@raishin/vanguard-frontier-agentic 2.11.0 → 2.13.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/.claude-plugin/marketplace.json +2 -2
- package/.claude-plugin/plugin.json +41 -1
- package/.cursor-plugin/plugin.json +41 -1
- package/.github/plugin/marketplace.json +1 -1
- package/README.md +11 -11
- package/agents/sap/sap-abap-cloud-rap-reviewer-agent/AGENT.md +57 -0
- package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-abap-cloud-rap-reviewer-agent/metadata.json +46 -0
- package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/AGENT.md +58 -0
- package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/codex.toml +31 -0
- package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/metadata.json +40 -0
- package/agents/sap/sap-analytics-cloud-planning-governance-agent/AGENT.md +58 -0
- package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-analytics-cloud-planning-governance-agent/metadata.json +45 -0
- package/agents/sap/sap-audit-evidence-packager-agent/AGENT.md +58 -0
- package/agents/sap/sap-audit-evidence-packager-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-audit-evidence-packager-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-audit-evidence-packager-agent/harnesses/copilot.agent.md +33 -0
- package/agents/sap/sap-audit-evidence-packager-agent/harnesses/cursor.agent.md +31 -0
- package/agents/sap/sap-audit-evidence-packager-agent/harnesses/gemini.agent.md +31 -0
- package/agents/sap/sap-audit-evidence-packager-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-audit-evidence-packager-agent/harnesses/kiro-ide.agent.md +31 -0
- package/agents/sap/sap-audit-evidence-packager-agent/metadata.json +45 -0
- package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/AGENT.md +58 -0
- package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/metadata.json +44 -0
- package/agents/sap/sap-btp-entitlement-guarded-operator-agent/AGENT.md +70 -0
- package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/claude-code.agent.md +51 -0
- package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/codex.toml +42 -0
- package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/copilot.agent.md +36 -0
- package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/cursor.agent.md +33 -0
- package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/gemini.agent.md +33 -0
- package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/kiro-ide.agent.md +33 -0
- package/agents/sap/sap-btp-entitlement-guarded-operator-agent/metadata.json +41 -0
- package/agents/sap/sap-cap-architecture-reviewer-agent/AGENT.md +57 -0
- package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-cap-architecture-reviewer-agent/metadata.json +42 -0
- package/agents/sap/sap-clean-core-debt-reviewer-agent/AGENT.md +58 -0
- package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/codex.toml +31 -0
- package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-clean-core-debt-reviewer-agent/metadata.json +45 -0
- package/agents/sap/sap-cloud-alm-sre-incident-agent/AGENT.md +59 -0
- package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-cloud-alm-sre-incident-agent/metadata.json +42 -0
- package/agents/sap/sap-custom-code-remediation-reviewer-agent/AGENT.md +60 -0
- package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/codex.toml +29 -0
- package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-custom-code-remediation-reviewer-agent/metadata.json +45 -0
- package/agents/sap/sap-data-migration-cutover-readiness-agent/AGENT.md +67 -0
- package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/claude-code.agent.md +46 -0
- package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-data-migration-cutover-readiness-agent/metadata.json +44 -0
- package/agents/sap/sap-datasphere-data-product-architect-agent/AGENT.md +58 -0
- package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-datasphere-data-product-architect-agent/metadata.json +45 -0
- package/agents/sap/sap-ewm-tm-logistics-execution-agent/AGENT.md +59 -0
- package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-ewm-tm-logistics-execution-agent/metadata.json +44 -0
- package/agents/sap/sap-finance-fico-controls-agent/AGENT.md +59 -0
- package/agents/sap/sap-finance-fico-controls-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-finance-fico-controls-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-finance-fico-controls-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-finance-fico-controls-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-finance-fico-controls-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-finance-fico-controls-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-finance-fico-controls-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-finance-fico-controls-agent/metadata.json +45 -0
- package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/AGENT.md +58 -0
- package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/codex.toml +29 -0
- package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/metadata.json +39 -0
- package/agents/sap/sap-guarded-transport-import-operator-agent/AGENT.md +70 -0
- package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/claude-code.agent.md +51 -0
- package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/codex.toml +41 -0
- package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/copilot.agent.md +36 -0
- package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/cursor.agent.md +33 -0
- package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/gemini.agent.md +33 -0
- package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/kiro-ide.agent.md +33 -0
- package/agents/sap/sap-guarded-transport-import-operator-agent/metadata.json +45 -0
- package/agents/sap/sap-hana-cloud-performance-cost-agent/AGENT.md +58 -0
- package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-hana-cloud-performance-cost-agent/metadata.json +43 -0
- package/agents/sap/sap-hypercare-incident-commander-agent/AGENT.md +59 -0
- package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-hypercare-incident-commander-agent/metadata.json +42 -0
- package/agents/sap/sap-integration-flow-guarded-operator-agent/AGENT.md +70 -0
- package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/claude-code.agent.md +51 -0
- package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/codex.toml +41 -0
- package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/copilot.agent.md +36 -0
- package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/cursor.agent.md +33 -0
- package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/gemini.agent.md +33 -0
- package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/kiro-ide.agent.md +33 -0
- package/agents/sap/sap-integration-flow-guarded-operator-agent/metadata.json +41 -0
- package/agents/sap/sap-integration-suite-reviewer-agent/AGENT.md +57 -0
- package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-integration-suite-reviewer-agent/metadata.json +43 -0
- package/agents/sap/sap-joule-governance-adoption-agent/AGENT.md +59 -0
- package/agents/sap/sap-joule-governance-adoption-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-joule-governance-adoption-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-joule-governance-adoption-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-joule-governance-adoption-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-joule-governance-adoption-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-joule-governance-adoption-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-joule-governance-adoption-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-joule-governance-adoption-agent/metadata.json +42 -0
- package/agents/sap/sap-license-btp-consumption-finops-agent/AGENT.md +58 -0
- package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-license-btp-consumption-finops-agent/metadata.json +42 -0
- package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/AGENT.md +60 -0
- package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/codex.toml +31 -0
- package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/metadata.json +39 -0
- package/agents/sap/sap-live-readonly-landscape-discovery-agent/AGENT.md +60 -0
- package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/claude-code.agent.md +40 -0
- package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/codex.toml +31 -0
- package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-live-readonly-landscape-discovery-agent/metadata.json +39 -0
- package/agents/sap/sap-maestro-agent/AGENT.md +60 -0
- package/agents/sap/sap-maestro-agent/harnesses/claude-code.agent.md +36 -0
- package/agents/sap/sap-maestro-agent/harnesses/codex.toml +34 -0
- package/agents/sap/sap-maestro-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-maestro-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-maestro-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-maestro-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-maestro-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-maestro-agent/metadata.json +39 -0
- package/agents/sap/sap-manufacturing-execution-risk-agent/AGENT.md +59 -0
- package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-manufacturing-execution-risk-agent/metadata.json +44 -0
- package/agents/sap/sap-mdg-master-data-quality-agent/AGENT.md +59 -0
- package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-mdg-master-data-quality-agent/metadata.json +45 -0
- package/agents/sap/sap-order-to-cash-agent/AGENT.md +59 -0
- package/agents/sap/sap-order-to-cash-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-order-to-cash-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-order-to-cash-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-order-to-cash-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-order-to-cash-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-order-to-cash-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-order-to-cash-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-order-to-cash-agent/metadata.json +44 -0
- package/agents/sap/sap-procurement-ariba-value-leakage-agent/AGENT.md +59 -0
- package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-procurement-ariba-value-leakage-agent/metadata.json +44 -0
- package/agents/sap/sap-release-change-collision-agent/AGENT.md +59 -0
- package/agents/sap/sap-release-change-collision-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-release-change-collision-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-release-change-collision-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-release-change-collision-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-release-change-collision-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-release-change-collision-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-release-change-collision-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-release-change-collision-agent/metadata.json +42 -0
- package/agents/sap/sap-rise-sla-vendor-risk-agent/AGENT.md +58 -0
- package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-rise-sla-vendor-risk-agent/metadata.json +42 -0
- package/agents/sap/sap-role-assignment-guarded-operator-agent/AGENT.md +73 -0
- package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/claude-code.agent.md +54 -0
- package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/codex.toml +43 -0
- package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/copilot.agent.md +38 -0
- package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/cursor.agent.md +35 -0
- package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/gemini.agent.md +35 -0
- package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/kiro-ide.agent.md +35 -0
- package/agents/sap/sap-role-assignment-guarded-operator-agent/metadata.json +41 -0
- package/agents/sap/sap-s4hana-transformation-architect-agent/AGENT.md +62 -0
- package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/claude-code.agent.md +41 -0
- package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/codex.toml +29 -0
- package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-s4hana-transformation-architect-agent/metadata.json +44 -0
- package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/AGENT.md +59 -0
- package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/metadata.json +44 -0
- package/agents/sap/sap-signavio-process-mining-value-agent/AGENT.md +59 -0
- package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-signavio-process-mining-value-agent/metadata.json +44 -0
- package/agents/sap/sap-successfactors-hr-process-risk-agent/AGENT.md +59 -0
- package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-successfactors-hr-process-risk-agent/metadata.json +42 -0
- package/agents/sap/sap-supply-chain-ibp-resilience-agent/AGENT.md +59 -0
- package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-supply-chain-ibp-resilience-agent/metadata.json +44 -0
- package/agents/sap/sap-testing-quality-gate-agent/AGENT.md +59 -0
