Launch release 0.2.0.

Author: Sushegaad

.claude-plugin/marketplace.json

@@ -1,7 +1,7 @@
 {
   "$schema": "https://anthropic.com/claude-code/marketplace.schema.json",
   "name": "grc-skills",
-  "description": "Claude Code skills for Governance, Risk & Compliance — ISO 27001, SOC 2, FedRAMP, GDPR, HIPAA, NIST CSF, PCI DSS, TSA Cybersecurity, and ISO 42001 AI Management System.",
+  "description": "Claude Code skills for Governance, Risk & Compliance \u2014 ISO 27001, SOC 2, FedRAMP, GDPR, HIPAA, NIST CSF, PCI DSS, TSA Cybersecurity, and ISO 42001 AI Management System.",
   "owner": {
     "name": "Hemant Naik",
     "email": "[email protected]"
@@ -11,118 +11,195 @@
       "name": "iso27001",
       "source": "./plugins/iso27001",
       "description": "Expert ISO 27001 gap analysis, policy writing, Annex A control guidance, SoA generation, and risk register creation for both 2013 and 2022 versions.",
-      "version": "0.1.0",
+      "version": "0.2.0",
       "author": {
         "name": "Hemant Naik",
         "email": "[email protected]"
       },
       "homepage": "https://sushegaad.github.io/Claude-Skills-Governance-Risk-and-Compliance/",
       "category": "compliance",
-      "keywords": ["iso27001", "isms", "compliance", "security", "grc", "gap-analysis", "annex-a"]
+      "keywords": [
+        "iso27001",
+        "isms",
+        "compliance",
+        "security",
+        "grc",
+        "gap-analysis",
+        "annex-a"
+      ]
     },
     {
       "name": "soc2",
       "source": "./plugins/soc2",
-      "description": "Expert SOC 2 compliance advisor covering all Trust Services Criteria — gap analysis, policy drafting, control documentation, audit evidence, and vendor risk.",
-      "version": "0.1.0",
+      "description": "Expert SOC 2 compliance advisor covering all Trust Services Criteria \u2014 gap analysis, policy drafting, control documentation, audit evidence, and vendor risk.",
+      "version": "0.2.0",
       "author": {
         "name": "Hemant Naik",
         "email": "[email protected]"
       },
       "homepage": "https://sushegaad.github.io/Claude-Skills-Governance-Risk-and-Compliance/",
       "category": "compliance",
-      "keywords": ["soc2", "aicpa", "trust-services", "audit", "compliance", "grc"]
+      "keywords": [
+        "soc2",
+        "aicpa",
+        "trust-services",
+        "audit",
+        "compliance",
+        "grc"
+      ]
     },
     {
       "name": "fedramp",
       "source": "./plugins/fedramp",
-      "description": "End-to-end FedRAMP authorization guidance — readiness assessments, SSP narratives, POA&M management, NIST 800-53 Rev 5 control mapping, and ConMon support.",
-      "version": "0.1.0",
+      "description": "End-to-end FedRAMP authorization guidance \u2014 readiness assessments, SSP narratives, POA&M management, NIST 800-53 Rev 5 control mapping, and ConMon support.",
+      "version": "0.2.0",
       "author": {
         "name": "Hemant Naik",
         "email": "[email protected]"
       },
       "homepage": "https://sushegaad.github.io/Claude-Skills-Governance-Risk-and-Compliance/",
       "category": "compliance",
-      "keywords": ["fedramp", "nist", "ato", "ssp", "poam", "federal", "cloud-security", "grc"]
+      "keywords": [
+        "fedramp",
+        "nist",
+        "ato",
+        "ssp",
+        "poam",
+        "federal",
+        "cloud-security",
+        "grc"
+      ]
     },
     {
       "name": "gdpr-compliance",
       "source": "./plugins/gdpr-compliance",
-      "description": "GDPR compliance assistant — code and system audits, privacy notice drafting, DPAs, DPIAs, data flow reviews, and authoritative article-cited Q&A.",
-      "version": "0.1.0",
+      "description": "GDPR compliance assistant \u2014 code and system audits, privacy notice drafting, DPAs, DPIAs, data flow reviews, and authoritative article-cited Q&A.",
+      "version": "0.2.0",
       "author": {
         "name": "Hemant Naik",
         "email": "[email protected]"
       },
       "homepage": "https://sushegaad.github.io/Claude-Skills-Governance-Risk-and-Compliance/",
       "category": "compliance",
-      "keywords": ["gdpr", "privacy", "data-protection", "dpa", "dpia", "eu", "grc"]
+      "keywords": [
+        "gdpr",
+        "privacy",
+        "data-protection",
+        "dpa",
+        "dpia",
+        "eu",
+        "grc"
+      ]
     },
     {
       "name": "hipaa-compliance",
       "source": "./plugins/hipaa-compliance",
-      "description": "HIPAA compliance advisor covering Privacy Rule, Security Rule, and Breach Notification — document generation, technical safeguards for cloud, and breach response.",
-      "version": "0.1.0",
+      "description": "HIPAA compliance advisor covering Privacy Rule, Security Rule, and Breach Notification \u2014 document generation, technical safeguards for cloud, and breach response.",
+      "version": "0.2.0",
       "author": {
         "name": "Hemant Naik",
         "email": "[email protected]"
       },
       "homepage": "https://sushegaad.github.io/Claude-Skills-Governance-Risk-and-Compliance/",
