npm - @bryan-thompson/inspector-assessment-client - Versions diffs - 1.25.4 → 1.25.5 - Mend

@bryan-thompson/inspector-assessment-client 1.25.4 → 1.25.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (123) hide show

package/lib/services/assessment/modules/annotations/BehaviorInference.js ADDED Viewed

@@ -0,0 +1,394 @@
+/**
+ * Behavior Inference
+ * Infers expected tool behavior from name patterns and descriptions
+ *
+ * Extracted from ToolAnnotationAssessor.ts for maintainability.
+ * Handles persistence model detection and behavior classification.
+ *
+ * Enhanced in Issue #57 with multi-signal inference from descriptions and schemas.
+ */
+import { analyzeDescription } from "./DescriptionAnalyzer.js";
+import { analyzeInputSchema, analyzeOutputSchema, } from "./SchemaAnalyzer.js";
+import { getDefaultCompiledPatterns, matchToolPattern, checkDescriptionForImmediatePersistence, } from "../../config/annotationPatterns.js";
+import { isRunKeywordExempt } from "./AnnotationDeceptionDetector.js";
+/**
+ * Infer expected behavior from tool name and description
+ * Returns confidence level and ambiguity flag for better handling
+ */
+export function inferBehavior(toolName, description, compiledPatterns, persistenceContext) {
+    const patterns = compiledPatterns ?? getDefaultCompiledPatterns();
+    const lowerDesc = (description || "").toLowerCase();
+    // Issue #18: Early check for run + analysis suffix pattern
+    // Tools like "runAccessibilityAudit" are genuinely read-only (fetch analysis data)
+    // Check this BEFORE pattern matching to override the generic "run_" write pattern
+    if (isRunKeywordExempt(toolName)) {
+        return {
+            expectedReadOnly: true,
+            expectedDestructive: false,
+            reason: `Tool name contains 'run' with analysis suffix (audit, check, scan, etc.) - this is a read-only analysis operation`,
+            confidence: "medium",
+            isAmbiguous: false,
+        };
+    }
+    // Use the configurable pattern matching system
+    const patternMatch = matchToolPattern(toolName, patterns);
+    // Handle pattern match results
+    switch (patternMatch.category) {
+        case "ambiguous":
+            // Ambiguous patterns - don't make strong assertions
+            return {
+                expectedReadOnly: false,
+                expectedDestructive: false,
+                reason: `Tool name matches ambiguous pattern '${patternMatch.pattern}' - behavior varies by implementation context`,
+                confidence: "low",
+                isAmbiguous: true,
+            };
+        case "destructive":
+            return {
+                expectedReadOnly: false,
+                expectedDestructive: true,
+                reason: `Tool name matches destructive pattern: ${patternMatch.pattern}`,
+                confidence: "high",
+                isAmbiguous: false,
+            };
+        case "readOnly":
+            return {
+                expectedReadOnly: true,
+                expectedDestructive: false,
+                reason: `Tool name matches read-only pattern: ${patternMatch.pattern}`,
+                confidence: "high",
+                isAmbiguous: false,
+            };
+        case "write": {
+            // CREATE operations are NEVER destructive - they only ADD new data
+            // Only UPDATE/MODIFY operations can be considered destructive when they modify existing data
+            const isCreateOperation = /^(create|add|insert|new|generate)[_-]/i.test(toolName);
+            if (isCreateOperation) {
+                return {
+                    expectedReadOnly: false,
+                    expectedDestructive: false,
+                    reason: `Tool name matches create pattern: ${patternMatch.pattern} - create operations only add data and are not destructive`,
+                    confidence: "high",
+                    isAmbiguous: false,
+                };
+            }
+            // Three-Tier Classification: Check persistence model for UPDATE/MODIFY operations
+            // If immediate persistence detected, update operations should be marked destructive
+            const descriptionCheck = checkDescriptionForImmediatePersistence(description || "");
+            // Priority 1: Description explicitly indicates deferred persistence
