@raishin/vanguard-frontier-agentic 2.9.0 → 2.11.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/.claude-plugin/marketplace.json +2 -2
- package/.claude-plugin/plugin.json +72 -1
- package/.cursor-plugin/plugin.json +72 -1
- package/.github/plugin/marketplace.json +3 -3
- package/README.md +40 -16
- package/agents/databricks/README.md +84 -0
- package/agents/databricks/databricks-lakehouse-engineering-at-azure-agent/AGENT.md +54 -0
- package/agents/databricks/databricks-lakehouse-engineering-at-azure-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/databricks/databricks-lakehouse-engineering-at-azure-agent/harnesses/codex.toml +14 -0
- package/agents/databricks/databricks-lakehouse-engineering-at-azure-agent/harnesses/copilot.agent.md +51 -0
- package/agents/databricks/databricks-lakehouse-engineering-at-azure-agent/harnesses/cursor.agent.md +40 -0
- package/agents/databricks/databricks-lakehouse-engineering-at-azure-agent/harnesses/gemini.agent.md +39 -0
- package/agents/databricks/databricks-lakehouse-engineering-at-azure-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/databricks/databricks-lakehouse-engineering-at-azure-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/databricks/databricks-lakehouse-engineering-at-azure-agent/metadata.json +40 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/AGENT.md +72 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/PERMISSIONS.md +53 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/PREFLIGHT.md +76 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/ROLLBACK.md +42 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/harnesses/claude-code.agent.md +61 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/harnesses/codex.toml +14 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/harnesses/copilot.agent.md +60 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/harnesses/cursor.agent.md +61 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/harnesses/gemini.agent.md +61 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/harnesses/kiro-ide.agent.md +61 -0
- package/agents/databricks/databricks-live-unity-catalog-grant-guard-at-azure-agent/metadata.json +61 -0
- package/agents/databricks/databricks-unity-catalog-governance-at-azure-agent/AGENT.md +54 -0
- package/agents/databricks/databricks-unity-catalog-governance-at-azure-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/databricks/databricks-unity-catalog-governance-at-azure-agent/harnesses/codex.toml +14 -0
- package/agents/databricks/databricks-unity-catalog-governance-at-azure-agent/harnesses/copilot.agent.md +51 -0
- package/agents/databricks/databricks-unity-catalog-governance-at-azure-agent/harnesses/cursor.agent.md +40 -0
- package/agents/databricks/databricks-unity-catalog-governance-at-azure-agent/harnesses/gemini.agent.md +39 -0
- package/agents/databricks/databricks-unity-catalog-governance-at-azure-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/databricks/databricks-unity-catalog-governance-at-azure-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/databricks/databricks-unity-catalog-governance-at-azure-agent/metadata.json +40 -0
- package/agents/microsoft/copilot-governance-maestro-agent/AGENT.md +55 -0
- package/agents/microsoft/copilot-governance-maestro-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/copilot-governance-maestro-agent/harnesses/codex.toml +34 -0
- package/agents/microsoft/copilot-governance-maestro-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/copilot-governance-maestro-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/copilot-governance-maestro-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/copilot-governance-maestro-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/copilot-governance-maestro-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/copilot-governance-maestro-agent/metadata.json +39 -0
- package/agents/microsoft/copilot-studio-agent-governance-alm-agent/AGENT.md +63 -0
- package/agents/microsoft/copilot-studio-agent-governance-alm-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/copilot-studio-agent-governance-alm-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/copilot-studio-agent-governance-alm-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/copilot-studio-agent-governance-alm-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/copilot-studio-agent-governance-alm-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/copilot-studio-agent-governance-alm-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/copilot-studio-agent-governance-alm-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/copilot-studio-agent-governance-alm-agent/metadata.json +42 -0
- package/agents/microsoft/d365-commerce-agent/AGENT.md +63 -0
- package/agents/microsoft/d365-commerce-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-commerce-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-commerce-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-commerce-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-commerce-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-commerce-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-commerce-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-commerce-agent/metadata.json +39 -0
- package/agents/microsoft/d365-customer-insights-journeys-agent/AGENT.md +63 -0
- package/agents/microsoft/d365-customer-insights-journeys-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-customer-insights-journeys-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-customer-insights-journeys-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-customer-insights-journeys-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-customer-insights-journeys-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-customer-insights-journeys-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-customer-insights-journeys-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-customer-insights-journeys-agent/metadata.json +41 -0
- package/agents/microsoft/d365-customer-service-contact-center-agent/AGENT.md +63 -0
- package/agents/microsoft/d365-customer-service-contact-center-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-customer-service-contact-center-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-customer-service-contact-center-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-customer-service-contact-center-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-customer-service-contact-center-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-customer-service-contact-center-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-customer-service-contact-center-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-customer-service-contact-center-agent/metadata.json +39 -0
- package/agents/microsoft/d365-data-migration-cutover-agent/AGENT.md +64 -0
- package/agents/microsoft/d365-data-migration-cutover-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-data-migration-cutover-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-data-migration-cutover-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-data-migration-cutover-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-data-migration-cutover-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-data-migration-cutover-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-data-migration-cutover-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-data-migration-cutover-agent/metadata.json +41 -0
- package/agents/microsoft/d365-field-service-to-cash-agent/AGENT.md +63 -0
- package/agents/microsoft/d365-field-service-to-cash-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-field-service-to-cash-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-field-service-to-cash-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-field-service-to-cash-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-field-service-to-cash-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-field-service-to-cash-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-field-service-to-cash-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-field-service-to-cash-agent/metadata.json +39 -0
- package/agents/microsoft/d365-finance-close-to-report-agent/AGENT.md +64 -0
- package/agents/microsoft/d365-finance-close-to-report-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-finance-close-to-report-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-finance-close-to-report-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-finance-close-to-report-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-finance-close-to-report-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-finance-close-to-report-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-finance-close-to-report-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-finance-close-to-report-agent/metadata.json +39 -0
- package/agents/microsoft/d365-fno-developer-extension-agent/AGENT.md +64 -0
- package/agents/microsoft/d365-fno-developer-extension-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/microsoft/d365-fno-developer-extension-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-fno-developer-extension-agent/harnesses/copilot.agent.md +52 -0
- package/agents/microsoft/d365-fno-developer-extension-agent/harnesses/cursor.agent.md +41 -0
- package/agents/microsoft/d365-fno-developer-extension-agent/harnesses/gemini.agent.md +40 -0
- package/agents/microsoft/d365-fno-developer-extension-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-fno-developer-extension-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/microsoft/d365-fno-developer-extension-agent/metadata.json +40 -0
- package/agents/microsoft/d365-integration-dual-write-agent/AGENT.md +63 -0
- package/agents/microsoft/d365-integration-dual-write-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-integration-dual-write-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-integration-dual-write-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-integration-dual-write-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-integration-dual-write-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-integration-dual-write-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-integration-dual-write-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-integration-dual-write-agent/metadata.json +40 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/AGENT.md +78 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/PERMISSIONS.md +67 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/PREFLIGHT.md +81 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/ROLLBACK.md +76 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/harnesses/claude-code.agent.md +59 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/harnesses/copilot.agent.md +68 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/harnesses/cursor.agent.md +59 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/harnesses/gemini.agent.md +59 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/harnesses/kiro-ide.agent.md +59 -0
- package/agents/microsoft/d365-live-record-field-update-guard-agent/metadata.json +62 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/AGENT.md +61 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/PERMISSIONS.md +45 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/PREFLIGHT.md +44 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/ROLLBACK.md +39 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/harnesses/claude-code.agent.md +60 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/harnesses/copilot.agent.md +69 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/harnesses/cursor.agent.md +60 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/harnesses/gemini.agent.md +60 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/harnesses/kiro-ide.agent.md +60 -0
- package/agents/microsoft/d365-live-security-role-guard-agent/metadata.json +60 -0
- package/agents/microsoft/d365-maestro-agent/AGENT.md +56 -0
- package/agents/microsoft/d365-maestro-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/microsoft/d365-maestro-agent/harnesses/codex.toml +35 -0
- package/agents/microsoft/d365-maestro-agent/harnesses/copilot.agent.md +52 -0
- package/agents/microsoft/d365-maestro-agent/harnesses/cursor.agent.md +41 -0
- package/agents/microsoft/d365-maestro-agent/harnesses/gemini.agent.md +40 -0
- package/agents/microsoft/d365-maestro-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-maestro-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/microsoft/d365-maestro-agent/metadata.json +38 -0
- package/agents/microsoft/d365-project-operations-agent/AGENT.md +63 -0
- package/agents/microsoft/d365-project-operations-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-project-operations-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-project-operations-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-project-operations-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-project-operations-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-project-operations-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-project-operations-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-project-operations-agent/metadata.json +39 -0
- package/agents/microsoft/d365-sales-revenue-operations-agent/AGENT.md +64 -0
- package/agents/microsoft/d365-sales-revenue-operations-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-sales-revenue-operations-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-sales-revenue-operations-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-sales-revenue-operations-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-sales-revenue-operations-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-sales-revenue-operations-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-sales-revenue-operations-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-sales-revenue-operations-agent/metadata.json +39 -0
- package/agents/microsoft/d365-security-sod-governance-agent/AGENT.md +64 -0
- package/agents/microsoft/d365-security-sod-governance-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-security-sod-governance-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-security-sod-governance-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-security-sod-governance-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-security-sod-governance-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-security-sod-governance-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-security-sod-governance-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-security-sod-governance-agent/metadata.json +39 -0
- package/agents/microsoft/d365-success-by-design-governance-agent/AGENT.md +64 -0
- package/agents/microsoft/d365-success-by-design-governance-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-success-by-design-governance-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-success-by-design-governance-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-success-by-design-governance-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-success-by-design-governance-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-success-by-design-governance-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-success-by-design-governance-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-success-by-design-governance-agent/metadata.json +41 -0
- package/agents/microsoft/d365-supply-chain-plan-to-produce-agent/AGENT.md +64 -0
- package/agents/microsoft/d365-supply-chain-plan-to-produce-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/d365-supply-chain-plan-to-produce-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/d365-supply-chain-plan-to-produce-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/d365-supply-chain-plan-to-produce-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/d365-supply-chain-plan-to-produce-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/d365-supply-chain-plan-to-produce-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/d365-supply-chain-plan-to-produce-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/d365-supply-chain-plan-to-produce-agent/metadata.json +39 -0
- package/agents/microsoft/fabric-analytics-engineering-agent/AGENT.md +63 -0
- package/agents/microsoft/fabric-analytics-engineering-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/fabric-analytics-engineering-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/fabric-analytics-engineering-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/fabric-analytics-engineering-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/fabric-analytics-engineering-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/fabric-analytics-engineering-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/fabric-analytics-engineering-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/fabric-analytics-engineering-agent/metadata.json +39 -0
- package/agents/microsoft/fabric-data-engineering-agent/AGENT.md +63 -0
- package/agents/microsoft/fabric-data-engineering-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/fabric-data-engineering-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/fabric-data-engineering-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/fabric-data-engineering-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/fabric-data-engineering-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/fabric-data-engineering-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/fabric-data-engineering-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/fabric-data-engineering-agent/metadata.json +39 -0
- package/agents/microsoft/fabric-power-bi-business-insights-governance-agent/AGENT.md +63 -0
- package/agents/microsoft/fabric-power-bi-business-insights-governance-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/fabric-power-bi-business-insights-governance-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/fabric-power-bi-business-insights-governance-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/fabric-power-bi-business-insights-governance-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/fabric-power-bi-business-insights-governance-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/fabric-power-bi-business-insights-governance-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/fabric-power-bi-business-insights-governance-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/fabric-power-bi-business-insights-governance-agent/metadata.json +39 -0
- package/agents/microsoft/m365-backup-bcdr-data-resilience-agent/AGENT.md +63 -0
- package/agents/microsoft/m365-backup-bcdr-data-resilience-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/m365-backup-bcdr-data-resilience-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-backup-bcdr-data-resilience-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/m365-backup-bcdr-data-resilience-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/m365-backup-bcdr-data-resilience-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/m365-backup-bcdr-data-resilience-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-backup-bcdr-data-resilience-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/m365-backup-bcdr-data-resilience-agent/metadata.json +39 -0
- package/agents/microsoft/m365-copilot-readiness-governance-agent/AGENT.md +64 -0
- package/agents/microsoft/m365-copilot-readiness-governance-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/m365-copilot-readiness-governance-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-copilot-readiness-governance-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/m365-copilot-readiness-governance-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/m365-copilot-readiness-governance-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/m365-copilot-readiness-governance-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-copilot-readiness-governance-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/m365-copilot-readiness-governance-agent/metadata.json +39 -0
- package/agents/microsoft/m365-defender-xdr-security-operations-agent/AGENT.md +63 -0
- package/agents/microsoft/m365-defender-xdr-security-operations-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/m365-defender-xdr-security-operations-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-defender-xdr-security-operations-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/m365-defender-xdr-security-operations-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/m365-defender-xdr-security-operations-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/m365-defender-xdr-security-operations-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-defender-xdr-security-operations-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/m365-defender-xdr-security-operations-agent/metadata.json +41 -0
- package/agents/microsoft/m365-exchange-sharepoint-information-governance-agent/AGENT.md +63 -0
- package/agents/microsoft/m365-exchange-sharepoint-information-governance-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/m365-exchange-sharepoint-information-governance-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-exchange-sharepoint-information-governance-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/m365-exchange-sharepoint-information-governance-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/m365-exchange-sharepoint-information-governance-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/m365-exchange-sharepoint-information-governance-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-exchange-sharepoint-information-governance-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/m365-exchange-sharepoint-information-governance-agent/metadata.json +41 -0
- package/agents/microsoft/m365-identity-zero-trust-agent/AGENT.md +64 -0
- package/agents/microsoft/m365-identity-zero-trust-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/m365-identity-zero-trust-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-identity-zero-trust-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/m365-identity-zero-trust-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/m365-identity-zero-trust-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/m365-identity-zero-trust-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-identity-zero-trust-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/m365-identity-zero-trust-agent/metadata.json +39 -0
