tech-hub-skills 1.2.0 → 1.5.2

package/{tech_hub_skills/skills → .claude/commands}/enterprise-dashboard.md

@@ -1,613 +1,613 @@
-# Enterprise Dashboard & Monitoring
-
-Centralized visibility into security, compliance, governance, and operational metrics for enterprise applications.
-
-## Role Overview
-
-**Agent**: Enterprise Dashboard Specialist
-**Focus**: Real-time monitoring, alerting, dashboards, and operational visibility
-**Integration**: Aggregates data from all enterprise skills
-
-## When to Use
-
-Invoke this role when you need to:
-- Create unified dashboards for enterprise metrics
-- Set up alerting for security and compliance events
-- Monitor SLOs across the platform
-- Track governance and audit metrics
-- Visualize data lineage and access patterns
-
-## Dashboard Components
-
-### 1. Security Dashboard
-
-```yaml
-# security-dashboard.yml
-panels:
-  - title: "Security Posture Score"
-    type: gauge
-    metrics:
-      - vulnerability_count
-      - compliance_score
-      - incident_count
-    thresholds:
-      critical: 60
-      warning: 80
-      healthy: 95
-
-  - title: "Active Vulnerabilities"
-    type: stat
-    breakdown:
-      - critical
-      - high
-      - medium
-      - low
-
-  - title: "Security Events (24h)"
-    type: timeseries
-    metrics:
-      - authentication_failures
-      - authorization_denials
-      - suspicious_activities
-
-  - title: "Secrets Exposure"
-    type: stat
-    metrics:
-      - exposed_secrets_count
-      - secrets_rotation_due
-
-  - title: "Container Security"
-    type: table
-    columns:
-      - image_name
-      - vulnerability_count
-      - last_scanned
-```
-
-### 2. Compliance Dashboard
-
-```yaml
-# compliance-dashboard.yml
-panels:
-  - title: "Compliance Score by Framework"
-    type: barchart
-    frameworks:
-      - SOC2
-      - GDPR
-      - HIPAA
-      - PCI-DSS
-
-  - title: "Control Status"
-    type: piechart
-    statuses:
-      - passed
-      - failed
-      - warning
-      - not_applicable
-
-  - title: "Audit Trail Activity"
-    type: timeseries
-    metrics:
-      - audit_events_per_hour
-      - compliance_checks_run
-
-  - title: "Open Findings"
-    type: table
-    columns:
-      - finding_id
-      - severity
-      - framework
-      - age_days
-      - owner
-
-  - title: "Evidence Collection"
-    type: stat
-    metrics:
-      - evidence_artifacts_count
-      - last_evidence_generated
-```
-
-### 3. Data Governance Dashboard
-
-```yaml
-# governance-dashboard.yml
-panels:
-  - title: "Data Catalog Coverage"
-    type: gauge
-    target: 100%
-
-  - title: "Data Quality Score"
-    type: stat
-    dimensions:
-      - completeness
-      - accuracy
-      - timeliness
-      - consistency
-
-  - title: "PII Data Locations"
-    type: geomap
-    data: pii_distribution
-
-  - title: "Access Requests"
-    type: timeseries
-    metrics:
-      - approved_requests
-      - denied_requests
-      - pending_requests
-
-  - title: "Data Lineage"
-    type: flowchart
-    show: critical_data_flows
-```
-
-### 4. Code Review Dashboard
-
-```yaml
-# code-review-dashboard.yml
-panels:
-  - title: "Review Cycle Time"
-    type: timeseries
-    metrics:
-      - avg_time_to_first_review
-      - avg_time_to_approval
-      - avg_cycle_time
-
-  - title: "SLO Compliance"
-    type: gauge
-    slos:
-      - first_review_4h
-      - approval_24h
-      - merge_48h
-
-  - title: "Reviewer Load"
-    type: barchart
-    by: reviewer
-
-  - title: "PR Size Distribution"
-    type: piechart
-    categories: [XS, S, M, L, XL]
-
-  - title: "Quality Gate Pass Rate"
-    type: stat
-    breakdown_by: gate_type
-```
-
-## Implementation
-
-### Grafana Dashboard as Code
-
-```json
-{
-  "dashboard": {
-    "title": "Enterprise Overview",
-    "uid": "enterprise-overview",
-    "tags": ["enterprise", "overview"],
-    "timezone": "browser",
-    "refresh": "5m",
-    "rows": [
-      {
-        "title": "Executive Summary",
-        "panels": [
-          {
-            "title": "Overall Health Score",
-            "type": "gauge",
-            "datasource": "prometheus",
-            "targets": [
-              {
-                "expr": "(security_score + compliance_score + quality_score) / 3"
