@bryan-thompson/inspector-assessment 1.5.0 → 1.7.0

package/client/lib/lib/assessmentTypes.js

@@ -0,0 +1,220 @@
+/**
+ * MCP Directory Review Assessment Types
+ * Based on Anthropic's 5 core requirements for MCP directory submission
+ */
+// ============================================================================
+// END NEW ASSESSOR TYPES
+// ============================================================================
+// Backend API security patterns (8 total) - tests API security, not LLM behaviors
+export const PROMPT_INJECTION_TESTS = [
+    // Critical Injection (3)
+    {
+        testName: "Command Injection",
+        description: "Test if tool executes system commands",
+        payload: "; rm -rf /; echo 'test'",
+        riskLevel: "HIGH",
+    },
+    {
+        testName: "SQL Injection",
+        description: "Test if tool properly escapes SQL commands",
+        payload: "'; DROP TABLE users;--",
+        riskLevel: "HIGH",
+    },
+    {
+        testName: "Path Traversal",
+        description: "Test if tool allows access to files outside intended directory",
+        payload: "../../../etc/passwd",
+        riskLevel: "HIGH",
+    },
+    // Input Validation (3)
+    {
+        testName: "Type Safety",
+        description: "Test if tool validates parameter types correctly",
+        payload: "not_a_number",
+        riskLevel: "MEDIUM",
+    },
+    {
+        testName: "Boundary Testing",
+        description: "Test edge cases and boundary conditions",
+        payload: "",
+        riskLevel: "LOW",
+    },
+    {
+        testName: "Required Fields",
+        description: "Test if tool validates required parameters",
+        payload: "MISSING_REQUIRED",
+        riskLevel: "MEDIUM",
+    },
+    // Protocol Compliance (2)
+    {
+        testName: "MCP Error Format",
+        description: "Verify errors follow MCP protocol specification",
+        payload: "INVALID_TRIGGER_ERROR",
+        riskLevel: "LOW",
+    },
+    {
+        testName: "Timeout Handling",
+        description: "Test if tool handles long operations gracefully",
+        payload: "SIMULATE_LONG_OPERATION",
+        riskLevel: "LOW",
+    },
+];
+export const DEFAULT_ASSESSMENT_CONFIG = {
+    testTimeout: 30000, // 30 seconds per tool
+    delayBetweenTests: 0, // No delay by default
+    skipBrokenTools: false,
+    reviewerMode: false,
+    enableExtendedAssessment: true, // Enable MCP Spec Compliance assessment by default
+    parallelTesting: false,
+    maxParallelTests: 5,
+    maxToolsToTestForErrors: -1, // Default to test ALL tools for comprehensive compliance
+    securityPatternsToTest: 8, // Test all security patterns by default
+    enableDomainTesting: true, // Enable advanced security testing by default (all 8 backend patterns)
+    mcpProtocolVersion: "2025-06",
+    enableSourceCodeAnalysis: false, // Source code analysis disabled by default (requires sourceCodePath)
+    assessmentCategories: {
+        functionality: true,
+        security: true,
+        documentation: true,
+        errorHandling: true,
+        usability: true,
+        mcpSpecCompliance: false,
+        // New assessors - disabled by default, enable for MCP Directory compliance audits
+        aupCompliance: false,
+        toolAnnotations: false,
+        prohibitedLibraries: false,
+        manifestValidation: false,
+        portability: false,
+    },
+};
+// Reviewer mode configuration: optimized for fast, human-assisted reviews
+// Focuses on Anthropic's 5 core requirements only
+export const REVIEWER_MODE_CONFIG = {
+    testTimeout: 10000, // 10 seconds per tool (faster)
+    delayBetweenTests: 100, // Small delay for rate limiting
+    skipBrokenTools: true, // Skip broken tools to save time
+    reviewerMode: true,
+    enableExtendedAssessment: false, // Disable extended assessments (not required for directory approval)
+    parallelTesting: true, // Faster execution
+    maxParallelTests: 5,
+    scenariosPerTool: 1, // Single realistic test per tool
+    maxToolsToTestForErrors: 3, // Test only first 3 tools for error handling
+    securityPatternsToTest: 3, // Test only 3 critical security patterns
+    enableDomainTesting: false, // Use basic security testing for speed (3 patterns)
+    mcpProtocolVersion: "2025-06",
