@raishin/vanguard-frontier-agentic 2.11.0 → 2.13.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (758) hide show
  1. package/.claude-plugin/marketplace.json +2 -2
  2. package/.claude-plugin/plugin.json +41 -1
  3. package/.cursor-plugin/plugin.json +41 -1
  4. package/.github/plugin/marketplace.json +1 -1
  5. package/README.md +11 -11
  6. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/AGENT.md +57 -0
  7. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/claude-code.agent.md +37 -0
  8. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/codex.toml +30 -0
  9. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/copilot.agent.md +31 -0
  10. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/cursor.agent.md +29 -0
  11. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/gemini.agent.md +29 -0
  12. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  13. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  14. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/metadata.json +46 -0
  15. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/AGENT.md +58 -0
  16. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/claude-code.agent.md +38 -0
  17. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/codex.toml +31 -0
  18. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/copilot.agent.md +32 -0
  19. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/cursor.agent.md +30 -0
  20. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/gemini.agent.md +30 -0
  21. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  22. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/kiro-ide.agent.md +30 -0
  23. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/metadata.json +40 -0
  24. package/agents/sap/sap-analytics-cloud-planning-governance-agent/AGENT.md +58 -0
  25. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/claude-code.agent.md +37 -0
  26. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/codex.toml +30 -0
  27. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/copilot.agent.md +31 -0
  28. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/cursor.agent.md +29 -0
  29. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/gemini.agent.md +29 -0
  30. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/kiro-cli.agent.json +1 -0
  31. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/kiro-ide.agent.md +29 -0
  32. package/agents/sap/sap-analytics-cloud-planning-governance-agent/metadata.json +45 -0
  33. package/agents/sap/sap-audit-evidence-packager-agent/AGENT.md +58 -0
  34. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/claude-code.agent.md +38 -0
  35. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/codex.toml +30 -0
  36. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/copilot.agent.md +33 -0
  37. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/cursor.agent.md +31 -0
  38. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/gemini.agent.md +31 -0
  39. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/kiro-cli.agent.json +1 -0
  40. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/kiro-ide.agent.md +31 -0
  41. package/agents/sap/sap-audit-evidence-packager-agent/metadata.json +45 -0
  42. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/AGENT.md +58 -0
  43. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/claude-code.agent.md +37 -0
  44. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/codex.toml +30 -0
  45. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/copilot.agent.md +31 -0
  46. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/cursor.agent.md +29 -0
  47. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/gemini.agent.md +29 -0
  48. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  49. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  50. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/metadata.json +44 -0
  51. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/AGENT.md +70 -0
  52. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/claude-code.agent.md +51 -0
  53. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/codex.toml +42 -0
  54. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/copilot.agent.md +36 -0
  55. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/cursor.agent.md +33 -0
  56. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/gemini.agent.md +33 -0
  57. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/kiro-cli.agent.json +1 -0
  58. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/kiro-ide.agent.md +33 -0
  59. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/metadata.json +41 -0
  60. package/agents/sap/sap-cap-architecture-reviewer-agent/AGENT.md +57 -0
  61. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/claude-code.agent.md +37 -0
  62. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/codex.toml +30 -0
  63. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/copilot.agent.md +31 -0
  64. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/cursor.agent.md +29 -0
  65. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/gemini.agent.md +29 -0
  66. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  67. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  68. package/agents/sap/sap-cap-architecture-reviewer-agent/metadata.json +42 -0
  69. package/agents/sap/sap-clean-core-debt-reviewer-agent/AGENT.md +58 -0
  70. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/claude-code.agent.md +38 -0
  71. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/codex.toml +31 -0
  72. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/copilot.agent.md +31 -0
  73. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/cursor.agent.md +29 -0
  74. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/gemini.agent.md +29 -0
  75. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  76. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  77. package/agents/sap/sap-clean-core-debt-reviewer-agent/metadata.json +45 -0
  78. package/agents/sap/sap-cloud-alm-sre-incident-agent/AGENT.md +59 -0
  79. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/claude-code.agent.md +38 -0
  80. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/codex.toml +30 -0
  81. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/copilot.agent.md +32 -0
  82. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/cursor.agent.md +30 -0
  83. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/gemini.agent.md +30 -0
  84. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/kiro-cli.agent.json +1 -0
  85. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/kiro-ide.agent.md +30 -0
  86. package/agents/sap/sap-cloud-alm-sre-incident-agent/metadata.json +42 -0
  87. package/agents/sap/sap-custom-code-remediation-reviewer-agent/AGENT.md +60 -0
  88. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/claude-code.agent.md +39 -0
  89. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/codex.toml +29 -0
  90. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/copilot.agent.md +31 -0
  91. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/cursor.agent.md +29 -0
  92. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/gemini.agent.md +29 -0
  93. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  94. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  95. package/agents/sap/sap-custom-code-remediation-reviewer-agent/metadata.json +45 -0
  96. package/agents/sap/sap-data-migration-cutover-readiness-agent/AGENT.md +67 -0
  97. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/claude-code.agent.md +46 -0
  98. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/codex.toml +30 -0
  99. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/copilot.agent.md +32 -0
  100. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/cursor.agent.md +30 -0
  101. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/gemini.agent.md +30 -0
  102. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/kiro-cli.agent.json +1 -0
  103. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/kiro-ide.agent.md +30 -0
  104. package/agents/sap/sap-data-migration-cutover-readiness-agent/metadata.json +44 -0
  105. package/agents/sap/sap-datasphere-data-product-architect-agent/AGENT.md +58 -0
  106. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/claude-code.agent.md +37 -0
  107. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/codex.toml +30 -0
  108. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/copilot.agent.md +31 -0
  109. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/cursor.agent.md +29 -0
  110. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/gemini.agent.md +29 -0
  111. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/kiro-cli.agent.json +1 -0
  112. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/kiro-ide.agent.md +29 -0
  113. package/agents/sap/sap-datasphere-data-product-architect-agent/metadata.json +45 -0
  114. package/agents/sap/sap-ewm-tm-logistics-execution-agent/AGENT.md +59 -0
  115. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/claude-code.agent.md +38 -0
  116. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/codex.toml +30 -0
  117. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/copilot.agent.md +32 -0
  118. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/cursor.agent.md +30 -0
  119. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/gemini.agent.md +30 -0
  120. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/kiro-cli.agent.json +1 -0
  121. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/kiro-ide.agent.md +30 -0
  122. package/agents/sap/sap-ewm-tm-logistics-execution-agent/metadata.json +44 -0
  123. package/agents/sap/sap-finance-fico-controls-agent/AGENT.md +59 -0
  124. package/agents/sap/sap-finance-fico-controls-agent/harnesses/claude-code.agent.md +38 -0
  125. package/agents/sap/sap-finance-fico-controls-agent/harnesses/codex.toml +30 -0
  126. package/agents/sap/sap-finance-fico-controls-agent/harnesses/copilot.agent.md +32 -0
  127. package/agents/sap/sap-finance-fico-controls-agent/harnesses/cursor.agent.md +30 -0
  128. package/agents/sap/sap-finance-fico-controls-agent/harnesses/gemini.agent.md +30 -0
  129. package/agents/sap/sap-finance-fico-controls-agent/harnesses/kiro-cli.agent.json +1 -0
  130. package/agents/sap/sap-finance-fico-controls-agent/harnesses/kiro-ide.agent.md +30 -0
  131. package/agents/sap/sap-finance-fico-controls-agent/metadata.json +45 -0
  132. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/AGENT.md +58 -0
  133. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/claude-code.agent.md +37 -0
  134. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/codex.toml +29 -0
  135. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/copilot.agent.md +32 -0
  136. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/cursor.agent.md +30 -0
  137. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/gemini.agent.md +30 -0
  138. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  139. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/kiro-ide.agent.md +30 -0
  140. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/metadata.json +39 -0
  141. package/agents/sap/sap-guarded-transport-import-operator-agent/AGENT.md +70 -0
  142. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/claude-code.agent.md +51 -0
  143. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/codex.toml +41 -0
  144. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/copilot.agent.md +36 -0
  145. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/cursor.agent.md +33 -0
  146. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/gemini.agent.md +33 -0
  147. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/kiro-cli.agent.json +1 -0
  148. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/kiro-ide.agent.md +33 -0
  149. package/agents/sap/sap-guarded-transport-import-operator-agent/metadata.json +45 -0
  150. package/agents/sap/sap-hana-cloud-performance-cost-agent/AGENT.md +58 -0
  151. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/claude-code.agent.md +37 -0
  152. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/codex.toml +30 -0
  153. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/copilot.agent.md +31 -0
  154. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/cursor.agent.md +29 -0
  155. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/gemini.agent.md +29 -0
  156. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/kiro-cli.agent.json +1 -0
  157. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/kiro-ide.agent.md +29 -0
  158. package/agents/sap/sap-hana-cloud-performance-cost-agent/metadata.json +43 -0
  159. package/agents/sap/sap-hypercare-incident-commander-agent/AGENT.md +59 -0
  160. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/claude-code.agent.md +38 -0
  161. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/codex.toml +30 -0
  162. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/copilot.agent.md +32 -0
  163. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/cursor.agent.md +30 -0
  164. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/gemini.agent.md +30 -0
  165. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/kiro-cli.agent.json +1 -0
  166. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/kiro-ide.agent.md +30 -0
  167. package/agents/sap/sap-hypercare-incident-commander-agent/metadata.json +42 -0
  168. package/agents/sap/sap-integration-flow-guarded-operator-agent/AGENT.md +70 -0
  169. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/claude-code.agent.md +51 -0
  170. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/codex.toml +41 -0
  171. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/copilot.agent.md +36 -0
  172. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/cursor.agent.md +33 -0
  173. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/gemini.agent.md +33 -0
  174. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/kiro-cli.agent.json +1 -0
