@ai-pip/core 0.1.8 → 0.3.0

package/dist/isl/lineage/index.js

@@ -0,0 +1,5 @@
+/**
+ * ISL Lineage - Lineage construction for ISL
+ */
+export { buildISLLineage } from './buildISLLineage.js';
+//# sourceMappingURL=index.js.map

package/dist/isl/lineage/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/isl/lineage/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAA"}

package/dist/isl/process/buildISLResult.d.ts

@@ -0,0 +1,24 @@
+/**
+ * buildISLResult - Builds the internal ISL result
+ *
+ * @remarks
+ * This function builds the internal ISLResult that contains
+ * all ISL processing information.
+ *
+ * **Responsibility:**
+ * - Build ISLResult from processed segments
+ * - Add processing metadata
+ * - Preserve complete lineage
+ */
+import type { ISLResult, ISLSegment } from '../types.js';
+import type { LineageEntry } from '../../csl/value-objects/index.js';
+/**
+ * Builds an ISLResult from processed segments
+ *
+ * @param segments - Segments sanitized by ISL
+ * @param lineage - Complete processing lineage
+ * @param processingTimeMs - Processing time in milliseconds (optional)
+ * @returns ISLResult with all processing information
+ */
+export declare function buildISLResult(segments: readonly ISLSegment[], lineage: readonly LineageEntry[], processingTimeMs?: number): ISLResult;
+//# sourceMappingURL=buildISLResult.d.ts.map

package/dist/isl/process/buildISLResult.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"buildISLResult.d.ts","sourceRoot":"","sources":["../../../src/isl/process/buildISLResult.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AACxD,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,kCAAkC,CAAA;AAEpE;;;;;;;GAOG;AACH,wBAAgB,cAAc,CAC5B,QAAQ,EAAE,SAAS,UAAU,EAAE,EAC/B,OAAO,EAAE,SAAS,YAAY,EAAE,EAChC,gBAAgB,CAAC,EAAE,MAAM,GACxB,SAAS,CAiBX"}

package/dist/isl/process/buildISLResult.js

@@ -0,0 +1,38 @@
+/**
+ * buildISLResult - Builds the internal ISL result
+ *
+ * @remarks
+ * This function builds the internal ISLResult that contains
+ * all ISL processing information.
+ *
+ * **Responsibility:**
+ * - Build ISLResult from processed segments
+ * - Add processing metadata
+ * - Preserve complete lineage
+ */
+/**
+ * Builds an ISLResult from processed segments
+ *
+ * @param segments - Segments sanitized by ISL
+ * @param lineage - Complete processing lineage
+ * @param processingTimeMs - Processing time in milliseconds (optional)
+ * @returns ISLResult with all processing information
+ */
+export function buildISLResult(segments, lineage, processingTimeMs) {
+    const metadata = processingTimeMs === undefined
+        ? {
+            totalSegments: segments.length,
+            sanitizedSegments: segments.length
+        }
+        : {
+            totalSegments: segments.length,
+            sanitizedSegments: segments.length,
+            processingTimeMs
+        };
+    return {
+        segments: Object.freeze(segments),
+        lineage: Object.freeze(lineage),
+        metadata: Object.freeze(metadata)
+    };
+}
+//# sourceMappingURL=buildISLResult.js.map

package/dist/isl/process/buildISLResult.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"buildISLResult.js","sourceRoot":"","sources":["../../../src/isl/process/buildISLResult.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAKH;;;;;;;GAOG;AACH,MAAM,UAAU,cAAc,CAC5B,QAA+B,EAC/B,OAAgC,EAChC,gBAAyB;IAEzB,MAAM,QAAQ,GAAG,gBAAgB,KAAK,SAAS;QAC7C,CAAC,CAAC;YACE,aAAa,EAAE,QAAQ,CAAC,MAAM;YAC9B,iBAAiB,EAAE,QAAQ,CAAC,MAAM;SACnC;QACH,CAAC,CAAC;YACE,aAAa,EAAE,QAAQ,CAAC,MAAM;YAC9B,iBAAiB,EAAE,QAAQ,CAAC,MAAM;YAClC,gBAAgB;SACjB,CAAA;IAEL,OAAO;QACL,QAAQ,EAAE,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC;QACjC,OAAO,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC;QAC/B,QAAQ,EAAE,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC;KAClC,CAAA;AACH,CAAC"}