- package/agents/microsoft/m365-intune-endpoint-management-agent/AGENT.md +63 -0
- package/agents/microsoft/m365-intune-endpoint-management-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/m365-intune-endpoint-management-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-intune-endpoint-management-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/m365-intune-endpoint-management-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/m365-intune-endpoint-management-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/m365-intune-endpoint-management-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-intune-endpoint-management-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/m365-intune-endpoint-management-agent/metadata.json +41 -0
- package/agents/microsoft/m365-licensing-ea-optimization-agent/AGENT.md +63 -0
- package/agents/microsoft/m365-licensing-ea-optimization-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/m365-licensing-ea-optimization-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-licensing-ea-optimization-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/m365-licensing-ea-optimization-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/m365-licensing-ea-optimization-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/m365-licensing-ea-optimization-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-licensing-ea-optimization-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/m365-licensing-ea-optimization-agent/metadata.json +39 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/AGENT.md +60 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/PERMISSIONS.md +45 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/PREFLIGHT.md +39 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/ROLLBACK.md +38 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/harnesses/claude-code.agent.md +59 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/harnesses/copilot.agent.md +68 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/harnesses/cursor.agent.md +59 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/harnesses/gemini.agent.md +59 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/harnesses/kiro-ide.agent.md +59 -0
- package/agents/microsoft/m365-live-identity-posture-guard-agent/metadata.json +66 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/AGENT.md +79 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/PERMISSIONS.md +68 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/PREFLIGHT.md +76 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/ROLLBACK.md +86 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/harnesses/claude-code.agent.md +60 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/harnesses/copilot.agent.md +69 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/harnesses/cursor.agent.md +60 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/harnesses/gemini.agent.md +60 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/harnesses/kiro-ide.agent.md +60 -0
- package/agents/microsoft/m365-live-sensitivity-label-apply-guard-agent/metadata.json +67 -0
- package/agents/microsoft/m365-maestro-agent/AGENT.md +55 -0
- package/agents/microsoft/m365-maestro-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/m365-maestro-agent/harnesses/codex.toml +34 -0
- package/agents/microsoft/m365-maestro-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/m365-maestro-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/m365-maestro-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/m365-maestro-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-maestro-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/m365-maestro-agent/metadata.json +38 -0
- package/agents/microsoft/m365-purview-data-security-compliance-agent/AGENT.md +63 -0
- package/agents/microsoft/m365-purview-data-security-compliance-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/m365-purview-data-security-compliance-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-purview-data-security-compliance-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/m365-purview-data-security-compliance-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/m365-purview-data-security-compliance-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/m365-purview-data-security-compliance-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-purview-data-security-compliance-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/m365-purview-data-security-compliance-agent/metadata.json +41 -0
- package/agents/microsoft/m365-teams-collaboration-governance-agent/AGENT.md +63 -0
- package/agents/microsoft/m365-teams-collaboration-governance-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/m365-teams-collaboration-governance-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-teams-collaboration-governance-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/m365-teams-collaboration-governance-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/m365-teams-collaboration-governance-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/m365-teams-collaboration-governance-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-teams-collaboration-governance-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/m365-teams-collaboration-governance-agent/metadata.json +40 -0
- package/agents/microsoft/m365-tenant-governance-agent/AGENT.md +63 -0
- package/agents/microsoft/m365-tenant-governance-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/m365-tenant-governance-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/m365-tenant-governance-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/m365-tenant-governance-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/m365-tenant-governance-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/m365-tenant-governance-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/m365-tenant-governance-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/m365-tenant-governance-agent/metadata.json +39 -0
- package/agents/microsoft/microsoft-business-impact-value-realization-agent/AGENT.md +64 -0
- package/agents/microsoft/microsoft-business-impact-value-realization-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/microsoft/microsoft-business-impact-value-realization-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/microsoft-business-impact-value-realization-agent/harnesses/copilot.agent.md +52 -0
- package/agents/microsoft/microsoft-business-impact-value-realization-agent/harnesses/cursor.agent.md +41 -0
- package/agents/microsoft/microsoft-business-impact-value-realization-agent/harnesses/gemini.agent.md +40 -0
- package/agents/microsoft/microsoft-business-impact-value-realization-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/microsoft-business-impact-value-realization-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/microsoft/microsoft-business-impact-value-realization-agent/metadata.json +39 -0
- package/agents/microsoft/microsoft-maestro-agent/AGENT.md +56 -0
- package/agents/microsoft/microsoft-maestro-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/microsoft/microsoft-maestro-agent/harnesses/codex.toml +35 -0
- package/agents/microsoft/microsoft-maestro-agent/harnesses/copilot.agent.md +52 -0
- package/agents/microsoft/microsoft-maestro-agent/harnesses/cursor.agent.md +41 -0
- package/agents/microsoft/microsoft-maestro-agent/harnesses/gemini.agent.md +40 -0
- package/agents/microsoft/microsoft-maestro-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/microsoft-maestro-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/microsoft/microsoft-maestro-agent/metadata.json +38 -0
- package/agents/microsoft/power-automate-automation-risk-review-agent/AGENT.md +64 -0
- package/agents/microsoft/power-automate-automation-risk-review-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/microsoft/power-automate-automation-risk-review-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/power-automate-automation-risk-review-agent/harnesses/copilot.agent.md +52 -0
- package/agents/microsoft/power-automate-automation-risk-review-agent/harnesses/cursor.agent.md +41 -0
- package/agents/microsoft/power-automate-automation-risk-review-agent/harnesses/gemini.agent.md +40 -0
- package/agents/microsoft/power-automate-automation-risk-review-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/power-automate-automation-risk-review-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/microsoft/power-automate-automation-risk-review-agent/metadata.json +39 -0
- package/agents/microsoft/power-platform-alm-pipelines-agent/AGENT.md +64 -0
- package/agents/microsoft/power-platform-alm-pipelines-agent/harnesses/claude-code.agent.md +39 -0
- package/agents/microsoft/power-platform-alm-pipelines-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/power-platform-alm-pipelines-agent/harnesses/copilot.agent.md +52 -0
- package/agents/microsoft/power-platform-alm-pipelines-agent/harnesses/cursor.agent.md +41 -0
- package/agents/microsoft/power-platform-alm-pipelines-agent/harnesses/gemini.agent.md +40 -0
- package/agents/microsoft/power-platform-alm-pipelines-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/power-platform-alm-pipelines-agent/harnesses/kiro-ide.agent.md +39 -0
- package/agents/microsoft/power-platform-alm-pipelines-agent/metadata.json +41 -0
- package/agents/microsoft/power-platform-governance-dataverse-security-agent/AGENT.md +64 -0
- package/agents/microsoft/power-platform-governance-dataverse-security-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/power-platform-governance-dataverse-security-agent/harnesses/codex.toml +14 -0
- package/agents/microsoft/power-platform-governance-dataverse-security-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/power-platform-governance-dataverse-security-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/power-platform-governance-dataverse-security-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/power-platform-governance-dataverse-security-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/power-platform-governance-dataverse-security-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/power-platform-governance-dataverse-security-agent/metadata.json +40 -0
- package/agents/microsoft/power-platform-maestro-agent/AGENT.md +55 -0
- package/agents/microsoft/power-platform-maestro-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/microsoft/power-platform-maestro-agent/harnesses/codex.toml +34 -0
- package/agents/microsoft/power-platform-maestro-agent/harnesses/copilot.agent.md +51 -0
- package/agents/microsoft/power-platform-maestro-agent/harnesses/cursor.agent.md +40 -0
- package/agents/microsoft/power-platform-maestro-agent/harnesses/gemini.agent.md +39 -0
- package/agents/microsoft/power-platform-maestro-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/microsoft/power-platform-maestro-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/microsoft/power-platform-maestro-agent/metadata.json +39 -0
- package/agents/netsuite/AGENTS.md +183 -0
- package/agents/netsuite/MAESTRO-EXAMPLES.md +438 -0
- package/agents/netsuite/README.md +70 -0
- package/agents/netsuite/SETUP-GUIDE.md +327 -0
- package/agents/netsuite/netsuite-administrator-agent/AGENT.md +122 -0
- package/agents/netsuite/netsuite-administrator-agent/LEAST-PRIVILEGES.md +66 -0
- package/agents/netsuite/netsuite-administrator-agent/harnesses/claude-code.agent.md +105 -0
- package/agents/netsuite/netsuite-administrator-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-administrator-agent/harnesses/copilot.agent.md +112 -0
- package/agents/netsuite/netsuite-administrator-agent/harnesses/cursor.agent.md +105 -0
- package/agents/netsuite/netsuite-administrator-agent/harnesses/gemini.agent.md +105 -0
- package/agents/netsuite/netsuite-administrator-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-administrator-agent/harnesses/kiro-ide.agent.md +105 -0
- package/agents/netsuite/netsuite-administrator-agent/metadata.json +43 -0
- package/agents/netsuite/netsuite-ai-connector-mcp-agent/AGENT.md +120 -0
- package/agents/netsuite/netsuite-ai-connector-mcp-agent/LEAST-PRIVILEGES.md +63 -0
- package/agents/netsuite/netsuite-ai-connector-mcp-agent/harnesses/claude-code.agent.md +103 -0
- package/agents/netsuite/netsuite-ai-connector-mcp-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-ai-connector-mcp-agent/harnesses/copilot.agent.md +110 -0
- package/agents/netsuite/netsuite-ai-connector-mcp-agent/harnesses/cursor.agent.md +103 -0
- package/agents/netsuite/netsuite-ai-connector-mcp-agent/harnesses/gemini.agent.md +103 -0
- package/agents/netsuite/netsuite-ai-connector-mcp-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-ai-connector-mcp-agent/harnesses/kiro-ide.agent.md +103 -0
- package/agents/netsuite/netsuite-ai-connector-mcp-agent/metadata.json +43 -0
- package/agents/netsuite/netsuite-ai-foundations-agent/AGENT.md +117 -0
- package/agents/netsuite/netsuite-ai-foundations-agent/LEAST-PRIVILEGES.md +63 -0
- package/agents/netsuite/netsuite-ai-foundations-agent/harnesses/claude-code.agent.md +100 -0
- package/agents/netsuite/netsuite-ai-foundations-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-ai-foundations-agent/harnesses/copilot.agent.md +107 -0
- package/agents/netsuite/netsuite-ai-foundations-agent/harnesses/cursor.agent.md +100 -0
- package/agents/netsuite/netsuite-ai-foundations-agent/harnesses/gemini.agent.md +100 -0
- package/agents/netsuite/netsuite-ai-foundations-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-ai-foundations-agent/harnesses/kiro-ide.agent.md +100 -0
- package/agents/netsuite/netsuite-ai-foundations-agent/metadata.json +43 -0
- package/agents/netsuite/netsuite-application-developer-agent/AGENT.md +121 -0
- package/agents/netsuite/netsuite-application-developer-agent/LEAST-PRIVILEGES.md +64 -0
- package/agents/netsuite/netsuite-application-developer-agent/harnesses/claude-code.agent.md +104 -0
- package/agents/netsuite/netsuite-application-developer-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-application-developer-agent/harnesses/copilot.agent.md +111 -0
- package/agents/netsuite/netsuite-application-developer-agent/harnesses/cursor.agent.md +104 -0
- package/agents/netsuite/netsuite-application-developer-agent/harnesses/gemini.agent.md +104 -0
- package/agents/netsuite/netsuite-application-developer-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-application-developer-agent/harnesses/kiro-ide.agent.md +104 -0
- package/agents/netsuite/netsuite-application-developer-agent/metadata.json +42 -0
- package/agents/netsuite/netsuite-audit-controls-sox-agent/AGENT.md +120 -0
- package/agents/netsuite/netsuite-audit-controls-sox-agent/LEAST-PRIVILEGES.md +66 -0
- package/agents/netsuite/netsuite-audit-controls-sox-agent/harnesses/claude-code.agent.md +103 -0
- package/agents/netsuite/netsuite-audit-controls-sox-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-audit-controls-sox-agent/harnesses/copilot.agent.md +110 -0
- package/agents/netsuite/netsuite-audit-controls-sox-agent/harnesses/cursor.agent.md +103 -0
- package/agents/netsuite/netsuite-audit-controls-sox-agent/harnesses/gemini.agent.md +103 -0
- package/agents/netsuite/netsuite-audit-controls-sox-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-audit-controls-sox-agent/harnesses/kiro-ide.agent.md +103 -0
- package/agents/netsuite/netsuite-audit-controls-sox-agent/metadata.json +43 -0
- package/agents/netsuite/netsuite-bi-reporting-agent/AGENT.md +120 -0
- package/agents/netsuite/netsuite-bi-reporting-agent/LEAST-PRIVILEGES.md +64 -0
- package/agents/netsuite/netsuite-bi-reporting-agent/harnesses/claude-code.agent.md +103 -0
- package/agents/netsuite/netsuite-bi-reporting-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-bi-reporting-agent/harnesses/copilot.agent.md +110 -0
- package/agents/netsuite/netsuite-bi-reporting-agent/harnesses/cursor.agent.md +103 -0
- package/agents/netsuite/netsuite-bi-reporting-agent/harnesses/gemini.agent.md +103 -0
- package/agents/netsuite/netsuite-bi-reporting-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-bi-reporting-agent/harnesses/kiro-ide.agent.md +103 -0
- package/agents/netsuite/netsuite-bi-reporting-agent/metadata.json +43 -0
- package/agents/netsuite/netsuite-data-governance-privacy-agent/AGENT.md +117 -0
- package/agents/netsuite/netsuite-data-governance-privacy-agent/LEAST-PRIVILEGES.md +66 -0
- package/agents/netsuite/netsuite-data-governance-privacy-agent/harnesses/claude-code.agent.md +100 -0
- package/agents/netsuite/netsuite-data-governance-privacy-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-data-governance-privacy-agent/harnesses/copilot.agent.md +107 -0
- package/agents/netsuite/netsuite-data-governance-privacy-agent/harnesses/cursor.agent.md +100 -0
- package/agents/netsuite/netsuite-data-governance-privacy-agent/harnesses/gemini.agent.md +100 -0
- package/agents/netsuite/netsuite-data-governance-privacy-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-data-governance-privacy-agent/harnesses/kiro-ide.agent.md +100 -0
- package/agents/netsuite/netsuite-data-governance-privacy-agent/metadata.json +41 -0
- package/agents/netsuite/netsuite-enterprise-architecture-agent/AGENT.md +120 -0
- package/agents/netsuite/netsuite-enterprise-architecture-agent/LEAST-PRIVILEGES.md +63 -0
- package/agents/netsuite/netsuite-enterprise-architecture-agent/harnesses/claude-code.agent.md +103 -0
- package/agents/netsuite/netsuite-enterprise-architecture-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-enterprise-architecture-agent/harnesses/copilot.agent.md +110 -0
- package/agents/netsuite/netsuite-enterprise-architecture-agent/harnesses/cursor.agent.md +103 -0
- package/agents/netsuite/netsuite-enterprise-architecture-agent/harnesses/gemini.agent.md +103 -0
- package/agents/netsuite/netsuite-enterprise-architecture-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-enterprise-architecture-agent/harnesses/kiro-ide.agent.md +103 -0
- package/agents/netsuite/netsuite-enterprise-architecture-agent/metadata.json +46 -0
- package/agents/netsuite/netsuite-erp-consultant-agent/AGENT.md +121 -0
- package/agents/netsuite/netsuite-erp-consultant-agent/LEAST-PRIVILEGES.md +64 -0
- package/agents/netsuite/netsuite-erp-consultant-agent/harnesses/claude-code.agent.md +104 -0
- package/agents/netsuite/netsuite-erp-consultant-agent/harnesses/codex.toml +36 -0
- package/agents/netsuite/netsuite-erp-consultant-agent/harnesses/copilot.agent.md +111 -0
- package/agents/netsuite/netsuite-erp-consultant-agent/harnesses/cursor.agent.md +104 -0
- package/agents/netsuite/netsuite-erp-consultant-agent/harnesses/gemini.agent.md +104 -0
- package/agents/netsuite/netsuite-erp-consultant-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-erp-consultant-agent/harnesses/kiro-ide.agent.md +104 -0
- package/agents/netsuite/netsuite-erp-consultant-agent/metadata.json +42 -0
- package/agents/netsuite/netsuite-evidence-release-drift-agent/AGENT.md +114 -0
- package/agents/netsuite/netsuite-evidence-release-drift-agent/LEAST-PRIVILEGES.md +58 -0
- package/agents/netsuite/netsuite-evidence-release-drift-agent/harnesses/claude-code.agent.md +97 -0
- package/agents/netsuite/netsuite-evidence-release-drift-agent/harnesses/codex.toml +36 -0
- package/agents/netsuite/netsuite-evidence-release-drift-agent/harnesses/copilot.agent.md +104 -0
- package/agents/netsuite/netsuite-evidence-release-drift-agent/harnesses/cursor.agent.md +97 -0
- package/agents/netsuite/netsuite-evidence-release-drift-agent/harnesses/gemini.agent.md +97 -0
- package/agents/netsuite/netsuite-evidence-release-drift-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-evidence-release-drift-agent/harnesses/kiro-ide.agent.md +97 -0
- package/agents/netsuite/netsuite-evidence-release-drift-agent/metadata.json +43 -0
- package/agents/netsuite/netsuite-financial-foundations-agent/AGENT.md +119 -0
- package/agents/netsuite/netsuite-financial-foundations-agent/LEAST-PRIVILEGES.md +65 -0
- package/agents/netsuite/netsuite-financial-foundations-agent/harnesses/claude-code.agent.md +102 -0
- package/agents/netsuite/netsuite-financial-foundations-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-financial-foundations-agent/harnesses/copilot.agent.md +109 -0
- package/agents/netsuite/netsuite-financial-foundations-agent/harnesses/cursor.agent.md +102 -0
- package/agents/netsuite/netsuite-financial-foundations-agent/harnesses/gemini.agent.md +102 -0
- package/agents/netsuite/netsuite-financial-foundations-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-financial-foundations-agent/harnesses/kiro-ide.agent.md +102 -0
- package/agents/netsuite/netsuite-financial-foundations-agent/metadata.json +43 -0
- package/agents/netsuite/netsuite-identity-access-role-permission-agent/AGENT.md +118 -0
- package/agents/netsuite/netsuite-identity-access-role-permission-agent/LEAST-PRIVILEGES.md +63 -0
- package/agents/netsuite/netsuite-identity-access-role-permission-agent/harnesses/claude-code.agent.md +101 -0
- package/agents/netsuite/netsuite-identity-access-role-permission-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-identity-access-role-permission-agent/harnesses/copilot.agent.md +108 -0
- package/agents/netsuite/netsuite-identity-access-role-permission-agent/harnesses/cursor.agent.md +101 -0
- package/agents/netsuite/netsuite-identity-access-role-permission-agent/harnesses/gemini.agent.md +101 -0
- package/agents/netsuite/netsuite-identity-access-role-permission-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-identity-access-role-permission-agent/harnesses/kiro-ide.agent.md +101 -0
- package/agents/netsuite/netsuite-identity-access-role-permission-agent/metadata.json +43 -0
- package/agents/netsuite/netsuite-integration-migration-agent/AGENT.md +119 -0
- package/agents/netsuite/netsuite-integration-migration-agent/LEAST-PRIVILEGES.md +61 -0
