A skill from the Loadout
Know what moved before you open your inbox.
What it does
You do not go under the bar cold. In the gym, the warmup is the ten minutes that makes the next ninety honest — it tells you what is tight, what needs adjustment, and whether today's plan needs to change before the work begins.
The Warmup does the same thing for your workday. Before the first meeting, before the first decision — you know what threat actors are active, what your competitors shipped, what dropped overnight. The Warmup reads your sources, synthesizes what matters, and delivers it as a single live artifact you pull with your first coffee. Every item is labeled with its source and trust tier. You always know what you are reading and where it came from.
Three modes
Pick the mode that matches your role. Each loads a different source suite and structures the brief differently. The output is always a live HTML artifact — instrument-panel style, no dashboard chrome.
Security executives
Tell the Warmup your sector and it loads a pre-curated source suite: CISA advisories, the Known Exploited Vulnerabilities catalog, MITRE ATT&CK, CrowdStrike, Palo Alto Unit 42, Red Canary, Google Mandiant, Microsoft MSTIC, Cisco Talos, and more — plus sector-specific feeds for Healthcare, Financial Services, Energy, Government, and Manufacturing/OT.
Sections
Threat landscape · Emerging threats · Research digest · Industry intel · Social signal
PMs, CPOs, product executives
Tell the Warmup your product area, vertical, and build type and it loads a source suite tuned for competitive and market intelligence: competitor newsrooms, analyst firms, AI model release trackers, funding and M&A feeds, and the voices worth following in your space.
Sections
Company intel · Competitor moves · AI & tooling · Market & funding · Social signal
Everyone else
Describe your morning interests in plain language. Stocks, industry news, competitor blogs, AI model releases, policy changes, local business news — whatever you need to start the day in the loop. The Warmup builds your source suite from scratch and rates every recommended source by trust tier.
Sections
You define the sections
Threat actors, new CVEs, KEV additions, and sector-specific intelligence — before the first meeting of the day.
Competitor moves, funding rounds, AI releases, and analyst signals — synthesized into one document before your inbox opens.
A custom source suite built from a plain-language description of what you care about. No configuration files required to start.
Anyone who wants to be informed before the first decision of the day — not catching up an hour in.
How link safety works
Every URL cited in the brief is scanned before the artifact renders. The brief includes a Link Safety Verification panel showing the result for each source domain: scan verdict, number of URLs fetched, and whether anything was flagged. Items from flagged sources are excluded from the brief body before you ever see them.
Domain passed the CISA allowlist check and URLScan.io scan. Item is included in the brief.
Domain did not pass the scan — suspicious verdict, no result, or scan failure. Item is excluded from the brief entirely. There is no "include with a warning" path.
See it in action
The Warmup renders as a live HTML artifact that stays open and refreshes each time you run it. Charcoal background, oxblood accents, instrument-panel typography. It reads like a field document, not a dashboard.
How to use it
The Warmup is part of the Loadout MCP server. One connection gives you every skill in the kit. Tested on Claude.
https://mcp.missionbuilt.io/sse ✓ Verified on Claude
Or download the standalone
Prefer to run it offline, or pin a version? Download the skill folder and drop it into any AI coding tool's skills folder. The hosted server stays the recommended path — always current. The download is a pinned snapshot.
Download warmup.zipAfter you connect
The first time, run setup. After that, one phrase pulls your brief.
"warmup setup" "run warmup" "show my warmup sources" Questions
Yes. Your source list and preferences live in a WARMUP.md file at your project root. It is gitignored and never committed. Nothing about your setup leaves your machine.
Yes. The server uses Google OAuth. You authenticate once when you connect — no separate account creation required.
Yes. Add, remove, or exclude any source at any time using plain-language commands. The config updates automatically and persists to your WARMUP.md.
Also in the kit
The Warmup ships under MIT. Use it commercially, adapt it for your team, embed it in your product. Source for both the skill and the MCP server lives in github.com/missionbuilt/loadout.
Your config stays generic — the skill reads your WARMUP.md to
personalize the brief. Pull skill updates without touching your source list.
You do not go under the bar cold.