+    enableSourceCodeAnalysis: false,
+    assessmentCategories: {
+        functionality: true,
+        security: true,
+        documentation: true,
+        errorHandling: true,
+        usability: true,
+        mcpSpecCompliance: false, // Not part of Anthropic's 5 core requirements
+        // New assessors - disabled in reviewer mode for speed
+        aupCompliance: false,
+        toolAnnotations: false,
+        prohibitedLibraries: false,
+        manifestValidation: false,
+        portability: false,
+    },
+};
+// Developer mode configuration: comprehensive testing for debugging
+export const DEVELOPER_MODE_CONFIG = {
+    testTimeout: 30000, // 30 seconds per tool
+    delayBetweenTests: 500, // Moderate delay for thorough testing
+    skipBrokenTools: false,
+    reviewerMode: false,
+    enableExtendedAssessment: true,
+    parallelTesting: false, // Sequential for easier debugging
+    maxParallelTests: 5,
+    maxToolsToTestForErrors: -1, // Test ALL tools
+    securityPatternsToTest: 8, // Test all security patterns
+    enableDomainTesting: true, // Enable advanced security testing (all 8 backend patterns)
+    mcpProtocolVersion: "2025-06",
+    enableSourceCodeAnalysis: true, // Enable source code analysis if path provided
+    assessmentCategories: {
+        functionality: true,
+        security: true,
+        documentation: true,
+        errorHandling: true,
+        usability: true,
+        mcpSpecCompliance: true, // Include extended assessments
+        // New assessors - enabled in developer mode for comprehensive testing
+        aupCompliance: true,
+        toolAnnotations: true,
+        prohibitedLibraries: true,
+        manifestValidation: true,
+        portability: true,
+    },
+};
+// MCP Directory Audit mode: focuses on compliance gap assessors
+// Use for pre-submission validation to Anthropic MCP Directory
+export const AUDIT_MODE_CONFIG = {
+    testTimeout: 30000,
+    delayBetweenTests: 100,
+    skipBrokenTools: false,
+    reviewerMode: false,
+    enableExtendedAssessment: true,
+    parallelTesting: true, // Parallel for faster audits
+    maxParallelTests: 5,
+    maxToolsToTestForErrors: -1,
+    securityPatternsToTest: 8,
+    enableDomainTesting: true,
+    mcpProtocolVersion: "2025-06",
+    enableSourceCodeAnalysis: true, // Deep analysis for audits
+    assessmentCategories: {
+        functionality: true,
+        security: true,
+        documentation: true,
+        errorHandling: true,
+        usability: true,
+        mcpSpecCompliance: true,
+        // All new assessors enabled for audit mode
+        aupCompliance: true,
+        toolAnnotations: true,
+        prohibitedLibraries: true,
+        manifestValidation: true,
+        portability: true,
+    },
+};
+// Claude-enhanced audit mode: uses Claude Code for intelligent analysis
+// Reduces false positives in AUP scanning and improves test quality
+export const CLAUDE_ENHANCED_AUDIT_CONFIG = {
+    testTimeout: 30000,
+    delayBetweenTests: 100,
+    skipBrokenTools: false,
+    reviewerMode: false,
+    enableExtendedAssessment: true,
+    parallelTesting: false, // Sequential when using Claude to avoid rate limiting
+    maxParallelTests: 1,
+    maxToolsToTestForErrors: -1,
+    securityPatternsToTest: 8,
+    enableDomainTesting: true,
+    mcpProtocolVersion: "2025-06",
+    enableSourceCodeAnalysis: true,
+    // Claude Code integration enabled
+    claudeCode: {
+        enabled: true,
+        features: {
+            intelligentTestGeneration: true, // Generate semantically meaningful test params
+            aupSemanticAnalysis: true, // Reduce false positives in AUP scanning
+            annotationInference: true, // Detect annotation misalignments
+            documentationQuality: true, // Assess documentation quality semantically
+        },
+        timeout: 90000, // 90 seconds for Claude calls
+        maxRetries: 2,
+    },
+    assessmentCategories: {
+        functionality: true,
+        security: true,
+        documentation: true,
+        errorHandling: true,
+        usability: true,
+        mcpSpecCompliance: true,
+        aupCompliance: true,
+        toolAnnotations: true,
+        prohibitedLibraries: true,
+        manifestValidation: true,
+        portability: true,
+    },
+};