- package/agents/netsuite/netsuite-integration-migration-agent/harnesses/claude-code.agent.md +102 -0
- package/agents/netsuite/netsuite-integration-migration-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-integration-migration-agent/harnesses/copilot.agent.md +109 -0
- package/agents/netsuite/netsuite-integration-migration-agent/harnesses/cursor.agent.md +102 -0
- package/agents/netsuite/netsuite-integration-migration-agent/harnesses/gemini.agent.md +102 -0
- package/agents/netsuite/netsuite-integration-migration-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-integration-migration-agent/harnesses/kiro-ide.agent.md +102 -0
- package/agents/netsuite/netsuite-integration-migration-agent/metadata.json +43 -0
- package/agents/netsuite/netsuite-live-org-mutation-guard-agent/AGENT.md +126 -0
- package/agents/netsuite/netsuite-live-org-mutation-guard-agent/LEAST-PRIVILEGES.md +65 -0
- package/agents/netsuite/netsuite-live-org-mutation-guard-agent/harnesses/claude-code.agent.md +109 -0
- package/agents/netsuite/netsuite-live-org-mutation-guard-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-live-org-mutation-guard-agent/harnesses/copilot.agent.md +116 -0
- package/agents/netsuite/netsuite-live-org-mutation-guard-agent/harnesses/cursor.agent.md +109 -0
- package/agents/netsuite/netsuite-live-org-mutation-guard-agent/harnesses/gemini.agent.md +109 -0
- package/agents/netsuite/netsuite-live-org-mutation-guard-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-live-org-mutation-guard-agent/harnesses/kiro-ide.agent.md +109 -0
- package/agents/netsuite/netsuite-live-org-mutation-guard-agent/metadata.json +45 -0
- package/agents/netsuite/netsuite-maestro-agent/AGENT.md +111 -0
- package/agents/netsuite/netsuite-maestro-agent/LEAST-PRIVILEGES.md +58 -0
- package/agents/netsuite/netsuite-maestro-agent/README.md +259 -0
- package/agents/netsuite/netsuite-maestro-agent/harnesses/claude-code.agent.md +94 -0
- package/agents/netsuite/netsuite-maestro-agent/harnesses/codex.toml +30 -0
- package/agents/netsuite/netsuite-maestro-agent/harnesses/copilot.agent.md +101 -0
- package/agents/netsuite/netsuite-maestro-agent/harnesses/cursor.agent.md +94 -0
- package/agents/netsuite/netsuite-maestro-agent/harnesses/gemini.agent.md +94 -0
- package/agents/netsuite/netsuite-maestro-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-maestro-agent/harnesses/kiro-ide.agent.md +94 -0
- package/agents/netsuite/netsuite-maestro-agent/metadata.json +39 -0
- package/agents/netsuite/netsuite-oneworld-multisubsidiary-agent/AGENT.md +117 -0
- package/agents/netsuite/netsuite-oneworld-multisubsidiary-agent/LEAST-PRIVILEGES.md +64 -0
- package/agents/netsuite/netsuite-oneworld-multisubsidiary-agent/harnesses/claude-code.agent.md +100 -0
- package/agents/netsuite/netsuite-oneworld-multisubsidiary-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-oneworld-multisubsidiary-agent/harnesses/copilot.agent.md +107 -0
- package/agents/netsuite/netsuite-oneworld-multisubsidiary-agent/harnesses/cursor.agent.md +100 -0
- package/agents/netsuite/netsuite-oneworld-multisubsidiary-agent/harnesses/gemini.agent.md +100 -0
- package/agents/netsuite/netsuite-oneworld-multisubsidiary-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-oneworld-multisubsidiary-agent/harnesses/kiro-ide.agent.md +100 -0
- package/agents/netsuite/netsuite-oneworld-multisubsidiary-agent/metadata.json +40 -0
- package/agents/netsuite/netsuite-sandbox-nonproduction-governance-agent/AGENT.md +119 -0
- package/agents/netsuite/netsuite-sandbox-nonproduction-governance-agent/LEAST-PRIVILEGES.md +60 -0
- package/agents/netsuite/netsuite-sandbox-nonproduction-governance-agent/harnesses/claude-code.agent.md +102 -0
- package/agents/netsuite/netsuite-sandbox-nonproduction-governance-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-sandbox-nonproduction-governance-agent/harnesses/copilot.agent.md +109 -0
- package/agents/netsuite/netsuite-sandbox-nonproduction-governance-agent/harnesses/cursor.agent.md +102 -0
- package/agents/netsuite/netsuite-sandbox-nonproduction-governance-agent/harnesses/gemini.agent.md +102 -0
- package/agents/netsuite/netsuite-sandbox-nonproduction-governance-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-sandbox-nonproduction-governance-agent/harnesses/kiro-ide.agent.md +102 -0
- package/agents/netsuite/netsuite-sandbox-nonproduction-governance-agent/metadata.json +44 -0
- package/agents/netsuite/netsuite-saved-searches-workbook-agent/AGENT.md +121 -0
- package/agents/netsuite/netsuite-saved-searches-workbook-agent/LEAST-PRIVILEGES.md +65 -0
- package/agents/netsuite/netsuite-saved-searches-workbook-agent/harnesses/claude-code.agent.md +104 -0
- package/agents/netsuite/netsuite-saved-searches-workbook-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-saved-searches-workbook-agent/harnesses/copilot.agent.md +111 -0
- package/agents/netsuite/netsuite-saved-searches-workbook-agent/harnesses/cursor.agent.md +104 -0
- package/agents/netsuite/netsuite-saved-searches-workbook-agent/harnesses/gemini.agent.md +104 -0
- package/agents/netsuite/netsuite-saved-searches-workbook-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-saved-searches-workbook-agent/harnesses/kiro-ide.agent.md +104 -0
- package/agents/netsuite/netsuite-saved-searches-workbook-agent/metadata.json +41 -0
- package/agents/netsuite/netsuite-sdf-devops-release-agent/AGENT.md +122 -0
- package/agents/netsuite/netsuite-sdf-devops-release-agent/LEAST-PRIVILEGES.md +64 -0
- package/agents/netsuite/netsuite-sdf-devops-release-agent/harnesses/claude-code.agent.md +105 -0
- package/agents/netsuite/netsuite-sdf-devops-release-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-sdf-devops-release-agent/harnesses/copilot.agent.md +112 -0
- package/agents/netsuite/netsuite-sdf-devops-release-agent/harnesses/cursor.agent.md +105 -0
- package/agents/netsuite/netsuite-sdf-devops-release-agent/harnesses/gemini.agent.md +105 -0
- package/agents/netsuite/netsuite-sdf-devops-release-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-sdf-devops-release-agent/harnesses/kiro-ide.agent.md +105 -0
- package/agents/netsuite/netsuite-sdf-devops-release-agent/metadata.json +42 -0
- package/agents/netsuite/netsuite-sso-oauth-tba-agent/AGENT.md +123 -0
- package/agents/netsuite/netsuite-sso-oauth-tba-agent/LEAST-PRIVILEGES.md +62 -0
- package/agents/netsuite/netsuite-sso-oauth-tba-agent/harnesses/claude-code.agent.md +106 -0
- package/agents/netsuite/netsuite-sso-oauth-tba-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-sso-oauth-tba-agent/harnesses/copilot.agent.md +113 -0
- package/agents/netsuite/netsuite-sso-oauth-tba-agent/harnesses/cursor.agent.md +106 -0
- package/agents/netsuite/netsuite-sso-oauth-tba-agent/harnesses/gemini.agent.md +106 -0
- package/agents/netsuite/netsuite-sso-oauth-tba-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-sso-oauth-tba-agent/harnesses/kiro-ide.agent.md +106 -0
- package/agents/netsuite/netsuite-sso-oauth-tba-agent/metadata.json +48 -0
- package/agents/netsuite/netsuite-suitecloud-developer-agent/AGENT.md +120 -0
- package/agents/netsuite/netsuite-suitecloud-developer-agent/LEAST-PRIVILEGES.md +61 -0
- package/agents/netsuite/netsuite-suitecloud-developer-agent/harnesses/claude-code.agent.md +103 -0
- package/agents/netsuite/netsuite-suitecloud-developer-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-suitecloud-developer-agent/harnesses/copilot.agent.md +110 -0
- package/agents/netsuite/netsuite-suitecloud-developer-agent/harnesses/cursor.agent.md +103 -0
- package/agents/netsuite/netsuite-suitecloud-developer-agent/harnesses/gemini.agent.md +103 -0
- package/agents/netsuite/netsuite-suitecloud-developer-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-suitecloud-developer-agent/harnesses/kiro-ide.agent.md +103 -0
- package/agents/netsuite/netsuite-suitecloud-developer-agent/metadata.json +44 -0
- package/agents/netsuite/netsuite-suiteflow-automation-agent/AGENT.md +120 -0
- package/agents/netsuite/netsuite-suiteflow-automation-agent/LEAST-PRIVILEGES.md +65 -0
- package/agents/netsuite/netsuite-suiteflow-automation-agent/harnesses/claude-code.agent.md +103 -0
- package/agents/netsuite/netsuite-suiteflow-automation-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-suiteflow-automation-agent/harnesses/copilot.agent.md +110 -0
- package/agents/netsuite/netsuite-suiteflow-automation-agent/harnesses/cursor.agent.md +103 -0
- package/agents/netsuite/netsuite-suiteflow-automation-agent/harnesses/gemini.agent.md +103 -0
- package/agents/netsuite/netsuite-suiteflow-automation-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-suiteflow-automation-agent/harnesses/kiro-ide.agent.md +103 -0
- package/agents/netsuite/netsuite-suiteflow-automation-agent/metadata.json +43 -0
- package/agents/netsuite/netsuite-suitefoundation-agent/AGENT.md +118 -0
- package/agents/netsuite/netsuite-suitefoundation-agent/LEAST-PRIVILEGES.md +63 -0
- package/agents/netsuite/netsuite-suitefoundation-agent/harnesses/claude-code.agent.md +101 -0
- package/agents/netsuite/netsuite-suitefoundation-agent/harnesses/codex.toml +36 -0
- package/agents/netsuite/netsuite-suitefoundation-agent/harnesses/copilot.agent.md +108 -0
- package/agents/netsuite/netsuite-suitefoundation-agent/harnesses/cursor.agent.md +101 -0
- package/agents/netsuite/netsuite-suitefoundation-agent/harnesses/gemini.agent.md +101 -0
- package/agents/netsuite/netsuite-suitefoundation-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-suitefoundation-agent/harnesses/kiro-ide.agent.md +101 -0
- package/agents/netsuite/netsuite-suitefoundation-agent/metadata.json +42 -0
- package/agents/netsuite/netsuite-suitescript-secure-code-review-agent/AGENT.md +121 -0
- package/agents/netsuite/netsuite-suitescript-secure-code-review-agent/LEAST-PRIVILEGES.md +65 -0
- package/agents/netsuite/netsuite-suitescript-secure-code-review-agent/harnesses/claude-code.agent.md +104 -0
- package/agents/netsuite/netsuite-suitescript-secure-code-review-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-suitescript-secure-code-review-agent/harnesses/copilot.agent.md +111 -0
- package/agents/netsuite/netsuite-suitescript-secure-code-review-agent/harnesses/cursor.agent.md +104 -0
- package/agents/netsuite/netsuite-suitescript-secure-code-review-agent/harnesses/gemini.agent.md +104 -0
- package/agents/netsuite/netsuite-suitescript-secure-code-review-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-suitescript-secure-code-review-agent/harnesses/kiro-ide.agent.md +104 -0
- package/agents/netsuite/netsuite-suitescript-secure-code-review-agent/metadata.json +44 -0
- package/agents/netsuite/netsuite-web-services-integration-agent/AGENT.md +119 -0
- package/agents/netsuite/netsuite-web-services-integration-agent/LEAST-PRIVILEGES.md +61 -0
- package/agents/netsuite/netsuite-web-services-integration-agent/harnesses/claude-code.agent.md +102 -0
- package/agents/netsuite/netsuite-web-services-integration-agent/harnesses/codex.toml +37 -0
- package/agents/netsuite/netsuite-web-services-integration-agent/harnesses/copilot.agent.md +109 -0
- package/agents/netsuite/netsuite-web-services-integration-agent/harnesses/cursor.agent.md +102 -0
- package/agents/netsuite/netsuite-web-services-integration-agent/harnesses/gemini.agent.md +102 -0
- package/agents/netsuite/netsuite-web-services-integration-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/netsuite/netsuite-web-services-integration-agent/harnesses/kiro-ide.agent.md +102 -0
- package/agents/netsuite/netsuite-web-services-integration-agent/metadata.json +45 -0
- package/agents/snowflake/README.md +87 -0
- package/agents/snowflake/snowflake-data-platform-engineering-at-azure-agent/AGENT.md +55 -0
- package/agents/snowflake/snowflake-data-platform-engineering-at-azure-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/snowflake/snowflake-data-platform-engineering-at-azure-agent/harnesses/codex.toml +14 -0
- package/agents/snowflake/snowflake-data-platform-engineering-at-azure-agent/harnesses/copilot.agent.md +51 -0
- package/agents/snowflake/snowflake-data-platform-engineering-at-azure-agent/harnesses/cursor.agent.md +40 -0
- package/agents/snowflake/snowflake-data-platform-engineering-at-azure-agent/harnesses/gemini.agent.md +39 -0
- package/agents/snowflake/snowflake-data-platform-engineering-at-azure-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/snowflake/snowflake-data-platform-engineering-at-azure-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/snowflake/snowflake-data-platform-engineering-at-azure-agent/metadata.json +39 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/AGENT.md +72 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/PERMISSIONS.md +54 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/PREFLIGHT.md +82 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/ROLLBACK.md +45 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/harnesses/claude-code.agent.md +61 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/harnesses/codex.toml +14 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/harnesses/copilot.agent.md +60 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/harnesses/cursor.agent.md +61 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/harnesses/gemini.agent.md +61 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/harnesses/kiro-ide.agent.md +61 -0
- package/agents/snowflake/snowflake-live-rbac-grant-guard-at-azure-agent/metadata.json +60 -0
- package/agents/snowflake/snowflake-rbac-access-governance-at-azure-agent/AGENT.md +55 -0
- package/agents/snowflake/snowflake-rbac-access-governance-at-azure-agent/harnesses/claude-code.agent.md +38 -0
- package/agents/snowflake/snowflake-rbac-access-governance-at-azure-agent/harnesses/codex.toml +14 -0
- package/agents/snowflake/snowflake-rbac-access-governance-at-azure-agent/harnesses/copilot.agent.md +51 -0
- package/agents/snowflake/snowflake-rbac-access-governance-at-azure-agent/harnesses/cursor.agent.md +40 -0
- package/agents/snowflake/snowflake-rbac-access-governance-at-azure-agent/harnesses/gemini.agent.md +39 -0
- package/agents/snowflake/snowflake-rbac-access-governance-at-azure-agent/harnesses/kiro-cli.agent.json +5 -0
- package/agents/snowflake/snowflake-rbac-access-governance-at-azure-agent/harnesses/kiro-ide.agent.md +38 -0
- package/agents/snowflake/snowflake-rbac-access-governance-at-azure-agent/metadata.json +39 -0
- package/catalog/agents.json +8909 -6155
- package/catalog/asset-integrity.json +9983 -5918
- package/catalog/install-roles.json +881 -641
- package/catalog/skill-manifest.json +5352 -2550
- package/catalog/skills.json +5532 -3089
- package/package.json +2 -2
- package/plugins/vanguard-frontier-agentic/.codex-plugin/plugin.json +1 -1
- package/powers/README.md +6 -2
- package/powers/vanguard-accounting/POWER.md +2 -2
- package/powers/vanguard-databricks/POWER.md +42 -0
- package/powers/vanguard-finance/POWER.md +2 -2
- package/powers/vanguard-microsoft/POWER.md +45 -0
- package/powers/vanguard-netsuite/POWER.md +41 -0
- package/powers/vanguard-snowflake/POWER.md +42 -0
- package/schemas/agent.schema.json +5 -1
- package/schemas/mcp-reference.schema.json +4 -1
- package/schemas/rule.schema.json +4 -1
- package/schemas/skill.schema.json +5 -1
- package/scripts/gen_netsuite_agents.py +536 -0
- package/scripts/generate-docs-data.mjs +3 -0
- package/scripts/generate-kiro-powers.mjs +36 -0
- package/scripts/netsuite_data/agents/netsuite-administrator-agent.json +150 -0
- package/scripts/netsuite_data/agents/netsuite-ai-connector-mcp-agent.json +144 -0
- package/scripts/netsuite_data/agents/netsuite-ai-foundations-agent.json +144 -0
- package/scripts/netsuite_data/agents/netsuite-application-developer-agent.json +146 -0
- package/scripts/netsuite_data/agents/netsuite-audit-controls-sox-agent.json +151 -0
- package/scripts/netsuite_data/agents/netsuite-bi-reporting-agent.json +146 -0
- package/scripts/netsuite_data/agents/netsuite-data-governance-privacy-agent.json +143 -0
- package/scripts/netsuite_data/agents/netsuite-enterprise-architecture-agent.json +185 -0
- package/scripts/netsuite_data/agents/netsuite-erp-consultant-agent.json +146 -0
- package/scripts/netsuite_data/agents/netsuite-evidence-release-drift-agent.json +156 -0
- package/scripts/netsuite_data/agents/netsuite-financial-foundations-agent.json +148 -0
- package/scripts/netsuite_data/agents/netsuite-identity-access-role-permission-agent.json +140 -0
- package/scripts/netsuite_data/agents/netsuite-integration-migration-agent.json +147 -0
- package/scripts/netsuite_data/agents/netsuite-live-org-mutation-guard-agent.json +165 -0
- package/scripts/netsuite_data/agents/netsuite-maestro-agent.json +85 -0
- package/scripts/netsuite_data/agents/netsuite-oneworld-multisubsidiary-agent.json +140 -0
- package/scripts/netsuite_data/agents/netsuite-sandbox-nonproduction-governance-agent.json +147 -0
- package/scripts/netsuite_data/agents/netsuite-saved-searches-workbook-agent.json +147 -0
- package/scripts/netsuite_data/agents/netsuite-sdf-devops-release-agent.json +145 -0
- package/scripts/netsuite_data/agents/netsuite-sso-oauth-tba-agent.json +151 -0
- package/scripts/netsuite_data/agents/netsuite-suitecloud-developer-agent.json +148 -0
- package/scripts/netsuite_data/agents/netsuite-suiteflow-automation-agent.json +149 -0
- package/scripts/netsuite_data/agents/netsuite-suitefoundation-agent.json +142 -0
- package/scripts/netsuite_data/agents/netsuite-suitescript-secure-code-review-agent.json +150 -0
- package/scripts/netsuite_data/agents/netsuite-web-services-integration-agent.json +149 -0
- package/scripts/release-prepare.mjs +40 -0
- package/skills/cross-functional/audit-evidence-mapping-protocol/SKILL.md +92 -0
- package/skills/cross-functional/audit-evidence-mapping-protocol/metadata.json +20 -0
- package/skills/cross-functional/audit-evidence-mapping-protocol/references/workflow-and-output.md +194 -0
- package/skills/cross-functional/case-to-resolution-protocol/SKILL.md +120 -0
- package/skills/cross-functional/case-to-resolution-protocol/metadata.json +21 -0
- package/skills/cross-functional/case-to-resolution-protocol/references/workflow-and-output.md +197 -0
- package/skills/cross-functional/change-request-to-go-live-protocol/SKILL.md +101 -0
- package/skills/cross-functional/change-request-to-go-live-protocol/metadata.json +21 -0
- package/skills/cross-functional/close-to-report-protocol/SKILL.md +99 -0
- package/skills/cross-functional/close-to-report-protocol/metadata.json +19 -0
- package/skills/cross-functional/close-to-report-protocol/references/workflow-and-output.md +185 -0
- package/skills/cross-functional/copilot-data-readiness-protocol/SKILL.md +142 -0
- package/skills/cross-functional/copilot-data-readiness-protocol/metadata.json +21 -0
- package/skills/cross-functional/copilot-data-readiness-protocol/references/workflow-and-output.md +264 -0
- package/skills/cross-functional/data-classification-to-dlp-protocol/SKILL.md +95 -0
- package/skills/cross-functional/data-classification-to-dlp-protocol/metadata.json +20 -0
- package/skills/cross-functional/data-classification-to-dlp-protocol/references/workflow-and-output.md +211 -0
- package/skills/cross-functional/environment-to-production-release-protocol/SKILL.md +95 -0
- package/skills/cross-functional/environment-to-production-release-protocol/metadata.json +20 -0
- package/skills/cross-functional/environment-to-production-release-protocol/references/workflow-and-output.md +214 -0
- package/skills/cross-functional/erp-crm-cutover-protocol/SKILL.md +142 -0
- package/skills/cross-functional/erp-crm-cutover-protocol/metadata.json +21 -0
- package/skills/cross-functional/erp-crm-cutover-protocol/references/workflow-and-output.md +270 -0
- package/skills/cross-functional/field-service-to-cash-protocol/SKILL.md +99 -0
- package/skills/cross-functional/field-service-to-cash-protocol/metadata.json +19 -0
- package/skills/cross-functional/field-service-to-cash-protocol/references/workflow-and-output.md +206 -0
- package/skills/cross-functional/identity-to-data-access-protocol/SKILL.md +132 -0
- package/skills/cross-functional/identity-to-data-access-protocol/metadata.json +21 -0
- package/skills/cross-functional/identity-to-data-access-protocol/references/workflow-and-output.md +224 -0
- package/skills/cross-functional/incident-to-remediation-protocol/SKILL.md +94 -0
- package/skills/cross-functional/incident-to-remediation-protocol/metadata.json +20 -0
- package/skills/cross-functional/incident-to-remediation-protocol/references/workflow-and-output.md +200 -0
- package/skills/cross-functional/lead-to-cash-protocol/SKILL.md +96 -0
- package/skills/cross-functional/lead-to-cash-protocol/metadata.json +19 -0
- package/skills/cross-functional/lead-to-cash-protocol/references/workflow-and-output.md +166 -0
- package/skills/cross-functional/license-to-value-protocol/SKILL.md +142 -0
- package/skills/cross-functional/license-to-value-protocol/metadata.json +21 -0
- package/skills/cross-functional/license-to-value-protocol/references/workflow-and-output.md +283 -0
- package/skills/cross-functional/netsuite-routing-protocol/SKILL.md +150 -0
- package/skills/cross-functional/netsuite-routing-protocol/metadata.json +18 -0
- package/skills/cross-functional/order-to-cash-protocol/SKILL.md +95 -0
- package/skills/cross-functional/order-to-cash-protocol/metadata.json +19 -0
- package/skills/cross-functional/order-to-cash-protocol/references/workflow-and-output.md +140 -0
- package/skills/cross-functional/procure-to-pay-protocol/SKILL.md +98 -0
- package/skills/cross-functional/procure-to-pay-protocol/metadata.json +19 -0
- package/skills/cross-functional/procure-to-pay-protocol/references/workflow-and-output.md +155 -0
- package/skills/databricks/databricks-lakehouse-engineering-at-azure/SKILL.md +56 -0
- package/skills/databricks/databricks-lakehouse-engineering-at-azure/metadata.json +28 -0
- package/skills/databricks/databricks-lakehouse-engineering-at-azure/references/official-sources.md +40 -0
- package/skills/databricks/databricks-lakehouse-engineering-at-azure/references/safety-checklist.md +26 -0