package/dist/isl/process/emitSignal.d.ts

@@ -0,0 +1,32 @@
+/**
+ * emitSignal - Emits an ISLSignal from an internal ISLResult
+ *
+ * @remarks
+ * Converts ISLResult into a semantic signal (ISLSignal) for AAL/SDK.
+ * Aggregates all segment detections (from detectThreats → piDetection);
+ * hasThreats and riskScore are derived solely from that aggregation
+ * (no separate source of truth). Same ISLResult + same options → same ISLSignal (deterministic).
+ * Strategy is fixed at emit time; reflected in ISLSignal.metadata for auditability.
+ */
+import type { ISLResult } from '../types.js';
+import type { ISLSignal } from '../signals.js';
+import { RiskScoreStrategy } from '../riskScore/types.js';
+/** Options for emitSignal. Strategy decided once; no per-segment or dynamic strategy. */
+export interface EmitSignalOptions {
+    /** Signal timestamp (default: Date.now()) */
+    readonly timestamp?: number;
+    /** Risk score strategy and optional type weights (default: MAX_CONFIDENCE) */
+    readonly riskScore?: {
+        readonly strategy: RiskScoreStrategy;
+        readonly typeWeights?: Record<string, number>;
+    };
+}
+/**
+ * Emits an ISLSignal from an internal ISLResult
+ *
+ * @param islResult - Internal ISL result
+ * @param options - Optional timestamp and risk score strategy (default: MAX_CONFIDENCE)
+ * @returns ISLSignal - Semantic signal for external consumption; metadata.strategy reflects strategy used
+ */
+export declare function emitSignal(islResult: ISLResult, options?: EmitSignalOptions | number): ISLSignal;
+//# sourceMappingURL=emitSignal.d.ts.map

package/dist/isl/process/emitSignal.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"emitSignal.d.ts","sourceRoot":"","sources":["../../../src/isl/process/emitSignal.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,aAAa,CAAA;AAC5C,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,eAAe,CAAA;AAI9C,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAA;AAGzD,yFAAyF;AACzF,MAAM,WAAW,iBAAiB;IAChC,6CAA6C;IAC7C,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,CAAA;IAC3B,8EAA8E;IAC9E,QAAQ,CAAC,SAAS,CAAC,EAAE;QACnB,QAAQ,CAAC,QAAQ,EAAE,iBAAiB,CAAA;QACpC,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;KAC9C,CAAA;CACF;AAID;;;;;;GAMG;AACH,wBAAgB,UAAU,CACxB,SAAS,EAAE,SAAS,EACpB,OAAO,GAAE,iBAAiB,GAAG,MAAW,GACvC,SAAS,CAsBX"}

package/dist/isl/process/emitSignal.js

@@ -0,0 +1,41 @@
+/**
+ * emitSignal - Emits an ISLSignal from an internal ISLResult
+ *
+ * @remarks
+ * Converts ISLResult into a semantic signal (ISLSignal) for AAL/SDK.
+ * Aggregates all segment detections (from detectThreats → piDetection);
+ * hasThreats and riskScore are derived solely from that aggregation
+ * (no separate source of truth). Same ISLResult + same options → same ISLSignal (deterministic).
+ * Strategy is fixed at emit time; reflected in ISLSignal.metadata for auditability.
+ */
+import { createISLSignal } from '../signals.js';
+import { createPiDetectionResult } from '../value-objects/PiDetectionResult.js';
+import { MIN_RISK_SCORE, normalizeRiskScore } from '../value-objects/RiskScore.js';
+import { RiskScoreStrategy } from '../riskScore/types.js';
+import { getCalculator } from '../riskScore/index.js';
+const DEFAULT_STRATEGY = RiskScoreStrategy.MAX_CONFIDENCE;
+/**
+ * Emits an ISLSignal from an internal ISLResult
+ *
+ * @param islResult - Internal ISL result
+ * @param options - Optional timestamp and risk score strategy (default: MAX_CONFIDENCE)
+ * @returns ISLSignal - Semantic signal for external consumption; metadata.strategy reflects strategy used
+ */
+export function emitSignal(islResult, options = {}) {
+    const opts = typeof options === 'number' ? { timestamp: options } : options;
+    const timestamp = opts.timestamp ?? Date.now();
+    const strategy = opts.riskScore?.strategy ?? DEFAULT_STRATEGY;
+    const typeWeights = opts.riskScore?.typeWeights;
+    const allDetections = islResult.segments
+        .filter((s) => s.piDetection != null)
+        .flatMap(s => s.piDetection.detections);
+    const piDetection = createPiDetectionResult(allDetections);
+    const calculator = getCalculator(strategy, typeWeights);
+    const rawScore = calculator.calculate(allDetections);
+    const riskScore = allDetections.length === 0
+        ? MIN_RISK_SCORE
+        : normalizeRiskScore(rawScore);
+    const metadata = Object.freeze({ strategy });
+    return createISLSignal(riskScore, piDetection, timestamp, metadata);
+}
+//# sourceMappingURL=emitSignal.js.map