       "category": "compliance",
-      "keywords": ["hipaa", "phi", "healthcare", "baa", "privacy-rule", "security-rule", "grc"]
+      "keywords": [
+        "hipaa",
+        "phi",
+        "healthcare",
+        "baa",
+        "privacy-rule",
+        "security-rule",
+        "grc"
+      ]
     },
     {
       "name": "nist-csf",
       "source": "./plugins/nist-csf",
-      "description": "NIST Cybersecurity Framework (CSF 2.0 and 1.1) advisor — gap assessments, organisational profiles, implementation tiers, roadmaps, cross-framework mapping, and cybersecurity policy generation.",
-      "version": "0.1.0",
+      "description": "NIST Cybersecurity Framework (CSF 2.0 and 1.1) advisor \u2014 gap assessments, organisational profiles, implementation tiers, roadmaps, cross-framework mapping, and cybersecurity policy generation.",
+      "version": "0.2.0",
       "author": {
         "name": "Hemant Naik",
         "email": "[email protected]"
       },
       "homepage": "https://sushegaad.github.io/Claude-Skills-Governance-Risk-and-Compliance/",
       "category": "compliance",
-      "keywords": ["nist-csf", "cybersecurity-framework", "csf20", "risk-management", "cybersecurity", "grc", "gap-assessment", "profiles", "tiers"]
+      "keywords": [
+        "nist-csf",
+        "cybersecurity-framework",
+        "csf20",
+        "risk-management",
+        "cybersecurity",
+        "grc",
+        "gap-assessment",
+        "profiles",
+        "tiers"
+      ]
     },
     {
       "name": "pci-compliance",
       "source": "./plugins/pci-compliance",
-      "description": "PCI DSS v4.0.1 compliance advisor — CDE scoping, SAQ selection, gap assessments, control implementation guidance, QSA audit preparation, and remediation planning.",
-      "version": "0.1.0",
+      "description": "PCI DSS v4.0.1 compliance advisor \u2014 CDE scoping, SAQ selection, gap assessments, control implementation guidance, QSA audit preparation, and remediation planning.",
+      "version": "0.2.0",
       "author": {
         "name": "Hemant Naik",
         "email": "[email protected]"
       },
       "homepage": "https://sushegaad.github.io/Claude-Skills-Governance-Risk-and-Compliance/",
       "category": "compliance",
-      "keywords": ["pci-dss", "pci-compliance", "payment-security", "cardholder-data", "cde", "saq", "qsa", "grc"]
+      "keywords": [
+        "pci-dss",
+        "pci-compliance",
+        "payment-security",
+        "cardholder-data",
+        "cde",
+        "saq",
+        "qsa",
+        "grc"
+      ]
     },
     {
       "name": "tsa-compliance",
       "source": "./plugins/tsa-compliance",
-      "description": "TSA cybersecurity compliance advisor for critical infrastructure — pipeline, freight rail, and transit Security Directive requirements including CIP/COIP, IRP, ADR, CAP, incident reporting, and OT/ICS security.",
-      "version": "0.1.0",
+      "description": "TSA cybersecurity compliance advisor for critical infrastructure \u2014 pipeline, freight rail, and transit Security Directive requirements including CIP/COIP, IRP, ADR, CAP, incident reporting, and OT/ICS security.",
+      "version": "0.2.0",
       "author": {
         "name": "Hemant Naik",
         "email": "[email protected]"
       },
       "homepage": "https://sushegaad.github.io/Claude-Skills-Governance-Risk-and-Compliance/",
       "category": "compliance",
-      "keywords": ["tsa", "transportation-security", "critical-infrastructure", "pipeline-security", "rail-security", "ot-security", "ics-security", "grc"]
+      "keywords": [
+        "tsa",
+        "transportation-security",
+        "critical-infrastructure",
+        "pipeline-security",
+        "rail-security",
+        "ot-security",
+        "ics-security",
+        "grc"
+      ]
     },
     {
       "name": "iso42001",
       "source": "./plugins/iso42001",
-      "description": "ISO 42001 AI Management System (AIMS) advisor — gap analysis, AI risk assessment, AI system impact assessment (AISIA), Annex A control guidance, SoA generation, policy writing, and certification readiness for ISO/IEC 42001:2023.",
-      "version": "0.1.0",
+      "description": "ISO 42001 AI Management System (AIMS) advisor \u2014 gap analysis, AI risk assessment, AI system impact assessment (AISIA), Annex A control guidance, SoA generation, policy writing, and certification readiness for ISO/IEC 42001:2023.",
+      "version": "0.2.0",
       "author": {
         "name": "Hemant Naik",
         "email": "[email protected]"
       },
       "homepage": "https://sushegaad.github.io/Claude-Skills-Governance-Risk-and-Compliance/",
       "category": "compliance",
-      "keywords": ["iso42001", "ai-management-system", "aims", "responsible-ai", "ai-governance", "ai-risk", "aisia", "grc"]
+      "keywords": [
+        "iso42001",
+        "ai-management-system",
+        "aims",
+        "responsible-ai",
+        "ai-governance",
+        "ai-risk",
+        "aisia",
+        "grc"
+      ]
     }
   ]
-}
+}