+            if (descriptionCheck.indicatesDeferred) {
+                return {
+                    expectedReadOnly: false,
+                    expectedDestructive: false,
+                    reason: `Tool name matches write pattern (${patternMatch.pattern}), description indicates deferred/in-memory operation`,
+                    confidence: "medium",
+                    isAmbiguous: false,
+                };
+            }
+            // Priority 2: Description explicitly indicates immediate persistence
+            if (descriptionCheck.indicatesImmediate) {
+                return {
+                    expectedReadOnly: false,
+                    expectedDestructive: true,
+                    reason: `Tool name matches write pattern (${patternMatch.pattern}), description indicates immediate persistence to storage (${descriptionCheck.matchedPatterns.slice(0, 2).join(", ")})`,
+                    confidence: "medium",
+                    isAmbiguous: false,
+                };
+            }
+            // Priority 3: Server-level persistence model (no save operations = immediate)
+            if (persistenceContext?.model === "immediate") {
+                return {
+                    expectedReadOnly: false,
+                    expectedDestructive: true,
+                    reason: `Tool name matches write pattern (${patternMatch.pattern}), server has no save operations → write operations likely persist immediately`,
+                    confidence: "medium",
+                    isAmbiguous: false,
+                };
+            }
+            // Priority 4: Server has save operations = deferred (in-memory until save)
+            if (persistenceContext?.model === "deferred") {
+                return {
+                    expectedReadOnly: false,
+                    expectedDestructive: false,
+                    reason: `Tool name matches write pattern (${patternMatch.pattern}), server has save operations → write operations likely in-memory until explicit save`,
+                    confidence: "medium",
+                    isAmbiguous: false,
+                };
+            }
+            // Default: Unknown persistence model - conservative approach (not destructive)
+            return {
+                expectedReadOnly: false,
+                expectedDestructive: false,
+                reason: `Tool name matches write pattern: ${patternMatch.pattern}`,
+                confidence: "medium",
+                isAmbiguous: false,
+            };
+        }
+        case "unknown":
+        default:
+            // Fall through to description-based analysis
+            break;
+    }
+    // Check description for hints (medium confidence)
+    if (lowerDesc.includes("delete") || lowerDesc.includes("remove")) {
+        return {
+            expectedReadOnly: false,
+            expectedDestructive: true,
+            reason: "Description mentions delete/remove operations",
+            confidence: "medium",
+            isAmbiguous: false,
+        };
+    }
+    // Check for read-only indicators, but write operations take precedence
+    const hasReadIndicators = lowerDesc.includes("read") ||
+        lowerDesc.includes("get") ||
+        lowerDesc.includes("fetch");
+    const hasWriteIndicators = lowerDesc.includes("update") ||
+        lowerDesc.includes("create") ||
+        lowerDesc.includes("increment") ||
+        lowerDesc.includes("modify") ||
+        lowerDesc.includes("set") ||
+        lowerDesc.includes("change");
+    if (hasReadIndicators && !hasWriteIndicators) {
+        return {
+            expectedReadOnly: true,
+            expectedDestructive: false,
+            reason: "Description suggests read-only operation",
+            confidence: "medium",
+            isAmbiguous: false,
+        };
+    }
+    // Default: assume write with low confidence (ambiguous)
+    return {
+        expectedReadOnly: false,
+        expectedDestructive: false,
+        reason: "Could not infer behavior from name pattern",
+        confidence: "low",
+        isAmbiguous: true,
+    };
+}
+/**
+ * Enhanced behavior inference using multiple signals.
+ *
+ * Analyzes tool name patterns, descriptions, and schemas to provide
+ * a more accurate behavior inference with aggregated confidence.
