tech-hub-skills 2.2.3 → 2.3.1

package/.claude/README.md

@@ -2,7 +2,7 @@
 
 **200+ production-ready AI agent skills organized in a hierarchical multi-agent system.**
 
-## v2.2: Hierarchical Agent Architecture
+## v2.3: Hierarchical Agent Architecture
 
 This workspace uses a high-efficiency **Brainstorm → Plan → Implement** workflow.
 
@@ -67,10 +67,10 @@ This workspace uses a high-efficiency **Brainstorm → Plan → Implement** work
  skill-docs/               # Detailed skill documentation (loaded on-demand)
  templates/                # Production-ready code templates
  commands/                 # Slash command configurations
- settings.json             # System-wide configuration (v2.2.2)
+ settings.json             # System-wide configuration (v2.3.1)
  AGENTS.md                 # Full architecture documentation
 ```
 
 ---
 
-_Generated by Tech Hub Skills v2.2.2_
+_Generated by Tech Hub Skills v2.3.1_

package/.claude/agents/ROLE-REGISTRY.md

@@ -57,13 +57,14 @@
 
 ### Product Domain (Lead: @product-lead)
 
-| Role                   | Expertise                  | When to Invoke     |
-| ---------------------- | -------------------------- | ------------------ |
-| **Product Designer**   | Requirements, UX, Research | Product design     |
-| **Frontend Developer** | React, Vue, TypeScript     | UI development     |
-| **Backend Developer**  | APIs, Microservices, DB    | Server development |
-| **QA Engineer**        | Testing, Automation        | Quality assurance  |
-| **Technical Writer**   | Docs, ADRs, Runbooks       | Documentation      |
+| Role                      | Expertise                     | When to Invoke       |
+| ------------------------- | ----------------------------- | -------------------- |
+| **Product Designer**      | Requirements, UX, Research    | Product design       |
+| **Frontend Developer**    | React, Vue, TypeScript        | UI development       |
+| **Backend Developer**     | APIs, Microservices, DB       | Server development   |
+| **QA Engineer**           | Testing, Automation           | Quality assurance    |
+| **Technical Writer**      | Docs, ADRs, Runbooks          | Documentation        |
+| **Strategic Coordinator** | Meetings, Synthesis, Strategy | Meeting prep, status |
 
 ### Infrastructure (Lead: @orchestrator)
 
@@ -104,6 +105,7 @@ Product_keywords: requirements, UX, design → Product Designer
   API, backend, server → Backend Developer
   test, QA, automation → QA Engineer
   docs, documentation → Technical Writer
+  meeting, strategy, status, sync → Strategic Coordinator
 ```
 
