bmad-plus 0.7.4 → 0.8.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +450 -407
- package/LICENSE +21 -0
- package/README.md +555 -446
- package/osint-agent-package/README.md +88 -88
- package/osint-agent-package/SETUP_KEYS.md +108 -108
- package/osint-agent-package/agents/osint-investigator.md +80 -80
- package/osint-agent-package/install.ps1 +87 -87
- package/osint-agent-package/install.sh +76 -76
- package/osint-agent-package/skills/bmad-osint-investigate/SKILL.md +147 -147
- package/osint-agent-package/skills/bmad-osint-investigate/osint/SKILL.md +452 -452
- package/osint-agent-package/skills/bmad-osint-investigate/osint/assets/dossier-template.md +116 -116
- package/osint-agent-package/skills/bmad-osint-investigate/osint/references/content-extraction.md +100 -100
- package/osint-agent-package/skills/bmad-osint-investigate/osint/references/enrichment-databases-fr.md +148 -148
- package/osint-agent-package/skills/bmad-osint-investigate/osint/references/platforms.md +130 -130
- package/osint-agent-package/skills/bmad-osint-investigate/osint/references/psychoprofile.md +69 -69
- package/osint-agent-package/skills/bmad-osint-investigate/osint/references/tools.md +281 -281
- package/osint-agent-package/skills/bmad-osint-investigate/osint/scripts/_http.py +101 -101
- package/osint-agent-package/skills/bmad-osint-investigate/osint/scripts/apify.py +266 -260
- package/osint-agent-package/skills/bmad-osint-investigate/osint/scripts/brightdata.py +101 -101
- package/osint-agent-package/skills/bmad-osint-investigate/osint/scripts/diagnose.py +141 -141
- package/osint-agent-package/skills/bmad-osint-investigate/osint/scripts/exa.py +79 -79
- package/osint-agent-package/skills/bmad-osint-investigate/osint/scripts/jina.py +71 -71
- package/osint-agent-package/skills/bmad-osint-investigate/osint/scripts/mcp-client.py +136 -136
- package/osint-agent-package/skills/bmad-osint-investigate/osint/scripts/parallel.py +85 -85
- package/osint-agent-package/skills/bmad-osint-investigate/osint/scripts/perplexity.py +102 -102
- package/osint-agent-package/skills/bmad-osint-investigate/osint/scripts/tavily.py +72 -72
- package/osint-agent-package/skills/bmad-osint-investigate/osint/scripts/volley.py +208 -208
- package/osint-agent-package/skills/bmad-osint-investigator/SKILL.md +15 -15
- package/package.json +62 -57
- package/readme-international/README.de.md +576 -426
- package/readme-international/README.es.md +578 -518
- package/readme-international/README.fr.md +576 -516
- package/src/bmad-plus/agents/agent-architect-dev/SKILL.md +96 -96
- package/src/bmad-plus/agents/agent-architect-dev/bmad-skill-manifest.yaml +13 -13
- package/src/bmad-plus/agents/agent-maker/SKILL.md +201 -201
- package/src/bmad-plus/agents/agent-maker/bmad-skill-manifest.yaml +13 -13
- package/src/bmad-plus/agents/agent-orchestrator/SKILL.md +137 -137
- package/src/bmad-plus/agents/agent-orchestrator/bmad-skill-manifest.yaml +13 -13
- package/src/bmad-plus/agents/agent-quality/SKILL.md +83 -83
- package/src/bmad-plus/agents/agent-quality/bmad-skill-manifest.yaml +13 -13
- package/src/bmad-plus/agents/agent-shadow/SKILL.md +71 -71
- package/src/bmad-plus/agents/agent-shadow/bmad-skill-manifest.yaml +13 -13
- package/src/bmad-plus/agents/agent-strategist/SKILL.md +80 -80
- package/src/bmad-plus/agents/agent-strategist/bmad-skill-manifest.yaml +13 -13
- package/src/bmad-plus/agents/pack-animated/animated-website-agent.md +325 -325
- package/src/bmad-plus/agents/pack-animated/templates/animated-website-workflow.md +55 -55
- package/src/bmad-plus/agents/pack-backup/backup-agent.md +71 -71
- package/src/bmad-plus/agents/pack-backup/templates/backup-workflow.md +51 -51
- package/src/bmad-plus/agents/pack-seo/SKILL.md +171 -171
- package/src/bmad-plus/agents/pack-seo/checklist.md +140 -140
- package/src/bmad-plus/agents/pack-seo/pagespeed-playbook.md +320 -320
- package/src/bmad-plus/agents/pack-seo/ref/audit-schema.json +187 -187
- package/src/bmad-plus/agents/pack-seo/ref/cwv-thresholds.md +87 -87
- package/src/bmad-plus/agents/pack-seo/ref/eeat-criteria.md +123 -123
- package/src/bmad-plus/agents/pack-seo/ref/geo-signals.md +167 -167
- package/src/bmad-plus/agents/pack-seo/ref/hreflang-rules.md +153 -153
- package/src/bmad-plus/agents/pack-seo/ref/quality-gates.md +133 -133
- package/src/bmad-plus/agents/pack-seo/ref/schema-catalog.md +91 -91
- package/src/bmad-plus/agents/pack-seo/ref/schema-templates.json +356 -356
- package/src/bmad-plus/agents/pack-seo/seo-chief.md +294 -294
- package/src/bmad-plus/agents/pack-seo/seo-judge.md +241 -241
- package/src/bmad-plus/agents/pack-seo/seo-scout.md +171 -171
- package/src/bmad-plus/agents/pack-seo/templates/seo-audit-workflow.md +241 -241
- package/src/bmad-plus/data/role-triggers.yaml +209 -209
- package/src/bmad-plus/module-help.csv +10 -10
- package/src/bmad-plus/module.yaml +283 -280
- package/src/bmad-plus/packs/pack-animated/animated-website-agent.md +325 -0
- package/src/bmad-plus/packs/pack-animated/templates/animated-website-workflow.md +55 -0
- package/src/bmad-plus/packs/pack-backup/backup-agent.md +71 -0
- package/src/bmad-plus/packs/pack-backup/templates/backup-workflow.md +51 -0
- package/src/bmad-plus/packs/pack-dev-studio/README.md +162 -162
- package/src/bmad-plus/packs/pack-dev-studio/categories/analysis/analyst-agent.md +73 -73
- package/src/bmad-plus/packs/pack-dev-studio/categories/analysis/document-project.md +61 -61
- package/src/bmad-plus/packs/pack-dev-studio/categories/analysis/domain-research.md +95 -95
- package/src/bmad-plus/packs/pack-dev-studio/categories/analysis/market-research.md +95 -95
- package/src/bmad-plus/packs/pack-dev-studio/categories/analysis/prfaq.md +134 -134
- package/src/bmad-plus/packs/pack-dev-studio/categories/analysis/product-brief.md +80 -80
- package/src/bmad-plus/packs/pack-dev-studio/categories/analysis/tech-writer-agent.md +73 -73
- package/src/bmad-plus/packs/pack-dev-studio/categories/analysis/technical-research.md +95 -95
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/architect-agent.md +73 -73
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/create-architecture.md +73 -73
