tractorjuice/arckit-score
skills/arckit-score/SKILL.md
Score vendor proposals against evaluation criteria with persistent structured storage
$ install --global
skillsauthnpx skillsauth add tractorjuice/arckit-codex arckit-scoreInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Jun 4, 2026, 3:06 AM178.9s2 files scanned
SKILL.md
- name:
- arckit-score
- description:
- Score vendor proposals against evaluation criteria with persistent structured storage
Vendor Scoring
You are helping an enterprise architect score vendor proposals against evaluation criteria, compare vendors, and maintain an auditable scoring record.
User Input
$ARGUMENTS
Note: Before generating, scan
projects/for existing project directories. For each project, list allARC-*.mdartifacts, checkexternal/for reference documents, and check000-global/for cross-project policies. If no external docs exist but they would improve output, ask the user.
Sub-Actions
Parse the first word of $ARGUMENTS to determine which action to perform:
Action 1: vendor <name> --project=NNN
Score a specific vendor against the project's evaluation criteria.
-
Read the project's EVAL artifact (evaluation criteria):
- If no EVAL exists, tell the user to run
$arckit-evaluatefirst - Extract all evaluation criteria with their weights and categories
- If no EVAL exists, tell the user to run
-
Read vendor proposal from
projects/{id}/vendors/{vendor-name}/:- If the directory doesn't exist, create it
- Read any
.mdor.pdffiles as vendor proposal content
Government award history (if present): When scoring criteria related to vendor experience, track record, capability, or past performance, check for a
## Government Award Historysection inprojects/{id}/vendors/{slug}-profile.md(or aCMPTCompetitor Landscape artefact inresearch/). If it records UK government contract wins for this vendor (values, buyers, notice URLs), cite that as objective evidence for the relevant criterion's score, carrying the caveat that awarded value is not actual spend (it evidences track record, not committed cost). Run$arckit-competitors --supplier '<vendor>'to generate it if absent. -
Read existing scores from
projects/{id}/vendors/scores.json(if exists) -
Score each criterion using the 0-3 rubric: | Score | Meaning | Description | |-------|---------|-------------| | 0 | Not Met | No evidence of capability; does not address the criterion | | 1 | Partially Met | Some evidence but significant gaps remain | | 2 | Met | Fully addresses the criterion with adequate evidence | | 3 | Exceeds | Goes beyond requirements with strong differentiation |
-
For each score, provide:
- The numeric score (0-3)
- Evidence from the vendor proposal supporting the score
- Any risks or caveats noted
-
Calculate weighted totals:
- Use weights from the EVAL criteria (default to equal weighting if none specified)
totalWeighted = sum(score * weight) / sum(weight)totalRaw = sum(scores)maxPossible = 3 * number_of_criteria
-
Write scores to
projects/{id}/vendors/scores.json:{ "projectId": "001", "lastUpdated": "2026-03-08T10:00:00Z", "criteria": [ { "id": "C-001", "name": "Technical Capability", "weight": 0.25, "category": "Technical" } ], "vendors": { "acme-cloud": { "displayName": "Acme Cloud Services", "scoredDate": "2026-03-08T10:00:00Z", "scoredBy": "Architecture Team", "scores": [ { "criterionId": "C-001", "score": 3, "evidence": "Demonstrated...", "risks": "" } ], "totalWeighted": 2.45, "totalRaw": 5, "maxPossible": 6 } } } -
Output a markdown summary to console showing all scores with evidence.
Action 2: compare --project=NNN
Generate a side-by-side vendor comparison.
-
Read
projects/{id}/vendors/scores.json— if it doesn't exist or has fewer than 2 vendors, explain what's needed -
Output comparison table:
## Vendor Comparison: Project 001 | Criterion | Weight | Acme Cloud | Beta Systems | Gamma Tech | |-----------|--------|------------|--------------|------------| | Technical Capability | 25% | 3 | 2 | 2 | | Security Compliance | 20% | 2 | 3 | 1 | | **Weighted Total** | | **2.45** | **2.30** | **1.95** | ### Recommendation **Acme Cloud** scores highest overall (2.45/3.00). ### Risk Summary - Acme Cloud: [aggregated risks from scoring] - Beta Systems: [aggregated risks from scoring] ### Sensitivity Analysis Show how the ranking changes if the top-weighted criterion weight is adjusted by +/- 10%. -
Include sensitivity analysis: Vary the weight of each criterion by ±10% to identify which criteria are decisive.
Action 3: audit --project=NNN
Show the scoring audit trail.
-
Read
projects/{id}/vendors/scores.json -
Output chronological audit:
## Scoring Audit Trail: Project 001 | Date | Vendor | Scored By | Weighted Score | Criteria Count | |------|--------|-----------|----------------|----------------| | 2026-03-08 | Acme Cloud | Architecture Team | 2.45/3.00 | 8 | | 2026-03-07 | Beta Systems | Architecture Team | 2.30/3.00 | 8 | -
Show total vendors scored, date range, and whether any vendors are missing scores.
Default (no action specified)
If no recognised action, show usage:
Usage: $arckit-score <action> [options]
Actions:
vendor <name> --project=NNN Score a vendor against evaluation criteria
compare --project=NNN Side-by-side vendor comparison
audit --project=NNN Scoring audit trail
Examples:
$arckit-score vendor "Acme Cloud" --project=001
$arckit-score compare --project=001
$arckit-score audit --project=001
Important Notes
- Always preserve existing vendor scores when adding a new vendor — append, don't overwrite
- Criterion IDs must be consistent across all vendors in the same project
- The scores.json validator hook will warn if weights don't sum to 1.0 or scores are out of range
- Evidence field is mandatory — never assign a score without citing supporting evidence from the proposal
Suggested Next Steps
After completing this command, consider running:
$arckit-evaluate-- Create or update evaluation framework before scoring (when No EVAL artifact exists for the project)$arckit-sow-- Generate Statement of Work for selected vendor (when Vendor selection complete, ready for procurement)$arckit-competitors-- Generate the vendor's UK award-history evidence for scoring (when UK government procurement context)
Related Skills
tractorjuice/arckit-tenders
tools
VerifiedTrustedCommunity
Procurement market intelligence — award-value benchmarks, top suppliers, incumbency and concentration, from the UK Tenders MCP
15SKILL.mdUpdated Jun 4, 2026
tractorjuice/arckit-competitors
tools
VerifiedTrustedCommunity
Competitor landscape — rival suppliers, awarded-value market share, head-to-head and concentration, from the UK Tenders MCP
15SKILL.mdUpdated Jun 4, 2026
tractorjuice/arckit-au-soci-cirmp
development
VerifiedTrustedCommunity
[COMMUNITY] Generate a SOCI Act Critical Infrastructure Risk Management Program (CIRMP) governance and evidence pack for Australian critical infrastructure assets.
15SKILL.mdUpdated Jun 4, 2026
tractorjuice/arckit-au-ot-security
development
VerifiedTrustedCommunity
[COMMUNITY] Generate an ASD operational technology cyber security assessment for Australian Government and critical-infrastructure projects with connected OT environments.
15SKILL.mdUpdated Jun 4, 2026