-              }
-            ],
-            "fieldConfig": {
-              "defaults": {
-                "thresholds": {
-                  "steps": [
-                    {"color": "red", "value": null},
-                    {"color": "yellow", "value": 70},
-                    {"color": "green", "value": 90}
-                  ]
-                },
-                "min": 0,
-                "max": 100
-              }
-            }
-          },
-          {
-            "title": "Active Incidents",
-            "type": "stat",
-            "datasource": "prometheus",
-            "targets": [
-              {"expr": "sum(active_incidents)"}
-            ],
-            "fieldConfig": {
-              "defaults": {
-                "thresholds": {
-                  "steps": [
-                    {"color": "green", "value": null},
-                    {"color": "yellow", "value": 1},
-                    {"color": "red", "value": 5}
-                  ]
-                }
-              }
-            }
-          },
-          {
-            "title": "Compliance Status",
-            "type": "stat",
-            "datasource": "prometheus",
-            "targets": [
-              {"expr": "compliance_passing_controls / compliance_total_controls * 100"}
-            ]
-          },
-          {
-            "title": "Open PRs Awaiting Review",
-            "type": "stat",
-            "datasource": "github",
-            "targets": [
-              {"query": "count(open_prs where status = 'awaiting_review')"}
-            ]
-          }
-        ]
-      },
-      {
-        "title": "Security",
-        "panels": [
-          {
-            "title": "Vulnerabilities by Severity",
-            "type": "barchart",
-            "datasource": "security-scanner",
-            "targets": [
-              {"expr": "vulnerabilities_count by (severity)"}
-            ]
-          },
-          {
-            "title": "Security Events Timeline",
-            "type": "timeseries",
-            "datasource": "prometheus",
-            "targets": [
-              {"expr": "rate(security_events_total[5m])", "legendFormat": "Events/min"}
-            ]
-          }
-        ]
-      },
-      {
-        "title": "Delivery Metrics",
-        "panels": [
-          {
-            "title": "Deployment Frequency",
-            "type": "stat",
-            "datasource": "prometheus",
-            "targets": [
-              {"expr": "sum(increase(deployments_total[7d]))"}
-            ]
-          },
-          {
-            "title": "Lead Time for Changes",
-            "type": "gauge",
-            "datasource": "prometheus",
-            "targets": [
-              {"expr": "avg(lead_time_hours)"}
-            ]
-          },
-          {
-            "title": "Change Failure Rate",
-            "type": "stat",
-            "datasource": "prometheus",
-            "targets": [
-              {"expr": "failed_deployments / total_deployments * 100"}
-            ]
-          },
-          {
-            "title": "MTTR",
-            "type": "stat",
-            "datasource": "prometheus",
-            "targets": [
-              {"expr": "avg(incident_recovery_time_minutes)"}
-            ]
-          }
-        ]
-      }
-    ]
-  }
-}
-```
-
-### Alerting Rules
-
-```yaml
-# alerting-rules.yml
-groups:
-  - name: security-alerts
-    rules:
-      - alert: CriticalVulnerabilityDetected
-        expr: vulnerabilities_critical > 0
-        for: 0m
-        labels:
-          severity: critical
-          team: security
-        annotations:
-          summary: "Critical vulnerability detected"
-          description: "{{ $value }} critical vulnerabilities found"
-
-      - alert: SecretsExposed
-        expr: exposed_secrets_count > 0
-        for: 0m
-        labels:
-          severity: critical
-          team: security
-        annotations:
-          summary: "Exposed secrets detected"
-          runbook: "https://wiki/runbooks/secrets-exposure"
-
-      - alert: UnusualAccessPattern
-        expr: access_anomaly_score > 0.9
-        for: 5m
-        labels:
-          severity: high
-          team: security
-        annotations:
-          summary: "Unusual access pattern detected"