 ---

package/.claude/agents/SKILL-REGISTRY.md

@@ -18,31 +18,33 @@
 
 ### By Domain
 
-| Domain       | Lead           | Skill Files                                     | Skill IDs              |
-| ------------ | -------------- | ----------------------------------------------- | ---------------------- |
-| AI/ML        | @ai-ml-lead    | `ai-engineer.md`, `ai-engineer-advanced.md`     | ai-01 to ai-13         |
-| ML           | @ai-ml-lead    | `ml-engineer.md`                                | ml-01 to ml-09         |
-| Data Science | @ai-ml-lead    | `data-scientist.md`                             | ds-01 to ds-08         |
-| MLOps        | @ai-ml-lead    | `mlops.md`                                      | mo-01 to mo-09         |
-| DevOps       | @platform-lead | `devops.md`                                     | do-01 to do-09         |
-| SRE          | @platform-lead | `sre.md`                                        | sr-01 to sr-07         |
-| Docker       | @platform-lead | `docker.md`                                     | docker-01 to docker-05 |
-| AWS          | @platform-lead | `aws.md`                                        | aws-01 to aws-12       |
-| Azure        | @platform-lead | `azure.md`                                      | az-01 to az-12         |
-| GCP          | @platform-lead | `gcp.md`                                        | gcp-01 to gcp-12       |
-| Security     | @security-lead | `security-architect.md`, `security-advanced.md` | sa-01 to sa-11         |
-| Compliance   | @security-lead | `compliance-officer.md`                         | co-01 to co-07         |
-| Data Eng     | @data-lead     | `data-engineer.md`, `data-engineer-advanced.md` | de-01 to de-13         |
-| Data Gov     | @data-lead     | `data-governance.md`                            | dg-01 to dg-06         |
-| Database     | @data-lead     | `database-admin.md`                             | db-01 to db-07         |
-| Product      | @product-lead  | `product-designer.md`                           | pd-01 to pd-06         |
-| Frontend     | @product-lead  | `frontend-developer.md`                         | fe-01 to fe-07         |
-| Backend      | @product-lead  | `backend-developer.md`                          | be-01 to be-07         |
-| QA           | @product-lead  | `qa-engineer.md`                                | qa-01 to qa-07         |
-| Tech Writer  | @product-lead  | `technical-writer.md`                           | tw-01 to tw-06         |
-| FinOps       | @platform-lead | `finops.md`                                     | fo-01 to fo-08         |
-| MCP          | @orchestrator  | `mcp-management.md`                             | mcp-01 to mcp-05       |
-| Context      | @orchestrator  | `context-optimization.md`                       | ctx-01 to ctx-06       |
+| Domain       | Lead           | Skill Files             | Skill IDs              |
+| ------------ | -------------- | ----------------------- | ---------------------- |
+| AI/ML        | @ai-ml-lead    | `ai-engineer.md`        | ai-01 to ai-13         |
+| ML           | @ai-ml-lead    | `ml-engineer.md`        | ml-01 to ml-09         |
+| Data Science | @ai-ml-lead    | `data-scientist.md`     | ds-01 to ds-08         |
+| MLOps        | @ai-ml-lead    | `mlops.md`              | mo-01 to mo-09         |
+| DevOps       | @platform-lead | `devops.md`             | do-01 to do-09         |
+| SRE          | @platform-lead | `sre.md`                | sr-01 to sr-07         |
+| Docker       | @platform-lead | `docker.md`             | docker-01 to docker-05 |
+| AWS          | @platform-lead | `aws.md`                | aws-01 to aws-12       |
+| Azure        | @platform-lead | `azure.md`              | az-01 to az-12         |
+| GCP          | @platform-lead | `gcp.md`                | gcp-01 to gcp-12       |
+| Security     | @security-lead | `security-architect.md` | sa-01 to sa-11         |
+| Compliance   | @security-lead | `compliance-officer.md` | co-01 to co-07         |
+| Data Eng     | @data-lead     | `data-engineer.md`      | de-01 to de-13         |
+| Data Gov     | @data-lead     | `data-governance.md`    | dg-01 to dg-06         |
+| Database     | @data-lead     | `database-admin.md`     | db-01 to db-07         |
+| Product      | @product-lead  | `product-designer.md`   | pd-01 to pd-06         |
+| Frontend     | @product-lead  | `frontend-developer.md` | fe-01 to fe-07         |
+| Backend      | @product-lead  | `backend-developer.md`  | be-01 to be-07         |
+| QA           | @product-lead  | `qa-engineer.md`        | qa-01 to qa-07         |
+| Tech Writer  | @product-lead  | `technical-writer.md`   | tw-01 to tw-06         |
+| FinOps       | @platform-lead | `finops.md`             | fo-01 to fo-08         |
+| Meeting Prep | @product-lead  | `meeting-strategy.md`   | pm-meet-01 to 05       |
+
+| MCP | @orchestrator | `mcp-management.md` | mcp-01 to mcp-05 |
+| Context | @orchestrator | `context-optimization.md` | ctx-01 to ctx-06 |
 
 ---
 
@@ -97,6 +99,15 @@ monitoring, alerting: → do-08
 security scan, DevSecOps: → do-09
 ```
 
+### Strategy Keywords
+
+```yaml
+meeting, sprint review, demo: → pm-meet-01, pm-meet-02
+speaking points, feedback, talk: → pm-meet-04
+action items, minutes, follow-up: → pm-meet-05
+security roadmap, compliance status: → pm-meet-03
+```
+
 ### Platform Keywords
 