- package/skills/databricks/databricks-lakehouse-engineering-at-azure/references/workflow-and-output.md +64 -0
- package/skills/databricks/databricks-live-unity-catalog-grant-guard-at-azure/SKILL.md +144 -0
- package/skills/databricks/databricks-live-unity-catalog-grant-guard-at-azure/metadata.json +22 -0
- package/skills/databricks/databricks-unity-catalog-governance-at-azure/SKILL.md +56 -0
- package/skills/databricks/databricks-unity-catalog-governance-at-azure/metadata.json +28 -0
- package/skills/databricks/databricks-unity-catalog-governance-at-azure/references/official-sources.md +41 -0
- package/skills/databricks/databricks-unity-catalog-governance-at-azure/references/safety-checklist.md +26 -0
- package/skills/databricks/databricks-unity-catalog-governance-at-azure/references/workflow-and-output.md +64 -0
- package/skills/microsoft/copilot-governance-maestro/SKILL.md +65 -0
- package/skills/microsoft/copilot-governance-maestro/metadata.json +30 -0
- package/skills/microsoft/copilot-governance-maestro/references/official-sources.md +32 -0
- package/skills/microsoft/copilot-governance-maestro/references/routing-quality-and-safety.md +62 -0
- package/skills/microsoft/copilot-governance-maestro/references/safety-checklist.md +42 -0
- package/skills/microsoft/copilot-governance-maestro/references/workflow-and-output.md +78 -0
- package/skills/microsoft/copilot-studio-agent-governance-alm/SKILL.md +65 -0
- package/skills/microsoft/copilot-studio-agent-governance-alm/metadata.json +32 -0
- package/skills/microsoft/copilot-studio-agent-governance-alm/references/official-sources.md +21 -0
- package/skills/microsoft/copilot-studio-agent-governance-alm/references/safety-checklist.md +41 -0
- package/skills/microsoft/copilot-studio-agent-governance-alm/references/workflow-and-output.md +68 -0
- package/skills/microsoft/d365-commerce/SKILL.md +63 -0
- package/skills/microsoft/d365-commerce/metadata.json +30 -0
- package/skills/microsoft/d365-commerce/references/official-sources.md +25 -0
- package/skills/microsoft/d365-commerce/references/safety-checklist.md +35 -0
- package/skills/microsoft/d365-commerce/references/workflow-and-output.md +67 -0
- package/skills/microsoft/d365-customer-insights-journeys/SKILL.md +57 -0
- package/skills/microsoft/d365-customer-insights-journeys/metadata.json +32 -0
- package/skills/microsoft/d365-customer-insights-journeys/references/official-sources.md +46 -0
- package/skills/microsoft/d365-customer-insights-journeys/references/safety-checklist.md +41 -0
- package/skills/microsoft/d365-customer-insights-journeys/references/workflow-and-output.md +74 -0
- package/skills/microsoft/d365-customer-service-contact-center/SKILL.md +62 -0
- package/skills/microsoft/d365-customer-service-contact-center/metadata.json +30 -0
- package/skills/microsoft/d365-customer-service-contact-center/references/official-sources.md +25 -0
- package/skills/microsoft/d365-customer-service-contact-center/references/safety-checklist.md +34 -0
- package/skills/microsoft/d365-customer-service-contact-center/references/workflow-and-output.md +66 -0
- package/skills/microsoft/d365-data-migration-cutover/SKILL.md +58 -0
- package/skills/microsoft/d365-data-migration-cutover/metadata.json +32 -0
- package/skills/microsoft/d365-data-migration-cutover/references/data-migration-cutover-guide.md +76 -0
- package/skills/microsoft/d365-data-migration-cutover/references/official-sources.md +51 -0
- package/skills/microsoft/d365-data-migration-cutover/references/safety-checklist.md +40 -0
- package/skills/microsoft/d365-data-migration-cutover/references/workflow-and-output.md +72 -0
- package/skills/microsoft/d365-field-service-to-cash/SKILL.md +63 -0
- package/skills/microsoft/d365-field-service-to-cash/metadata.json +30 -0
- package/skills/microsoft/d365-field-service-to-cash/references/official-sources.md +21 -0
- package/skills/microsoft/d365-field-service-to-cash/references/safety-checklist.md +35 -0
- package/skills/microsoft/d365-field-service-to-cash/references/workflow-and-output.md +66 -0
- package/skills/microsoft/d365-finance-close-to-report/SKILL.md +59 -0
- package/skills/microsoft/d365-finance-close-to-report/metadata.json +30 -0
- package/skills/microsoft/d365-finance-close-to-report/references/financial-close-controls-guide.md +79 -0
- package/skills/microsoft/d365-finance-close-to-report/references/official-sources.md +45 -0
- package/skills/microsoft/d365-finance-close-to-report/references/safety-checklist.md +39 -0
- package/skills/microsoft/d365-finance-close-to-report/references/workflow-and-output.md +71 -0
- package/skills/microsoft/d365-fno-developer-extension/SKILL.md +58 -0
- package/skills/microsoft/d365-fno-developer-extension/metadata.json +31 -0
- package/skills/microsoft/d365-fno-developer-extension/references/official-sources.md +44 -0
- package/skills/microsoft/d365-fno-developer-extension/references/safety-checklist.md +42 -0
- package/skills/microsoft/d365-fno-developer-extension/references/workflow-and-output.md +74 -0
- package/skills/microsoft/d365-integration-dual-write/SKILL.md +58 -0
- package/skills/microsoft/d365-integration-dual-write/metadata.json +31 -0
- package/skills/microsoft/d365-integration-dual-write/references/official-sources.md +48 -0
- package/skills/microsoft/d365-integration-dual-write/references/safety-checklist.md +41 -0
- package/skills/microsoft/d365-integration-dual-write/references/workflow-and-output.md +75 -0
- package/skills/microsoft/d365-live-record-field-update-guard/SKILL.md +170 -0
- package/skills/microsoft/d365-live-record-field-update-guard/metadata.json +22 -0
- package/skills/microsoft/d365-live-security-role-guard/SKILL.md +100 -0
- package/skills/microsoft/d365-live-security-role-guard/metadata.json +22 -0
- package/skills/microsoft/d365-maestro/SKILL.md +52 -0
- package/skills/microsoft/d365-maestro/metadata.json +30 -0
- package/skills/microsoft/d365-maestro/references/official-sources.md +29 -0
- package/skills/microsoft/d365-maestro/references/routing-quality-and-safety.md +73 -0
- package/skills/microsoft/d365-maestro/references/safety-checklist.md +65 -0
- package/skills/microsoft/d365-maestro/references/workflow-and-output.md +95 -0
- package/skills/microsoft/d365-project-operations/SKILL.md +63 -0
- package/skills/microsoft/d365-project-operations/metadata.json +30 -0
- package/skills/microsoft/d365-project-operations/references/official-sources.md +25 -0
- package/skills/microsoft/d365-project-operations/references/safety-checklist.md +35 -0
- package/skills/microsoft/d365-project-operations/references/workflow-and-output.md +67 -0
- package/skills/microsoft/d365-sales-revenue-operations/SKILL.md +59 -0
- package/skills/microsoft/d365-sales-revenue-operations/metadata.json +30 -0
- package/skills/microsoft/d365-sales-revenue-operations/references/official-sources.md +47 -0
- package/skills/microsoft/d365-sales-revenue-operations/references/revenue-operations-domain-guide.md +71 -0
- package/skills/microsoft/d365-sales-revenue-operations/references/safety-checklist.md +37 -0
- package/skills/microsoft/d365-sales-revenue-operations/references/workflow-and-output.md +67 -0
- package/skills/microsoft/d365-security-sod-governance/SKILL.md +57 -0
- package/skills/microsoft/d365-security-sod-governance/metadata.json +30 -0
- package/skills/microsoft/d365-security-sod-governance/references/official-sources.md +43 -0
- package/skills/microsoft/d365-security-sod-governance/references/safety-checklist.md +36 -0
- package/skills/microsoft/d365-security-sod-governance/references/sod-role-design-guide.md +72 -0
- package/skills/microsoft/d365-security-sod-governance/references/workflow-and-output.md +67 -0
- package/skills/microsoft/d365-success-by-design-governance/SKILL.md +58 -0
- package/skills/microsoft/d365-success-by-design-governance/metadata.json +32 -0
- package/skills/microsoft/d365-success-by-design-governance/references/implementation-governance-guide.md +77 -0
- package/skills/microsoft/d365-success-by-design-governance/references/official-sources.md +51 -0
- package/skills/microsoft/d365-success-by-design-governance/references/safety-checklist.md +38 -0
- package/skills/microsoft/d365-success-by-design-governance/references/workflow-and-output.md +70 -0
- package/skills/microsoft/d365-supply-chain-plan-to-produce/SKILL.md +59 -0
- package/skills/microsoft/d365-supply-chain-plan-to-produce/metadata.json +30 -0
- package/skills/microsoft/d365-supply-chain-plan-to-produce/references/official-sources.md +46 -0
- package/skills/microsoft/d365-supply-chain-plan-to-produce/references/planning-and-production-guide.md +80 -0
- package/skills/microsoft/d365-supply-chain-plan-to-produce/references/safety-checklist.md +38 -0
- package/skills/microsoft/d365-supply-chain-plan-to-produce/references/workflow-and-output.md +71 -0
- package/skills/microsoft/fabric-analytics-engineering/SKILL.md +60 -0
- package/skills/microsoft/fabric-analytics-engineering/metadata.json +30 -0
- package/skills/microsoft/fabric-analytics-engineering/references/official-sources.md +17 -0
- package/skills/microsoft/fabric-analytics-engineering/references/safety-checklist.md +35 -0
- package/skills/microsoft/fabric-analytics-engineering/references/workflow-and-output.md +65 -0
- package/skills/microsoft/fabric-data-engineering/SKILL.md +63 -0
- package/skills/microsoft/fabric-data-engineering/metadata.json +30 -0
- package/skills/microsoft/fabric-data-engineering/references/official-sources.md +17 -0
- package/skills/microsoft/fabric-data-engineering/references/safety-checklist.md +37 -0
- package/skills/microsoft/fabric-data-engineering/references/workflow-and-output.md +67 -0
- package/skills/microsoft/fabric-power-bi-business-insights-governance/SKILL.md +61 -0
- package/skills/microsoft/fabric-power-bi-business-insights-governance/metadata.json +30 -0
- package/skills/microsoft/fabric-power-bi-business-insights-governance/references/official-sources.md +17 -0
- package/skills/microsoft/fabric-power-bi-business-insights-governance/references/safety-checklist.md +35 -0
- package/skills/microsoft/fabric-power-bi-business-insights-governance/references/workflow-and-output.md +65 -0
- package/skills/microsoft/m365-backup-bcdr-data-resilience/SKILL.md +57 -0
- package/skills/microsoft/m365-backup-bcdr-data-resilience/metadata.json +30 -0
- package/skills/microsoft/m365-backup-bcdr-data-resilience/references/official-sources.md +66 -0
- package/skills/microsoft/m365-backup-bcdr-data-resilience/references/safety-checklist.md +38 -0
- package/skills/microsoft/m365-backup-bcdr-data-resilience/references/workflow-and-output.md +66 -0
- package/skills/microsoft/m365-copilot-readiness-governance/SKILL.md +58 -0
- package/skills/microsoft/m365-copilot-readiness-governance/metadata.json +30 -0
- package/skills/microsoft/m365-copilot-readiness-governance/references/copilot-governance-domain.md +66 -0
- package/skills/microsoft/m365-copilot-readiness-governance/references/official-sources.md +59 -0
- package/skills/microsoft/m365-copilot-readiness-governance/references/safety-checklist.md +38 -0
- package/skills/microsoft/m365-copilot-readiness-governance/references/workflow-and-output.md +67 -0
- package/skills/microsoft/m365-defender-xdr-security-operations/SKILL.md +62 -0
- package/skills/microsoft/m365-defender-xdr-security-operations/metadata.json +32 -0
- package/skills/microsoft/m365-defender-xdr-security-operations/references/official-sources.md +79 -0
- package/skills/microsoft/m365-defender-xdr-security-operations/references/safety-checklist.md +44 -0
- package/skills/microsoft/m365-defender-xdr-security-operations/references/workflow-and-output.md +66 -0
- package/skills/microsoft/m365-exchange-sharepoint-information-governance/SKILL.md +57 -0
- package/skills/microsoft/m365-exchange-sharepoint-information-governance/metadata.json +32 -0
- package/skills/microsoft/m365-exchange-sharepoint-information-governance/references/official-sources.md +64 -0
- package/skills/microsoft/m365-exchange-sharepoint-information-governance/references/safety-checklist.md +40 -0
- package/skills/microsoft/m365-exchange-sharepoint-information-governance/references/workflow-and-output.md +66 -0
- package/skills/microsoft/m365-identity-zero-trust/SKILL.md +58 -0
- package/skills/microsoft/m365-identity-zero-trust/metadata.json +30 -0
- package/skills/microsoft/m365-identity-zero-trust/references/identity-zero-trust-domain.md +67 -0
- package/skills/microsoft/m365-identity-zero-trust/references/official-sources.md +64 -0
- package/skills/microsoft/m365-identity-zero-trust/references/safety-checklist.md +38 -0
- package/skills/microsoft/m365-identity-zero-trust/references/workflow-and-output.md +65 -0
- package/skills/microsoft/m365-intune-endpoint-management/SKILL.md +59 -0
- package/skills/microsoft/m365-intune-endpoint-management/metadata.json +32 -0
- package/skills/microsoft/m365-intune-endpoint-management/references/official-sources.md +66 -0
- package/skills/microsoft/m365-intune-endpoint-management/references/safety-checklist.md +39 -0
- package/skills/microsoft/m365-intune-endpoint-management/references/workflow-and-output.md +67 -0
- package/skills/microsoft/m365-licensing-ea-optimization/SKILL.md +57 -0
- package/skills/microsoft/m365-licensing-ea-optimization/metadata.json +30 -0
- package/skills/microsoft/m365-licensing-ea-optimization/references/official-sources.md +67 -0
- package/skills/microsoft/m365-licensing-ea-optimization/references/safety-checklist.md +39 -0
- package/skills/microsoft/m365-licensing-ea-optimization/references/workflow-and-output.md +68 -0
- package/skills/microsoft/m365-live-identity-posture-guard/SKILL.md +101 -0
- package/skills/microsoft/m365-live-identity-posture-guard/metadata.json +22 -0
- package/skills/microsoft/m365-live-sensitivity-label-apply-guard/SKILL.md +181 -0
- package/skills/microsoft/m365-live-sensitivity-label-apply-guard/metadata.json +22 -0
- package/skills/microsoft/m365-maestro/SKILL.md +51 -0
- package/skills/microsoft/m365-maestro/metadata.json +30 -0
- package/skills/microsoft/m365-maestro/references/official-sources.md +28 -0
- package/skills/microsoft/m365-maestro/references/routing-quality-and-safety.md +66 -0
- package/skills/microsoft/m365-maestro/references/safety-checklist.md +43 -0
- package/skills/microsoft/m365-maestro/references/workflow-and-output.md +78 -0
- package/skills/microsoft/m365-purview-data-security-compliance/SKILL.md +57 -0
- package/skills/microsoft/m365-purview-data-security-compliance/metadata.json +32 -0
- package/skills/microsoft/m365-purview-data-security-compliance/references/official-sources.md +81 -0
- package/skills/microsoft/m365-purview-data-security-compliance/references/safety-checklist.md +42 -0
- package/skills/microsoft/m365-purview-data-security-compliance/references/workflow-and-output.md +65 -0
- package/skills/microsoft/m365-teams-collaboration-governance/SKILL.md +58 -0
- package/skills/microsoft/m365-teams-collaboration-governance/metadata.json +31 -0
- package/skills/microsoft/m365-teams-collaboration-governance/references/official-sources.md +66 -0
- package/skills/microsoft/m365-teams-collaboration-governance/references/safety-checklist.md +39 -0
- package/skills/microsoft/m365-teams-collaboration-governance/references/workflow-and-output.md +66 -0
- package/skills/microsoft/m365-tenant-governance/SKILL.md +57 -0
- package/skills/microsoft/m365-tenant-governance/metadata.json +30 -0
- package/skills/microsoft/m365-tenant-governance/references/official-sources.md +66 -0
- package/skills/microsoft/m365-tenant-governance/references/safety-checklist.md +38 -0
- package/skills/microsoft/m365-tenant-governance/references/workflow-and-output.md +66 -0
- package/skills/microsoft/microsoft-business-impact-value-realization/SKILL.md +60 -0
- package/skills/microsoft/microsoft-business-impact-value-realization/metadata.json +30 -0
- package/skills/microsoft/microsoft-business-impact-value-realization/references/official-sources.md +17 -0
- package/skills/microsoft/microsoft-business-impact-value-realization/references/safety-checklist.md +31 -0
- package/skills/microsoft/microsoft-business-impact-value-realization/references/workflow-and-output.md +65 -0
- package/skills/microsoft/microsoft-maestro/SKILL.md +53 -0
- package/skills/microsoft/microsoft-maestro/metadata.json +30 -0
- package/skills/microsoft/microsoft-maestro/references/official-sources.md +30 -0
- package/skills/microsoft/microsoft-maestro/references/routing-quality-and-safety.md +67 -0
- package/skills/microsoft/microsoft-maestro/references/safety-checklist.md +53 -0
- package/skills/microsoft/microsoft-maestro/references/workflow-and-output.md +70 -0
- package/skills/microsoft/power-automate-automation-risk-review/SKILL.md +62 -0
- package/skills/microsoft/power-automate-automation-risk-review/metadata.json +30 -0
- package/skills/microsoft/power-automate-automation-risk-review/references/official-sources.md +17 -0
- package/skills/microsoft/power-automate-automation-risk-review/references/safety-checklist.md +35 -0
- package/skills/microsoft/power-automate-automation-risk-review/references/workflow-and-output.md +66 -0
- package/skills/microsoft/power-platform-alm-pipelines/SKILL.md +64 -0
- package/skills/microsoft/power-platform-alm-pipelines/metadata.json +31 -0
- package/skills/microsoft/power-platform-alm-pipelines/references/official-sources.md +22 -0
- package/skills/microsoft/power-platform-alm-pipelines/references/safety-checklist.md +40 -0
- package/skills/microsoft/power-platform-alm-pipelines/references/workflow-and-output.md +68 -0
- package/skills/microsoft/power-platform-governance-dataverse-security/SKILL.md +58 -0
- package/skills/microsoft/power-platform-governance-dataverse-security/metadata.json +31 -0
- package/skills/microsoft/power-platform-governance-dataverse-security/references/dataverse-dlp-domain-guide.md +73 -0
- package/skills/microsoft/power-platform-governance-dataverse-security/references/official-sources.md +31 -0
- package/skills/microsoft/power-platform-governance-dataverse-security/references/safety-checklist.md +36 -0
- package/skills/microsoft/power-platform-governance-dataverse-security/references/workflow-and-output.md +67 -0
- package/skills/microsoft/power-platform-maestro/SKILL.md +51 -0
- package/skills/microsoft/power-platform-maestro/metadata.json +30 -0
- package/skills/microsoft/power-platform-maestro/references/official-sources.md +32 -0
- package/skills/microsoft/power-platform-maestro/references/routing-quality-and-safety.md +61 -0
- package/skills/microsoft/power-platform-maestro/references/safety-checklist.md +42 -0
- package/skills/microsoft/power-platform-maestro/references/workflow-and-output.md +86 -0
- package/skills/netsuite/README.md +138 -0
- package/skills/netsuite/netsuite-administrator-skill/SKILL.md +85 -0
- package/skills/netsuite/netsuite-administrator-skill/metadata.json +36 -0
- package/skills/netsuite/netsuite-administrator-skill/references/least-privilege.md +66 -0
- package/skills/netsuite/netsuite-administrator-skill/references/official-sources.md +12 -0
- package/skills/netsuite/netsuite-administrator-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-administrator-skill/references/safety-checklist.md +19 -0
- package/skills/netsuite/netsuite-administrator-skill/references/sandbox-oauth-isolation.md +14 -0
- package/skills/netsuite/netsuite-ai-connector-mcp-skill/SKILL.md +88 -0
- package/skills/netsuite/netsuite-ai-connector-mcp-skill/metadata.json +36 -0
- package/skills/netsuite/netsuite-ai-connector-mcp-skill/references/least-privilege.md +63 -0
- package/skills/netsuite/netsuite-ai-connector-mcp-skill/references/official-sources.md +11 -0
- package/skills/netsuite/netsuite-ai-connector-mcp-skill/references/prompt-injection-patterns.md +13 -0
- package/skills/netsuite/netsuite-ai-connector-mcp-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-ai-connector-mcp-skill/references/safety-checklist.md +19 -0
- package/skills/netsuite/netsuite-ai-foundations-skill/SKILL.md +85 -0
- package/skills/netsuite/netsuite-ai-foundations-skill/metadata.json +36 -0
- package/skills/netsuite/netsuite-ai-foundations-skill/references/ai-foundations-cert-status.md +12 -0
- package/skills/netsuite/netsuite-ai-foundations-skill/references/least-privilege.md +63 -0
- package/skills/netsuite/netsuite-ai-foundations-skill/references/official-sources.md +12 -0
- package/skills/netsuite/netsuite-ai-foundations-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-ai-foundations-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-application-developer-skill/SKILL.md +87 -0
- package/skills/netsuite/netsuite-application-developer-skill/metadata.json +35 -0
- package/skills/netsuite/netsuite-application-developer-skill/references/least-privilege.md +64 -0
- package/skills/netsuite/netsuite-application-developer-skill/references/official-sources.md +10 -0
- package/skills/netsuite/netsuite-application-developer-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-application-developer-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-application-developer-skill/references/script-type-reference.md +14 -0
- package/skills/netsuite/netsuite-audit-controls-sox-skill/SKILL.md +86 -0
- package/skills/netsuite/netsuite-audit-controls-sox-skill/metadata.json +36 -0
- package/skills/netsuite/netsuite-audit-controls-sox-skill/references/least-privilege.md +66 -0
- package/skills/netsuite/netsuite-audit-controls-sox-skill/references/official-sources.md +12 -0
- package/skills/netsuite/netsuite-audit-controls-sox-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-audit-controls-sox-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-audit-controls-sox-skill/references/sox-control-map.md +13 -0
- package/skills/netsuite/netsuite-bi-reporting-skill/SKILL.md +87 -0
- package/skills/netsuite/netsuite-bi-reporting-skill/metadata.json +36 -0
- package/skills/netsuite/netsuite-bi-reporting-skill/references/kpi-formula-reference.md +14 -0
- package/skills/netsuite/netsuite-bi-reporting-skill/references/least-privilege.md +64 -0
