-telecom",
+          "vc-wallet-trust"
+        ]
+      },
       {
         "id": "T1068",
         "count": 3,
@@ -2265,15 +2346,6 @@
           "sector-healthcare"
         ]
       },
-      {
-        "id": "T1556",
-        "count": 3,
-        "skills": [
-          "identity-assurance",
-          "sector-telecom",
-          "vc-wallet-trust"
-        ]
-      },
       {
         "id": "T0855",
         "count": 2,
@@ -2405,9 +2477,10 @@
     "cwe_refs": [
       "CWE-20",
       "CWE-284",
-      "CWE-290",
       "CWE-327",
-      "CWE-347"
+      "CWE-400",
+      "CWE-611",
+      "CWE-93"
     ],
     "d3fend_refs": [
       "D3-CAA",
@@ -2433,6 +2506,7 @@
       "FCC-Cyber-Incident-Notification-2024",
       "FedRAMP-IL5-IAM-Federated",
       "GSMA-NESAS-Deployment",
+      "ISO-27001-2022-A.8.21",
       "ISO-27017-Cloud-IAM",
       "ITU-T-X.805",
       "Immutable-Backup-Recovery",
@@ -2440,13 +2514,11 @@
       "NIS2-Annex-I-Telecom",
       "NIST-800-53-AC-2-Cross-Account",
       "NIST-800-53-SI-12",
-      "NIST-800-53-SI-2",
       "OFAC-SDN-Payment-Block",
       "OFAC-Sanctions-Threat-Actor-Negotiation",
       "OWASP-LLM-Top-10-2025-LLM02",
       "OWASP-LLM-Top-10-2025-LLM06",
       "OWASP-Pen-Testing-Guide-v5",
-      "PCI-DSS-4.0-6.3.3",
       "PHI-Exfil-Before-Encrypt-Breach-Class",
       "PTES-Pre-engagement",
       "SOC2-CC6-Access-Key-Leak-Public-Repo",
@@ -2455,6 +2527,7 @@
       "UK-CAF-B2",
       "UK-CAF-B2-Cloud-IAM",
       "UK-CAF-B2-IdP-Tenant",
+      "UK-CAF-B4",
       "UK-CAF-B5",
       "VEX-CSAF-v2.1"
     ],
@@ -2462,6 +2535,8 @@
       "AML.T0040"
     ],
     "attack_refs": [
+      "T1071.003",
+      "T1071.004",
       "T1098",
       "T1102",
       "T1110",
@@ -2567,7 +2642,6 @@
       "CWE-384",
       "CWE-385",
       "CWE-399",
-      "CWE-400",
       "CWE-420",
       "CWE-426",
       "CWE-427",
@@ -2593,7 +2667,6 @@
       "CWE-566",
       "CWE-59",
       "CWE-601",
-      "CWE-611",
       "CWE-613",
       "CWE-614",
       "CWE-639",
@@ -2634,7 +2707,6 @@
       "CWE-917",
       "CWE-922",
       "CWE-924",
-      "CWE-93",
       "CWE-940",
       "CWE-941",
       "CWE-942",
@@ -3300,7 +3372,6 @@
       "ISO-27001-2022-A.7.10",
       "ISO-27001-2022-A.8.13",
       "ISO-27001-2022-A.8.15",
-      "ISO-27001-2022-A.8.21",
       "ISO-27001-2022-A.8.22",
       "ISO-27001-2022-A.8.24",
       "ISO-27001-2022-A.8.7",
@@ -3311,7 +3382,6 @@
       "NIS2-Art21-business-continuity",
       "NIS2-Art21-identity-management",
       "NIS2-Art21-incident-handling",
-      "NIS2-Art21-network-security",
       "NIS2-Art21-supply-chain",
       "NIS2-Art21-vulnerability-handling",
       "NIS2-Art21-vulnerability-management",
@@ -3363,7 +3433,6 @@
       "SLSA-3",
       "SLSA-v1.0-Source-L3",
       "UK-CAF-A1",
-      "UK-CAF-B4",
       "UK-CAF-C1",
       "UK-CAF-D1"
     ],

package/data/_indexes/handoff-dag.json

@@ -22,8 +22,10 @@
     "idp-incident-response",
     "incident-response-playbook",
     "kernel-lpe-triage",
+    "mail-server-hardening",
     "mcp-agent-trust",
     "mlops-security",
+    "network-trust",
     "ot-ics-security",
     "policy-exception-gen",
     "pqc-first",
@@ -515,7 +517,9 @@
       "sector-financial",
       "sector-telecom"
     ],
-    "vc-wallet-trust": []
+    "vc-wallet-trust": [],
+    "mail-server-hardening": [],
+    "network-trust": []
   },
   "in_degree": {
     "age-gates-child-safety": 1,
@@ -540,8 +544,10 @@
     "idp-incident-response": 2,
     "incident-response-playbook": 18,
     "kernel-lpe-triage": 12,
+    "mail-server-hardening": 0,
     "mcp-agent-trust": 22,
     "mlops-security": 6,
+    "network-trust": 0,
     "ot-ics-security": 4,
     "policy-exception-gen": 16,
     "pqc-first": 6,
@@ -585,8 +591,10 @@
     "idp-incident-response": 12,
     "incident-response-playbook": 20,
     "kernel-lpe-triage": 6,
+    "mail-server-hardening": 0,
     "mcp-agent-trust": 7,
     "mlops-security": 10,
+    "network-trust": 0,
     "ot-ics-security": 14,
     "policy-exception-gen": 0,
     "pqc-first": 3,

package/data/_indexes/jurisdiction-map.json

@@ -23,8 +23,10 @@
       "idp-incident-response",
       "incident-response-playbook",
       "kernel-lpe-triage",
+      "mail-server-hardening",
       "mcp-agent-trust",
       "mlops-security",
+      "network-trust",
       "ot-ics-security",
       "policy-exception-gen",
       "pqc-first",
@@ -46,7 +48,7 @@
       "zeroday-gap-learn"
     ],
     "example_excerpts": {},
-    "skill_count": 43
+    "skill_count": 45
   },
   "UK": {
     "skills": [
@@ -74,6 +76,7 @@
       "kernel-lpe-triage",
       "mcp-agent-trust",
       "mlops-security",
+      "network-trust",
       "ot-ics-security",
       "policy-exception-gen",
       "pqc-first",
@@ -95,7 +98,7 @@
       "zeroday-gap-learn"
     ],
     "example_excerpts": {},
-    "skill_count": 43
+    "skill_count": 44
   },
   "AU": {
     "skills": [
@@ -237,6 +240,7 @@
       "global-grc",
       "identity-assurance",
       "idp-incident-response",
+      "network-trust",
       "sector-energy",
       "sector-federal-government",
       "sector-financial",
@@ -246,7 +250,7 @@
       "zeroday-gap-learn"
     ],
     "example_excerpts": {},
-    "skill_count": 17
+    "skill_count": 18
   },
   "BR": {
     "skills": [
@@ -499,11 +503,12 @@
   },
   "NO": {
     "skills": [
+      "mail-server-hardening",
       "sector-energy",
       "skill-update-loop"
     ],
     "example_excerpts": {},
-    "skill_count": 2
+    "skill_count": 3
   },
   "MX": {
     "skills": [