 ```yaml

package/.claude/agents/specialists/ai-engineer-agent.md

@@ -12,14 +12,19 @@ You are an **AI Engineer Specialist Agent** - an expert in LLMs, RAG systems, AI
 
 | Skill ID | Name                              | Auto-Execute |
 | -------- | --------------------------------- | ------------ |
-| ai-01    | Prompt Engineering & Optimization |  Yes       |
-| ai-02    | RAG Pipeline Builder              |  Confirm   |
-| ai-03    | LLM Agent Orchestration           |  Confirm   |
-| ai-04    | LLM Guardrails & Safety           |  Yes       |
-| ai-05    | Vector Embeddings & Search        |  Confirm   |
-| ai-06    | LLM Evaluation & Benchmarking     |  Yes       |
-| ai-07    | Production LLM API Integration    |  Approval  |
-| ai-08    | Marketing AI Automation           |  Confirm   |
+| ai-01    | Prompt Engineering & Optimization | Yes          |
+| ai-02    | RAG Pipeline Builder              | Confirm      |
+| ai-03    | LLM Agent Orchestration           | Confirm      |
+| ai-04    | LLM Guardrails & Safety           | Yes          |
+| ai-05    | Vector Embeddings & Search        | Confirm      |
+| ai-06    | LLM Evaluation & Benchmarking     | Yes          |
+| ai-07    | Production LLM API Integration    | Approval     |
+| ai-08    | Marketing AI Automation           | Confirm      |
+| ai-09    | Fine-Tuning & Custom Models       | Approval     |
+| ai-10    | Multimodal AI                     | Confirm      |
+| ai-11    | AI Agents 2.0 (MCP & Advanced)    | Confirm      |
+| ai-12    | Local LLMs & On-Prem              | Approval     |
+| ai-13    | Synthetic Data Generation         | Yes          |
 
 ## Mandatory Collaborations
 

package/.claude/agents/specialists/data-engineer-agent.md

@@ -10,17 +10,21 @@ You are a **Data Engineer Specialist Agent** - an expert in data pipelines, lake
 
 ## Your Skills
 
-| Skill ID | Name                      | Auto-Execute |
-| -------- | ------------------------- | ------------ |
-| de-01    | Lakehouse Architecture    |  Confirm   |
-| de-02    | ETL/ELT Pipeline          |  Confirm   |
-| de-03    | Data Quality              |  Confirm   |
-| de-04    | Streaming Pipelines       |  Confirm   |
-| de-05    | Performance Optimization  |  Yes       |
-| de-06    | Cloud Data Infrastructure |  Confirm   |
-| de-07    | Database Integration      |  Confirm   |
-| de-08    | Marketing Data Pipelines  |  Confirm   |
-| de-09    | Pipeline Monitoring       |  Yes       |
+| Skill ID | Name                           | Auto-Execute |
+| -------- | ------------------------------ | ------------ |
+| de-01    | Lakehouse Architecture         | Confirm      |
+| de-02    | ETL/ELT Pipeline               | Confirm      |
+| de-03    | Data Quality                   | Confirm      |
+| de-04    | Streaming Pipelines            | Confirm      |
+| de-05    | Performance Optimization       | Yes          |
+| de-06    | Cloud Data Infrastructure      | Confirm      |
+| de-07    | Database Integration           | Confirm      |
+| de-08    | Marketing Data Ingestion       | Confirm      |
+| de-09    | Pipeline Monitoring            | Yes          |
+| de-10    | Reverse ETL                    | Confirm      |
+| de-11    | Data Contracts                 | Approval     |
+| de-12    | Semantic Layer / Metrics Layer | Confirm      |
+| de-13    | Data Mesh                      | Approval     |
 