  175. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/kiro-ide.agent.md +33 -0
  176. package/agents/sap/sap-integration-flow-guarded-operator-agent/metadata.json +41 -0
  177. package/agents/sap/sap-integration-suite-reviewer-agent/AGENT.md +57 -0
  178. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/claude-code.agent.md +37 -0
  179. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/codex.toml +30 -0
  180. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/copilot.agent.md +31 -0
  181. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/cursor.agent.md +29 -0
  182. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/gemini.agent.md +29 -0
  183. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  184. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  185. package/agents/sap/sap-integration-suite-reviewer-agent/metadata.json +43 -0
  186. package/agents/sap/sap-joule-governance-adoption-agent/AGENT.md +59 -0
  187. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/claude-code.agent.md +38 -0
  188. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/codex.toml +30 -0
  189. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/copilot.agent.md +32 -0
  190. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/cursor.agent.md +30 -0
  191. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/gemini.agent.md +30 -0
  192. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/kiro-cli.agent.json +1 -0
  193. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/kiro-ide.agent.md +30 -0
  194. package/agents/sap/sap-joule-governance-adoption-agent/metadata.json +42 -0
  195. package/agents/sap/sap-license-btp-consumption-finops-agent/AGENT.md +58 -0
  196. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/claude-code.agent.md +37 -0
  197. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/codex.toml +30 -0
  198. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/copilot.agent.md +31 -0
  199. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/cursor.agent.md +29 -0
  200. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/gemini.agent.md +29 -0
  201. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/kiro-cli.agent.json +1 -0
  202. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/kiro-ide.agent.md +29 -0
  203. package/agents/sap/sap-license-btp-consumption-finops-agent/metadata.json +42 -0
  204. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/AGENT.md +60 -0
  205. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/claude-code.agent.md +40 -0
  206. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/codex.toml +31 -0
  207. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/copilot.agent.md +32 -0
  208. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/cursor.agent.md +30 -0
  209. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/gemini.agent.md +30 -0
  210. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/kiro-cli.agent.json +1 -0
  211. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/kiro-ide.agent.md +30 -0
  212. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/metadata.json +39 -0
  213. package/agents/sap/sap-live-readonly-landscape-discovery-agent/AGENT.md +60 -0
  214. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/claude-code.agent.md +40 -0
  215. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/codex.toml +31 -0
  216. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/copilot.agent.md +32 -0
  217. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/cursor.agent.md +30 -0
  218. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/gemini.agent.md +30 -0
  219. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/kiro-cli.agent.json +1 -0
  220. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/kiro-ide.agent.md +30 -0
  221. package/agents/sap/sap-live-readonly-landscape-discovery-agent/metadata.json +39 -0
  222. package/agents/sap/sap-maestro-agent/AGENT.md +60 -0
  223. package/agents/sap/sap-maestro-agent/harnesses/claude-code.agent.md +36 -0
  224. package/agents/sap/sap-maestro-agent/harnesses/codex.toml +34 -0
  225. package/agents/sap/sap-maestro-agent/harnesses/copilot.agent.md +32 -0
  226. package/agents/sap/sap-maestro-agent/harnesses/cursor.agent.md +30 -0
  227. package/agents/sap/sap-maestro-agent/harnesses/gemini.agent.md +30 -0
  228. package/agents/sap/sap-maestro-agent/harnesses/kiro-cli.agent.json +1 -0
  229. package/agents/sap/sap-maestro-agent/harnesses/kiro-ide.agent.md +30 -0
  230. package/agents/sap/sap-maestro-agent/metadata.json +39 -0
  231. package/agents/sap/sap-manufacturing-execution-risk-agent/AGENT.md +59 -0
  232. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/claude-code.agent.md +38 -0
  233. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/codex.toml +30 -0
  234. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/copilot.agent.md +32 -0
  235. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/cursor.agent.md +30 -0
  236. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/gemini.agent.md +30 -0
  237. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/kiro-cli.agent.json +1 -0
  238. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/kiro-ide.agent.md +30 -0
  239. package/agents/sap/sap-manufacturing-execution-risk-agent/metadata.json +44 -0
  240. package/agents/sap/sap-mdg-master-data-quality-agent/AGENT.md +59 -0
  241. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/claude-code.agent.md +38 -0
  242. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/codex.toml +30 -0
  243. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/copilot.agent.md +32 -0
  244. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/cursor.agent.md +30 -0
  245. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/gemini.agent.md +30 -0
  246. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/kiro-cli.agent.json +1 -0
  247. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/kiro-ide.agent.md +30 -0
  248. package/agents/sap/sap-mdg-master-data-quality-agent/metadata.json +45 -0
  249. package/agents/sap/sap-order-to-cash-agent/AGENT.md +59 -0
  250. package/agents/sap/sap-order-to-cash-agent/harnesses/claude-code.agent.md +38 -0
  251. package/agents/sap/sap-order-to-cash-agent/harnesses/codex.toml +30 -0
  252. package/agents/sap/sap-order-to-cash-agent/harnesses/copilot.agent.md +32 -0
  253. package/agents/sap/sap-order-to-cash-agent/harnesses/cursor.agent.md +30 -0
  254. package/agents/sap/sap-order-to-cash-agent/harnesses/gemini.agent.md +30 -0
  255. package/agents/sap/sap-order-to-cash-agent/harnesses/kiro-cli.agent.json +1 -0
  256. package/agents/sap/sap-order-to-cash-agent/harnesses/kiro-ide.agent.md +30 -0
  257. package/agents/sap/sap-order-to-cash-agent/metadata.json +44 -0
  258. package/agents/sap/sap-procurement-ariba-value-leakage-agent/AGENT.md +59 -0
  259. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/claude-code.agent.md +38 -0
  260. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/codex.toml +30 -0
  261. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/copilot.agent.md +32 -0
  262. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/cursor.agent.md +30 -0
  263. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/gemini.agent.md +30 -0
  264. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/kiro-cli.agent.json +1 -0
  265. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/kiro-ide.agent.md +30 -0
  266. package/agents/sap/sap-procurement-ariba-value-leakage-agent/metadata.json +44 -0
  267. package/agents/sap/sap-release-change-collision-agent/AGENT.md +59 -0
  268. package/agents/sap/sap-release-change-collision-agent/harnesses/claude-code.agent.md +38 -0
  269. package/agents/sap/sap-release-change-collision-agent/harnesses/codex.toml +30 -0
  270. package/agents/sap/sap-release-change-collision-agent/harnesses/copilot.agent.md +32 -0
  271. package/agents/sap/sap-release-change-collision-agent/harnesses/cursor.agent.md +30 -0
  272. package/agents/sap/sap-release-change-collision-agent/harnesses/gemini.agent.md +30 -0
  273. package/agents/sap/sap-release-change-collision-agent/harnesses/kiro-cli.agent.json +1 -0
  274. package/agents/sap/sap-release-change-collision-agent/harnesses/kiro-ide.agent.md +30 -0
  275. package/agents/sap/sap-release-change-collision-agent/metadata.json +42 -0
  276. package/agents/sap/sap-rise-sla-vendor-risk-agent/AGENT.md +58 -0
  277. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/claude-code.agent.md +37 -0
  278. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/codex.toml +30 -0
  279. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/copilot.agent.md +31 -0
  280. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/cursor.agent.md +29 -0
  281. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/gemini.agent.md +29 -0
  282. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/kiro-cli.agent.json +1 -0
  283. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/kiro-ide.agent.md +29 -0
  284. package/agents/sap/sap-rise-sla-vendor-risk-agent/metadata.json +42 -0
  285. package/agents/sap/sap-role-assignment-guarded-operator-agent/AGENT.md +73 -0
  286. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/claude-code.agent.md +54 -0
  287. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/codex.toml +43 -0
  288. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/copilot.agent.md +38 -0
  289. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/cursor.agent.md +35 -0
  290. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/gemini.agent.md +35 -0
  291. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/kiro-cli.agent.json +1 -0
  292. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/kiro-ide.agent.md +35 -0
  293. package/agents/sap/sap-role-assignment-guarded-operator-agent/metadata.json +41 -0
  294. package/agents/sap/sap-s4hana-transformation-architect-agent/AGENT.md +62 -0
  295. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/claude-code.agent.md +41 -0
  296. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/codex.toml +29 -0
  297. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/copilot.agent.md +31 -0
  298. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/cursor.agent.md +29 -0
  299. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/gemini.agent.md +29 -0
  300. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/kiro-cli.agent.json +1 -0
  301. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/kiro-ide.agent.md +29 -0
  302. package/agents/sap/sap-s4hana-transformation-architect-agent/metadata.json +44 -0
  303. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/AGENT.md +59 -0
  304. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/claude-code.agent.md +38 -0
  305. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/codex.toml +30 -0
  306. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/copilot.agent.md +32 -0
  307. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/cursor.agent.md +30 -0
  308. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/gemini.agent.md +30 -0
  309. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  310. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/kiro-ide.agent.md +30 -0
  311. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/metadata.json +44 -0
  312. package/agents/sap/sap-signavio-process-mining-value-agent/AGENT.md +59 -0
  313. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/claude-code.agent.md +38 -0
  314. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/codex.toml +30 -0
  315. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/copilot.agent.md +32 -0
  316. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/cursor.agent.md +30 -0
  317. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/gemini.agent.md +30 -0
  318. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/kiro-cli.agent.json +1 -0
  319. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/kiro-ide.agent.md +30 -0
  320. package/agents/sap/sap-signavio-process-mining-value-agent/metadata.json +44 -0
  321. package/agents/sap/sap-successfactors-hr-process-risk-agent/AGENT.md +59 -0
  322. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/claude-code.agent.md +38 -0
  323. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/codex.toml +30 -0
  324. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/copilot.agent.md +32 -0
  325. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/cursor.agent.md +30 -0
  326. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/gemini.agent.md +30 -0
  327. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/kiro-cli.agent.json +1 -0
  328. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/kiro-ide.agent.md +30 -0
  329. package/agents/sap/sap-successfactors-hr-process-risk-agent/metadata.json +42 -0
  330. package/agents/sap/sap-supply-chain-ibp-resilience-agent/AGENT.md +59 -0
  331. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/claude-code.agent.md +38 -0
  332. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/codex.toml +30 -0
  333. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/copilot.agent.md +32 -0
  334. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/cursor.agent.md +30 -0
  335. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/gemini.agent.md +30 -0
  336. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/kiro-cli.agent.json +1 -0
  337. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/kiro-ide.agent.md +30 -0
  338. package/agents/sap/sap-supply-chain-ibp-resilience-agent/metadata.json +44 -0
  339. package/agents/sap/sap-testing-quality-gate-agent/AGENT.md +59 -0
  340. package/agents/sap/sap-testing-quality-gate-agent/harnesses/claude-code.agent.md +38 -0
  341. package/agents/sap/sap-testing-quality-gate-agent/harnesses/codex.toml +30 -0
  342. package/agents/sap/sap-testing-quality-gate-agent/harnesses/copilot.agent.md +32 -0
  343. package/agents/sap/sap-testing-quality-gate-agent/harnesses/cursor.agent.md +30 -0
