Skills
skills/danielmiessler/personal_ai_infrastructure/annualreports

annualreports

SKILL.md

Customization

Before executing, check for user customizations at: ~/.claude/skills/CORE/USER/SKILLCUSTOMIZATIONS/AnnualReports/

If this directory exists, load and apply any PREFERENCES.md, configurations, or resources found there. These override default behavior. If the directory does not exist, proceed with skill defaults.

AnnualReports - Security Report Aggregation

Aggregates and analyzes annual security reports from 570+ sources across the cybersecurity industry.

Source: awesome-annual-security-reports

Workflow Routing

  • UPDATE - Fetch latest report sources from GitHub -> Workflows/Update.md
  • ANALYZE - Analyze reports for trends and insights -> Workflows/Analyze.md
  • FETCH - Download specific reports -> Workflows/Fetch.md

Quick Reference

# Update sources from GitHub
bun run ~/.claude/skills/AnnualReports/Tools/UpdateSources.ts

# List all sources
bun run ~/.claude/skills/AnnualReports/Tools/ListSources.ts [category]

# Fetch a specific report
bun run ~/.claude/skills/AnnualReports/Tools/FetchReport.ts <vendor> <report-name>

Categories

Analysis Reports

  • Global Threat Intelligence (56 reports) - CrowdStrike, Microsoft, IBM, Mandiant, etc.
  • Regional Assessments (11 reports) - FBI, CISA, Europol, NCSC, etc.
  • Sector Specific Intelligence (13 reports) - Healthcare, Finance, Energy, Transport
  • Application Security (21 reports) - OWASP, Veracode, Snyk, GitGuardian
  • Cloud Security (11 reports) - Google Cloud, AWS, Wiz, Datadog
  • Vulnerabilities (14 reports) - Rapid7, VulnCheck, Edgescan
  • Ransomware (9 reports) - Veeam, Zscaler, Palo Alto
  • Data Breaches (6 reports) - Verizon DBIR, IBM Cost of Breach
  • Physical Security (6 reports) - Dragos, Nozomi, Waterfall
  • AI and Emerging Technologies (11 reports) - Anthropic, Google, Zimperium

Survey Reports

  • Industry Trends (68 reports) - WEF, ISACA, Splunk, Gartner
  • Executive Perspectives (7 reports) - CISO reports, Deloitte, Proofpoint
  • Workforce and Culture (5 reports) - ISC2, KnowBe4, CompTIA
  • Market and Investment Research (5 reports) - IT Harvest, Recorded Future
  • Application Security (9 reports) - Checkmarx, Snyk, Traceable
  • Cloud Security (7 reports) - Palo Alto, ISC2, Fortinet
  • Identity Security (19 reports) - CyberArk, Okta, SailPoint
  • Penetration Testing (5 reports) - HackerOne, Cobalt, Bugcrowd
  • Privacy and Data Protection (8 reports) - Cisco, Proofpoint, Drata
  • Ransomware (6 reports) - Sophos, Delinea, Semperis
  • AI and Emerging Technologies (12 reports) - Darktrace, Wiz, HiddenLayer

Data Files

  • Data/sources.json - All report sources with metadata
  • Reports/ - Downloaded report files (PDFs, markdown)

Examples

Example 1: Update sources from upstream

User: "Update the annual reports"
-> Invokes UPDATE workflow
-> Fetches latest README from GitHub
-> Parses and updates sources.json
-> Reports new/changed entries

Example 2: Find threat intelligence reports

User: "What threat reports are available?"
-> Lists Global Threat Intelligence category
-> Shows 56 reports from major vendors
-> Provides direct URLs

Example 3: Analyze ransomware trends

User: "Analyze ransomware reports"
-> Invokes ANALYZE workflow
-> Fetches relevant reports
-> Synthesizes findings across vendors
-> Produces trend analysis
Weekly Installs
4
Repository
danielmiessler/personal_ai_infrastructure
First Seen
3 days ago
Installed on
claude-code3
clawdbot2
opencode2
cursor2
codex2
antigravity2