- package/skills/netsuite/netsuite-bi-reporting-skill/references/official-sources.md +11 -0
- package/skills/netsuite/netsuite-bi-reporting-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-bi-reporting-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-data-governance-privacy-skill/SKILL.md +85 -0
- package/skills/netsuite/netsuite-data-governance-privacy-skill/metadata.json +34 -0
- package/skills/netsuite/netsuite-data-governance-privacy-skill/references/least-privilege.md +66 -0
- package/skills/netsuite/netsuite-data-governance-privacy-skill/references/official-sources.md +10 -0
- package/skills/netsuite/netsuite-data-governance-privacy-skill/references/pii-field-catalog.md +12 -0
- package/skills/netsuite/netsuite-data-governance-privacy-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-data-governance-privacy-skill/references/safety-checklist.md +17 -0
- package/skills/netsuite/netsuite-enterprise-architecture-skill/SKILL.md +86 -0
- package/skills/netsuite/netsuite-enterprise-architecture-skill/metadata.json +39 -0
- package/skills/netsuite/netsuite-enterprise-architecture-skill/references/adr-template.md +14 -0
- package/skills/netsuite/netsuite-enterprise-architecture-skill/references/least-privilege.md +63 -0
- package/skills/netsuite/netsuite-enterprise-architecture-skill/references/official-sources.md +15 -0
- package/skills/netsuite/netsuite-enterprise-architecture-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-enterprise-architecture-skill/references/safety-checklist.md +19 -0
- package/skills/netsuite/netsuite-erp-consultant-skill/SKILL.md +85 -0
- package/skills/netsuite/netsuite-erp-consultant-skill/metadata.json +35 -0
- package/skills/netsuite/netsuite-erp-consultant-skill/references/erp-process-domain-map.md +14 -0
- package/skills/netsuite/netsuite-erp-consultant-skill/references/least-privilege.md +64 -0
- package/skills/netsuite/netsuite-erp-consultant-skill/references/official-sources.md +11 -0
- package/skills/netsuite/netsuite-erp-consultant-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-erp-consultant-skill/references/safety-checklist.md +19 -0
- package/skills/netsuite/netsuite-evidence-release-drift-skill/SKILL.md +85 -0
- package/skills/netsuite/netsuite-evidence-release-drift-skill/metadata.json +36 -0
- package/skills/netsuite/netsuite-evidence-release-drift-skill/references/evidence-hierarchy.md +13 -0
- package/skills/netsuite/netsuite-evidence-release-drift-skill/references/least-privilege.md +58 -0
- package/skills/netsuite/netsuite-evidence-release-drift-skill/references/official-sources.md +12 -0
- package/skills/netsuite/netsuite-evidence-release-drift-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-evidence-release-drift-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-financial-foundations-skill/SKILL.md +85 -0
- package/skills/netsuite/netsuite-financial-foundations-skill/metadata.json +36 -0
- package/skills/netsuite/netsuite-financial-foundations-skill/references/financial-foundations-domain-map.md +12 -0
- package/skills/netsuite/netsuite-financial-foundations-skill/references/least-privilege.md +65 -0
- package/skills/netsuite/netsuite-financial-foundations-skill/references/official-sources.md +12 -0
- package/skills/netsuite/netsuite-financial-foundations-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-financial-foundations-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-identity-access-role-permission-skill/SKILL.md +86 -0
- package/skills/netsuite/netsuite-identity-access-role-permission-skill/metadata.json +36 -0
- package/skills/netsuite/netsuite-identity-access-role-permission-skill/references/least-privilege.md +63 -0
- package/skills/netsuite/netsuite-identity-access-role-permission-skill/references/official-sources.md +11 -0
- package/skills/netsuite/netsuite-identity-access-role-permission-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-identity-access-role-permission-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-identity-access-role-permission-skill/references/sod-conflict-matrix.md +12 -0
- package/skills/netsuite/netsuite-integration-migration-skill/SKILL.md +85 -0
- package/skills/netsuite/netsuite-integration-migration-skill/metadata.json +36 -0
- package/skills/netsuite/netsuite-integration-migration-skill/references/least-privilege.md +61 -0
- package/skills/netsuite/netsuite-integration-migration-skill/references/migration-complexity-matrix.md +14 -0
- package/skills/netsuite/netsuite-integration-migration-skill/references/official-sources.md +12 -0
- package/skills/netsuite/netsuite-integration-migration-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-integration-migration-skill/references/safety-checklist.md +17 -0
- package/skills/netsuite/netsuite-live-operation-safety-skill/SKILL.md +92 -0
- package/skills/netsuite/netsuite-live-operation-safety-skill/metadata.json +38 -0
- package/skills/netsuite/netsuite-live-operation-safety-skill/references/blast-radius-guide.md +14 -0
- package/skills/netsuite/netsuite-live-operation-safety-skill/references/least-privilege.md +65 -0
- package/skills/netsuite/netsuite-live-operation-safety-skill/references/official-sources.md +14 -0
- package/skills/netsuite/netsuite-live-operation-safety-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-live-operation-safety-skill/references/safety-checklist.md +24 -0
- package/skills/netsuite/netsuite-oneworld-multisubsidiary-skill/SKILL.md +85 -0
- package/skills/netsuite/netsuite-oneworld-multisubsidiary-skill/metadata.json +33 -0
- package/skills/netsuite/netsuite-oneworld-multisubsidiary-skill/references/intercompany-patterns.md +12 -0
- package/skills/netsuite/netsuite-oneworld-multisubsidiary-skill/references/least-privilege.md +64 -0
- package/skills/netsuite/netsuite-oneworld-multisubsidiary-skill/references/official-sources.md +9 -0
- package/skills/netsuite/netsuite-oneworld-multisubsidiary-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-oneworld-multisubsidiary-skill/references/safety-checklist.md +17 -0
- package/skills/netsuite/netsuite-sandbox-nonproduction-governance-skill/SKILL.md +85 -0
- package/skills/netsuite/netsuite-sandbox-nonproduction-governance-skill/metadata.json +37 -0
- package/skills/netsuite/netsuite-sandbox-nonproduction-governance-skill/references/least-privilege.md +60 -0
- package/skills/netsuite/netsuite-sandbox-nonproduction-governance-skill/references/official-sources.md +13 -0
- package/skills/netsuite/netsuite-sandbox-nonproduction-governance-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-sandbox-nonproduction-governance-skill/references/safety-checklist.md +17 -0
- package/skills/netsuite/netsuite-sandbox-nonproduction-governance-skill/references/sandbox-promotion-checklist.md +14 -0
- package/skills/netsuite/netsuite-saved-searches-workbook-skill/SKILL.md +86 -0
- package/skills/netsuite/netsuite-saved-searches-workbook-skill/metadata.json +34 -0
- package/skills/netsuite/netsuite-saved-searches-workbook-skill/references/least-privilege.md +65 -0
- package/skills/netsuite/netsuite-saved-searches-workbook-skill/references/official-sources.md +10 -0
- package/skills/netsuite/netsuite-saved-searches-workbook-skill/references/pii-field-catalog.md +14 -0
- package/skills/netsuite/netsuite-saved-searches-workbook-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-saved-searches-workbook-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-sdf-devops-release-skill/SKILL.md +87 -0
- package/skills/netsuite/netsuite-sdf-devops-release-skill/metadata.json +35 -0
- package/skills/netsuite/netsuite-sdf-devops-release-skill/references/least-privilege.md +64 -0
- package/skills/netsuite/netsuite-sdf-devops-release-skill/references/official-sources.md +10 -0
- package/skills/netsuite/netsuite-sdf-devops-release-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-sdf-devops-release-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-sdf-devops-release-skill/references/sdf-documentation-gates.md +13 -0
- package/skills/netsuite/netsuite-sso-oauth-tba-skill/SKILL.md +86 -0
- package/skills/netsuite/netsuite-sso-oauth-tba-skill/metadata.json +41 -0
- package/skills/netsuite/netsuite-sso-oauth-tba-skill/references/auth-compatibility-matrix.md +12 -0
- package/skills/netsuite/netsuite-sso-oauth-tba-skill/references/least-privilege.md +62 -0
- package/skills/netsuite/netsuite-sso-oauth-tba-skill/references/official-sources.md +17 -0
- package/skills/netsuite/netsuite-sso-oauth-tba-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-sso-oauth-tba-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-suitecloud-developer-skill/SKILL.md +86 -0
- package/skills/netsuite/netsuite-suitecloud-developer-skill/metadata.json +37 -0
- package/skills/netsuite/netsuite-suitecloud-developer-skill/references/least-privilege.md +61 -0
- package/skills/netsuite/netsuite-suitecloud-developer-skill/references/official-sources.md +12 -0
- package/skills/netsuite/netsuite-suitecloud-developer-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-suitecloud-developer-skill/references/safety-checklist.md +17 -0
- package/skills/netsuite/netsuite-suitecloud-developer-skill/references/sdf-object-reference.md +14 -0
- package/skills/netsuite/netsuite-suiteflow-automation-skill/SKILL.md +85 -0
- package/skills/netsuite/netsuite-suiteflow-automation-skill/metadata.json +36 -0
- package/skills/netsuite/netsuite-suiteflow-automation-skill/references/least-privilege.md +65 -0
- package/skills/netsuite/netsuite-suiteflow-automation-skill/references/official-sources.md +12 -0
- package/skills/netsuite/netsuite-suiteflow-automation-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-suiteflow-automation-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-suiteflow-automation-skill/references/suiteflow-state-machine-guide.md +13 -0
- package/skills/netsuite/netsuite-suitefoundation-skill/SKILL.md +83 -0
- package/skills/netsuite/netsuite-suitefoundation-skill/metadata.json +35 -0
- package/skills/netsuite/netsuite-suitefoundation-skill/references/least-privilege.md +63 -0
- package/skills/netsuite/netsuite-suitefoundation-skill/references/official-sources.md +11 -0
- package/skills/netsuite/netsuite-suitefoundation-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-suitefoundation-skill/references/safety-checklist.md +17 -0
- package/skills/netsuite/netsuite-suitefoundation-skill/references/suitefoundation-domain-map.md +14 -0
- package/skills/netsuite/netsuite-suitescript-secure-code-review-skill/SKILL.md +86 -0
- package/skills/netsuite/netsuite-suitescript-secure-code-review-skill/metadata.json +37 -0
- package/skills/netsuite/netsuite-suitescript-secure-code-review-skill/references/least-privilege.md +65 -0
- package/skills/netsuite/netsuite-suitescript-secure-code-review-skill/references/official-sources.md +12 -0
- package/skills/netsuite/netsuite-suitescript-secure-code-review-skill/references/oscp-vanguard-severity-map.md +14 -0
- package/skills/netsuite/netsuite-suitescript-secure-code-review-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-suitescript-secure-code-review-skill/references/safety-checklist.md +18 -0
- package/skills/netsuite/netsuite-web-services-integration-skill/SKILL.md +85 -0
- package/skills/netsuite/netsuite-web-services-integration-skill/metadata.json +38 -0
- package/skills/netsuite/netsuite-web-services-integration-skill/references/auth-posture-matrix.md +14 -0
- package/skills/netsuite/netsuite-web-services-integration-skill/references/least-privilege.md +61 -0
- package/skills/netsuite/netsuite-web-services-integration-skill/references/official-sources.md +14 -0
- package/skills/netsuite/netsuite-web-services-integration-skill/references/release-drift.md +11 -0
- package/skills/netsuite/netsuite-web-services-integration-skill/references/safety-checklist.md +17 -0
- package/skills/snowflake/snowflake-data-platform-engineering-at-azure/SKILL.md +66 -0
- package/skills/snowflake/snowflake-data-platform-engineering-at-azure/metadata.json +29 -0
- package/skills/snowflake/snowflake-data-platform-engineering-at-azure/references/official-sources.md +32 -0
- package/skills/snowflake/snowflake-data-platform-engineering-at-azure/references/safety-checklist.md +26 -0
- package/skills/snowflake/snowflake-data-platform-engineering-at-azure/references/workflow-and-output.md +63 -0
- package/skills/snowflake/snowflake-live-rbac-grant-guard-at-azure/SKILL.md +148 -0
- package/skills/snowflake/snowflake-live-rbac-grant-guard-at-azure/metadata.json +22 -0
- package/skills/snowflake/snowflake-rbac-access-governance-at-azure/SKILL.md +71 -0
- package/skills/snowflake/snowflake-rbac-access-governance-at-azure/metadata.json +29 -0
- package/skills/snowflake/snowflake-rbac-access-governance-at-azure/references/official-sources.md +33 -0
- package/skills/snowflake/snowflake-rbac-access-governance-at-azure/references/safety-checklist.md +26 -0
- package/skills/snowflake/snowflake-rbac-access-governance-at-azure/references/workflow-and-output.md +61 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/001-happy-business-impact-value-realization.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/002-happy-copilot-governance-maestro.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/003-happy-copilot-studio-agent-governance-alm.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/004-happy-d365-commerce.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/005-happy-d365-customer-insights-journeys.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/006-happy-d365-customer-service-contact-center.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/007-happy-d365-data-migration-cutover.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/008-happy-d365-field-service-to-cash.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/009-happy-d365-finance-close-to-report.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/010-happy-d365-fno-developer-extension.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/011-happy-d365-integration-dual-write.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/012-happy-d365-maestro.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/013-happy-d365-project-operations.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/014-happy-d365-sales-revenue-operations.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/015-happy-d365-security-sod-governance.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/016-happy-d365-success-by-design-governance.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/017-happy-d365-supply-chain-plan-to-produce.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/018-happy-fabric-analytics-engineering.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/019-happy-fabric-data-engineering.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/020-happy-fabric-power-bi-business-insights-governance.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/021-happy-m365-backup-bcdr-data-resilience.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/022-happy-m365-copilot-readiness-governance.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/023-happy-m365-defender-xdr-security-operations.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/024-happy-m365-exchange-sharepoint-information-governance.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/025-happy-m365-identity-zero-trust.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/026-happy-m365-intune-endpoint-management.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/027-happy-m365-licensing-ea-optimization.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/028-happy-m365-maestro.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/029-happy-m365-purview-data-security-compliance.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/030-happy-m365-teams-collaboration-governance.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/031-happy-m365-tenant-governance.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/032-happy-power-automate-automation-risk-review.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/033-happy-power-platform-alm-pipelines.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/034-happy-power-platform-governance-dataverse-security.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/035-happy-power-platform-maestro.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/adv-ambiguous.json +4 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/adv-instruction-injection.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/adv-liveguard-01-d365-live-record-field-update-guard.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/adv-liveguard-02-d365-live-security-role-guard.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/adv-liveguard-03-m365-live-identity-posture-guard.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/adv-liveguard-04-m365-live-sensitivity-label-apply-guard.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/adv-persona-replacement.json +9 -0
- package/tests/fixtures/microsoft-maestro-routing/expected/adv-secrets-bait.json +6 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/001-happy-business-impact-value-realization.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/002-happy-copilot-governance-maestro.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/003-happy-copilot-studio-agent-governance-alm.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/004-happy-d365-commerce.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/005-happy-d365-customer-insights-journeys.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/006-happy-d365-customer-service-contact-center.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/007-happy-d365-data-migration-cutover.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/008-happy-d365-field-service-to-cash.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/009-happy-d365-finance-close-to-report.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/010-happy-d365-fno-developer-extension.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/011-happy-d365-integration-dual-write.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/012-happy-d365-maestro.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/013-happy-d365-project-operations.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/014-happy-d365-sales-revenue-operations.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/015-happy-d365-security-sod-governance.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/016-happy-d365-success-by-design-governance.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/017-happy-d365-supply-chain-plan-to-produce.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/018-happy-fabric-analytics-engineering.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/019-happy-fabric-data-engineering.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/020-happy-fabric-power-bi-business-insights-governance.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/021-happy-m365-backup-bcdr-data-resilience.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/022-happy-m365-copilot-readiness-governance.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/023-happy-m365-defender-xdr-security-operations.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/024-happy-m365-exchange-sharepoint-information-governance.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/025-happy-m365-identity-zero-trust.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/026-happy-m365-intune-endpoint-management.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/027-happy-m365-licensing-ea-optimization.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/028-happy-m365-maestro.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/029-happy-m365-purview-data-security-compliance.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/030-happy-m365-teams-collaboration-governance.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/031-happy-m365-tenant-governance.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/032-happy-power-automate-automation-risk-review.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/033-happy-power-platform-alm-pipelines.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/034-happy-power-platform-governance-dataverse-security.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/035-happy-power-platform-maestro.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/adv-ambiguous.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/adv-instruction-injection.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/adv-liveguard-01-d365-live-record-field-update-guard.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/adv-liveguard-02-d365-live-security-role-guard.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/adv-liveguard-03-m365-live-identity-posture-guard.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/adv-liveguard-04-m365-live-sensitivity-label-apply-guard.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/adv-persona-replacement.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/inputs/adv-secrets-bait.json +7 -0
- package/tests/fixtures/microsoft-maestro-routing/taxonomy.json +467 -0
- package/tests/fixtures/netsuite-maestro-routing/expected/001-happy-finance-setup.json +6 -0
- package/tests/fixtures/netsuite-maestro-routing/expected/002-happy-suitescript-security.json +6 -0
- package/tests/fixtures/netsuite-maestro-routing/expected/003-cross-domain-saved-search-subsidiary.json +12 -0
- package/tests/fixtures/netsuite-maestro-routing/inputs/001-happy-finance-setup.json +7 -0
- package/tests/fixtures/netsuite-maestro-routing/inputs/002-happy-suitescript-security.json +7 -0
- package/tests/fixtures/netsuite-maestro-routing/inputs/003-cross-domain-saved-search-subsidiary.json +7 -0
- package/tests/fixtures/netsuite-maestro-routing/taxonomy.json +232 -0
- package/tests/test-vfa-export-coverage.test.mjs +136 -0
- package/tests/validate-catalog.py +4 -0
|
@@ -0,0 +1,64 @@
|
|
|
1
|
+
# Official sources
|
|
2
|
+
|
|
3
|
+
Use this reference only when you need source grounding for Microsoft Entra identity, Conditional Access, PIM, and Zero Trust identity pillar service behavior or the detailed source list.