  344. package/agents/sap/sap-testing-quality-gate-agent/harnesses/gemini.agent.md +30 -0
  345. package/agents/sap/sap-testing-quality-gate-agent/harnesses/kiro-cli.agent.json +1 -0
  346. package/agents/sap/sap-testing-quality-gate-agent/harnesses/kiro-ide.agent.md +30 -0
  347. package/agents/sap/sap-testing-quality-gate-agent/metadata.json +42 -0
  348. package/agents/sap/sap-transformation-portfolio-triage-agent/AGENT.md +58 -0
  349. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/claude-code.agent.md +37 -0
  350. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/codex.toml +30 -0
  351. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/copilot.agent.md +31 -0
  352. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/cursor.agent.md +29 -0
  353. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/gemini.agent.md +29 -0
  354. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/kiro-cli.agent.json +1 -0
  355. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/kiro-ide.agent.md +29 -0
  356. package/agents/sap/sap-transformation-portfolio-triage-agent/metadata.json +42 -0
  357. package/agents/sap/sap-treasury-cash-risk-agent/AGENT.md +59 -0
  358. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/claude-code.agent.md +38 -0
  359. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/codex.toml +30 -0
  360. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/copilot.agent.md +32 -0
  361. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/cursor.agent.md +30 -0
  362. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/gemini.agent.md +30 -0
  363. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/kiro-cli.agent.json +1 -0
  364. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/kiro-ide.agent.md +30 -0
  365. package/agents/sap/sap-treasury-cash-risk-agent/metadata.json +44 -0
  366. package/catalog/agents.json +1323 -0
  367. package/catalog/asset-integrity.json +2293 -43
  368. package/catalog/install-roles.json +94 -0
  369. package/catalog/skill-manifest.json +1770 -3
  370. package/catalog/skills.json +1912 -1
  371. package/package.json +1 -1
  372. package/plugins/cross-platform-agent-template/.codexignore +7 -0
  373. package/plugins/vanguard-frontier-agentic/.codex-plugin/plugin.json +1 -1
  374. package/plugins/vanguard-frontier-agentic/.codexignore +7 -0
  375. package/powers/README.md +3 -2
  376. package/powers/vanguard-sap/POWER.md +43 -0
  377. package/schemas/agent.schema.json +1 -0
  378. package/schemas/skill.schema.json +1 -0
  379. package/scripts/generate-docs-data.mjs +1 -1
  380. package/scripts/generate-kiro-powers.mjs +12 -0
  381. package/skills/claude/add-educational-comments/metadata.json +1 -1
  382. package/skills/sap/sap-abap-cloud-rap-review/SKILL.md +86 -0
  383. package/skills/sap/sap-abap-cloud-rap-review/agents/openai.yaml +11 -0
  384. package/skills/sap/sap-abap-cloud-rap-review/metadata.json +34 -0
  385. package/skills/sap/sap-abap-cloud-rap-review/references/context7-framework-docs.md +126 -0
  386. package/skills/sap/sap-abap-cloud-rap-review/references/official-sources.md +95 -0
  387. package/skills/sap/sap-abap-cloud-rap-review/references/safety-checklist.md +37 -0
  388. package/skills/sap/sap-abap-cloud-rap-review/references/workflow-and-output.md +76 -0
  389. package/skills/sap/sap-ai-core-generative-ai-hub-governance/SKILL.md +92 -0
  390. package/skills/sap/sap-ai-core-generative-ai-hub-governance/agents/openai.yaml +11 -0
  391. package/skills/sap/sap-ai-core-generative-ai-hub-governance/metadata.json +34 -0
  392. package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/context7-framework-docs.md +107 -0
  393. package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/official-sources.md +91 -0
  394. package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/safety-checklist.md +39 -0
  395. package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/workflow-and-output.md +75 -0
  396. package/skills/sap/sap-ai-governance-security-architecture-protocol/SKILL.md +168 -0
  397. package/skills/sap/sap-ai-governance-security-architecture-protocol/agents/openai.yaml +11 -0
  398. package/skills/sap/sap-ai-governance-security-architecture-protocol/metadata.json +35 -0
  399. package/skills/sap/sap-ai-governance-security-architecture-protocol/references/official-sources.md +99 -0
  400. package/skills/sap/sap-ai-governance-security-architecture-protocol/references/safety-checklist.md +38 -0
  401. package/skills/sap/sap-ai-governance-security-architecture-protocol/references/workflow-and-output.md +89 -0
  402. package/skills/sap/sap-analytics-cloud-planning-governance/SKILL.md +87 -0
  403. package/skills/sap/sap-analytics-cloud-planning-governance/agents/openai.yaml +11 -0
  404. package/skills/sap/sap-analytics-cloud-planning-governance/metadata.json +33 -0
  405. package/skills/sap/sap-analytics-cloud-planning-governance/references/official-sources.md +89 -0
  406. package/skills/sap/sap-analytics-cloud-planning-governance/references/safety-checklist.md +35 -0
  407. package/skills/sap/sap-analytics-cloud-planning-governance/references/workflow-and-output.md +70 -0
  408. package/skills/sap/sap-audit-evidence-packaging/SKILL.md +92 -0
  409. package/skills/sap/sap-audit-evidence-packaging/agents/openai.yaml +11 -0
  410. package/skills/sap/sap-audit-evidence-packaging/metadata.json +33 -0
  411. package/skills/sap/sap-audit-evidence-packaging/references/official-sources.md +92 -0
  412. package/skills/sap/sap-audit-evidence-packaging/references/safety-checklist.md +38 -0
  413. package/skills/sap/sap-audit-evidence-packaging/references/workflow-and-output.md +129 -0
  414. package/skills/sap/sap-btp-governance-review/SKILL.md +84 -0
  415. package/skills/sap/sap-btp-governance-review/agents/openai.yaml +11 -0
  416. package/skills/sap/sap-btp-governance-review/metadata.json +34 -0
  417. package/skills/sap/sap-btp-governance-review/references/official-sources.md +91 -0
  418. package/skills/sap/sap-btp-governance-review/references/safety-checklist.md +35 -0
  419. package/skills/sap/sap-btp-governance-review/references/workflow-and-output.md +66 -0
  420. package/skills/sap/sap-cap-architecture-review/SKILL.md +86 -0
  421. package/skills/sap/sap-cap-architecture-review/agents/openai.yaml +11 -0
  422. package/skills/sap/sap-cap-architecture-review/metadata.json +34 -0
  423. package/skills/sap/sap-cap-architecture-review/references/context7-framework-docs.md +89 -0
  424. package/skills/sap/sap-cap-architecture-review/references/official-sources.md +93 -0
  425. package/skills/sap/sap-cap-architecture-review/references/safety-checklist.md +37 -0
  426. package/skills/sap/sap-cap-architecture-review/references/workflow-and-output.md +74 -0
  427. package/skills/sap/sap-clean-core-debt-review/SKILL.md +84 -0
  428. package/skills/sap/sap-clean-core-debt-review/agents/openai.yaml +11 -0
  429. package/skills/sap/sap-clean-core-debt-review/metadata.json +33 -0
  430. package/skills/sap/sap-clean-core-debt-review/references/context7-framework-docs.md +56 -0
  431. package/skills/sap/sap-clean-core-debt-review/references/official-sources.md +75 -0
  432. package/skills/sap/sap-clean-core-debt-review/references/safety-checklist.md +36 -0
  433. package/skills/sap/sap-clean-core-debt-review/references/workflow-and-output.md +62 -0
  434. package/skills/sap/sap-cloud-alm-sre-incident-review/SKILL.md +83 -0
  435. package/skills/sap/sap-cloud-alm-sre-incident-review/agents/openai.yaml +11 -0
  436. package/skills/sap/sap-cloud-alm-sre-incident-review/metadata.json +33 -0
  437. package/skills/sap/sap-cloud-alm-sre-incident-review/references/official-sources.md +89 -0
  438. package/skills/sap/sap-cloud-alm-sre-incident-review/references/safety-checklist.md +39 -0
  439. package/skills/sap/sap-cloud-alm-sre-incident-review/references/workflow-and-output.md +88 -0
  440. package/skills/sap/sap-custom-code-remediation-review/SKILL.md +83 -0
  441. package/skills/sap/sap-custom-code-remediation-review/agents/openai.yaml +11 -0
  442. package/skills/sap/sap-custom-code-remediation-review/metadata.json +33 -0
  443. package/skills/sap/sap-custom-code-remediation-review/references/official-sources.md +85 -0
  444. package/skills/sap/sap-custom-code-remediation-review/references/safety-checklist.md +39 -0
  445. package/skills/sap/sap-custom-code-remediation-review/references/workflow-and-output.md +83 -0
  446. package/skills/sap/sap-data-migration-cutover-readiness/SKILL.md +90 -0
  447. package/skills/sap/sap-data-migration-cutover-readiness/agents/openai.yaml +14 -0
  448. package/skills/sap/sap-data-migration-cutover-readiness/metadata.json +32 -0
  449. package/skills/sap/sap-data-migration-cutover-readiness/references/official-sources.md +73 -0
  450. package/skills/sap/sap-data-migration-cutover-readiness/references/safety-checklist.md +51 -0
  451. package/skills/sap/sap-data-migration-cutover-readiness/references/workflow-and-output.md +85 -0
  452. package/skills/sap/sap-data-privacy-analytics-ai-protocol/SKILL.md +162 -0
  453. package/skills/sap/sap-data-privacy-analytics-ai-protocol/agents/openai.yaml +11 -0
  454. package/skills/sap/sap-data-privacy-analytics-ai-protocol/metadata.json +34 -0
  455. package/skills/sap/sap-data-privacy-analytics-ai-protocol/references/official-sources.md +93 -0
  456. package/skills/sap/sap-data-privacy-analytics-ai-protocol/references/safety-checklist.md +39 -0
  457. package/skills/sap/sap-data-privacy-analytics-ai-protocol/references/workflow-and-output.md +78 -0
  458. package/skills/sap/sap-datasphere-data-product-architecture/SKILL.md +86 -0
  459. package/skills/sap/sap-datasphere-data-product-architecture/agents/openai.yaml +11 -0
  460. package/skills/sap/sap-datasphere-data-product-architecture/metadata.json +33 -0
  461. package/skills/sap/sap-datasphere-data-product-architecture/references/official-sources.md +85 -0
  462. package/skills/sap/sap-datasphere-data-product-architecture/references/safety-checklist.md +35 -0
  463. package/skills/sap/sap-datasphere-data-product-architecture/references/workflow-and-output.md +70 -0
  464. package/skills/sap/sap-ewm-tm-logistics-execution-review/SKILL.md +90 -0
  465. package/skills/sap/sap-ewm-tm-logistics-execution-review/agents/openai.yaml +11 -0
  466. package/skills/sap/sap-ewm-tm-logistics-execution-review/metadata.json +32 -0
  467. package/skills/sap/sap-ewm-tm-logistics-execution-review/references/official-sources.md +79 -0
  468. package/skills/sap/sap-ewm-tm-logistics-execution-review/references/safety-checklist.md +37 -0
  469. package/skills/sap/sap-ewm-tm-logistics-execution-review/references/workflow-and-output.md +91 -0
  470. package/skills/sap/sap-finance-fico-controls-review/SKILL.md +91 -0
  471. package/skills/sap/sap-finance-fico-controls-review/agents/openai.yaml +11 -0
  472. package/skills/sap/sap-finance-fico-controls-review/metadata.json +33 -0
  473. package/skills/sap/sap-finance-fico-controls-review/references/official-sources.md +89 -0
  474. package/skills/sap/sap-finance-fico-controls-review/references/safety-checklist.md +38 -0
  475. package/skills/sap/sap-finance-fico-controls-review/references/workflow-and-output.md +88 -0
  476. package/skills/sap/sap-fiori-ui5-ux-review/SKILL.md +87 -0
  477. package/skills/sap/sap-fiori-ui5-ux-review/agents/openai.yaml +14 -0
  478. package/skills/sap/sap-fiori-ui5-ux-review/metadata.json +33 -0
  479. package/skills/sap/sap-fiori-ui5-ux-review/references/context7-framework-docs.md +128 -0
  480. package/skills/sap/sap-fiori-ui5-ux-review/references/official-sources.md +95 -0
  481. package/skills/sap/sap-fiori-ui5-ux-review/references/safety-checklist.md +37 -0
  482. package/skills/sap/sap-fiori-ui5-ux-review/references/workflow-and-output.md +96 -0
  483. package/skills/sap/sap-guarded-btp-entitlement-change/SKILL.md +156 -0
  484. package/skills/sap/sap-guarded-btp-entitlement-change/agents/openai.yaml +17 -0
  485. package/skills/sap/sap-guarded-btp-entitlement-change/metadata.json +33 -0
  486. package/skills/sap/sap-guarded-btp-entitlement-change/references/live-environment-access.md +93 -0
  487. package/skills/sap/sap-guarded-btp-entitlement-change/references/official-sources.md +75 -0
  488. package/skills/sap/sap-guarded-btp-entitlement-change/references/safety-checklist.md +57 -0
  489. package/skills/sap/sap-guarded-btp-entitlement-change/references/workflow-and-output.md +132 -0
  490. package/skills/sap/sap-guarded-integration-flow-change/SKILL.md +151 -0
  491. package/skills/sap/sap-guarded-integration-flow-change/agents/openai.yaml +17 -0
  492. package/skills/sap/sap-guarded-integration-flow-change/metadata.json +33 -0
  493. package/skills/sap/sap-guarded-integration-flow-change/references/live-environment-access.md +80 -0
  494. package/skills/sap/sap-guarded-integration-flow-change/references/official-sources.md +73 -0
  495. package/skills/sap/sap-guarded-integration-flow-change/references/safety-checklist.md +56 -0
  496. package/skills/sap/sap-guarded-integration-flow-change/references/workflow-and-output.md +122 -0
  497. package/skills/sap/sap-guarded-role-assignment/SKILL.md +159 -0
  498. package/skills/sap/sap-guarded-role-assignment/agents/openai.yaml +17 -0
  499. package/skills/sap/sap-guarded-role-assignment/metadata.json +33 -0
  500. package/skills/sap/sap-guarded-role-assignment/references/live-environment-access.md +93 -0
  501. package/skills/sap/sap-guarded-role-assignment/references/official-sources.md +73 -0
  502. package/skills/sap/sap-guarded-role-assignment/references/safety-checklist.md +57 -0
  503. package/skills/sap/sap-guarded-role-assignment/references/workflow-and-output.md +133 -0
  504. package/skills/sap/sap-guarded-transport-import/SKILL.md +144 -0
  505. package/skills/sap/sap-guarded-transport-import/agents/openai.yaml +14 -0
  506. package/skills/sap/sap-guarded-transport-import/metadata.json +34 -0
  507. package/skills/sap/sap-guarded-transport-import/references/live-environment-access.md +81 -0
