@raishin/vanguard-frontier-agentic 2.11.0 → 2.13.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (758) hide show
  1. package/.claude-plugin/marketplace.json +2 -2
  2. package/.claude-plugin/plugin.json +41 -1
  3. package/.cursor-plugin/plugin.json +41 -1
  4. package/.github/plugin/marketplace.json +1 -1
  5. package/README.md +11 -11
  6. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/AGENT.md +57 -0
  7. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/claude-code.agent.md +37 -0
  8. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/codex.toml +30 -0
  9. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/copilot.agent.md +31 -0
  10. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/cursor.agent.md +29 -0
  11. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/gemini.agent.md +29 -0
  12. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  13. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  14. package/agents/sap/sap-abap-cloud-rap-reviewer-agent/metadata.json +46 -0
  15. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/AGENT.md +58 -0
  16. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/claude-code.agent.md +38 -0
  17. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/codex.toml +31 -0
  18. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/copilot.agent.md +32 -0
  19. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/cursor.agent.md +30 -0
  20. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/gemini.agent.md +30 -0
  21. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  22. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/harnesses/kiro-ide.agent.md +30 -0
  23. package/agents/sap/sap-ai-core-genai-hub-governance-reviewer-agent/metadata.json +40 -0
  24. package/agents/sap/sap-analytics-cloud-planning-governance-agent/AGENT.md +58 -0
  25. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/claude-code.agent.md +37 -0
  26. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/codex.toml +30 -0
  27. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/copilot.agent.md +31 -0
  28. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/cursor.agent.md +29 -0
  29. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/gemini.agent.md +29 -0
  30. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/kiro-cli.agent.json +1 -0
  31. package/agents/sap/sap-analytics-cloud-planning-governance-agent/harnesses/kiro-ide.agent.md +29 -0
  32. package/agents/sap/sap-analytics-cloud-planning-governance-agent/metadata.json +45 -0
  33. package/agents/sap/sap-audit-evidence-packager-agent/AGENT.md +58 -0
  34. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/claude-code.agent.md +38 -0
  35. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/codex.toml +30 -0
  36. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/copilot.agent.md +33 -0
  37. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/cursor.agent.md +31 -0
  38. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/gemini.agent.md +31 -0
  39. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/kiro-cli.agent.json +1 -0
  40. package/agents/sap/sap-audit-evidence-packager-agent/harnesses/kiro-ide.agent.md +31 -0
  41. package/agents/sap/sap-audit-evidence-packager-agent/metadata.json +45 -0
  42. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/AGENT.md +58 -0
  43. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/claude-code.agent.md +37 -0
  44. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/codex.toml +30 -0
  45. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/copilot.agent.md +31 -0
  46. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/cursor.agent.md +29 -0
  47. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/gemini.agent.md +29 -0
  48. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  49. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  50. package/agents/sap/sap-btp-account-entitlement-governance-reviewer-agent/metadata.json +44 -0
  51. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/AGENT.md +70 -0
  52. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/claude-code.agent.md +51 -0
  53. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/codex.toml +42 -0
  54. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/copilot.agent.md +36 -0
  55. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/cursor.agent.md +33 -0
  56. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/gemini.agent.md +33 -0
  57. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/kiro-cli.agent.json +1 -0
  58. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/harnesses/kiro-ide.agent.md +33 -0
  59. package/agents/sap/sap-btp-entitlement-guarded-operator-agent/metadata.json +41 -0
  60. package/agents/sap/sap-cap-architecture-reviewer-agent/AGENT.md +57 -0
  61. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/claude-code.agent.md +37 -0
  62. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/codex.toml +30 -0
  63. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/copilot.agent.md +31 -0
  64. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/cursor.agent.md +29 -0
  65. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/gemini.agent.md +29 -0
  66. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  67. package/agents/sap/sap-cap-architecture-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  68. package/agents/sap/sap-cap-architecture-reviewer-agent/metadata.json +42 -0
  69. package/agents/sap/sap-clean-core-debt-reviewer-agent/AGENT.md +58 -0
  70. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/claude-code.agent.md +38 -0
  71. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/codex.toml +31 -0
  72. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/copilot.agent.md +31 -0
  73. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/cursor.agent.md +29 -0
  74. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/gemini.agent.md +29 -0
  75. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  76. package/agents/sap/sap-clean-core-debt-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  77. package/agents/sap/sap-clean-core-debt-reviewer-agent/metadata.json +45 -0
  78. package/agents/sap/sap-cloud-alm-sre-incident-agent/AGENT.md +59 -0
  79. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/claude-code.agent.md +38 -0
  80. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/codex.toml +30 -0
  81. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/copilot.agent.md +32 -0
  82. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/cursor.agent.md +30 -0
  83. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/gemini.agent.md +30 -0
  84. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/kiro-cli.agent.json +1 -0
  85. package/agents/sap/sap-cloud-alm-sre-incident-agent/harnesses/kiro-ide.agent.md +30 -0
  86. package/agents/sap/sap-cloud-alm-sre-incident-agent/metadata.json +42 -0
  87. package/agents/sap/sap-custom-code-remediation-reviewer-agent/AGENT.md +60 -0
  88. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/claude-code.agent.md +39 -0
  89. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/codex.toml +29 -0
  90. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/copilot.agent.md +31 -0
  91. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/cursor.agent.md +29 -0
  92. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/gemini.agent.md +29 -0
  93. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  94. package/agents/sap/sap-custom-code-remediation-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  95. package/agents/sap/sap-custom-code-remediation-reviewer-agent/metadata.json +45 -0
  96. package/agents/sap/sap-data-migration-cutover-readiness-agent/AGENT.md +67 -0
  97. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/claude-code.agent.md +46 -0
  98. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/codex.toml +30 -0
  99. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/copilot.agent.md +32 -0
  100. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/cursor.agent.md +30 -0
  101. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/gemini.agent.md +30 -0
  102. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/kiro-cli.agent.json +1 -0
  103. package/agents/sap/sap-data-migration-cutover-readiness-agent/harnesses/kiro-ide.agent.md +30 -0
  104. package/agents/sap/sap-data-migration-cutover-readiness-agent/metadata.json +44 -0
  105. package/agents/sap/sap-datasphere-data-product-architect-agent/AGENT.md +58 -0
  106. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/claude-code.agent.md +37 -0
  107. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/codex.toml +30 -0
  108. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/copilot.agent.md +31 -0
  109. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/cursor.agent.md +29 -0
  110. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/gemini.agent.md +29 -0
  111. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/kiro-cli.agent.json +1 -0
  112. package/agents/sap/sap-datasphere-data-product-architect-agent/harnesses/kiro-ide.agent.md +29 -0
  113. package/agents/sap/sap-datasphere-data-product-architect-agent/metadata.json +45 -0
  114. package/agents/sap/sap-ewm-tm-logistics-execution-agent/AGENT.md +59 -0
  115. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/claude-code.agent.md +38 -0
  116. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/codex.toml +30 -0
  117. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/copilot.agent.md +32 -0
  118. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/cursor.agent.md +30 -0
  119. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/gemini.agent.md +30 -0
  120. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/kiro-cli.agent.json +1 -0
  121. package/agents/sap/sap-ewm-tm-logistics-execution-agent/harnesses/kiro-ide.agent.md +30 -0
  122. package/agents/sap/sap-ewm-tm-logistics-execution-agent/metadata.json +44 -0
  123. package/agents/sap/sap-finance-fico-controls-agent/AGENT.md +59 -0
  124. package/agents/sap/sap-finance-fico-controls-agent/harnesses/claude-code.agent.md +38 -0
  125. package/agents/sap/sap-finance-fico-controls-agent/harnesses/codex.toml +30 -0
  126. package/agents/sap/sap-finance-fico-controls-agent/harnesses/copilot.agent.md +32 -0
  127. package/agents/sap/sap-finance-fico-controls-agent/harnesses/cursor.agent.md +30 -0
  128. package/agents/sap/sap-finance-fico-controls-agent/harnesses/gemini.agent.md +30 -0
  129. package/agents/sap/sap-finance-fico-controls-agent/harnesses/kiro-cli.agent.json +1 -0
  130. package/agents/sap/sap-finance-fico-controls-agent/harnesses/kiro-ide.agent.md +30 -0
  131. package/agents/sap/sap-finance-fico-controls-agent/metadata.json +45 -0
  132. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/AGENT.md +58 -0
  133. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/claude-code.agent.md +37 -0
  134. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/codex.toml +29 -0
  135. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/copilot.agent.md +32 -0
  136. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/cursor.agent.md +30 -0
  137. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/gemini.agent.md +30 -0
  138. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  139. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/harnesses/kiro-ide.agent.md +30 -0
  140. package/agents/sap/sap-fiori-ui5-ux-reviewer-agent/metadata.json +39 -0
  141. package/agents/sap/sap-guarded-transport-import-operator-agent/AGENT.md +70 -0
  142. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/claude-code.agent.md +51 -0
  143. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/codex.toml +41 -0
  144. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/copilot.agent.md +36 -0
  145. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/cursor.agent.md +33 -0
  146. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/gemini.agent.md +33 -0
  147. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/kiro-cli.agent.json +1 -0
  148. package/agents/sap/sap-guarded-transport-import-operator-agent/harnesses/kiro-ide.agent.md +33 -0
  149. package/agents/sap/sap-guarded-transport-import-operator-agent/metadata.json +45 -0
  150. package/agents/sap/sap-hana-cloud-performance-cost-agent/AGENT.md +58 -0
  151. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/claude-code.agent.md +37 -0
  152. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/codex.toml +30 -0
  153. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/copilot.agent.md +31 -0
  154. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/cursor.agent.md +29 -0
  155. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/gemini.agent.md +29 -0
  156. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/kiro-cli.agent.json +1 -0
  157. package/agents/sap/sap-hana-cloud-performance-cost-agent/harnesses/kiro-ide.agent.md +29 -0
  158. package/agents/sap/sap-hana-cloud-performance-cost-agent/metadata.json +43 -0
  159. package/agents/sap/sap-hypercare-incident-commander-agent/AGENT.md +59 -0