package/dist/isl/process/emitSignal.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"emitSignal.js","sourceRoot":"","sources":["../../../src/isl/process/emitSignal.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAIH,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAA;AAC/C,OAAO,EAAE,uBAAuB,EAAE,MAAM,uCAAuC,CAAA;AAC/E,OAAO,EAAE,cAAc,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAA;AAClF,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAA;AACzD,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAA;AAarD,MAAM,gBAAgB,GAAG,iBAAiB,CAAC,cAAc,CAAA;AAEzD;;;;;;GAMG;AACH,MAAM,UAAU,UAAU,CACxB,SAAoB,EACpB,UAAsC,EAAE;IAExC,MAAM,IAAI,GACR,OAAO,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,EAAE,SAAS,EAAE,OAAO,EAAE,CAAC,CAAC,CAAC,OAAO,CAAA;IAChE,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,GAAG,EAAE,CAAA;IAC9C,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,QAAQ,IAAI,gBAAgB,CAAA;IAC7D,MAAM,WAAW,GAAG,IAAI,CAAC,SAAS,EAAE,WAAW,CAAA;IAE/C,MAAM,aAAa,GAAG,SAAS,CAAC,QAAQ;SACrC,MAAM,CAAC,CAAC,CAAC,EAAsE,EAAE,CAChF,CAAC,CAAC,WAAW,IAAI,IAAI,CACtB;SACA,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC,UAAU,CAAC,CAAA;IAEzC,MAAM,WAAW,GAAG,uBAAuB,CAAC,aAAa,CAAC,CAAA;IAC1D,MAAM,UAAU,GAAG,aAAa,CAAC,QAAQ,EAAE,WAAW,CAAC,CAAA;IACvD,MAAM,QAAQ,GAAG,UAAU,CAAC,SAAS,CAAC,aAAa,CAAC,CAAA;IACpD,MAAM,SAAS,GAAG,aAAa,CAAC,MAAM,KAAK,CAAC;QAC1C,CAAC,CAAC,cAAc;QAChB,CAAC,CAAC,kBAAkB,CAAC,QAAQ,CAAC,CAAA;IAEhC,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAA;IAC5C,OAAO,eAAe,CAAC,SAAS,EAAE,WAAW,EAAE,SAAS,EAAE,QAAQ,CAAC,CAAA;AACrE,CAAC"}

package/dist/isl/process/index.d.ts

@@ -0,0 +1,7 @@
+/**
+ * ISL Process - ISL processing functions
+ */
+export { buildISLResult } from './buildISLResult.js';
+export { emitSignal } from './emitSignal.js';
+export type { EmitSignalOptions } from './emitSignal.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/isl/process/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/isl/process/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAA;AACpD,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAA;AAC5C,YAAY,EAAE,iBAAiB,EAAE,MAAM,iBAAiB,CAAA"}

package/dist/isl/process/index.js

@@ -0,0 +1,6 @@
+/**
+ * ISL Process - ISL processing functions
+ */
+export { buildISLResult } from './buildISLResult.js';
+export { emitSignal } from './emitSignal.js';
+//# sourceMappingURL=index.js.map

package/dist/isl/process/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/isl/process/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAA;AACpD,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAA"}

package/dist/isl/riskScore/calculators.d.ts

@@ -0,0 +1,19 @@
+/**
+ * Risk score calculators - pure, deterministic, no side effects.
+ * Only registered implementations; no custom inline strategies.
+ */
+import type { RiskScoreCalculator } from './types.js';
+/** Max confidence among all detections. Simple default. */
+export declare const maxConfidenceCalculator: RiskScoreCalculator;
+/** Max confidence plus a small bump per extra detection (volume). Clamped by caller. */
+export declare const severityPlusVolumeCalculator: RiskScoreCalculator;
+/**
+ * Weighted by pattern_type. Weights default to 1 if type not present.
+ * Returns a registered calculator (no inline custom logic).
+ */
+export declare function weightedByTypeCalculator(weights: Record<string, number>): RiskScoreCalculator;
+/** Default weights for WEIGHTED_BY_TYPE (all 1). Use for reproducible audits. */
+export declare const DEFAULT_TYPE_WEIGHTS: Record<string, number>;
+/** Pre-built weighted calculator with default weights. */
+export declare const defaultWeightedByTypeCalculator: RiskScoreCalculator;
+//# sourceMappingURL=calculators.d.ts.map

package/dist/isl/riskScore/calculators.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"calculators.d.ts","sourceRoot":"","sources":["../../../src/isl/riskScore/calculators.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAGH,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAA;AAGrD,2DAA2D;AAC3D,eAAO,MAAM,uBAAuB,EAAE,mBAMrC,CAAA;AAED,wFAAwF;AACxF,eAAO,MAAM,4BAA4B,EAAE,mBAO1C,CAAA;AAED;;;GAGG;AACH,wBAAgB,wBAAwB,CACtC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAC9B,mBAAmB,CASrB;AAED,iFAAiF;AACjF,eAAO,MAAM,oBAAoB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAMtD,CAAA;AAEF,0DAA0D;AAC1D,eAAO,MAAM,+BAA+B,EAAE,mBACS,CAAA"}

