@blamejs/exceptd-skills 0.16.8 → 0.16.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (15) hide show
  1. package/CHANGELOG.md +12 -1
  2. package/data/_indexes/_meta.json +10 -10
  3. package/data/_indexes/activity-feed.json +18 -18
  4. package/data/_indexes/catalog-summaries.json +6 -6
  5. package/data/_indexes/chains.json +1139 -0
  6. package/data/_indexes/frequency.json +1 -0
  7. package/data/atlas-ttps.json +8 -3
  8. package/data/attack-techniques.json +34 -12
  9. package/data/cve-catalog.json +684 -3
  10. package/data/cwe-catalog.json +39 -8
  11. package/data/framework-control-gaps.json +51 -18
  12. package/data/zeroday-lessons.json +527 -2
  13. package/manifest.json +44 -44
  14. package/package.json +1 -1
  15. package/sbom.cdx.json +24 -24
package/data/cwe-catalog.json CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "_meta": {
3
3
  "schema_version": "1.0.0",
4
- "last_updated": "2026-05-19",
4
+ "last_updated": "2026-06-01",
5
5
  "cwe_version": "4.20",
6
6
  "cwe_version_release_date": "2026-04-30",
7
7
  "source": "https://cwe.mitre.org",
@@ -152,8 +152,10 @@
152
152
  "webapp-security"
153
153
  ],
154
154
  "evidence_cves": [
155
+ "CVE-2011-0411",
155
156
  "CVE-2016-10033",
156
157
  "CVE-2020-25079",
158
+ "CVE-2021-33515",
157
159
  "CVE-2023-33538",
158
160
  "CVE-2024-12450",
159
161
  "CVE-2024-5565",
@@ -1068,6 +1070,9 @@
1068
1070
  "mcp-agent-trust"
1069
1071
  ],
1070
1072
  "evidence_cves": [
1073
+ "CVE-2023-51764",
1074
+ "CVE-2023-51765",
1075
+ "CVE-2023-51766",
1071
1076
  "CVE-2026-32202"
1072
1077
  ],
1073
1078
  "framework_controls_partially_addressing": [
@@ -1415,6 +1420,7 @@
1415
1420
  ],
1416
1421
  "skills_referencing": [],
1417
1422
  "evidence_cves": [
1423
+ "CVE-2022-23812",
1418
1424
  "CVE-2024-3094",
1419
1425
  "CVE-2025-30066",
1420
1426
  "CVE-2025-30154",
@@ -1424,12 +1430,11 @@
1424
1430
  "CVE-2026-45321",
1425
1431
  "CVE-2026-48027",
1426
1432
  "MAL-2026-3083",
1433
+ "MAL-2026-MOIKA-DEPCONFUSION",
1427
1434
  "MAL-2026-NODE-IPC-STEALER",
1428
1435
  "MAL-2026-SHAI-HULUD-OSS",
1429
1436
  "MAL-2026-TANSTACK-MINI",
1430
- "CVE-2022-23812",
1431
- "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM",
1432
- "MAL-2026-MOIKA-DEPCONFUSION"
1437
+ "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM"
1433
1438
  ],
1434
1439
  "framework_controls_partially_addressing": [
1435
1440
  "NIST-800-53-SA-12",
@@ -1748,10 +1753,10 @@
1748
1753
  "CVE-2025-32463",
1749
1754
  "CVE-2025-54136",
1750
1755
  "CVE-2025-64496",
1756
+ "MAL-2026-MOIKA-DEPCONFUSION",
1751
1757
  "MAL-2026-NODE-IPC-STEALER",
1752
1758
  "MAL-2026-SHAI-HULUD-OSS",
1753
- "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM",
1754
- "MAL-2026-MOIKA-DEPCONFUSION"
1759
+ "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM"
1755
1760
  ],
1756
1761
  "framework_controls_partially_addressing": [
1757
1762
  "NIST-800-53-SA-12",
@@ -2027,9 +2032,9 @@
2027
2032
  "CVE-2024-3094",
2028
2033
  "CVE-2026-30615",
2029
2034
  "CVE-2026-45321",
2035
+ "MAL-2026-MOIKA-DEPCONFUSION",
2030
2036
  "MAL-2026-NODE-IPC-STEALER",
2031
- "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM",
2032
- "MAL-2026-MOIKA-DEPCONFUSION"