  160. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/claude-code.agent.md +38 -0
  161. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/codex.toml +30 -0
  162. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/copilot.agent.md +32 -0
  163. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/cursor.agent.md +30 -0
  164. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/gemini.agent.md +30 -0
  165. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/kiro-cli.agent.json +1 -0
  166. package/agents/sap/sap-hypercare-incident-commander-agent/harnesses/kiro-ide.agent.md +30 -0
  167. package/agents/sap/sap-hypercare-incident-commander-agent/metadata.json +42 -0
  168. package/agents/sap/sap-integration-flow-guarded-operator-agent/AGENT.md +70 -0
  169. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/claude-code.agent.md +51 -0
  170. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/codex.toml +41 -0
  171. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/copilot.agent.md +36 -0
  172. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/cursor.agent.md +33 -0
  173. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/gemini.agent.md +33 -0
  174. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/kiro-cli.agent.json +1 -0
  175. package/agents/sap/sap-integration-flow-guarded-operator-agent/harnesses/kiro-ide.agent.md +33 -0
  176. package/agents/sap/sap-integration-flow-guarded-operator-agent/metadata.json +41 -0
  177. package/agents/sap/sap-integration-suite-reviewer-agent/AGENT.md +57 -0
  178. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/claude-code.agent.md +37 -0
  179. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/codex.toml +30 -0
  180. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/copilot.agent.md +31 -0
  181. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/cursor.agent.md +29 -0
  182. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/gemini.agent.md +29 -0
  183. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  184. package/agents/sap/sap-integration-suite-reviewer-agent/harnesses/kiro-ide.agent.md +29 -0
  185. package/agents/sap/sap-integration-suite-reviewer-agent/metadata.json +43 -0
  186. package/agents/sap/sap-joule-governance-adoption-agent/AGENT.md +59 -0
  187. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/claude-code.agent.md +38 -0
  188. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/codex.toml +30 -0
  189. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/copilot.agent.md +32 -0
  190. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/cursor.agent.md +30 -0
  191. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/gemini.agent.md +30 -0
  192. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/kiro-cli.agent.json +1 -0
  193. package/agents/sap/sap-joule-governance-adoption-agent/harnesses/kiro-ide.agent.md +30 -0
  194. package/agents/sap/sap-joule-governance-adoption-agent/metadata.json +42 -0
  195. package/agents/sap/sap-license-btp-consumption-finops-agent/AGENT.md +58 -0
  196. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/claude-code.agent.md +37 -0
  197. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/codex.toml +30 -0
  198. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/copilot.agent.md +31 -0
  199. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/cursor.agent.md +29 -0
  200. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/gemini.agent.md +29 -0
  201. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/kiro-cli.agent.json +1 -0
  202. package/agents/sap/sap-license-btp-consumption-finops-agent/harnesses/kiro-ide.agent.md +29 -0
  203. package/agents/sap/sap-license-btp-consumption-finops-agent/metadata.json +42 -0
  204. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/AGENT.md +60 -0
  205. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/claude-code.agent.md +40 -0
  206. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/codex.toml +31 -0
  207. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/copilot.agent.md +32 -0
  208. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/cursor.agent.md +30 -0
  209. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/gemini.agent.md +30 -0
  210. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/kiro-cli.agent.json +1 -0
  211. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/harnesses/kiro-ide.agent.md +30 -0
  212. package/agents/sap/sap-live-readonly-identity-trust-discovery-agent/metadata.json +39 -0
  213. package/agents/sap/sap-live-readonly-landscape-discovery-agent/AGENT.md +60 -0
  214. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/claude-code.agent.md +40 -0
  215. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/codex.toml +31 -0
  216. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/copilot.agent.md +32 -0
  217. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/cursor.agent.md +30 -0
  218. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/gemini.agent.md +30 -0
  219. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/kiro-cli.agent.json +1 -0
  220. package/agents/sap/sap-live-readonly-landscape-discovery-agent/harnesses/kiro-ide.agent.md +30 -0
  221. package/agents/sap/sap-live-readonly-landscape-discovery-agent/metadata.json +39 -0
  222. package/agents/sap/sap-maestro-agent/AGENT.md +60 -0
  223. package/agents/sap/sap-maestro-agent/harnesses/claude-code.agent.md +36 -0
  224. package/agents/sap/sap-maestro-agent/harnesses/codex.toml +34 -0
  225. package/agents/sap/sap-maestro-agent/harnesses/copilot.agent.md +32 -0
  226. package/agents/sap/sap-maestro-agent/harnesses/cursor.agent.md +30 -0
  227. package/agents/sap/sap-maestro-agent/harnesses/gemini.agent.md +30 -0
  228. package/agents/sap/sap-maestro-agent/harnesses/kiro-cli.agent.json +1 -0
  229. package/agents/sap/sap-maestro-agent/harnesses/kiro-ide.agent.md +30 -0
  230. package/agents/sap/sap-maestro-agent/metadata.json +39 -0
  231. package/agents/sap/sap-manufacturing-execution-risk-agent/AGENT.md +59 -0
  232. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/claude-code.agent.md +38 -0
  233. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/codex.toml +30 -0
  234. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/copilot.agent.md +32 -0
  235. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/cursor.agent.md +30 -0
  236. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/gemini.agent.md +30 -0
  237. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/kiro-cli.agent.json +1 -0
  238. package/agents/sap/sap-manufacturing-execution-risk-agent/harnesses/kiro-ide.agent.md +30 -0
  239. package/agents/sap/sap-manufacturing-execution-risk-agent/metadata.json +44 -0
  240. package/agents/sap/sap-mdg-master-data-quality-agent/AGENT.md +59 -0
  241. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/claude-code.agent.md +38 -0
  242. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/codex.toml +30 -0
  243. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/copilot.agent.md +32 -0
  244. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/cursor.agent.md +30 -0
  245. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/gemini.agent.md +30 -0
  246. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/kiro-cli.agent.json +1 -0
  247. package/agents/sap/sap-mdg-master-data-quality-agent/harnesses/kiro-ide.agent.md +30 -0
  248. package/agents/sap/sap-mdg-master-data-quality-agent/metadata.json +45 -0
  249. package/agents/sap/sap-order-to-cash-agent/AGENT.md +59 -0
  250. package/agents/sap/sap-order-to-cash-agent/harnesses/claude-code.agent.md +38 -0
  251. package/agents/sap/sap-order-to-cash-agent/harnesses/codex.toml +30 -0
  252. package/agents/sap/sap-order-to-cash-agent/harnesses/copilot.agent.md +32 -0
  253. package/agents/sap/sap-order-to-cash-agent/harnesses/cursor.agent.md +30 -0
  254. package/agents/sap/sap-order-to-cash-agent/harnesses/gemini.agent.md +30 -0
  255. package/agents/sap/sap-order-to-cash-agent/harnesses/kiro-cli.agent.json +1 -0
  256. package/agents/sap/sap-order-to-cash-agent/harnesses/kiro-ide.agent.md +30 -0
  257. package/agents/sap/sap-order-to-cash-agent/metadata.json +44 -0
  258. package/agents/sap/sap-procurement-ariba-value-leakage-agent/AGENT.md +59 -0
  259. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/claude-code.agent.md +38 -0
  260. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/codex.toml +30 -0
  261. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/copilot.agent.md +32 -0
  262. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/cursor.agent.md +30 -0
  263. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/gemini.agent.md +30 -0
  264. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/kiro-cli.agent.json +1 -0
  265. package/agents/sap/sap-procurement-ariba-value-leakage-agent/harnesses/kiro-ide.agent.md +30 -0
  266. package/agents/sap/sap-procurement-ariba-value-leakage-agent/metadata.json +44 -0
  267. package/agents/sap/sap-release-change-collision-agent/AGENT.md +59 -0
  268. package/agents/sap/sap-release-change-collision-agent/harnesses/claude-code.agent.md +38 -0
  269. package/agents/sap/sap-release-change-collision-agent/harnesses/codex.toml +30 -0
  270. package/agents/sap/sap-release-change-collision-agent/harnesses/copilot.agent.md +32 -0
  271. package/agents/sap/sap-release-change-collision-agent/harnesses/cursor.agent.md +30 -0
  272. package/agents/sap/sap-release-change-collision-agent/harnesses/gemini.agent.md +30 -0
  273. package/agents/sap/sap-release-change-collision-agent/harnesses/kiro-cli.agent.json +1 -0
  274. package/agents/sap/sap-release-change-collision-agent/harnesses/kiro-ide.agent.md +30 -0
  275. package/agents/sap/sap-release-change-collision-agent/metadata.json +42 -0
  276. package/agents/sap/sap-rise-sla-vendor-risk-agent/AGENT.md +58 -0
  277. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/claude-code.agent.md +37 -0
  278. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/codex.toml +30 -0
  279. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/copilot.agent.md +31 -0
  280. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/cursor.agent.md +29 -0
  281. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/gemini.agent.md +29 -0
  282. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/kiro-cli.agent.json +1 -0
  283. package/agents/sap/sap-rise-sla-vendor-risk-agent/harnesses/kiro-ide.agent.md +29 -0
  284. package/agents/sap/sap-rise-sla-vendor-risk-agent/metadata.json +42 -0
  285. package/agents/sap/sap-role-assignment-guarded-operator-agent/AGENT.md +73 -0
  286. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/claude-code.agent.md +54 -0
  287. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/codex.toml +43 -0
  288. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/copilot.agent.md +38 -0
  289. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/cursor.agent.md +35 -0
  290. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/gemini.agent.md +35 -0
  291. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/kiro-cli.agent.json +1 -0
  292. package/agents/sap/sap-role-assignment-guarded-operator-agent/harnesses/kiro-ide.agent.md +35 -0
  293. package/agents/sap/sap-role-assignment-guarded-operator-agent/metadata.json +41 -0
  294. package/agents/sap/sap-s4hana-transformation-architect-agent/AGENT.md +62 -0
  295. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/claude-code.agent.md +41 -0
  296. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/codex.toml +29 -0
  297. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/copilot.agent.md +31 -0
  298. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/cursor.agent.md +29 -0
  299. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/gemini.agent.md +29 -0
  300. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/kiro-cli.agent.json +1 -0
  301. package/agents/sap/sap-s4hana-transformation-architect-agent/harnesses/kiro-ide.agent.md +29 -0
  302. package/agents/sap/sap-s4hana-transformation-architect-agent/metadata.json +44 -0
  303. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/AGENT.md +59 -0
  304. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/claude-code.agent.md +38 -0
  305. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/codex.toml +30 -0
  306. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/copilot.agent.md +32 -0
  307. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/cursor.agent.md +30 -0
  308. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/gemini.agent.md +30 -0
  309. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/kiro-cli.agent.json +1 -0
  310. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/harnesses/kiro-ide.agent.md +30 -0
  311. package/agents/sap/sap-security-iam-grc-sod-reviewer-agent/metadata.json +44 -0
  312. package/agents/sap/sap-signavio-process-mining-value-agent/AGENT.md +59 -0
  313. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/claude-code.agent.md +38 -0
  314. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/codex.toml +30 -0
  315. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/copilot.agent.md +32 -0