package/dist/isl/riskScore/calculators.js

@@ -0,0 +1,50 @@
+/**
+ * Risk score calculators - pure, deterministic, no side effects.
+ * Only registered implementations; no custom inline strategies.
+ */
+import { RiskScoreStrategy } from './types.js';
+/** Max confidence among all detections. Simple default. */
+export const maxConfidenceCalculator = {
+    strategy: RiskScoreStrategy.MAX_CONFIDENCE,
+    calculate(detections) {
+        if (detections.length === 0)
+            return 0;
+        return Math.max(...detections.map((d) => d.confidence));
+    }
+};
+/** Max confidence plus a small bump per extra detection (volume). Clamped by caller. */
+export const severityPlusVolumeCalculator = {
+    strategy: RiskScoreStrategy.SEVERITY_PLUS_VOLUME,
+    calculate(detections) {
+        if (detections.length === 0)
+            return 0;
+        const max = Math.max(...detections.map((d) => d.confidence));
+        return Math.min(1, max + 0.1 * (detections.length - 1));
+    }
+};
+/**
+ * Weighted by pattern_type. Weights default to 1 if type not present.
+ * Returns a registered calculator (no inline custom logic).
+ */
+export function weightedByTypeCalculator(weights) {
+    return {
+        strategy: RiskScoreStrategy.WEIGHTED_BY_TYPE,
+        calculate(detections) {
+            if (detections.length === 0)
+                return 0;
+            const w = (d) => d.confidence * (weights[d.pattern_type] ?? 1);
+            return Math.min(1, Math.max(...detections.map(w)));
+        }
+    };
+}
+/** Default weights for WEIGHTED_BY_TYPE (all 1). Use for reproducible audits. */
+export const DEFAULT_TYPE_WEIGHTS = Object.freeze({
+    'prompt-injection': 1,
+    jailbreak: 1,
+    role_hijacking: 1,
+    script_like: 1,
+    hidden_text: 1
+});
+/** Pre-built weighted calculator with default weights. */
+export const defaultWeightedByTypeCalculator = weightedByTypeCalculator({ ...DEFAULT_TYPE_WEIGHTS });
+//# sourceMappingURL=calculators.js.map

package/dist/isl/riskScore/calculators.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"calculators.js","sourceRoot":"","sources":["../../../src/isl/riskScore/calculators.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAA;AAI9C,2DAA2D;AAC3D,MAAM,CAAC,MAAM,uBAAuB,GAAwB;IAC1D,QAAQ,EAAE,iBAAiB,CAAC,cAAc;IAC1C,SAAS,CAAC,UAAkC;QAC1C,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,CAAC,CAAA;QACrC,OAAO,IAAI,CAAC,GAAG,CAAC,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAA;IACzD,CAAC;CACF,CAAA;AAED,wFAAwF;AACxF,MAAM,CAAC,MAAM,4BAA4B,GAAwB;IAC/D,QAAQ,EAAE,iBAAiB,CAAC,oBAAoB;IAChD,SAAS,CAAC,UAAkC;QAC1C,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,CAAC,CAAA;QACrC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAA;QAC5D,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,GAAG,GAAG,GAAG,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAA;IACzD,CAAC;CACF,CAAA;AAED;;;GAGG;AACH,MAAM,UAAU,wBAAwB,CACtC,OAA+B;IAE/B,OAAO;QACL,QAAQ,EAAE,iBAAiB,CAAC,gBAAgB;QAC5C,SAAS,CAAC,UAAkC;YAC1C,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC;gBAAE,OAAO,CAAC,CAAA;YACrC,MAAM,CAAC,GAAG,CAAC,CAAc,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,CAAA;YAC3E,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;QACpD,CAAC;KACF,CAAA;AACH,CAAC;AAED,iFAAiF;AACjF,MAAM,CAAC,MAAM,oBAAoB,GAA2B,MAAM,CAAC,MAAM,CAAC;IACxE,kBAAkB,EAAE,CAAC;IACrB,SAAS,EAAE,CAAC;IACZ,cAAc,EAAE,CAAC;IACjB,WAAW,EAAE,CAAC;IACd,WAAW,EAAE,CAAC;CACf,CAAC,CAAA;AAEF,0DAA0D;AAC1D,MAAM,CAAC,MAAM,+BAA+B,GAC1C,wBAAwB,CAAC,EAAE,GAAG,oBAAoB,EAAE,CAAC,CAAA"}

package/dist/isl/riskScore/index.d.ts

@@ -0,0 +1,14 @@
+/**
+ * ISL risk score strategy - registered calculators only.
+ */
+export { RiskScoreStrategy } from './types.js';
+export type { RiskScoreCalculator } from './types.js';
+export { maxConfidenceCalculator, severityPlusVolumeCalculator, weightedByTypeCalculator, defaultWeightedByTypeCalculator, DEFAULT_TYPE_WEIGHTS } from './calculators.js';
+import { RiskScoreStrategy } from './types.js';
+import type { RiskScoreCalculator } from './types.js';
+/**
+ * Returns the registered calculator for the given strategy.
+ * For WEIGHTED_BY_TYPE without custom weights, uses default weights.
+ */
+export declare function getCalculator(strategy: RiskScoreStrategy, typeWeights?: Record<string, number>): RiskScoreCalculator;
+//# sourceMappingURL=index.d.ts.map

package/dist/isl/riskScore/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/isl/riskScore/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAA;AAC9C,YAAY,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAA;AACrD,OAAO,EACL,uBAAuB,EACvB,4BAA4B,EAC5B,wBAAwB,EACxB,+BAA+B,EAC/B,oBAAoB,EACrB,MAAM,kBAAkB,CAAA;AAEzB,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAA;AAC9C,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAA;AAQrD;;;GAGG;AACH,wBAAgB,aAAa,CAC3B,QAAQ,EAAE,iBAAiB,EAC3B,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GACnC,mBAAmB,CAarB"}