|
|
4
|
+
|
|
5
|
+
## Microsoft documentation
|
|
6
|
+
|
|
7
|
+
Use these as starting points, not as proof of the user's live Microsoft Entra tenant state:
|
|
8
|
+
|
|
9
|
+
- https://learn.microsoft.com/security/zero-trust/deploy/identity
|
|
10
|
+
- https://learn.microsoft.com/entra/identity/conditional-access/plan-conditional-access
|
|
11
|
+
- https://learn.microsoft.com/entra/identity/conditional-access/overview
|
|
12
|
+
- https://learn.microsoft.com/entra/id-governance/privileged-identity-management/pim-configure
|
|
13
|
+
- https://learn.microsoft.com/entra/fundamentals/zero-trust-protect-identities
|
|
14
|
+
- https://learn.microsoft.com/entra/id-governance/access-reviews-overview
|
|
15
|
+
- https://learn.microsoft.com/entra/id-governance/privileged-identity-management/pim-create-roles-and-resource-roles-review
|
|
16
|
+
- https://learn.microsoft.com/security/zero-trust/zero-trust-identity-device-access-policies-overview
|
|
17
|
+
- https://learn.microsoft.com/entra/identity/conditional-access/concept-conditional-access-policy-common
|
|
18
|
+
- https://learn.microsoft.com/entra/identity/role-based-access-control/best-practices
|
|
19
|
+
|
|
20
|
+
## Grounding rule
|
|
21
|
+
|
|
22
|
+
Official documentation explains Microsoft Entra and Conditional Access service behavior. It does not prove the user's current tenant Conditional Access policy set, PIM configuration, role assignments, MFA enforcement state, or guest access review cadence. Prefer read-only Microsoft Entra admin evidence, Graph API read output, repository evidence, or sanitized user-provided evidence for current-state claims.
|
|
23
|
+
|
|
24
|
+
## Current documentation refresh (2026-06-16)
|
|
25
|
+
|
|
26
|
+
Key service facts from official Microsoft Learn documentation:
|
|
27
|
+
|
|
28
|
+
**Zero Trust identity principles (per learn.microsoft.com/security/zero-trust/deploy/identity):**
|
|
29
|
+
- Verify explicitly: evaluate every access request with all available signals — user, device, location, risk, app
|
|
30
|
+
- Least privilege: JIT/JEA via PIM, risk-based Conditional Access, role delegation by task
|
|
31
|
+
- Assume breach: minimize admin blast radius, segment privileged access, audit privileged role activations
|
|
32
|
+
|
|
33
|
+
**Conditional Access (per learn.microsoft.com/entra/identity/conditional-access):**
|
|
34
|
+
- Real-time Zero Trust policy engine in Microsoft Entra ID
|
|
35
|
+
- Signals: user/group, location (named location/country), device state, app, sign-in risk, user risk, authentication strength
|
|
36
|
+
- Common baseline policies (Microsoft Entra ID P1): require MFA for admins, require MFA for all users, block legacy authentication
|
|
37
|
+
- Risk-based policies (Microsoft Entra ID P2 / Identity Protection): require MFA on medium/high sign-in risk, require password change on high user risk
|
|
38
|
+
- Require phishing-resistant MFA (FIDO2/certificate-based) for privileged administrators
|
|
39
|
+
|
|
40
|
+
**Privileged Identity Management (per learn.microsoft.com/entra/id-governance/privileged-identity-management/pim-configure):**
|
|
41
|
+
- Converts standing ("active") privileged role assignments to time-bound JIT ("eligible") assignments
|
|
42
|
+
- Requires MFA, approval, justification, and time limit for role activation
|
|
43
|
+
- Sends notifications on role activation
|
|
44
|
+
- Access reviews for privileged roles — periodic re-attestation by approvers
|
|
45
|
+
- PIM Discovery and Insights — identify all permanent admin assignments for conversion
|
|
46
|
+
- Supports Microsoft Entra roles and resource roles (subscriptions, resource groups)
|
|
47
|
+
|
|
48
|
+
**Microsoft Entra ID Governance (access reviews, entitlement management):**
|
|
49
|
+
- Access reviews for groups, applications, privileged roles, and guest users
|
|
50
|
+
- Entitlement management — time-bound access packages with automatic expiration
|
|
51
|
+
- Lifecycle workflows — automate identity lifecycle (joiner/mover/leaver)
|
|
52
|
+
|
|
53
|
+
**Common failure modes:**
|
|
54
|
+
- Standing Global Administrator assignments outside PIM (permanent active admin)
|
|
55
|
+
- Broad Conditional Access exclusions for VIPs, service accounts, or legacy applications without compensating controls
|
|
56
|
+
- MFA gaps for guest and external users
|
|
57
|
+
- Stale guest accounts without access review cadence
|
|
58
|
+
- Break-glass accounts without monitoring and review procedures
|
|
59
|
+
- Legacy authentication not blocked, enabling password spray / credential stuffing
|
|
60
|
+
|
|
61
|
+
Review implications:
|
|
62
|
+
- Do not approve CA policy designs that weaken MFA or add broad exclusions without time-bounded exceptions and compensating controls.
|
|
63
|
+
- PIM eligibility alone does not prove least privilege — verify role scope, activation requirements, and review cadence.
|
|
64
|
+
- Documentation cannot prove the user's actual Conditional Access policy state, PIM configuration, or role assignment coverage.
|
|
@@ -0,0 +1,38 @@
|
|
|
1
|
+
# Safety checklist
|
|
2
|
+
|
|
3
|
+
Use this reference before any recommendation that changes Conditional Access policies, MFA requirements, PIM configuration, role assignments, guest access policies, or any other Microsoft Entra tenant configuration.
|
|
4
|
+
|
|
5
|
+
## Non-negotiables
|
|
6
|
+
|
|
7
|
+
- Never recommend weakening MFA coverage, adding broad Conditional Access exclusions, or disabling risk-based policies for convenience, deadline pressure, or VIP exceptions. State this refusal plainly.
|
|
8
|
+
- Never ask users to paste secrets, admin credentials, tenant IDs, client secrets, certificates, private keys, or customer data into chat.
|
|
9
|
+
- Use read-only Microsoft Entra admin evidence or Graph API read evidence for live state when available; otherwise use repository evidence, sanitized user evidence, or official documentation and label the evidence level.
|
|
10
|
+
- Do not invent Conditional Access policy states, PIM configuration, role assignment counts, or MFA enforcement coverage.
|
|
11
|
+
- Require explicit user approval before recommending creation or modification of Conditional Access policies, PIM role assignments, access review configuration, or break-glass account changes.
|
|
12
|
+
- Keep remediation least-privilege, reversible, staged (report mode before enforcement), and scoped to the requested role or policy boundary.
|
|
13
|
+
- Treat any standing Global Administrator assignment outside PIM as critical until converted to eligible.
|
|
14
|
+
- Treat any Conditional Access policy with broad exclusions (all admins excluded, no MFA for legacy apps) as high risk until compensating controls are documented.
|
|
15
|
+
|
|
16
|
+
## Stress checks
|
|
17
|
+
|
|
18
|
+
- What identity path can an attacker follow from initial compromise to Global Administrator?
|
|
19
|
+
- What MFA or Conditional Access gap allows password spray, phishing, or credential stuffing to succeed?
|
|
20
|
+
- What standing privileged role assignment widens blast radius if compromised?
|
|
21
|
+
- What guest or external account has stale, unreviewed access?
|
|
22
|
+
- What break-glass account monitoring gap would hide unauthorized emergency access use?
|
|
23
|
+
- What rollback path exists if a new Conditional Access policy locks out users or breaks service accounts?
|
|
24
|
+
|
|
25
|
+
## Evidence labels
|
|
26
|
+
|
|
27
|
+
Use `live evidence`, `repo evidence`, `user-provided evidence`, `documentation-based`, or `inference`. Documentation alone never proves the user's live Microsoft Entra tenant Conditional Access policy state, PIM configuration, or role assignment coverage.
|
|
28
|
+
|
|
29
|
+
## Escalation triggers
|
|
30
|
+
|
|
31
|
+
Escalate to live-guard gate before any of the following:
|
|
32
|
+
|
|
33
|
+
- Creating or modifying Conditional Access policies (especially disabling, adding exclusions, or changing enforcement mode from report-only to enabled)
|
|
34
|
+
- Changing PIM eligible or active role assignments for privileged roles
|
|
35
|
+
- Modifying MFA registration policies or authentication methods
|
|
36
|
+
- Changing external collaboration or B2B cross-tenant access policies
|
|
37
|
+
- Modifying break-glass or emergency access account configurations
|
|
38
|
+
- Enabling, disabling, or modifying Microsoft Entra ID Protection risk policies
|
|
@@ -0,0 +1,65 @@
|
|
|
1
|
+
# Workflow and output contract
|
|
2
|
+
|
|
3
|
+
Use this reference only when performing the full identity posture review, Conditional Access baseline gap assessment, or formatting the final review.
|
|
4
|
+
|
|
5
|
+
## Review domains
|
|
6
|
+
|
|
7
|
+
Check these areas before giving a verdict:
|
|
8
|
+
|
|
9
|
+
- **MFA coverage**: Admin MFA (phishing-resistant), all-user MFA, legacy authentication block, security defaults vs. Conditional Access tradeoffs
|
|
10
|
+
- **Conditional Access baseline**: Common policies (admin MFA, all-user MFA, legacy block, device compliance, app protection), named location inventory, session controls, authentication strengths
|
|
11
|
+
- **Risk-based policies**: Sign-in risk and user risk policies (requires Identity Protection / Entra ID P2), self-remediation flows
|
|
12
|
+
- **Privileged Identity Management**: Standing vs. eligible role assignments, activation requirements (MFA, approval, justification, time limit), PIM Discovery and Insights, access review cadence for privileged roles
|
|
13
|
+
- **Least-privilege role assignments**: Global Administrator count and alternatives, role delegation by task, administrative units, custom roles
|
|
14
|
+
- **Microsoft Entra ID Governance**: Access reviews for groups, apps, privileged roles, and guest users; entitlement management expiration; lifecycle workflows
|
|
15
|
+
- **Guest and external identity**: B2B collaboration settings, guest access reviews, cross-tenant access policies, external user lifecycle
|
|
16
|
+
- **Break-glass accounts**: Emergency access accounts, excluded from CA policies, monitored via alerts, reviewed regularly
|
|
17
|
+
|
|
18
|
+
## Safe workflow
|
|
19
|
+
|
|
20
|
+
1. **Frame scope**
|
|
21
|
+
- Tenant / environment / licensing tier (Entra ID P1 or P2):
|
|
22
|
+
- Administrator count and role inventory:
|
|
23
|
+
- Data classification and compliance driver:
|
|
24
|
+
- Required outcome:
|
|
25
|
+
- Explicit non-goals:
|
|
26
|
+
2. **Collect evidence**
|
|
27
|
+
- Prefer read-only Microsoft Entra admin evidence or Graph API read output for current-state claims when available.
|
|
28
|
+
- Otherwise inspect repository IaC/config (Bicep, Terraform, JSON), sanitized user evidence, or official docs.
|
|
29
|
+
- Label each finding as `live evidence`, `repo evidence`, `user-provided evidence`, `documentation-based`, or `inference`.
|
|
30
|
+
3. **Stress-test risk**
|
|
31
|
+
- What identity path can an attacker use to escalate to Global Administrator?
|
|
32
|
+
- What MFA or Conditional Access gap allows password spray or phishing to succeed?
|
|
33
|
+
- What standing privileged assignment widens blast radius?
|
|
34
|
+
- What guest or external identity has stale access?
|
|
35
|
+
- What compliance or audit evidence is missing?
|
|
36
|
+
- What rollback or validation path is unproven for CA changes?
|
|
37
|
+
4. **Recommend the smallest safe action**
|
|
38
|
+
- Prefer report mode for new CA policies, staged rollout (pilot group), PIM eligible before active, and access reviews before removal.
|
|
39
|
+
- If the safest action is to stop and gather evidence before making changes, say that plainly.
|
|
40
|
+
|
|
41
|
+
## Output contract
|
|
42
|
+
|
|
43
|
+
Return this structure:
|
|
44
|
+
|
|
45
|
+
```markdown
|
|
46
|
+
# M365 Identity Zero Trust Review: <scope>
|
|
47
|
+
## Executive verdict
|
|
48
|
+
- Status: READY / READY WITH RISKS / NOT READY / NEEDS EVIDENCE
|
|
49
|
+
- Biggest risk:
|
|
50
|
+
- Evidence level:
|
|
51
|
+
## Scope and assumptions
|
|
52
|
+
- Confirmed:
|
|
53
|
+
- Unknown:
|
|
54
|
+
- Out of scope:
|
|
55
|
+
## Findings
|
|
56
|
+
| Severity | Control area | Finding | Evidence | Why it matters | Minimum safe action |
|
|
57
|
+
|---|---|---|---|---|---|
|
|
58
|
+
## Recommended actions
|
|
59
|
+
1. <action> — owner: <owner>, validation: <check>, rollback: <rollback>
|
|
60
|
+
## Validation
|
|
61
|
+
- Checks or reports to run:
|
|
62
|
+
- Expected result:
|
|
63
|
+
## Residual risk
|
|
64
|
+
- <risk or explicit none>
|
|
65
|
+
```
|
|
@@ -0,0 +1,59 @@
|
|
|
1
|
+
---
|
|
2
|
+
name: m365-intune-endpoint-management
|
|
3
|
+
description: Review and advise on Microsoft Intune endpoint management posture covering device enrollment, compliance policies, configuration profiles, app protection (MAM) policies, Conditional Access device-compliance signal, Windows Autopilot, update rings, and endpoint security baselines. Applies Zero Trust device-health-as-signal principles. Static review and advisory only; production compliance-policy or Conditional Access-impacting changes and device wipe or retire actions are live-guard gated. Refuses to weaken device compliance or Conditional Access requirements for convenience.