  316. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/cursor.agent.md +30 -0
  317. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/gemini.agent.md +30 -0
  318. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/kiro-cli.agent.json +1 -0
  319. package/agents/sap/sap-signavio-process-mining-value-agent/harnesses/kiro-ide.agent.md +30 -0
  320. package/agents/sap/sap-signavio-process-mining-value-agent/metadata.json +44 -0
  321. package/agents/sap/sap-successfactors-hr-process-risk-agent/AGENT.md +59 -0
  322. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/claude-code.agent.md +38 -0
  323. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/codex.toml +30 -0
  324. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/copilot.agent.md +32 -0
  325. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/cursor.agent.md +30 -0
  326. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/gemini.agent.md +30 -0
  327. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/kiro-cli.agent.json +1 -0
  328. package/agents/sap/sap-successfactors-hr-process-risk-agent/harnesses/kiro-ide.agent.md +30 -0
  329. package/agents/sap/sap-successfactors-hr-process-risk-agent/metadata.json +42 -0
  330. package/agents/sap/sap-supply-chain-ibp-resilience-agent/AGENT.md +59 -0
  331. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/claude-code.agent.md +38 -0
  332. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/codex.toml +30 -0
  333. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/copilot.agent.md +32 -0
  334. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/cursor.agent.md +30 -0
  335. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/gemini.agent.md +30 -0
  336. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/kiro-cli.agent.json +1 -0
  337. package/agents/sap/sap-supply-chain-ibp-resilience-agent/harnesses/kiro-ide.agent.md +30 -0
  338. package/agents/sap/sap-supply-chain-ibp-resilience-agent/metadata.json +44 -0
  339. package/agents/sap/sap-testing-quality-gate-agent/AGENT.md +59 -0
  340. package/agents/sap/sap-testing-quality-gate-agent/harnesses/claude-code.agent.md +38 -0
  341. package/agents/sap/sap-testing-quality-gate-agent/harnesses/codex.toml +30 -0
  342. package/agents/sap/sap-testing-quality-gate-agent/harnesses/copilot.agent.md +32 -0
  343. package/agents/sap/sap-testing-quality-gate-agent/harnesses/cursor.agent.md +30 -0
  344. package/agents/sap/sap-testing-quality-gate-agent/harnesses/gemini.agent.md +30 -0
  345. package/agents/sap/sap-testing-quality-gate-agent/harnesses/kiro-cli.agent.json +1 -0
  346. package/agents/sap/sap-testing-quality-gate-agent/harnesses/kiro-ide.agent.md +30 -0
  347. package/agents/sap/sap-testing-quality-gate-agent/metadata.json +42 -0
  348. package/agents/sap/sap-transformation-portfolio-triage-agent/AGENT.md +58 -0
  349. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/claude-code.agent.md +37 -0
  350. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/codex.toml +30 -0
  351. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/copilot.agent.md +31 -0
  352. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/cursor.agent.md +29 -0
  353. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/gemini.agent.md +29 -0
  354. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/kiro-cli.agent.json +1 -0
  355. package/agents/sap/sap-transformation-portfolio-triage-agent/harnesses/kiro-ide.agent.md +29 -0
  356. package/agents/sap/sap-transformation-portfolio-triage-agent/metadata.json +42 -0
  357. package/agents/sap/sap-treasury-cash-risk-agent/AGENT.md +59 -0
  358. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/claude-code.agent.md +38 -0
  359. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/codex.toml +30 -0
  360. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/copilot.agent.md +32 -0
  361. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/cursor.agent.md +30 -0
  362. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/gemini.agent.md +30 -0
  363. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/kiro-cli.agent.json +1 -0
  364. package/agents/sap/sap-treasury-cash-risk-agent/harnesses/kiro-ide.agent.md +30 -0
  365. package/agents/sap/sap-treasury-cash-risk-agent/metadata.json +44 -0
  366. package/catalog/agents.json +1323 -0
  367. package/catalog/asset-integrity.json +2293 -43
  368. package/catalog/install-roles.json +94 -0
  369. package/catalog/skill-manifest.json +1770 -3
  370. package/catalog/skills.json +1912 -1
  371. package/package.json +1 -1
  372. package/plugins/cross-platform-agent-template/.codexignore +7 -0
  373. package/plugins/vanguard-frontier-agentic/.codex-plugin/plugin.json +1 -1
  374. package/plugins/vanguard-frontier-agentic/.codexignore +7 -0
  375. package/powers/README.md +3 -2
  376. package/powers/vanguard-sap/POWER.md +43 -0
  377. package/schemas/agent.schema.json +1 -0
  378. package/schemas/skill.schema.json +1 -0
  379. package/scripts/generate-docs-data.mjs +1 -1
  380. package/scripts/generate-kiro-powers.mjs +12 -0
  381. package/skills/claude/add-educational-comments/metadata.json +1 -1
  382. package/skills/sap/sap-abap-cloud-rap-review/SKILL.md +86 -0
  383. package/skills/sap/sap-abap-cloud-rap-review/agents/openai.yaml +11 -0
  384. package/skills/sap/sap-abap-cloud-rap-review/metadata.json +34 -0
  385. package/skills/sap/sap-abap-cloud-rap-review/references/context7-framework-docs.md +126 -0
  386. package/skills/sap/sap-abap-cloud-rap-review/references/official-sources.md +95 -0
  387. package/skills/sap/sap-abap-cloud-rap-review/references/safety-checklist.md +37 -0
  388. package/skills/sap/sap-abap-cloud-rap-review/references/workflow-and-output.md +76 -0
  389. package/skills/sap/sap-ai-core-generative-ai-hub-governance/SKILL.md +92 -0
  390. package/skills/sap/sap-ai-core-generative-ai-hub-governance/agents/openai.yaml +11 -0
  391. package/skills/sap/sap-ai-core-generative-ai-hub-governance/metadata.json +34 -0
  392. package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/context7-framework-docs.md +107 -0
  393. package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/official-sources.md +91 -0
  394. package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/safety-checklist.md +39 -0
  395. package/skills/sap/sap-ai-core-generative-ai-hub-governance/references/workflow-and-output.md +75 -0
  396. package/skills/sap/sap-ai-governance-security-architecture-protocol/SKILL.md +168 -0
  397. package/skills/sap/sap-ai-governance-security-architecture-protocol/agents/openai.yaml +11 -0
  398. package/skills/sap/sap-ai-governance-security-architecture-protocol/metadata.json +35 -0
  399. package/skills/sap/sap-ai-governance-security-architecture-protocol/references/official-sources.md +99 -0
  400. package/skills/sap/sap-ai-governance-security-architecture-protocol/references/safety-checklist.md +38 -0
  401. package/skills/sap/sap-ai-governance-security-architecture-protocol/references/workflow-and-output.md +89 -0
  402. package/skills/sap/sap-analytics-cloud-planning-governance/SKILL.md +87 -0
  403. package/skills/sap/sap-analytics-cloud-planning-governance/agents/openai.yaml +11 -0
  404. package/skills/sap/sap-analytics-cloud-planning-governance/metadata.json +33 -0
  405. package/skills/sap/sap-analytics-cloud-planning-governance/references/official-sources.md +89 -0
  406. package/skills/sap/sap-analytics-cloud-planning-governance/references/safety-checklist.md +35 -0
  407. package/skills/sap/sap-analytics-cloud-planning-governance/references/workflow-and-output.md +70 -0
  408. package/skills/sap/sap-audit-evidence-packaging/SKILL.md +92 -0
  409. package/skills/sap/sap-audit-evidence-packaging/agents/openai.yaml +11 -0
  410. package/skills/sap/sap-audit-evidence-packaging/metadata.json +33 -0
  411. package/skills/sap/sap-audit-evidence-packaging/references/official-sources.md +92 -0
  412. package/skills/sap/sap-audit-evidence-packaging/references/safety-checklist.md +38 -0
  413. package/skills/sap/sap-audit-evidence-packaging/references/workflow-and-output.md +129 -0
  414. package/skills/sap/sap-btp-governance-review/SKILL.md +84 -0
  415. package/skills/sap/sap-btp-governance-review/agents/openai.yaml +11 -0
  416. package/skills/sap/sap-btp-governance-review/metadata.json +34 -0
  417. package/skills/sap/sap-btp-governance-review/references/official-sources.md +91 -0
  418. package/skills/sap/sap-btp-governance-review/references/safety-checklist.md +35 -0
  419. package/skills/sap/sap-btp-governance-review/references/workflow-and-output.md +66 -0
  420. package/skills/sap/sap-cap-architecture-review/SKILL.md +86 -0
  421. package/skills/sap/sap-cap-architecture-review/agents/openai.yaml +11 -0
  422. package/skills/sap/sap-cap-architecture-review/metadata.json +34 -0
  423. package/skills/sap/sap-cap-architecture-review/references/context7-framework-docs.md +89 -0
  424. package/skills/sap/sap-cap-architecture-review/references/official-sources.md +93 -0
  425. package/skills/sap/sap-cap-architecture-review/references/safety-checklist.md +37 -0
  426. package/skills/sap/sap-cap-architecture-review/references/workflow-and-output.md +74 -0
  427. package/skills/sap/sap-clean-core-debt-review/SKILL.md +84 -0
  428. package/skills/sap/sap-clean-core-debt-review/agents/openai.yaml +11 -0
  429. package/skills/sap/sap-clean-core-debt-review/metadata.json +33 -0
  430. package/skills/sap/sap-clean-core-debt-review/references/context7-framework-docs.md +56 -0
  431. package/skills/sap/sap-clean-core-debt-review/references/official-sources.md +75 -0
  432. package/skills/sap/sap-clean-core-debt-review/references/safety-checklist.md +36 -0
  433. package/skills/sap/sap-clean-core-debt-review/references/workflow-and-output.md +62 -0
  434. package/skills/sap/sap-cloud-alm-sre-incident-review/SKILL.md +83 -0
  435. package/skills/sap/sap-cloud-alm-sre-incident-review/agents/openai.yaml +11 -0
  436. package/skills/sap/sap-cloud-alm-sre-incident-review/metadata.json +33 -0
  437. package/skills/sap/sap-cloud-alm-sre-incident-review/references/official-sources.md +89 -0
  438. package/skills/sap/sap-cloud-alm-sre-incident-review/references/safety-checklist.md +39 -0
  439. package/skills/sap/sap-cloud-alm-sre-incident-review/references/workflow-and-output.md +88 -0
  440. package/skills/sap/sap-custom-code-remediation-review/SKILL.md +83 -0
  441. package/skills/sap/sap-custom-code-remediation-review/agents/openai.yaml +11 -0
  442. package/skills/sap/sap-custom-code-remediation-review/metadata.json +33 -0
  443. package/skills/sap/sap-custom-code-remediation-review/references/official-sources.md +85 -0
  444. package/skills/sap/sap-custom-code-remediation-review/references/safety-checklist.md +39 -0
  445. package/skills/sap/sap-custom-code-remediation-review/references/workflow-and-output.md +83 -0
  446. package/skills/sap/sap-data-migration-cutover-readiness/SKILL.md +90 -0
  447. package/skills/sap/sap-data-migration-cutover-readiness/agents/openai.yaml +14 -0
  448. package/skills/sap/sap-data-migration-cutover-readiness/metadata.json +32 -0
  449. package/skills/sap/sap-data-migration-cutover-readiness/references/official-sources.md +73 -0
  450. package/skills/sap/sap-data-migration-cutover-readiness/references/safety-checklist.md +51 -0
  451. package/skills/sap/sap-data-migration-cutover-readiness/references/workflow-and-output.md +85 -0
  452. package/skills/sap/sap-data-privacy-analytics-ai-protocol/SKILL.md +162 -0
  453. package/skills/sap/sap-data-privacy-analytics-ai-protocol/agents/openai.yaml +11 -0
  454. package/skills/sap/sap-data-privacy-analytics-ai-protocol/metadata.json +34 -0
  455. package/skills/sap/sap-data-privacy-analytics-ai-protocol/references/official-sources.md +93 -0
  456. package/skills/sap/sap-data-privacy-analytics-ai-protocol/references/safety-checklist.md +39 -0
  457. package/skills/sap/sap-data-privacy-analytics-ai-protocol/references/workflow-and-output.md +78 -0
  458. package/skills/sap/sap-datasphere-data-product-architecture/SKILL.md +86 -0
  459. package/skills/sap/sap-datasphere-data-product-architecture/agents/openai.yaml +11 -0
  460. package/skills/sap/sap-datasphere-data-product-architecture/metadata.json +33 -0
  461. package/skills/sap/sap-datasphere-data-product-architecture/references/official-sources.md +85 -0
  462. package/skills/sap/sap-datasphere-data-product-architecture/references/safety-checklist.md +35 -0
  463. package/skills/sap/sap-datasphere-data-product-architecture/references/workflow-and-output.md +70 -0
  464. package/skills/sap/sap-ewm-tm-logistics-execution-review/SKILL.md +90 -0
  465. package/skills/sap/sap-ewm-tm-logistics-execution-review/agents/openai.yaml +11 -0
  466. package/skills/sap/sap-ewm-tm-logistics-execution-review/metadata.json +32 -0
  467. package/skills/sap/sap-ewm-tm-logistics-execution-review/references/official-sources.md +79 -0
  468. package/skills/sap/sap-ewm-tm-logistics-execution-review/references/safety-checklist.md +37 -0
  469. package/skills/sap/sap-ewm-tm-logistics-execution-review/references/workflow-and-output.md +91 -0