+ *
+ * Part of Issue #57: Architecture detection and behavior inference modules
+ *
+ * @param toolName - Name of the tool
+ * @param description - Tool description (optional)
+ * @param inputSchema - Input parameter schema (optional)
+ * @param outputSchema - Output/return schema (optional)
+ * @param compiledPatterns - Compiled regex patterns for name matching
+ * @param persistenceContext - Server-level persistence context
+ * @returns EnhancedBehaviorInferenceResult with multi-signal analysis
+ */
+export function inferBehaviorEnhanced(toolName, description, inputSchema, outputSchema, compiledPatterns, persistenceContext) {
+    // Get the basic name-pattern inference
+    const baseResult = inferBehavior(toolName, description, compiledPatterns, persistenceContext);
+    // Initialize signals collection
+    const signals = {};
+    // Convert base result to name pattern signal
+    signals.namePatternSignal = {
+        expectedReadOnly: baseResult.expectedReadOnly,
+        expectedDestructive: baseResult.expectedDestructive,
+        confidence: confidenceToNumber(baseResult.confidence),
+        evidence: [baseResult.reason],
+    };
+    // Analyze description if provided
+    if (description && description.trim().length > 0) {
+        signals.descriptionSignal = analyzeDescription(description);
+    }
+    // Analyze input schema if provided
+    if (inputSchema) {
+        signals.inputSchemaSignal = analyzeInputSchema(inputSchema);
+    }
+    // Analyze output schema if provided
+    if (outputSchema) {
+        signals.outputSchemaSignal = analyzeOutputSchema(outputSchema);
+    }
+    // Aggregate signals to determine final result
+    const aggregated = aggregateSignals(signals);
+    // Preserve persistence model info from base result if present
+    let finalReason = aggregated.reason;
+    if (baseResult.reason.includes("deferred") ||
+        baseResult.reason.includes("immediate persistence")) {
+        // Append persistence context to aggregated reason
+        const persistenceInfo = baseResult.reason.includes("deferred")
+            ? " (deferred persistence model)"
+            : " (immediate persistence model)";
+        finalReason = aggregated.reason + persistenceInfo;
+    }
+    return {
+        expectedReadOnly: aggregated.expectedReadOnly,
+        expectedDestructive: aggregated.expectedDestructive,
+        reason: finalReason,
+        confidence: numberToConfidence(aggregated.confidence),
+        isAmbiguous: aggregated.isAmbiguous,
+        signals,
+        aggregatedConfidence: aggregated.confidence,
+    };
+}
+/**
+ * Convert string confidence to numeric value (0-100).
+ */
+function confidenceToNumber(confidence) {
+    switch (confidence) {
+        case "high":
+            return 90;
+        case "medium":
+            return 70;
+        case "low":
+            return 40;
+        default:
+            return 0;
+    }
+}
+/**
+ * Convert numeric confidence (0-100) to string confidence level.
+ */
+function numberToConfidence(confidence) {
+    if (confidence >= 80)
+        return "high";
+    if (confidence >= 50)
+        return "medium";
+    return "low";
+}
+/**
+ * Aggregate multiple signals into a final inference result.