  508. package/skills/sap/sap-guarded-transport-import/references/official-sources.md +79 -0
  509. package/skills/sap/sap-guarded-transport-import/references/safety-checklist.md +52 -0
  510. package/skills/sap/sap-guarded-transport-import/references/workflow-and-output.md +93 -0
  511. package/skills/sap/sap-hana-cloud-performance-cost/SKILL.md +87 -0
  512. package/skills/sap/sap-hana-cloud-performance-cost/agents/openai.yaml +11 -0
  513. package/skills/sap/sap-hana-cloud-performance-cost/metadata.json +33 -0
  514. package/skills/sap/sap-hana-cloud-performance-cost/references/context7-framework-docs.md +94 -0
  515. package/skills/sap/sap-hana-cloud-performance-cost/references/official-sources.md +83 -0
  516. package/skills/sap/sap-hana-cloud-performance-cost/references/safety-checklist.md +36 -0
  517. package/skills/sap/sap-hana-cloud-performance-cost/references/workflow-and-output.md +68 -0
  518. package/skills/sap/sap-hypercare-incident-commander-review/SKILL.md +93 -0
  519. package/skills/sap/sap-hypercare-incident-commander-review/agents/openai.yaml +14 -0
  520. package/skills/sap/sap-hypercare-incident-commander-review/metadata.json +31 -0
  521. package/skills/sap/sap-hypercare-incident-commander-review/references/official-sources.md +63 -0
  522. package/skills/sap/sap-hypercare-incident-commander-review/references/safety-checklist.md +55 -0
  523. package/skills/sap/sap-hypercare-incident-commander-review/references/workflow-and-output.md +98 -0
  524. package/skills/sap/sap-integration-platform-businessops-protocol/SKILL.md +162 -0
  525. package/skills/sap/sap-integration-platform-businessops-protocol/agents/openai.yaml +11 -0
  526. package/skills/sap/sap-integration-platform-businessops-protocol/metadata.json +35 -0
  527. package/skills/sap/sap-integration-platform-businessops-protocol/references/official-sources.md +99 -0
  528. package/skills/sap/sap-integration-platform-businessops-protocol/references/safety-checklist.md +36 -0
  529. package/skills/sap/sap-integration-platform-businessops-protocol/references/workflow-and-output.md +76 -0
  530. package/skills/sap/sap-integration-suite-review/SKILL.md +87 -0
  531. package/skills/sap/sap-integration-suite-review/agents/openai.yaml +11 -0
  532. package/skills/sap/sap-integration-suite-review/metadata.json +33 -0
  533. package/skills/sap/sap-integration-suite-review/references/context7-framework-docs.md +76 -0
  534. package/skills/sap/sap-integration-suite-review/references/official-sources.md +79 -0
  535. package/skills/sap/sap-integration-suite-review/references/safety-checklist.md +36 -0
  536. package/skills/sap/sap-integration-suite-review/references/workflow-and-output.md +78 -0
  537. package/skills/sap/sap-joule-governance-adoption-review/SKILL.md +83 -0
  538. package/skills/sap/sap-joule-governance-adoption-review/agents/openai.yaml +11 -0
  539. package/skills/sap/sap-joule-governance-adoption-review/metadata.json +33 -0
  540. package/skills/sap/sap-joule-governance-adoption-review/references/official-sources.md +83 -0
  541. package/skills/sap/sap-joule-governance-adoption-review/references/safety-checklist.md +37 -0
  542. package/skills/sap/sap-joule-governance-adoption-review/references/workflow-and-output.md +81 -0
  543. package/skills/sap/sap-license-btp-consumption-finops-review/SKILL.md +89 -0
  544. package/skills/sap/sap-license-btp-consumption-finops-review/agents/openai.yaml +11 -0
  545. package/skills/sap/sap-license-btp-consumption-finops-review/metadata.json +32 -0
  546. package/skills/sap/sap-license-btp-consumption-finops-review/references/official-sources.md +71 -0
  547. package/skills/sap/sap-license-btp-consumption-finops-review/references/safety-checklist.md +36 -0
  548. package/skills/sap/sap-license-btp-consumption-finops-review/references/workflow-and-output.md +69 -0
  549. package/skills/sap/sap-live-readonly-identity-trust-discovery/SKILL.md +142 -0
  550. package/skills/sap/sap-live-readonly-identity-trust-discovery/agents/openai.yaml +14 -0
  551. package/skills/sap/sap-live-readonly-identity-trust-discovery/metadata.json +34 -0
  552. package/skills/sap/sap-live-readonly-identity-trust-discovery/references/live-environment-access.md +151 -0
  553. package/skills/sap/sap-live-readonly-identity-trust-discovery/references/official-sources.md +83 -0
  554. package/skills/sap/sap-live-readonly-identity-trust-discovery/references/safety-checklist.md +49 -0
  555. package/skills/sap/sap-live-readonly-identity-trust-discovery/references/workflow-and-output.md +103 -0
  556. package/skills/sap/sap-live-readonly-landscape-discovery/SKILL.md +135 -0
  557. package/skills/sap/sap-live-readonly-landscape-discovery/agents/openai.yaml +14 -0
  558. package/skills/sap/sap-live-readonly-landscape-discovery/metadata.json +34 -0
  559. package/skills/sap/sap-live-readonly-landscape-discovery/references/live-environment-access.md +111 -0
  560. package/skills/sap/sap-live-readonly-landscape-discovery/references/official-sources.md +83 -0
  561. package/skills/sap/sap-live-readonly-landscape-discovery/references/safety-checklist.md +45 -0
  562. package/skills/sap/sap-live-readonly-landscape-discovery/references/workflow-and-output.md +102 -0
  563. package/skills/sap/sap-maestro/SKILL.md +81 -0
  564. package/skills/sap/sap-maestro/agents/openai.yaml +11 -0
  565. package/skills/sap/sap-maestro/metadata.json +32 -0
  566. package/skills/sap/sap-maestro/references/official-sources.md +53 -0
  567. package/skills/sap/sap-maestro/references/safety-checklist.md +39 -0
  568. package/skills/sap/sap-maestro/references/workflow-and-output.md +73 -0
  569. package/skills/sap/sap-manufacturing-execution-risk-review/SKILL.md +89 -0
  570. package/skills/sap/sap-manufacturing-execution-risk-review/agents/openai.yaml +11 -0
  571. package/skills/sap/sap-manufacturing-execution-risk-review/metadata.json +32 -0
  572. package/skills/sap/sap-manufacturing-execution-risk-review/references/official-sources.md +79 -0
  573. package/skills/sap/sap-manufacturing-execution-risk-review/references/safety-checklist.md +39 -0
  574. package/skills/sap/sap-manufacturing-execution-risk-review/references/workflow-and-output.md +91 -0
  575. package/skills/sap/sap-mdg-master-data-quality-review/SKILL.md +85 -0
  576. package/skills/sap/sap-mdg-master-data-quality-review/agents/openai.yaml +11 -0
  577. package/skills/sap/sap-mdg-master-data-quality-review/metadata.json +33 -0
  578. package/skills/sap/sap-mdg-master-data-quality-review/references/official-sources.md +89 -0
  579. package/skills/sap/sap-mdg-master-data-quality-review/references/safety-checklist.md +37 -0
  580. package/skills/sap/sap-mdg-master-data-quality-review/references/workflow-and-output.md +91 -0
  581. package/skills/sap/sap-order-to-cash-review/SKILL.md +89 -0
  582. package/skills/sap/sap-order-to-cash-review/agents/openai.yaml +11 -0
  583. package/skills/sap/sap-order-to-cash-review/metadata.json +32 -0
  584. package/skills/sap/sap-order-to-cash-review/references/official-sources.md +79 -0
  585. package/skills/sap/sap-order-to-cash-review/references/safety-checklist.md +39 -0
  586. package/skills/sap/sap-order-to-cash-review/references/workflow-and-output.md +87 -0
  587. package/skills/sap/sap-procurement-ariba-value-leakage-review/SKILL.md +90 -0
  588. package/skills/sap/sap-procurement-ariba-value-leakage-review/agents/openai.yaml +11 -0
  589. package/skills/sap/sap-procurement-ariba-value-leakage-review/metadata.json +32 -0
  590. package/skills/sap/sap-procurement-ariba-value-leakage-review/references/official-sources.md +79 -0
  591. package/skills/sap/sap-procurement-ariba-value-leakage-review/references/safety-checklist.md +38 -0
  592. package/skills/sap/sap-procurement-ariba-value-leakage-review/references/workflow-and-output.md +87 -0
  593. package/skills/sap/sap-procurement-license-finops-vendor-protocol/SKILL.md +155 -0
  594. package/skills/sap/sap-procurement-license-finops-vendor-protocol/agents/openai.yaml +11 -0
  595. package/skills/sap/sap-procurement-license-finops-vendor-protocol/metadata.json +35 -0
  596. package/skills/sap/sap-procurement-license-finops-vendor-protocol/references/official-sources.md +99 -0
  597. package/skills/sap/sap-procurement-license-finops-vendor-protocol/references/safety-checklist.md +36 -0
  598. package/skills/sap/sap-procurement-license-finops-vendor-protocol/references/workflow-and-output.md +62 -0
  599. package/skills/sap/sap-release-change-collision-review/SKILL.md +92 -0
  600. package/skills/sap/sap-release-change-collision-review/agents/openai.yaml +14 -0
  601. package/skills/sap/sap-release-change-collision-review/metadata.json +31 -0
  602. package/skills/sap/sap-release-change-collision-review/references/official-sources.md +63 -0
  603. package/skills/sap/sap-release-change-collision-review/references/safety-checklist.md +51 -0
  604. package/skills/sap/sap-release-change-collision-review/references/workflow-and-output.md +85 -0
  605. package/skills/sap/sap-release-cutover-finance-controls-protocol/SKILL.md +170 -0
  606. package/skills/sap/sap-release-cutover-finance-controls-protocol/agents/openai.yaml +11 -0
  607. package/skills/sap/sap-release-cutover-finance-controls-protocol/metadata.json +33 -0
  608. package/skills/sap/sap-release-cutover-finance-controls-protocol/references/official-sources.md +89 -0
  609. package/skills/sap/sap-release-cutover-finance-controls-protocol/references/safety-checklist.md +39 -0
  610. package/skills/sap/sap-release-cutover-finance-controls-protocol/references/workflow-and-output.md +98 -0
  611. package/skills/sap/sap-rise-sla-vendor-risk-review/SKILL.md +88 -0
  612. package/skills/sap/sap-rise-sla-vendor-risk-review/agents/openai.yaml +11 -0
  613. package/skills/sap/sap-rise-sla-vendor-risk-review/metadata.json +32 -0
  614. package/skills/sap/sap-rise-sla-vendor-risk-review/references/official-sources.md +73 -0
  615. package/skills/sap/sap-rise-sla-vendor-risk-review/references/safety-checklist.md +36 -0
  616. package/skills/sap/sap-rise-sla-vendor-risk-review/references/workflow-and-output.md +56 -0
  617. package/skills/sap/sap-s4hana-transformation-architecture-review/SKILL.md +84 -0
  618. package/skills/sap/sap-s4hana-transformation-architecture-review/agents/openai.yaml +14 -0
  619. package/skills/sap/sap-s4hana-transformation-architecture-review/metadata.json +32 -0
  620. package/skills/sap/sap-s4hana-transformation-architecture-review/references/official-sources.md +75 -0
  621. package/skills/sap/sap-s4hana-transformation-architecture-review/references/safety-checklist.md +40 -0
  622. package/skills/sap/sap-s4hana-transformation-architecture-review/references/workflow-and-output.md +67 -0
  623. package/skills/sap/sap-security-hr-legal-protocol/SKILL.md +149 -0
  624. package/skills/sap/sap-security-hr-legal-protocol/agents/openai.yaml +11 -0
  625. package/skills/sap/sap-security-hr-legal-protocol/metadata.json +34 -0
  626. package/skills/sap/sap-security-hr-legal-protocol/references/official-sources.md +89 -0
  627. package/skills/sap/sap-security-hr-legal-protocol/references/safety-checklist.md +38 -0
  628. package/skills/sap/sap-security-hr-legal-protocol/references/workflow-and-output.md +65 -0
  629. package/skills/sap/sap-security-iam-grc-sod-review/SKILL.md +86 -0
  630. package/skills/sap/sap-security-iam-grc-sod-review/agents/openai.yaml +11 -0
  631. package/skills/sap/sap-security-iam-grc-sod-review/metadata.json +33 -0
  632. package/skills/sap/sap-security-iam-grc-sod-review/references/official-sources.md +83 -0
  633. package/skills/sap/sap-security-iam-grc-sod-review/references/safety-checklist.md +36 -0
  634. package/skills/sap/sap-security-iam-grc-sod-review/references/workflow-and-output.md +79 -0
  635. package/skills/sap/sap-signavio-process-mining-value/SKILL.md +85 -0
  636. package/skills/sap/sap-signavio-process-mining-value/agents/openai.yaml +11 -0
  637. package/skills/sap/sap-signavio-process-mining-value/metadata.json +33 -0
  638. package/skills/sap/sap-signavio-process-mining-value/references/official-sources.md +89 -0
  639. package/skills/sap/sap-signavio-process-mining-value/references/safety-checklist.md +36 -0
  640. package/skills/sap/sap-signavio-process-mining-value/references/workflow-and-output.md +91 -0
  641. package/skills/sap/sap-successfactors-hr-process-risk-review/SKILL.md +92 -0
  642. package/skills/sap/sap-successfactors-hr-process-risk-review/agents/openai.yaml +11 -0
  643. package/skills/sap/sap-successfactors-hr-process-risk-review/metadata.json +33 -0
  644. package/skills/sap/sap-successfactors-hr-process-risk-review/references/official-sources.md +83 -0
  645. package/skills/sap/sap-successfactors-hr-process-risk-review/references/safety-checklist.md +38 -0
  646. package/skills/sap/sap-successfactors-hr-process-risk-review/references/workflow-and-output.md +86 -0
  647. package/skills/sap/sap-supply-chain-ibp-resilience-review/SKILL.md +90 -0
  648. package/skills/sap/sap-supply-chain-ibp-resilience-review/agents/openai.yaml +11 -0
  649. package/skills/sap/sap-supply-chain-ibp-resilience-review/metadata.json +32 -0
  650. package/skills/sap/sap-supply-chain-ibp-resilience-review/references/official-sources.md +79 -0
  651. package/skills/sap/sap-supply-chain-ibp-resilience-review/references/safety-checklist.md +38 -0
  652. package/skills/sap/sap-supply-chain-ibp-resilience-review/references/workflow-and-output.md +89 -0
  653. package/skills/sap/sap-testing-quality-gate-review/SKILL.md +92 -0
  654. package/skills/sap/sap-testing-quality-gate-review/agents/openai.yaml +14 -0
  655. package/skills/sap/sap-testing-quality-gate-review/metadata.json +31 -0
  656. package/skills/sap/sap-testing-quality-gate-review/references/official-sources.md +65 -0
  657. package/skills/sap/sap-testing-quality-gate-review/references/safety-checklist.md +53 -0
  658. package/skills/sap/sap-testing-quality-gate-review/references/workflow-and-output.md +98 -0
  659. package/skills/sap/sap-transformation-portfolio-triage-review/SKILL.md +87 -0