 ## Mandatory Collaborations
 

package/.claude/agents/specialists/security-architect-agent.md

@@ -10,17 +10,21 @@ You are a **Security Architect Specialist Agent** - an expert in threat modeling
 
 ## Your Skills
 
-| Skill ID | Name                         | Auto-Execute       |
-| -------- | ---------------------------- | ------------------ |
-| sa-01    | PII Detection                |  Yes (read-only) |
-| sa-02    | Threat Modeling              |  Yes             |
-| sa-03    | Infrastructure Security      |  Confirm         |
-| sa-04    | IAM Design                   |  Approval        |
-| sa-05    | Application Security (OWASP) |  Confirm         |
-| sa-06    | Secrets Management           |  Approval        |
-| sa-07    | Security Monitoring (SIEM)   |  Confirm         |
-
-##  Critical Responsibilities
+| Skill ID | Name                           | Auto-Execute    |
+| -------- | ------------------------------ | --------------- |
+| sa-01    | PII Detection                  | Yes (read-only) |
+| sa-02    | Threat Modeling                | Yes             |
+| sa-03    | Infrastructure Security        | Confirm         |
+| sa-04    | IAM Design                     | Approval        |
+| sa-05    | Application Security (OWASP)   | Confirm         |
+| sa-06    | Secrets & Key Management       | Confirm         |
+| sa-07    | Security Monitoring & Response | Yes             |
+| sa-08    | API Security                   | Confirm         |
+| sa-09    | Supply Chain Security          | Approval        |
+| sa-10    | Zero Trust Architecture        | Confirm         |
+| sa-11    | Cloud Security Posture (CSPM)  | Approval        |
+
+## Critical Responsibilities
 
 This agent is **MANDATORY** for:
 

package/.claude/agents/specialists/strategic-coordinator-agent.md

@@ -0,0 +1,35 @@
+---
+name: "Strategic Coordinator"
+model: "haiku"
+description: "Expert in meeting preparation, project synthesis, and enterprise strategy."
+---
+
+# Strategic Coordinator Agent
+
+You are a **Strategic Coordinator Specialist Agent** - an expert in project health analysis, meeting orchestration, and high-level stakeholder communication. Your goal is to ensure project progress is accurately represented and aligned with enterprise security and compliance standards.
+
+## Your Skills
+
+| Skill ID   | Name                         | Auto-Execute |
+| ---------- | ---------------------------- | ------------ |
+| pm-meet-01 | Meeting Readiness Audit      | Yes          |
+| pm-meet-02 | Project Narrative Generation | Yes          |
+| pm-meet-03 | Security & Compliance Review | Yes          |
+| pm-meet-04 | Speaking Points & Coaching   | Yes          |
+| pm-meet-05 | Post-Meeting Action Tracking | Confirm      |
+
+## Mandatory Collaborations
+
+```
+→ pm-03 (Kanban) for progress data
+→ sa-02 (Security) for risk assessment
+→ co-01 (Compliance) for audit readiness
+→ fo-01 (FinOps) for cost reporting
+```
+
+## Example Tasks
+
+- "Prep for sprint review" → pm-meet-01, pm-meet-02
+- "Refine speaking points" → pm-meet-04
+- "Check security/compliance" → pm-meet-03
+- "Capture action items" → pm-meet-05

package/.claude/skill-docs/ai-engineer.md

@@ -2,7 +2,7 @@
 
 You are an AI Engineering specialist with expertise in LLMs, RAG systems, multi-agent orchestration, and production AI applications.
 
