grtninja/repo-c-mass-index-ops
skill-candidates/repo-c-mass-index-ops/SKILL.md
Run shard-first mass-index operations for <PRIVATE_REPO_C> governance lanes. Use when scanning policy schemas, ranking/trace contracts, and trust-layer boundaries in very large trees where scope partitioning is required.
$ install --global
skillsauthnpx skillsauth add grtninja/skill-arbiter repo-c-mass-index-opsInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 5, 2026, 2:40 PM188.9s3 files scanned
SKILL.md
- name:
- repo-c-mass-index-ops
- description:
- Run shard-first mass-index operations for <PRIVATE_REPO_C> governance lanes. Use when scanning policy schemas, ranking/trace contracts, and trust-layer boundaries in very large trees where scope partitioning is required.
REPO_C Mass Index Ops
Use this wrapper for governance-heavy discovery in very large <PRIVATE_REPO_C> repositories.
Governance Scan Sequence
- Build or refresh sharded index data with bounded budgets.
- Query policy and trust envelopes first, then narrow to contract files.
- Escalate to
safe-mass-index-coreonly for custom envelopes outside governance lanes.
Repo-C Anchors
Prioritize these governance contract anchors during triage:
policies/repo-c_policy.yamlpolicies/device_policy.jsonschemas/ranking_report.schema.jsontools/trace_validate.pyrepo_c_tracetrust_anchoremotion_ttl
Scope Boundary
Use this skill when the task is primarily about:
- Policy and schema contract surfaces.
- Trace/ranking packet contracts and validation tools.
- Cross-domain governance boundaries.
Do not use this skill for:
- Runtime connector incident scans.
- Electron/UI package scans.
Build Preset (Sharded Governance)
Run from <PRIVATE_REPO_C> root:
python3 "$CODEX_HOME/skills/safe-mass-index-core/scripts/index_build.py" \
--repo-root . \
--index-dir .codex-index \
--mode incremental \
--max-files-per-run 14000 \
--max-seconds 30 \
--max-read-bytes 67108864 \
--sharded \
--json-out .codex-index/run.json
Query Presets (Governance First)
Policy and schema scope:
python3 "$CODEX_HOME/skills/safe-mass-index-core/scripts/index_query.py" \
--index-dir .codex-index \
--scope policy \
--lang json \
--limit 220 \
--format table
Trace and ranking contract scope:
python3 "$CODEX_HOME/skills/safe-mass-index-core/scripts/index_query.py" \
--index-dir .codex-index \
--scope trace \
--path-contains trust_anchor \
--path-contains contract \
--lang python \
--limit 220 \
--format table
Reference
references/presets.md
Loopback
If a run is still ambiguous, pass shard settings, scope filters, and .codex-index/run.json evidence to $skill-hub for deterministic rerouting.
Related Skills
grtninja/white-hat
tools
VerifiedTrustedCommunity
Run a defender-first security sweep on code, configs, prompts, model/tooling surfaces, or third-party contribution lanes. Use when a request involves safe bug, leak, zero-day-class, exploit, or hack hunting for protection, when contributing to outside repositories and you want a focused security pass, or when touching auth, secrets, permissions, network exposure, prompt/tool boundaries, data flow, or update/build surfaces. This skill is defensive only and must never be used for weaponization or unauthorized access.
2SKILL.mdUpdated Apr 22, 2026
grtninja/vrm-sandbox-startup-acceptance
development
VerifiedTrustedCommunity
Validate and repair VRM Sandbox startup acceptance with shim-first local model authority, frontend/backend bring-up, and avatar-runtime launch proof. Use when launch behavior, chat handoff, voice fallback, or runtime bridge acceptance must be verified end to end.
2SKILL.mdUpdated Apr 22, 2026
grtninja/voice-catalog-runtime-alignment
documentation
VerifiedTrustedCommunity
Align documented voice-command catalogs, endpoint action allowances, and live runtime handlers so operator-visible voice surfaces match what the stack can actually execute. Use when voice command docs, parser matrices, endpoint permissions, or runtime action routing drift apart.
2SKILL.mdUpdated Apr 22, 2026
grtninja/skillhub-trend-radar
development
VerifiedTrustedCommunity
Track SkillHub trend and topic drift, maintain a bounded rewrite watchlist, and surface emerging gaps worth turning into repo-owned skills. Use when the marketplace query set shows new families or when the current shortlist has gone stale.
2SKILL.mdUpdated Apr 22, 2026