  660. package/skills/sap/sap-transformation-portfolio-triage-review/agents/openai.yaml +11 -0
  661. package/skills/sap/sap-transformation-portfolio-triage-review/metadata.json +32 -0
  662. package/skills/sap/sap-transformation-portfolio-triage-review/references/official-sources.md +71 -0
  663. package/skills/sap/sap-transformation-portfolio-triage-review/references/safety-checklist.md +36 -0
  664. package/skills/sap/sap-transformation-portfolio-triage-review/references/workflow-and-output.md +69 -0
  665. package/skills/sap/sap-treasury-cash-risk-review/SKILL.md +90 -0
  666. package/skills/sap/sap-treasury-cash-risk-review/agents/openai.yaml +11 -0
  667. package/skills/sap/sap-treasury-cash-risk-review/metadata.json +32 -0
  668. package/skills/sap/sap-treasury-cash-risk-review/references/official-sources.md +79 -0
  669. package/skills/sap/sap-treasury-cash-risk-review/references/safety-checklist.md +38 -0
  670. package/skills/sap/sap-treasury-cash-risk-review/references/workflow-and-output.md +89 -0
  671. package/tests/fixtures/sap-maestro-routing/expected/01-clean-core-debt.json +6 -0
  672. package/tests/fixtures/sap-maestro-routing/expected/02-landscape-discovery.json +6 -0
  673. package/tests/fixtures/sap-maestro-routing/expected/03-live-guard-transport.json +6 -0
  674. package/tests/fixtures/sap-maestro-routing/expected/04-adversarial-injection.json +6 -0
  675. package/tests/fixtures/sap-maestro-routing/expected/05-adversarial-persona.json +6 -0
  676. package/tests/fixtures/sap-maestro-routing/expected/06-ambiguous.json +4 -0
  677. package/tests/fixtures/sap-maestro-routing/expected/07-secrets-bait.json +6 -0
  678. package/tests/fixtures/sap-maestro-routing/expected/08-btp-governance.json +6 -0
  679. package/tests/fixtures/sap-maestro-routing/expected/09-integration-suite.json +6 -0
  680. package/tests/fixtures/sap-maestro-routing/expected/10-security-sod.json +6 -0
  681. package/tests/fixtures/sap-maestro-routing/expected/11-cap-architecture.json +6 -0
  682. package/tests/fixtures/sap-maestro-routing/expected/12-abap-cloud-rap.json +7 -0
  683. package/tests/fixtures/sap-maestro-routing/expected/13-ai-governance.json +6 -0
  684. package/tests/fixtures/sap-maestro-routing/expected/14-datasphere.json +6 -0
  685. package/tests/fixtures/sap-maestro-routing/expected/15-analytics-cloud.json +6 -0
  686. package/tests/fixtures/sap-maestro-routing/expected/16-hana-cloud.json +6 -0
  687. package/tests/fixtures/sap-maestro-routing/expected/17-s4hana-transformation.json +6 -0
  688. package/tests/fixtures/sap-maestro-routing/expected/18-custom-code-remediation.json +6 -0
  689. package/tests/fixtures/sap-maestro-routing/expected/19-data-migration-cutover.json +6 -0
  690. package/tests/fixtures/sap-maestro-routing/expected/20-finance-fico.json +6 -0
  691. package/tests/fixtures/sap-maestro-routing/expected/21-mdg-master-data.json +6 -0
  692. package/tests/fixtures/sap-maestro-routing/expected/22-signavio.json +6 -0
  693. package/tests/fixtures/sap-maestro-routing/expected/23-procurement-ariba.json +6 -0
  694. package/tests/fixtures/sap-maestro-routing/expected/24-supply-chain-ibp.json +6 -0
  695. package/tests/fixtures/sap-maestro-routing/expected/25-order-to-cash.json +6 -0
  696. package/tests/fixtures/sap-maestro-routing/expected/26-treasury.json +6 -0
  697. package/tests/fixtures/sap-maestro-routing/expected/27-ewm-tm.json +6 -0
  698. package/tests/fixtures/sap-maestro-routing/expected/28-manufacturing.json +6 -0
  699. package/tests/fixtures/sap-maestro-routing/expected/29-successfactors.json +6 -0
  700. package/tests/fixtures/sap-maestro-routing/expected/30-joule.json +6 -0
  701. package/tests/fixtures/sap-maestro-routing/expected/31-cloud-alm.json +6 -0
  702. package/tests/fixtures/sap-maestro-routing/expected/32-transformation-portfolio.json +6 -0
  703. package/tests/fixtures/sap-maestro-routing/expected/33-rise-sla.json +6 -0
  704. package/tests/fixtures/sap-maestro-routing/expected/34-license-finops.json +6 -0
  705. package/tests/fixtures/sap-maestro-routing/expected/35-testing-quality.json +6 -0
  706. package/tests/fixtures/sap-maestro-routing/expected/36-release-collision.json +6 -0
  707. package/tests/fixtures/sap-maestro-routing/expected/37-hypercare.json +6 -0
  708. package/tests/fixtures/sap-maestro-routing/expected/38-identity-trust.json +6 -0
  709. package/tests/fixtures/sap-maestro-routing/expected/39-fiori-ui5.json +6 -0
  710. package/tests/fixtures/sap-maestro-routing/expected/40-audit-evidence.json +6 -0
  711. package/tests/fixtures/sap-maestro-routing/expected/41-guard-role-assign.json +6 -0
  712. package/tests/fixtures/sap-maestro-routing/expected/42-guard-iflow-deploy.json +6 -0
  713. package/tests/fixtures/sap-maestro-routing/expected/43-guard-entitlement.json +6 -0
  714. package/tests/fixtures/sap-maestro-routing/inputs/01-clean-core-debt.json +5 -0
  715. package/tests/fixtures/sap-maestro-routing/inputs/02-landscape-discovery.json +5 -0
  716. package/tests/fixtures/sap-maestro-routing/inputs/03-live-guard-transport.json +7 -0
  717. package/tests/fixtures/sap-maestro-routing/inputs/04-adversarial-injection.json +7 -0
  718. package/tests/fixtures/sap-maestro-routing/inputs/05-adversarial-persona.json +7 -0
  719. package/tests/fixtures/sap-maestro-routing/inputs/06-ambiguous.json +7 -0
  720. package/tests/fixtures/sap-maestro-routing/inputs/07-secrets-bait.json +7 -0
  721. package/tests/fixtures/sap-maestro-routing/inputs/08-btp-governance.json +7 -0
  722. package/tests/fixtures/sap-maestro-routing/inputs/09-integration-suite.json +7 -0
  723. package/tests/fixtures/sap-maestro-routing/inputs/10-security-sod.json +7 -0
  724. package/tests/fixtures/sap-maestro-routing/inputs/11-cap-architecture.json +7 -0
  725. package/tests/fixtures/sap-maestro-routing/inputs/12-abap-cloud-rap.json +7 -0
  726. package/tests/fixtures/sap-maestro-routing/inputs/13-ai-governance.json +7 -0
  727. package/tests/fixtures/sap-maestro-routing/inputs/14-datasphere.json +7 -0
  728. package/tests/fixtures/sap-maestro-routing/inputs/15-analytics-cloud.json +7 -0
  729. package/tests/fixtures/sap-maestro-routing/inputs/16-hana-cloud.json +7 -0
  730. package/tests/fixtures/sap-maestro-routing/inputs/17-s4hana-transformation.json +7 -0
  731. package/tests/fixtures/sap-maestro-routing/inputs/18-custom-code-remediation.json +7 -0
  732. package/tests/fixtures/sap-maestro-routing/inputs/19-data-migration-cutover.json +7 -0
  733. package/tests/fixtures/sap-maestro-routing/inputs/20-finance-fico.json +7 -0
  734. package/tests/fixtures/sap-maestro-routing/inputs/21-mdg-master-data.json +7 -0
  735. package/tests/fixtures/sap-maestro-routing/inputs/22-signavio.json +7 -0
  736. package/tests/fixtures/sap-maestro-routing/inputs/23-procurement-ariba.json +7 -0
  737. package/tests/fixtures/sap-maestro-routing/inputs/24-supply-chain-ibp.json +7 -0
  738. package/tests/fixtures/sap-maestro-routing/inputs/25-order-to-cash.json +7 -0
  739. package/tests/fixtures/sap-maestro-routing/inputs/26-treasury.json +7 -0
  740. package/tests/fixtures/sap-maestro-routing/inputs/27-ewm-tm.json +7 -0
  741. package/tests/fixtures/sap-maestro-routing/inputs/28-manufacturing.json +7 -0
  742. package/tests/fixtures/sap-maestro-routing/inputs/29-successfactors.json +7 -0
  743. package/tests/fixtures/sap-maestro-routing/inputs/30-joule.json +7 -0
  744. package/tests/fixtures/sap-maestro-routing/inputs/31-cloud-alm.json +7 -0
  745. package/tests/fixtures/sap-maestro-routing/inputs/32-transformation-portfolio.json +7 -0
  746. package/tests/fixtures/sap-maestro-routing/inputs/33-rise-sla.json +7 -0
  747. package/tests/fixtures/sap-maestro-routing/inputs/34-license-finops.json +7 -0
  748. package/tests/fixtures/sap-maestro-routing/inputs/35-testing-quality.json +7 -0
  749. package/tests/fixtures/sap-maestro-routing/inputs/36-release-collision.json +7 -0
  750. package/tests/fixtures/sap-maestro-routing/inputs/37-hypercare.json +7 -0
  751. package/tests/fixtures/sap-maestro-routing/inputs/38-identity-trust.json +7 -0
  752. package/tests/fixtures/sap-maestro-routing/inputs/39-fiori-ui5.json +7 -0
  753. package/tests/fixtures/sap-maestro-routing/inputs/40-audit-evidence.json +7 -0
  754. package/tests/fixtures/sap-maestro-routing/inputs/41-guard-role-assign.json +7 -0
  755. package/tests/fixtures/sap-maestro-routing/inputs/42-guard-iflow-deploy.json +7 -0
  756. package/tests/fixtures/sap-maestro-routing/inputs/43-guard-entitlement.json +7 -0
  757. package/tests/fixtures/sap-maestro-routing/taxonomy.json +509 -0
  758. package/tests/validate-catalog.py +1 -0
@@ -0,0 +1,91 @@
1
+ ---
2
+ name: sap-finance-fico-controls-review
3
+ description: Review SAP S/4HANA Finance (FI-CO) internal controls: document posting controls, account assignment validations and substitutions, period-end close governance, Financial Close Cockpit task management, segregation of duties in financial postings, parallel ledger configuration, and intercompany reconciliation controls. Flags control gaps, mis-configured validation rules, uncontrolled period management, and SoD exposures in financial processes. Does not post financial documents or mutate any live system.
4
+ allowed-tools: Read Grep Glob WebSearch WebFetch
5
+ metadata:
6
+ author: "github: Raishin"
7
+ version: "0.1.0"
8
+ updated: "2026-06-19"
9
+ category: finance
10
+ lifecycle: experimental
11
+ ---
12
+
13
+ # SAP Finance FI-CO Controls Review
14
+
15
+ ## Purpose
16
+
17
+ Assess the internal control posture of SAP S/4HANA Finance (FI-CO) configurations and financial close processes. Evaluate document posting controls including tolerance groups, posting keys, and document type assignments. Review account assignment validation rules and substitution logic for correctness, completeness, and circumvention risk. Assess period-end close governance including fiscal year variant configuration, posting period management, and period open/close authorization controls. Evaluate Financial Close Cockpit (FCC) task list design, task dependencies, and governance workflow. Identify SoD exposures in financial posting processes including combinations of document creation, approval, payment release, and reversal authority. Assess parallel ledger design (Leading Ledger, Reconciliation Ledger, Extension Ledger) for completeness and reconciliation control coverage. Review intercompany process controls including clearing accounts, intercompany reconciliation configuration, and elimination governance. Does not connect to or mutate any live SAP system. Never posts, reverses, or modifies financial documents.
18
+
19
+ ## When to use
20
+
21
+ Use this skill when the user asks to:
22
+
23
+ - review SAP S/4HANA FI document posting controls: document types, posting keys, tolerance groups, field status groups, and account assignment validation rules,
24
+ - assess SAP FI validations and substitutions configured in transaction OB28 / OBB1 — evaluating logic correctness, callout dependencies, and whether any substitution creates a bypass risk for key control fields (cost center, profit center, business area, tax code),
25
+ - evaluate period-end close governance: fiscal year variant design, posting period variant assignment to company codes, and the authorization model for opening and closing posting periods (transaction OB52, role for S_PERIOD_OPEN or equivalent),
26
+ - review Financial Close Cockpit (FCC) or SAP S/4HANA Financial Close Cockpit task list design — task sequencing, dependency modeling, responsible user or group assignments, and escalation or blocking logic,
27
+ - identify SoD exposures in financial posting processes: users or roles with combined authority to create, approve, pay, and reverse financial documents within the same company code or across company codes,
28
+ - assess parallel ledger configuration: number and purpose of ledgers in the ledger group, whether extension ledgers are used correctly, reconciliation controls between the leading and non-leading ledger, and whether reporting currency differences are explained,
29
+ - review intercompany accounting controls: intercompany clearing account assignment, matching logic in the intercompany reconciliation hub, elimination rule configuration, and whether intercompany postings can be created without a corresponding offsetting entry,
30
+ - evaluate accrual and deferral control: recurring entry configurations, accrual engine use, and whether manual accrual postings are subject to approval and reversal controls,
31
+ - assess journal entry controls in the context of SOX ITGC or internal audit: who can post freely to G/L, whether manual journal entries above a materiality threshold require approval, and whether posting restrictions by document type are enforced.
32
+
33
+ ## When not to use
34
+
35
+ - When the user needs live inspection of SAP S/4HANA Finance configuration, journal entry lists, or posting period tables — this skill accepts only user-provided configuration exports, screen captures, role lists, validation/substitution descriptions, or written descriptions of the FI-CO landscape.
36
+ - When the request is about SAP Controlling (CO) planning, internal order settlement, or product cost analysis without a financial controls angle — this skill focuses on financial controls, not CO planning methodology.
37
+ - When the request concerns consolidation in SAP S/4HANA Group Reporting — use a dedicated Group Reporting skill; intercompany controls at the entity level are in scope here, but full group-level elimination and consolidation processes are not.
38
+ - When the request is about SAP GRC Access Control ruleset design for FI transaction codes — use `sap-security-iam-grc-sod-review` for GRC ruleset assessment; this skill identifies SoD exposures in FI-CO process terms rather than reviewing the GRC system itself.
39
+ - When the request is specifically about SAP MDG master data quality for FI master data (G/L accounts, cost centers) — use `sap-mdg-master-data-quality-review`.