package/dist/isl/riskScore/index.js

@@ -0,0 +1,26 @@
+/**
+ * ISL risk score strategy - registered calculators only.
+ */
+export { RiskScoreStrategy } from './types.js';
+export { maxConfidenceCalculator, severityPlusVolumeCalculator, weightedByTypeCalculator, defaultWeightedByTypeCalculator, DEFAULT_TYPE_WEIGHTS } from './calculators.js';
+import { RiskScoreStrategy } from './types.js';
+import { defaultWeightedByTypeCalculator, maxConfidenceCalculator, severityPlusVolumeCalculator, weightedByTypeCalculator } from './calculators.js';
+/**
+ * Returns the registered calculator for the given strategy.
+ * For WEIGHTED_BY_TYPE without custom weights, uses default weights.
+ */
+export function getCalculator(strategy, typeWeights) {
+    switch (strategy) {
+        case RiskScoreStrategy.MAX_CONFIDENCE:
+            return maxConfidenceCalculator;
+        case RiskScoreStrategy.SEVERITY_PLUS_VOLUME:
+            return severityPlusVolumeCalculator;
+        case RiskScoreStrategy.WEIGHTED_BY_TYPE:
+            return typeWeights == null
+                ? defaultWeightedByTypeCalculator
+                : weightedByTypeCalculator(typeWeights);
+        default:
+            return maxConfidenceCalculator;
+    }
+}
+//# sourceMappingURL=index.js.map

package/dist/isl/riskScore/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/isl/riskScore/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAA;AAE9C,OAAO,EACL,uBAAuB,EACvB,4BAA4B,EAC5B,wBAAwB,EACxB,+BAA+B,EAC/B,oBAAoB,EACrB,MAAM,kBAAkB,CAAA;AAEzB,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAA;AAE9C,OAAO,EACL,+BAA+B,EAC/B,uBAAuB,EACvB,4BAA4B,EAC5B,wBAAwB,EACzB,MAAM,kBAAkB,CAAA;AAEzB;;;GAGG;AACH,MAAM,UAAU,aAAa,CAC3B,QAA2B,EAC3B,WAAoC;IAEpC,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,iBAAiB,CAAC,cAAc;YACnC,OAAO,uBAAuB,CAAA;QAChC,KAAK,iBAAiB,CAAC,oBAAoB;YACzC,OAAO,4BAA4B,CAAA;QACrC,KAAK,iBAAiB,CAAC,gBAAgB;YACrC,OAAO,WAAW,IAAI,IAAI;gBACxB,CAAC,CAAC,+BAA+B;gBACjC,CAAC,CAAC,wBAAwB,CAAC,WAAW,CAAC,CAAA;QAC3C;YACE,OAAO,uBAAuB,CAAA;IAClC,CAAC;AACH,CAAC"}

package/dist/isl/riskScore/types.d.ts

@@ -0,0 +1,20 @@
+/**
+ * Risk score strategy - registered strategies only (auditability, reproducibility).
+ * AAL and SDK do not choose the formula; the caller of emitSignal/sanitize does.
+ */
+import type { PiDetection } from '../value-objects/PiDetection.js';
+/** Registered risk score strategies. No custom inline strategies . */
+export declare enum RiskScoreStrategy {
+    MAX_CONFIDENCE = "max-confidence",
+    SEVERITY_PLUS_VOLUME = "severity-plus-volume",
+    WEIGHTED_BY_TYPE = "weighted-by-type"
+}
+/**
+ * Pure, deterministic calculator: detections → raw score (caller clamps to [0,1]).
+ * Strategy is fixed per calculator; no side effects.
+ */
+export interface RiskScoreCalculator {
+    readonly strategy: RiskScoreStrategy;
+    calculate(detections: readonly PiDetection[]): number;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/isl/riskScore/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/isl/riskScore/types.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,iCAAiC,CAAA;AAElE,sEAAsE;AACtE,oBAAY,iBAAiB;IAC3B,cAAc,mBAAmB;IACjC,oBAAoB,yBAAyB;IAC7C,gBAAgB,qBAAqB;CACtC;AAED;;;GAGG;AACH,MAAM,WAAW,mBAAmB;IAClC,QAAQ,CAAC,QAAQ,EAAE,iBAAiB,CAAA;IACpC,SAAS,CAAC,UAAU,EAAE,SAAS,WAAW,EAAE,GAAG,MAAM,CAAA;CACtD"}

package/dist/isl/riskScore/types.js

@@ -0,0 +1,12 @@
+/**
+ * Risk score strategy - registered strategies only (auditability, reproducibility).
+ * AAL and SDK do not choose the formula; the caller of emitSignal/sanitize does.
+ */
+/** Registered risk score strategies. No custom inline strategies . */
+export var RiskScoreStrategy;
+(function (RiskScoreStrategy) {
+    RiskScoreStrategy["MAX_CONFIDENCE"] = "max-confidence";
+    RiskScoreStrategy["SEVERITY_PLUS_VOLUME"] = "severity-plus-volume";
+    RiskScoreStrategy["WEIGHTED_BY_TYPE"] = "weighted-by-type";
+})(RiskScoreStrategy || (RiskScoreStrategy = {}));
+//# sourceMappingURL=types.js.map

