PHPackages netresearch/agent-enterprise-readiness - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. netresearch/agent-enterprise-readiness ActiveAi-agent-skill[Security](/categories/security) netresearch/agent-enterprise-readiness ====================================== Netresearch AI skill for enterprise security assessment, SLSA compliance and quality automation v4.11.0(1mo ago)20[2 issues](https://github.com/netresearch/enterprise-readiness-skill/issues)(MIT AND CC-BY-SA-4.0)ShellCI passing Since Dec 16Pushed 1mo ago1 watchersCompare [ Source](https://github.com/netresearch/enterprise-readiness-skill)[ Packagist](https://packagist.org/packages/netresearch/agent-enterprise-readiness)[ RSS](/packages/netresearch-agent-enterprise-readiness/feed)WikiDiscussions main Synced 1mo ago READMEChangelog (10)Dependencies (2)Versions (31)Used By (0) Enterprise Readiness Skill ========================== [](#enterprise-readiness-skill) Netresearch AI skill for assessing and enhancing software projects to meet enterprise-grade standards for security, quality, and automation. 🔌 Compatibility --------------- [](#-compatibility) This is an **Agent Skill** following the [open standard](https://agentskills.io) originally developed by Anthropic and released for cross-platform use. **Supported Platforms:** - ✅ Claude Code (Anthropic) - ✅ Cursor - ✅ GitHub Copilot - ✅ Other skills-compatible AI agents > Skills are portable packages of procedural knowledge that work across any AI agent supporting the Agent Skills specification. Features -------- [](#features) - **OpenSSF Framework Alignment** - Complete coverage across Scorecard, Best Practices Badge (Passing/Silver/Gold), SLSA, and S2C2F - **Dynamic Scoring** - Fair cross-stack assessment with platform/language-specific criteria - **Supply Chain Security** - SLSA provenance, artifact signing, SBOM generation, dependency scanning - **Quality Gates** - Testing layers, coverage thresholds, static analysis, secret scanning - **Automation Scripts** - Ready-to-use scripts for security hardening and compliance checks - **Badge Progression** - Guided path from Passing → Silver → Gold certification Installation ------------ [](#installation) ### Marketplace (Recommended) [](#marketplace-recommended) Add the [Netresearch marketplace](https://github.com/netresearch/claude-code-marketplace) once, then browse and install skills: ``` # Claude Code /plugin marketplace add netresearch/claude-code-marketplace ``` ### npx ([skills.sh](https://skills.sh)) [](#npx-skillssh) Install with any [Agent Skills](https://agentskills.io)-compatible agent: ``` npx skills add https://github.com/netresearch/enterprise-readiness-skill --skill enterprise-readiness ``` ### Download Release [](#download-release) Download the [latest release](https://github.com/netresearch/enterprise-readiness-skill/releases/latest) and extract to your agent's skills directory. ### Git Clone [](#git-clone) ``` git clone https://github.com/netresearch/enterprise-readiness-skill.git ``` ### Composer (PHP Projects) [](#composer-php-projects) ``` composer require netresearch/enterprise-readiness-skill ``` Requires [netresearch/composer-agent-skill-plugin](https://github.com/netresearch/composer-agent-skill-plugin). Usage ----- [](#usage) The skill triggers on keywords like: - "enterprise readiness", "production ready" - "OpenSSF", "security scorecard", "best practices badge" - "SLSA", "supply chain security", "SBOM" - "quality gates", "CI/CD hardening" ### Example Prompts [](#example-prompts) ``` "Assess this project for enterprise readiness" "What's needed for OpenSSF Best Practices Silver badge?" "Help me reach SLSA Level 2" "Set up supply chain security for this Go project" ``` Structure --------- [](#structure) ``` enterprise-readiness/ ├── SKILL.md # AI instructions ├── README.md # This file ├── LICENSE-MIT # Code license (MIT) ├── LICENSE-CC-BY-SA-4.0 # Content license (CC-BY-SA-4.0) ├── composer.json # PHP distribution ├── references/ # OpenSSF criteria documentation │ ├── general.md # Universal checks (60 points) │ ├── github.md # GitHub-specific (40 points) │ ├── go.md # Go-specific (20 points) │ ├── openssf-badge-silver.md │ └── openssf-badge-gold.md ├── scripts/ # Automation scripts │ ├── check-*.sh # Validation scripts │ └── setup-*.sh # Configuration scripts └── assets/ # Templates and configs └── templates/ # CI/CD, SBOM, policy templates ``` Contributing ------------ [](#contributing) Contributions welcome! Please submit PRs for: - Additional platform support (GitLab, Bitbucket) - New language-specific checks - Script improvements - Documentation updates License ------- [](#license) This project uses split licensing: - **Code** (scripts, workflows, configs): [MIT](LICENSE-MIT) - **Content** (skill definitions, documentation, references): [CC-BY-SA-4.0](LICENSE-CC-BY-SA-4.0) See the individual license files for full terms. Credits ------- [](#credits) Developed and maintained by [Netresearch DTT GmbH](https://www.netresearch.de/). --- **Made with ❤️ for Open Source by [Netresearch](https://www.netresearch.de/)** ### Health Score 36 — LowBetter than 81% of packages Maintenance79 Regular maintenance activity Popularity3 Limited adoption so far Community10 Small or concentrated contributor base Maturity45 Maturing project, gaining track record Bus Factor1 Top contributor holds 98.4% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~4 days Total 25 Last Release 38d ago Major Versions v3.9.0 → v4.0.02026-01-19 ### Community Maintainers ![](https://www.gravatar.com/avatar/acffee6a64e18f21593794b335dd8786001148f7df89fd8372a54d3dd09d91a4?d=identicon)[netresearch](/maintainers/netresearch) --- Top Contributors [![CybotTM](https://avatars.githubusercontent.com/u/326348?v=4)](https://github.com/CybotTM "CybotTM (188 commits)")[![renovate[bot]](https://avatars.githubusercontent.com/in/2740?v=4)](https://github.com/renovate[bot] "renovate[bot] (2 commits)")[![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?v=4)](https://github.com/github-actions[bot] "github-actions[bot] (1 commits)") --- Tags agent-skillsai-agentclaude-code-skilldevsecopsenterpriseopen-standardopenssfsecurityskillslsasupply-chain-security ### Embed Badge ![Health badge](/badges/netresearch-agent-enterprise-readiness/health.svg) ``` [![Health](https://phpackages.com/badges/netresearch-agent-enterprise-readiness/health.svg)](https://phpackages.com/packages/netresearch-agent-enterprise-readiness) ``` ### Alternatives [defuse/php-encryption Secure PHP Encryption Library 3.9k162.4M212](/packages/defuse-php-encryption)[roave/security-advisories Prevents installation of composer packages with known security vulnerabilities: no API, simply require it 2.9k97.3M6.4k](/packages/roave-security-advisories)[mews/purifier Laravel 5/6/7/8/9/10 HtmlPurifier Package 2.0k16.7M112](/packages/mews-purifier)[robrichards/xmlseclibs A PHP library for XML Security 41278.1M118](/packages/robrichards-xmlseclibs)[bjeavons/zxcvbn-php Realistic password strength estimation PHP library based on Zxcvbn JS 86917.5M63](/packages/bjeavons-zxcvbn-php)[enlightn/security-checker A PHP dependency vulnerabilities scanner based on the Security Advisories Database. 33732.2M110](/packages/enlightn-security-checker) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)