+ *
+ * Signal aggregation rules:
+ * 1. Destructive signals take priority if confidence >= 70
+ * 2. Read-only signals are aggregated when no destructive signals
+ * 3. Conflicting signals decrease overall confidence
+ * 4. Multiple agreeing signals increase confidence
+ */
+function aggregateSignals(signals) {
+    const activeSignals = Object.entries(signals).filter(([_, signal]) => signal && signal.confidence > 0);
+    if (activeSignals.length === 0) {
+        return {
+            expectedReadOnly: false,
+            expectedDestructive: false,
+            reason: "No signals detected",
+            confidence: 0,
+            isAmbiguous: true,
+        };
+    }
+    // If only one weak signal exists, treat as ambiguous
+    if (activeSignals.length === 1 && activeSignals[0][1].confidence < 50) {
+        return {
+            expectedReadOnly: false,
+            expectedDestructive: false,
+            reason: "Only weak signal detected - behavior is ambiguous",
+            confidence: activeSignals[0][1].confidence,
+            isAmbiguous: true,
+        };
+    }
+    // Count signals by behavior type
+    let readOnlySignals = [];
+    let destructiveSignals = [];
+    let writeSignals = [];
+    for (const [name, signal] of activeSignals) {
+        if (signal.expectedDestructive) {
+            destructiveSignals.push({ name, signal });
+        }
+        else if (signal.expectedReadOnly) {
+            readOnlySignals.push({ name, signal });
+        }
+        else {
+            writeSignals.push({ name, signal });
+        }
+    }
+    // Determine final behavior
+    let expectedReadOnly = false;
+    let expectedDestructive = false;
+    let reason;
+    let confidence;
+    let isAmbiguous = false;
+    // Priority 1: Strong destructive signals
+    const strongDestructive = destructiveSignals.filter((s) => s.signal.confidence >= 70);
+    if (strongDestructive.length > 0) {
+        expectedDestructive = true;
+        const avgConfidence = strongDestructive.reduce((sum, s) => sum + s.signal.confidence, 0) /
+            strongDestructive.length;
+        // Gentle boost for multiple signals (prevents saturation at 100)
+        const boostMultiplier = Math.max(0, strongDestructive.length - 1);
+        confidence = Math.min(100, avgConfidence + boostMultiplier * 3);
+        reason = `Destructive behavior detected from: ${strongDestructive.map((s) => formatSignalName(s.name)).join(", ")}`;
+        // Check for conflicts
+        if (readOnlySignals.length > 0) {
+            confidence -= 10;
+            reason += ` (conflicts with read-only signals)`;
+            isAmbiguous = true;
+        }
+    }
+    // Priority 2: Read-only vs Write signals
+    // If there are strong write signals, they should take precedence
+    else if (readOnlySignals.length > 0) {
+        const strongWriteSignals = writeSignals.filter((s) => s.signal.confidence >= 70);
+        // Write signals of high confidence override read-only (multi-operation tools)
+        if (strongWriteSignals.length > 0) {
+            const writeAvg = strongWriteSignals.reduce((sum, s) => sum + s.signal.confidence, 0) /
+                strongWriteSignals.length;
+            const readAvg = readOnlySignals.reduce((sum, s) => sum + s.signal.confidence, 0) /
+                readOnlySignals.length;
+            // When both read-only and write signals present, it's always a conflict
+            // Mark as ambiguous and let the dominant signal determine behavior
+            isAmbiguous = true;
+            if (writeAvg >= readAvg * 0.9) {
+                // Write is dominant - but still a conflict
+                expectedReadOnly = false;
+                confidence = Math.max(0, Math.round(writeAvg - 10)); // Reduce due to conflict, prevent underflow
+                reason = `Write behavior detected from: ${strongWriteSignals.map((s) => formatSignalName(s.name)).join(", ")} (conflicts with read-only signals)`;
+            }
+            else {
+                // Read-only is dominant - still a conflict
+                expectedReadOnly = true;
+                confidence = Math.max(0, Math.round(readAvg - 15)); // Reduce due to conflict, prevent underflow
+                reason = `Read-only behavior detected from: ${readOnlySignals.map((s) => formatSignalName(s.name)).join(", ")} (conflicts with write signals)`;
+            }
+        }
+        else {
+            // Pure read-only, no write conflicts
+            expectedReadOnly = true;
+            const avgConfidence = readOnlySignals.reduce((sum, s) => sum + s.signal.confidence, 0) /
+                readOnlySignals.length;
+            // Gentle boost for multiple signals (prevents saturation at 100)
+            const boostMultiplier = Math.max(0, readOnlySignals.length - 1);
+            confidence = Math.min(100, avgConfidence + boostMultiplier * 3);
+            reason = `Read-only behavior detected from: ${readOnlySignals.map((s) => formatSignalName(s.name)).join(", ")}`;
+        }
+    }
+    // Priority 3: Write signals (not destructive)
+    else if (writeSignals.length > 0) {
+        const avgConfidence = writeSignals.reduce((sum, s) => sum + s.signal.confidence, 0) /
+            writeSignals.length;
+        confidence = avgConfidence;
+        reason = `Write behavior detected from: ${writeSignals.map((s) => formatSignalName(s.name)).join(", ")}`;
+    }
+    // Fallback: No clear signals
+    else {
+        confidence = 30;
+        reason = "No clear behavior signals detected";
+        isAmbiguous = true;
+    }
+    // Ensure confidence is in valid range
+    confidence = Math.max(0, Math.min(100, confidence));
+    return {
+        expectedReadOnly,
+        expectedDestructive,
+        reason,
+        confidence: Math.round(confidence),
+        isAmbiguous,
+    };
+}
+/**
+ * Format signal name for display.