package/dist/isl/riskScore/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/isl/riskScore/types.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,sEAAsE;AACtE,MAAM,CAAN,IAAY,iBAIX;AAJD,WAAY,iBAAiB;IAC3B,sDAAiC,CAAA;IACjC,kEAA6C,CAAA;IAC7C,0DAAqC,CAAA;AACvC,CAAC,EAJW,iBAAiB,KAAjB,iBAAiB,QAI5B"}

package/dist/isl/sanitize.d.ts

@@ -1,13 +1,20 @@
 import type { CSLResult } from '../csl/types.js';
 import type { ISLResult } from './types.js';
+import type { DetectThreatsOptions } from './detect/index.js';
+/** Options for sanitize. Enables flexible threat detection (e.g. custom patterns). */
+export interface SanitizeOptions {
+    /** Passed to detectThreats per segment (e.g. patterns override/extend). */
+    readonly detectThreatsOptions?: DetectThreatsOptions;
+}
 /**
- * Sanitiza contenido según nivel de confianza - función pura
+ * Sanitizes content according to trust level - pure function
  *
  * @remarks
- * ISL aplica sanitización diferenciada según el trust level:
- * - TC: Sanitización mínima
- * - STC: Sanitización moderada
- * - UC: Sanitización agresiva
+ * ISL applies differentiated sanitization according to trust level:
+ * - TC: Minimal sanitization
+ * - STC: Moderate sanitization
+ * - UC: Aggressive sanitization
+ * Threat detection uses default patterns unless detectThreatsOptions (e.g. patterns) is provided.
  */
-export declare function sanitize(cslResult: CSLResult): ISLResult;
+export declare function sanitize(cslResult: CSLResult, options?: SanitizeOptions): ISLResult;
 //# sourceMappingURL=sanitize.d.ts.map

package/dist/isl/sanitize.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"sanitize.d.ts","sourceRoot":"","sources":["../../src/isl/sanitize.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAA;AAChD,OAAO,KAAK,EAAE,SAAS,EAAkC,MAAM,YAAY,CAAA;AAM3E;;;;;;;;GAQG;AACH,wBAAgB,QAAQ,CAAC,SAAS,EAAE,SAAS,GAAG,SAAS,CAmDxD"}
+{"version":3,"file":"sanitize.d.ts","sourceRoot":"","sources":["../../src/isl/sanitize.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAA;AAGhD,OAAO,KAAK,EAAE,SAAS,EAAc,MAAM,YAAY,CAAA;AAIvD,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,mBAAmB,CAAA;AAG7D,sFAAsF;AACtF,MAAM,WAAW,eAAe;IAC9B,2EAA2E;IAC3E,QAAQ,CAAC,oBAAoB,CAAC,EAAE,oBAAoB,CAAA;CACrD;AAED;;;;;;;;;GASG;AACH,wBAAgB,QAAQ,CAAC,SAAS,EAAE,SAAS,EAAE,OAAO,GAAE,eAAoB,GAAG,SAAS,CA2CvF"}