40
+
41
+ ## Does not touch live systems
42
+
43
+ This skill operates on user-provided configuration descriptions, validation/substitution rule exports, role and authorization object lists, Financial Close Cockpit task list exports, posting period variant summaries, parallel ledger configuration descriptions, or written descriptions of the FI-CO control landscape. It does not connect to any SAP S/4HANA system, Fiori launchpad, SAP GUI session, or backend RFC. It does not post, reverse, park, or modify any financial document. All live inspection is out of scope.
44
+
45
+ **This skill never posts financial documents.** No document creation (FB01, F-02, FB50, MIRO, or equivalent), no reversal (FB08, MR8M), no payment run (F110), and no clearing (F-44, F-32) is performed or recommended as a direct action in this skill's execution path. All remediation recommendations describe configuration changes to be implemented and tested in a non-production environment.
46
+
47
+ ## Lean operating rules
48
+
49
+ - Classify control findings before recommending. Every finding must be assigned to a control domain (document posting controls / validations and substitutions / period management / Financial Close Cockpit / SoD in FI / parallel ledgers / intercompany) before a remediation path is proposed.
50
+ - SoD in financial postings is a first-order risk. Any user or role with combined authority to create financial documents, approve payment runs, and reverse postings within the same company code is a `critical` finding. Escalate before other remediation.
51
+ - Validation and substitution bypass risk must be assessed. A substitution that silently overwrites a key control field (cost center, profit center, tax code, business area) without user notification or approval is a `high` control risk regardless of the business justification.
52
+ - Period management authorization is a key segregation control. The authority to open posting periods (S_PERIOD_OPEN or equivalent in S/4HANA) must be separated from the authority to post documents. Shared authority over both is a `high` control gap.
53
+ - Financial Close Cockpit task lists must have owners and dependencies. A task list with no responsible user or group, with tasks that can be completed in any order without dependency enforcement, or without an escalation path for blocked tasks is a governance gap.
54
+ - Parallel ledger reconciliation gaps require explanation. Any unexplained difference between the leading ledger and a non-leading ledger (local GAAP, IFRS, tax ledger) that is not covered by a documented reconciliation control is a `high` finding.
55
+ - Intercompany postings must require a matching offsetting entry. Intercompany G/L postings that can be created without a corresponding offsetting entry in the partner company code — or without routing through the intercompany reconciliation hub — are a `high` process control gap.
56
+ - Evidence from user-provided artifacts or official SAP S/4HANA Finance documentation takes precedence over inference.
57
+ - Load only the reference needed for the FI-CO control domain under review.
58
+
59
+ ## Evidence rules
60
+
61
+ Label all claims with one of:
62
+
63
+ - `documentation-based` — grounded in SAP S/4HANA Finance, SAP Help Portal FI-CO documentation, SAP Financial Closing Cockpit, or SAP audit and compliance guidance
64
+ - `user-provided evidence` — validation/substitution exports, role lists, posting period variant descriptions, FCC task list exports, intercompany configuration summaries, or written descriptions provided by the user
65
+ - `inference` — derived reasoning not directly confirmed by official docs or user evidence
66
+
67
+ ## Live-environment rules
68
+
69
+ **This skill does not touch live systems.** There is no RFC call, Fiori OData API invocation, SAP GUI session, BAPI execution, or direct database query in this skill's execution path. Users must supply configuration exports, validation/substitution rule descriptions, period management summaries, Financial Close Cockpit task list exports, parallel ledger configuration descriptions, or written accounts of their FI-CO control landscape for this skill to review.
70
+
71
+ **This skill never posts financial documents.** Recommendations describing remediation always apply to configuration, authorization, or process design — not to direct financial document creation or modification.
72
+
73
+ ## References
74
+
75
+ Load only when needed:
76
+
77
+ - [Workflow and output contract](references/workflow-and-output.md) — FI-CO control finding taxonomy, severity assignment, output format.
78
+ - [Safety checklist](references/safety-checklist.md) — non-negotiables, common FI-CO control review mistakes, when to push back.
79
+ - [Official sources](references/official-sources.md) — SAP S/4HANA Finance, FI-CO controls, Financial Close Cockpit, parallel ledgers, and intercompany documentation.
80
+
81
+ ## Response minimum
82
+
83
+ Return, at minimum:
84
+
85
+ - **Problem classification**: FI-CO control domain(s) affected (document posting controls / validations and substitutions / period management / Financial Close Cockpit / SoD in FI / parallel ledgers / intercompany) and specific finding(s) per domain.
86
+ - **Evidence used**: documentation-based / user-provided evidence / inference.
87
+ - **Risk level**: critical (SoD in financial postings enabling fraud, uncontrolled period management, financial statement misstatement risk) / high (validation bypass, unsupported parallel ledger difference, intercompany imbalance) / medium (FCC governance gap, missing accrual reversal control, incomplete field status) / low (best practice deviation).
88
+ - **Recommended action**: specific configuration or process remediation per finding (validation rule correction, tolerance group tightening, period management role separation, FCC task dependency addition, parallel ledger reconciliation control, intercompany hub routing enforcement, etc.).
89
+ - **Refusal / escalation triggers**: if unmitigated critical SoD conflicts in financial postings are found, escalate to the audit team and GRC team before any further role or access change is authorized. If a finding requires live SAP system inspection, state that clearly and ask the user to supply the relevant export or description.
90
+ - **Business impact**: financial statement integrity risk, SOX ITGC compliance gap, internal audit finding risk, fraud enablement, or period-close efficiency impact.
91
+ - **Next verification step**: confirm recommended configuration changes against the user's current FI-CO setup in a non-production system before promoting to production.
@@ -0,0 +1,11 @@
1
+ interface:
2
+ display_name: "SAP Finance FI-CO Controls Review"
3
+ short_description: "Review SAP S/4HANA Finance (FI-CO) internal controls: document posting controls, validations and substitutions, period-end close governance, Financial Close Cockpit task management, SoD in financial postings, parallel ledger configuration, and intercompany reconciliation controls. Does not post financial documents or access live systems."
4
+ default_prompt: "Use $sap-finance-fico-controls-review to assess the provided SAP FI-CO control configuration. Classify each finding by control domain (document posting controls, validations/substitutions, period management, Financial Close Cockpit, SoD in FI, parallel ledgers, intercompany), assign a risk level (critical/high/medium/low), and recommend specific remediation actions. Flag any critical SoD exposures in financial postings for immediate escalation. State evidence level (documentation-based, user-provided, inference) and confirm that no live system access or financial document posting is required or performed."
5
+ dependencies:
6
+ tools:
7
+ - type: "web"
8
+ value: "https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/general-ledger-accounting"
9
+ description: "SAP S/4HANA Finance documentation — primary reference for FI-CO controls review"
10
+ policy:
11
+ allow_implicit_invocation: true
@@ -0,0 +1,33 @@
1
+ {
2
+ "id": "sap-finance-fico-controls-review",
3
+ "name": "SAP Finance FI-CO Controls Review",
4
+ "type": "skill",
5
+ "provider": "sap",
6
+ "harnesses": [
7
+ "claude-code",
8
+ "codex",
9
+ "cursor",
10
+ "gemini",
11
+ "kiro",
12
+ "other"
13
+ ],
14
+ "summary": "Review SAP S/4HANA Finance (FI-CO) internal controls: document posting controls, validations and substitutions, period-end close governance, Financial Close Cockpit task management, SoD in financial postings, parallel ledger configuration, and intercompany reconciliation controls. Does not post financial documents or access live systems.",
15
+ "source_type": "original",
16
+ "category": "finance",
17
+ "official_docs": [
18
+ "https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/general-ledger-accounting",
19
+ "https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/validations-and-substitutions",
20
+ "https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/posting-periods",
21
+ "https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/financial-closing-cockpit",
22
+ "https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/parallel-ledgers",
23
+ "https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/intercompany-reconciliation",
24
+ "https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/accrual-management",
25
+ "https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/document-splitting"
26
+ ],
27
+ "security_notes": "Does not access live SAP S/4HANA Finance systems, Fiori launchpads, SAP GUI sessions, or any production financial database. Accepts only user-provided configuration exports, validation/substitution descriptions, role lists, posting period variant summaries, Financial Close Cockpit task list exports, parallel ledger configuration descriptions, or written descriptions of the FI-CO control landscape. Never request or accept SAP logon credentials, RFC connection details, or direct database access. Never posts, reverses, parks, or modifies financial documents. Critical SoD findings in financial postings must be escalated to the audit and GRC team — this skill does not approve access or close audit findings.",
28
+ "last_verified": "2026-06-19",
29
+ "path": "skills/sap/sap-finance-fico-controls-review",
30
+ "author": "github: Raishin",
31
+ "version": "0.1.0",
32
+ "lifecycle": "experimental"
33
+ }
@@ -0,0 +1,89 @@
1
+ # Official sources — SAP Finance FI-CO Controls Review
2
+
3
+ Use this reference when grounding document posting control assessment, validation and substitution rule review, period-end close governance analysis, Financial Close Cockpit task list evaluation, SoD classification in financial postings, parallel ledger configuration review, and intercompany control assessment.
4
+
5
+ **Evidence level**: documentation-based (SAP Help Portal, SAP S/4HANA Finance documentation). No live-system evidence is collected by this skill.
6
+
7
+ ## Document posting controls and field status
8
+
9
+ - SAP S/4HANA Finance — General Ledger Accounting
10
+ https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/general-ledger-accounting
11
+ source_owner: SAP SE
12
+ topic_supported: G/L account master data, document types, posting keys, field status groups, tolerance groups, document posting controls in SAP S/4HANA Cloud
13
+ why_needed: Primary reference for G/L posting control configuration — defines document type and field status assignment model used to classify posting control findings
14
+ evidence_level: primary
15
+ last_verified: 2026-06-19
16
+
17
+ ## Validations and substitutions
18
+
19
+ - Validations and Substitutions (On-Premise)
20
+ https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/validations-and-substitutions
21
+ source_owner: SAP SE
22
+ topic_supported: Validation rule configuration (OB28), substitution rule configuration (OBB1), callout logic, field-level rule activation, prerequisite and check logic for FI documents
23
+ why_needed: Authoritative reference for assessing validation and substitution rule design correctness, bypass risk, and callout dependencies — required to classify validation findings
24
+ evidence_level: primary
25
+ last_verified: 2026-06-19
26
+
27
+ ## Posting period management
28
+
29
+ - Posting Periods (On-Premise)
30
+ https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/posting-periods
31
+ source_owner: SAP SE
32
+ topic_supported: Fiscal year variant configuration, posting period variant assignment to company codes, posting period open/close controls (OB52), account type–level period restrictions
33
+ why_needed: Defines the posting period management model — required to assess period open/close authorization controls and period management SoD
34
+ evidence_level: primary
35
+ last_verified: 2026-06-19
36
+
37
+ ## Financial Close Cockpit
38
+
39
+ - Financial Closing Cockpit
40
+ https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/financial-closing-cockpit
41
+ source_owner: SAP SE
42
+ topic_supported: Financial Close Cockpit task list design, task type definitions (manual task, program execution, workflow task), task dependency configuration, responsible user/group assignment, monitoring and escalation
43
+ why_needed: Primary reference for evaluating FCC task list governance — defines task sequencing, dependency modeling, and responsibility assignment model used to classify close governance findings
44
+ evidence_level: primary
45
+ last_verified: 2026-06-19
46
+
47
+ ## Parallel ledgers and extension ledgers
48
+
49
+ - Parallel Accounting (On-Premise)
50
+ https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/parallel-ledgers
51
+ source_owner: SAP SE
52
+ topic_supported: Leading ledger, non-leading ledger, extension ledger configuration, ledger-specific posting rules, parallel valuation approaches (IFRS, US GAAP, local GAAP, tax ledger)
53
+ why_needed: Authoritative source for parallel ledger design assessment — defines the ledger group, ledger assignment, and extension ledger model used to classify parallel accounting control gaps
54
+ evidence_level: primary
55
+ last_verified: 2026-06-19
56
+
57
+ ## Intercompany reconciliation
58
+
59
+ - Intercompany Reconciliation
60
+ https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/intercompany-reconciliation
61
+ source_owner: SAP SE
62
+ topic_supported: Intercompany G/L clearing account assignment, intercompany reconciliation hub configuration, matching logic, intercompany posting controls in S/4HANA Cloud
63
+ why_needed: Defines the intercompany reconciliation control model in S/4HANA — required to assess intercompany imbalance risk and elimination control gaps
64
+ evidence_level: primary
65
+ last_verified: 2026-06-19
66
+
67
+ ## Accrual and journal entry controls
68
+
69
+ - Accrual Management (S/4HANA On-Premise)
70
+ https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/accrual-management
71
+ source_owner: SAP SE
72
+ topic_supported: Accrual object configuration, accrual posting and reversal controls, accrual engine integration with G/L, recurring entry management
73
+ why_needed: Defines the accrual control model — required to classify manual accrual approval gaps and missing reversal controls in period-end processes
74
+ evidence_level: primary
75
+ last_verified: 2026-06-19
76
+
77
+ ## Financial consolidation and group reporting context
78
+
79
+ - SAP S/4HANA Group Reporting — Document Splitting
80
+ https://help.sap.com/docs/SAP_S4HANA_ON-PREMISE/s4hana-finance/document-splitting
81
+ source_owner: SAP SE
82
+ topic_supported: Intercompany matching rules, reconciliation status, intercompany difference classification, group reporting elimination context
83
+ why_needed: Provides context for intercompany reconciliation findings at the group level — used to understand downstream impact of entity-level intercompany control gaps on group reporting
84
+ evidence_level: supplemental
85
+ last_verified: 2026-06-19
86
+
87
+ ## Grounding rule
88
+
89
+ SAP Help Portal and S/4HANA Finance documentation describe the designed control model and configuration options for FI-CO. They do not prove what validation rules are active in the user's system, what posting period variants are assigned, whether FCC task lists exist, or whether SoD exposures are present in the user's role design. Users must supply configuration exports, validation/substitution descriptions, period management summaries, Financial Close Cockpit task list exports, parallel ledger configuration descriptions, or written descriptions of their FI-CO control landscape for concrete assessment.