- package/agents/sap/sap-testing-quality-gate-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-testing-quality-gate-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-testing-quality-gate-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-testing-quality-gate-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-testing-quality-gate-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-testing-quality-gate-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-testing-quality-gate-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-testing-quality-gate-agent/metadata.json +42 -0
- package/agents/sap/sap-transformation-portfolio-triage-agent/AGENT.md +58 -0
- package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/claude-code.agent.md +37 -0
- package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/copilot.agent.md +31 -0
- package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/cursor.agent.md +29 -0
- package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/gemini.agent.md +29 -0
- package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/kiro-ide.agent.md +29 -0
- package/agents/sap/sap-transformation-portfolio-triage-agent/metadata.json +42 -0
- package/agents/sap/sap-treasury-cash-risk-agent/AGENT.md +59 -0
- package/agents/sap/sap-treasury-cash-risk-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/sap/sap-treasury-cash-risk-agent/harnesses/codex.toml +30 -0
- package/agents/sap/sap-treasury-cash-risk-agent/harnesses/copilot.agent.md +32 -0
- package/agents/sap/sap-treasury-cash-risk-agent/harnesses/cursor.agent.md +30 -0
- package/agents/sap/sap-treasury-cash-risk-agent/harnesses/gemini.agent.md +30 -0
- package/agents/sap/sap-treasury-cash-risk-agent/harnesses/kiro-cli.agent.json +1 -0
- package/agents/sap/sap-treasury-cash-risk-agent/harnesses/kiro-ide.agent.md +30 -0
- package/agents/sap/sap-treasury-cash-risk-agent/metadata.json +44 -0
- package/catalog/agents.json +1323 -0
- package/catalog/asset-integrity.json +2293 -43
- package/catalog/install-roles.json +94 -0
- package/catalog/skill-manifest.json +1770 -3
- package/catalog/skills.json +1912 -1
- package/package.json +1 -1
- package/plugins/cross-platform-agent-template/.codexignore +7 -0
- package/plugins/vanguard-frontier-agentic/.codex-plugin/plugin.json +1 -1
- package/plugins/vanguard-frontier-agentic/.codexignore +7 -0
- package/powers/README.md +3 -2
- package/powers/vanguard-sap/POWER.md +43 -0
- package/schemas/agent.schema.json +1 -0
- package/schemas/skill.schema.json +1 -0
- package/scripts/generate-docs-data.mjs +1 -1
- package/scripts/generate-kiro-powers.mjs +12 -0
- package/skills/claude/add-educational-comments/metadata.json +1 -1
- package/skills/sap/sap-abap-cloud-rap-review/SKILL.md +86 -0
- package/skills/sap/sap-abap-cloud-rap-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-abap-cloud-rap-review/metadata.json +34 -0
- package/skills/sap/sap-abap-cloud-rap-review/references/context7-framework-docs.md +126 -0
- package/skills/sap/sap-abap-cloud-rap-review/references/official-sources.md +95 -0
- package/skills/sap/sap-abap-cloud-rap-review/references/safety-checklist.md +37 -0
- package/skills/sap/sap-abap-cloud-rap-review/references/workflow-and-output.md +76 -0
- package/skills/sap/sap-ai-core-generative-ai-hub-governance/SKILL.md +92 -0
- package/skills/sap/sap-ai-core-generative-ai-hub-governance/agents/openai.yaml +11 -0
- package/skills/sap/sap-ai-core-generative-ai-hub-governance/metadata.json +34 -0
- package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/context7-framework-docs.md +107 -0
- package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/official-sources.md +91 -0
- package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/safety-checklist.md +39 -0
- package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/workflow-and-output.md +75 -0
- package/skills/sap/sap-ai-governance-security-architecture-protocol/SKILL.md +168 -0
- package/skills/sap/sap-ai-governance-security-architecture-protocol/agents/openai.yaml +11 -0
- package/skills/sap/sap-ai-governance-security-architecture-protocol/metadata.json +35 -0
- package/skills/sap/sap-ai-governance-security-architecture-protocol/references/official-sources.md +99 -0
- package/skills/sap/sap-ai-governance-security-architecture-protocol/references/safety-checklist.md +38 -0
- package/skills/sap/sap-ai-governance-security-architecture-protocol/references/workflow-and-output.md +89 -0
- package/skills/sap/sap-analytics-cloud-planning-governance/SKILL.md +87 -0
- package/skills/sap/sap-analytics-cloud-planning-governance/agents/openai.yaml +11 -0
- package/skills/sap/sap-analytics-cloud-planning-governance/metadata.json +33 -0
- package/skills/sap/sap-analytics-cloud-planning-governance/references/official-sources.md +89 -0
- package/skills/sap/sap-analytics-cloud-planning-governance/references/safety-checklist.md +35 -0
- package/skills/sap/sap-analytics-cloud-planning-governance/references/workflow-and-output.md +70 -0
- package/skills/sap/sap-audit-evidence-packaging/SKILL.md +92 -0
- package/skills/sap/sap-audit-evidence-packaging/agents/openai.yaml +11 -0
- package/skills/sap/sap-audit-evidence-packaging/metadata.json +33 -0
- package/skills/sap/sap-audit-evidence-packaging/references/official-sources.md +92 -0
- package/skills/sap/sap-audit-evidence-packaging/references/safety-checklist.md +38 -0
- package/skills/sap/sap-audit-evidence-packaging/references/workflow-and-output.md +129 -0
- package/skills/sap/sap-btp-governance-review/SKILL.md +84 -0
- package/skills/sap/sap-btp-governance-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-btp-governance-review/metadata.json +34 -0
- package/skills/sap/sap-btp-governance-review/references/official-sources.md +91 -0
- package/skills/sap/sap-btp-governance-review/references/safety-checklist.md +35 -0
- package/skills/sap/sap-btp-governance-review/references/workflow-and-output.md +66 -0
- package/skills/sap/sap-cap-architecture-review/SKILL.md +86 -0
- package/skills/sap/sap-cap-architecture-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-cap-architecture-review/metadata.json +34 -0
- package/skills/sap/sap-cap-architecture-review/references/context7-framework-docs.md +89 -0
- package/skills/sap/sap-cap-architecture-review/references/official-sources.md +93 -0
- package/skills/sap/sap-cap-architecture-review/references/safety-checklist.md +37 -0
- package/skills/sap/sap-cap-architecture-review/references/workflow-and-output.md +74 -0
- package/skills/sap/sap-clean-core-debt-review/SKILL.md +84 -0
- package/skills/sap/sap-clean-core-debt-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-clean-core-debt-review/metadata.json +33 -0
- package/skills/sap/sap-clean-core-debt-review/references/context7-framework-docs.md +56 -0
- package/skills/sap/sap-clean-core-debt-review/references/official-sources.md +75 -0
- package/skills/sap/sap-clean-core-debt-review/references/safety-checklist.md +36 -0
- package/skills/sap/sap-clean-core-debt-review/references/workflow-and-output.md +62 -0
- package/skills/sap/sap-cloud-alm-sre-incident-review/SKILL.md +83 -0
- package/skills/sap/sap-cloud-alm-sre-incident-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-cloud-alm-sre-incident-review/metadata.json +33 -0
- package/skills/sap/sap-cloud-alm-sre-incident-review/references/official-sources.md +89 -0
- package/skills/sap/sap-cloud-alm-sre-incident-review/references/safety-checklist.md +39 -0
- package/skills/sap/sap-cloud-alm-sre-incident-review/references/workflow-and-output.md +88 -0
- package/skills/sap/sap-custom-code-remediation-review/SKILL.md +83 -0
- package/skills/sap/sap-custom-code-remediation-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-custom-code-remediation-review/metadata.json +33 -0
- package/skills/sap/sap-custom-code-remediation-review/references/official-sources.md +85 -0
- package/skills/sap/sap-custom-code-remediation-review/references/safety-checklist.md +39 -0
- package/skills/sap/sap-custom-code-remediation-review/references/workflow-and-output.md +83 -0
- package/skills/sap/sap-data-migration-cutover-readiness/SKILL.md +90 -0
- package/skills/sap/sap-data-migration-cutover-readiness/agents/openai.yaml +14 -0
- package/skills/sap/sap-data-migration-cutover-readiness/metadata.json +32 -0
- package/skills/sap/sap-data-migration-cutover-readiness/references/official-sources.md +73 -0
- package/skills/sap/sap-data-migration-cutover-readiness/references/safety-checklist.md +51 -0
- package/skills/sap/sap-data-migration-cutover-readiness/references/workflow-and-output.md +85 -0
- package/skills/sap/sap-data-privacy-analytics-ai-protocol/SKILL.md +162 -0
- package/skills/sap/sap-data-privacy-analytics-ai-protocol/agents/openai.yaml +11 -0
- package/skills/sap/sap-data-privacy-analytics-ai-protocol/metadata.json +34 -0
- package/skills/sap/sap-data-privacy-analytics-ai-protocol/references/official-sources.md +93 -0
- package/skills/sap/sap-data-privacy-analytics-ai-protocol/references/safety-checklist.md +39 -0
- package/skills/sap/sap-data-privacy-analytics-ai-protocol/references/workflow-and-output.md +78 -0
- package/skills/sap/sap-datasphere-data-product-architecture/SKILL.md +86 -0
- package/skills/sap/sap-datasphere-data-product-architecture/agents/openai.yaml +11 -0
- package/skills/sap/sap-datasphere-data-product-architecture/metadata.json +33 -0
- package/skills/sap/sap-datasphere-data-product-architecture/references/official-sources.md +85 -0
- package/skills/sap/sap-datasphere-data-product-architecture/references/safety-checklist.md +35 -0
- package/skills/sap/sap-datasphere-data-product-architecture/references/workflow-and-output.md +70 -0
- package/skills/sap/sap-ewm-tm-logistics-execution-review/SKILL.md +90 -0
- package/skills/sap/sap-ewm-tm-logistics-execution-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-ewm-tm-logistics-execution-review/metadata.json +32 -0
- package/skills/sap/sap-ewm-tm-logistics-execution-review/references/official-sources.md +79 -0
- package/skills/sap/sap-ewm-tm-logistics-execution-review/references/safety-checklist.md +37 -0
- package/skills/sap/sap-ewm-tm-logistics-execution-review/references/workflow-and-output.md +91 -0
- package/skills/sap/sap-finance-fico-controls-review/SKILL.md +91 -0
- package/skills/sap/sap-finance-fico-controls-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-finance-fico-controls-review/metadata.json +33 -0
- package/skills/sap/sap-finance-fico-controls-review/references/official-sources.md +89 -0
- package/skills/sap/sap-finance-fico-controls-review/references/safety-checklist.md +38 -0
- package/skills/sap/sap-finance-fico-controls-review/references/workflow-and-output.md +88 -0
- package/skills/sap/sap-fiori-ui5-ux-review/SKILL.md +87 -0
- package/skills/sap/sap-fiori-ui5-ux-review/agents/openai.yaml +14 -0
- package/skills/sap/sap-fiori-ui5-ux-review/metadata.json +33 -0
- package/skills/sap/sap-fiori-ui5-ux-review/references/context7-framework-docs.md +128 -0
- package/skills/sap/sap-fiori-ui5-ux-review/references/official-sources.md +95 -0
- package/skills/sap/sap-fiori-ui5-ux-review/references/safety-checklist.md +37 -0
- package/skills/sap/sap-fiori-ui5-ux-review/references/workflow-and-output.md +96 -0
- package/skills/sap/sap-guarded-btp-entitlement-change/SKILL.md +156 -0
- package/skills/sap/sap-guarded-btp-entitlement-change/agents/openai.yaml +17 -0
- package/skills/sap/sap-guarded-btp-entitlement-change/metadata.json +33 -0
- package/skills/sap/sap-guarded-btp-entitlement-change/references/live-environment-access.md +93 -0
- package/skills/sap/sap-guarded-btp-entitlement-change/references/official-sources.md +75 -0
- package/skills/sap/sap-guarded-btp-entitlement-change/references/safety-checklist.md +57 -0
- package/skills/sap/sap-guarded-btp-entitlement-change/references/workflow-and-output.md +132 -0
- package/skills/sap/sap-guarded-integration-flow-change/SKILL.md +151 -0
- package/skills/sap/sap-guarded-integration-flow-change/agents/openai.yaml +17 -0
- package/skills/sap/sap-guarded-integration-flow-change/metadata.json +33 -0
- package/skills/sap/sap-guarded-integration-flow-change/references/live-environment-access.md +80 -0
- package/skills/sap/sap-guarded-integration-flow-change/references/official-sources.md +73 -0
- package/skills/sap/sap-guarded-integration-flow-change/references/safety-checklist.md +56 -0
- package/skills/sap/sap-guarded-integration-flow-change/references/workflow-and-output.md +122 -0
- package/skills/sap/sap-guarded-role-assignment/SKILL.md +159 -0
- package/skills/sap/sap-guarded-role-assignment/agents/openai.yaml +17 -0
- package/skills/sap/sap-guarded-role-assignment/metadata.json +33 -0
- package/skills/sap/sap-guarded-role-assignment/references/live-environment-access.md +93 -0
- package/skills/sap/sap-guarded-role-assignment/references/official-sources.md +73 -0
- package/skills/sap/sap-guarded-role-assignment/references/safety-checklist.md +57 -0
