skills for everythingopenssf-scorecard-achievement-guide
Complete OpenSSF Scorecard achievement guide. Understand all 18 security checks, fix false positives, navigate controversial recommendations, and progress from 7 to 10/10.
SKILL.md
| Name | openssf-scorecard-achievement-guide |
| Description | Complete OpenSSF Scorecard achievement guide. Understand all 18 security checks, fix false positives, navigate controversial recommendations, and progress from 7 to 10/10. |
Adaptive Enforcement Lab - Claude Code Skills
Claude Code skills marketplace for secure development patterns, enforcement automation, and build engineering.
Status: š§ Under active development
Installation
# Add the AEL skills marketplace
/plugin marketplace add adaptive-enforcement-lab/claude-skills
# Install individual plugin collections
/plugin install patterns@ael-skills
/plugin install enforcement@ael-skills
/plugin install build@ael-skills
Available Skills
Patterns (Development)
Reusable engineering patterns automatically generated from AEL documentation:
- Error handling patterns (fail-fast, circuit breakers, retry logic)
- State management patterns
- Performance optimization patterns
- Resilience and fault tolerance patterns
Enforcement (Security)
Security and compliance enforcement automation from AEL enforcement guides:
- Pre-commit hook setup and configuration
- Policy validation automation
- Security scanning integration
- Compliance checking workflows
Build (DevOps)
Build engineering patterns from AEL build guides:
- CI/CD pipeline patterns
- Release automation strategies
- Deployment patterns
- Build optimization techniques
Automated Generation
All skills in this repository are automatically generated from AEL documentation:
- Source: adaptive-enforcement-lab.com
- Generator: Go-based extraction pipeline
- CI/CD: GitHub Actions workflows
- Sync: Skills update automatically when documentation changes
Team Distribution
To auto-register this marketplace for your team, add to .claude/settings.json in your project:
{
"extraKnownMarketplaces": {
"ael-skills": {
"source": {
"source": "github",
"repo": "adaptive-enforcement-lab/claude-skills"
}
}
},
"enabledPlugins": {
"patterns@ael-skills": true,
"enforcement@ael-skills": true,
"build@ael-skills": true
}
}
Repository Structure
.claude-plugin/
āāā marketplace.json # Marketplace catalog
plugins/ # Generated plugins (DO NOT EDIT)
āāā patterns/
ā āāā .claude-plugin/
ā ā āāā plugin.json # Plugin metadata
ā āāā skills/ # Pattern skills
āāā enforce/
ā āāā .claude-plugin/
ā ā āāā plugin.json # Plugin metadata
ā āāā skills/ # Enforcement skills
āāā build/
ā āāā .claude-plugin/
ā ā āāā plugin.json # Plugin metadata
ā āāā skills/ # Build skills
āāā secure/
āāā .claude-plugin/
ā āāā plugin.json # Plugin metadata
āāā skills/ # Security skills
skillgen/ # Generator source
āāā cmd/skillgen/ # Main application
āāā internal/
ā āāā domain/ # Core entities
ā āāā ports/ # Interfaces
ā āāā adapters/ # Implementations
ā āāā services/ # Business logic
āāā templates/ # Go templates
.github/workflows/
āāā generate-skills.yml # CI automation
Development
# Build the generator
cd skillgen && go build -o ../bin/skillgen ./cmd/skillgen
# Run generator (from repo root)
./bin/skillgen \
--source ../adaptive-enforcement-lab-com/docs \
--output plugins \
--plugin-metadata ./plugin-metadata.json \
--release-manifest ./.release-please-manifest.json
# Run tests
cd skillgen && go test ./...
See CONTRIBUTING.md for detailed development guidelines.
Architecture
This project follows Clean/Hexagonal Architecture:
- Domain (
internal/domain): Core entities and business logic - Ports (
internal/ports): Interfaces for external dependencies - Adapters (
internal/adapters): Implementations (filesystem, parsers) - Services (
internal/services): Application services (extractors, generators) - CMD (
cmd/skillgen): Entry point and dependency injection
Releases
Releases are automated using release-please:
- Conventional commits trigger version bumps
- Changelog is auto-generated
- GitHub releases include pre-built binaries for Linux, macOS, and Windows
Contributing
Contributions are welcome! See CONTRIBUTING.md for:
- Development setup
- Code standards
- Commit message format
- Pull request process
Security
For security vulnerability reporting, see SECURITY.md.
Mission
Turn secure development into an enforced standard, not an afterthought.
Links
License
MIT