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/create-epics-stories.md +92 -92
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/generate-project-context.md +80 -80
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/implementation-readiness.md +90 -90
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/steps/step-01-init.md +153 -153
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/steps/step-01b-continue.md +173 -173
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/steps/step-02-context.md +224 -224
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/steps/step-03-starter.md +329 -329
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/steps/step-04-decisions.md +318 -318
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/steps/step-05-patterns.md +359 -359
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/steps/step-06-structure.md +379 -379
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/steps/step-07-validation.md +361 -361
- package/src/bmad-plus/packs/pack-dev-studio/categories/architecture/steps/step-08-complete.md +81 -81
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/checkpoint-preview.md +67 -67
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/code-review-steps/step-01-gather-context.md +85 -85
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/code-review-steps/step-02-review.md +35 -35
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/code-review-steps/step-03-triage.md +49 -49
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/code-review-steps/step-04-present.md +131 -131
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/code-review.md +89 -89
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/correct-course.md +300 -300
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/create-story.md +428 -428
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/dev-agent.md +73 -73
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/dev-story-checklist.md +80 -80
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/dev-story.md +484 -484
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/investigate.md +193 -193
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/qa-e2e-tests.md +175 -175
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/quick-dev.md +110 -110
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/retrospective.md +1511 -1511
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/sprint-planning.md +298 -298
- package/src/bmad-plus/packs/pack-dev-studio/categories/implementation/sprint-status.md +296 -296
- package/src/bmad-plus/packs/pack-dev-studio/categories/planning/create-prd.md +29 -29
- package/src/bmad-plus/packs/pack-dev-studio/categories/planning/create-ux-design.md +74 -74
- package/src/bmad-plus/packs/pack-dev-studio/categories/planning/edit-prd.md +29 -29
- package/src/bmad-plus/packs/pack-dev-studio/categories/planning/pm-agent.md +73 -73
- package/src/bmad-plus/packs/pack-dev-studio/categories/planning/prd.md +89 -89
- package/src/bmad-plus/packs/pack-dev-studio/categories/planning/ux-designer-agent.md +73 -73
- package/src/bmad-plus/packs/pack-dev-studio/categories/planning/validate-prd.md +29 -29
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/advanced-elicitation.md +141 -141
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/adversarial-review.md +37 -37
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/bmad-help.md +75 -75
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/brainstorming.md +6 -6
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/customize.md +110 -110
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/distillator.md +176 -176
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/edge-case-hunter.md +67 -67
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/editorial-review-prose.md +86 -86
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/editorial-review-structure.md +179 -179
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/index-docs.md +66 -66
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/party-mode.md +127 -127
- package/src/bmad-plus/packs/pack-dev-studio/categories/utilities/shard-doc.md +105 -105
- package/src/bmad-plus/packs/pack-dev-studio/dev-studio-orchestrator.md +120 -120
- package/src/bmad-plus/packs/pack-dev-studio/shared/architecture-decision-template.md +12 -12
- package/src/bmad-plus/packs/pack-dev-studio/shared/bwml-spec.md +328 -328
- package/src/bmad-plus/packs/pack-dev-studio/shared/module-help.csv +32 -32
- package/src/bmad-plus/packs/pack-dev-studio/upstream-sync.yaml +81 -81
- package/src/bmad-plus/packs/pack-memory/README.md +106 -106
- package/src/bmad-plus/packs/pack-memory/memory-orchestrator.md +79 -79
- package/src/bmad-plus/packs/pack-memory/shared/karpathy-guardrails.md +86 -86
- package/src/bmad-plus/packs/pack-memory/shared/memory-protocol.md +143 -143
- package/src/bmad-plus/packs/pack-memory/templates/context.md +39 -39
- package/src/bmad-plus/packs/pack-memory/templates/decisions.md +25 -25
- package/src/bmad-plus/packs/pack-memory/templates/identity.yaml +39 -39
- package/src/bmad-plus/packs/pack-memory/templates/lessons.md +31 -31
- package/src/bmad-plus/packs/pack-memory/templates/patterns.md +24 -24
- package/src/bmad-plus/packs/pack-memory/templates/session-handoff.md +25 -25
- package/src/bmad-plus/packs/pack-memory/zecher-agent.md +157 -157
- package/src/bmad-plus/packs/pack-seo/SKILL.md +171 -0
- package/src/bmad-plus/packs/pack-seo/checklist.md +140 -0
- package/src/bmad-plus/packs/pack-seo/pagespeed-playbook.md +320 -0
- package/src/bmad-plus/packs/pack-seo/ref/audit-schema.json +187 -0
- package/src/bmad-plus/packs/pack-seo/ref/cwv-thresholds.md +87 -0
- package/src/bmad-plus/packs/pack-seo/ref/eeat-criteria.md +123 -0
- package/src/bmad-plus/packs/pack-seo/ref/geo-signals.md +167 -0
- package/src/bmad-plus/packs/pack-seo/ref/hreflang-rules.md +153 -0
- package/src/bmad-plus/packs/pack-seo/ref/quality-gates.md +133 -0
- package/src/bmad-plus/packs/pack-seo/ref/schema-catalog.md +91 -0
- package/src/bmad-plus/packs/pack-seo/ref/schema-templates.json +356 -0
- package/src/bmad-plus/packs/pack-seo/seo-chief.md +294 -0
- package/src/bmad-plus/packs/pack-seo/seo-judge.md +241 -0