  470. package/skills/sap/sap-finance-fico-controls-review/SKILL.md +91 -0
  471. package/skills/sap/sap-finance-fico-controls-review/agents/openai.yaml +11 -0
  472. package/skills/sap/sap-finance-fico-controls-review/metadata.json +33 -0
  473. package/skills/sap/sap-finance-fico-controls-review/references/official-sources.md +89 -0
  474. package/skills/sap/sap-finance-fico-controls-review/references/safety-checklist.md +38 -0
  475. package/skills/sap/sap-finance-fico-controls-review/references/workflow-and-output.md +88 -0
  476. package/skills/sap/sap-fiori-ui5-ux-review/SKILL.md +87 -0
  477. package/skills/sap/sap-fiori-ui5-ux-review/agents/openai.yaml +14 -0
  478. package/skills/sap/sap-fiori-ui5-ux-review/metadata.json +33 -0
  479. package/skills/sap/sap-fiori-ui5-ux-review/references/context7-framework-docs.md +128 -0
  480. package/skills/sap/sap-fiori-ui5-ux-review/references/official-sources.md +95 -0
  481. package/skills/sap/sap-fiori-ui5-ux-review/references/safety-checklist.md +37 -0
  482. package/skills/sap/sap-fiori-ui5-ux-review/references/workflow-and-output.md +96 -0
  483. package/skills/sap/sap-guarded-btp-entitlement-change/SKILL.md +156 -0
  484. package/skills/sap/sap-guarded-btp-entitlement-change/agents/openai.yaml +17 -0
  485. package/skills/sap/sap-guarded-btp-entitlement-change/metadata.json +33 -0
  486. package/skills/sap/sap-guarded-btp-entitlement-change/references/live-environment-access.md +93 -0
  487. package/skills/sap/sap-guarded-btp-entitlement-change/references/official-sources.md +75 -0
  488. package/skills/sap/sap-guarded-btp-entitlement-change/references/safety-checklist.md +57 -0
  489. package/skills/sap/sap-guarded-btp-entitlement-change/references/workflow-and-output.md +132 -0
  490. package/skills/sap/sap-guarded-integration-flow-change/SKILL.md +151 -0
  491. package/skills/sap/sap-guarded-integration-flow-change/agents/openai.yaml +17 -0
  492. package/skills/sap/sap-guarded-integration-flow-change/metadata.json +33 -0
  493. package/skills/sap/sap-guarded-integration-flow-change/references/live-environment-access.md +80 -0
  494. package/skills/sap/sap-guarded-integration-flow-change/references/official-sources.md +73 -0
  495. package/skills/sap/sap-guarded-integration-flow-change/references/safety-checklist.md +56 -0
  496. package/skills/sap/sap-guarded-integration-flow-change/references/workflow-and-output.md +122 -0
  497. package/skills/sap/sap-guarded-role-assignment/SKILL.md +159 -0
  498. package/skills/sap/sap-guarded-role-assignment/agents/openai.yaml +17 -0
  499. package/skills/sap/sap-guarded-role-assignment/metadata.json +33 -0
  500. package/skills/sap/sap-guarded-role-assignment/references/live-environment-access.md +93 -0
  501. package/skills/sap/sap-guarded-role-assignment/references/official-sources.md +73 -0
  502. package/skills/sap/sap-guarded-role-assignment/references/safety-checklist.md +57 -0
  503. package/skills/sap/sap-guarded-role-assignment/references/workflow-and-output.md +133 -0
  504. package/skills/sap/sap-guarded-transport-import/SKILL.md +144 -0
  505. package/skills/sap/sap-guarded-transport-import/agents/openai.yaml +14 -0
  506. package/skills/sap/sap-guarded-transport-import/metadata.json +34 -0
  507. package/skills/sap/sap-guarded-transport-import/references/live-environment-access.md +81 -0
  508. package/skills/sap/sap-guarded-transport-import/references/official-sources.md +79 -0
  509. package/skills/sap/sap-guarded-transport-import/references/safety-checklist.md +52 -0
  510. package/skills/sap/sap-guarded-transport-import/references/workflow-and-output.md +93 -0
  511. package/skills/sap/sap-hana-cloud-performance-cost/SKILL.md +87 -0
  512. package/skills/sap/sap-hana-cloud-performance-cost/agents/openai.yaml +11 -0
  513. package/skills/sap/sap-hana-cloud-performance-cost/metadata.json +33 -0
  514. package/skills/sap/sap-hana-cloud-performance-cost/references/context7-framework-docs.md +94 -0
  515. package/skills/sap/sap-hana-cloud-performance-cost/references/official-sources.md +83 -0
  516. package/skills/sap/sap-hana-cloud-performance-cost/references/safety-checklist.md +36 -0
  517. package/skills/sap/sap-hana-cloud-performance-cost/references/workflow-and-output.md +68 -0
  518. package/skills/sap/sap-hypercare-incident-commander-review/SKILL.md +93 -0
  519. package/skills/sap/sap-hypercare-incident-commander-review/agents/openai.yaml +14 -0
  520. package/skills/sap/sap-hypercare-incident-commander-review/metadata.json +31 -0
  521. package/skills/sap/sap-hypercare-incident-commander-review/references/official-sources.md +63 -0
  522. package/skills/sap/sap-hypercare-incident-commander-review/references/safety-checklist.md +55 -0
  523. package/skills/sap/sap-hypercare-incident-commander-review/references/workflow-and-output.md +98 -0
  524. package/skills/sap/sap-integration-platform-businessops-protocol/SKILL.md +162 -0
  525. package/skills/sap/sap-integration-platform-businessops-protocol/agents/openai.yaml +11 -0
  526. package/skills/sap/sap-integration-platform-businessops-protocol/metadata.json +35 -0
  527. package/skills/sap/sap-integration-platform-businessops-protocol/references/official-sources.md +99 -0
  528. package/skills/sap/sap-integration-platform-businessops-protocol/references/safety-checklist.md +36 -0
  529. package/skills/sap/sap-integration-platform-businessops-protocol/references/workflow-and-output.md +76 -0
  530. package/skills/sap/sap-integration-suite-review/SKILL.md +87 -0
  531. package/skills/sap/sap-integration-suite-review/agents/openai.yaml +11 -0
  532. package/skills/sap/sap-integration-suite-review/metadata.json +33 -0
  533. package/skills/sap/sap-integration-suite-review/references/context7-framework-docs.md +76 -0
  534. package/skills/sap/sap-integration-suite-review/references/official-sources.md +79 -0
  535. package/skills/sap/sap-integration-suite-review/references/safety-checklist.md +36 -0
  536. package/skills/sap/sap-integration-suite-review/references/workflow-and-output.md +78 -0
  537. package/skills/sap/sap-joule-governance-adoption-review/SKILL.md +83 -0
  538. package/skills/sap/sap-joule-governance-adoption-review/agents/openai.yaml +11 -0
  539. package/skills/sap/sap-joule-governance-adoption-review/metadata.json +33 -0
  540. package/skills/sap/sap-joule-governance-adoption-review/references/official-sources.md +83 -0
  541. package/skills/sap/sap-joule-governance-adoption-review/references/safety-checklist.md +37 -0
  542. package/skills/sap/sap-joule-governance-adoption-review/references/workflow-and-output.md +81 -0
  543. package/skills/sap/sap-license-btp-consumption-finops-review/SKILL.md +89 -0
  544. package/skills/sap/sap-license-btp-consumption-finops-review/agents/openai.yaml +11 -0
  545. package/skills/sap/sap-license-btp-consumption-finops-review/metadata.json +32 -0
  546. package/skills/sap/sap-license-btp-consumption-finops-review/references/official-sources.md +71 -0
  547. package/skills/sap/sap-license-btp-consumption-finops-review/references/safety-checklist.md +36 -0
  548. package/skills/sap/sap-license-btp-consumption-finops-review/references/workflow-and-output.md +69 -0
  549. package/skills/sap/sap-live-readonly-identity-trust-discovery/SKILL.md +142 -0
  550. package/skills/sap/sap-live-readonly-identity-trust-discovery/agents/openai.yaml +14 -0
  551. package/skills/sap/sap-live-readonly-identity-trust-discovery/metadata.json +34 -0
  552. package/skills/sap/sap-live-readonly-identity-trust-discovery/references/live-environment-access.md +151 -0
  553. package/skills/sap/sap-live-readonly-identity-trust-discovery/references/official-sources.md +83 -0
  554. package/skills/sap/sap-live-readonly-identity-trust-discovery/references/safety-checklist.md +49 -0
  555. package/skills/sap/sap-live-readonly-identity-trust-discovery/references/workflow-and-output.md +103 -0
  556. package/skills/sap/sap-live-readonly-landscape-discovery/SKILL.md +135 -0
  557. package/skills/sap/sap-live-readonly-landscape-discovery/agents/openai.yaml +14 -0
  558. package/skills/sap/sap-live-readonly-landscape-discovery/metadata.json +34 -0
  559. package/skills/sap/sap-live-readonly-landscape-discovery/references/live-environment-access.md +111 -0
  560. package/skills/sap/sap-live-readonly-landscape-discovery/references/official-sources.md +83 -0
  561. package/skills/sap/sap-live-readonly-landscape-discovery/references/safety-checklist.md +45 -0
  562. package/skills/sap/sap-live-readonly-landscape-discovery/references/workflow-and-output.md +102 -0
  563. package/skills/sap/sap-maestro/SKILL.md +81 -0
  564. package/skills/sap/sap-maestro/agents/openai.yaml +11 -0
  565. package/skills/sap/sap-maestro/metadata.json +32 -0
  566. package/skills/sap/sap-maestro/references/official-sources.md +53 -0
  567. package/skills/sap/sap-maestro/references/safety-checklist.md +39 -0
  568. package/skills/sap/sap-maestro/references/workflow-and-output.md +73 -0
  569. package/skills/sap/sap-manufacturing-execution-risk-review/SKILL.md +89 -0
  570. package/skills/sap/sap-manufacturing-execution-risk-review/agents/openai.yaml +11 -0
  571. package/skills/sap/sap-manufacturing-execution-risk-review/metadata.json +32 -0
  572. package/skills/sap/sap-manufacturing-execution-risk-review/references/official-sources.md +79 -0
  573. package/skills/sap/sap-manufacturing-execution-risk-review/references/safety-checklist.md +39 -0
  574. package/skills/sap/sap-manufacturing-execution-risk-review/references/workflow-and-output.md +91 -0
  575. package/skills/sap/sap-mdg-master-data-quality-review/SKILL.md +85 -0
  576. package/skills/sap/sap-mdg-master-data-quality-review/agents/openai.yaml +11 -0
  577. package/skills/sap/sap-mdg-master-data-quality-review/metadata.json +33 -0
  578. package/skills/sap/sap-mdg-master-data-quality-review/references/official-sources.md +89 -0
  579. package/skills/sap/sap-mdg-master-data-quality-review/references/safety-checklist.md +37 -0
  580. package/skills/sap/sap-mdg-master-data-quality-review/references/workflow-and-output.md +91 -0
  581. package/skills/sap/sap-order-to-cash-review/SKILL.md +89 -0
  582. package/skills/sap/sap-order-to-cash-review/agents/openai.yaml +11 -0
  583. package/skills/sap/sap-order-to-cash-review/metadata.json +32 -0
  584. package/skills/sap/sap-order-to-cash-review/references/official-sources.md +79 -0
  585. package/skills/sap/sap-order-to-cash-review/references/safety-checklist.md +39 -0
  586. package/skills/sap/sap-order-to-cash-review/references/workflow-and-output.md +87 -0
  587. package/skills/sap/sap-procurement-ariba-value-leakage-review/SKILL.md +90 -0
  588. package/skills/sap/sap-procurement-ariba-value-leakage-review/agents/openai.yaml +11 -0
  589. package/skills/sap/sap-procurement-ariba-value-leakage-review/metadata.json +32 -0
  590. package/skills/sap/sap-procurement-ariba-value-leakage-review/references/official-sources.md +79 -0
  591. package/skills/sap/sap-procurement-ariba-value-leakage-review/references/safety-checklist.md +38 -0
  592. package/skills/sap/sap-procurement-ariba-value-leakage-review/references/workflow-and-output.md +87 -0
  593. package/skills/sap/sap-procurement-license-finops-vendor-protocol/SKILL.md +155 -0
  594. package/skills/sap/sap-procurement-license-finops-vendor-protocol/agents/openai.yaml +11 -0
  595. package/skills/sap/sap-procurement-license-finops-vendor-protocol/metadata.json +35 -0
  596. package/skills/sap/sap-procurement-license-finops-vendor-protocol/references/official-sources.md +99 -0
  597. package/skills/sap/sap-procurement-license-finops-vendor-protocol/references/safety-checklist.md +36 -0
  598. package/skills/sap/sap-procurement-license-finops-vendor-protocol/references/workflow-and-output.md +62 -0
  599. package/skills/sap/sap-release-change-collision-review/SKILL.md +92 -0
  600. package/skills/sap/sap-release-change-collision-review/agents/openai.yaml +14 -0
  601. package/skills/sap/sap-release-change-collision-review/metadata.json +31 -0
  602. package/skills/sap/sap-release-change-collision-review/references/official-sources.md +63 -0
  603. package/skills/sap/sap-release-change-collision-review/references/safety-checklist.md +51 -0
  604. package/skills/sap/sap-release-change-collision-review/references/workflow-and-output.md +85 -0
  605. package/skills/sap/sap-release-cutover-finance-controls-protocol/SKILL.md +170 -0
  606. package/skills/sap/sap-release-cutover-finance-controls-protocol/agents/openai.yaml +11 -0
  607. package/skills/sap/sap-release-cutover-finance-controls-protocol/metadata.json +33 -0
  608. package/skills/sap/sap-release-cutover-finance-controls-protocol/references/official-sources.md +89 -0
  609. package/skills/sap/sap-release-cutover-finance-controls-protocol/references/safety-checklist.md +39 -0
  610. package/skills/sap/sap-release-cutover-finance-controls-protocol/references/workflow-and-output.md +98 -0
  611. package/skills/sap/sap-rise-sla-vendor-risk-review/SKILL.md +88 -0
  612. package/skills/sap/sap-rise-sla-vendor-risk-review/agents/openai.yaml +11 -0
  613. package/skills/sap/sap-rise-sla-vendor-risk-review/metadata.json +32 -0
