Regenerate canonical registry artifacts after removing the synthetic
merge-batch end-to-end fixture.
This drops the remaining bundle, catalog, plugin, and skills index
references so validate:references passes again on main.
Add the missing When to Use sections for the new psychology skill pack and refresh the canonical generated artifacts required by the release workflow so the repository passes the warning budget and consistency gates.
Add the upstream community source referenced by the SEO-AEO skill bundle immediately after merging PR #446 so README credits stay current on main.
Refs #446
Move yaml into runtime dependencies so the published npm installer
works in clean npx environments again. Bump the package to 9.5.1,
add the patch release notes, and keep README metadata aligned with
the release state.
Fixes#445
Add installer filters for risk, category, and tags so maintainers and
users can ship smaller skill surfaces to context-sensitive runtimes.
Document the reduced-install flow for OpenCode-style hosts, add the
humanize-chinese community skill, and sync the generated catalog and
plugin-safe artifacts that now reflect the release batch.
Refs #437
Refs #440
Refs #443
Refresh the source credits to match the repositories cited across release notes and current upstream projects. Remove the dead sstklen cost-optimization repo, add missing official and community repos, and tighten several stale or overstated descriptions.
Record the versioned plugin metadata and onboarding docs refreshed by the release preflight so the release workflow can continue from a clean main branch.
Import the official Hugging Face ecosystem skills and sync the\nexisting local coverage with upstream metadata and assets.\n\nRegenerate the canonical catalog, plugin mirrors, docs, and release\nnotes after the maintainer merge batch so main stays in sync.\n\nFixes #417
Document the current static web-app behavior, local-only save flow, shallow installer path, and maintainer-only sync controls.\n\nAlign maintainer guides with the active audit-to-risk-sync workflow, canonical artifact bot contract, release/coverage requirements, and updated security triage context so the docs match the repository's real operating model.
