Skip to content

feat: discover-environment skill + diagram fixes + agent-bom CI#9

Merged
msaad00 merged 1 commit intomainfrom
enhance/diagrams-and-ci
Apr 9, 2026
Merged

feat: discover-environment skill + diagram fixes + agent-bom CI#9
msaad00 merged 1 commit intomainfrom
enhance/diagrams-and-ci

Conversation

@msaad00
Copy link
Copy Markdown
Owner

@msaad00 msaad00 commented Apr 9, 2026

Summary

New skill: discover-environment

  • Maps cloud resources to security graph with MITRE ATT&CK (9 techniques) and ATLAS (6 techniques) overlays
  • Supports: AWS (boto3), GCP (google-cloud), Azure (azure-mgmt), static config (JSON/YAML)
  • Output: standalone graph JSON — no agent-bom dependency, any tool can consume it
  • Entity types: user, service_account, credential, cloud_resource, server (Lambda/Functions)
  • Relationships: contains, owns, uses, exploitable_via
  • 15 tests covering graph model, MITRE mapping, static config, stats

Diagram fixes

  • Simplified model-serving and GPU cluster diagrams — removed spaghetti edges
  • Clean linear flow: Config → Benchmark → Output (no every-to-every connections)
  • All diagrams use consistent slate/teal/cyan/indigo palette (no red, no green)

CI additions

  • test-discover-environment job
  • agent-bom-scan — pip install + CLI for reliability (replaced GitHub Action)
  • agent-bom-skills-audit — skill definition security review
  • Both agent-bom jobs: continue-on-error: true, results uploaded as artifacts

Test plan

  • discover-environment: 15 tests passing
  • ruff check + format: all clean
  • Diagrams simplified — no spaghetti edges

@msaad00
feat: add discover-environment skill + fix diagram aesthetics
46a824b 
New skill: discover-environment
- Maps cloud resources to security graph with MITRE ATT&CK and ATLAS
  technique overlays (15 techniques across 8 resource types)
- Supports AWS (boto3), GCP (google-cloud), Azure (azure-mgmt), and
  static config (JSON/YAML — no SDK needed)
- Output: standalone graph JSON (nodes + edges + stats) compatible
  with any visualization tool
- 15 tests covering graph model, MITRE mapping, static config, stats

Diagram fixes:
- Simplified model-serving and GPU cluster diagrams — removed spaghetti
  edges (every-to-every connections). Clean linear flow instead.
- All diagrams now use consistent cloud palette (slate, teal, cyan,
  indigo — no red, no green)

CI: added test-discover-environment job
README + CLAUDE.md: added discover-environment to skills list
@msaad00 msaad00 merged commit 8d15c77 into main Apr 9, 2026
10 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@msaad00