- package/src/bmad-plus/packs/pack-seo/seo-scout.md +171 -0
- package/src/bmad-plus/packs/pack-seo/templates/seo-audit-workflow.md +241 -0
- package/src/bmad-plus/packs/pack-shield/README.md +110 -110
- package/src/bmad-plus/packs/pack-shield/categories/accessibility-esg/csrd-agent.md +262 -262
- package/src/bmad-plus/packs/pack-shield/categories/accessibility-esg/section508-agent.md +179 -179
- package/src/bmad-plus/packs/pack-shield/categories/accessibility-esg/wcag-agent.md +201 -201
- package/src/bmad-plus/packs/pack-shield/categories/ai-governance/eu-ai-act-agent.md +97 -97
- package/src/bmad-plus/packs/pack-shield/categories/ai-governance/iso42001-agent.md +251 -251
- package/src/bmad-plus/packs/pack-shield/categories/ai-governance/nist-ai-rmf-agent.md +133 -133
- package/src/bmad-plus/packs/pack-shield/categories/cybersecurity/cis-controls-agent.md +221 -221
- package/src/bmad-plus/packs/pack-shield/categories/cybersecurity/ism-agent.md +150 -150
- package/src/bmad-plus/packs/pack-shield/categories/cybersecurity/iso27001-agent.md +167 -167
- package/src/bmad-plus/packs/pack-shield/categories/cybersecurity/nis2-agent.md +83 -83
- package/src/bmad-plus/packs/pack-shield/categories/cybersecurity/nist-800-53-agent.md +250 -250
- package/src/bmad-plus/packs/pack-shield/categories/cybersecurity/nist-csf-agent.md +218 -218
- package/src/bmad-plus/packs/pack-shield/categories/data-privacy/ccpa-agent.md +94 -94
- package/src/bmad-plus/packs/pack-shield/categories/data-privacy/dpdpa-agent.md +136 -136
- package/src/bmad-plus/packs/pack-shield/categories/data-privacy/gdpr-agent.md +296 -296
- package/src/bmad-plus/packs/pack-shield/categories/data-privacy/iso27701-agent.md +134 -134
- package/src/bmad-plus/packs/pack-shield/categories/data-privacy/lgpd-agent.md +129 -129
- package/src/bmad-plus/packs/pack-shield/categories/defense-export/cmmc-agent.md +127 -127
- package/src/bmad-plus/packs/pack-shield/categories/defense-export/ear-agent.md +272 -272
- package/src/bmad-plus/packs/pack-shield/categories/defense-export/itar-agent.md +202 -202
- package/src/bmad-plus/packs/pack-shield/categories/defense-export/tsa-agent.md +367 -367
- package/src/bmad-plus/packs/pack-shield/categories/industry-compliance/dora-agent.md +510 -510
- package/src/bmad-plus/packs/pack-shield/categories/industry-compliance/fedramp-agent.md +247 -247
- package/src/bmad-plus/packs/pack-shield/categories/industry-compliance/hipaa-agent.md +173 -173
- package/src/bmad-plus/packs/pack-shield/categories/industry-compliance/pci-dss-agent.md +239 -239
- package/src/bmad-plus/packs/pack-shield/categories/industry-compliance/soc2-agent.md +266 -266
- package/src/bmad-plus/packs/pack-shield/categories/industry-compliance/swift-csp-agent.md +164 -164
- package/src/bmad-plus/packs/pack-shield/categories/workflows/ai-act-classifier.md +131 -131
- package/src/bmad-plus/packs/pack-shield/categories/workflows/ai-act-fria.md +155 -155
- package/src/bmad-plus/packs/pack-shield/categories/workflows/ai-act-incidents.md +187 -187
- package/src/bmad-plus/packs/pack-shield/categories/workflows/ai-act-roles.md +113 -113
- package/src/bmad-plus/packs/pack-shield/categories/workflows/breach-sentinel.md +197 -197
- package/src/bmad-plus/packs/pack-shield/categories/workflows/cookie-policy-gen.md +180 -180
- package/src/bmad-plus/packs/pack-shield/categories/workflows/dpia-sentinel.md +235 -235
- package/src/bmad-plus/packs/pack-shield/categories/workflows/legitimate-interest.md +159 -159
- package/src/bmad-plus/packs/pack-shield/categories/workflows/privacy-advisor.md +133 -133
- package/src/bmad-plus/packs/pack-shield/categories/workflows/privacy-notice-gen.md +160 -160
- package/src/bmad-plus/packs/pack-shield/categories/workflows/privacy-policy-gen.md +135 -135
- package/src/bmad-plus/packs/pack-shield/references/ccpa/ccpa-gdpr-comparison.md +117 -117
- package/src/bmad-plus/packs/pack-shield/references/ccpa/consumer-rights-workflows.md +177 -177
- package/src/bmad-plus/packs/pack-shield/references/cis-controls/framework-mappings.md +162 -162
- package/src/bmad-plus/packs/pack-shield/references/cis-controls/implementation-guidance.md +235 -235
- package/src/bmad-plus/packs/pack-shield/references/cis-controls/safeguards-detail.md +252 -252
- package/src/bmad-plus/packs/pack-shield/references/cmmc/cmmc-assessment.md +170 -170
- package/src/bmad-plus/packs/pack-shield/references/cmmc/cmmc-levels.md +113 -113
- package/src/bmad-plus/packs/pack-shield/references/cmmc/cmmc-practices.md +211 -211
- package/src/bmad-plus/packs/pack-shield/references/csrd/compliance-program.md +281 -281
- package/src/bmad-plus/packs/pack-shield/references/csrd/double-materiality.md +253 -253
- package/src/bmad-plus/packs/pack-shield/references/csrd/esrs-standards.md +401 -401
- package/src/bmad-plus/packs/pack-shield/references/dora/article-reference.md +441 -441
- package/src/bmad-plus/packs/pack-shield/references/dora/incident-classification.md +297 -297
- package/src/bmad-plus/packs/pack-shield/references/dora/rts-its-guide.md +306 -306
- package/src/bmad-plus/packs/pack-shield/references/dora/third-party-risk.md +349 -349
- package/src/bmad-plus/packs/pack-shield/references/dpdpa/gdpr-comparison.md +173 -173
- package/src/bmad-plus/packs/pack-shield/references/dpdpa/rights-and-obligations.md +426 -426
- package/src/bmad-plus/packs/pack-shield/references/dpdpa/rules-2025.md +599 -599
- package/src/bmad-plus/packs/pack-shield/references/dpdpa/sections-reference.md +319 -319
- package/src/bmad-plus/packs/pack-shield/references/ear/ccl-eccn-guide.md +250 -250
- package/src/bmad-plus/packs/pack-shield/references/ear/compliance-program.md +280 -280
- package/src/bmad-plus/packs/pack-shield/references/ear/license-exceptions.md +207 -207
- package/src/bmad-plus/packs/pack-shield/references/eu-ai-act/gpai-governance.md +267 -267
- package/src/bmad-plus/packs/pack-shield/references/eu-ai-act/obligations-high-risk.md +287 -287
- package/src/bmad-plus/packs/pack-shield/references/eu-ai-act/risk-classification.md +182 -182
- package/src/bmad-plus/packs/pack-shield/references/fedramp/appendices-guide.md +209 -209
- package/src/bmad-plus/packs/pack-shield/references/fedramp/control-families.md +281 -281