-
-  - name: compliance-alerts
-    rules:
-      - alert: ComplianceControlFailed
-        expr: compliance_control_status == 0
-        for: 0m
-        labels:
-          severity: high
-          team: compliance
-        annotations:
-          summary: "Compliance control failed: {{ $labels.control }}"
-
-      - alert: AuditLogGap
-        expr: time() - audit_last_event_timestamp > 3600
-        for: 5m
-        labels:
-          severity: medium
-        annotations:
-          summary: "No audit events in the last hour"
-
-  - name: code-review-alerts
-    rules:
-      - alert: PRReviewSLOBreach
-        expr: pr_time_without_review_hours > 24
-        for: 0m
-        labels:
-          severity: medium
-          team: engineering
-        annotations:
-          summary: "PR #{{ $labels.pr_number }} waiting > 24h for review"
-
-      - alert: ReviewerOverloaded
-        expr: reviewer_active_prs > 7
-        for: 0m
-        labels:
-          severity: low
-        annotations:
-          summary: "Reviewer {{ $labels.reviewer }} has too many active reviews"
-
-  - name: data-governance-alerts
-    rules:
-      - alert: DataQualityDegraded
-        expr: data_quality_score < 0.8
-        for: 15m
-        labels:
-          severity: medium
-          team: data
-        annotations:
-          summary: "Data quality below threshold for {{ $labels.dataset }}"
-
-      - alert: PIIAccessAnomaly
-        expr: pii_access_anomaly_score > 0.8
-        for: 5m
-        labels:
-          severity: high
-          team: security
-        annotations:
-          summary: "Unusual PII access pattern detected"
-```
-
-### Dashboard Generator Script
-
-```python
-#!/usr/bin/env python3
-"""Generate enterprise dashboards from configuration."""
-
-import json
-from dataclasses import dataclass
-from typing import List, Dict, Any
-
-@dataclass
-class Panel:
-    """Dashboard panel configuration."""
-    title: str
-    panel_type: str
-    datasource: str
-    queries: List[str]
-    thresholds: Dict[str, int] = None
-    position: Dict[str, int] = None
-
-@dataclass
-class Dashboard:
-    """Complete dashboard configuration."""
-    title: str
-    uid: str
-    panels: List[Panel]
-    refresh: str = "5m"
-
-class DashboardGenerator:
-    """Generate Grafana dashboards from templates."""
-
-    def __init__(self):
-        self.templates = {
-            "security": self._security_template,
-            "compliance": self._compliance_template,
-            "code-review": self._code_review_template,
-            "governance": self._governance_template,
-        }
-
-    def generate(self, template_name: str) -> Dict[str, Any]:
-        """Generate dashboard from template."""
-        if template_name not in self.templates:
-            raise ValueError(f"Unknown template: {template_name}")
-
-        return self.templates[template_name]()
-
-    def _security_template(self) -> Dict:
-        """Generate security dashboard."""
-        return {
-            "dashboard": {
-                "title": "Security Overview",
-                "uid": "security-overview",
-                "panels": [
-                    {
-                        "title": "Security Score",
-                        "type": "gauge",
-                        "gridPos": {"x": 0, "y": 0, "w": 6, "h": 8},
-                        "targets": [{"expr": "security_posture_score"}],
-                    },
-                    {
-                        "title": "Vulnerabilities",
-                        "type": "stat",
-                        "gridPos": {"x": 6, "y": 0, "w": 6, "h": 4},
-                        "targets": [{"expr": "sum(vulnerabilities_count)"}],
-                    },
-                    {
-                        "title": "Security Events",
-                        "type": "timeseries",
-                        "gridPos": {"x": 12, "y": 0, "w": 12, "h": 8},
-                        "targets": [
-                            {"expr": "rate(security_events_total[5m])", "legendFormat": "Events"}
-                        ],
-                    },
-                ]
-            }
-        }
-
-    def _compliance_template(self) -> Dict:
-        """Generate compliance dashboard."""