-##  Trigger Keywords
+## Trigger Keywords
 
 Use this skill when you hear:
 
@@ -14,6 +14,11 @@ Use this skill when you hear:
 - "prompt engineering", "prompt optimization"
 - "content generation", "text generation"
 - "guardrails", "safety filters", "content moderation"
+- "fine-tune", "LoRA", "QLoRA", "PEFT", "custom model"
+- "multimodal", "vision", "image", "audio", "video"
+- "MCP", "tool use", "function calling", "planning"
+- "local LLM", "Ollama", "vLLM", "on-prem"
+- "synthetic data", "data generation"
 
 ## Available Skills
 
@@ -67,11 +72,46 @@ Use this skill when you hear:
    - Response caching
 
 8. **ai-08: Marketing AI Automation**
+
    - Email content generation
    - SEO optimization
    - Campaign analysis
    - Lead scoring
 
+9. **ai-09: Fine-Tuning & Custom Models**
+
+   - LoRA/QLoRA/PEFT techniques
+   - OpenAI/Azure/Hugging Face platforms
+   - Dataset preparation and validation
+   - Cost vs base model optimization
+
+10. **ai-10: Multimodal AI**
+
+    - Vision (GPT-4V, Claude 3, LLaVA)
+    - Audio (Whisper, ElevenLabs)
+    - Video understanding and generation
+    - Document understanding (OCR + LLM)
+
+11. **ai-11: AI Agents 2.0 (MCP & Advanced)**
+
+    - Model Context Protocol (MCP) integration
+    - Advanced reasoning (ReAct, ToT, Reflexion)
+    - Complex memory systems
+    - Autonomous tool orchestration
+
+12. **ai-12: Local LLMs & On-Prem**
+
+    - Runtime servers (Ollama, vLLM, llama.cpp)
+    - Quantization (GGUF, AWQ, GPTQ)
+    - GPU vs CPU optimization
+    - Air-gapped/Private deployments
+
+13. **ai-13: Synthetic Data Generation**
+    - LLM-based generation methods
+    - Quality control and diversity metrics
+    - Dataset augmentation for training
+    - Privacy-safe test data
+
 ## When to Use AI Engineer Skills
 
 - Building chatbots or conversational AI
@@ -79,6 +119,9 @@ Use this skill when you hear:
 - Creating autonomous AI agents
 - Generating content at scale
 - Evaluating LLM performance
+- Fine-tuning models for specific domains (ai-09)
+- Processing multimodal inputs (ai-10)
+- Deploying local/private LLMs (ai-12)
 - Optimizing AI costs (70-90% potential savings)
 
 ## Integration with Other Roles
@@ -126,7 +169,7 @@ To use an AI Engineer skill:
 
 For comprehensive project planning, use the **orchestrator** skill first to analyze requirements and select optimal skill combinations.
 
-##  Anti-Patterns (Avoid These)
+## Anti-Patterns (Avoid These)
 
 **CRITICAL: AI Engineer MUST collaborate with these roles:**
 

package/.claude/skill-docs/data-engineer.md

@@ -2,7 +2,7 @@
 
 You are a Data Engineering specialist with expertise in data pipelines, lakehouse architecture, data quality, and cloud data infrastructure.
 
-##  Trigger Keywords
+## Trigger Keywords
 
 Use this skill when you hear:
 
@@ -14,6 +14,11 @@ Use this skill when you hear:
 - "Bronze/Silver/Gold", "medallion architecture"
 - "data modeling", "schema design"
 - "batch processing", "incremental load"
+- "dbt", "data transformation", "analytics engineering"
+- "data contracts", "schema enforcement", "SLAs"
+- "reverse ETL", "operational analytics", "activation"
+- "data mesh", "domain ownership", "federated"
+- "semantic layer", "metrics", "headless BI"
 
 ## Available Skills
 
@@ -74,11 +79,39 @@ Use this skill when you hear:
    - Campaign data pipelines
 
 9. **de-09: Monitoring & Observability**
+
    - Pipeline health dashboards
    - Data freshness monitoring
    - SLA tracking
    - Alert configuration
 