- package/src/bmad-plus/packs/pack-shield/references/fedramp/poam-guide.md +93 -93
- package/src/bmad-plus/packs/pack-shield/references/fedramp/readiness-checklist.md +134 -134
- package/src/bmad-plus/packs/pack-shield/references/fedramp/sap-sar-guide.md +86 -86
- package/src/bmad-plus/packs/pack-shield/references/fedramp/ssp-guide.md +129 -129
- package/src/bmad-plus/packs/pack-shield/references/gdpr-compliance/documents.md +192 -192
- package/src/bmad-plus/packs/pack-shield/references/gdpr-compliance/dpa-template.md +121 -121
- package/src/bmad-plus/packs/pack-shield/references/gdpr-compliance/privacy-notice.md +87 -87
- package/src/bmad-plus/packs/pack-shield/references/hipaa-compliance/breach-notification.md +293 -293
- package/src/bmad-plus/packs/pack-shield/references/hipaa-compliance/privacy-rule.md +276 -276
- package/src/bmad-plus/packs/pack-shield/references/hipaa-compliance/security-rule.md +299 -299
- package/src/bmad-plus/packs/pack-shield/references/hipaa-compliance/templates.md +568 -568
- package/src/bmad-plus/packs/pack-shield/references/ism/control-applicability.md +181 -181
- package/src/bmad-plus/packs/pack-shield/references/ism/guidelines-overview.md +183 -183
- package/src/bmad-plus/packs/pack-shield/references/iso27001/annex-a-2013.md +203 -203
- package/src/bmad-plus/packs/pack-shield/references/iso27001/annex-a-2022.md +132 -132
- package/src/bmad-plus/packs/pack-shield/references/iso27001/control-mapping.md +153 -153
- package/src/bmad-plus/packs/pack-shield/references/iso27701/annex-a-controls.md +195 -195
- package/src/bmad-plus/packs/pack-shield/references/iso27701/regulatory-mapping.md +229 -229
- package/src/bmad-plus/packs/pack-shield/references/iso27701/transition-guide.md +219 -219
- package/src/bmad-plus/packs/pack-shield/references/iso42001/iso42001-ai-risk-assessment.md +258 -258
- package/src/bmad-plus/packs/pack-shield/references/iso42001/iso42001-clauses-requirements.md +279 -279
- package/src/bmad-plus/packs/pack-shield/references/iso42001/iso42001-controls-annex-a.md +155 -155
- package/src/bmad-plus/packs/pack-shield/references/itar/compliance-program.md +174 -174
- package/src/bmad-plus/packs/pack-shield/references/itar/licensing-guide.md +146 -146
- package/src/bmad-plus/packs/pack-shield/references/itar/usml-categories.md +93 -93
- package/src/bmad-plus/packs/pack-shield/references/lgpd/anpd-enforcement.md +147 -147
- package/src/bmad-plus/packs/pack-shield/references/lgpd/compliance-program.md +272 -272
- package/src/bmad-plus/packs/pack-shield/references/lgpd/lgpd-articles.md +271 -271
- package/src/bmad-plus/packs/pack-shield/references/nis2/article-21-measures.md +153 -153
- package/src/bmad-plus/packs/pack-shield/references/nis2/iso27001-nis2-mapping.md +68 -68
- package/src/bmad-plus/packs/pack-shield/references/nist-800-53/assessment-rmf.md +349 -349
- package/src/bmad-plus/packs/pack-shield/references/nist-800-53/baselines-tailoring.md +277 -277
- package/src/bmad-plus/packs/pack-shield/references/nist-800-53/control-families.md +450 -450
- package/src/bmad-plus/packs/pack-shield/references/nist-ai-rmf/rmf-core.md +361 -361
- package/src/bmad-plus/packs/pack-shield/references/nist-ai-rmf/rmf-profiles.md +192 -192
- package/src/bmad-plus/packs/pack-shield/references/nist-csf/csf-10-to-20-mapping.md +143 -143
- package/src/bmad-plus/packs/pack-shield/references/nist-csf/csf-20-functions-categories.md +278 -278
- package/src/bmad-plus/packs/pack-shield/references/nist-csf/csf-implementation-tiers.md +135 -135
- package/src/bmad-plus/packs/pack-shield/references/pci-compliance/pci-dss-requirements.md +366 -366
- package/src/bmad-plus/packs/pack-shield/references/pci-compliance/pci-dss-saq-guide.md +217 -217
- package/src/bmad-plus/packs/pack-shield/references/pci-compliance/pci-dss-v4-changes.md +190 -190
- package/src/bmad-plus/packs/pack-shield/references/section-508/wcag-mapping.md +160 -160
- package/src/bmad-plus/packs/pack-shield/references/soc2/controls.md +241 -241
- package/src/bmad-plus/packs/pack-shield/references/soc2/evidence.md +236 -236
- package/src/bmad-plus/packs/pack-shield/references/soc2/policies.md +254 -254
- package/src/bmad-plus/packs/pack-shield/references/soc2/vendor.md +276 -276
- package/src/bmad-plus/packs/pack-shield/references/swift-csp/swift-assessment.md +202 -202
- package/src/bmad-plus/packs/pack-shield/references/swift-csp/swift-controls.md +545 -545
- package/src/bmad-plus/packs/pack-shield/references/tsa-compliance/tsa-crmp-requirements.md +359 -359
- package/src/bmad-plus/packs/pack-shield/references/tsa-compliance/tsa-directives-overview.md +187 -187
- package/src/bmad-plus/packs/pack-shield/references/tsa-compliance/tsa-incident-reporting.md +187 -187
- package/src/bmad-plus/packs/pack-shield/references/wcag/criteria-detail.md +510 -510
- package/src/bmad-plus/packs/pack-shield/shared/audit-report-template.md +103 -103
- package/src/bmad-plus/packs/pack-shield/shared/cross-framework-mapper.md +103 -103
- package/src/bmad-plus/packs/pack-shield/shared/gap-analysis-template.md +83 -83
- package/src/bmad-plus/packs/pack-shield/shield-orchestrator.md +229 -229
- package/src/bmad-plus/packs/pack-shield/upstream-sync.yaml +68 -68
- package/src/bmad-plus/skills/bmad-plus-autopilot/SKILL.md +99 -99
- package/src/bmad-plus/skills/bmad-plus-parallel/SKILL.md +93 -93
- package/src/bmad-plus/skills/bmad-plus-sync/SKILL.md +69 -69
- package/tools/cli/commands/autoconfig.js +498 -489
- package/tools/cli/commands/doctor.js +222 -175
- package/tools/cli/commands/install.js +739 -739
- package/tools/cli/commands/memory.js +194 -194
- package/tools/cli/commands/scan.js +360 -350
- package/tools/cli/commands/uninstall.js +96 -96
- package/tools/cli/commands/update.js +174 -174
- package/tools/cli/i18n.js +763 -763
|
@@ -0,0 +1,241 @@
|
|
|
1
|
+
# SEO Audit Workflow — BMAD+ SEO Engine v2.0
|
|
2
|
+
|
|
3
|
+
> Author: Laurent Rochetta | By Oveanet × Laurent Rochetta
|
|
4
|
+
|
|
5
|
+
## Overview
|
|
6
|
+
|
|
7
|
+
This workflow orchestrates the 3 SEO Engine agents (Scout, Judge, Chief) through 6 phases to produce a comprehensive audit with scored results and actionable fixes.