-        return {
-            "dashboard": {
-                "title": "Compliance Status",
-                "uid": "compliance-status",
-                "panels": [
-                    {
-                        "title": "SOC 2 Compliance",
-                        "type": "gauge",
-                        "gridPos": {"x": 0, "y": 0, "w": 6, "h": 6},
-                        "targets": [{"expr": "soc2_compliance_score"}],
-                    },
-                    {
-                        "title": "GDPR Compliance",
-                        "type": "gauge",
-                        "gridPos": {"x": 6, "y": 0, "w": 6, "h": 6},
-                        "targets": [{"expr": "gdpr_compliance_score"}],
-                    },
-                    {
-                        "title": "Open Findings",
-                        "type": "table",
-                        "gridPos": {"x": 0, "y": 6, "w": 24, "h": 10},
-                        "targets": [{"expr": "compliance_findings"}],
-                    },
-                ]
-            }
-        }
-
-    def _code_review_template(self) -> Dict:
-        """Generate code review dashboard."""
-        return {
-            "dashboard": {
-                "title": "Code Review Metrics",
-                "uid": "code-review-metrics",
-                "panels": [
-                    {
-                        "title": "Avg Time to First Review",
-                        "type": "stat",
-                        "gridPos": {"x": 0, "y": 0, "w": 6, "h": 4},
-                        "targets": [{"expr": "avg(pr_time_to_first_review_hours)"}],
-                    },
-                    {
-                        "title": "Review Cycle Time Trend",
-                        "type": "timeseries",
-                        "gridPos": {"x": 6, "y": 0, "w": 18, "h": 8},
-                        "targets": [
-                            {"expr": "avg(pr_cycle_time_hours)", "legendFormat": "Cycle Time"}
-                        ],
-                    },
-                    {
-                        "title": "Reviewer Load",
-                        "type": "barchart",
-                        "gridPos": {"x": 0, "y": 8, "w": 12, "h": 8},
-                        "targets": [{"expr": "reviews_per_person by (reviewer)"}],
-                    },
-                ]
-            }
-        }
-
-    def _governance_template(self) -> Dict:
-        """Generate data governance dashboard."""
-        return {
-            "dashboard": {
-                "title": "Data Governance",
-                "uid": "data-governance",
-                "panels": [
-                    {
-                        "title": "Data Catalog Coverage",
-                        "type": "gauge",
-                        "gridPos": {"x": 0, "y": 0, "w": 8, "h": 6},
-                        "targets": [{"expr": "catalog_coverage_percent"}],
-                    },
-                    {
-                        "title": "Data Quality Score",
-                        "type": "gauge",
-                        "gridPos": {"x": 8, "y": 0, "w": 8, "h": 6},
-                        "targets": [{"expr": "data_quality_score"}],
-                    },
-                    {
-                        "title": "PII Distribution",
-                        "type": "piechart",
-                        "gridPos": {"x": 16, "y": 0, "w": 8, "h": 6},
-                        "targets": [{"expr": "pii_count by (classification)"}],
-                    },
-                ]
-            }
-        }
-
-    def export_all(self, output_dir: str = "dashboards") -> None:
-        """Export all dashboards to JSON files."""
-        import os
-        os.makedirs(output_dir, exist_ok=True)
-
-        for name, template_fn in self.templates.items():
-            dashboard = template_fn()
-            with open(f"{output_dir}/{name}.json", "w") as f:
-                json.dump(dashboard, f, indent=2)
-            print(f"Generated: {output_dir}/{name}.json")
-
-
-if __name__ == "__main__":
-    generator = DashboardGenerator()
-    generator.export_all()
-```
-
-## Enterprise Integration
-
-### Connected Skills
-- **Security Architect (sa-07)**: Security monitoring data
-- **Data Governance (dg-01-06)**: Governance metrics
-- **Code Review (cr-05)**: Review analytics
-- **Compliance Automation**: Compliance status
-
-### Data Sources
-- Prometheus/Grafana for metrics
-- GitHub API for code review data
-- Security scanners (Snyk, SonarQube)
-- Audit log systems
-
-## Quick Reference
-
-```bash
-# In Claude Code
-@enterprise-dashboard "Create security monitoring dashboard"
-@enterprise-dashboard "Set up compliance alerting"
-@enterprise-dashboard "Generate DORA metrics dashboard"
-```
+# Enterprise Dashboard & Monitoring
+
+Centralized visibility into security, compliance, governance, and operational metrics for enterprise applications.