2037
+ "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM"
2033
2038
  ],
2034
2039
  "framework_controls_partially_addressing": [
2035
2040
  "NIST-800-53-SA-12",
@@ -2142,6 +2147,7 @@
2142
2147
  "CWE-732"
2143
2148
  ],
2144
2149
  "evidence_cves": [
2150
+ "CVE-2011-0411",
2145
2151
  "CVE-2026-31635"
2146
2152
  ],
2147
2153
  "last_verified": "2026-05-18",
@@ -2832,6 +2838,7 @@
2832
2838
  ],
2833
2839
  "related_weaknesses": [],
2834
2840
  "evidence_cves": [
2841
+ "CVE-2021-38371",
2835
2842
  "CVE-2025-20281",
2836
2843
  "CVE-2025-20337"
2837
2844
  ],
@@ -3026,6 +3033,8 @@
3026
3033
  ],
3027
3034
  "related_weaknesses": [],
3028
3035
  "evidence_cves": [
3036
+ "CVE-2023-44487",
3037
+ "CVE-2023-50868",
3029
3038
  "CVE-2026-24215",
3030
3039
  "CVE-2026-45498"
3031
3040
  ],
@@ -3728,6 +3737,7 @@
3728
3737
  ],
3729
3738
  "related_weaknesses": [],
3730
3739
  "evidence_cves": [
3740
+ "CVE-2023-50387",
3731
3741
  "CVE-2025-30202"
3732
3742
  ],
3733
3743
  "last_verified": "2026-05-19",
@@ -4477,5 +4487,26 @@
4477
4487
  "real_requirement": "Authentication paths must be evaluated against bypass via separate primary weaknesses (e.g. header-parsing flaws, race conditions in the auth handler); fuzz and audit the auth mechanism as an integrated whole, not the algorithm in isolation.",
4478
4488
  "lag_notes": "Authentication-bypass CVEs frequently stem from a primary weakness in request parsing or state handling rather than the auth algorithm itself; controls that audit only the credential-checking logic miss this class.",
4479
4489
  "last_verified": "2026-05-28"
4490
+ },
4491
+ "CWE-93": {
4492
+ "id": "CWE-93",
4493
+ "name": "Improper Neutralization of CRLF Sequences ('CRLF Injection')",
4494
+ "abstraction": "Base",
4495
+ "category": "Injection",
4496
+ "description": "The product uses CRLF (carriage-return line-feed) sequences as a special element (line/record separators) but does not neutralize, or incorrectly neutralizes, CRLF sequences from inputs. MITRE-canonical; full text at https://cwe.mitre.org/data/definitions/93.html. Backs the SMTP-smuggling end-of-data-sequence class (CVE-2023-51764/51765/51766) and the mail-server protocol-hardening surface.",
4497
+ "top_25_rank_2024": null,
4498
+ "top_25_rank_2025": null,
4499
+ "view_memberships": [
4500
+ "CWE-1000"
4501
+ ],
4502
+ "related_attack_patterns_capec": [
4503
+ "CAPEC-34"
4504
+ ],
4505
+ "skills_referencing": [],
4506
+ "evidence_cves": [
4507
+ "CVE-2023-51764",
4508
+ "CVE-2023-51765",
4509
+ "CVE-2023-51766"
4510
+ ]
4480
4511
  }
4481
4512
  }
package/data/framework-control-gaps.json CHANGED
@@ -897,6 +897,7 @@
897
897
  "status": "open",
898
898
  "opened_date": "2026-05-13",
899
899
  "evidence_cves": [
900
+ "CVE-2022-23812",
900
901
  "CVE-2024-3094",
901
902
  "CVE-2025-12686",
902
903
  "CVE-2025-62847",
@@ -906,11 +907,10 @@
906
907
  "CVE-2026-42945",
907
908
  "CVE-2026-45321",
908
909
  "MAL-2026-3083",
910
+ "MAL-2026-MOIKA-DEPCONFUSION",
909
911
  "MAL-2026-NODE-IPC-STEALER",
910
912
  "MAL-2026-SHAI-HULUD-OSS",
911
- "MAL-2026-TANSTACK-MINI",
912
- "CVE-2022-23812",
913
- "MAL-2026-MOIKA-DEPCONFUSION"
913
+ "MAL-2026-TANSTACK-MINI"
914