|
|
8
|
+
|
|
9
|
+
---
|
|
10
|
+
|
|
11
|
+
## Phase 1 — Reconnaissance (Scout solo)
|
|
12
|
+
|
|
13
|
+
**Duration**: ~2 min | **Agent**: Scout (Crawler role)
|
|
14
|
+
|
|
15
|
+
1. Fetch homepage + `/robots.txt` + `/sitemap.xml`
|
|
16
|
+
2. Detect business type (SaaS, e-commerce, local, publisher, agency)
|
|
17
|
+
3. Mini-crawl: discover 10–25 pages via sitemap + internal links
|
|
18
|
+
4. Detect rendering architecture (SSR / CSR / hybrid)
|
|
19
|
+
5. Check for `/llms.txt` and `/llms-full.txt`
|
|
20
|
+
|
|
21
|
+
**Checkpoint**: "Identified a [type] site with [N] pages. Continue full audit?"
|
|
22
|
+
|
|
23
|
+
**Tools**:
|
|
24
|
+
```bash
|
|
25
|
+
python scripts/seo_fetch.py [URL] --json
|
|
26
|
+
python scripts/seo_crawl.py [URL] --depth 2 --max 25 --json
|
|
27
|
+
```
|
|
28
|
+
|
|
29
|
+
---
|
|
30
|
+
|
|
31
|
+
## Phase 2 — Deep Scan (Scout + Judge in PARALLEL)
|
|
32
|
+
|
|
33
|
+
**Duration**: ~5 min | **Agents**: Scout (Inspector) + Judge (Content Expert + Schema Master)
|
|
34
|
+
|
|
35
|
+
### Scout inspects (9 categories):
|
|
36
|
+
1. Crawlability (robots.txt, noindex, crawl depth)
|
|
37
|
+
2. Indexability (canonicals, duplicates, pagination)
|
|
38
|
+
3. Security (HTTPS, HSTS, CSP, X-Frame-Options)
|
|
39
|
+
4. URL Structure (clean URLs, redirects, trailing slashes)
|
|
40
|
+
5. Mobile (viewport, touch targets, font size)
|
|
41
|
+
6. Core Web Vitals signals from source HTML
|
|
42
|
+
7. Structured Data detection (pass to Judge)
|
|
43
|
+
8. JavaScript rendering (CSR/SSR, SPA detection)
|
|
44
|
+
9. IndexNow protocol
|
|
45
|
+
|
|
46
|
+
### Judge analyzes (in parallel):
|
|
47
|
+
1. E-E-A-T evaluation (Experience, Expertise, Authority, Trust)
|
|
48
|
+
2. Content quality (word count, readability, keyword optimization)
|
|
49
|
+
3. Schema validation (JSON-LD, types, deprecation status)
|
|
50
|
+
4. Image audit (alt text, dimensions, format, lazy loading)
|
|
51
|
+
5. Internal/external link analysis
|
|
52
|
+
6. AI content detection markers
|
|
53
|
+
|
|
54
|
+
**Tools**:
|
|
55
|
+
```bash
|
|
56
|
+
python scripts/seo_parse.py page.html --url [URL] --json
|
|
57
|
+
python scripts/seo_screenshot.py [URL] --viewport mobile --json
|
|
58
|
+
python scripts/seo_screenshot.py [URL] --viewport desktop --json
|
|
59
|
+
```
|
|
60
|
+
|
|
61
|
+
---
|
|
62
|
+
|
|
63
|
+
## Phase 3 — AI Readiness & GEO (Judge solo)
|
|
64
|
+
|
|
65
|
+
**Duration**: ~3 min | **Agent**: Judge (GEO Analyst role)
|
|
66
|
+
|
|
67
|
+
1. Check AI crawler access (GPTBot, ClaudeBot, PerplexityBot, OAI-SearchBot)
|
|
68
|
+
2. Verify llms.txt compliance
|
|
69
|
+
3. Check RSL 1.0 licensing
|
|
70
|
+
4. Score passage-level citability (134–167 word blocks)
|
|
71
|
+
5. Analyze brand mention signals
|
|
72
|
+
6. Compute **AI Readiness Score (0–100)**
|
|
73
|
+
|
|
74
|
+
Reference: `ref/geo-signals.md`
|
|
75
|
+
|
|
76
|
+
---
|
|
77
|
+
|
|
78
|
+
## Phase 4 — Scoring & Synthesis (Chief solo)
|
|
79
|
+
|
|
80
|
+
**Duration**: ~2 min | **Agent**: Chief (Scorer role)
|
|
81
|
+
|
|
82
|
+
Compute **SEO Health Score (0–100)** from weighted categories:
|
|
83
|
+
|
|
84
|
+
| Category | Weight |
|
|
85
|
+
|----------|--------|
|
|
86
|
+
| Technical SEO | 20% |
|
|
87
|
+
| Content & E-E-A-T | 22% |
|
|
88
|
+
| On-Page SEO | 18% |
|
|
89
|
+
| Schema | 10% |
|
|
90
|
+
| Performance (CWV) | 12% |
|
|
91
|
+
| AI Readiness (GEO) | 12% |
|
|
92
|
+
| Images | 6% |
|
|
93
|
+
|
|
94
|
+
Output: Score breakdown with visual indicators per category.
|
|
95
|
+
|
|
96
|
+
---
|
|
97
|
+
|
|
98
|
+
## Phase 5 — Action Plan & Auto-Fixes (Chief solo)
|
|
99
|
+
|
|
100
|
+
**Duration**: ~3 min | **Agent**: Chief (Strategist role)
|
|
101
|
+
|
|
102
|
+
1. Classify all issues: 🔴 Critical → 🟠 High → 🟡 Medium → 🟢 Low
|
|
103
|
+
2. Identify Quick Wins (high impact / low effort)
|
|
104
|
+
3. Generate 30/60/90-day roadmap
|
|
105
|
+
4. **Auto-generate code fixes** for:
|
|
106
|
+
- Missing/broken meta tags (title, description)
|
|
107
|
+
- Schema JSON-LD blocks (from templates)
|
|
108
|
+
- robots.txt improvements (AI crawler access)
|
|
109
|
+
- llms.txt file generation
|
|
110
|
+
- Image alt text suggestions
|
|
111
|
+
5. **Checkpoint**: "Here's the plan. Want me to apply the fixes automatically?"
|
|
112
|
+
|
|
113
|
+
---
|
|
114
|
+
|
|
115
|
+
## Phase 5b — PageSpeed Perfection Loop (Scout + Chief iterative)
|
|
116
|
+
|
|
117
|
+
> **This is the battle-tested loop from our oveanet.ch optimization.**
|
|
118
|
+
> Goal: Achieve **100% on all 4 PageSpeed Insights categories** (Performance, Accessibility, Best Practices, SEO).