+
+## Role Overview
+
+**Agent**: Enterprise Dashboard Specialist
+**Focus**: Real-time monitoring, alerting, dashboards, and operational visibility
+**Integration**: Aggregates data from all enterprise skills
+
+## When to Use
+
+Invoke this role when you need to:
+- Create unified dashboards for enterprise metrics
+- Set up alerting for security and compliance events
+- Monitor SLOs across the platform
+- Track governance and audit metrics
+- Visualize data lineage and access patterns
+
+## Dashboard Components
+
+### 1. Security Dashboard
+
+```yaml
+# security-dashboard.yml
+panels:
+  - title: "Security Posture Score"
+    type: gauge
+    metrics:
+      - vulnerability_count
+      - compliance_score
+      - incident_count
+    thresholds:
+      critical: 60
+      warning: 80
+      healthy: 95
+
+  - title: "Active Vulnerabilities"
+    type: stat
+    breakdown:
+      - critical
+      - high
+      - medium
+      - low
+
+  - title: "Security Events (24h)"
+    type: timeseries
+    metrics:
+      - authentication_failures
+      - authorization_denials
+      - suspicious_activities
+
+  - title: "Secrets Exposure"
+    type: stat
+    metrics:
+      - exposed_secrets_count
+      - secrets_rotation_due
+
+  - title: "Container Security"
+    type: table
+    columns:
+      - image_name
+      - vulnerability_count
+      - last_scanned
+```
+
+### 2. Compliance Dashboard
+
+```yaml
+# compliance-dashboard.yml
+panels:
+  - title: "Compliance Score by Framework"
+    type: barchart
+    frameworks:
+      - SOC2
+      - GDPR
+      - HIPAA
+      - PCI-DSS
+
+  - title: "Control Status"
+    type: piechart
+    statuses:
+      - passed
+      - failed
+      - warning
+      - not_applicable
+
+  - title: "Audit Trail Activity"
+    type: timeseries
+    metrics:
+      - audit_events_per_hour
+      - compliance_checks_run
+
+  - title: "Open Findings"
+    type: table
+    columns:
+      - finding_id
+      - severity
+      - framework
+      - age_days
+      - owner
+
+  - title: "Evidence Collection"
+    type: stat
+    metrics:
+      - evidence_artifacts_count
+      - last_evidence_generated
+```
+
+### 3. Data Governance Dashboard
+
+```yaml
+# governance-dashboard.yml
+panels:
+  - title: "Data Catalog Coverage"
+    type: gauge
+    target: 100%
+
+  - title: "Data Quality Score"
+    type: stat
+    dimensions:
+      - completeness
+      - accuracy
+      - timeliness
+      - consistency
+
+  - title: "PII Data Locations"
+    type: geomap
+    data: pii_distribution
+
+  - title: "Access Requests"
+    type: timeseries
+    metrics:
+      - approved_requests
+      - denied_requests
+      - pending_requests
+
+  - title: "Data Lineage"
+    type: flowchart
+    show: critical_data_flows
+```
+
+### 4. Code Review Dashboard
+
+```yaml
+# code-review-dashboard.yml
+panels:
+  - title: "Review Cycle Time"
+    type: timeseries
+    metrics:
+      - avg_time_to_first_review
+      - avg_time_to_approval
+      - avg_cycle_time
+
+  - title: "SLO Compliance"
+    type: gauge
+    slos:
+      - first_review_4h
+      - approval_24h
+      - merge_48h
+
+  - title: "Reviewer Load"
+    type: barchart
+    by: reviewer
+
+  - title: "PR Size Distribution"
+    type: piechart
+    categories: [XS, S, M, L, XL]
+
+  - title: "Quality Gate Pass Rate"
+    type: stat
+    breakdown_by: gate_type
+```
+
+## Implementation
+
+### Grafana Dashboard as Code
+
+```json
+{
+  "dashboard": {
+    "title": "Enterprise Overview",
+    "uid": "enterprise-overview",
+    "tags": ["enterprise", "overview"],
+    "timezone": "browser",
+    "refresh": "5m",
+    "rows": [
+      {
+        "title": "Executive Summary",
+        "panels": [
+          {
+            "title": "Overall Health Score",
+            "type": "gauge",
+            "datasource": "prometheus",
+            "targets": [
+              {
+                "expr": "(security_score + compliance_score + quality_score) / 3"
+              }
+            ],
+            "fieldConfig": {
+              "defaults": {
+                "thresholds": {
+                  "steps": [