GDPR - Claude Skill/GDPR-compliance-readme.md

@@ -184,7 +184,7 @@ The skill covers the full regulation across these key areas:
 
 **Hemant Naik**
 [LinkedIn](https://www.linkedin.com/in/tanaji-naik/) · [[email protected]](mailto:[email protected])
-Skill version: 0.1.0 — March 2026.
+Skill version: 0.2.0 — March 2026.
 
 > ⚠️ **Disclaimer**: This skill provides informational guidance based on the GDPR text and
 > established regulatory guidance (EDPB/ICO). It does not constitute legal advice. For matters

ISO 27001 - Claude Skill/ISO27001-README.md

@@ -137,5 +137,5 @@ The skill activates on any of the following topics (non-exhaustive):
 [LinkedIn](https://www.linkedin.com/in/tanaji-naik/) · [[email protected]](mailto:[email protected])
 **Built with:** Claude (Anthropic) using the Claude Skills framework  
 **Date:** March 2026  
-**Skill version:** 0.1.0  
+**Skill version:** 0.2.0  
 **Standard coverage:** ISO/IEC 27001:2013 and ISO/IEC 27001:2022

NIST Cybersecurity framework - Claude Skill/NIST-Cybersecurity-README.md

@@ -138,5 +138,5 @@ The skill activates on any of the following topics (non-exhaustive):
 [LinkedIn](https://www.linkedin.com/in/tanaji-naik/) · [[email protected]](mailto:[email protected])
 **Built with:** Claude (Anthropic) using the Claude Skills framework
 **Date:** March 2026
-**Skill version:** 0.1.0
+**Skill version:** 0.2.0
 **Standard coverage:** NIST Cybersecurity Framework 2.0 (February 2024) and NIST CSF 1.1 (April 2018)