package/dist/isl/sanitize.js

@@ -1,57 +1,52 @@
-import { createLineageEntry } from '../csl/value-objects/index.js';
-import { addLineageEntry } from '../shared/lineage.js';
 import { TrustLevelType } from '../csl/types.js';
+import { buildISLLineage } from './lineage/buildISLLineage.js';
+import { buildISLResult } from './process/buildISLResult.js';
+import { detectThreats } from './detect/index.js';
+import { createPiDetectionResult } from './value-objects/PiDetectionResult.js';
 /**
- * Sanitiza contenido según nivel de confianza - función pura
+ * Sanitizes content according to trust level - pure function
  *
  * @remarks
- * ISL aplica sanitización diferenciada según el trust level:
- * - TC: Sanitización mínima
- * - STC: Sanitización moderada
- * - UC: Sanitización agresiva
+ * ISL applies differentiated sanitization according to trust level:
+ * - TC: Minimal sanitization
+ * - STC: Moderate sanitization
+ * - UC: Aggressive sanitization
+ * Threat detection uses default patterns unless detectThreatsOptions (e.g. patterns) is provided.
  */
-export function sanitize(cslResult) {
+export function sanitize(cslResult, options = {}) {
+    const startTime = Date.now();
     const segments = [];
-    let allLineage = [...cslResult.lineage];
-    const blockedCount = 0;
-    let instructionsRemovedCount = 0;
+    const detectOptions = options.detectThreatsOptions;
     for (const cslSegment of cslResult.segments) {
-        // Determinar nivel de sanitización según trust level
+        // Determine sanitization level according to trust level
         const sanitizationLevel = getSanitizationLevel(cslSegment.trust);
-        // Sanitizar contenido según nivel
+        // Sanitize content according to level
         const sanitized = sanitizeContent(cslSegment.content, sanitizationLevel);
-        // Detectar instrucciones removidas (esto se implementará con detección de PI)
-        const removedInstructions = [];
-        // Crear segmento sanitizado
+        // Detect threats (deterministic, bounded; optional custom patterns)
+        const detections = detectThreats(cslSegment.content, detectOptions);
+        const piDetection = detections.length > 0 ? createPiDetectionResult(detections) : undefined;
+        // Build ISL lineage for this segment
+        const segmentLineage = buildISLLineage(cslSegment.lineage, startTime);
+        // Create sanitized segment with detections when present
         const islSegment = {
             id: cslSegment.id,
-            originalContent: cslSegment.content, // ✅ Preservar original
+            originalContent: cslSegment.content,
             sanitizedContent: sanitized.content,
             trust: cslSegment.trust,
-            lineage: addLineageEntry(cslSegment.lineage, createLineageEntry('ISL', Date.now())),
-            instructionsRemoved: removedInstructions,
-            sanitizationLevel
+            lineage: [...segmentLineage],
+            sanitizationLevel,
+            ...(piDetection !== undefined && { piDetection })
         };
         segments.push(islSegment);
-        const lastLineageEntry = islSegment.lineage.at(-1);
-        if (lastLineageEntry) {
-            allLineage = addLineageEntry(allLineage, lastLineageEntry);
-        }
-        instructionsRemovedCount += removedInstructions.length;
     }
-    return {
-        segments: Object.freeze(segments),
-        lineage: Object.freeze(allLineage),
-        metadata: {
-            totalSegments: segments.length,
-            sanitizedSegments: segments.length,
-            blockedSegments: blockedCount,
-            instructionsRemoved: instructionsRemovedCount
-        }
-    };
+    // Build complete lineage
+    const allLineage = buildISLLineage(cslResult.lineage, startTime);
+    // Build result using process function
+    const processingTime = Date.now() - startTime;
+    return buildISLResult(segments, allLineage, processingTime);
 }
 /**
- * Determina nivel de sanitización según trust level - función pura
+ * Determines sanitization level according to trust level - pure function
  */
 function getSanitizationLevel(trust) {
     if (trust.value === TrustLevelType.TC)
@@ -61,14 +56,13 @@ function getSanitizationLevel(trust) {
     return 'aggressive'; // UC
 }
 /**
- * Sanitiza contenido según nivel - función pura
+ * Sanitizes content according to level - pure function
  */
 function sanitizeContent(content, _level) {
-    // Por ahora retorna el contenido sin cambios
-    // La lógica de sanitización real se implementará después
+    // For now returns content unchanged
+    // Real sanitization logic will be implemented later
     return {
         content,
-        removed: []
     };
 }
 //# sourceMappingURL=sanitize.js.map