- package/skills/sap/sap-guarded-role-assignment/references/workflow-and-output.md +133 -0
- package/skills/sap/sap-guarded-transport-import/SKILL.md +144 -0
- package/skills/sap/sap-guarded-transport-import/agents/openai.yaml +14 -0
- package/skills/sap/sap-guarded-transport-import/metadata.json +34 -0
- package/skills/sap/sap-guarded-transport-import/references/live-environment-access.md +81 -0
- package/skills/sap/sap-guarded-transport-import/references/official-sources.md +79 -0
- package/skills/sap/sap-guarded-transport-import/references/safety-checklist.md +52 -0
- package/skills/sap/sap-guarded-transport-import/references/workflow-and-output.md +93 -0
- package/skills/sap/sap-hana-cloud-performance-cost/SKILL.md +87 -0
- package/skills/sap/sap-hana-cloud-performance-cost/agents/openai.yaml +11 -0
- package/skills/sap/sap-hana-cloud-performance-cost/metadata.json +33 -0
- package/skills/sap/sap-hana-cloud-performance-cost/references/context7-framework-docs.md +94 -0
- package/skills/sap/sap-hana-cloud-performance-cost/references/official-sources.md +83 -0
- package/skills/sap/sap-hana-cloud-performance-cost/references/safety-checklist.md +36 -0
- package/skills/sap/sap-hana-cloud-performance-cost/references/workflow-and-output.md +68 -0
- package/skills/sap/sap-hypercare-incident-commander-review/SKILL.md +93 -0
- package/skills/sap/sap-hypercare-incident-commander-review/agents/openai.yaml +14 -0
- package/skills/sap/sap-hypercare-incident-commander-review/metadata.json +31 -0
- package/skills/sap/sap-hypercare-incident-commander-review/references/official-sources.md +63 -0
- package/skills/sap/sap-hypercare-incident-commander-review/references/safety-checklist.md +55 -0
- package/skills/sap/sap-hypercare-incident-commander-review/references/workflow-and-output.md +98 -0
- package/skills/sap/sap-integration-platform-businessops-protocol/SKILL.md +162 -0
- package/skills/sap/sap-integration-platform-businessops-protocol/agents/openai.yaml +11 -0
- package/skills/sap/sap-integration-platform-businessops-protocol/metadata.json +35 -0
- package/skills/sap/sap-integration-platform-businessops-protocol/references/official-sources.md +99 -0
- package/skills/sap/sap-integration-platform-businessops-protocol/references/safety-checklist.md +36 -0
- package/skills/sap/sap-integration-platform-businessops-protocol/references/workflow-and-output.md +76 -0
- package/skills/sap/sap-integration-suite-review/SKILL.md +87 -0
- package/skills/sap/sap-integration-suite-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-integration-suite-review/metadata.json +33 -0
- package/skills/sap/sap-integration-suite-review/references/context7-framework-docs.md +76 -0
- package/skills/sap/sap-integration-suite-review/references/official-sources.md +79 -0
- package/skills/sap/sap-integration-suite-review/references/safety-checklist.md +36 -0
- package/skills/sap/sap-integration-suite-review/references/workflow-and-output.md +78 -0
- package/skills/sap/sap-joule-governance-adoption-review/SKILL.md +83 -0
- package/skills/sap/sap-joule-governance-adoption-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-joule-governance-adoption-review/metadata.json +33 -0
- package/skills/sap/sap-joule-governance-adoption-review/references/official-sources.md +83 -0
- package/skills/sap/sap-joule-governance-adoption-review/references/safety-checklist.md +37 -0
- package/skills/sap/sap-joule-governance-adoption-review/references/workflow-and-output.md +81 -0
- package/skills/sap/sap-license-btp-consumption-finops-review/SKILL.md +89 -0
- package/skills/sap/sap-license-btp-consumption-finops-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-license-btp-consumption-finops-review/metadata.json +32 -0
- package/skills/sap/sap-license-btp-consumption-finops-review/references/official-sources.md +71 -0
- package/skills/sap/sap-license-btp-consumption-finops-review/references/safety-checklist.md +36 -0
- package/skills/sap/sap-license-btp-consumption-finops-review/references/workflow-and-output.md +69 -0
- package/skills/sap/sap-live-readonly-identity-trust-discovery/SKILL.md +142 -0
- package/skills/sap/sap-live-readonly-identity-trust-discovery/agents/openai.yaml +14 -0
- package/skills/sap/sap-live-readonly-identity-trust-discovery/metadata.json +34 -0
- package/skills/sap/sap-live-readonly-identity-trust-discovery/references/live-environment-access.md +151 -0
- package/skills/sap/sap-live-readonly-identity-trust-discovery/references/official-sources.md +83 -0
- package/skills/sap/sap-live-readonly-identity-trust-discovery/references/safety-checklist.md +49 -0
- package/skills/sap/sap-live-readonly-identity-trust-discovery/references/workflow-and-output.md +103 -0
- package/skills/sap/sap-live-readonly-landscape-discovery/SKILL.md +135 -0
- package/skills/sap/sap-live-readonly-landscape-discovery/agents/openai.yaml +14 -0
- package/skills/sap/sap-live-readonly-landscape-discovery/metadata.json +34 -0
- package/skills/sap/sap-live-readonly-landscape-discovery/references/live-environment-access.md +111 -0
- package/skills/sap/sap-live-readonly-landscape-discovery/references/official-sources.md +83 -0
- package/skills/sap/sap-live-readonly-landscape-discovery/references/safety-checklist.md +45 -0
- package/skills/sap/sap-live-readonly-landscape-discovery/references/workflow-and-output.md +102 -0
- package/skills/sap/sap-maestro/SKILL.md +81 -0
- package/skills/sap/sap-maestro/agents/openai.yaml +11 -0
- package/skills/sap/sap-maestro/metadata.json +32 -0
- package/skills/sap/sap-maestro/references/official-sources.md +53 -0
- package/skills/sap/sap-maestro/references/safety-checklist.md +39 -0
- package/skills/sap/sap-maestro/references/workflow-and-output.md +73 -0
- package/skills/sap/sap-manufacturing-execution-risk-review/SKILL.md +89 -0
- package/skills/sap/sap-manufacturing-execution-risk-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-manufacturing-execution-risk-review/metadata.json +32 -0
- package/skills/sap/sap-manufacturing-execution-risk-review/references/official-sources.md +79 -0
- package/skills/sap/sap-manufacturing-execution-risk-review/references/safety-checklist.md +39 -0
- package/skills/sap/sap-manufacturing-execution-risk-review/references/workflow-and-output.md +91 -0
- package/skills/sap/sap-mdg-master-data-quality-review/SKILL.md +85 -0
- package/skills/sap/sap-mdg-master-data-quality-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-mdg-master-data-quality-review/metadata.json +33 -0
- package/skills/sap/sap-mdg-master-data-quality-review/references/official-sources.md +89 -0
- package/skills/sap/sap-mdg-master-data-quality-review/references/safety-checklist.md +37 -0
- package/skills/sap/sap-mdg-master-data-quality-review/references/workflow-and-output.md +91 -0
- package/skills/sap/sap-order-to-cash-review/SKILL.md +89 -0
- package/skills/sap/sap-order-to-cash-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-order-to-cash-review/metadata.json +32 -0
- package/skills/sap/sap-order-to-cash-review/references/official-sources.md +79 -0
- package/skills/sap/sap-order-to-cash-review/references/safety-checklist.md +39 -0
- package/skills/sap/sap-order-to-cash-review/references/workflow-and-output.md +87 -0
- package/skills/sap/sap-procurement-ariba-value-leakage-review/SKILL.md +90 -0
- package/skills/sap/sap-procurement-ariba-value-leakage-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-procurement-ariba-value-leakage-review/metadata.json +32 -0
- package/skills/sap/sap-procurement-ariba-value-leakage-review/references/official-sources.md +79 -0
- package/skills/sap/sap-procurement-ariba-value-leakage-review/references/safety-checklist.md +38 -0
- package/skills/sap/sap-procurement-ariba-value-leakage-review/references/workflow-and-output.md +87 -0
- package/skills/sap/sap-procurement-license-finops-vendor-protocol/SKILL.md +155 -0
- package/skills/sap/sap-procurement-license-finops-vendor-protocol/agents/openai.yaml +11 -0
- package/skills/sap/sap-procurement-license-finops-vendor-protocol/metadata.json +35 -0
- package/skills/sap/sap-procurement-license-finops-vendor-protocol/references/official-sources.md +99 -0
- package/skills/sap/sap-procurement-license-finops-vendor-protocol/references/safety-checklist.md +36 -0
- package/skills/sap/sap-procurement-license-finops-vendor-protocol/references/workflow-and-output.md +62 -0
- package/skills/sap/sap-release-change-collision-review/SKILL.md +92 -0
- package/skills/sap/sap-release-change-collision-review/agents/openai.yaml +14 -0
- package/skills/sap/sap-release-change-collision-review/metadata.json +31 -0
- package/skills/sap/sap-release-change-collision-review/references/official-sources.md +63 -0
- package/skills/sap/sap-release-change-collision-review/references/safety-checklist.md +51 -0
- package/skills/sap/sap-release-change-collision-review/references/workflow-and-output.md +85 -0
- package/skills/sap/sap-release-cutover-finance-controls-protocol/SKILL.md +170 -0
- package/skills/sap/sap-release-cutover-finance-controls-protocol/agents/openai.yaml +11 -0
- package/skills/sap/sap-release-cutover-finance-controls-protocol/metadata.json +33 -0
- package/skills/sap/sap-release-cutover-finance-controls-protocol/references/official-sources.md +89 -0
- package/skills/sap/sap-release-cutover-finance-controls-protocol/references/safety-checklist.md +39 -0
- package/skills/sap/sap-release-cutover-finance-controls-protocol/references/workflow-and-output.md +98 -0
- package/skills/sap/sap-rise-sla-vendor-risk-review/SKILL.md +88 -0
- package/skills/sap/sap-rise-sla-vendor-risk-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-rise-sla-vendor-risk-review/metadata.json +32 -0
- package/skills/sap/sap-rise-sla-vendor-risk-review/references/official-sources.md +73 -0
- package/skills/sap/sap-rise-sla-vendor-risk-review/references/safety-checklist.md +36 -0
- package/skills/sap/sap-rise-sla-vendor-risk-review/references/workflow-and-output.md +56 -0
- package/skills/sap/sap-s4hana-transformation-architecture-review/SKILL.md +84 -0
- package/skills/sap/sap-s4hana-transformation-architecture-review/agents/openai.yaml +14 -0
- package/skills/sap/sap-s4hana-transformation-architecture-review/metadata.json +32 -0
- package/skills/sap/sap-s4hana-transformation-architecture-review/references/official-sources.md +75 -0
- package/skills/sap/sap-s4hana-transformation-architecture-review/references/safety-checklist.md +40 -0
- package/skills/sap/sap-s4hana-transformation-architecture-review/references/workflow-and-output.md +67 -0
- package/skills/sap/sap-security-hr-legal-protocol/SKILL.md +149 -0
- package/skills/sap/sap-security-hr-legal-protocol/agents/openai.yaml +11 -0
- package/skills/sap/sap-security-hr-legal-protocol/metadata.json +34 -0
- package/skills/sap/sap-security-hr-legal-protocol/references/official-sources.md +89 -0
- package/skills/sap/sap-security-hr-legal-protocol/references/safety-checklist.md +38 -0
- package/skills/sap/sap-security-hr-legal-protocol/references/workflow-and-output.md +65 -0
- package/skills/sap/sap-security-iam-grc-sod-review/SKILL.md +86 -0
- package/skills/sap/sap-security-iam-grc-sod-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-security-iam-grc-sod-review/metadata.json +33 -0
- package/skills/sap/sap-security-iam-grc-sod-review/references/official-sources.md +83 -0
- package/skills/sap/sap-security-iam-grc-sod-review/references/safety-checklist.md +36 -0
- package/skills/sap/sap-security-iam-grc-sod-review/references/workflow-and-output.md +79 -0
- package/skills/sap/sap-signavio-process-mining-value/SKILL.md +85 -0
- package/skills/sap/sap-signavio-process-mining-value/agents/openai.yaml +11 -0
- package/skills/sap/sap-signavio-process-mining-value/metadata.json +33 -0
- package/skills/sap/sap-signavio-process-mining-value/references/official-sources.md +89 -0
- package/skills/sap/sap-signavio-process-mining-value/references/safety-checklist.md +36 -0
- package/skills/sap/sap-signavio-process-mining-value/references/workflow-and-output.md +91 -0
- package/skills/sap/sap-successfactors-hr-process-risk-review/SKILL.md +92 -0
- package/skills/sap/sap-successfactors-hr-process-risk-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-successfactors-hr-process-risk-review/metadata.json +33 -0
- package/skills/sap/sap-successfactors-hr-process-risk-review/references/official-sources.md +83 -0
- package/skills/sap/sap-successfactors-hr-process-risk-review/references/safety-checklist.md +38 -0
- package/skills/sap/sap-successfactors-hr-process-risk-review/references/workflow-and-output.md +86 -0
- package/skills/sap/sap-supply-chain-ibp-resilience-review/SKILL.md +90 -0
- package/skills/sap/sap-supply-chain-ibp-resilience-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-supply-chain-ibp-resilience-review/metadata.json +32 -0
- package/skills/sap/sap-supply-chain-ibp-resilience-review/references/official-sources.md +79 -0
- package/skills/sap/sap-supply-chain-ibp-resilience-review/references/safety-checklist.md +38 -0