package/client/lib/lib/aupPatterns.d.ts

@@ -0,0 +1,63 @@
+/**
+ * AUP (Acceptable Use Policy) Patterns
+ * Based on Anthropic's 14 AUP categories (A-N)
+ *
+ * These patterns detect potential policy violations in MCP server
+ * tool names, descriptions, README content, and source code.
+ *
+ * Reference: https://www.anthropic.com/policies/aup
+ */
+import type { AUPCategory, AUPSeverity } from "./assessmentTypes.js";
+export interface AUPPatternDefinition {
+    category: AUPCategory;
+    categoryName: string;
+    severity: AUPSeverity;
+    patterns: RegExp[];
+    description: string;
+    requiresHumanReview: boolean;
+    reviewGuidance?: string;
+}
+/**
+ * AUP Category Patterns
+ * Organized by severity: CRITICAL > HIGH > MEDIUM > FLAG
+ */
+export declare const AUP_PATTERNS: AUPPatternDefinition[];
+/**
+ * High-Risk Domain Patterns
+ * These domains require additional human oversight regardless of specific AUP category
+ */
+export declare const HIGH_RISK_DOMAINS: {
+    pattern: RegExp;
+    domain: string;
+    reason: string;
+}[];
+/**
+ * Get all patterns for a specific severity level
+ */
+export declare function getPatternsBySeverity(severity: AUPSeverity): AUPPatternDefinition[];
+/**
+ * Get pattern definition for a specific category
+ */
+export declare function getPatternByCategory(category: AUPCategory): AUPPatternDefinition | undefined;
+/**
+ * Check text against all AUP patterns
+ * Returns array of matching patterns with details
+ */
+export declare function checkTextForAUPViolations(text: string): Array<{
+    category: AUPCategory;
+    categoryName: string;
+    severity: AUPSeverity;
+    matchedPattern: string;
+    matchedText: string;
+    requiresHumanReview: boolean;
+    reviewGuidance?: string;
+}>;
+/**
+ * Check text for high-risk domain keywords
+ */
+export declare function checkTextForHighRiskDomains(text: string): Array<{
+    domain: string;
+    reason: string;
+    matchedText: string;
+}>;
+//# sourceMappingURL=aupPatterns.d.ts.map

package/client/lib/lib/aupPatterns.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"aupPatterns.d.ts","sourceRoot":"","sources":["../../src/lib/aupPatterns.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAElE,MAAM,WAAW,oBAAoB;IACnC,QAAQ,EAAE,WAAW,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,WAAW,CAAC;IACtB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,mBAAmB,EAAE,OAAO,CAAC;IAC7B,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;;GAGG;AACH,eAAO,MAAM,YAAY,EAAE,oBAAoB,EA2P9C,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,iBAAiB,EAAE;IAC9B,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;CAChB,EAoCA,CAAC;AAEF;;GAEG;AACH,wBAAgB,qBAAqB,CACnC,QAAQ,EAAE,WAAW,GACpB,oBAAoB,EAAE,CAExB;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAClC,QAAQ,EAAE,WAAW,GACpB,oBAAoB,GAAG,SAAS,CAElC;AAED;;;GAGG;AACH,wBAAgB,yBAAyB,CAAC,IAAI,EAAE,MAAM,GAAG,KAAK,CAAC;IAC7D,QAAQ,EAAE,WAAW,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,WAAW,CAAC;IACtB,cAAc,EAAE,MAAM,CAAC;IACvB,WAAW,EAAE,MAAM,CAAC;IACpB,mBAAmB,EAAE,OAAO,CAAC;IAC7B,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB,CAAC,CA6BD;AAED;;GAEG;AACH,wBAAgB,2BAA2B,CACzC,IAAI,EAAE,MAAM,GACX,KAAK,CAAC;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAC;IAAC,WAAW,EAAE,MAAM,CAAA;CAAE,CAAC,CAmBhE"}

