{"skill":{"slug":"ztp","displayName":"ztp","summary":"A mandatory security audit skill for validating new code, skills, and MCP servers against the SEP-2026 Zero Trust protocol.","tags":{"latest":"2.0.0"},"stats":{"comments":0,"downloads":668,"installsAllTime":0,"installsCurrent":0,"stars":0,"versions":1},"createdAt":1771192134776,"updatedAt":1778558883290},"latestVersion":{"version":"2.0.0","createdAt":1771192134776,"changelog":"ZTP 2.0.0 introduces a comprehensive mandatory security audit skill based on the SEP-2026 Zero Trust protocol.\n\n- Enforces static code analysis and supply chain security checks for all new Skills, MCP Servers, and scripts.\n- Provides step-by-step audit workflow and clear criteria for accept/reject decisions.\n- Integrates the Shield Pro 2.0 analyzer, with optional support for SOTA tools (Bandit, Safety, npm audit, Trivy, Garak).\n- Ensures all code is scanned before use or execution, prioritizing Zero Trust and non-execution principles.\n- Supplies clear usage instructions and actionable output thresholds for manual review or rejection.\n\nInspired by https://www.youtube.com/watch?v=AGxcQ-j64Ms&t=2s","license":null},"metadata":null,"owner":{"handle":"thomastrumpp","userId":"publishers:thomastrumpp","displayName":"thomastrumpp","image":"https://avatars.githubusercontent.com/u/6625060?v=4"},"moderation":{"isSuspicious":true,"isMalwareBlocked":false,"verdict":"suspicious","reasonCodes":["suspicious.llm_suspicious"],"summary":"Detected: suspicious.llm_suspicious","engineVersion":"v2.4.24","updatedAt":1778558883290}}