- package/skills/sap/sap-supply-chain-ibp-resilience-review/references/workflow-and-output.md +89 -0
- package/skills/sap/sap-testing-quality-gate-review/SKILL.md +92 -0
- package/skills/sap/sap-testing-quality-gate-review/agents/openai.yaml +14 -0
- package/skills/sap/sap-testing-quality-gate-review/metadata.json +31 -0
- package/skills/sap/sap-testing-quality-gate-review/references/official-sources.md +65 -0
- package/skills/sap/sap-testing-quality-gate-review/references/safety-checklist.md +53 -0
- package/skills/sap/sap-testing-quality-gate-review/references/workflow-and-output.md +98 -0
- package/skills/sap/sap-transformation-portfolio-triage-review/SKILL.md +87 -0
- package/skills/sap/sap-transformation-portfolio-triage-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-transformation-portfolio-triage-review/metadata.json +32 -0
- package/skills/sap/sap-transformation-portfolio-triage-review/references/official-sources.md +71 -0
- package/skills/sap/sap-transformation-portfolio-triage-review/references/safety-checklist.md +36 -0
- package/skills/sap/sap-transformation-portfolio-triage-review/references/workflow-and-output.md +69 -0
- package/skills/sap/sap-treasury-cash-risk-review/SKILL.md +90 -0
- package/skills/sap/sap-treasury-cash-risk-review/agents/openai.yaml +11 -0
- package/skills/sap/sap-treasury-cash-risk-review/metadata.json +32 -0
- package/skills/sap/sap-treasury-cash-risk-review/references/official-sources.md +79 -0
- package/skills/sap/sap-treasury-cash-risk-review/references/safety-checklist.md +38 -0
- package/skills/sap/sap-treasury-cash-risk-review/references/workflow-and-output.md +89 -0
- package/tests/fixtures/sap-maestro-routing/expected/01-clean-core-debt.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/02-landscape-discovery.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/03-live-guard-transport.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/04-adversarial-injection.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/05-adversarial-persona.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/06-ambiguous.json +4 -0
- package/tests/fixtures/sap-maestro-routing/expected/07-secrets-bait.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/08-btp-governance.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/09-integration-suite.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/10-security-sod.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/11-cap-architecture.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/12-abap-cloud-rap.json +7 -0
- package/tests/fixtures/sap-maestro-routing/expected/13-ai-governance.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/14-datasphere.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/15-analytics-cloud.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/16-hana-cloud.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/17-s4hana-transformation.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/18-custom-code-remediation.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/19-data-migration-cutover.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/20-finance-fico.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/21-mdg-master-data.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/22-signavio.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/23-procurement-ariba.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/24-supply-chain-ibp.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/25-order-to-cash.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/26-treasury.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/27-ewm-tm.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/28-manufacturing.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/29-successfactors.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/30-joule.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/31-cloud-alm.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/32-transformation-portfolio.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/33-rise-sla.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/34-license-finops.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/35-testing-quality.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/36-release-collision.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/37-hypercare.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/38-identity-trust.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/39-fiori-ui5.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/40-audit-evidence.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/41-guard-role-assign.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/42-guard-iflow-deploy.json +6 -0
- package/tests/fixtures/sap-maestro-routing/expected/43-guard-entitlement.json +6 -0
- package/tests/fixtures/sap-maestro-routing/inputs/01-clean-core-debt.json +5 -0
- package/tests/fixtures/sap-maestro-routing/inputs/02-landscape-discovery.json +5 -0
- package/tests/fixtures/sap-maestro-routing/inputs/03-live-guard-transport.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/04-adversarial-injection.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/05-adversarial-persona.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/06-ambiguous.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/07-secrets-bait.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/08-btp-governance.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/09-integration-suite.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/10-security-sod.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/11-cap-architecture.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/12-abap-cloud-rap.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/13-ai-governance.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/14-datasphere.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/15-analytics-cloud.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/16-hana-cloud.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/17-s4hana-transformation.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/18-custom-code-remediation.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/19-data-migration-cutover.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/20-finance-fico.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/21-mdg-master-data.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/22-signavio.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/23-procurement-ariba.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/24-supply-chain-ibp.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/25-order-to-cash.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/26-treasury.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/27-ewm-tm.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/28-manufacturing.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/29-successfactors.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/30-joule.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/31-cloud-alm.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/32-transformation-portfolio.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/33-rise-sla.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/34-license-finops.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/35-testing-quality.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/36-release-collision.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/37-hypercare.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/38-identity-trust.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/39-fiori-ui5.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/40-audit-evidence.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/41-guard-role-assign.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/42-guard-iflow-deploy.json +7 -0
- package/tests/fixtures/sap-maestro-routing/inputs/43-guard-entitlement.json +7 -0
- package/tests/fixtures/sap-maestro-routing/taxonomy.json +509 -0
- package/tests/validate-catalog.py +1 -0
|
@@ -0,0 +1,76 @@
|
|
|
1
|
+
# Workflow and output contract — SAP ABAP Cloud RAP Review
|
|
2
|
+
|
|
3
|
+
Use this reference for all classification, severity assignment, and output formatting.
|
|
4
|
+
|
|
5
|
+
## Review domain taxonomy
|
|
6
|
+
|
|
7
|
+
| Domain | Scope |
|
|
8
|
+
|--------|-------|
|
|
9
|
+
| `CDS Views` | View type selection (interface/projection/consumption), annotation completeness, metadata extensions, access control (DCL), UUID key design, draft table configuration |
|
|
10
|
+
| `BDEF` | Implementation type (managed/unmanaged), draft enablement, authorization master/dependent, alias, feature control, action/function declarations, association exposure |
|
|
11
|
+
| `Behavior Implementation` | AUTHORITY-CHECK coverage, action method completeness, validation message patterns, determination logic, forbidden language constructs |
|
|
12
|
+
| `Released API Compliance` | C1/C2 contract verification, NOT_RELEASED consumption, DEPRECATED object usage, tier-2 compliance |
|
|
13
|
+
| `ABAP Unit Tests` | Test double usage (if_abap_behv_test_environment / if_cds_test_environment), test class structure, ROLLBACK ENTITIES teardown, CREATE ENTITIES test correctness |
|
|
14
|
+
| `Object Composition` | Root vs. child entity hierarchy, composition relationship completeness, ETag strategy, UUID vs. semantic key trade-offs |
|
|
15
|
+
|
|
16
|
+
## Severity classification
|
|
17
|
+
|
|
18
|
+
| Severity | Meaning | Examples |
|
|
19
|
+
|----------|---------|---------|
|
|
20
|
+
| `critical` | Security breach or data integrity loss risk | AUTHORITY-CHECK simulation left active in production-bound code; authorization master method returning allowed without any check |
|
|
21
|
+
| `high` | Functional, correctness, or upgrade-blocking risk | NOT_RELEASED API consumption; missing `with draft;` on a BO requiring Fiori draft editing; missing draftActivate method; unmanaged RAP with no justification |
|
|
22
|
+
| `medium` | Governance, maintainability, or test isolation gap | ROLLBACK ENTITIES missing in test teardown; CDS metadata extension annotations on wrong view layer; unmanaged implementation where managed would suffice |
|
|
23
|
+
| `low` | Best practice deviation or code quality concern | Inconsistent CDS naming conventions; missing alias in BDEF; action not declared as static where appropriate |
|
|
24
|
+
|
|
25
|
+
## Common finding patterns
|
|
26
|
+
|
|
27
|
+
### BDEF
|
|
28
|
+
- `with draft;` absent on a root entity that requires Fiori Elements draft editing (high)
|
|
29
|
+
- `authorization master ( global )` declared but CHECK_AUTHORIZATION never implemented in the behavior implementation class (critical)
|
|
30
|
+
- `authorization dependent by _ParentAssociation` incorrectly used on the root entity (high — only valid for child entities)
|
|
31
|
+
- Unmanaged BDEF without documented justification on a greenfield BO (medium)
|
|
32
|
+
|
|
33
|
+
### Behavior Implementation
|
|
34
|
+
- `update_granted = abap_true` or `delete_granted = abap_true` hard-coded without actual `AUTHORITY-CHECK` — simulation left from development (critical)
|
|
35
|
+
- `AUTHORITY-CHECK OBJECT` used for update but not for delete (high — asymmetric authorization check)
|
|
36
|
+
- Missing `APPEND VALUE #(...) TO reported-travel` for unauthorized operations — authorization failure not surfaced to the caller (high)
|
|
37
|
+
- Validation method that returns without any `APPEND TO failed` or `APPEND TO reported` (high — silent failure)
|
|
38
|
+
|
|
39
|
+
### CDS Views
|
|
40
|
+
- Interface view directly used in service binding instead of projection view (medium — bypass of projection separation)
|
|
41
|
+
- Access control (DCL) missing on interface view (high for sensitive entities)
|
|
42
|
+
- Draft table not defined on the root CDS interface view while `with draft;` is in the BDEF (high — runtime error)
|
|
43
|
+
- Metadata extension annotations placed on interface view instead of projection view (medium)
|
|
44
|
+
|
|
45
|
+
### Released API Compliance
|
|
46
|
+
- Direct SELECT from SAP standard database table without C1 released CDS view equivalent (high)
|
|
47
|
+
- Consumption of a function module or BAPI with no C1/C2 release contract in ABAP Cloud context (high)
|
|
48
|
+
- Use of DEPRECATED released objects without noting migration path (medium)
|
|
49
|
+
|
|
50
|
+
### ABAP Unit Tests
|
|
51
|
+
- Test class uses `MODIFY ENTITIES` against live data without `cl_cds_test_environment` or `cl_abap_behv_test_environment` double (high)
|
|
52
|
+
- `ROLLBACK ENTITIES` absent in `teardown` method (medium)
|
|
53
|
+
- `cds_test_environment->destroy()` absent in `class_teardown` (medium)
|
|
54
|
+
- Test method asserts only initial result without asserting expected field values (low)
|
|
55
|
+
|
|
56
|
+
## Workflow
|
|
57
|
+
|
|
58
|
+
1. **Receive artifacts** — ABAP source code, CDS DDL files, BDEF source, metadata extensions, access control definitions, or user descriptions.