  614. package/skills/sap/sap-rise-sla-vendor-risk-review/references/official-sources.md +73 -0
  615. package/skills/sap/sap-rise-sla-vendor-risk-review/references/safety-checklist.md +36 -0
  616. package/skills/sap/sap-rise-sla-vendor-risk-review/references/workflow-and-output.md +56 -0
  617. package/skills/sap/sap-s4hana-transformation-architecture-review/SKILL.md +84 -0
  618. package/skills/sap/sap-s4hana-transformation-architecture-review/agents/openai.yaml +14 -0
  619. package/skills/sap/sap-s4hana-transformation-architecture-review/metadata.json +32 -0
  620. package/skills/sap/sap-s4hana-transformation-architecture-review/references/official-sources.md +75 -0
  621. package/skills/sap/sap-s4hana-transformation-architecture-review/references/safety-checklist.md +40 -0
  622. package/skills/sap/sap-s4hana-transformation-architecture-review/references/workflow-and-output.md +67 -0
  623. package/skills/sap/sap-security-hr-legal-protocol/SKILL.md +149 -0
  624. package/skills/sap/sap-security-hr-legal-protocol/agents/openai.yaml +11 -0
  625. package/skills/sap/sap-security-hr-legal-protocol/metadata.json +34 -0
  626. package/skills/sap/sap-security-hr-legal-protocol/references/official-sources.md +89 -0
  627. package/skills/sap/sap-security-hr-legal-protocol/references/safety-checklist.md +38 -0
  628. package/skills/sap/sap-security-hr-legal-protocol/references/workflow-and-output.md +65 -0
  629. package/skills/sap/sap-security-iam-grc-sod-review/SKILL.md +86 -0
  630. package/skills/sap/sap-security-iam-grc-sod-review/agents/openai.yaml +11 -0
  631. package/skills/sap/sap-security-iam-grc-sod-review/metadata.json +33 -0
  632. package/skills/sap/sap-security-iam-grc-sod-review/references/official-sources.md +83 -0
  633. package/skills/sap/sap-security-iam-grc-sod-review/references/safety-checklist.md +36 -0
  634. package/skills/sap/sap-security-iam-grc-sod-review/references/workflow-and-output.md +79 -0
  635. package/skills/sap/sap-signavio-process-mining-value/SKILL.md +85 -0
  636. package/skills/sap/sap-signavio-process-mining-value/agents/openai.yaml +11 -0
  637. package/skills/sap/sap-signavio-process-mining-value/metadata.json +33 -0
  638. package/skills/sap/sap-signavio-process-mining-value/references/official-sources.md +89 -0
  639. package/skills/sap/sap-signavio-process-mining-value/references/safety-checklist.md +36 -0
  640. package/skills/sap/sap-signavio-process-mining-value/references/workflow-and-output.md +91 -0
  641. package/skills/sap/sap-successfactors-hr-process-risk-review/SKILL.md +92 -0
  642. package/skills/sap/sap-successfactors-hr-process-risk-review/agents/openai.yaml +11 -0
  643. package/skills/sap/sap-successfactors-hr-process-risk-review/metadata.json +33 -0
  644. package/skills/sap/sap-successfactors-hr-process-risk-review/references/official-sources.md +83 -0
  645. package/skills/sap/sap-successfactors-hr-process-risk-review/references/safety-checklist.md +38 -0
  646. package/skills/sap/sap-successfactors-hr-process-risk-review/references/workflow-and-output.md +86 -0
  647. package/skills/sap/sap-supply-chain-ibp-resilience-review/SKILL.md +90 -0
  648. package/skills/sap/sap-supply-chain-ibp-resilience-review/agents/openai.yaml +11 -0
  649. package/skills/sap/sap-supply-chain-ibp-resilience-review/metadata.json +32 -0
  650. package/skills/sap/sap-supply-chain-ibp-resilience-review/references/official-sources.md +79 -0
  651. package/skills/sap/sap-supply-chain-ibp-resilience-review/references/safety-checklist.md +38 -0
  652. package/skills/sap/sap-supply-chain-ibp-resilience-review/references/workflow-and-output.md +89 -0
  653. package/skills/sap/sap-testing-quality-gate-review/SKILL.md +92 -0
  654. package/skills/sap/sap-testing-quality-gate-review/agents/openai.yaml +14 -0
  655. package/skills/sap/sap-testing-quality-gate-review/metadata.json +31 -0
  656. package/skills/sap/sap-testing-quality-gate-review/references/official-sources.md +65 -0
  657. package/skills/sap/sap-testing-quality-gate-review/references/safety-checklist.md +53 -0
  658. package/skills/sap/sap-testing-quality-gate-review/references/workflow-and-output.md +98 -0
  659. package/skills/sap/sap-transformation-portfolio-triage-review/SKILL.md +87 -0
  660. package/skills/sap/sap-transformation-portfolio-triage-review/agents/openai.yaml +11 -0
  661. package/skills/sap/sap-transformation-portfolio-triage-review/metadata.json +32 -0
  662. package/skills/sap/sap-transformation-portfolio-triage-review/references/official-sources.md +71 -0
  663. package/skills/sap/sap-transformation-portfolio-triage-review/references/safety-checklist.md +36 -0
  664. package/skills/sap/sap-transformation-portfolio-triage-review/references/workflow-and-output.md +69 -0
  665. package/skills/sap/sap-treasury-cash-risk-review/SKILL.md +90 -0
  666. package/skills/sap/sap-treasury-cash-risk-review/agents/openai.yaml +11 -0
  667. package/skills/sap/sap-treasury-cash-risk-review/metadata.json +32 -0
  668. package/skills/sap/sap-treasury-cash-risk-review/references/official-sources.md +79 -0
  669. package/skills/sap/sap-treasury-cash-risk-review/references/safety-checklist.md +38 -0
  670. package/skills/sap/sap-treasury-cash-risk-review/references/workflow-and-output.md +89 -0
  671. package/tests/fixtures/sap-maestro-routing/expected/01-clean-core-debt.json +6 -0
  672. package/tests/fixtures/sap-maestro-routing/expected/02-landscape-discovery.json +6 -0
  673. package/tests/fixtures/sap-maestro-routing/expected/03-live-guard-transport.json +6 -0
  674. package/tests/fixtures/sap-maestro-routing/expected/04-adversarial-injection.json +6 -0
  675. package/tests/fixtures/sap-maestro-routing/expected/05-adversarial-persona.json +6 -0
  676. package/tests/fixtures/sap-maestro-routing/expected/06-ambiguous.json +4 -0
  677. package/tests/fixtures/sap-maestro-routing/expected/07-secrets-bait.json +6 -0
  678. package/tests/fixtures/sap-maestro-routing/expected/08-btp-governance.json +6 -0
  679. package/tests/fixtures/sap-maestro-routing/expected/09-integration-suite.json +6 -0
  680. package/tests/fixtures/sap-maestro-routing/expected/10-security-sod.json +6 -0
  681. package/tests/fixtures/sap-maestro-routing/expected/11-cap-architecture.json +6 -0
  682. package/tests/fixtures/sap-maestro-routing/expected/12-abap-cloud-rap.json +7 -0
  683. package/tests/fixtures/sap-maestro-routing/expected/13-ai-governance.json +6 -0
  684. package/tests/fixtures/sap-maestro-routing/expected/14-datasphere.json +6 -0
  685. package/tests/fixtures/sap-maestro-routing/expected/15-analytics-cloud.json +6 -0
  686. package/tests/fixtures/sap-maestro-routing/expected/16-hana-cloud.json +6 -0
  687. package/tests/fixtures/sap-maestro-routing/expected/17-s4hana-transformation.json +6 -0
  688. package/tests/fixtures/sap-maestro-routing/expected/18-custom-code-remediation.json +6 -0
  689. package/tests/fixtures/sap-maestro-routing/expected/19-data-migration-cutover.json +6 -0
  690. package/tests/fixtures/sap-maestro-routing/expected/20-finance-fico.json +6 -0
  691. package/tests/fixtures/sap-maestro-routing/expected/21-mdg-master-data.json +6 -0
  692. package/tests/fixtures/sap-maestro-routing/expected/22-signavio.json +6 -0
  693. package/tests/fixtures/sap-maestro-routing/expected/23-procurement-ariba.json +6 -0
  694. package/tests/fixtures/sap-maestro-routing/expected/24-supply-chain-ibp.json +6 -0
  695. package/tests/fixtures/sap-maestro-routing/expected/25-order-to-cash.json +6 -0
  696. package/tests/fixtures/sap-maestro-routing/expected/26-treasury.json +6 -0
  697. package/tests/fixtures/sap-maestro-routing/expected/27-ewm-tm.json +6 -0
  698. package/tests/fixtures/sap-maestro-routing/expected/28-manufacturing.json +6 -0
  699. package/tests/fixtures/sap-maestro-routing/expected/29-successfactors.json +6 -0
  700. package/tests/fixtures/sap-maestro-routing/expected/30-joule.json +6 -0
  701. package/tests/fixtures/sap-maestro-routing/expected/31-cloud-alm.json +6 -0
  702. package/tests/fixtures/sap-maestro-routing/expected/32-transformation-portfolio.json +6 -0
  703. package/tests/fixtures/sap-maestro-routing/expected/33-rise-sla.json +6 -0
  704. package/tests/fixtures/sap-maestro-routing/expected/34-license-finops.json +6 -0
  705. package/tests/fixtures/sap-maestro-routing/expected/35-testing-quality.json +6 -0
  706. package/tests/fixtures/sap-maestro-routing/expected/36-release-collision.json +6 -0
  707. package/tests/fixtures/sap-maestro-routing/expected/37-hypercare.json +6 -0
  708. package/tests/fixtures/sap-maestro-routing/expected/38-identity-trust.json +6 -0
  709. package/tests/fixtures/sap-maestro-routing/expected/39-fiori-ui5.json +6 -0
  710. package/tests/fixtures/sap-maestro-routing/expected/40-audit-evidence.json +6 -0
  711. package/tests/fixtures/sap-maestro-routing/expected/41-guard-role-assign.json +6 -0
  712. package/tests/fixtures/sap-maestro-routing/expected/42-guard-iflow-deploy.json +6 -0
  713. package/tests/fixtures/sap-maestro-routing/expected/43-guard-entitlement.json +6 -0
  714. package/tests/fixtures/sap-maestro-routing/inputs/01-clean-core-debt.json +5 -0
  715. package/tests/fixtures/sap-maestro-routing/inputs/02-landscape-discovery.json +5 -0
  716. package/tests/fixtures/sap-maestro-routing/inputs/03-live-guard-transport.json +7 -0
  717. package/tests/fixtures/sap-maestro-routing/inputs/04-adversarial-injection.json +7 -0
  718. package/tests/fixtures/sap-maestro-routing/inputs/05-adversarial-persona.json +7 -0
  719. package/tests/fixtures/sap-maestro-routing/inputs/06-ambiguous.json +7 -0
  720. package/tests/fixtures/sap-maestro-routing/inputs/07-secrets-bait.json +7 -0
  721. package/tests/fixtures/sap-maestro-routing/inputs/08-btp-governance.json +7 -0
  722. package/tests/fixtures/sap-maestro-routing/inputs/09-integration-suite.json +7 -0
  723. package/tests/fixtures/sap-maestro-routing/inputs/10-security-sod.json +7 -0
  724. package/tests/fixtures/sap-maestro-routing/inputs/11-cap-architecture.json +7 -0
  725. package/tests/fixtures/sap-maestro-routing/inputs/12-abap-cloud-rap.json +7 -0
  726. package/tests/fixtures/sap-maestro-routing/inputs/13-ai-governance.json +7 -0
  727. package/tests/fixtures/sap-maestro-routing/inputs/14-datasphere.json +7 -0
  728. package/tests/fixtures/sap-maestro-routing/inputs/15-analytics-cloud.json +7 -0
  729. package/tests/fixtures/sap-maestro-routing/inputs/16-hana-cloud.json +7 -0
  730. package/tests/fixtures/sap-maestro-routing/inputs/17-s4hana-transformation.json +7 -0
  731. package/tests/fixtures/sap-maestro-routing/inputs/18-custom-code-remediation.json +7 -0
  732. package/tests/fixtures/sap-maestro-routing/inputs/19-data-migration-cutover.json +7 -0
  733. package/tests/fixtures/sap-maestro-routing/inputs/20-finance-fico.json +7 -0
  734. package/tests/fixtures/sap-maestro-routing/inputs/21-mdg-master-data.json +7 -0
  735. package/tests/fixtures/sap-maestro-routing/inputs/22-signavio.json +7 -0
  736. package/tests/fixtures/sap-maestro-routing/inputs/23-procurement-ariba.json +7 -0
  737. package/tests/fixtures/sap-maestro-routing/inputs/24-supply-chain-ibp.json +7 -0
  738. package/tests/fixtures/sap-maestro-routing/inputs/25-order-to-cash.json +7 -0
  739. package/tests/fixtures/sap-maestro-routing/inputs/26-treasury.json +7 -0
  740. package/tests/fixtures/sap-maestro-routing/inputs/27-ewm-tm.json +7 -0
  741. package/tests/fixtures/sap-maestro-routing/inputs/28-manufacturing.json +7 -0
  742. package/tests/fixtures/sap-maestro-routing/inputs/29-successfactors.json +7 -0
  743. package/tests/fixtures/sap-maestro-routing/inputs/30-joule.json +7 -0
  744. package/tests/fixtures/sap-maestro-routing/inputs/31-cloud-alm.json +7 -0
  745. package/tests/fixtures/sap-maestro-routing/inputs/32-transformation-portfolio.json +7 -0
  746. package/tests/fixtures/sap-maestro-routing/inputs/33-rise-sla.json +7 -0
  747. package/tests/fixtures/sap-maestro-routing/inputs/34-license-finops.json +7 -0
  748. package/tests/fixtures/sap-maestro-routing/inputs/35-testing-quality.json +7 -0
  749. package/tests/fixtures/sap-maestro-routing/inputs/36-release-collision.json +7 -0
  750. package/tests/fixtures/sap-maestro-routing/inputs/37-hypercare.json +7 -0
  751. package/tests/fixtures/sap-maestro-routing/inputs/38-identity-trust.json +7 -0
  752. package/tests/fixtures/sap-maestro-routing/inputs/39-fiori-ui5.json +7 -0
  753. package/tests/fixtures/sap-maestro-routing/inputs/40-audit-evidence.json +7 -0
  754. package/tests/fixtures/sap-maestro-routing/inputs/41-guard-role-assign.json +7 -0
  755. package/tests/fixtures/sap-maestro-routing/inputs/42-guard-iflow-deploy.json +7 -0
  756. package/tests/fixtures/sap-maestro-routing/inputs/43-guard-entitlement.json +7 -0
  757. package/tests/fixtures/sap-maestro-routing/taxonomy.json +509 -0
  758. package/tests/validate-catalog.py +1 -0
@@ -0,0 +1,93 @@
1
+ # Live environment access — SAP Guarded BTP Entitlement Change
2
+
3
+ This reference defines credential setup, role requirements, command restrictions by step, and audit log format for guarded BTP entitlement change sessions.