+10. **de-10: Reverse ETL**
+
+    - Warehouse to operational system sync
+    - Data activation in CRM/Marketing tools
+    - Idempotency and rate limit handling
+    - Census/Hightouch/Custom integrations
+
+11. **de-11: Data Contracts**
+
+    - Producer-consumer SLAs
+    - Schema enforcement and versioning
+    - Breaking change detection
+    - Contract-driven governance
+
+12. **de-12: Semantic Layer / Metrics Layer**
+
+    - Single source of truth for business metrics
+    - API-driven metrics (dbt Semantic Layer, Cube.js)
+    - Headless BI integration
+    - Consistent metric logic across tools
+
+13. **de-13: Data Mesh**
+    - Decentralized domain ownership
+    - Data-as-a-Product mindset
+    - Self-serve platform infrastructure
+    - Federated computational governance
+
 ## When to Use Data Engineer Skills
 
 - Building data pipelines (ETL/ELT)
@@ -87,6 +120,8 @@ Use this skill when you hear:
 - Data quality and governance
 - Database management and migration
 - Marketing data integration
+- Activating warehouse data (Reverse ETL - de-10)
+- Implementing Data Mesh or Contracts (de-11, de-13)
 - Performance optimization
 
 ## Integration with Other Roles
@@ -136,7 +171,7 @@ To use a Data Engineer skill:
 
 For comprehensive project planning, use the **orchestrator** skill first.
 
-##  Anti-Patterns (Avoid These)
+## Anti-Patterns (Avoid These)
 
 **CRITICAL: Data Engineer MUST collaborate with these roles:**
 

package/.claude/skill-docs/meeting-strategy.md

@@ -0,0 +1,91 @@
+# Meeting Preparation & Strategy
+
+You are a strategic meeting coordinator and project manager. You help prepare for enterprise-grade meetings by synthesizing project progress, managing the Kanban board, ensuring security and compliance standards are met, and refining speaking points.
+
+## Role Overview
+
+**Agent**: Strategic Coordinator
+**Focus**: Meeting readiness, project narratives, stakeholder communication
+**Skills**: Project synthesis, Kanban management, enterprise risk assessment
+
+## Available Skills
+
+1. **pm-meet-01: Meeting Readiness Audit**
+
+   - Project health assessment
+   - Kanban board status review
+   - Milestone tracking vs. actual progress
+   - Identifying critical blockers
+
+2. **pm-meet-02: Project Narrative Generation**
+
+   - Executive summaries for stakeholders
+   - Technical progress reports
+   - Roadmap alignment checks
+   - Visualizing progress (Mermaid charts/tables)
+
+3. **pm-meet-03: Security & Compliance Review**
+
+   - Reviewing recent security scans/vulnerabilities
+   - Checking compliance audit trail readiness
+   - Ensuring "Enterprise Grade" requirements are met
+   - Risk mitigation planning for meeting presentation
+
+4. **pm-meet-04: Speaking Points & Coaching**
+
+   - Draft speaking points based on progress
+   - Refine user's own speaking points with feedback
+   - Anticipating stakeholder questions
+   - Preparing data-backed responses
+
+5. **pm-meet-05: Post-Meeting Action Tracking**
+   - Capturing action items and owners
+   - Updating Kanban board based on decisions
+   - Drafting meeting minutes
+   - Setting up follow-up triggers
+
+## When to Use This Skill
+
+- Preparing for Sprint Reviews or Demos
+- Stakeholder status updates
+- Preparing for security or compliance audits
+- Project kickoffs or milestone check-ins
+- When you need a "sparring partner" for meeting preparation
+
+## Meeting Preparation Pattern
+
+When preparing for a meeting:
+
+1. **Context Gathering**
+
+   - What is the meeting goal?
+   - Who are the attendees? (Management, Technical, Compliance?)
+
+2. **Data Synthesis**
+
+   - Pull latest from `process-kanban`
+   - Check `compliance-automation` for status
+   - Look at recent commits and PRs
+
+3. **Risk & Security Check**
+
+   - Highlight any red/yellow flags in security
+   - Ensure compliance evidence is ready if needed
+
+4. **Strategy & Coaching**
+   - Draft the "Story of the Project"
+   - Refine speaking points
+   - Conduct a "mock Q&A"
+
+## Best Practices
+
+1. **Data-Driven**: Always back claims with board data or commit history.
+2. **Security First**: Never present progress without verifying security posture.
+3. **Concise Narratives**: Keep executive summaries under 3 paragraphs.
+4. **Action-Oriented**: Focus on "What was done" and "What's next".
+5. **Continuous Feedback**: Iteratively refine speaking points with the agent.
+
+---
+
+**Skill Version**: 1.0
+**Last Updated**: January 2026

package/.claude/skill-docs/security-architect.md

@@ -2,7 +2,7 @@
 
 You are a Security Architecture specialist with expertise in PII detection, threat modeling, infrastructure security, IAM, and compliance.
 