|
|
59
|
+
2. **Classify each finding** by review domain above.
|
|
60
|
+
3. **Assign severity** (critical / high / medium / low).
|
|
61
|
+
4. **Identify evidence level** (documentation-based / user-provided evidence / context7-supplementary / inference).
|
|
62
|
+
5. **Recommend specific remediation** — ABAP code pattern to apply, BDEF keyword to add, DCL source to create, API Business Hub check to perform.
|
|
63
|
+
6. **Prioritize** — critical and high severity first; released API compliance and authorization before structural findings; test isolation before style.
|
|
64
|
+
7. **Return output** per the output contract below.
|
|
65
|
+
|
|
66
|
+
## Output contract
|
|
67
|
+
|
|
68
|
+
Return:
|
|
69
|
+
|
|
70
|
+
1. Artifacts reviewed and domains in scope
|
|
71
|
+
2. Finding(s) per domain with severity and evidence label
|
|
72
|
+
3. Specific remediation recommendation per finding (with code-level detail from user-provided evidence where available)
|
|
73
|
+
4. Released API compliance summary — list any NOT_RELEASED or DEPRECATED objects with recommended C1/C2 alternatives (to be verified on API Business Hub)
|
|
74
|
+
5. Authorization coverage summary — AUTHORITY-CHECK status for each operation (create/update/delete) per reviewed behavior implementation
|
|
75
|
+
6. Prioritized remediation sequence (critical → high → medium → low)
|
|
76
|
+
7. Escalation trigger if live ABAP system access or ATC execution is required before proceeding
|
|
@@ -0,0 +1,92 @@
|
|
|
1
|
+
---
|
|
2
|
+
name: sap-ai-core-generative-ai-hub-governance
|
|
3
|
+
description: Governance review for SAP AI Core, AI Launchpad, and Generative AI Hub deployments. Assesses model access control, data privacy for RAG pipelines and embeddings, prompt-injection risk in orchestration configurations, grounding data classification, prompt-log handling, and auditability of AI outputs. Does not run models or access production AI deployments.
|
|
4
|
+
allowed-tools: Read Grep Glob WebSearch WebFetch
|
|
5
|
+
metadata:
|
|
6
|
+
author: "github: Raishin"
|
|
7
|
+
version: "0.1.0"
|
|
8
|
+
updated: "2026-06-19"
|
|
9
|
+
category: ai
|
|
10
|
+
lifecycle: experimental
|
|
11
|
+
---
|
|
12
|
+
|
|
13
|
+
# SAP AI Core Generative AI Hub Governance
|
|
14
|
+
|
|
15
|
+
## Purpose
|
|
16
|
+
|
|
17
|
+
Assess the governance posture of SAP AI Core, AI Launchpad, and Generative AI Hub deployments. Review model access control: resource group isolation, role assignments in AI Launchpad, and AI API service key scope. Review data privacy for RAG pipelines: classification of grounding data sources, embedding storage location, data residency of vector stores, and personal data exposure in retrieval results. Assess prompt-injection risk in orchestration configurations: unguarded template variables, absent input/output content safety filters, and missing grounding data sanitization. Review prompt-log handling and retention: whether prompts containing personal or confidential data are logged, where logs are stored, and whether log access is role-restricted. Assess auditability of AI outputs: traceability of model responses to grounding sources, audit trail completeness, and model version pinning. Does not invoke models, connect to live AI Core deployments, or process production data.
|
|
18
|
+
|
|
19
|
+
## When to use
|
|
20
|
+
|
|
21
|
+
Use this skill when the user asks to:
|
|
22
|
+
|
|
23
|
+
- review AI Core resource group structure and role assignment for model access isolation,
|
|
24
|
+
- assess AI Launchpad user role configuration: `aicore_admin`, `aicore_viewer`, `genai_manager`, `genai_viewer` role assignments and separation of duties,
|
|
25
|
+
- evaluate Generative AI Hub orchestration configuration for prompt-injection risk: input/output content safety filter coverage, unguarded template variable injection points, and system-prompt integrity,
|
|
26
|
+
- audit grounding data classification: whether documents in the Document Grounding Service or vector store are classified by data sensitivity before ingestion, whether personal data or confidential business data is ingested into shared vector stores,
|
|
27
|
+
- review prompt-log handling: whether prompt logging is enabled, log retention period, log access controls, and compliance with data residency requirements for logged prompts containing personal data,
|
|
28
|
+
- assess embedding and vector store data privacy: which data is vectorized, where embeddings are stored, cross-tenant vector store isolation, and right-to-erasure implications for embedded personal data,
|
|
29
|
+
- evaluate auditability of Generative AI Hub outputs: model version pinning, grounding source attribution in responses, audit log completeness for AI-assisted decisions, and explainability requirements.
|
|
30
|
+
|
|
31
|
+
## When not to use
|
|
32
|
+
|
|
33
|
+
- When the request requires connecting to a live AI Core deployment, running model inference, or accessing production prompt logs — this skill reviews configuration artifacts and governance descriptions only.
|
|
34
|
+
- When the request is about BTP account-level governance (entitlements, subaccounts, role collections) unrelated to AI services — use `sap-btp-governance-review`.
|
|
35
|
+
- When the request is about integration wiring between AI Core and other SAP services via Integration Suite — use `sap-integration-suite-review`.
|
|
36
|
+
- When the request is about training custom ML models on BTP AI Core (pipeline configuration, Docker images, custom training workflows) rather than Generative AI Hub governance.
|
|
37
|
+
|
|
38
|
+
## Does not touch live systems
|
|
39
|
+
|
|
40
|
+
This skill operates on user-provided orchestration configuration files, role assignment descriptions, resource group layouts, grounding pipeline configuration, data classification documentation, or written descriptions of the AI governance posture. It does not invoke any Generative AI Hub model, access AI Core deployment APIs, read prompt logs, query vector stores, or connect to AI Launchpad. All live inspection is out of scope.
|
|
41
|
+
|
|
42
|
+
## Lean operating rules
|
|
43
|
+
|
|
44
|
+
- Classify governance findings before recommending. Every finding must be assigned to a governance domain (Model Access / Data Privacy / Prompt Injection Risk / Grounding Data / Prompt Logging / Auditability) before remediation is proposed.
|
|
45
|
+
- Content safety filters are required on both input and output for customer-facing orchestration pipelines. An orchestration configuration without `filtering_module_config` on both the input and output path is a `high` finding for prompt injection and harmful output risk.
|
|
46
|
+
- Grounding data classification must precede ingestion. Ingesting unclassified documents into a vector store shared across resource groups or tenants is a `high` finding for data privacy. Personal data in grounding documents must be identified before vectorization.
|
|
47
|
+
- Prompt logging of personal data requires legal basis and residency compliance. If prompts submitted by end users may contain personal data (names, IDs, health data, financial data), prompt logging must be evaluated against the applicable data protection regulation (GDPR, local law). Unreviewed prompt logging with no retention limit is a `medium` finding.
|
|
48
|
+
- Embedding personal data creates right-to-erasure obligations. Personal data vectorized into embeddings cannot be trivially erased. Any grounding pipeline ingesting personal data must have a documented erasure procedure or must exclude personal data from vectorization.
|
|
49
|
+
- Model version must be pinned for AI-assisted decisions. An orchestration configuration using `latest` or a floating model version alias for any workflow that produces auditable business outputs is a `medium` finding for reproducibility.
|
|
50
|
+
- Resource group isolation is the primary access control boundary. All model deployments, vector stores, and grounding pipelines must be assigned to the appropriate resource group. Cross-resource-group access without documented justification is a `high` finding.
|
|
51
|
+
- Evidence from official SAP AI Core, AI Launchpad, and Generative AI Hub documentation takes precedence over inference.
|
|
52
|
+
|
|
53
|
+
## Evidence rules
|
|
54
|
+
|
|
55
|
+
Label all claims with one of:
|
|
56
|
+
|
|
57
|
+
- `documentation-based` — grounded in official SAP AI Core, AI Launchpad, or Generative AI Hub documentation (help.sap.com)
|
|
58
|
+
- `user-provided evidence` — orchestration configuration files, role assignment descriptions, grounding pipeline design, data classification documentation, or written descriptions provided by the user
|
|
59
|
+
- `context7-supplementary` — grounded in SAP Generative AI Hub orchestration configuration patterns from Context7 (supplementary; applies for content safety filter configuration and grounding module structure)
|
|
60
|
+
- `inference` — derived reasoning not directly confirmed by official docs or user evidence
|
|
61
|
+
|
|
62
|
+
## Live-environment rules and data privacy rules
|
|
63
|
+
|
|
64
|
+
**This skill does not touch live systems.** There is no AI Core API call, Generative AI Hub model invocation, vector store query, prompt log access, or AI Launchpad session in this skill's execution path.
|
|
65
|
+
|
|
66
|
+
**Data privacy rules for this review skill:**
|
|
67
|
+
|
|
68
|
+
- Do not request, accept, or process actual prompt logs, user message history, or inference outputs from production deployments.
|
|
69
|
+
- Do not request actual grounding documents, embeddings, or vector store contents. Accept only descriptions of data classification and pipeline configuration.