@@ -0,0 +1,38 @@
1
+ # Safety checklist — SAP Finance FI-CO Controls Review
2
+
3
+ Use before making any FI-CO control remediation recommendation, especially for findings involving SoD in financial postings, validation/substitution rule changes, period management, or parallel ledger differences.
4
+
5
+ ## Non-negotiables
6
+
7
+ - Do not access, connect to, or request access to any live SAP S/4HANA Finance system, Fiori launchpad, SAP GUI session, backend RFC, or production financial database. This skill reviews artifacts only.
8
+ - Do not accept or request SAP logon credentials, RFC connection details, or direct financial database access.
9
+ - Do not post, reverse, park, approve, or modify any financial document. There is no document creation (FB01, F-02, FB50, MIRO, or equivalent), no reversal (FB08, MR8M), no payment run (F110), and no clearing (F-44, F-32) in this skill's execution path. Recommendations always describe configuration changes, not direct financial transactions.
10
+ - Do not approve, close, or recommend closing an unmitigated critical SoD exposure in financial postings. Only the audit team and GRC team with appropriate authority can accept a financial process SoD risk. State this explicitly when critical SoD is found.
11
+ - Do not recommend implementing configuration changes (validation rule edits, tolerance group changes, period variant modifications) directly in a production SAP system. All recommendations must first be tested in a development or quality system.
12
+ - Do not use memory alone to assert whether a specific combination of SAP authorization objects (F_BKPF_BUK, F_BKPF_KOA, F_KNA1_BUK, etc.) creates an SoD conflict. SoD classification must be grounded in user-provided role exports, GRC conflict reports, or official SAP documentation.
13
+ - Do not conflate posting period authorization (S_PERIOD_OPEN or T_REXFI_P) with document posting authorization (F_BKPF_BUK). They are separate authorization objects covering different aspects of the period close control.
14
+
15
+ ## What people get wrong
16
+
17
+ - **Treating substitutions as always benign**: Substitution rules in OBB1 that silently overwrite cost center, profit center, or tax code fields are often added for efficiency reasons without a control impact assessment. A substitution that overwrites a cost center based on a plant or company code mapping can bypass a required cost center validation, creating an undetected mis-posting.
18
+ - **Overlooking prior-period posting risk**: An open prior-period posting window (e.g., the previous fiscal period remaining open for weeks after month-end close) is a material control risk. Prior-period adjustments should require documented approval, not simply be enabled by the posting period variant remaining open.
19
+ - **Conflating Financial Close Cockpit with financial control completion**: A completed FCC task list only confirms that tasks were marked complete — it does not prove that the underlying financial reconciliations or controls were actually performed correctly. FCC governance and financial control substance are separate layers.
20
+ - **Missing parallel ledger completeness**: Reviews that confirm the leading ledger (IFRS or US GAAP) but do not verify that all parallel non-leading ledgers (local GAAP, tax) are complete and reconciled miss a common audit finding area. Extension ledger postings in particular require review to confirm they are not used to override approved base ledger entries.
21
+ - **Assuming intercompany clearing accounts balance automatically**: Intercompany G/L postings do not automatically create an offsetting entry in the partner company code in all configurations. Without the intercompany reconciliation hub or a strict cross-company code posting configuration, imbalanced intercompany positions can accumulate undetected.
22
+ - **Treating document type as a sufficient posting control**: Document types (DR, KR, SA, etc.) restrict which account types can be posted, but they do not enforce cost object assignment completeness or field-level validation. Field status groups and validation rules provide the substantive field-level control — document type alone is not sufficient.
23
+ - **Ignoring manual journal entry control in the SOX ITGC context**: SOX ITGC controls over financial reporting require that manual journal entries above a materiality threshold be subject to approval. A landscape where all users with G/L posting authority can post manual journal entries without an approval step is a SOX ITGC gap regardless of other compensating controls.
24
+
25
+ ## When to push back
26
+
27
+ - Push back (and escalate) when a critical SoD exposure in financial postings (create + approve + pay + reverse combined) is found — do not proceed with other recommendations until this is escalated.
28
+ - Push back when the user asks to confirm FI-CO control compliance from memory alone without providing configuration exports, role lists, or validation/substitution descriptions.
29
+ - Push back when the request requires live SAP system access (SAP GUI session, RFC call, Fiori OData API) — state clearly that live inspection is out of scope and ask the user to supply the relevant exports or summaries.
30
+ - Push back when asked to post, reverse, approve, or modify any financial document — this is an absolute boundary and must be refused in all circumstances.
31
+ - Push back when asked to approve or close an audit finding or SoD risk without GRC/audit team authorization — this skill is advisory only.
32
+ - Push back when parallel ledger differences are identified but the user cannot provide a documented reconciliation explanation — do not accept that differences are expected without evidence.
33
+
34
+ ## Evidence labels
35
+
36
+ - `documentation-based` — grounded in SAP S/4HANA Finance, SAP Help Portal FI-CO documentation, SAP Financial Closing Cockpit documentation, or SAP audit and compliance guidance
37
+ - `user-provided evidence` — validation/substitution exports, role lists, posting period variant descriptions, FCC task list exports, parallel ledger configuration notes, intercompany reconciliation summaries, or written descriptions provided by the user
38
+ - `inference` — derived reasoning not directly confirmed by official docs or user evidence; must always be labeled as such
@@ -0,0 +1,88 @@
1
+ # Workflow and output contract — SAP Finance FI-CO Controls Review
2
+
3
+ Use this reference for all control finding classification, risk level assignment, remediation path selection, and output formatting.
4
+
5
+ ## FI-CO control finding taxonomy
6
+
7
+ | Domain | Finding class | Description |
8
+ |--------|--------------|-------------|
9
+ | `document-posting-controls` | `over-permissive-document-type` | Document type allows posting to account classes that should be restricted for the given business process (e.g., vendor document type usable for G/L-only postings) |
10
+ | `document-posting-controls` | `tolerance-group-gap` | User or G/L account tolerance group permits posting differences or payment differences above the financially material threshold |
11
+ | `document-posting-controls` | `field-status-suppressed-required` | Field status group suppresses a required control field (cost center, profit center, business area, tax code) for an account category where it is a control requirement |
12
+ | `validations-substitutions` | `substitution-silent-overwrite` | Substitution rule silently overwrites a key control field (cost center, profit center, tax code, business area) without user notification or explicit approval step |
13
+ | `validations-substitutions` | `validation-inactive-or-missing` | Validation rule that should prevent an invalid account assignment combination is inactive, missing, or has an incomplete callout chain |
14
+ | `validations-substitutions` | `substitution-bypass-path` | A substitution rule can be triggered to bypass a validation that would otherwise block a posting, creating a control circumvention path |
15
+ | `period-management` | `period-open-close-sod-gap` | The same user or role can both open/close posting periods and post financial documents in the same company code — SoD gap in period management |
16
+ | `period-management` | `unrestricted-prior-period-posting` | Posting periods for prior fiscal periods are open without documented business justification or compensating approval control |
17
+ | `period-management` | `missing-period-variant-assignment` | A company code has no posting period variant assigned, or shares a posting period variant with a company code in a different control boundary |
18
+ | `financial-close-cockpit` | `task-no-owner` | FCC task list task has no responsible user or group assigned — close process has no accountable party for the task |
19
+ | `financial-close-cockpit` | `missing-task-dependency` | FCC task list allows tasks to be completed in any order, including a downstream task being marked complete before its upstream prerequisite is done |
20
+ | `financial-close-cockpit` | `no-escalation-path` | FCC task list has no blocking dependency or notification configured for overdue tasks — close timeline risk has no governance response |
21
+ | `sod-financial-postings` | `create-approve-pay-combined` | User or role has combined authority to create financial documents, approve payment runs, and release payments within the same company code |
22
+ | `sod-financial-postings` | `post-and-reverse-combined` | User or role can both post original financial documents and reverse them — creates undetected error or fraud path |
23
+ | `sod-financial-postings` | `cross-company-code-sod` | User has posting authority in multiple company codes that are in separate control boundaries, enabling artificial intercompany transactions |
24
+ | `parallel-ledgers` | `unexplained-ledger-difference` | Difference between leading ledger and non-leading ledger (local GAAP, IFRS, tax) balance is not explained by a documented reconciliation control |
25
+ | `parallel-ledgers` | `extension-ledger-misuse` | Extension ledger is used to post adjustments that should be in the base ledger, creating a hidden override of approved accounting entries |
26
+ | `intercompany` | `imbalanced-ic-posting` | Intercompany G/L postings can be created without a corresponding offsetting entry in the partner company code or without routing through the reconciliation hub |
27
+ | `intercompany` | `clearing-account-not-reconciled` | Intercompany clearing accounts carry open items that are not matched and reconciled within the expected period — unreconciled intercompany balances at period close |
28
+
29
+ ## Risk level assignment
30
+
31
+ | Risk level | Criteria |
32
+ |-----------|---------|
33
+ | `critical` | SoD in financial postings enabling fraud (create + approve + pay + reverse); uncontrolled period management SoD; financial statement misstatement risk at material threshold |
34
+ | `high` | Validation bypass or silent substitution of key control field; parallel ledger difference without reconciliation control; imbalanced intercompany posting path; unrestricted prior-period posting without compensating control |
35
+ | `medium` | FCC governance gap (missing owner, missing dependency, no escalation); tolerance group above internal threshold; field status suppression of a recommended control field |
36
+ | `low` | Best practice deviation in document type design; minor field status gap in a low-risk account category; cosmetic FCC task list structure improvement |
37
+
38
+ ## Remediation path decision tree
39
+
40
+ For each finding:
41
+
42
+ 1. **Is this a critical SoD exposure in financial postings (create + approve + pay + reverse combined)?**
43
+ - Yes → `critical`. Immediately escalate to the audit team and GRC team. Do not approve or defer without documented compensating control and approver sign-off. State this explicitly in the response. Role redesign is required.
44
+ - No → continue.
45
+
46
+ 2. **Is this a validation bypass or silent substitution overwrite of a key control field?**
47
+ - Yes → `high`. Review the substitution rule logic and callout chain. Remove the overwrite for the affected field or add an explicit user notification step. Engage the FI configuration team to correct the rule in a non-production system first.
48
+ - No → continue.
49
+
50
+ 3. **Is this a period management SoD gap (same user opens periods and posts documents)?**
51
+ - Yes → `high`. Separate the S_PERIOD_OPEN authorization (or equivalent in S/4HANA) from the F_BKPF_BUK posting authorization. Assign period management authority to a dedicated finance operations user or the Controller role only.
52
+ - No → continue.
53
+
54
+ 4. **Is this a parallel ledger difference without a reconciliation control?**
55
+ - Yes → `high`. Document the expected differences (e.g., IFRS vs. local GAAP revaluation, tax depreciation delta). Implement a ledger reconciliation report as a scheduled FCC task. Flag any unexplained residual difference for audit review.
56
+ - No → continue.
57
+
58
+ 5. **Is this an intercompany imbalance or unmatched clearing account?**
59
+ - Yes → `high`. Enforce intercompany reconciliation hub routing for all intercompany G/L postings. Add a period-end FCC task requiring reconciliation hub match rate of 100% (or documented exception) before period close sign-off.
60
+ - No → continue.
61
+
62
+ 6. **Is this a Financial Close Cockpit governance gap?**
63
+ - Yes → `medium`. Assign a responsible user or group to each unowned task. Add dependency links between prerequisite and downstream tasks. Configure blocking logic or notification for overdue tasks.
64
+ - No → classify as `low` and provide best practice guidance.
65
+
66
+ ## Workflow
67
+
68
+ 1. **Receive artifacts** — configuration exports, validation/substitution descriptions, period variant summaries, FCC task list exports, parallel ledger configuration notes, intercompany reconciliation summaries, role lists, or user descriptions.
69
+ 2. **Classify each finding** by FI-CO control domain and finding class.
70
+ 3. **Assign risk level** per the table above (critical / high / medium / low).
71
+ 4. **Flag critical SoD exposures in financial postings** immediately — escalate before any other remediation discussion.
72
+ 5. **Apply remediation decision tree** per finding.
73
+ 6. **Prioritize** — critical SoD exposures first; then high validation/substitution bypass and period management gaps; then high parallel ledger and intercompany findings; then medium FCC and tolerance gaps; then low best-practice items.
74
+ 7. **Return output** per the output contract below.