+                    {"color": "red", "value": null},
+                    {"color": "yellow", "value": 70},
+                    {"color": "green", "value": 90}
+                  ]
+                },
+                "min": 0,
+                "max": 100
+              }
+            }
+          },
+          {
+            "title": "Active Incidents",
+            "type": "stat",
+            "datasource": "prometheus",
+            "targets": [
+              {"expr": "sum(active_incidents)"}
+            ],
+            "fieldConfig": {
+              "defaults": {
+                "thresholds": {
+                  "steps": [
+                    {"color": "green", "value": null},
+                    {"color": "yellow", "value": 1},
+                    {"color": "red", "value": 5}
+                  ]
+                }
+              }
+            }
+          },
+          {
+            "title": "Compliance Status",
+            "type": "stat",
+            "datasource": "prometheus",
+            "targets": [
+              {"expr": "compliance_passing_controls / compliance_total_controls * 100"}
+            ]
+          },
+          {
+            "title": "Open PRs Awaiting Review",
+            "type": "stat",
+            "datasource": "github",
+            "targets": [
+              {"query": "count(open_prs where status = 'awaiting_review')"}
+            ]
+          }
+        ]
+      },
+      {
+        "title": "Security",
+        "panels": [
+          {
+            "title": "Vulnerabilities by Severity",
+            "type": "barchart",
+            "datasource": "security-scanner",
+            "targets": [
+              {"expr": "vulnerabilities_count by (severity)"}
+            ]
+          },
+          {
+            "title": "Security Events Timeline",
+            "type": "timeseries",
+            "datasource": "prometheus",
+            "targets": [
+              {"expr": "rate(security_events_total[5m])", "legendFormat": "Events/min"}
+            ]
+          }
+        ]
+      },
+      {
+        "title": "Delivery Metrics",
+        "panels": [
+          {
+            "title": "Deployment Frequency",
+            "type": "stat",
+            "datasource": "prometheus",
+            "targets": [
+              {"expr": "sum(increase(deployments_total[7d]))"}
+            ]
+          },
+          {
+            "title": "Lead Time for Changes",
+            "type": "gauge",
+            "datasource": "prometheus",
+            "targets": [
+              {"expr": "avg(lead_time_hours)"}
+            ]
+          },
+          {
+            "title": "Change Failure Rate",
+            "type": "stat",
+            "datasource": "prometheus",
+            "targets": [
+              {"expr": "failed_deployments / total_deployments * 100"}
+            ]
+          },
+          {
+            "title": "MTTR",
+            "type": "stat",
+            "datasource": "prometheus",
+            "targets": [
+              {"expr": "avg(incident_recovery_time_minutes)"}
+            ]
+          }
+        ]
+      }
+    ]
+  }
+}
+```
+
+### Alerting Rules
+
+```yaml
+# alerting-rules.yml
+groups:
+  - name: security-alerts
+    rules:
+      - alert: CriticalVulnerabilityDetected
+        expr: vulnerabilities_critical > 0
+        for: 0m
+        labels:
+          severity: critical
+          team: security
+        annotations:
+          summary: "Critical vulnerability detected"
+          description: "{{ $value }} critical vulnerabilities found"
+
+      - alert: SecretsExposed
+        expr: exposed_secrets_count > 0
+        for: 0m
+        labels:
+          severity: critical
+          team: security
+        annotations:
+          summary: "Exposed secrets detected"
+          runbook: "https://wiki/runbooks/secrets-exposure"
+
+      - alert: UnusualAccessPattern
+        expr: access_anomaly_score > 0.9
+        for: 5m
+        labels:
+          severity: high
+          team: security
+        annotations:
+          summary: "Unusual access pattern detected"
+
+  - name: compliance-alerts
+    rules:
+      - alert: ComplianceControlFailed