914
  ],
915
915
  "atlas_refs": [
916
916
  "AML.T0010",
@@ -1418,6 +1418,7 @@
1418
1418
  "CVE-2010-0806",
1419
1419
  "CVE-2010-3765",
1420
1420
  "CVE-2010-3962",
1421
+ "CVE-2011-0411",
1421
1422
  "CVE-2011-3402",
1422
1423
  "CVE-2012-1854",
1423
1424
  "CVE-2013-3893",
@@ -1450,6 +1451,8 @@
1450
1451
  "CVE-2021-26829",
1451
1452
  "CVE-2021-30952",
1452
1453
  "CVE-2021-32030",
1454
+ "CVE-2021-33515",
1455
+ "CVE-2021-38371",
1453
1456
  "CVE-2021-39935",
1454
1457
  "CVE-2021-43226",
1455
1458
  "CVE-2021-43798",
@@ -1470,8 +1473,14 @@
1470
1473
  "CVE-2023-43000",
1471
1474
  "CVE-2023-43654",
1472
1475
  "CVE-2023-44467",
1476
+ "CVE-2023-44487",
1473
1477
  "CVE-2023-50224",
1478
+ "CVE-2023-50387",
1479
+ "CVE-2023-50868",
1474
1480
  "CVE-2023-51449",
1481
+ "CVE-2023-51764",
1482
+ "CVE-2023-51765",
1483
+ "CVE-2023-51766",
1475
1484
  "CVE-2023-52163",
1476
1485
  "CVE-2023-6019",
1477
1486
  "CVE-2023-6021",
@@ -2058,11 +2067,11 @@
2058
2067
  "status": "open",
2059
2068
  "opened_date": "2026-05-11",
2060
2069
  "evidence_cves": [
2070
+ "CVE-2022-23812",
2061
2071
  "CVE-2026-45321",
2062
2072
  "MAL-2026-3083",
2063
- "MAL-2026-NODE-IPC-STEALER",
2064
- "CVE-2022-23812",
2065
- "MAL-2026-MOIKA-DEPCONFUSION"
2073
+ "MAL-2026-MOIKA-DEPCONFUSION",
2074
+ "MAL-2026-NODE-IPC-STEALER"
2066
2075
  ],
2067
2076
  "atlas_refs": [
2068
2077
  "AML.T0010",
@@ -2559,6 +2568,7 @@
2559
2568
  "CVE-2010-0806",
2560
2569
  "CVE-2010-3765",
2561
2570
  "CVE-2010-3962",
2571
+ "CVE-2011-0411",
2562
2572
  "CVE-2011-3402",
2563
2573
  "CVE-2012-1854",
2564
2574
  "CVE-2013-3893",
@@ -2591,6 +2601,8 @@
2591
2601
  "CVE-2021-26829",
2592
2602
  "CVE-2021-30952",
2593
2603
  "CVE-2021-32030",
2604
+ "CVE-2021-33515",
2605
+ "CVE-2021-38371",
2594
2606
  "CVE-2021-39935",
2595
2607
  "CVE-2021-43226",
2596
2608
  "CVE-2021-43798",
@@ -2612,8 +2624,14 @@
2612
2624
  "CVE-2023-43000",
2613
2625
  "CVE-2023-43654",
2614
2626
  "CVE-2023-44467",
2627
+ "CVE-2023-44487",
2615
2628
  "CVE-2023-50224",
2629
+ "CVE-2023-50387",
2630
+ "CVE-2023-50868",
2616
2631
  "CVE-2023-51449",
2632
+ "CVE-2023-51764",
2633
+ "CVE-2023-51765",
2634
+ "CVE-2023-51766",
2617
2635
  "CVE-2023-52163",
2618
2636
  "CVE-2023-6019",
2619
2637
  "CVE-2023-6021",
@@ -3417,6 +3435,9 @@
3417
3435
  "opened_date": "2026-03-15",
3418
3436
  "evidence_cves": [
3419
3437
  "CVE-2023-3519",
3438
+ "CVE-2023-51764",
3439
+ "CVE-2023-51765",
3440
+ "CVE-2023-51766",
3420
3441
  "CVE-2024-21762",
3421
3442
  "CVE-2025-0282",
3422
3443
  "CVE-2025-22457",
@@ -3673,9 +3694,9 @@
3673
3694
  "CVE-2025-30154",
3674
3695
  "CVE-2026-45321",
3675
3696
  "MAL-2026-3083",
3697
+ "MAL-2026-MOIKA-DEPCONFUSION",
3676
3698
  "MAL-2026-NODE-IPC-STEALER",
3677
- "MAL-2026-SHAI-HULUD-OSS",
3678
- "MAL-2026-MOIKA-DEPCONFUSION"
3699
+ "MAL-2026-SHAI-HULUD-OSS"
3679
3700
  ],
3680
3701
  "atlas_refs": [
3681
3702
  "AML.T0010",
@@ -5187,8 +5208,11 @@
5187
5208
  "CVE-2023-43654",
5188
5209
  "CVE-2023-43791",
5189
5210
  "CVE-2023-44467",
5211
+ "CVE-2023-44487",
5190
5212
  "CVE-2023-47117",
5191
5213
  "CVE-2023-48022",
5214
+ "CVE-2023-50387",
5215
+ "CVE-2023-50868",
5192
5216
  "CVE-2023-51449",
5193
5217