|
|
70
|
+
- Do not request AI Core service keys, OAuth tokens, or resource group credentials.
|
|
71
|
+
- When the user describes a grounding pipeline that handles personal data, advise on governance controls without requesting the underlying data.
|
|
72
|
+
|
|
73
|
+
## References
|
|
74
|
+
|
|
75
|
+
Load only when needed:
|
|
76
|
+
|
|
77
|
+
- [Workflow and output contract](references/workflow-and-output.md) — governance domain taxonomy, severity classification, output format.
|
|
78
|
+
- [Safety checklist](references/safety-checklist.md) — non-negotiables, common AI governance mistakes, when to push back.
|
|
79
|
+
- [Official sources](references/official-sources.md) — SAP AI Core, AI Launchpad, Generative AI Hub, and Document Grounding Service documentation.
|
|
80
|
+
- [Context7 framework docs](references/context7-framework-docs.md) — SAP Generative AI Hub orchestration configuration patterns (supplementary; applies for content safety filter and grounding module configuration).
|
|
81
|
+
|
|
82
|
+
## Response minimum
|
|
83
|
+
|
|
84
|
+
Return, at minimum:
|
|
85
|
+
|
|
86
|
+
- **Problem classification**: governance domain(s) in scope and specific finding(s) per domain.
|
|
87
|
+
- **Evidence used**: documentation-based / user-provided evidence / context7-supplementary / inference.
|
|
88
|
+
- **Risk level**: critical (regulatory breach, data exfiltration, or security bypass risk) / high (governance control gap with material privacy or security impact) / medium (audit or compliance gap) / low (best practice deviation).
|
|
89
|
+
- **Recommended action**: specific governance control per finding (add content safety filter, classify grounding data before ingestion, restrict prompt log access, pin model version, define erasure procedure for embedded personal data, etc.).
|
|
90
|
+
- **Refusal / escalation triggers**: if live AI Core access, prompt log inspection, or vector store content review is required to complete the governance assessment, state that clearly and do not proceed. If the configuration may contain personal data, do not accept it directly — request a redacted or anonymized description instead.
|
|
91
|
+
- **Business impact**: regulatory exposure (GDPR, local data protection law), AI output reliability risk, audit trail gap, or reputational risk from harmful model output.
|
|
92
|
+
- **Next verification step**: validate recommended governance controls against current SAP AI Core configuration documentation and applicable data protection regulation before deploying changes.
|
|
@@ -0,0 +1,11 @@
|
|
|
1
|
+
interface:
|
|
2
|
+
display_name: "SAP AI Core Generative AI Hub Governance"
|
|
3
|
+
short_description: "Governance review for SAP AI Core, AI Launchpad, and Generative AI Hub: model access control, data privacy, prompt-injection risk, grounding data classification, prompt-log handling, and AI output auditability"
|
|
4
|
+
default_prompt: "Use $sap-ai-core-generative-ai-hub-governance to assess the provided SAP Generative AI Hub governance artifacts. Classify findings by domain (Model Access / Data Privacy / Prompt Injection Risk / Grounding Data / Prompt Logging / Auditability), assign severity (critical / high / medium / low), state evidence level (documentation-based / user-provided evidence / context7-supplementary / inference), and recommend specific governance controls per finding. Do not request actual prompt logs, grounding data contents, embeddings, or AI Core service credentials."
|
|
5
|
+
dependencies:
|
|
6
|
+
tools:
|
|
7
|
+
- type: "web"
|
|
8
|
+
value: "https://help.sap.com/docs/sap-ai-core/sap-ai-core-service-guide/security-and-data-protection"
|
|
9
|
+
description: "SAP AI Core security and data protection guide — verify data residency, privacy controls, and access governance requirements for the target AI Core service plan"
|
|
10
|
+
policy:
|
|
11
|
+
allow_implicit_invocation: true
|
|
@@ -0,0 +1,34 @@
|
|
|
1
|
+
{
|
|
2
|
+
"id": "sap-ai-core-generative-ai-hub-governance",
|
|
3
|
+
"name": "SAP AI Core Generative AI Hub Governance",
|
|
4
|
+
"type": "skill",
|
|
5
|
+
"provider": "sap",
|
|
6
|
+
"harnesses": [
|
|
7
|
+
"claude-code",
|
|
8
|
+
"codex",
|
|
9
|
+
"cursor",
|
|
10
|
+
"gemini",
|
|
11
|
+
"kiro",
|
|
12
|
+
"other"
|
|
13
|
+
],
|
|
14
|
+
"summary": "Governance review for SAP AI Core, AI Launchpad, and Generative AI Hub: model access control, data privacy for RAG/embeddings, prompt-injection risk in orchestration configurations, grounding data classification, prompt-log handling, and auditability of AI outputs. Does not run models or access production AI deployments.",
|
|
15
|
+
"source_type": "original",
|
|
16
|
+
"category": "ai",
|
|
17
|
+
"official_docs": [
|
|
18
|
+
"https://help.sap.com/docs/sap-ai-core/sap-ai-core-service-guide/what-is-sap-ai-core",
|
|
19
|
+
"https://help.sap.com/docs/sap-ai-core/sap-ai-core-service-guide/resource-groups",
|
|
20
|
+
"https://help.sap.com/docs/ai-launchpad/sap-ai-launchpad/what-is-sap-ai-launchpad",
|
|
21
|
+
"https://help.sap.com/docs/sap-ai-core/generative-ai/generative-ai-hub-in-sap-ai-core",
|
|
22
|
+
"https://help.sap.com/docs/sap-ai-core/generative-ai/orchestration",
|
|
23
|
+
"https://help.sap.com/docs/sap-ai-core/generative-ai/document-grounding",
|
|
24
|
+
"https://help.sap.com/docs/sap-ai-core/sap-ai-core-service-guide/security-and-data-protection",
|
|
25
|
+
"https://help.sap.com/docs/sap-ai-core/generative-ai/data-protection-and-privacy",
|
|
26
|
+
"https://help.sap.com/docs/ai-launchpad/sap-ai-launchpad/roles-and-authorizations"
|
|
27
|
+
],
|
|
28
|
+
"security_notes": "Does not access live AI Core deployments, invoke Generative AI Hub models, read prompt logs, query vector stores, or connect to AI Launchpad. Accepts only orchestration configuration files, role assignment descriptions, grounding pipeline design, data classification documentation, or written descriptions. Never request or accept AI Core service keys, OAuth tokens, resource group credentials, actual prompt logs, grounding document contents, or embeddings. If user-provided configuration may contain personal data, request a redacted version.",
|
|
29
|
+
"last_verified": "2026-06-19",
|
|
30
|
+
"path": "skills/sap/sap-ai-core-generative-ai-hub-governance",
|
|
31
|
+
"author": "github: Raishin",
|
|
32
|
+
"version": "0.1.0",
|
|
33
|
+
"lifecycle": "experimental"
|
|
34
|
+
}
|
package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/context7-framework-docs.md
ADDED
|
@@ -0,0 +1,107 @@
|
|
|
1
|
+
# Context7 framework docs — SAP AI Core Generative AI Hub Governance
|
|
2
|
+
|
|
3
|
+
**Role**: supplementary. Official SAP AI Core and Generative AI Hub documentation (help.sap.com) is the primary source for all governance guidance. Context7-sourced Generative AI Hub documentation supplements with concrete orchestration configuration structure for content safety filtering and grounding module setup — both directly relevant to prompt-injection risk and grounding data governance.
|
|
4
|
+
|
|
5
|
+
**Library used**: SAP AI Core Generative AI Hub
|
|
6
|
+
Context7 library ID: `/websites/help_sap_sap-ai-core_generative-ai`
|
|
7
|
+
Lookup target: orchestration configuration, content safety filtering (filtering_module_config), grounding module (grounding_module_config), prompt template variables, metadata exposure in retrieval
|
|
8
|
+
Skill: `sap-ai-core-generative-ai-hub-governance`
|
|
9
|
+
Classification: supplementary — applies for prompt-injection risk and grounding data governance domains
|
|
10
|
+
|
|
11
|
+
---
|
|
12
|
+
|
|
13
|
+
## Orchestration — content safety filter configuration (supplementary)
|
|
14
|
+
|
|
15
|
+
Source: help.sap.com SAP AI Core Generative AI Hub (Context7 `/websites/help_sap_sap-ai-core_generative-ai`)
|
|
16
|
+
Reference: https://help.sap.com/docs/sap-ai-core/generative-ai/contextualized-retrieval-using-metadata-and-vector-search
|
|
17
|
+
|
|
18
|
+
Content safety filtering is configured via `filtering_module_config` in the orchestration request body. Both input and output paths must be configured independently:
|
|
19
|
+
|
|
20
|
+
```json
|
|
21
|
+
"filtering_module_config": {
|
|
22
|
+
"input": {
|
|
23
|
+
"filters": [
|
|
24
|
+
{
|
|
25
|
+
"type": "azure_content_safety",
|
|
26
|
+
"config": {
|
|
27
|
+
"Hate": 2,
|
|
28
|
+
"SelfHarm": 2,
|
|
29
|
+
"Sexual": 2,
|
|
30
|
+
"Violence": 2
|
|
31
|
+
}
|
|
32
|
+
}
|
|
33
|
+
]
|
|
34
|
+
},
|
|
35
|
+
"output": {
|
|
36
|
+
"filters": [
|
|
37
|
+
{
|
|
38
|
+
"type": "azure_content_safety",
|
|
39
|
+
"config": {
|
|
40
|
+
"Hate": 2,
|
|
41
|
+
"SelfHarm": 2,
|
|
42
|
+
"Sexual": 2,
|
|
43
|
+
"Violence": 2
|
|
44
|
+
}
|
|
45
|
+
}
|
|
46
|
+
]
|
|
47
|
+
}
|
|
48
|
+
}
|
|
49
|
+
```
|
|
50
|
+
|
|
51
|
+
**Governance relevance:**
|
|
52
|
+
- `filtering_module_config` must appear in every orchestration configuration that accepts user input or returns output to end users. Its absence is a `high` finding.
|
|
53
|
+
- The `input` filter screens prompts before they reach the model — primary defense against harmful input and some prompt injection patterns.
|
|
54
|
+
- The `output` filter screens model responses before they reach the caller — defense against harmful model output.
|
|
55
|
+
- Threshold values (0–6): lower values = more permissive (more content passes); higher values = more restrictive. Setting thresholds to 0 effectively disables filtering for that category — a `high` finding for customer-facing pipelines.
|
|
56
|
+
- `azure_content_safety` is the filter type available in the standard Generative AI Hub orchestration service. Governance reviews must confirm the filter type matches what the target deployment supports.