+        expr: compliance_control_status == 0
+        for: 0m
+        labels:
+          severity: high
+          team: compliance
+        annotations:
+          summary: "Compliance control failed: {{ $labels.control }}"
+
+      - alert: AuditLogGap
+        expr: time() - audit_last_event_timestamp > 3600
+        for: 5m
+        labels:
+          severity: medium
+        annotations:
+          summary: "No audit events in the last hour"
+
+  - name: code-review-alerts
+    rules:
+      - alert: PRReviewSLOBreach
+        expr: pr_time_without_review_hours > 24
+        for: 0m
+        labels:
+          severity: medium
+          team: engineering
+        annotations:
+          summary: "PR #{{ $labels.pr_number }} waiting > 24h for review"
+
+      - alert: ReviewerOverloaded
+        expr: reviewer_active_prs > 7
+        for: 0m
+        labels:
+          severity: low
+        annotations:
+          summary: "Reviewer {{ $labels.reviewer }} has too many active reviews"
+
+  - name: data-governance-alerts
+    rules:
+      - alert: DataQualityDegraded
+        expr: data_quality_score < 0.8
+        for: 15m
+        labels:
+          severity: medium
+          team: data
+        annotations:
+          summary: "Data quality below threshold for {{ $labels.dataset }}"
+
+      - alert: PIIAccessAnomaly
+        expr: pii_access_anomaly_score > 0.8
+        for: 5m
+        labels:
+          severity: high
+          team: security
+        annotations:
+          summary: "Unusual PII access pattern detected"
+```
+
+### Dashboard Generator Script
+
+```python
+#!/usr/bin/env python3
+"""Generate enterprise dashboards from configuration."""
+
+import json
+from dataclasses import dataclass
+from typing import List, Dict, Any
+
+@dataclass
+class Panel:
+    """Dashboard panel configuration."""
+    title: str
+    panel_type: str
+    datasource: str
+    queries: List[str]
+    thresholds: Dict[str, int] = None
+    position: Dict[str, int] = None
+
+@dataclass
+class Dashboard:
+    """Complete dashboard configuration."""
+    title: str
+    uid: str
+    panels: List[Panel]
+    refresh: str = "5m"
+
+class DashboardGenerator:
+    """Generate Grafana dashboards from templates."""
+
+    def __init__(self):
+        self.templates = {
+            "security": self._security_template,
+            "compliance": self._compliance_template,
+            "code-review": self._code_review_template,
+            "governance": self._governance_template,
+        }
+
+    def generate(self, template_name: str) -> Dict[str, Any]:
+        """Generate dashboard from template."""
+        if template_name not in self.templates:
+            raise ValueError(f"Unknown template: {template_name}")
+
+        return self.templates[template_name]()
+
+    def _security_template(self) -> Dict:
+        """Generate security dashboard."""
+        return {
+            "dashboard": {
+                "title": "Security Overview",
+                "uid": "security-overview",
+                "panels": [
+                    {
+                        "title": "Security Score",
+                        "type": "gauge",
+                        "gridPos": {"x": 0, "y": 0, "w": 6, "h": 8},
+                        "targets": [{"expr": "security_posture_score"}],
+                    },
+                    {
+                        "title": "Vulnerabilities",
+                        "type": "stat",
+                        "gridPos": {"x": 6, "y": 0, "w": 6, "h": 4},
+                        "targets": [{"expr": "sum(vulnerabilities_count)"}],
+                    },
+                    {
+                        "title": "Security Events",
+                        "type": "timeseries",
+                        "gridPos": {"x": 12, "y": 0, "w": 12, "h": 8},
+                        "targets": [
+                            {"expr": "rate(security_events_total[5m])", "legendFormat": "Events"}
+                        ],
+                    },
+                ]
+            }
+        }
+
+    def _compliance_template(self) -> Dict:
+        """Generate compliance dashboard."""