|
|
119
|
+
|
|
120
|
+
### The Loop
|
|
121
|
+
|
|
122
|
+
```
|
|
123
|
+
┌─────────────────────────────────────┐
|
|
124
|
+
│ 1. Run PageSpeed Insights audit │
|
|
125
|
+
│ (via API or manual) │
|
|
126
|
+
│ │ │
|
|
127
|
+
│ ▼ │
|
|
128
|
+
│ 2. Parse failing audits │
|
|
129
|
+
│ Group by category + priority │
|
|
130
|
+
│ │ │
|
|
131
|
+
│ ▼ │
|
|
132
|
+
│ 3. Apply top-priority fix │
|
|
133
|
+
│ (one fix at a time) │
|
|
134
|
+
│ │ │
|
|
135
|
+
│ ▼ │
|
|
136
|
+
│ 4. Re-run PageSpeed │
|
|
137
|
+
│ Verify fix + no regressions │
|
|
138
|
+
│ │ │
|
|
139
|
+
│ ▼ │
|
|
140
|
+
│ 5. Score improved? │
|
|
141
|
+
│ YES → Continue to next fix │
|
|
142
|
+
│ NO → Revert and try different │
|
|
143
|
+
│ approach │
|
|
144
|
+
│ │ │
|
|
145
|
+
│ ▼ │
|
|
146
|
+
│ 6. All 4 categories = 100%? │
|
|
147
|
+
│ YES → Done ✅ │
|
|
148
|
+
│ NO → Go to step 2 │
|
|
149
|
+
└─────────────────────────────────────┘
|
|
150
|
+
```
|
|
151
|
+
|
|
152
|
+
### PageSpeed Fix Priority Order
|
|
153
|
+
1. **Performance** (hardest — tackle first):
|
|
154
|
+
- Eliminate render-blocking resources
|
|
155
|
+
- Properly size images (WebP/AVIF + responsive)
|
|
156
|
+
- Reduce unused CSS/JS
|
|
157
|
+
- Defer offscreen images
|
|
158
|
+
- Minimize main-thread work
|
|
159
|
+
- Reduce server response time (TTFB)
|
|
160
|
+
- Preload LCP image
|
|
161
|
+
|
|
162
|
+
2. **Accessibility** (usually quick wins):
|
|
163
|
+
- Add alt text to all images
|
|
164
|
+
- Fix color contrast ratios (4.5:1 minimum)
|
|
165
|
+
- Add ARIA labels to interactive elements
|
|
166
|
+
- Ensure heading hierarchy
|
|
167
|
+
- Add lang attribute to HTML
|
|
168
|
+
- Ensure form labels
|
|
169
|
+
|
|
170
|
+
3. **Best Practices**:
|
|
171
|
+
- HTTPS + no mixed content
|
|
172
|
+
- No browser errors in console
|
|
173
|
+
- Remove deprecated APIs
|
|
174
|
+
- Add proper CSP headers
|
|
175
|
+
|
|
176
|
+
4. **SEO** (usually easiest):
|
|
177
|
+
- Add meta description
|
|
178
|
+
- Ensure crawlable links
|
|
179
|
+
- Valid robots.txt
|
|
180
|
+
- Proper viewport meta
|
|
181
|
+
- Descriptive link text
|
|
182
|
+
|
|
183
|
+
### Key Rules
|
|
184
|
+
- **One fix at a time** — never batch multiple changes, you need to isolate impact
|
|
185
|
+
- **Always re-test** — PageSpeed scores can regress with seemingly unrelated changes
|
|
186
|
+
- **Mobile first** — always test mobile viewport (Google uses mobile for indexing)
|
|
187
|
+
- **Field vs Lab** — Lab scores (Lighthouse) can differ from field data (CrUX). Target lab 100% first
|
|
188
|
+
|
|
189
|
+
---
|
|
190
|
+
|
|
191
|
+
## Phase 6 — Monitoring (Scout, optional)
|
|
192
|
+
|
|
193
|
+
**Duration**: ongoing | **Agent**: Scout (Crawler role)
|
|
194
|
+
|
|
195
|
+
1. Save audit results to `.bmad-seo/history/[domain]-[date].json`
|
|
196
|
+
2. On re-audit: compare with previous results
|
|
197
|
+
3. Track: issues resolved, new issues, score evolution
|
|
198
|
+
4. Generate progress report with deltas
|
|
199
|
+
|
|
200
|
+
---
|
|
201
|
+
|
|
202
|
+
## Command Quick Reference
|
|
203
|
+
|
|
204
|
+
```bash
|
|
205
|
+
# Full audit (all 6 phases)
|
|
206
|
+
/seo full https://example.com
|
|
207
|
+
|
|
208
|
+
# Quick audit (Phases 1-4 only)
|
|
209
|
+
/seo quick https://example.com
|
|
210
|
+
|
|
211
|
+
# Individual commands
|
|
212
|
+
/seo technical https://example.com
|
|
213
|
+
/seo content https://example.com
|
|
214
|
+
/seo geo https://example.com
|
|
215
|
+
/seo schema https://example.com
|
|
216
|
+
/seo images https://example.com
|
|
217
|
+
/seo hreflang https://example.com
|
|
218
|
+
|
|
219
|
+
# PageSpeed perfection loop
|
|
220
|
+
/seo pagespeed https://example.com
|
|
221
|
+
|
|
222
|
+
# Strategic planning
|
|
223
|
+
/seo plan saas|ecommerce|local|publisher|agency
|
|
224
|
+
|
|
225
|
+
# Auto-fix generation
|
|
226
|
+
/seo fix
|
|
227
|
+
|
|
228
|
+
# Monitoring
|
|
229
|
+
/seo history
|
|
230
|
+
/seo compare
|
|
231
|
+
```
|
|
232
|
+
|
|
233
|
+
---
|
|
234
|
+
|
|
235
|
+
## Tips for Best Results
|
|
236
|
+
|
|
237
|
+
1. **Start with `/seo full`** for the first audit — it gives you the complete picture
|
|
238
|
+
2. **Use `/seo pagespeed`** after fixing major issues to chase 100% scores
|
|
239
|
+
3. **Re-run monthly** with `/seo compare` to track progress
|
|
240
|
+
4. **Feed the AI crawlers**: Allow GPTBot + ClaudeBot + PerplexityBot in robots.txt
|
|
241
|
+
5. **Check GEO separately**: AI search visibility evolves fast, audit quarterly with `/seo geo`
|
|
@@ -1,110 +1,110 @@
|
|
|
1
|
-
# 🛡️ Pack Shield — GRC Compliance Agents
|
|
2
|
-
|
|
3
|
-
> **38 expert compliance agents** + 1 orchestrator covering Data Privacy, Cybersecurity, Industry Compliance, Defense & Export, AI Governance, Accessibility & ESG, and GDPR/AI Act Workflows.
|
|
4
|
-
|
|
5
|
-
## Overview
|
|
6
|
-
|
|
7
|
-
Pack Shield transforms BMAD+ into a comprehensive GRC (Governance, Risk & Compliance) assistant. Each agent is an expert system prompt for a specific regulatory framework, providing structured compliance guidance including gap analysis, policy drafting, control mapping, and audit support.