4
+
5
+ ## Credential requirements
6
+
7
+ ### BTP Entitlements API (Cloud Management Service)
8
+
9
+ Required service instance and binding:
10
+ - Service: `cis` (Cloud Management Service), plan: `central` (for global account operations)
11
+ - Required scope for read-only access (steps 8–9): `EntitlementsManagement.View`
12
+ - Required scope for write access (step 14): `EntitlementsManagement.Edit`
13
+ - Token endpoint: from service key `uaa.url` + `/oauth/token` with client credentials grant
14
+
15
+ Not permitted:
16
+ - Global Account Administrator user credentials for API calls — use service key with minimum scope
17
+ - Service plan `local` (subaccount-scoped only) for global account entitlement changes
18
+
19
+ ### BTP Subscription Management API
20
+
21
+ Required service instance:
22
+ - Service: `saas-registry`, plan: `application` or `service`
23
+ - Required scope for read-only (step 8): `SaaS-Registry.read`
24
+ - Required scope for write (step 14): `SaaS-Registry.write`
25
+
26
+ ### BTP Usage Data Management Service
27
+
28
+ Required service instance:
29
+ - Service: `uas` (Usage Data Management Service), plan: `reporting-ga-admin` (for global account usage reports)
30
+ - Required scope: `uas.usage.report.read` (read-only; no write scope exists)
31
+
32
+ ### BTP Cockpit (human operator access)
33
+
34
+ Read-only (steps 1–13):
35
+ - Role collection: `Global Account Viewer` (read entitlement assignments without modification rights)
36
+
37
+ Write (step 14 only):
38
+ - Role collection: `Entitlements Administrator` scoped to the specific global account
39
+ - Not permitted: `Global Account Administrator` role collection (grants directory management, trust configuration, and subaccount creation rights beyond entitlement scope)
40
+
41
+ ## Step-by-step access matrix
42
+
43
+ | Step | Live system access | Access type | Credential scope |
44
+ |------|--------------------|-------------|-----------------|
45
+ | 1–7 | None | Advisory only | Not applicable |
46
+ | 8 | BTP Entitlements API / Usage API / cockpit | Read-only | EntitlementsManagement.View + uas.usage.report.read |
47
+ | 9 | BTP Entitlements API / Usage API | Read-only (diff and cost baseline) | EntitlementsManagement.View + uas.usage.report.read |
48
+ | 10–13 | None | Advisory only | Not applicable |
49
+ | 14 | BTP Entitlements API / Subscription API | Mutating — entitlement/quota/subscription only | EntitlementsManagement.Edit + SaaS-Registry.write |
50
+ | 15 | BTP Entitlements API / Usage API / cockpit | Read-only | EntitlementsManagement.View + uas.usage.report.read |
51
+ | 16–17 | None | Reporting only | Not applicable |
52
+
53
+ ## Audit log format
54
+
55
+ Every command executed (steps 8, 9, 14, 15) must be logged before execution:
56
+
57
+ ```
58
+ [BTP_ENTITLEMENT_AUDIT_LOG]
59
+ Step: <step number and name>
60
+ Timestamp (UTC): <ISO 8601>
61
+ Global account: <global account ID and display name>
62
+ Subaccount: <subaccount GUID and display name>
63
+ Tool: <BTP Entitlements API | BTP Subscription API | Usage Data API | BTP cockpit>
64
+ Command/API call: <exact API endpoint and method, credentials omitted>
65
+ Service(s) in scope: <service name, service plan, quota delta>
66
+ Cost delta: <estimated monthly cost change>
67
+ Output summary: <one-line summary>
68
+ Errors/Warnings: <none | list>
69
+ Redactions applied: <yes/no>
70
+ Dual approval gate cleared: <yes (step 13 documented: platform owner + FinOps) | not yet reached>
71
+ ```
72
+
73
+ ## Pre-execution gate checklist (step 13 → step 14)
74
+
75
+ Before executing any entitlement, quota, or subscription change, all of the following must be true:
76
+
77
+ - [ ] Step 1: Change type, service name, service plan, and billing model classified
78
+ - [ ] Step 2: Target global account ID, subaccount ID, and environment tier confirmed
79
+ - [ ] Step 3: Criticality level and cost sensitivity assigned
80
+ - [ ] Step 4: Requester name and role documented
81
+ - [ ] Step 5: Platform owner and FinOps approver names, roles, and authorization documented (both different from requester)
82
+ - [ ] Step 6: Change management or FinOps budget ticket number confirmed
83
+ - [ ] Step 7: Entitlement change list with service, plan, quota delta, and subaccount documented
84
+ - [ ] Step 8: Current entitlement assignments and consumption baseline obtained (live evidence on record)
85
+ - [ ] Step 9: Diff with quota delta and cost-impact assessment (monthly cost delta) documented
86
+ - [ ] Step 10: Blast radius document confirmed (dependent applications, disruption risk, cost risk)
87
+ - [ ] Step 11: Rollback procedure (exact quota values and API calls to restore) documented and confirmed feasible
88
+ - [ ] Step 12: SoD confirmed — requester differs from both platform owner and FinOps approver
89
+ - [ ] Step 13: Explicit written approval from platform owner on record, naming services and quota amounts
90
+ - [ ] Step 13: Explicit written approval from FinOps approver on record, naming services and quota amounts
91
+
92
+ If any item is unchecked, refuse step 14 execution until it is resolved.
93
+ If the change is an entitlement increase and FinOps approval is missing, refuse step 14 execution regardless of other approvals.
@@ -0,0 +1,75 @@
1
+ # Official sources — SAP Guarded BTP Entitlement Change
2
+
3
+ Use this reference when grounding SAP BTP entitlement management procedures, quota allocation, service subscriptions, and usage monitoring.
4
+
5
+ **Evidence level**: documentation-based (SAP Help Portal). Live evidence gathered during steps 8, 9, and 14 is labeled separately as `live evidence` per the audit format in `references/live-environment-access.md`.
6
+
7
+ ## SAP BTP Entitlements and Quotas
8
+
9
+ - SAP BTP entitlements and quotas — concepts
10
+ https://help.sap.com/docs/btp/sap-business-technology-platform/entitlements-and-quotas
11
+ source_owner: SAP SE
12
+ topic_supported: Entitlement model concepts — service plans, quota, distribution to directories and subaccounts, global account vs. subaccount entitlement scope, commercial models (free / metered / subscription / block)
13
+ why_needed: Authoritative source for the entitlement model used in steps 1 and 3 (classify and criticality); defines quota, service plan, and billing model concepts required to assess cost impact in step 9
14
+ evidence_level: primary
15
+ last_verified: 2026-06-19
16
+
17
+ - SAP BTP — managing entitlements and quotas using the cockpit
18
+ https://help.sap.com/docs/btp/sap-business-technology-platform/managing-entitlements-and-quotas-using-the-cockpit
19
+ source_owner: SAP SE
20
+ topic_supported: Step-by-step cockpit procedures for assigning entitlements to directories and subaccounts, adjusting quota, enabling and disabling service plans, bulk entitlement configuration
21
+ why_needed: Grounds step 14 execution procedures and step 8 read-only inspection for users operating via the BTP cockpit rather than the Entitlements API
22
+ evidence_level: primary
23
+ last_verified: 2026-06-19
24
+
25
+ - SAP BTP global account administration
26
+ https://help.sap.com/docs/btp/sap-business-technology-platform/global-account-administration
27
+ source_owner: SAP SE
28
+ topic_supported: Global account hierarchy, directory structure, subaccount governance, administrator roles and least-privilege guidance for global account operations
29
+ why_needed: Grounds step 2 (target confirmation) and least-privilege credential rules in live-environment-access.md; defines the difference between Global Account Administrator and Entitlements Administrator scope
30
+ evidence_level: primary
31
+ last_verified: 2026-06-19
32
+
33
+ ## SAP BTP Entitlements API
34
+
35
+ - SAP BTP Entitlements API (SAP Cloud Management Service)
36
+ https://help.sap.com/docs/btp/btp-admin-and-ops-neo/entitlements-api
37
+ source_owner: SAP SE
38
+ topic_supported: Entitlements API endpoints — GET assigned entitlements, GET available service plans, PUT assign entitlement quota to subaccount; authentication and service key setup for the Cloud Management Service
39
+ why_needed: Defines the exact API calls permitted for read-only state inspection (step 8) and entitlement assignment execution (step 14); grounds the command patterns in the workflow reference
40
+ evidence_level: primary
41
+ last_verified: 2026-06-19
42
+
43
+ ## SAP BTP Service Subscriptions
44
+
45
+ - SAP BTP — subscribe to multitenant applications using the cockpit
46
+ https://help.sap.com/docs/btp/sap-business-technology-platform/subscribe-to-multitenant-applications-using-the-cockpit
47
+ source_owner: SAP SE
48
+ topic_supported: Service subscription model, subscribing and unsubscribing from multitenant applications, subscription status and dependency management
49
+ why_needed: Grounds step 1 (classify subscription changes), step 10 (blast radius for subscription removals — dependent applications lose access), and step 14 (subscription enable/remove procedures)
50
+ evidence_level: primary
51
+ last_verified: 2026-06-19
52
+
53
+ ## SAP BTP Cloud Management Service (APIs)
54
+
55
+ - SAP BTP account administration using the Cloud Management Service APIs
56
+ https://help.sap.com/docs/btp/sap-business-technology-platform/account-administration-using-apis-of-the-sap-cloud-management-service
57
+ source_owner: SAP SE
58
+ topic_supported: Cloud Management Service API overview — entitlements, provisioning, subscription management; authentication setup; scope requirements for Entitlements Administrator and Subaccount Service Administrator
59
+ why_needed: Authoritative source for the API authentication and scope setup described in live-environment-access.md; provides the token endpoint and scope details for Entitlements API calls in steps 8 and 14
60
+ evidence_level: primary
61
+ last_verified: 2026-06-19
62
+
63
+ ## SAP BTP Usage and Billing Monitoring
64
+
65
+ - SAP Usage Data Management Service — monitoring usage via APIs
66
+ https://help.sap.com/docs/btp/sap-business-technology-platform/monitoring-usage-information-using-apis-of-the-sap-usage-data-management-service
67
+ source_owner: SAP SE
68
+ topic_supported: Usage Data Management Service API — GET metered consumption data, usage reports by subaccount and service, cost exposure tracking
69
+ why_needed: Grounds step 9 (cost-impact assessment using current consumption baseline) and step 15 (post-change billing verification — confirm metered tracking is active and cost center is correct)
70
+ evidence_level: primary
71
+ last_verified: 2026-06-19
72
+
73
+ ## Grounding rule
74
+
75
+ SAP Help Portal documentation describes the BTP entitlement model design intent, cockpit procedures, and API specifications. It does not prove which entitlements are currently assigned in the user's global account, what the current metered consumption is, or whether the user's SAP BTP contract includes the service plan being requested. Users must supply live evidence from steps 8, 9, and 15 for concrete entitlement and cost assessment. SAP BTP pricing and commercial terms must be confirmed with the user's SAP contract or Customer Success Manager — never inferred from documentation alone.
@@ -0,0 +1,57 @@
1
+ # Safety checklist — SAP Guarded BTP Entitlement Change
2
+
3
+ Use before every step and unconditionally before step 14 execution.
4
+
5
+ ## Non-negotiables
6
+
7
+ - Do not reach step 14 (execute) without documented dual approval from both the platform owner and FinOps approver on record in this session.
8
+ - Do not allow self-approval. The requester (step 4) must be different from both the platform owner and the FinOps approver (step 5). If the requester is the same as either approver, refuse execution.
9
+ - Do not increase entitlements without FinOps approval. Technical necessity does not override this gate.
10
+ - Do not change entitlements for services not on the approved list from step 7.
11
+ - Do not skip or reorder steps. The sequence is mandatory.
12
+ - Do not execute entitlement changes without a documented cost-impact assessment (step 9 diff). Changes with undocumented cost impact are refused.
13
+ - Do not use Global Account Administrator credentials when Entitlements Administrator scope is sufficient for step 14.
14
+ - Do not accept, log, echo, or include BTP service key credential values, OAuth tokens, or cockpit session tokens in any output.
15
+ - Do not attempt self-recovery changes without initiating a new 17-step sequence.
16
+ - Do not remove an entitlement or subscription without confirming and documenting all active consumers in step 10. Removal without consumer identification is refused.
17
+
18
+ ## What people get wrong
19
+
20
+ - **Treating one approver as sufficient**: Step 13 requires explicit written approval from both the platform owner and the FinOps approver. One approver clearing the gate for both is not permitted.
21
+ - **Skipping the cost-impact assessment because the quota increase seems small**: Step 9 is mandatory regardless of the quota delta. Metered services can accumulate significant cost at scale. The assessment must be documented even if the delta is expected to be negligible.
22
+ - **Assuming non-production global account changes are low risk**: Non-production global accounts share contract entitlement pools with production in many BTP contracts. An entitlement moved to a non-production subaccount may reduce available quota for production applications.
23
+ - **Not identifying active consumers before removing an entitlement**: Applications that depend on a removed entitlement will fail immediately. Step 10 must name every application and service consuming the entitlement being removed.
24
+ - **Using Global Account Administrator credentials for routine entitlement management**: The Entitlements Administrator role collection is sufficient for step 14. Global Account Administrator grants additional rights (trust configuration, directory management) that are not needed and violate least-privilege.
25
+ - **Treating "we'll monitor costs" as a FinOps approval substitute**: A monitoring commitment is not an approval. FinOps must provide explicit written approval naming the service plan and quota amount before step 14.
26
+ - **Batching multiple subaccount changes without per-subaccount cost-impact assessment**: Each subaccount change may have different consumer dependencies and cost exposure. Batching without per-subaccount assessment is refused.