+ */
+function formatSignalName(name) {
+    return name
+        .replace(/Signal$/, "")
+        .replace(/([A-Z])/g, " $1")
+        .trim()
+        .toLowerCase();
+}

package/lib/services/assessment/modules/annotations/DescriptionAnalyzer.d.ts ADDED Viewed

@@ -0,0 +1,64 @@
+/**
+ * Description Analyzer
+ *
+ * Analyzes tool descriptions for behavioral keywords to infer expected behavior.
+ * This provides a more robust inference than name-pattern matching alone.
+ *
+ * Part of Issue #57: Architecture detection and behavior inference modules
+ */
+import type { InferenceSignal } from "../../../../lib/assessment/extendedTypes.js";
+/**
+ * Keyword categories with confidence levels.
+ * Keywords in 'high' have strong semantic association with the behavior.
+ * Keywords in 'medium' are indicative but may have context-dependent meanings.
+ * Keywords in 'low' are weak indicators.
+ */
+export declare const DESCRIPTION_BEHAVIOR_KEYWORDS: {
+    readOnly: {
+        high: string[];
+        medium: string[];
+        low: string[];
+    };
+    destructive: {
+        high: string[];
+        medium: string[];
+        low: string[];
+    };
+    write: {
+        high: string[];
+        medium: string[];
+        low: string[];
+    };
+};
+/**
+ * Analyze a tool description for behavioral signals.
+ *
+ * @param description - Tool description to analyze
+ * @returns InferenceSignal with read-only/destructive expectations
+ */
+export declare function analyzeDescription(description: string): InferenceSignal;
+/**
+ * Quick check if description contains read-only indicators.
+ * Useful for fast filtering before full analysis.
+ *
+ * @param description - Tool description to check
+ * @returns True if any read-only keywords are present
+ */
+export declare function hasReadOnlyIndicators(description: string): boolean;
+/**
+ * Quick check if description contains destructive indicators.
+ * Useful for fast filtering before full analysis.
+ *
+ * @param description - Tool description to check
+ * @returns True if any destructive keywords are present
+ */
+export declare function hasDestructiveIndicators(description: string): boolean;
+/**
+ * Quick check if description contains write indicators.
+ * Useful for fast filtering before full analysis.
+ *
+ * @param description - Tool description to check
+ * @returns True if any write keywords are present
+ */
+export declare function hasWriteIndicators(description: string): boolean;
+//# sourceMappingURL=DescriptionAnalyzer.d.ts.map

package/lib/services/assessment/modules/annotations/DescriptionAnalyzer.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"DescriptionAnalyzer.d.ts","sourceRoot":"","sources":["../../../../../src/services/assessment/modules/annotations/DescriptionAnalyzer.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,gCAAgC,CAAC;AAEtE;;;;;GAKG;AACH,eAAO,MAAM,6BAA6B;;;;;;;;;;;;;;;;CAoGzC,CAAC;AAiFF;;;;;GAKG;AACH,wBAAgB,kBAAkB,CAAC,WAAW,EAAE,MAAM,GAAG,eAAe,CA6GvE;AAED;;;;;;GAMG;AACH,wBAAgB,qBAAqB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAYlE;AAED;;;;;;GAMG;AACH,wBAAgB,wBAAwB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAYrE;AAED;;;;;;GAMG;AACH,wBAAgB,kBAAkB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAY/D"}