|
|
8
|
-
|
|
9
|
-
**Key Features:**
|
|
10
|
-
- 🧠 **Shield Orchestrator** — Intelligent routing to the right compliance agent
|
|
11
|
-
- 🔄 **Cross-Framework Mapping** — Identify control overlaps between frameworks
|
|
12
|
-
- 📊 **Standardized Templates** — Gap analysis and audit reports
|
|
13
|
-
- 🌍 **Multi-LLM Compatible** — Standard `.md` format works with any LLM
|
|
14
|
-
- 📦 **Modular Installation** — Install by category or individual agent
|
|
15
|
-
- 📁 **85 Reference Files** — Deep regulatory knowledge from upstream sources
|
|
16
|
-
|
|
17
|
-
## Categories
|
|
18
|
-
|
|
19
|
-
### 🔐 Data Privacy (5 agents)
|
|
20
|
-
| Agent | Framework | Jurisdiction |
|
|
21
|
-
|-------|-----------|-------------|
|
|
22
|
-
| `gdpr-agent` | GDPR (EU) 2016/679 | EU/EEA/UK |
|
|
23
|
-
| `ccpa-agent` | CCPA / CPRA | California |
|
|
24
|
-
| `lgpd-agent` | LGPD | Brazil |
|
|
25
|
-
| `dpdpa-agent` | DPDPA 2023 | India |
|
|
26
|
-
| `iso27701-agent` | ISO 27701 PIMS | International |
|
|
27
|
-
|
|
28
|
-
### 🛡️ Cybersecurity (6 agents)
|
|
29
|
-
| Agent | Framework | Jurisdiction |
|
|
30
|
-
|-------|-----------|-------------|
|
|
31
|
-
| `iso27001-agent` | ISO 27001:2022 | International |
|
|
32
|
-
| `nist-csf-agent` | NIST CSF 2.0 | US/Global |
|
|
33
|
-
| `nist-800-53-agent` | NIST 800-53 Rev. 5 | US Federal |
|
|
34
|
-
| `cis-controls-agent` | CIS Controls v8 | International |
|
|
35
|
-
| `nis2-agent` | NIS2 Directive | EU |
|
|
36
|
-
| `ism-agent` | ISM | Australia |
|
|
37
|
-
|
|
38
|
-
### 🏢 Industry Compliance (6 agents)
|
|
39
|
-
| Agent | Framework | Jurisdiction |
|
|
40
|
-
|-------|-----------|-------------|
|
|
41
|
-
| `soc2-agent` | SOC 2 Type I/II | US/Global |
|
|
42
|
-
| `pci-dss-agent` | PCI DSS v4.0 | International |
|
|
43
|
-
| `hipaa-agent` | HIPAA | US Healthcare |
|
|
44
|
-
| `swift-csp-agent` | SWIFT CSP | Intl. Banking |
|
|
45
|
-
| `dora-agent` | DORA | EU Financial |
|
|
46
|
-
| `fedramp-agent` | FedRAMP | US Federal |
|
|
47
|
-
|
|
48
|
-
### 🔒 Defense & Export (4 agents)
|
|
49
|
-
| Agent | Framework | Jurisdiction |
|
|
50
|
-
|-------|-----------|-------------|
|
|
51
|
-
| `cmmc-agent` | CMMC 2.0 | US Defense |
|
|
52
|
-
| `itar-agent` | ITAR | US Arms Export |
|
|
53
|
-
| `ear-agent` | EAR | US Commerce |
|
|
54
|
-
| `tsa-agent` | TSA Directives | US Transport |
|
|
55
|
-
|
|
56
|
-
### 🤖 AI Governance (3 agents)
|
|
57
|
-
| Agent | Framework | Jurisdiction |
|
|
58
|
-
|-------|-----------|-------------|
|
|
59
|
-
| `eu-ai-act-agent` | EU AI Act 2024/1689 | EU |
|
|
60
|
-
| `iso42001-agent` | ISO 42001:2023 | International |
|
|
61
|
-
| `nist-ai-rmf-agent` | NIST AI RMF 1.0 | US/Global |
|
|
62
|
-
|
|
63
|
-
### ♿ Accessibility & ESG (3 agents)
|
|
64
|
-
| Agent | Framework | Jurisdiction |
|
|
65
|
-
|-------|-----------|-------------|
|
|
66
|
-
| `wcag-agent` | WCAG 2.2 | International |
|
|
67
|
-
| `section508-agent` | Section 508 | US Federal |
|
|
68
|
-
| `csrd-agent` | CSRD | EU |
|
|
69
|
-
|
|
70
|
-
### 📋 GDPR & AI Act Workflows (11 agents)
|
|
71
|
-
| Agent | Workflow | Focus |
|
|
72
|
-
|-------|---------|-------|
|
|
73
|
-
| `dpia-sentinel` | DPIA Impact Assessment | Art. 35 GDPR — AI-specific considerations |
|
|
74
|
-
| `breach-sentinel` | Breach 72h Response | Art. 33/34 — Severity classification, notifications |
|
|
75
|
-
| `legitimate-interest` | LIA Three-Part Test | Art. 6(1)(f) — Purpose, necessity, balancing |
|
|
76
|
-
| `privacy-advisor` | Program Assessment | Overall GDPR posture evaluation |
|
|
77
|
-
| `privacy-notice-gen` | Privacy Notice Generator | Art. 13/14 mandatory elements |
|
|
78
|
-
| `privacy-policy-gen` | Privacy Policy Generator | Full site/app policies |
|
|
79
|
-
| `cookie-policy-gen` | Cookie Policy Generator | ePrivacy + GDPR, CNIL guidance |
|
|
80
|
-
| `ai-act-classifier` | AI System Classifier | Risk classification (forbidden/high/limited/minimal) |
|
|
81
|
-
| `ai-act-roles` | Role Determination | Provider/deployer/importer obligations mapping |
|
|
82
|
-
| `ai-act-fria` | FRIA Assessment | Art. 27 — Fundamental Rights Impact |
|
|
83
|
-
| `ai-act-incidents` | Incident Reporting | Art. 73 — Serious incident workflow |
|
|
84
|
-
|
|
85
|
-
## Shared Resources
|
|
86
|
-
- `shared/cross-framework-mapper.md` — Control mapping between frameworks
|
|
87
|
-
- `shared/gap-analysis-template.md` — Standardized gap analysis format
|
|
88
|
-
- `shared/audit-report-template.md` — Compliance audit report format
|
|
89
|
-
|
|
90
|
-
## Reference Files
|
|
91
|
-
- `references/` — 85 regulatory reference files extracted from upstream skills
|
|
92
|
-
- Organized by framework (gdpr-compliance, iso27001, soc2, etc.)
|
|
93
|
-
- Contains templates, control mappings, article references, and compliance programs
|
|
94
|
-
|
|
95
|
-
## Attribution
|
|
96
|
-
|
|
97
|
-
Based on [Claude Skills for GRC](https://github.com/Sushegaad/Claude-Skills-Governance-Risk-and-Compliance) by Hemant Naik — MIT License.
|
|
98
|
-
|
|
99
|
-
GDPR and EU AI Act workflow agents enriched with architectural insights from [Lawve.ai](https://lawve.ai) professional skills catalog.
|
|
100
|
-
|
|
101
|
-
Adapted for BMAD+ by [Laurent Rochetta](https://github.com/lrochetta/BMAD-PLUS).
|
|
102
|
-
|
|
103
|
-
## Upstream Sync
|
|
104
|
-
|
|
105
|
-
See `upstream-sync.yaml` for the complete skill-to-agent mapping and sync configuration.
|
|
106
|
-
|
|
107
|
-
```bash
|
|
108
|
-
# Future: check for upstream updates
|
|
109
|
-
npx bmad-plus shield:sync
|
|
110
|
-
```
|
|
1
|
+
# 🛡️ Pack Shield — GRC Compliance Agents
|
|
2
|
+
|
|
3
|
+
> **38 expert compliance agents** + 1 orchestrator covering Data Privacy, Cybersecurity, Industry Compliance, Defense & Export, AI Governance, Accessibility & ESG, and GDPR/AI Act Workflows.
|
|
4
|
+
|
|
5
|
+
## Overview
|
|
6
|
+
|
|
7
|
+
Pack Shield transforms BMAD+ into a comprehensive GRC (Governance, Risk & Compliance) assistant. Each agent is an expert system prompt for a specific regulatory framework, providing structured compliance guidance including gap analysis, policy drafting, control mapping, and audit support.