27
+
28
+ ## When to push back
29
+
30
+ - Push back when the user asks to "just enable the service" without completing prior steps.
31
+ - Push back when the requester is the same as either the platform owner or FinOps approver.
32
+ - Push back when FinOps approval is absent for any entitlement increase.
33
+ - Push back when no cost-impact assessment has been produced (step 9).
34
+ - Push back when no change management or FinOps budget ticket is provided.
35
+ - Push back when the change targets removal of an entitlement without a documented list of active consumers.
36
+ - Push back when the rollback plan is "we'll reassign the entitlement if something goes wrong" without specifying the exact quota values to restore.
37
+ - Push back when step 15 reveals application disruption or unexpected billing events and the user wants to close the session without assessment.
38
+ - Push back when the user provides Global Account Administrator credentials for a task that Entitlements Administrator can perform.
39
+
40
+ ## Evidence labels
41
+
42
+ - `live evidence` — directly observed from a live BTP global account; include API endpoint, response summary, timestamp, global account ID
43
+ - `documentation-based` — grounded in SAP official docs or SAP BTP pricing documentation; no live access
44
+ - `user-provided evidence` — stated, uploaded, or confirmed by the user in this session
45
+ - `inference` — derived reasoning; must always be labeled as such
46
+
47
+ ## SoD verification matrix
48
+
49
+ | Role | Can request? | Can approve (platform)? | Can approve (FinOps)? |
50
+ |------|-------------|------------------------|----------------------|
51
+ | Developer / architect | Yes | No | No |
52
+ | Subaccount administrator | Yes | No | No |
53
+ | Platform owner (accountable for global account architecture) | No | Yes | No |
54
+ | FinOps manager / cost controller | No | No | Yes |
55
+ | IT manager | No | Yes (for non-production only; platform owner required for production) | No |
56
+ | Requester = platform owner or FinOps | No — SoD violation | Refuse execution | Refuse execution |
57
+ | Single approver for both platform and FinOps roles | No — dual approval required | Refuse execution | Refuse execution |
@@ -0,0 +1,132 @@
1
+ # Workflow and output contract — SAP Guarded BTP Entitlement Change
2
+
3
+ Use this reference for all step-by-step execution, command patterns, and output formatting.
4
+
5
+ ## Step execution protocol
6
+
7
+ For each of the 17 steps, the following must be true before advancing to the next:
8
+
9
+ 1. The step's required evidence is on record in this session.
10
+ 2. The user has confirmed the evidence is accurate.
11
+ 3. Any step-specific gate (e.g., cost-impact assessment, dual approval, SoD check) has been explicitly cleared.
12
+
13
+ If any of these conditions is false, the session pauses at the current step until resolved.
14
+
15
+ ## Command patterns by step
16
+
17
+ ### Step 8 — Read-only current state
18
+
19
+ #### BTP Entitlements API (read — current assignments)
20
+ ```
21
+ GET https://entitlements-service.cfapps.{region}.hana.ondemand.com/entitlements/v1/globalAccountAllowances
22
+ (returns all service plans assigned to the global account)
23
+
24
+ GET https://entitlements-service.cfapps.{region}.hana.ondemand.com/entitlements/v1/subAccountServicePlans
25
+ ?subAccountGUID={subaccountGuid}
26
+ (returns entitlements currently assigned to the specific subaccount)
27
+ ```
28
+
29
+ #### BTP Usage Data Management API (read — current consumption baseline)
30
+ ```
31
+ GET https://uas.cfapps.{region}.hana.ondemand.com/reports/v1/monthlyUsage
32
+ ?fromDate={YYYY-MM}&toDate={YYYY-MM}&globalAccountId={globalAccountId}
33
+ (returns metered consumption per service and subaccount for cost baseline)
34
+ ```
35
+
36
+ #### BTP cockpit (read)
37
+ ```
38
+ BTP Cockpit → Global Account → Entitlements → Entity Assignments
39
+ → select subaccount → view current service plan assignments and quota
40
+ BTP Cockpit → Global Account → Entitlements → Service Assignments
41
+ → view all subaccount assignments for a specific service
42
+ ```
43
+
44
+ ### Step 9 — Diff and cost-impact assessment
45
+
46
+ Document for each changed entitlement:
47
+
48
+ ```
49
+ Service: <service name>
50
+ Plan: <service plan name>
51
+ Billing model: <free | metered | subscription | block>
52
+ Current quota: <current value or "not assigned">
53
+ Proposed quota: <proposed value or "remove">
54
+ Quota delta: <+N / -N / new / remove>
55
+ Estimated cost delta: <EUR/USD per month based on SAP BTP pricing for this plan>
56
+ Source: <user-provided pricing confirmation | SAP contract reference | inference (label accordingly)>
57
+ Active consumers: <list of applications or services consuming this entitlement>
58
+ Risk if removed: <disruption to consumers identified above>
59
+ ```
60
+
61
+ ### Step 14 — Execute approved change
62
+
63
+ #### BTP Entitlements API (mutating — step 14 only, after step 13 dual approval gate is cleared)
64
+ ```
65
+ PUT https://entitlements-service.cfapps.{region}.hana.ondemand.com/entitlements/v1/subAccountServicePlans
66
+ Body:
67
+ {
68
+ "entitlementsToAdd": {
69
+ "{subaccountGuid}": [
70
+ { "serviceName": "<service>", "servicePlanName": "<plan>", "quota": <N>, "enable": true }
71
+ ]
72
+ },
73
+ "entitlementsToDelete": {
74
+ "{subaccountGuid}": [
75
+ { "serviceName": "<service>", "servicePlanName": "<plan>" }
76
+ ]
77
+ }
78
+ }
79
+ ```
80
+
81
+ #### BTP Subscription Management API (mutating — step 14 only)
82
+ ```
83
+ POST https://{subaccountSubdomain}.{region}.hana.ondemand.com/saas-manager/v1/applications/{appName}/subscription
84
+ (subscribe to a multitenant application — approved services only)
85
+
86
+ DELETE https://{subaccountSubdomain}.{region}.hana.ondemand.com/saas-manager/v1/applications/{appName}/subscription
87
+ (unsubscribe — only when change type from step 1 is subscription removal and explicitly approved)
88
+ ```
89
+
90
+ **Never call PUT entitlement or POST/DELETE subscription before step 13 dual approval gate is documented.**
91
+
92
+ ## Step completion checklist
93
+
94
+ | Step | Evidence type | Completion marker |
95
+ |------|--------------|------------------|
96
+ | 1 | user-provided / documentation-based | Change type, service name, service plan, and billing model confirmed |
97
+ | 2 | user-provided evidence | Target global account ID, subaccount ID, and environment tier confirmed |
98
+ | 3 | user-provided evidence | Criticality level and cost sensitivity assigned |
99
+ | 4 | user-provided evidence | Requester name and role on record |
100
+ | 5 | user-provided evidence | Platform owner and FinOps approver names, roles, and authorization on record |
101
+ | 6 | user-provided evidence | Ticket number confirmed |
102
+ | 7 | user-provided evidence | Entitlement change list with service, plan, quota delta, and subaccount on record |
103
+ | 8 | live evidence | Current entitlement assignments and consumption baseline from global account |
104
+ | 9 | live evidence + user-provided / inference | Diff with quota delta and cost-impact assessment (monthly cost delta documented) |
105
+ | 10 | user-provided / inference | Blast radius document confirmed (dependent applications, disruption risk, cost risk) |
106
+ | 11 | user-provided evidence | Rollback procedure (entitlement reversion steps) confirmed feasible |
107
+ | 12 | user-provided evidence | SoD confirmed: requester ≠ platform owner ≠ FinOps approver |
108
+ | 13 | user-provided evidence | Explicit dual approval (platform owner + FinOps) on record, naming services and quota amounts |
109
+ | 14 | live evidence | Execution log with timestamp |
110
+ | 15 | live evidence | Post-change entitlement snapshot confirmed; dependent applications healthy; metered tracking active |
111
+ | 16 | all of the above | Audit record compiled |
112
+ | 17 | user-provided evidence | Report delivered and acknowledged |
113
+
114
+ ## Output contract
115
+
116
+ Return after each step:
117
+
118
+ 1. Step number and name
119
+ 2. Evidence gathered for this step (labeled by evidence type)
120
+ 3. Gate status: cleared / pending / blocked
121
+ 4. Next step and what is needed to advance
122
+ 5. Refusal marker if any gate condition is unmet (do not advance)
123
+ 6. Cost-impact status if step 9 or step 13 (documented / missing / pending FinOps review)
124
+
125
+ Return after step 17:
126
+
127
+ 1. Complete audit record (all 17 steps with evidence and timestamps)
128
+ 2. Final change status (success / partial / failed)
129
+ 3. Post-change entitlement and application health verification result
130
+ 4. Cost-impact assessment summary (baseline → projected monthly delta)
131
+ 5. Rollback status (not needed / standing by / triggered)
132
+ 6. Report delivery confirmation
@@ -0,0 +1,151 @@
1
+ ---
2
+ name: sap-guarded-integration-flow-change
3
+ description: Deploy or modify SAP Cloud Integration iFlows and integration artifacts using a mandatory 17-step guarded mutation sequence covering classification, target tenant confirmation, criticality, requester, approver (integration-owner required), ticket, scope, read-only current state, diff of artifact changes, blast radius (downstream partners and throughput), rollback (previous version redeploy), post-change verification via message monitoring, and audit evidence. Refuses if any step is missing, if integration-owner approval is absent, or if a diff has not been produced. Use when a confirmed and approved iFlow deployment or integration artifact change in a non-development Cloud Integration tenant must be executed under traceable controls.
4
+ allowed-tools: Read Grep Glob WebSearch WebFetch Bash
5
+ metadata:
6
+ author: "github: Raishin"
7
+ version: "0.1.0"
8
+ updated: "2026-06-19"
9
+ category: delivery
10
+ lifecycle: experimental
11
+ execution_tier: mutating-runtime
12
+ ---
13
+
14
+ # SAP Guarded Integration Flow Change
15
+
16
+ ## Purpose
17
+
18
+ Deploy or modify SAP Cloud Integration iFlows and integration artifacts in non-development tenants under a strict 17-step guarded mutation sequence. Every step must be completed, documented, and confirmed before the deployment execution step is reached. If any step is absent, the deployment is refused until it is completed. This skill treats every iFlow deployment or integration artifact change in a quality, pre-production, or production Cloud Integration tenant as a risk-critical mutating operation requiring explicit integration-owner approval, a documented blast radius covering downstream partners and throughput impact, and a verified rollback path via previous version redeploy.
19
+
20
+ ## When to use
21
+
22
+ Use this skill when:
23
+
24
+ - an iFlow, value mapping, script collection, API provider, or other Cloud Integration artifact must be deployed or modified in a quality, pre-production, or production tenant,
25
+ - an integration owner or delivery lead has confirmed the change is approved and requires traceable execution,
26
+ - post-deployment verification via message monitoring and audit evidence are required for change management or compliance purposes,
27
+ - the user needs a structured, risk-controlled execution protocol for SAP Integration Suite Cloud Integration deployments.
28
+
29
+ ## When not to use
30
+
31
+ - When the target is a development or sandbox tenant (DEV) with no live partner connections — development deployments are lower risk and do not require this full sequence.
32
+ - When the user wants to *design* or *test* an iFlow in the design workspace without deploying — advise on the sequence but do not reach the execution step.
33
+ - When any of the 17 steps cannot be completed — refuse execution until all steps are resolved.
34
+ - When no explicit approval from the integration owner has been obtained — refuse execution.
35
+ - When a diff of the artifact changes has not been produced — refuse execution; deployment on an undiffed artifact is forbidden.
36
+
37
+ ## Lean operating rules
38
+
39
+ - 17 steps, no shortcuts. The sequence is mandatory and must be completed in order. Steps cannot be skipped or reordered.
40
+ - Refuse before step 13. Never reach the execution step (step 14) without documented integration-owner approval on record in this session.
41
+ - Segregation of duties enforced. The person who requests the deployment (step 4) must not be the same person who approves it (step 12). If SoD is violated, refuse execution.
42
+ - Read current state before any change. Step 8 (read-only current state) must be completed before any deployment is proposed. Do not propose a deployment on undocumented current artifact state.
43
+ - Diff before live execution. Step 9 (diff of artifact changes) must precede execution. Document which iFlow components, script steps, routing conditions, adapter configurations, and value mappings are changing.
44
+ - Blast radius documented before execution. Step 10 must list all downstream partner systems, message throughput impacts, dependent iFlows, API consumers, and business processes affected. Deployments with undocumented blast radius are refused.
45
+ - One artifact change at a time. Do not batch-deploy multiple iFlows in a single execution step unless each has completed its own full 17-step sequence.
46
+ - Never hardcode credentials. All system access uses pre-configured service keys, OAuth clients, or process integration runtime users — never credentials in plain text.
47
+ - Evidence labeling mandatory. Every step must produce labeled evidence before the next step proceeds.