|
|
57
|
+
|
|
58
|
+
---
|
|
59
|
+
|
|
60
|
+
## Orchestration — grounding module and metadata exposure (supplementary)
|
|
61
|
+
|
|
62
|
+
Source: help.sap.com SAP AI Core Generative AI Hub (Context7 `/websites/help_sap_sap-ai-core_generative-ai`)
|
|
63
|
+
Reference: https://help.sap.com/docs/sap-ai-core/generative-ai/contextualized-retrieval-using-metadata-and-vector-search
|
|
64
|
+
|
|
65
|
+
The grounding module (`grounding_module_config`) retrieves documents from a vector store and injects them into the prompt via a named output parameter:
|
|
66
|
+
|
|
67
|
+
```json
|
|
68
|
+
"grounding_module_config": {
|
|
69
|
+
"type": "document_grounding_service",
|
|
70
|
+
"config": {
|
|
71
|
+
"filters": [
|
|
72
|
+
{
|
|
73
|
+
"id": "filter1",
|
|
74
|
+
"data_repositories": ["*"],
|
|
75
|
+
"search_config": {},
|
|
76
|
+
"data_repository_type": "vector"
|
|
77
|
+
}
|
|
78
|
+
],
|
|
79
|
+
"input_params": ["groundingRequest"],
|
|
80
|
+
"output_param": "groundingOutput",
|
|
81
|
+
"metadata_params": ["source", "webUrl"]
|
|
82
|
+
}
|
|
83
|
+
}
|
|
84
|
+
```
|
|
85
|
+
|
|
86
|
+
**Governance relevance:**
|
|
87
|
+
- `data_repositories: ["*"]` queries all vector stores accessible in the resource group. Governance review should confirm this is intentional — if only specific repositories should be queried, explicit repository IDs should be listed.
|
|
88
|
+
- `metadata_params: ["source", "webUrl"]` exposes document source metadata in the orchestration response. Internal URLs, access-controlled document paths, or identifiers that reveal internal system topology may constitute an information disclosure finding if returned to end users without review.
|
|
89
|
+
- `output_param: "groundingOutput"` injects retrieved document content into the prompt template via `{{ ?groundingOutput }}`. If grounding documents can contain untrusted or externally sourced content, this injection point is a vector for indirect prompt injection. Review whether `{{ ?groundingOutput }}` appears in the system message (high risk) or user message (medium risk).
|
|
90
|
+
- `input_params: ["groundingRequest"]` takes the grounding query from a prompt template variable. Review whether this variable is user-controlled (`{{ ?userInput }}`) — if so, users can influence which documents are retrieved, potentially extracting information from the vector store beyond their intended scope.
|
|
91
|
+
|
|
92
|
+
---
|
|
93
|
+
|
|
94
|
+
## Scope boundaries for Context7 usage
|
|
95
|
+
|
|
96
|
+
Context7 SAP Generative AI Hub documentation applies to:
|
|
97
|
+
|
|
98
|
+
- **Prompt Injection Risk**: `filtering_module_config` structure, content safety threshold semantics, grounding output injection patterns
|
|
99
|
+
- **Grounding Data**: `grounding_module_config` structure, `data_repositories` scope, `metadata_params` exposure
|
|
100
|
+
|
|
101
|
+
It does not replace official SAP documentation for:
|
|
102
|
+
- AI Core resource group isolation and access control (use help.sap.com/docs/sap-ai-core/sap-ai-core-service-guide/resource-groups)
|
|
103
|
+
- AI Launchpad role definitions and separation of duties (use help.sap.com/docs/ai-launchpad/sap-ai-launchpad/roles-and-authorizations)
|
|
104
|
+
- Data residency and data protection requirements (use help.sap.com/docs/sap-ai-core/generative-ai/data-protection-and-privacy)
|
|
105
|
+
- Prompt logging behavior and retention (use help.sap.com/docs/sap-ai-core/generative-ai/data-protection-and-privacy)
|
|
106
|
+
|
|
107
|
+
Always label Context7-sourced guidance as `context7-supplementary` in responses.
|
|
@@ -0,0 +1,91 @@
|
|
|
1
|
+
# Official sources — SAP AI Core Generative AI Hub Governance
|
|
2
|
+
|
|
3
|
+
Use this reference when grounding AI Core model access, AI Launchpad role governance, Generative AI Hub orchestration, grounding data classification, data privacy, and audit requirements.
|
|
4
|
+
|
|
5
|
+
**Evidence level**: documentation-based (SAP Help Portal — help.sap.com). No live-system evidence is collected by this skill.
|
|
6
|
+
|
|
7
|
+
## SAP AI Core — service overview and access control
|
|
8
|
+
|
|
9
|
+
- What is SAP AI Core
|
|
10
|
+
https://help.sap.com/docs/sap-ai-core/sap-ai-core-service-guide/what-is-sap-ai-core
|
|
11
|
+
source_owner: SAP SE
|
|
12
|
+
topic_supported: AI Core service overview, supported use cases, service plan tiers (standard, extended), BTP subaccount integration
|
|
13
|
+
why_needed: Establishes which AI Core service plan features are available; service plan determines available governance controls
|
|
14
|
+
evidence_level: primary
|
|
15
|
+
last_verified: 2026-06-19
|
|
16
|
+
|
|
17
|
+
- SAP AI Core Resource Groups
|
|
18
|
+
https://help.sap.com/docs/sap-ai-core/sap-ai-core-service-guide/resource-groups
|
|
19
|
+
source_owner: SAP SE
|
|
20
|
+
topic_supported: Resource group creation, isolation scope, assignment of model deployments, vector stores, and grounding pipelines to resource groups; cross-resource-group access controls
|
|
21
|
+
why_needed: Resource group is the primary access control and isolation boundary for AI Core workloads; used to classify cross-resource-group access findings
|
|
22
|
+
evidence_level: primary
|
|
23
|
+
last_verified: 2026-06-19
|
|
24
|
+
|
|
25
|
+
- SAP AI Core Security and Data Protection
|
|
26
|
+
https://help.sap.com/docs/sap-ai-core/sap-ai-core-service-guide/security-and-data-protection
|
|
27
|
+
source_owner: SAP SE
|
|
28
|
+
topic_supported: Data residency, encryption at rest and in transit, tenant isolation, AI Core security posture, responsible AI use policy
|
|
29
|
+
why_needed: Authoritative source for data residency requirements and security baseline; used to classify data protection gaps
|
|
30
|
+
evidence_level: primary
|
|
31
|
+
last_verified: 2026-06-19
|
|
32
|
+
|
|
33
|
+
## AI Launchpad — roles and authorizations
|
|
34
|
+
|
|
35
|
+
- What is SAP AI Launchpad
|
|
36
|
+
https://help.sap.com/docs/ai-launchpad/sap-ai-launchpad/what-is-sap-ai-launchpad
|
|
37
|
+
source_owner: SAP SE
|
|
38
|
+
topic_supported: AI Launchpad overview, supported AI Core connection types, user interface for managing AI workloads
|
|
39
|
+
why_needed: Establishes AI Launchpad scope and integration with AI Core; context for role-based access review
|
|
40
|
+
evidence_level: primary
|
|
41
|
+
last_verified: 2026-06-19
|
|
42
|
+
|
|
43
|
+
- SAP AI Launchpad Roles and Authorizations
|
|
44
|
+
https://help.sap.com/docs/ai-launchpad/sap-ai-launchpad/roles-and-authorizations
|
|
45
|
+
source_owner: SAP SE
|
|
46
|
+
topic_supported: aicore_admin, aicore_viewer, genai_manager, genai_viewer role definitions; separation of duties; role collection assignment in BTP
|
|
47
|
+
why_needed: Defines the role taxonomy for AI Launchpad access governance; used to classify overprivileged role assignments and missing separation of duties
|
|
48
|
+
evidence_level: primary
|
|
49
|
+
last_verified: 2026-06-19
|
|
50
|
+
|
|
51
|
+
## Generative AI Hub — orchestration and governance
|
|
52
|
+
|
|
53
|
+
- Generative AI Hub in SAP AI Core
|
|
54
|
+
https://help.sap.com/docs/sap-ai-core/generative-ai/generative-ai-hub-in-sap-ai-core
|
|
55
|
+
source_owner: SAP SE
|
|
56
|
+
topic_supported: Generative AI Hub capabilities, supported models, model access via orchestration service, enterprise governance runtime
|
|
57
|
+
why_needed: Primary overview for Generative AI Hub scope; confirms enterprise governance is the intended operating posture
|
|
58
|
+
evidence_level: primary
|
|
59
|
+
last_verified: 2026-06-19
|
|
60
|
+
|
|
61
|
+
- SAP Generative AI Hub Orchestration
|
|
62
|
+
https://help.sap.com/docs/sap-ai-core/generative-ai/orchestration
|
|
63
|
+
source_owner: SAP SE
|
|
64
|
+
topic_supported: Orchestration service configuration, llm_module_config, templating_module_config, filtering_module_config (content safety), grounding_module_config, prompt template variables, model version selection
|
|
65
|
+
why_needed: Authoritative source for orchestration configuration structure; used to classify missing content safety filters and unguarded template variables
|
|
66
|
+
evidence_level: primary
|
|
67
|
+
last_verified: 2026-06-19
|
|
68
|
+
|
|
69
|
+
## Generative AI Hub — document grounding
|
|
70
|
+
|
|
71
|
+
- SAP Generative AI Hub Document Grounding
|
|
72
|
+
https://help.sap.com/docs/sap-ai-core/generative-ai/document-grounding
|
|
73
|
+
source_owner: SAP SE
|
|
74
|
+
topic_supported: Document Grounding Service configuration, vector store creation and scope, data repository types (vector, SharePoint), grounding pipeline ingestion, metadata handling, retrieval configuration
|
|
75
|
+
why_needed: Defines grounding pipeline architecture; used to classify data classification gaps before ingestion and cross-tenant vector store isolation findings
|
|
76
|
+
evidence_level: primary
|
|
77
|
+
last_verified: 2026-06-19
|
|
78
|
+
|
|
79
|
+
## Generative AI Hub — data protection and privacy
|
|
80
|
+
|
|
81
|
+
- SAP Generative AI Hub Data Protection and Privacy
|
|
82
|
+
https://help.sap.com/docs/sap-ai-core/generative-ai/data-protection-and-privacy
|
|
83
|
+
source_owner: SAP SE
|
|
84
|
+
topic_supported: Prompt data handling, data residency for AI-processed data, personal data in prompts and grounding documents, prompt logging behavior, data retention, right-to-erasure considerations for vectorized data
|
|
85
|
+
why_needed: Authoritative source for data privacy requirements for Generative AI Hub workloads; used to classify prompt logging and embedding privacy findings
|
|
86
|
+
evidence_level: primary
|
|
87
|
+
last_verified: 2026-06-19
|
|
88
|
+
|
|
89
|
+
## Grounding rule
|
|
90
|
+
|
|
91
|
+
SAP Help Portal documentation describes design intent, supported governance controls, and data protection posture for standard AI Core service plans. It does not prove which controls are active in a specific customer's AI Core instance, what data has been ingested into their vector stores, or how their orchestration pipelines are currently deployed. Users must supply orchestration configuration files, role assignment descriptions, grounding pipeline design, or written descriptions for concrete governance assessment.
|
|
@@ -0,0 +1,39 @@
|
|
|
1
|
+
# Safety checklist — SAP AI Core Generative AI Hub Governance
|
|
2
|
+
|
|
3
|
+
Use before making any finding or recommendation, especially for data privacy and prompt-injection risk findings.