|
|
4
|
+
allowed-tools: Read Grep Glob
|
|
5
|
+
metadata:
|
|
6
|
+
author: "github: Raishin"
|
|
7
|
+
version: "0.1.0"
|
|
8
|
+
updated: "2026-06-17"
|
|
9
|
+
category: platform
|
|
10
|
+
---
|
|
11
|
+
|
|
12
|
+
# Microsoft 365 Intune Endpoint Management
|
|
13
|
+
|
|
14
|
+
## Purpose
|
|
15
|
+
|
|
16
|
+
Act as the Microsoft Intune endpoint management reviewer who treats every unmanaged device, every unenforced compliance policy, and every missing app protection policy as a potential breach vector until proven otherwise. Device health is a Zero Trust signal — devices that cannot prove compliance must not access corporate resources.
|
|
17
|
+
|
|
18
|
+
## When to use
|
|
19
|
+
|
|
20
|
+
Use this skill for:
|
|
21
|
+
|
|
22
|
+
- Device enrollment review — Microsoft Entra join, Hybrid join, Windows Autopilot, Apple Automated Device Enrollment (ADE), Android Enterprise enrollment, and personally owned device (BYOD) approaches
|
|
23
|
+
- Compliance policy design and gap assessment — minimum OS version, BitLocker encryption, Secure Boot, Defender health, jailbreak/root detection, and noncompliance actions
|
|
24
|
+
- Configuration profile review — device restrictions, endpoint protection, Wi-Fi, VPN, certificates, and Settings Catalog profiles
|
|
25
|
+
- App protection (MAM) policy review — data transfer restrictions, PIN requirements, managed browser controls, and level 2 enterprise enhanced data protection for unmanaged and managed devices
|
|
26
|
+
- Conditional Access device-compliance signal review — require compliant device or Microsoft Entra hybrid join policies, app protection policy enforcement
|
|
27
|
+
- Windows Autopilot review — Autopilot deployment profile, enrollment status page (ESP), hybrid join configuration, and device group tag strategy
|
|
28
|
+
- Update rings and feature update policy review — deferral periods, deadlines, active hours, pilot vs. broad rings, Windows Autopatch
|
|
29
|
+
- Endpoint security baseline review — Windows security baseline, Microsoft Defender for Endpoint baseline, Microsoft Edge baseline, compliance with industry frameworks
|
|
30
|
+
- Endpoint Privilege Management (EPM) — standard user elevation, least-privilege endpoint access
|
|
31
|
+
- Defender for Endpoint integration — device risk signal feeding Conditional Access, vulnerability remediation workflow
|
|
32
|
+
|
|
33
|
+
## Lean operating rules
|
|
34
|
+
|
|
35
|
+
- Prefer current Microsoft Learn documentation for service behavior. Use facts in `references/official-sources.md` as starting anchors; when the user has configured read-only Intune or Microsoft Graph MCP access, use exposed read-only tools for current-state evidence instead of guessing.
|
|
36
|
+
- Separate confirmed facts from inference. If state was not queried or shown, say so.
|
|
37
|
+
- Refuse to recommend weakening device compliance policies, removing Conditional Access device-compliance requirements, or creating broad noncompliance exceptions for delivery pressure or VIP exemptions. State this refusal plainly.
|
|
38
|
+
- Challenge unmanaged device access to corporate resources, missing app protection policies for BYOD scenarios, unenforced update rings, and missing Defender for Endpoint integration.
|
|
39
|
+
- Keep the answer scoped, reversible, least-privilege, and explicit about blockers or unknowns.
|
|
40
|
+
- Load references only when needed; do not pull all deep guidance into short answers.
|
|
41
|
+
- Never ask for secrets, tenant IDs, admin credentials, client secrets, certificates, or customer data.
|
|
42
|
+
|
|
43
|
+
## References
|
|
44
|
+
|
|
45
|
+
Load these only when needed:
|
|
46
|
+
|
|
47
|
+
- [Workflow and output contract](references/workflow-and-output.md) — use when executing a full endpoint management posture review or formatting the final review.
|
|
48
|
+
- [Safety checklist](references/safety-checklist.md) — use before any recommendation that changes compliance policies, Conditional Access, update rings, or triggers device actions.
|
|
49
|
+
- [Official sources](references/official-sources.md) — use when grounding Intune, Autopilot, endpoint security baseline, or update ring service behavior, or checking the detailed source list.
|
|
50
|
+
|
|
51
|
+
## Response minimum
|
|
52
|
+
|
|
53
|
+
Return, at minimum:
|
|
54
|
+
|
|
55
|
+
- the scoped target and evidence level,
|
|
56
|
+
- the Zero Trust device-health control(s) implicated and the main risks or gaps,
|
|
57
|
+
- the safest next actions,
|
|
58
|
+
- validation or rollback notes where relevant,
|
|
59
|
+
- the assumptions or blockers that prevent stronger conclusions.
|
|
@@ -0,0 +1,32 @@
|
|
|
1
|
+
{
|
|
2
|
+
"id": "m365-intune-endpoint-management",
|
|
3
|
+
"name": "Microsoft 365 Intune Endpoint Management",
|
|
4
|
+
"type": "skill",
|
|
5
|
+
"provider": "microsoft",
|
|
6
|
+
"harnesses": [
|
|
7
|
+
"codex",
|
|
8
|
+
"claude-code",
|
|
9
|
+
"cursor",
|
|
10
|
+
"gemini",
|
|
11
|
+
"kiro",
|
|
12
|
+
"other"
|
|
13
|
+
],
|
|
14
|
+
"summary": "Review and advise on Microsoft Intune endpoint management posture covering device enrollment, compliance policies, configuration profiles, app protection (MAM) policies, Conditional Access device-compliance signal, Windows Autopilot, update rings, and endpoint security baselines. Applies Zero Trust device-health-as-signal principles — treating every unmanaged or noncompliant device as untrusted until proven otherwise. Static review and advisory only; production compliance-policy or Conditional Access changes, and device wipe or retire actions, are live-guard gated and require explicit human confirmation.",
|
|
15
|
+
"source_type": "original",
|
|
16
|
+
"official_docs": [
|
|
17
|
+
"https://learn.microsoft.com/intune/fundamentals/zero-trust",
|
|
18
|
+
"https://learn.microsoft.com/security/zero-trust/manage-devices-with-intune-overview",
|
|
19
|
+
"https://learn.microsoft.com/security/zero-trust/manage-devices-with-intune-compliance-policies",
|
|
20
|
+
"https://learn.microsoft.com/intune/device-security/security-baselines/overview",
|
|
21
|
+
"https://learn.microsoft.com/intune/device-updates/windows/manage-update-rings",
|
|
22
|
+
"https://learn.microsoft.com/autopilot/windows-autopilot-overview",
|
|
23
|
+
"https://learn.microsoft.com/intune/device-security/endpoint-security-policies"
|
|
24
|
+
],
|
|
25
|
+
"security_notes": "Never recommend weakening device compliance policies or Conditional Access device-compliance requirements for convenience, delivery pressure, or broad exclusions. Production compliance-policy changes, Conditional Access policy creation or modification that affects device compliance signal, and device wipe or retire actions are live-guard gated and require explicit human confirmation, blast-radius assessment, and rollback path. Do not request secrets, tenant IDs, admin credentials, client secrets, certificates, or customer data. Label all findings as live evidence, repo evidence, user-provided sanitized evidence, documentation-based, or inference. Challenge standing noncompliance exceptions, unmanaged device access, missing app protection policies for unmanaged devices, and unenforced update rings.",
|
|
26
|
+
"last_verified": "2026-06-17",
|
|
27
|
+
"path": "skills/microsoft/m365-intune-endpoint-management",
|
|
28
|
+
"author": "github: Raishin",
|
|
29
|
+
"version": "0.1.0",
|
|
30
|
+
"category": "platform",
|
|
31
|
+
"companion_agents": ["m365-intune-endpoint-management-agent"]
|
|
32
|
+
}
|
|
@@ -0,0 +1,66 @@
|
|
|
1
|
+
# Official sources
|
|
2
|
+
|
|
3
|
+
Use this reference only when you need source grounding for Microsoft Intune endpoint management, device compliance, app protection, Windows Autopilot, update rings, endpoint security baselines, or Zero Trust device-health-as-signal service behavior.
|
|
4
|
+
|
|
5
|
+
## Microsoft documentation
|
|
6
|
+
|
|
7
|
+
Use these as starting points, not as proof of the user's live Intune tenant state:
|
|
8
|
+
|
|
9
|
+
- https://learn.microsoft.com/intune/fundamentals/zero-trust
|
|
10
|
+
- https://learn.microsoft.com/security/zero-trust/manage-devices-with-intune-overview
|
|
11
|
+
- https://learn.microsoft.com/security/zero-trust/manage-devices-with-intune-compliance-policies
|
|
12
|
+
- https://learn.microsoft.com/security/zero-trust/manage-devices-with-intune-app-protection
|
|
13
|
+
- https://learn.microsoft.com/intune/device-security/security-baselines/overview
|
|
14
|
+
- https://learn.microsoft.com/intune/device-updates/windows/manage-update-rings
|
|
15
|
+
- https://learn.microsoft.com/autopilot/windows-autopilot-overview
|
|
16
|
+
- https://learn.microsoft.com/intune/device-security/endpoint-security-policies
|
|
17
|
+
- https://learn.microsoft.com/intune/device-security/compliance/overview
|
|
18
|
+
- https://learn.microsoft.com/intune/apps/app-protection-policy
|
|
19
|
+
|
|
20
|
+
## Grounding rule
|
|
21
|
+
|
|
22
|
+
Official documentation explains Microsoft Intune and endpoint management service behavior. It does not prove the user's current Intune compliance policy assignments, enrollment state, app protection policy coverage, update ring enforcement, or Defender for Endpoint integration status. Prefer read-only Intune admin center evidence, Microsoft Graph read output, repository evidence, or sanitized user-provided evidence for current-state claims.
|
|
23
|
+
|
|
24
|
+
## Current documentation refresh (2026-06-17)
|
|
25
|
+
|
|
26
|
+
Key service facts from official Microsoft Learn documentation:
|
|
27
|
+
|
|
28
|
+
**Zero Trust with Intune (per learn.microsoft.com/intune/fundamentals/zero-trust):**
|
|
29
|
+
- Verify explicitly: Intune compliance policies validate device health (OS version, encryption, Defender status, PIN) as a Conditional Access signal
|
|
30
|
+
- Least privilege: Endpoint Privilege Management (EPM) allows standard users to complete elevation tasks without standing local admin rights; LAPS manages local administrator credentials
|
|
31
|
+
- Assume breach: Intune integrates with Microsoft Defender for Endpoint for mobile threat defense, device risk scoring, and vulnerability remediation workflows via Security Copilot
|
|
32
|
+
|
|
33
|
+
**Compliance policies (per learn.microsoft.com/security/zero-trust/manage-devices-with-intune-compliance-policies):**
|
|
34
|
+
- Define minimum device health requirements per platform (Windows, iOS/iPadOS, Android, macOS)
|
|
35
|
+
- Noncompliant devices trigger configurable actions: mark noncompliant, notify user, block, retire
|
|
36
|
+
- Compliance signals feed Conditional Access — "require compliant device" policy blocks noncompliant access
|
|
37
|
+
- Devices must be enrolled in Intune before compliance policies apply
|
|
38
|
+
|
|
39
|
+
**App protection (MAM) policies (per learn.microsoft.com/security/zero-trust/manage-devices-with-intune-app-protection):**
|
|
40
|
+
- Level 2 enterprise enhanced data protection is the recommended starting level for devices accessing sensitive data
|
|
41
|
+
- MAM policies protect corporate data in managed apps without requiring device enrollment
|
|
42
|
+
- Key controls: restrict cut/copy/paste to managed apps, require PIN, block backup to personal storage, require managed browser, wipe corporate data on unenrollment
|
|
43
|
+
- Coordinate MAM policies with Conditional Access "require approved app and app protection" policy
|
|
44
|
+
|
|
45
|
+
**Security baselines (per learn.microsoft.com/intune/device-security/security-baselines/overview):**
|
|
46
|
+
- Preconfigured groups of Windows settings recommended by Microsoft security teams
|
|
47
|
+
- Available baselines: Windows MDM security baseline, Microsoft Defender for Endpoint baseline, Microsoft Edge baseline
|
|
48
|
+
- Test in isolation before broad deployment — some settings may conflict with Windows Autopilot or application delivery
|
|
49
|
+
|
|
50
|
+
**Update rings (per learn.microsoft.com/intune/device-updates/windows/manage-update-rings):**
|
|
51
|
+
- Control Windows update deferral periods, deadlines, restart behavior, and active hours
|
|
52
|
+
- Common ring structure: test (0-day deferral), pilot (7-day), broad (14-21 day)
|
|
53
|
+
- Windows Autopatch manages ring cadence automatically for qualifying tenants
|
|
54
|
+
|
|
55
|
+
**Common failure modes:**
|
|
56
|
+
- No app protection policies for BYOD/unmanaged devices accessing corporate data
|
|
57
|
+
- Compliance policies assigned but Conditional Access not enforcing "require compliant device"
|
|
58
|
+
- Missing Defender for Endpoint integration — device risk not flowing to Conditional Access
|
|
59
|
+
- Update rings defined but not assigned — endpoints receiving updates without deferral control
|
|
60
|
+
- Security baselines not tested before broad deployment causing application compatibility issues
|
|
61
|
+
- Autopilot profiles missing enrollment status page (ESP) — users reaching desktop before policy applies
|
|
62
|
+
|
|
63
|
+
Review implications:
|
|
64
|
+
- Do not approve Conditional Access designs that allow noncompliant devices as a broad exception without compensating controls.
|
|
65
|
+
- Compliance policy assignment alone is insufficient — verify that Conditional Access is enforcing the compliance signal.
|
|
66
|
+
- Documentation cannot prove the user's actual Intune enrollment coverage, compliance policy assignments, or Defender for Endpoint integration state.
|
|
@@ -0,0 +1,39 @@
|
|
|
1
|
+
# Safety checklist
|
|
2
|
+
|
|
3
|
+
Use this reference before any recommendation that changes Intune compliance policies, Conditional Access device-compliance requirements, app protection policies, update ring enforcement, security baselines, or triggers any device action (wipe, retire, sync, restart).
|
|
4
|
+
|
|
5
|
+
## Non-negotiables
|
|
6
|
+
|
|
7
|
+
- Never recommend weakening device compliance requirements, adding broad noncompliance exceptions, or disabling Conditional Access device-compliance enforcement for convenience, deadline pressure, or VIP exceptions. State this refusal plainly.
|
|
8
|
+
- Never ask users to paste secrets, admin credentials, tenant IDs, client secrets, certificates, private keys, or customer data into chat.
|
|
9
|
+
- Use read-only Intune admin center evidence or Microsoft Graph read evidence for live state when available; otherwise use repository evidence, sanitized user evidence, or official documentation and label the evidence level.
|
|
10
|
+
- Do not invent Intune enrollment coverage, compliance policy assignments, app protection policy states, update ring assignments, or Defender for Endpoint integration status.
|
|
11
|
+
- Require explicit user approval before recommending compliance policy creation or modification, Conditional Access changes that affect device-compliance enforcement, update ring enforcement changes, security baseline deployments, or any device action such as wipe or retire.
|
|
12
|
+
- Keep remediation least-privilege, reversible, staged (audit or report mode before enforcement), and scoped to the requested device group or policy boundary.
|
|
13
|
+
- Treat any corporate resource accessible from an unmanaged or unenrolled device without app protection policies as high risk until protected.
|
|
14
|
+
- Treat any compliance policy assignment that is not enforced by Conditional Access as a gap — compliance without enforcement is advisory only.
|
|
15
|
+
|
|
16
|
+
## Stress checks
|
|
17
|
+
|
|
18
|
+
- What device path allows an attacker with stolen credentials to reach corporate resources from an unmanaged or noncompliant device?
|
|
19
|
+
- What app protection gap allows corporate data to exit the managed app boundary to personal storage or unmanaged apps?
|
|
20
|
+
- What update ring gap leaves endpoints exposed to known CVEs beyond the approved deferral window?
|
|
21
|
+
- What compliance policy is defined and assigned but not enforced by Conditional Access?
|
|
22
|
+
- What security baseline conflict or missing configuration profile leaves a known security setting unconfigured?
|
|
23
|
+
- What rollback path exists if a compliance policy or Conditional Access change causes a broad device lockout or service account disruption?
|
|
24
|
+
|
|
25
|
+
## Evidence labels
|
|
26
|
+
|
|
27
|
+
Use `live evidence`, `repo evidence`, `user-provided evidence`, `documentation-based`, or `inference`. Documentation alone never proves the user's live Intune enrollment state, compliance policy assignments, app protection policy coverage, or update ring enforcement.
|
|
28
|
+
|
|
29
|
+
## Escalation triggers
|
|
30
|
+
|
|
31
|
+
Escalate to live-guard gate before any of the following:
|
|
32
|
+
|
|
33
|
+
- Creating or modifying Intune compliance policies affecting Conditional Access enforcement
|
|
34
|
+
- Changing Conditional Access policies that reference device compliance or app protection requirements
|
|
35
|
+
- Modifying or deploying endpoint security baselines to production device groups
|
|
36
|
+
- Changing Windows update ring deferral periods or deadline enforcement on production ring assignments
|
|
37
|
+
- Triggering device actions (wipe, retire, fresh start, remote lock) on production devices
|
|
38
|
+
- Enabling or disabling Microsoft Defender for Endpoint integration with Intune
|
|
39
|
+
- Changing Windows Autopilot deployment profiles or enrollment status page configuration for production device groups
|
|
@@ -0,0 +1,67 @@
|
|
|
1
|
+
# Workflow and output contract
|
|
2
|
+
|
|
3
|
+
Use this reference only when performing the full Intune endpoint management posture review or formatting the final review.