package/dist/isl/sanitize.js.map

@@ -1 +1 @@
-{"version":3,"file":"sanitize.js","sourceRoot":"","sources":["../../src/isl/sanitize.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAA;AAClE,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAA;AAEtD,OAAO,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAA;AAEhD;;;;;;;;GAQG;AACH,MAAM,UAAU,QAAQ,CAAC,SAAoB;IAC3C,MAAM,QAAQ,GAAiB,EAAE,CAAA;IACjC,IAAI,UAAU,GAA6B,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC,CAAA;IACjE,MAAM,YAAY,GAAG,CAAC,CAAA;IACtB,IAAI,wBAAwB,GAAG,CAAC,CAAA;IAEhC,KAAK,MAAM,UAAU,IAAI,SAAS,CAAC,QAAQ,EAAE,CAAC;QAC5C,qDAAqD;QACrD,MAAM,iBAAiB,GAAG,oBAAoB,CAAC,UAAU,CAAC,KAAK,CAAC,CAAA;QAEhE,kCAAkC;QAClC,MAAM,SAAS,GAAG,eAAe,CAC/B,UAAU,CAAC,OAAO,EAClB,iBAAiB,CAClB,CAAA;QAED,8EAA8E;QAC9E,MAAM,mBAAmB,GAAyB,EAAE,CAAA;QAEpD,4BAA4B;QAC5B,MAAM,UAAU,GAAe;YAC7B,EAAE,EAAE,UAAU,CAAC,EAAE;YACjB,eAAe,EAAE,UAAU,CAAC,OAAO,EAAG,uBAAuB;YAC7D,gBAAgB,EAAE,SAAS,CAAC,OAAO;YACnC,KAAK,EAAE,UAAU,CAAC,KAAK;YACvB,OAAO,EAAE,eAAe,CACtB,UAAU,CAAC,OAAO,EAClB,kBAAkB,CAAC,KAAK,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC,CACtC;YACD,mBAAmB,EAAE,mBAAmB;YACxC,iBAAiB;SAClB,CAAA;QAED,QAAQ,CAAC,IAAI,CAAC,UAAU,CAAC,CAAA;QACzB,MAAM,gBAAgB,GAAG,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAA;QAClD,IAAI,gBAAgB,EAAE,CAAC;YACrB,UAAU,GAAG,eAAe,CAAC,UAAU,EAAE,gBAAgB,CAAC,CAAA;QAC5D,CAAC;QACD,wBAAwB,IAAI,mBAAmB,CAAC,MAAM,CAAA;IACxD,CAAC;IAED,OAAO;QACL,QAAQ,EAAE,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC;QACjC,OAAO,EAAE,MAAM,CAAC,MAAM,CAAC,UAAU,CAAC;QAClC,QAAQ,EAAE;YACR,aAAa,EAAE,QAAQ,CAAC,MAAM;YAC9B,iBAAiB,EAAE,QAAQ,CAAC,MAAM;YAClC,eAAe,EAAE,YAAY;YAC7B,mBAAmB,EAAE,wBAAwB;SAC9C;KACF,CAAA;AACH,CAAC;AAED;;GAEG;AACH,SAAS,oBAAoB,CAAC,KAAiB;IAC7C,IAAI,KAAK,CAAC,KAAK,KAAK,cAAc,CAAC,EAAE;QAAE,OAAO,SAAS,CAAA;IACvD,IAAI,KAAK,CAAC,KAAK,KAAK,cAAc,CAAC,GAAG;QAAE,OAAO,UAAU,CAAA;IACzD,OAAO,YAAY,CAAA,CAAE,KAAK;AAC5B,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CACtB,OAAe,EACf,MAA6C;IAE7C,6CAA6C;IAC7C,yDAAyD;IACzD,OAAO;QACL,OAAO;QACP,OAAO,EAAE,EAAE;KACZ,CAAA;AACH,CAAC"}
+{"version":3,"file":"sanitize.js","sourceRoot":"","sources":["../../src/isl/sanitize.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAA;AAEhD,OAAO,EAAE,eAAe,EAAE,MAAM,8BAA8B,CAAA;AAC9D,OAAO,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAA;AAC5D,OAAO,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAA;AAEjD,OAAO,EAAE,uBAAuB,EAAE,MAAM,sCAAsC,CAAA;AAQ9E;;;;;;;;;GASG;AACH,MAAM,UAAU,QAAQ,CAAC,SAAoB,EAAE,UAA2B,EAAE;IAC1E,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAA;IAC5B,MAAM,QAAQ,GAAiB,EAAE,CAAA;IACjC,MAAM,aAAa,GAAG,OAAO,CAAC,oBAAoB,CAAA;IAElD,KAAK,MAAM,UAAU,IAAI,SAAS,CAAC,QAAQ,EAAE,CAAC;QAC5C,wDAAwD;QACxD,MAAM,iBAAiB,GAAG,oBAAoB,CAAC,UAAU,CAAC,KAAK,CAAC,CAAA;QAEhE,sCAAsC;QACtC,MAAM,SAAS,GAAG,eAAe,CAC/B,UAAU,CAAC,OAAO,EAClB,iBAAiB,CAClB,CAAA;QAED,oEAAoE;QACpE,MAAM,UAAU,GAAG,aAAa,CAAC,UAAU,CAAC,OAAO,EAAE,aAAa,CAAC,CAAA;QACnE,MAAM,WAAW,GACf,UAAU,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,uBAAuB,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;QAEzE,qCAAqC;QACrC,MAAM,cAAc,GAAG,eAAe,CAAC,UAAU,CAAC,OAAO,EAAE,SAAS,CAAC,CAAA;QAErE,wDAAwD;QACxD,MAAM,UAAU,GAAe;YAC7B,EAAE,EAAE,UAAU,CAAC,EAAE;YACjB,eAAe,EAAE,UAAU,CAAC,OAAO;YACnC,gBAAgB,EAAE,SAAS,CAAC,OAAO;YACnC,KAAK,EAAE,UAAU,CAAC,KAAK;YACvB,OAAO,EAAE,CAAC,GAAG,cAAc,CAAC;YAC5B,iBAAiB;YACjB,GAAG,CAAC,WAAW,KAAK,SAAS,IAAI,EAAE,WAAW,EAAE,CAAC;SAClD,CAAA;QAED,QAAQ,CAAC,IAAI,CAAC,UAAU,CAAC,CAAA;IAC3B,CAAC;IAED,yBAAyB;IACzB,MAAM,UAAU,GAAG,eAAe,CAAC,SAAS,CAAC,OAAO,EAAE,SAAS,CAAC,CAAA;IAEhE,sCAAsC;IACtC,MAAM,cAAc,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAA;IAC7C,OAAO,cAAc,CAAC,QAAQ,EAAE,UAAU,EAAE,cAAc,CAAC,CAAA;AAC7D,CAAC;AAED;;GAEG;AACH,SAAS,oBAAoB,CAAC,KAAiB;IAC7C,IAAI,KAAK,CAAC,KAAK,KAAK,cAAc,CAAC,EAAE;QAAE,OAAO,SAAS,CAAA;IACvD,IAAI,KAAK,CAAC,KAAK,KAAK,cAAc,CAAC,GAAG;QAAE,OAAO,UAAU,CAAA;IACzD,OAAO,YAAY,CAAA,CAAE,KAAK;AAC5B,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CACtB,OAAe,EACf,MAA6C;IAE7C,oCAAoC;IACpC,oDAAoD;IACpD,OAAO;QACL,OAAO;KACR,CAAA;AACH,CAAC"}