|
|
4
|
+
|
|
5
|
+
## Non-negotiables
|
|
6
|
+
|
|
7
|
+
- Do not access, connect to, or request access to any live AI Core deployment, Generative AI Hub orchestration endpoint, vector store, or AI Launchpad session.
|
|
8
|
+
- Do not accept or request AI Core service keys, OAuth tokens, resource group credentials, or BTP service binding secrets.
|
|
9
|
+
- Do not accept or request actual prompt logs, user message history, inference output from production deployments, or grounding document contents. Request only descriptions of data classification and pipeline configuration.
|
|
10
|
+
- Do not accept vector store embeddings or raw grounding data. If the user attempts to share this, redirect them to provide a description of the data types and classification status instead.
|
|
11
|
+
- Do not recommend disabling content safety filters (`filtering_module_config`) as a performance optimization. Missing input or output content safety filters is a high or critical finding.
|
|
12
|
+
- Do not recommend storing prompt logs in a region different from where personal data was collected without advising the user to review applicable data transfer regulations (GDPR Chapter V, local laws).
|
|
13
|
+
- Do not validate data residency compliance from memory alone. Direct the user to verify against the current SAP AI Core data residency documentation for their contracted region.
|
|
14
|
+
- Do not conflate AI Core resource group isolation with BTP subaccount tenant isolation. Resource groups provide workload isolation within a subaccount; cross-tenant isolation requires subaccount-level separation.
|
|
15
|
+
|
|
16
|
+
## What people get wrong
|
|
17
|
+
|
|
18
|
+
- **Assuming content safety is on by default**: SAP Generative AI Hub orchestration does not enable content safety filters by default. `filtering_module_config` must be explicitly added to the orchestration configuration for both input and output paths.
|
|
19
|
+
- **Treating grounding output as trusted**: Grounding documents retrieved from a vector store may contain injected content if the ingestion pipeline accepted untrusted external documents. Injected content in `{{ ?groundingOutput }}` can manipulate model behavior (indirect prompt injection). Grounding output is not automatically safe to inject into system messages.
|
|
20
|
+
- **Overlooking right-to-erasure for embeddings**: Once personal data is vectorized and stored in a vector store, deleting the source document does not delete the embedding. A documented erasure procedure for the embedding itself is required to comply with right-to-erasure requests.
|
|
21
|
+
- **Assuming resource group isolation = tenant isolation**: Multiple tenants sharing a single BTP subaccount with different resource groups are not fully isolated. Subaccount-level isolation is needed for full tenant separation of AI workloads.
|
|
22
|
+
- **Ignoring metadata exposure**: When `metadata_params` is configured to return `source` and `webUrl` from grounding retrieval, this information is visible in the orchestration response. Internal URLs, document IDs, or access-controlled source identifiers exposed in responses may constitute an information disclosure finding.
|
|
23
|
+
- **Floating model versions in auditable workflows**: Using `model_version: "latest"` in an orchestration configuration means model behavior can change without notice. For any workflow where AI outputs are used in auditable business decisions, the model version must be pinned and changes must go through a change management process.
|
|
24
|
+
|
|
25
|
+
## When to push back
|
|
26
|
+
|
|
27
|
+
- Push back when the user asks to review actual prompt logs or grounding document contents — request a description of the data types and classification status instead.
|
|
28
|
+
- Push back when the user proposes to disable content safety filters to improve response latency on customer-facing pipelines.
|
|
29
|
+
- Push back when the user proposes to use a single shared resource group for multiple application teams with different data access levels.
|
|
30
|
+
- Push back when the user attempts to ingest personal data into a vector store without a documented erasure procedure.
|
|
31
|
+
- Push back when the request requires live AI Core API access or production deployment inspection — this skill is advisory only.
|
|
32
|
+
- Push back when the user proposes logging prompts containing personal data without a documented retention policy and legal basis.
|
|
33
|
+
|
|
34
|
+
## Evidence labels
|
|
35
|
+
|
|
36
|
+
- `documentation-based` — grounded in official SAP AI Core, AI Launchpad, or Generative AI Hub documentation (help.sap.com)
|
|
37
|
+
- `user-provided evidence` — orchestration configuration files, role assignment descriptions, grounding pipeline design, data classification documentation, or written descriptions provided by the user
|
|
38
|
+
- `context7-supplementary` — SAP Generative AI Hub orchestration configuration patterns (content safety filter structure, grounding module config) sourced from Context7 (supplementary to official SAP docs)
|
|
39
|
+
- `inference` — derived reasoning not directly confirmed; must always be labeled as such
|
|
@@ -0,0 +1,75 @@
|
|
|
1
|
+
# Workflow and output contract — SAP AI Core Generative AI Hub Governance
|
|
2
|
+
|
|
3
|
+
Use this reference for all classification, severity assignment, and output formatting.
|
|
4
|
+
|
|
5
|
+
## Governance domain taxonomy
|
|
6
|
+
|
|
7
|
+
| Domain | Scope |
|
|
8
|
+
|--------|-------|
|
|
9
|
+
| `Model Access` | Resource group isolation, AI API service key scope, model deployment access, separation of duties between aicore_admin/genai_manager/genai_viewer roles |
|
|
10
|
+
| `Data Privacy` | Classification of grounding data sources, personal data in prompts and embeddings, embedding storage location, data residency compliance, right-to-erasure for vectorized data |
|
|
11
|
+
| `Prompt Injection Risk` | Unguarded template variables in orchestration configs, system-prompt integrity, input/output content safety filter coverage, grounding output sanitization |
|
|
12
|
+
| `Grounding Data` | Data classification before ingestion, cross-resource-group vector store sharing, sensitive data in shared vector stores, metadata exposure in retrieval results |
|
|
13
|
+
| `Prompt Logging` | Prompt logging enablement state, retention period, access controls on log storage, compliance with data residency for logged prompts containing personal data |
|
|
14
|
+
| `Auditability` | Model version pinning, grounding source attribution in responses, audit log completeness for AI-assisted business decisions, explainability documentation |
|
|
15
|
+
|
|
16
|
+
## Severity classification
|
|
17
|
+
|
|
18
|
+
| Severity | Meaning | Examples |
|
|
19
|
+
|----------|---------|---------|
|
|
20
|
+
| `critical` | Regulatory breach, data exfiltration, or security bypass risk | Personal data ingested into a shared cross-tenant vector store with no isolation; orchestration endpoint accessible without authentication; prompt logs containing personal data stored outside the contracted data region |
|
|
21
|
+
| `high` | Governance control gap with material privacy or security impact | No content safety filters on input or output for a customer-facing orchestration pipeline; confidential business data in grounding documents with no access control on the vector store; `aicore_admin` role granted to end-users without separation of duties |
|
|
22
|
+
| `medium` | Audit or compliance gap | Model version not pinned (`latest` alias used) for auditable AI-assisted decisions; prompt logging enabled with no documented retention limit; no grounding source attribution in orchestration output for compliance-relevant responses |
|
|
23
|
+
| `low` | Best practice deviation | Missing metadata classification on grounding documents (even for non-personal data); no documented model change approval process |
|
|
24
|
+
|
|
25
|
+
## Common finding patterns
|
|
26
|
+
|
|
27
|
+
### Model Access
|
|
28
|
+
- `aicore_admin` role assigned to the same user who operates grounding pipelines (high — violates separation of duties)
|
|
29
|
+
- AI API service key with `global` scope instead of resource-group-scoped key (high — over-permissioned key)
|
|
30
|
+
- Multiple application teams sharing a single resource group with no isolation (high)
|
|
31
|
+
|
|
32
|
+
### Prompt Injection Risk
|
|
33
|
+
- Orchestration configuration with no `filtering_module_config` on the input path (high — prompt injection unfiltered)
|
|
34
|
+
- Orchestration configuration with no `filtering_module_config` on the output path (high — harmful model output unfiltered)
|
|
35
|
+
- Prompt template containing `{{ ?userInput }}` injected directly into system message without sanitization (high)
|
|
36
|
+
- Grounding output (`{{ ?groundingOutput }}`) injected into prompt without content check (medium — indirect prompt injection via malicious grounding document)
|
|
37
|
+
- Content safety thresholds set to maximum permissiveness (0 = allow) for all categories (high)
|
|
38
|
+
|
|
39
|
+
### Grounding Data
|
|
40
|
+
- Documents ingested into vector store without prior data classification review (high if organization handles personal or confidential data)
|
|
41
|
+
- Vector store shared across resource groups or tenants without access control review (critical if different tenants)
|
|
42
|
+
- Employee or customer PII present in grounding documents (critical — right-to-erasure obligations for vectorized data)
|
|
43
|
+
- `metadata_params` exposing internal URLs or source identifiers to end-user output without review (medium)
|
|
44
|
+
|
|
45
|
+
### Prompt Logging
|
|
46
|
+
- Prompt logging enabled for a pipeline where end-user inputs may contain personal data, with no retention policy documented (medium to high depending on regulation)
|
|
47
|
+
- Prompt logs stored in a data region different from where the personal data was originally collected (critical if GDPR cross-border transfer rules apply)
|
|
48
|
+
- No role restriction on who can read prompt logs (high)
|
|
49
|
+
|
|
50
|
+
### Auditability
|
|
51
|
+
- Model version set to `latest` or floating alias for a pipeline that produces audit-relevant business output (medium)
|
|
52
|
+
- No grounding source citation in orchestration response for compliance-relevant use case (medium)
|
|
53
|
+
- No audit log entry for AI-assisted decisions that affect individual users (high for regulated industries)
|
|
54
|
+
|
|
55
|
+
## Workflow
|
|
56
|
+
|
|
57
|
+
1. **Receive artifacts** — orchestration configuration files, role assignment descriptions, resource group layouts, grounding pipeline design, data classification documentation, or user descriptions.
|
|
58
|
+
2. **Classify each finding** by governance domain above.
|
|
59
|
+
3. **Assign severity** (critical / high / medium / low).
|
|
60
|
+
4. **Identify evidence level** (documentation-based / user-provided evidence / context7-supplementary / inference).
|
|
61
|
+
5. **Recommend specific governance control** — content safety filter addition, data classification step, log access restriction, model version pin, erasure procedure.
|
|
62
|
+
6. **Prioritize** — critical and high severity first; data privacy before auditability; prompt injection risk before logging.
|
|
63
|
+
7. **Return output** per the output contract below.
|
|
64
|
+
|
|
65
|
+
## Output contract
|
|
66
|
+
|
|
67
|
+
Return:
|
|
68
|
+
|
|
69
|
+
1. Artifacts reviewed and governance domains in scope
|
|
70
|
+
2. Finding(s) per domain with severity and evidence label
|
|
71
|
+
3. Specific governance control recommendation per finding
|
|
72
|
+
4. Data privacy summary — whether personal data was identified in grounding pipeline scope and what protections are in place
|
|
73
|
+
5. Content safety coverage summary — input and output filter status per orchestration pipeline reviewed
|
|
74
|
+
6. Prioritized remediation sequence (critical → high → medium → low)
|
|
75
|
+
7. Escalation trigger if live AI Core access, prompt log inspection, or vector store query is required to complete the governance assessment — do not proceed with live access
|