|
|
4
|
+
|
|
5
|
+
## Review domains
|
|
6
|
+
|
|
7
|
+
Check these areas before giving a verdict:
|
|
8
|
+
|
|
9
|
+
- **Device enrollment coverage**: Enrolled vs. unmanaged device ratio, enrollment methods per platform (Microsoft Entra join, Hybrid join, Windows Autopilot, Apple ADE, Android Enterprise), and BYOD enrollment policy
|
|
10
|
+
- **Compliance policies**: Per-platform compliance requirements (OS version, encryption, Defender health, jailbreak/root detection), noncompliance actions, grace periods, and Conditional Access "require compliant device" enforcement
|
|
11
|
+
- **Configuration profiles**: Device restriction profiles, endpoint protection profiles, Settings Catalog profiles, Wi-Fi and VPN certificate delivery, and profile conflict detection
|
|
12
|
+
- **App protection (MAM) policies**: Data transfer restrictions, PIN requirements, managed browser enforcement, level 2 protection coverage, and unmanaged device coverage
|
|
13
|
+
- **Conditional Access device-compliance signal**: Require compliant device or Microsoft Entra hybrid join enforcement, app protection policy requirement, named location and platform conditions
|
|
14
|
+
- **Windows Autopilot**: Deployment profiles, enrollment status page (ESP) configuration, device group tag strategy, and hybrid join vs. cloud-native architecture
|
|
15
|
+
- **Update rings and feature updates**: Ring structure (test/pilot/broad), deferral periods, deadline enforcement, Windows Autopatch adoption, and ring assignment coverage
|
|
16
|
+
- **Endpoint security baselines**: Baseline selection, customization from defaults, conflict detection, and compliance monitoring
|
|
17
|
+
- **Endpoint Privilege Management (EPM)**: Standard user elevation policies, elevation rules, and LAPS configuration
|
|
18
|
+
- **Defender for Endpoint integration**: Intune connector status, device risk signal feeding Conditional Access, and vulnerability remediation task workflow
|
|
19
|
+
|
|
20
|
+
## Safe workflow
|
|
21
|
+
|
|
22
|
+
1. **Frame scope**
|
|
23
|
+
- Tenant / environment / licensing tier (Intune Plan 1 or Plan 2):
|
|
24
|
+
- Device platform mix and enrollment method:
|
|
25
|
+
- BYOD vs. corporate-owned split:
|
|
26
|
+
- Required outcome:
|
|
27
|
+
- Explicit non-goals:
|
|
28
|
+
2. **Collect evidence**
|
|
29
|
+
- Prefer read-only Intune admin center evidence or Microsoft Graph read output for current-state claims when available.
|
|
30
|
+
- Otherwise inspect repository IaC/config (Bicep, Terraform, JSON exports), sanitized user evidence, or official docs.
|
|
31
|
+
- Label each finding as `live evidence`, `repo evidence`, `user-provided evidence`, `documentation-based`, or `inference`.
|
|
32
|
+
3. **Stress-test risk**
|
|
33
|
+
- What device path allows an attacker with stolen credentials to access corporate resources from an unmanaged or noncompliant device?
|
|
34
|
+
- What app protection gap allows corporate data to leak from a managed app to personal storage or an unmanaged app?
|
|
35
|
+
- What update ring gap leaves endpoints exposed to known vulnerabilities beyond acceptable deferral windows?
|
|
36
|
+
- What compliance policy is assigned but not enforced by Conditional Access?
|
|
37
|
+
- What baseline conflict or missing profile leaves a security configuration gap?
|
|
38
|
+
- What rollback path exists if a compliance policy or security baseline change causes a broad lockout?
|
|
39
|
+
4. **Recommend the smallest safe action**
|
|
40
|
+
- Prefer report mode for new compliance policies, staged rollout (pilot group), app protection policy in audit mode before enforcement, and update ring testing before broad assignment.
|
|
41
|
+
- If the safest action is to stop and gather evidence before making changes, say that plainly.
|
|
42
|
+
|
|
43
|
+
## Output contract
|
|
44
|
+
|
|
45
|
+
Return this structure:
|
|
46
|
+
|
|
47
|
+
```markdown
|
|
48
|
+
# M365 Intune Endpoint Management Review: <scope>
|
|
49
|
+
## Executive verdict
|
|
50
|
+
- Status: READY / READY WITH RISKS / NOT READY / NEEDS EVIDENCE
|
|
51
|
+
- Biggest risk:
|
|
52
|
+
- Evidence level:
|
|
53
|
+
## Scope and assumptions
|
|
54
|
+
- Confirmed:
|
|
55
|
+
- Unknown:
|
|
56
|
+
- Out of scope:
|
|
57
|
+
## Findings
|
|
58
|
+
| Severity | Control area | Finding | Evidence | Why it matters | Minimum safe action |
|
|
59
|
+
|---|---|---|---|---|---|
|
|
60
|
+
## Recommended actions
|
|
61
|
+
1. <action> — owner: <owner>, validation: <check>, rollback: <rollback>
|
|
62
|
+
## Validation
|
|
63
|
+
- Checks or reports to run:
|
|
64
|
+
- Expected result:
|
|
65
|
+
## Residual risk
|
|
66
|
+
- <risk or explicit none>
|
|
67
|
+
```
|
|
@@ -0,0 +1,57 @@
|
|
|
1
|
+
---
|
|
2
|
+
name: m365-licensing-ea-optimization
|
|
3
|
+
description: Review Microsoft 365 licensing posture and Enterprise Agreement optimization — SKU and plan fit analysis across E3, E5, F-SKUs and add-ons; group-based licensing assignment hygiene; unassigned and over-assigned license detection; true-up planning guidance; and cost-versus-capability analysis for EA, CSP, and MCA contract types. Advisory only; never make purchase commitments or guarantee savings. Group-based-licensing changes in production are live-guard gated.
|
|
4
|
+
allowed-tools: Read Grep Glob
|
|
5
|
+
metadata:
|
|
6
|
+
author: "github: Raishin"
|
|
7
|
+
version: "0.1.0"
|
|
8
|
+
updated: "2026-06-17"
|
|
9
|
+
category: cost-management
|
|
10
|
+
---
|
|
11
|
+
|
|
12
|
+
# Microsoft 365 Licensing and EA Optimization
|
|
13
|
+
|
|
14
|
+
## Purpose
|
|
15
|
+
|
|
16
|
+
Act as the Microsoft 365 licensing reviewer who treats every unassigned license, SKU mismatch, manual assignment sprawl, and ungoverned group-based licensing configuration as a cost and compliance risk until proven otherwise.
|
|
17
|
+
|
|
18
|
+
## When to use
|
|
19
|
+
|
|
20
|
+
Use this skill for:
|
|
21
|
+
|
|
22
|
+
- SKU and plan fit analysis — E3 vs. E5 capability gap, F1/F3 Firstline Worker fit, add-on necessity (Microsoft Defender, Microsoft Purview, Microsoft 365 Copilot), Microsoft Entra ID P1 vs. P2 feature requirements
|
|
23
|
+
- Group-based licensing hygiene — security group structure for license assignment, nested group limitations, location requirement compliance, conflict and dependency detection
|
|
24
|
+
- License assignment hygiene — unassigned license inventory, over-assigned licenses, stale user accounts consuming licenses, assignment audit via Microsoft 365 admin center and Microsoft Graph
|
|
25
|
+
- True-up planning — EA annual true-up cycle preparation, license count reconciliation, usage trend analysis, growth and reduction planning
|
|
26
|
+
- Cost-versus-capability analysis — capability overlap between SKUs, identifying redundant add-ons, downgrade feasibility, E5 step-up versus selective add-ons
|
|
27
|
+
- EA, CSP, and MCA contract awareness — agreement type differences (advisory context only), volume licensing admin center (successor to VLSC), Microsoft Customer Agreement characteristics
|
|
28
|
+
- License governance — license assignment audit logs, License Administrator role scoping, reporting via Microsoft 365 admin center and Microsoft Graph PowerShell SDK
|
|
29
|
+
|
|
30
|
+
## Lean operating rules
|
|
31
|
+
|
|
32
|
+
- Prefer current Microsoft Learn documentation for service behavior. Use facts in `references/official-sources.md` as starting anchors.
|
|
33
|
+
- Separate confirmed facts from inference. If state was not queried or shown, say so.
|
|
34
|
+
- Advisory only — never make or imply purchase commitments, guarantee cost savings, or provide binding contract pricing. Escalate procurement decisions to the customer's Microsoft account team or licensing specialist.
|
|
35
|
+
- Never conflate licensing optimization with adoption or value-realization — this skill covers licensing cost structure, not end-user adoption outcomes.
|
|
36
|
+
- Group-based licensing changes in production tenants are live-guard gated — escalate to a human administrator before recommending implementation.
|
|
37
|
+
- Keep the answer scoped, reversible, least-privilege, and explicit about blockers or unknowns.
|
|
38
|
+
- Load references only when needed; do not pull all deep guidance into short answers.
|
|
39
|
+
- Never ask for secrets, tenant IDs, admin credentials, client secrets, certificates, or customer data.
|
|
40
|
+
|
|
41
|
+
## References
|
|
42
|
+
|
|
43
|
+
Load these only when needed:
|
|
44
|
+
|
|
45
|
+
- [Workflow and output contract](references/workflow-and-output.md) — use when executing a full licensing posture review or formatting a cost optimization assessment.
|
|
46
|
+
- [Safety checklist](references/safety-checklist.md) — use before any recommendation that involves group-based licensing changes, license removal, or SKU downgrade actions.
|
|
47
|
+
- [Official sources](references/official-sources.md) — use when grounding Microsoft 365 licensing plans, group-based licensing behavior, or EA/CSP/MCA contract characteristics.
|
|
48
|
+
|
|
49
|
+
## Response minimum
|
|
50
|
+
|
|
51
|
+
Return, at minimum:
|
|
52
|
+
|
|
53
|
+
- the scoped target and evidence level,
|
|
54
|
+
- the licensing control area(s) implicated and the main risks, gaps, or optimization opportunities,
|
|
55
|
+
- the safest next actions,
|
|
56
|
+
- validation or rollback notes where relevant,
|
|
57
|
+
- the assumptions or blockers that prevent stronger conclusions.
|
|
@@ -0,0 +1,30 @@
|
|
|
1
|
+
{
|
|
2
|
+
"id": "m365-licensing-ea-optimization",
|
|
3
|
+
"name": "Microsoft 365 Licensing and EA Optimization",
|
|
4
|
+
"type": "skill",
|
|
5
|
+
"provider": "microsoft",
|
|
6
|
+
"harnesses": [
|
|
7
|
+
"codex",
|
|
8
|
+
"claude-code",
|
|
9
|
+
"cursor",
|
|
10
|
+
"gemini",
|
|
11
|
+
"kiro",
|
|
12
|
+
"other"
|
|
13
|
+
],
|
|
14
|
+
"summary": "Review Microsoft 365 licensing posture and Enterprise Agreement optimization — SKU and plan fit analysis across E3, E5, F-SKUs and add-ons; group-based licensing assignment hygiene; unassigned and over-assigned license detection; true-up planning guidance; and cost-versus-capability analysis for EA, CSP, and MCA contract types. Advisory only; never make purchase commitments or guarantee savings. Group-based-licensing changes in production are live-guard gated.",
|
|
15
|
+
"source_type": "original",
|
|
16
|
+
"official_docs": [
|
|
17
|
+
"https://learn.microsoft.com/microsoft-365/admin/manage/manage-group-licenses",
|
|
18
|
+
"https://learn.microsoft.com/entra/identity/users/licensing-admin-center",
|
|
19
|
+
"https://learn.microsoft.com/microsoft-365/commerce/licenses/manage-volume-licensing",
|
|
20
|
+
"https://learn.microsoft.com/entra/fundamentals/licensing",
|
|
21
|
+
"https://learn.microsoft.com/microsoft-365/enterprise/assign-licenses-to-user-accounts"
|
|
22
|
+
],
|
|
23
|
+
"security_notes": "Advisory only — never make or imply purchase commitments, guarantee specific cost savings, or provide binding contract pricing. Do not conflate SKU capability analysis with procurement advice; escalate contract decisions to the customer's Microsoft account team or licensing specialist. Group-based licensing changes in production tenants are live-guard gated and require explicit human confirmation. Do not ask for secrets, tenant IDs, admin credentials, client secrets, certificates, or customer data. Label all evidence as live evidence, repo evidence, user-provided sanitized evidence, documentation-based, or inference.",
|
|
24
|
+
"last_verified": "2026-06-17",
|
|
25
|
+
"path": "skills/microsoft/m365-licensing-ea-optimization",
|
|
26
|
+
"author": "github: Raishin",
|
|
27
|
+
"version": "0.1.0",
|
|
28
|
+
"category": "cost-management",
|
|
29
|
+
"companion_agents": ["m365-licensing-ea-optimization-agent"]
|
|
30
|
+
}
|
|
@@ -0,0 +1,67 @@
|
|
|
1
|
+
# Official sources
|
|
2
|
+
|
|
3
|
+
Use this reference only when you need source grounding for Microsoft 365 licensing plans, group-based licensing, EA/CSP/MCA contract characteristics, or license assignment hygiene.
|
|
4
|
+
|
|
5
|
+
## Microsoft documentation
|
|
6
|
+
|
|
7
|
+
Use these as starting points, not as proof of the user's live Microsoft 365 license assignment state or contract terms:
|
|
8
|
+
|
|
9
|
+
- https://learn.microsoft.com/microsoft-365/admin/manage/manage-group-licenses
|
|
10
|
+
- https://learn.microsoft.com/entra/identity/users/licensing-admin-center
|
|
11
|
+
- https://learn.microsoft.com/microsoft-365/commerce/licenses/manage-volume-licensing
|
|
12
|
+
- https://learn.microsoft.com/entra/fundamentals/licensing
|
|
13
|
+
- https://learn.microsoft.com/microsoft-365/enterprise/assign-licenses-to-user-accounts
|
|
14
|
+
- https://learn.microsoft.com/microsoft-365/enterprise/view-licenses-and-services-with-microsoft-365-powershell
|
|
15
|
+
- https://learn.microsoft.com/entra/fundamentals/licensing-groups-resolve-problems
|
|
16
|
+
- https://learn.microsoft.com/microsoft-365/commerce/licenses/e3-extra-features-licenses
|
|
17
|
+
- https://learn.microsoft.com/azure/cost-management-billing/microsoft-customer-agreement/onboard-microsoft-customer-agreement
|
|
18
|
+
- https://learn.microsoft.com/entra/identity/users/licensing-group-advanced
|
|
19
|
+
|
|
20
|
+
## Grounding rule
|
|
21
|
+
|
|
22
|
+
Official documentation explains Microsoft 365 licensing plan capabilities and assignment mechanics. It does not prove the user's current license assignment state, actual contract pricing, or renewal terms. Prefer read-only Microsoft 365 admin center evidence, Microsoft Graph license API read output, repository evidence, or sanitized user-provided evidence for current-state claims. Never derive or imply contract pricing from documentation.
|
|
23
|
+
|
|
24
|
+
## Current documentation refresh (2026-06-17)
|
|
25
|
+
|
|
26
|
+
Key service facts from official Microsoft Learn documentation:
|
|
27
|
+
|
|
28
|
+
**Group-based licensing (per learn.microsoft.com/microsoft-365/admin/manage/manage-group-licenses):**
|
|
29
|
+
- Security groups, mail-enabled groups, and Microsoft 365 groups can be used for license assignment
|
|
30
|
+
- Maximum of 20 groups assignable at once in Microsoft 365 admin center; API and PowerShell have no such UI limit
|
|
31
|
+
- Nested groups are not supported — only first-level group members receive licenses
|
|
32
|
+
- Users without a usage location inherit tenant location; always set user location before assignment
|
|
33
|
+
- Move users to new group before removing from old group to prevent temporary service loss
|
|
34
|
+
- License Administrator role is required for group-based licensing in Microsoft 365 admin center; Group Administrators can use API and PowerShell
|
|
35
|
+
- Group-based licensing is available with Microsoft Entra ID P1 or higher (included in E3, E5, F-SKUs, Business Premium)
|
|
36
|
+
|
|
37
|
+
**Microsoft Entra licensing tiers (per learn.microsoft.com/entra/fundamentals/licensing):**
|
|
38
|
+
- Microsoft Entra ID Free: included with Microsoft cloud subscriptions
|
|
39
|
+
- Microsoft Entra ID P1: included in Microsoft 365 E3, F1, F3, Enterprise Mobility + Security E3, Business Premium
|
|
40
|
+
- Microsoft Entra ID P2: included in Microsoft 365 E5, Microsoft Defender Suite, Enterprise Mobility + Security E5 — adds Identity Protection, Privileged Identity Management, and access reviews
|
|
41
|
+
- Microsoft Entra Suite: combines Private Access, Internet Access, ID Governance, ID Protection, Verified ID premium
|
|
42
|
+
|
|
43
|
+
**SKU landscape:**
|
|
44
|
+
- Microsoft 365 E3: Office 365 E3 + Enterprise Mobility + Security E3 + Windows E3 (via EA)
|
|
45
|
+
- Microsoft 365 E5: adds E5 Security, E5 Compliance, E5 Voice — includes Microsoft Entra ID P2, Microsoft Defender suite, Microsoft Purview advanced features
|
|
46
|
+
- Microsoft 365 F1/F3: Firstline Worker plans for shift workers — reduced feature set, lower per-seat cost
|
|
47
|
+
- E3 Extra Features and E5 Extra Features: additional capabilities for EA customers (Avatars for Teams, Windows Autopatch, Customer Lockbox for E5, etc.)
|
|
48
|
+
- Add-ons: Microsoft 365 Copilot, Microsoft Defender for Endpoint, Microsoft Purview add-ons — required when base SKU does not include needed capability
|
|
49
|
+
|
|
50
|
+
**EA, CSP, MCA contract awareness (advisory context only):**
|
|
51
|
+
- Enterprise Agreement (EA): designed for 500+ user organizations, annual true-up cycle, 3-year term, volume discount
|
|
52
|
+
- Cloud Solution Provider (CSP): partner-managed, monthly flexibility, no long-term commitment
|
|
53
|
+
- Microsoft Customer Agreement (MCA): simplified digital agreement, pay-as-you-go, no expiry, automated processing
|
|
54
|
+
- Volume Licensing Service Center (VLSC) retired April 2024; VL management moved to Microsoft 365 admin center
|
|
55
|
+
|
|
56
|
+
**Common failure modes:**
|
|
57
|
+
- Manual per-user license assignment at scale — high operational overhead, error-prone, no automatic de-provisioning
|
|
58
|
+
- Group-based licensing without usage location set — assignment failures for users without location
|
|
59
|
+
- Nested security groups used for license assignment — licenses not inherited by nested members
|
|
60
|
+
- E5 assigned to users who only need E3 capabilities — over-assignment cost without capability utilization
|
|
61
|
+
- Add-on licenses purchased without confirming base SKU includes prerequisite (e.g., Microsoft Entra ID P1 required for some add-ons)
|
|
62
|
+
- EA true-up not tracked — surprise overage costs at annual reconciliation
|
|
63
|
+
|
|
64
|
+
Review implications:
|
|
65
|
+
- Do not recommend removing licenses without confirming the user is inactive or the service is not depended upon — service interruption risk.
|
|
66
|
+
- Never commit to savings estimates without the customer's actual contract pricing data.
|
|
67
|
+
- Documentation cannot prove the user's actual assigned license counts, group membership, or contract terms.
|