|
|
8
|
+
|
|
9
|
+
**Key Features:**
|
|
10
|
+
- 🧠 **Shield Orchestrator** — Intelligent routing to the right compliance agent
|
|
11
|
+
- 🔄 **Cross-Framework Mapping** — Identify control overlaps between frameworks
|
|
12
|
+
- 📊 **Standardized Templates** — Gap analysis and audit reports
|
|
13
|
+
- 🌍 **Multi-LLM Compatible** — Standard `.md` format works with any LLM
|
|
14
|
+
- 📦 **Modular Installation** — Install by category or individual agent
|
|
15
|
+
- 📁 **85 Reference Files** — Deep regulatory knowledge from upstream sources
|
|
16
|
+
|
|
17
|
+
## Categories
|
|
18
|
+
|
|
19
|
+
### 🔐 Data Privacy (5 agents)
|
|
20
|
+
| Agent | Framework | Jurisdiction |
|
|
21
|
+
|-------|-----------|-------------|
|
|
22
|
+
| `gdpr-agent` | GDPR (EU) 2016/679 | EU/EEA/UK |
|
|
23
|
+
| `ccpa-agent` | CCPA / CPRA | California |
|
|
24
|
+
| `lgpd-agent` | LGPD | Brazil |
|
|
25
|
+
| `dpdpa-agent` | DPDPA 2023 | India |
|
|
26
|
+
| `iso27701-agent` | ISO 27701 PIMS | International |
|
|
27
|
+
|
|
28
|
+
### 🛡️ Cybersecurity (6 agents)
|
|
29
|
+
| Agent | Framework | Jurisdiction |
|
|
30
|
+
|-------|-----------|-------------|
|
|
31
|
+
| `iso27001-agent` | ISO 27001:2022 | International |
|
|
32
|
+
| `nist-csf-agent` | NIST CSF 2.0 | US/Global |
|
|
33
|
+
| `nist-800-53-agent` | NIST 800-53 Rev. 5 | US Federal |
|
|
34
|
+
| `cis-controls-agent` | CIS Controls v8 | International |
|
|
35
|
+
| `nis2-agent` | NIS2 Directive | EU |
|
|
36
|
+
| `ism-agent` | ISM | Australia |
|
|
37
|
+
|
|
38
|
+
### 🏢 Industry Compliance (6 agents)
|
|
39
|
+
| Agent | Framework | Jurisdiction |
|
|
40
|
+
|-------|-----------|-------------|
|
|
41
|
+
| `soc2-agent` | SOC 2 Type I/II | US/Global |
|
|
42
|
+
| `pci-dss-agent` | PCI DSS v4.0 | International |
|
|
43
|
+
| `hipaa-agent` | HIPAA | US Healthcare |
|
|
44
|
+
| `swift-csp-agent` | SWIFT CSP | Intl. Banking |
|
|
45
|
+
| `dora-agent` | DORA | EU Financial |
|
|
46
|
+
| `fedramp-agent` | FedRAMP | US Federal |
|
|
47
|
+
|
|
48
|
+
### 🔒 Defense & Export (4 agents)
|
|
49
|
+
| Agent | Framework | Jurisdiction |
|
|
50
|
+
|-------|-----------|-------------|
|
|
51
|
+
| `cmmc-agent` | CMMC 2.0 | US Defense |
|
|
52
|
+
| `itar-agent` | ITAR | US Arms Export |
|
|
53
|
+
| `ear-agent` | EAR | US Commerce |
|
|
54
|
+
| `tsa-agent` | TSA Directives | US Transport |
|
|
55
|
+
|
|
56
|
+
### 🤖 AI Governance (3 agents)
|
|
57
|
+
| Agent | Framework | Jurisdiction |
|
|
58
|
+
|-------|-----------|-------------|
|
|
59
|
+
| `eu-ai-act-agent` | EU AI Act 2024/1689 | EU |
|
|
60
|
+
| `iso42001-agent` | ISO 42001:2023 | International |
|
|
61
|
+
| `nist-ai-rmf-agent` | NIST AI RMF 1.0 | US/Global |
|
|
62
|
+
|
|
63
|
+
### ♿ Accessibility & ESG (3 agents)
|
|
64
|
+
| Agent | Framework | Jurisdiction |
|
|
65
|
+
|-------|-----------|-------------|
|
|
66
|
+
| `wcag-agent` | WCAG 2.2 | International |
|
|
67
|
+
| `section508-agent` | Section 508 | US Federal |
|
|
68
|
+
| `csrd-agent` | CSRD | EU |
|
|
69
|
+
|
|
70
|
+
### 📋 GDPR & AI Act Workflows (11 agents)
|
|
71
|
+
| Agent | Workflow | Focus |
|
|
72
|
+
|-------|---------|-------|
|
|
73
|
+
| `dpia-sentinel` | DPIA Impact Assessment | Art. 35 GDPR — AI-specific considerations |
|
|
74
|
+
| `breach-sentinel` | Breach 72h Response | Art. 33/34 — Severity classification, notifications |
|
|
75
|
+
| `legitimate-interest` | LIA Three-Part Test | Art. 6(1)(f) — Purpose, necessity, balancing |
|
|
76
|
+
| `privacy-advisor` | Program Assessment | Overall GDPR posture evaluation |
|
|
77
|
+
| `privacy-notice-gen` | Privacy Notice Generator | Art. 13/14 mandatory elements |
|
|
78
|
+
| `privacy-policy-gen` | Privacy Policy Generator | Full site/app policies |
|
|
79
|
+
| `cookie-policy-gen` | Cookie Policy Generator | ePrivacy + GDPR, CNIL guidance |
|
|
80
|
+
| `ai-act-classifier` | AI System Classifier | Risk classification (forbidden/high/limited/minimal) |
|
|
81
|
+
| `ai-act-roles` | Role Determination | Provider/deployer/importer obligations mapping |
|
|
82
|
+
| `ai-act-fria` | FRIA Assessment | Art. 27 — Fundamental Rights Impact |
|
|
83
|
+
| `ai-act-incidents` | Incident Reporting | Art. 73 — Serious incident workflow |
|
|
84
|
+
|
|
85
|
+
## Shared Resources
|
|
86
|
+
- `shared/cross-framework-mapper.md` — Control mapping between frameworks
|
|
87
|
+
- `shared/gap-analysis-template.md` — Standardized gap analysis format
|
|
88
|
+
- `shared/audit-report-template.md` — Compliance audit report format
|
|
89
|
+
|
|
90
|
+
## Reference Files
|
|
91
|
+
- `references/` — 85 regulatory reference files extracted from upstream skills
|
|
92
|
+
- Organized by framework (gdpr-compliance, iso27001, soc2, etc.)
|
|
93
|
+
- Contains templates, control mappings, article references, and compliance programs
|
|
94
|
+
|
|
95
|
+
## Attribution
|
|
96
|
+
|
|
97
|
+
Based on [Claude Skills for GRC](https://github.com/Sushegaad/Claude-Skills-Governance-Risk-and-Compliance) by Hemant Naik — MIT License.
|
|
98
|
+
|
|
99
|
+
GDPR and EU AI Act workflow agents enriched with architectural insights from [Lawve.ai](https://lawve.ai) professional skills catalog.
|
|
100
|
+
|
|
101
|
+
Adapted for BMAD+ by [Laurent Rochetta](https://github.com/lrochetta/BMAD-PLUS).
|
|
102
|
+
|
|
103
|
+
## Upstream Sync
|
|
104
|
+
|
|
105
|
+
See `upstream-sync.yaml` for the complete skill-to-agent mapping and sync configuration.
|
|
106
|
+
|
|
107
|
+
```bash
|
|
108
|
+
# Future: check for upstream updates
|
|
109
|
+
npx bmad-plus shield:sync
|
|
110
|
+
```
|