75
+
76
+ ## Output contract
77
+
78
+ Return:
79
+
80
+ 1. FI-CO control domain and finding class per finding
81
+ 2. Evidence label (documentation-based / user-provided evidence / inference)
82
+ 3. Risk level per finding (critical / high / medium / low)
83
+ 4. Finding detail: affected configuration object, transaction code, company code, role or user (if provided), and specific control gap
84
+ 5. Recommended remediation action (role redesign, validation rule correction, tolerance group tightening, period variant SoD separation, FCC task owner assignment, parallel ledger reconciliation control, intercompany hub routing enforcement, etc.)
85
+ 6. FI-CO control posture after remediation
86
+ 7. Escalation notice for any critical SoD exposure in financial postings — explicit statement that this requires audit team and GRC team sign-off before proceeding
87
+ 8. Prioritized remediation sequence
88
+ 9. Confirmation that no financial documents were posted, reversed, or modified in this review
@@ -0,0 +1,87 @@
1
+ ---
2
+ name: sap-fiori-ui5-ux-review
3
+ description: Review SAP Fiori and SAPUI5 applications for Fiori design guidelines adherence, UI5 app structure and MVC correctness, OData consumption patterns, performance, accessibility, and Fiori launchpad integration. Use when assessing Fiori app code, manifest.json, XML views, controllers, OData model binding, or launchpad tile configuration for quality, compliance with SAP UX standards, and readiness for productive use. Does not touch live systems.
4
+ allowed-tools: Read Grep Glob WebSearch WebFetch
5
+ metadata:
6
+ author: "github: Raishin"
7
+ version: "0.1.0"
8
+ updated: "2026-06-19"
9
+ category: platform
10
+ lifecycle: experimental
11
+ ---
12
+
13
+ # SAP Fiori and UI5 UX Review
14
+
15
+ ## Purpose
16
+
17
+ Assess the quality, correctness, and SAP UX standards compliance of SAP Fiori and SAPUI5 applications. Review app structure for correct MVC separation, component configuration, and manifest.json completeness. Assess XML views, controllers, and fragment design for UI5 best practices. Evaluate OData V2 and V4 model binding for correct consumption patterns, error handling, and batch request strategy. Review adherence to SAP Fiori design guidelines including floorplan selection, responsive design, and accessibility. Assess Fiori launchpad integration: tile configuration, navigation intent, target mapping, and app descriptor correctness. Does not connect to or mutate any live UI5 app runtime, BTP system, or backend OData service.
18
+
19
+ ## When to use
20
+
21
+ Use this skill when the user asks to:
22
+
23
+ - review a Fiori app's `manifest.json` (app descriptor) for completeness: data sources, routing configuration, model declarations, component settings, and library dependencies,
24
+ - assess UI5 XML view and fragment design: view nesting correctness, control usage compliance with Fiori design guidelines, missing aggregation bindings, and layout anti-patterns,
25
+ - evaluate controller code: MVC separation of concerns, correct lifecycle hook usage (`onInit`, `onExit`, `onBeforeRendering`, `onAfterRendering`), event handler design, and controller extension patterns,
26
+ - review OData V2 or V4 model consumption: binding paths, batch mode configuration, read/write operation patterns, error handling in `ODataModel`, and filter/sort expression correctness,
27
+ - assess Fiori design guideline adherence: correct floorplan selection (List Report, Object Page, Overview Page, Worklist, Wizard), SAP Fiori Elements usage versus freestyle compliance, header and footer bar patterns,
28
+ - review accessibility compliance: ARIA landmark usage, labeling of form fields and tables, keyboard navigation support, high-contrast theme compatibility, and screen reader compatibility of custom controls,
29
+ - evaluate Fiori launchpad integration: tile configuration, semantic object and action definition, target mapping correctness, cross-application navigation intent, and app descriptor `sap.app` and `sap.ui5` section completeness,
30
+ - identify UI5 performance issues: synchronous loading of UI5 modules, missing `async` component loading, oversized initial payload, missing lazy loading for non-critical views, and unoptimized OData batch grouping.
31
+
32
+ ## When not to use
33
+
34
+ - When the request is about the CAP backend service layer providing OData — use `sap-cap-architecture-review`.
35
+ - When the request requires live UI5 app inspection, BTP cockpit access, or Fiori launchpad configuration execution — this skill accepts only user-provided code artifacts, manifest files, and written descriptions.
36
+ - When the request is about ABAP-side OData service implementation (CDS views, SEGW service builder, RAP) rather than the UI5 consumer side — use the appropriate ABAP review skill.
37
+ - When the request is about SAP Build Work Zone configuration (site-level configuration, workspace templates) rather than individual app quality.
38
+
39
+ ## Does not touch live systems
40
+
41
+ This skill operates on user-provided UI5 source files, `manifest.json`, XML views, controller code, fragment files, OData metadata documents (`$metadata`), launchpad tile descriptors, or written descriptions of the Fiori app. It does not connect to any UI5 app runtime, BTP subaccount, ABAP backend, or Fiori launchpad configuration service. All live inspection is out of scope.
42
+
43
+ ## Lean operating rules
44
+
45
+ - Classify findings by review domain before recommending. Every finding must be assigned to a domain (App Structure / XML View / Controller / OData Consumption / Fiori Design / Accessibility / Launchpad / Performance) before a remediation path is proposed.
46
+ - Fiori design guideline adherence is a first-class concern. A Fiori app that deviates from the correct floorplan for its use case (e.g., using a custom freestyle layout where a List Report or Object Page is the correct pattern) is a `medium` finding. A Fiori app missing required header or footer bar patterns for its floorplan is a `high` finding.
47
+ - Asynchronous component loading is required. A UI5 component that does not declare `async: true` in its `manifest.json` component settings, or that uses synchronous `sap.ui.require` calls in controllers, is a `high` performance finding.
48
+ - OData error handling is required. A controller that calls `ODataModel.read()`, `ODataModel.create()`, or `ODataModel.update()` without an `error` callback is a `high` finding for operational reliability.
49
+ - Accessibility is not optional. Missing ARIA labels on interactive controls, form fields without associated labels, and tables without column headers or row headers are `high` accessibility findings.
50
+ - Direct DOM manipulation in controllers is a `high` finding. Accessing `document.getElementById()` or jQuery DOM selectors in UI5 controllers bypasses the UI5 rendering lifecycle and breaks testability.
51
+ - Evidence from official SAP Fiori design guidelines, SAPUI5/OpenUI5 documentation, and user-provided artifacts takes precedence over inference.
52
+ - Context7-sourced SAPUI5/OpenUI5 documentation is supplementary to official SAP sources. Label it `context7-supplementary`.
53
+ - Load only the reference needed for the review domain in scope.
54
+
55
+ ## Evidence rules
56
+
57
+ Label all claims with one of:
58
+
59
+ - `documentation-based` — grounded in official SAP Fiori design guidelines, SAPUI5 API documentation, or SAP Help Portal
60
+ - `user-provided evidence` — manifest files, XML views, controller code, fragment files, OData metadata, tile descriptors, or written descriptions provided by the user
61
+ - `context7-supplementary` — grounded in SAPUI5/OpenUI5 framework documentation fetched from Context7 (supplementary to official SAP Fiori and SAPUI5 docs; applies for MVC patterns, OData model usage, and component configuration)
62
+ - `inference` — derived reasoning not directly confirmed by official docs or user evidence
63
+
64
+ ## Live-environment rules
65
+
66
+ **This skill does not touch live systems.** There is no UI5 app runtime API call, BTP subaccount access, ABAP backend OData request, Fiori launchpad configuration service call, or BTP cockpit session in this skill's execution path. Users must supply UI5 source files, manifest files, controller code, XML views, OData metadata documents, or written descriptions of their Fiori app for this skill to review.
67
+
68
+ ## References
69
+
70
+ Load only when needed:
71
+
72
+ - [Workflow and output contract](references/workflow-and-output.md) — review domain taxonomy, severity classification, output format.
73
+ - [Safety checklist](references/safety-checklist.md) — non-negotiables, common Fiori and UI5 review mistakes, when to push back.
74
+ - [Official sources](references/official-sources.md) — SAP Fiori design guidelines, SAPUI5 API docs, Fiori launchpad, OData consumption guides.
75
+ - [Context7 framework docs](references/context7-framework-docs.md) — SAPUI5/OpenUI5 MVC patterns, OData model binding, component configuration, and accessibility (supplementary; applies for this skill).
76
+
77
+ ## Response minimum
78
+
79
+ Return, at minimum:
80
+
81
+ - **Problem classification**: review domain(s) in scope and specific finding(s) per domain.
82
+ - **Evidence used**: documentation-based / user-provided evidence / context7-supplementary / inference.
83
+ - **Risk level**: critical (security or data integrity risk from UI5 app) / high (functional, operational, or accessibility failure) / medium (Fiori design deviation, maintainability gap) / low (best practice deviation or code quality concern).
84
+ - **Recommended action**: specific remediation per finding (add `async: true`, implement OData error callback, add ARIA label, correct floorplan pattern, fix routing configuration, etc.).
85
+ - **Refusal / escalation triggers**: if live UI5 runtime access, BTP deployment, or ABAP backend inspection is required to complete the review, state that clearly and do not proceed.
86
+ - **Business impact**: user experience degradation, accessibility compliance failure, performance regression, launchpad integration failure, or OData consumption reliability risk.
87
+ - **Next verification step**: validate recommended changes against the target SAPUI5 version, Fiori launchpad configuration, and connected OData service metadata before deploying.
@@ -0,0 +1,14 @@
1
+ interface:
2
+ display_name: "SAP Fiori and UI5 UX Review"
3
+ short_description: "Review SAP Fiori and SAPUI5 apps for Fiori design guideline adherence, UI5 MVC correctness, OData consumption, performance, accessibility, and Fiori launchpad integration"
4
+ default_prompt: "Use $sap-fiori-ui5-ux-review to assess the provided SAP Fiori or SAPUI5 application artifacts. Classify findings by domain (App Structure / XML View / Controller / OData Consumption / Fiori Design / Accessibility / Launchpad / Performance), assign severity (critical / high / medium / low), state evidence level (documentation-based / user-provided evidence / context7-supplementary / inference), and recommend specific remediation per finding. Flag any missing OData error callbacks, synchronous module loading, and accessibility violations as high severity."
5
+ dependencies:
6
+ tools:
7
+ - type: "web"
8
+ value: "https://experience.sap.com/fiori-design-web/"
9
+ description: "SAP Fiori design guidelines — verify floorplan selection, header/footer bar patterns, and UX compliance"
10
+ - type: "web"
11
+ value: "https://ui5.sap.com/#/topic/003f755d46d34dd1bbce9ffe08c8d46a"
12
+ description: "SAPUI5 App Descriptor (manifest.json) reference — verify component configuration, data sources, routing, and model declarations"
13
+ policy:
14
+ allow_implicit_invocation: true
@@ -0,0 +1,33 @@
1
+ {
2
+ "id": "sap-fiori-ui5-ux-review",
3
+ "name": "SAP Fiori and UI5 UX Review",
4
+ "type": "skill",
5
+ "provider": "sap",
6
+ "harnesses": [
7
+ "claude-code",
8
+ "codex",
9
+ "cursor",
10
+ "gemini",
11
+ "kiro",
12
+ "other"
13
+ ],
14
+ "summary": "Review SAP Fiori and SAPUI5 applications for Fiori design guidelines adherence, UI5 app structure and MVC correctness, OData consumption patterns, performance, accessibility, and Fiori launchpad integration. Does not access live systems.",
15
+ "source_type": "original",
16
+ "category": "platform",
17
+ "official_docs": [
18
+ "https://experience.sap.com/fiori-design-web/",
19
+ "https://ui5.sap.com/#/topic/003f755d46d34dd1bbce9ffe08c8d46a",
20
+ "https://ui5.sap.com/#/topic/958ead51e2e94ab8bcdc90fb7e9d53d0",
21
+ "https://ui5.sap.com/#/topic/91f0a22d6f4d1014b6dd926db0e91070",
22
+ "https://ui5.sap.com/#/topic/68b9644a253741e8a4b9e4279a35c247",
23
+ "https://help.sap.com/docs/SAP_FIORI_LAUNCHPAD/fd8d03d7-14b9-40f7-9a07-1a594f20ac8d/what-is-sap-fiori-launchpad",
24
+ "https://ui5.sap.com/#/topic/5338bd1f9afb45fb8b2af957c3530e8f",
25
+ "https://ui5.sap.com/#/topic/c9ab34570cc14ea5ab72a6d1a4a03e3f"
26
+ ],
27
+ "security_notes": "Does not access live UI5 app runtimes, BTP subaccounts, ABAP backends, or Fiori launchpad configuration services. Accepts only user-provided UI5 source files, manifest.json, XML views, controller code, fragment files, OData metadata documents, or written descriptions. Never request or accept BTP service keys, ABAP system credentials, OAuth tokens, or OData service passwords. Fiori apps that use custom controls to bypass SAPUI5 rendering lifecycle should be flagged for security review if they manipulate DOM directly.",
28
+ "last_verified": "2026-06-19",
29
+ "path": "skills/sap/sap-fiori-ui5-ux-review",
30
+ "author": "github: Raishin",
31
+ "version": "0.1.0",
32
+ "lifecycle": "experimental"
33
+ }