+        return {
+            "dashboard": {
+                "title": "Compliance Status",
+                "uid": "compliance-status",
+                "panels": [
+                    {
+                        "title": "SOC 2 Compliance",
+                        "type": "gauge",
+                        "gridPos": {"x": 0, "y": 0, "w": 6, "h": 6},
+                        "targets": [{"expr": "soc2_compliance_score"}],
+                    },
+                    {
+                        "title": "GDPR Compliance",
+                        "type": "gauge",
+                        "gridPos": {"x": 6, "y": 0, "w": 6, "h": 6},
+                        "targets": [{"expr": "gdpr_compliance_score"}],
+                    },
+                    {
+                        "title": "Open Findings",
+                        "type": "table",
+                        "gridPos": {"x": 0, "y": 6, "w": 24, "h": 10},
+                        "targets": [{"expr": "compliance_findings"}],
+                    },
+                ]
+            }
+        }
+
+    def _code_review_template(self) -> Dict:
+        """Generate code review dashboard."""
+        return {
+            "dashboard": {
+                "title": "Code Review Metrics",
+                "uid": "code-review-metrics",
+                "panels": [
+                    {
+                        "title": "Avg Time to First Review",
+                        "type": "stat",
+                        "gridPos": {"x": 0, "y": 0, "w": 6, "h": 4},
+                        "targets": [{"expr": "avg(pr_time_to_first_review_hours)"}],
+                    },
+                    {
+                        "title": "Review Cycle Time Trend",
+                        "type": "timeseries",
+                        "gridPos": {"x": 6, "y": 0, "w": 18, "h": 8},
+                        "targets": [
+                            {"expr": "avg(pr_cycle_time_hours)", "legendFormat": "Cycle Time"}
+                        ],
+                    },
+                    {
+                        "title": "Reviewer Load",
+                        "type": "barchart",
+                        "gridPos": {"x": 0, "y": 8, "w": 12, "h": 8},
+                        "targets": [{"expr": "reviews_per_person by (reviewer)"}],
+                    },
+                ]
+            }
+        }
+
+    def _governance_template(self) -> Dict:
+        """Generate data governance dashboard."""
+        return {
+            "dashboard": {
+                "title": "Data Governance",
+                "uid": "data-governance",
+                "panels": [
+                    {
+                        "title": "Data Catalog Coverage",
+                        "type": "gauge",
+                        "gridPos": {"x": 0, "y": 0, "w": 8, "h": 6},
+                        "targets": [{"expr": "catalog_coverage_percent"}],
+                    },
+                    {
+                        "title": "Data Quality Score",
+                        "type": "gauge",
+                        "gridPos": {"x": 8, "y": 0, "w": 8, "h": 6},
+                        "targets": [{"expr": "data_quality_score"}],
+                    },
+                    {
+                        "title": "PII Distribution",
+                        "type": "piechart",
+                        "gridPos": {"x": 16, "y": 0, "w": 8, "h": 6},
+                        "targets": [{"expr": "pii_count by (classification)"}],
+                    },
+                ]
+            }
+        }
+
+    def export_all(self, output_dir: str = "dashboards") -> None:
+        """Export all dashboards to JSON files."""
+        import os
+        os.makedirs(output_dir, exist_ok=True)
+
+        for name, template_fn in self.templates.items():
+            dashboard = template_fn()
+            with open(f"{output_dir}/{name}.json", "w") as f:
+                json.dump(dashboard, f, indent=2)
+            print(f"Generated: {output_dir}/{name}.json")
+
+
+if __name__ == "__main__":
+    generator = DashboardGenerator()
+    generator.export_all()
+```
+
+## Enterprise Integration
+
+### Connected Skills
+- **Security Architect (sa-07)**: Security monitoring data
+- **Data Governance (dg-01-06)**: Governance metrics
+- **Code Review (cr-05)**: Review analytics
+- **Compliance Automation**: Compliance status
+
+### Data Sources
+- Prometheus/Grafana for metrics
+- GitHub API for code review data
+- Security scanners (Snyk, SonarQube)
+- Audit log systems
+
+## Quick Reference
+
+```bash
+# In Claude Code
+@enterprise-dashboard "Create security monitoring dashboard"
+@enterprise-dashboard "Set up compliance alerting"
+@enterprise-dashboard "Generate DORA metrics dashboard"
+```