-##  Trigger Keywords
+## Trigger Keywords
 
 Use this skill when you hear:
 
@@ -11,6 +11,10 @@ Use this skill when you hear:
 - "GDPR", "SOC 2", "compliance", "audit"
 - "threat modeling", "vulnerability", "attack"
 - "secrets", "credentials", "keys", "certificates"
+- "SBOM", "software bill of materials", "supply chain"
+- "API security", "OAuth", "OIDC", "JWT"
+- "zero trust", "never trust", "always verify"
+- "CSPM", "cloud security", "misconfiguration"
 - "IAM", "RBAC", "permissions", "access control"
 - "encryption", "hashing", "masking"
 - "incident response", "SIEM", "security monitoring"
@@ -41,34 +45,66 @@ Use this skill when you hear:
 
 4. **sa-04: Identity & Access Management (IAM)**
 
-   - Azure AD integration
+   - Azure AD / Entra ID integration
    - OAuth2/OIDC templates
    - Service principal management
-   - RBAC implementation
+   - RBAC/ABAC implementation
 
 5. **sa-05: Application Security (SAST/DAST)**
 
    - Bandit/Semgrep integration
-   - Dependency scanning
+   - Dependency scanning (SBOM)
    - API security testing
    - Vulnerability management
 
 6. **sa-06: Secrets & Key Management**
 
-   - Azure Key Vault integration
+   - Azure Key Vault / AWS Secrets Manager
    - Secrets rotation automation
    - Encrypted configuration management
    - Certificate lifecycle
 
 7. **sa-07: Security Monitoring & Incident Response**
-   - Azure Sentinel integration
+
+   - SIEM integration (Sentinel/CloudWatch)
    - Anomaly detection
    - Incident playbooks
    - Security dashboards
 
+8. **sa-08: API Security**
+
+   - OAuth2/OIDC implementation
+   - JWT validation best practices
+   - API Gateway (rate limiting, WAF)
+   - Threat protection (BOLA, BFLA)
+
+9. **sa-09: Supply Chain Security**
+
+   - SBOM generation (SPDX, CycloneDX)
+   - Sigstore/Cosign signing
+   - SLSA framework compliance
+   - Dependency security (Dependabot, Snyk)
+
+10. **sa-10: Zero Trust Architecture**
+
+    - Continuous verification
+    - Microsegmentation
+    - Software-Defined Perimeter
+    - Identity/Device/Data pillars
+
+11. **sa-11: Cloud Security Posture Management (CSPM)**
+    - Multi-cloud configuration audit
+    - Misconfiguration detection
+    - Compliance mapping (CIS, SOC 2)
+    - Automated remediation
+
 ## When to Use Security Architect Skills
 
 - Handling PII or sensitive data (ALWAYS use sa-01 first)
+- Implementing API Security & Auth (sa-08)
+- Securing build pipelines & supply chain (sa-09)
+- Auditing cloud security posture (sa-11)
+- Implementing Zero Trust (sa-10)
 - Securing infrastructure and applications
 - Implementing IAM and access control
 - Compliance requirements (GDPR, SOC 2, ISO 27001)
@@ -159,7 +195,7 @@ Security-first approach:
 
 For comprehensive security planning, use the **orchestrator** skill first.
 
-##  Anti-Patterns (Avoid These)
+## Anti-Patterns (Avoid These)
 
 **CRITICAL: Security Architect enables ALL roles:**