  "CVE-2023-6016",
5194
5218
  "CVE-2023-6019",
@@ -5813,6 +5837,10 @@
5813
5837
  "status": "open",
5814
5838
  "opened_date": "2026-05-17",
5815
5839
  "evidence_cves": [
5840
+ "CVE-2011-0411",
5841
+ "CVE-2021-33515",
5842
+ "CVE-2021-38371",
5843
+ "CVE-2022-23812",
5816
5844
  "CVE-2022-36551",
5817
5845
  "CVE-2023-43791",
5818
5846
  "CVE-2023-44467",
@@ -5907,10 +5935,9 @@
5907
5935
  "CVE-2026-46333",
5908
5936
  "CVE-2026-5760",
5909
5937
  "CVE-2026-9082",
5938
+ "MAL-2026-MOIKA-DEPCONFUSION",
5910
5939
  "MAL-2026-SHAI-HULUD-OSS",
5911
- "CVE-2022-23812",
5912
- "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM",
5913
- "MAL-2026-MOIKA-DEPCONFUSION"
5940
+ "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM"
5914
5941
  ],
5915
5942
  "atlas_refs": [],
5916
5943
  "attack_refs": [
@@ -6116,6 +6143,7 @@
6116
6143
  "status": "open",
6117
6144
  "opened_date": "2026-05-17",
6118
6145
  "evidence_cves": [
6146
+ "CVE-2022-23812",
6119
6147
  "CVE-2024-24590",
6120
6148
  "CVE-2024-24591",
6121
6149
  "CVE-2024-3154",
@@ -6123,13 +6151,12 @@
6123
6151
  "CVE-2024-37060",
6124
6152
  "CVE-2026-31229",
6125
6153
  "CVE-2026-31230",
6154
+ "MAL-2026-MOIKA-DEPCONFUSION",
6126
6155
  "MAL-2026-NODE-IPC-STEALER",
6127
6156
  "MAL-2026-RUBYGEMS-BUFFERZONECORP-SLEEPER",
6128
6157
  "MAL-2026-SHAI-HULUD-OSS",
6129
6158
  "MAL-2026-TANSTACK-MINI",
6130
- "CVE-2022-23812",
6131
- "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM",
6132
- "MAL-2026-MOIKA-DEPCONFUSION"
6159
+ "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM"
6133
6160
  ],
6134
6161
  "atlas_refs": [
6135
6162
  "AML.T0010",
@@ -6472,6 +6499,12 @@
6472
6499
  "opened_date": "2026-05-18",
6473
6500
  "evidence_cves": [
6474
6501
  "CVE-2022-36551",
6502
+ "CVE-2023-44487",
6503
+ "CVE-2023-50387",
6504
+ "CVE-2023-50868",
6505
+ "CVE-2023-51764",
6506
+ "CVE-2023-51765",
6507
+ "CVE-2023-51766",
6475
6508
  "CVE-2024-12450",
6476
6509
  "CVE-2024-21762",
6477
6510
  "CVE-2024-31462",
@@ -6721,8 +6754,8 @@
6721
6754
  "CVE-2025-6965",
6722
6755
  "CVE-2026-22778",
6723
6756
  "MAL-2025-AI-FOUND-FFMPEG-BIGSLEEP",
6724
- "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM",
6725
- "MAL-2026-MOIKA-DEPCONFUSION"
6757
+ "MAL-2026-MOIKA-DEPCONFUSION",
6758
+ "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM"
6726
6759
  ],
6727
6760
  "theater_test": {
6728
6761
  "claim": "We are compliant with Art-15 (Accuracy, robustness, and cybersecurity of high-risk AI systems) because we follow the documented requirement: Article 15 — high-risk AI systems must be designed and developed so as to achieve an appropriate level of accuracy, robustness, and cybersecurity throughout their lifecycle. Anchored on the assumption",
@@ -7533,10 +7566,10 @@
7533
7566
  "status": "open",
7534
7567
  "opened_at": "2026-05-18",
7535
7568
  "evidence_cves": [
7569
+ "CVE-2022-23812",
7536
7570
  "MAL-2025-PYPI-COLORAMA-SOLANA-STEALER",
7537
- "MAL-2026-RUBYGEMS-BUFFERZONECORP-SLEEPER",
7538
7571
  "MAL-2026-MOIKA-DEPCONFUSION",
7539
- "CVE-2022-23812",
7572
+ "MAL-2026-RUBYGEMS-BUFFERZONECORP-SLEEPER",
7540
7573
  "MAL-2026-TRAPDOOR-CROSS-ECOSYSTEM"
7541
7574
  ],
7542
7575
  "theater_test": {