48
+ - Integration-owner approval is not optional. The integration owner (the team responsible for the iFlow and its downstream partners) must be the named approver in step 5. General delivery-lead approval is insufficient for production deployments.
49
+
50
+ ## The 17-step guarded mutation sequence
51
+
52
+ | Step | Name | Description | Evidence required |
53
+ |------|------|-------------|-------------------|
54
+ | 1 | Classify | Classify the artifact type (iFlow, value mapping, script collection, API provider, integration package) and change type (new deployment, update, rollback, undeploy) | Artifact type and change type documented |
55
+ | 2 | Confirm target | Confirm the exact target tenant (Cloud Integration tenant ID, environment tier: QA/PPD/PRD, Integration Suite sub-domain) | Target tenant ID, tier, and sub-domain confirmed by user |
56
+ | 3 | Criticality assessment | Assess business criticality of the affected integration (financial document exchange, order-to-cash, HR data, payment processing, regulatory reporting) | Criticality level: low/medium/high/critical |
57
+ | 4 | Requester confirmation | Confirm the name, role, and authorization of the change requester | Requester name and role documented |
58
+ | 5 | Integration-owner approval identification | Identify the integration owner — the team or individual accountable for the iFlow and its downstream partner connections (different person from requester — SoD requirement) | Integration-owner name, role, and accountability scope |
59
+ | 6 | Ticket linkage | Link the deployment to a change management ticket (ITSM reference: ServiceNow, Remedy, SAP Solution Manager ChaRM, etc.) | Ticket number confirmed |
60
+ | 7 | Scope documentation | Document the complete list of artifacts to be deployed or modified: iFlow IDs, package names, version numbers, and interdependencies with other iFlows or API providers | Artifact list with IDs, versions, and dependency map |
61
+ | 8 | Read-only current state | Read the current state of the target tenant: deployed artifact versions, runtime status, active message queues, recent error rates from monitoring | Live evidence from target tenant (read-only) |
62
+ | 9 | Diff of artifact changes | Produce a diff of the artifact changes: which iFlow steps, routing conditions, adapter configurations, scripts, and value mappings are changing relative to the currently deployed version | Diff output documenting changed components |
63
+ | 10 | Blast radius | Document all downstream partner systems, dependent iFlows, API consumers, message throughput estimates, and business processes affected; assess risk of message loss or duplication during deployment | Blast radius document with affected partners, consumers, and throughput impact |
64
+ | 11 | Rollback plan | Document the explicit rollback procedure: which artifact version to redeploy, how to trigger a previous-version redeploy from the Cloud Integration design workspace or API, and any partner notification steps required | Rollback procedure documented and confirmed feasible |
65
+ | 12 | SoD verification | Verify that requester (step 4) and integration owner (step 5) are different authorized individuals; confirm no self-approval | SoD confirmed: requester ≠ integration owner / approver |
66
+ | 13 | Approval gate | Obtain explicit written approval from the integration owner for this specific deployment | Approval statement on record in this session |
67
+ | 14 | Execute approved deployment | Deploy or modify the approved artifacts only, in the documented sequence | Deployment command log with timestamp |
68
+ | 15 | Verify via message monitoring | Verify post-deployment state: check runtime status of deployed iFlows, inspect message monitoring for errors, confirm throughput resumes within expected parameters, verify downstream partner acknowledgements where applicable | Post-deployment message monitoring log and verification results |
69
+ | 16 | Audit | Produce complete audit record: all 17 steps, evidence, commands, timestamps, integration-owner approval | Audit record |
70
+ | 17 | Report | Deliver final report to requester, integration owner, and change manager | Report delivered and acknowledged |
71
+
72
+ ## Evidence rules
73
+
74
+ Label all data with one of:
75
+
76
+ - `live evidence` — directly observed from a live Cloud Integration tenant in this session (include command, output summary, timestamp)
77
+ - `documentation-based` — grounded in SAP official docs
78
+ - `user-provided evidence` — stated or supplied by the user in this session
79
+ - `inference` — derived reasoning not directly confirmed by live data or official docs; must always be labeled
80
+
81
+ ## Live-environment rules
82
+
83
+ **Allowed** (step 8 only — read-only current state):
84
+ - Cloud Integration OData API: GET deployed artifact versions and runtime status (read-only)
85
+ - Cloud Integration monitoring: GET message processing log summary, active queues, error rates
86
+ - API Management: GET API provider configuration (read-only)
87
+
88
+ **Allowed** (step 9 only — diff):
89
+ - Cloud Integration Design API: GET iFlow content for diff comparison against target tenant state (read-only)
90
+
91
+ **Allowed** (step 14 only — after all prior steps confirmed):
92
+ - Cloud Integration OData API: POST deploy for approved artifacts
93
+ - Cloud Integration Design API: deploy approved package version to target tenant
94
+ - Cloud Integration API: undeploy command (only when change type from step 1 is undeploy and explicitly approved)
95
+
96
+ **Forbidden** (all other contexts):
97
+ - Any deploy or undeploy command before step 13 approval gate is cleared
98
+ - Any deployment of artifacts not on the approved list from step 7
99
+ - Any modification to tenant-level runtime configuration (JDBC data sources, keystore entries, security material) unless explicitly in scope and approved
100
+ - Any deletion of integration packages or artifacts outside the approved change type
101
+ - Any access with Integration Suite tenant administrator credentials not scoped to the specific package or iFlow
102
+
103
+ **Least-privilege credential rules**:
104
+ - Cloud Integration OData API: use a service key with `MonitoringDataRead` and `WorkspacePackagesRead` for step 8; use `WorkspacePackagesConfigure` and `NodeManager.deployer` for step 14 — scoped to the specific tenant
105
+ - Integration Suite: use a user with the Integration Developer role for deployment; not the Integration Suite Tenant Administrator role
106
+ - API Management: use a user with the APIPortal.Administrator role scoped to the specific API product — not the full Platform scope
107
+
108
+ **Approval gate (step 13)**:
109
+ Before step 14 execution, confirm:
110
+ 1. All steps 1–12 are documented and evidence is on record.
111
+ 2. The integration owner from step 5 has provided explicit written approval in this session.
112
+ 3. The integration owner is a different person from the requester.
113
+ 4. The approval explicitly names the artifacts and version numbers to be deployed.
114
+ 5. A diff from step 9 is on record.
115
+
116
+ **Rollback**:
117
+ - The rollback plan from step 11 must be documented before step 14 begins.
118
+ - If post-deployment verification (step 15) reveals errors or message processing failures, stop immediately and execute the rollback plan (redeploy previous version) before escalating to the integration owner.
119
+ - Do not attempt self-recovery deployments without a new 17-step sequence.
120
+
121
+ **Post-deployment (step 15)**:
122
+ - Check the runtime status of all deployed iFlows (started / error / stopping).
123
+ - Inspect the message processing log for ERROR and RETRY status messages.
124
+ - Confirm throughput resumes within the expected processing rate.
125
+ - Where downstream partner acknowledgement is part of the integration pattern, confirm receipt.
126
+ - Document the verification result as `live evidence`.
127
+
128
+ **Audit (step 16)**:
129
+ - Produce a complete record of all 17 steps, evidence gathered, commands executed, timestamps, integration-owner approval statement, and message monitoring verification results.
130
+ - Retain audit record for the session and deliver to the integration owner and change manager.
131
+
132
+ ## References
133
+
134
+ Load only when needed:
135
+
136
+ - [Workflow and output contract](references/workflow-and-output.md) — 17-step execution details, command patterns, output format.
137
+ - [Safety checklist](references/safety-checklist.md) — non-negotiables, SoD rules, refusal triggers.
138
+ - [Official sources](references/official-sources.md) — SAP Cloud Integration, Integration Suite, OData API, message monitoring docs.
139
+ - [Live environment access](references/live-environment-access.md) — credential setup, role requirements, audit log format.
140
+
141
+ ## Response minimum
142
+
143
+ Return, at minimum:
144
+
145
+ - **Problem classification**: artifact type, change type, target tenant, and environment tier.
146
+ - **Evidence used**: live evidence (with command log) / documentation-based / user-provided / inference.
147
+ - **Risk level**: always risk-critical for non-development tenants; critical for financial document or payment processing iFlows.
148
+ - **Recommended action**: current step in the 17-step sequence and what is needed to advance.
149
+ - **Refusal / escalation triggers**: refuse if approval gate not cleared; refuse if SoD violated; refuse if integration-owner approval is absent; refuse if diff has not been produced; refuse if any step is missing; refuse if rollback plan is absent.
150
+ - **Business impact**: what message flows change if the deployment succeeds; what downstream partners are affected if the deployment fails.
151
+ - **Next verification step**: which step number is next and what evidence is required.
@@ -0,0 +1,17 @@
1
+ interface:
2
+ display_name: "SAP Guarded Integration Flow Change"
3
+ short_description: "Deploy or modify SAP Cloud Integration iFlows and artifacts under a mandatory 17-step guarded mutation sequence — refuses if any step is missing, integration-owner approval absent, diff not produced, or approval gate not cleared"
4
+ default_prompt: "Use $sap-guarded-integration-flow-change to deploy or modify a SAP Cloud Integration iFlow or artifact. Begin at step 1 (classify) and advance through all 17 steps in order. Do not reach step 14 (execute) without documented integration-owner approval from a person different from the requester, and a diff of artifact changes from step 9. Refuse if any step is skipped, if SoD is violated, if a rollback plan is absent, or if post-deployment message monitoring shows errors without a documented remediation decision."
5
+ dependencies:
6
+ tools:
7
+ - type: "api"
8
+ value: "sap-cloud-integration-odata-api"
9
+ description: "SAP Cloud Integration OData API — GET deployed artifact versions and runtime status (step 8, step 15); POST deploy for approved artifacts (step 14) using NodeManager.deployer scope only"
10
+ - type: "api"
11
+ value: "sap-cloud-integration-design-api"
12
+ description: "SAP Cloud Integration Design API — GET iFlow content for diff comparison (step 9); deploy approved package version to target tenant (step 14)"
13
+ - type: "api"
14
+ value: "sap-cloud-integration-monitoring-api"
15
+ description: "SAP Cloud Integration Monitoring API — GET message processing log summary, active queue status, and error rates for read-only state (step 8) and post-deployment verification (step 15)"
16
+ policy:
17
+ allow_implicit_invocation: false
@@ -0,0 +1,33 @@
1
+ {
2
+ "id": "sap-guarded-integration-flow-change",
3
+ "name": "SAP Guarded Integration Flow Change",
4
+ "type": "skill",
5
+ "provider": "sap",
6
+ "harnesses": [
7
+ "claude-code",
8
+ "codex",
9
+ "cursor",
10
+ "gemini",
11
+ "kiro",
12
+ "other"
13
+ ],
14
+ "summary": "Deploy or modify SAP Cloud Integration iFlows and integration artifacts in quality, pre-production, or production tenants using a mandatory 17-step guarded mutation sequence: classify, confirm target tenant, criticality, requester, integration-owner approval, ticket, scope, read-only current state, diff of artifact changes, blast radius (downstream partners and throughput), rollback (previous version redeploy), SoD verification, approval gate, execute approved deployments only, verify via message monitoring, audit, report. Refuses if any step is missing, if integration-owner approval is absent, or if a diff has not been produced.",
15
+ "source_type": "original",
16
+ "category": "delivery",
17
+ "official_docs": [
18
+ "https://help.sap.com/docs/cloud-integration/sap-cloud-integration/deploy-integration-artifacts",
19
+ "https://help.sap.com/docs/cloud-integration/sap-cloud-integration/odata-api",
20
+ "https://help.sap.com/docs/cloud-integration/sap-cloud-integration/message-processing-log",
21
+ "https://help.sap.com/docs/cloud-integration/sap-cloud-integration/monitor-message-processing",
22
+ "https://help.sap.com/docs/cloud-integration/sap-cloud-integration/manage-integration-content",
23
+ "https://help.sap.com/docs/integration-suite/sap-integration-suite/activating-and-managing-capabilities",
24
+ "https://help.sap.com/docs/cloud-integration/sap-cloud-integration/versioning-of-artifacts"
25
+ ],
26
+ "security_notes": "Mutating operations are gated behind the 17-step sequence. Never deploy or undeploy an artifact before step 13 approval gate is cleared. Never accept self-approval (SoD: requester must differ from the integration owner / approver). Integration-owner approval is mandatory — general delivery-lead approval is insufficient for production deployments. A diff of artifact changes (step 9) must be produced before any deployment is executed. Never use Integration Suite tenant administrator credentials — use Integration Developer role scoped to the specific tenant. Never hardcode service keys, OAuth client secrets, or process integration runtime user passwords in any output. Refuse any request to skip steps or deploy without a documented rollback plan.",
27
+ "last_verified": "2026-06-19",
28
+ "path": "skills/sap/sap-guarded-integration-flow-change",
29
+ "author": "github: Raishin",
30
+ "version": "0.1.0",
31
+ "lifecycle": "experimental",
32
+ "execution_tier": "mutating-runtime"
33
+ }