PCI Compliance - Claude Skill/PCI-Compliance-README.md

@@ -128,5 +128,5 @@ pci-compliance/
 [LinkedIn](https://www.linkedin.com/in/tanaji-naik/) · [[email protected]](mailto:[email protected])
 **Built with:** Claude (Anthropic) using the Claude Skills framework
 **Date:** March 2026
-**Skill version:** 0.1.0
+**Skill version:** 0.2.0
 **Standard coverage:** PCI DSS v4.0.1 (June 2024) and PCI DSS v4.0 (March 2022)

README.md

@@ -3,7 +3,7 @@ Expert-level compliance guidance for ISO 27001, SOC 2, FedRAMP, GDPR, HIPAA, NIS
 
 Benchmarked across 18 test cases (2 per framework) using the eval framework — each graded against 4–5 verifiable assertions by independent agents. Skills scored **94% ± 10%** vs a baseline of 72% ± 28%.
 
-[![Release: v0.1.0](https://img.shields.io/badge/Release-v0.1.0-brightgreen.svg)](../../releases/tag/v0.1.0)
+[![Release: v0.2.0](https://img.shields.io/badge/Release-v0.2.0-brightgreen.svg)](../../releases/tag/v0.2.0)
 [![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](LICENSE)
 [![Skills: 9](https://img.shields.io/badge/Skills-9-green.svg)](#the-skills)
 [![Built with Claude](https://img.shields.io/badge/Built%20with-Claude-orange.svg)](https://claude.ai)

TSA Compliance - Claude Skill/TSA-Compliance-README.md

@@ -142,5 +142,5 @@ TSA Security Directives are classified as **Sensitive Security Information (SSI)
 [LinkedIn](https://www.linkedin.com/in/tanaji-naik/) · [[email protected]](mailto:[email protected])
 **Built with:** Claude (Anthropic) using the Claude Skills framework
 **Date:** March 2026
-**Skill version:** 0.1.0
+**Skill version:** 0.2.0
 **Standard coverage:** TSA SD Pipeline-2021-01G, SD Pipeline-2021-02F, SD 1580-21-01E, SD 1582-21-01E, November 2024 NPRM

plugins/fedramp/.claude-plugin/plugin.json

@@ -1,7 +1,7 @@
 {
   "name": "fedramp",
   "description": "End-to-end FedRAMP authorization guidance \u2014 readiness assessments, SSP narratives, POA&M management, NIST 800-53 Rev 5 control mapping, and ConMon support.",
-  "version": "0.1.0",
+  "version": "0.2.0",
   "author": {
     "name": "Hemant Naik",
     "email": "[email protected]"
@@ -19,4 +19,4 @@
     "cloud-security",
     "grc"
   ]
-}
+}

plugins/gdpr-compliance/.claude-plugin/plugin.json

@@ -1,7 +1,7 @@
 {
   "name": "gdpr-compliance",
   "description": "GDPR compliance assistant \u2014 code and system audits, privacy notice drafting, DPAs, DPIAs, data flow reviews, and authoritative article-cited Q&A.",
-  "version": "0.1.0",
+  "version": "0.2.0",
   "author": {
     "name": "Hemant Naik",
     "email": "[email protected]"
@@ -18,4 +18,4 @@
     "eu",
     "grc"
   ]
-}
+}

plugins/hipaa-compliance/.claude-plugin/plugin.json

@@ -1,7 +1,7 @@
 {
   "name": "hipaa-compliance",
   "description": "HIPAA compliance advisor covering Privacy Rule, Security Rule, and Breach Notification \u2014 document generation, technical safeguards for cloud, and breach response.",
-  "version": "0.1.0",
+  "version": "0.2.0",
   "author": {
     "name": "Hemant Naik",
     "email": "[email protected]"
@@ -18,4 +18,4 @@
     "security-rule",
     "grc"
   ]
-}
+}