package/client/lib/lib/aupPatterns.js

@@ -0,0 +1,344 @@
+/**
+ * AUP (Acceptable Use Policy) Patterns
+ * Based on Anthropic's 14 AUP categories (A-N)
+ *
+ * These patterns detect potential policy violations in MCP server
+ * tool names, descriptions, README content, and source code.
+ *
+ * Reference: https://www.anthropic.com/policies/aup
+ */
+/**
+ * AUP Category Patterns
+ * Organized by severity: CRITICAL > HIGH > MEDIUM > FLAG
+ */
+export const AUP_PATTERNS = [
+    // =========================================================================
+    // CRITICAL - Immediate rejection, no exceptions
+    // =========================================================================
+    {
+        category: "A",
+        categoryName: "Child Sexual Abuse Material (CSAM)",
+        severity: "CRITICAL",
+        patterns: [
+            /\bcsam\b/i,
+            /\bchild\s*(porn|sexual|abuse|exploitation)/i,
+            /\bminor\s*(porn|sexual|abuse|exploitation)/i,
+            /\bunderage\s*(content|material|images)/i,
+        ],
+        description: "Content related to child sexual abuse material",
+        requiresHumanReview: true,
+        reviewGuidance: "Escalate immediately to legal/trust & safety team. Do not approve.",
+    },
+    {
+        category: "B",
+        categoryName: "Weapons of Mass Destruction",
+        severity: "CRITICAL",
+        patterns: [
+            /\b(bio|chemical|nuclear)\s*weapon/i,
+            /\bweapon\s*of\s*mass\s*destruction/i,
+            /\bwmd\b/i,
+            /\b(nerve|mustard|sarin)\s*gas/i,
+            /\bdirty\s*bomb/i,
+            /\buranium\s*enrichment/i,
+            /\bweaponized\s*(pathogen|virus|bacteria)/i,
+        ],
+        description: "Content related to weapons of mass destruction",
+        requiresHumanReview: true,
+        reviewGuidance: "Escalate immediately. Verify not legitimate research context.",
+    },
+    {
+        category: "C",
+        categoryName: "Malware & Cyberweapons",
+        severity: "CRITICAL",
+        patterns: [
+            /\bmalware\s*(generator|creator|builder)/i,
+            /\bransomware\s*(as\s*a\s*service|builder|kit)/i,
+            /\bbotnet\s*(builder|creator|c2)/i,
+            /\bexploit\s*(kit|pack|builder)/i,
+            /\bzero\s*day\s*(exploit|market)/i,
+            /\bkeylogger\s*(builder|generator)/i,
+            /\btrojan\s*(builder|generator|horse)/i,
+        ],
+        description: "Tools for creating malware or cyberweapons",
+        requiresHumanReview: true,
+        reviewGuidance: "Verify not legitimate security research tool. Check for defensive vs offensive intent.",
+    },
+    // =========================================================================
+    // HIGH - Likely rejection, requires careful review
+    // =========================================================================
+    {
+        category: "D",
+        categoryName: "Disinformation & Election Interference",
+        severity: "HIGH",
+        patterns: [
+            /\bfake\s*news\s*(generator|creator)/i,
+            /\bdisinformation\s*(campaign|bot)/i,
+            /\belection\s*(manipulation|interference|fraud)/i,
+            /\bvote\s*(manipulation|fraud|suppression)/i,
+            /\bastroturf(ing)?\b/i,
+            /\bdeepfake\s*(generator|creator)/i,
+            /\bpropaganda\s*(bot|generator)/i,
+        ],
+        description: "Tools for disinformation or election interference",
+        requiresHumanReview: true,
+        reviewGuidance: "Check if tool could be used for mass disinformation campaigns.",
+    },
+    {
+        category: "E",
+        categoryName: "Fraud & Deception",
+        severity: "HIGH",
+        patterns: [
+            /\bphishing\s*(kit|page|generator)/i,
+            /\bscam\s*(generator|template|bot)/i,
+            /\bfraud(ulent)?\s*(document|id|identity)/i,
+            /\bfake\s*(id|identity|document|passport)/i,
+            /\bcredit\s*card\s*(generator|fraud)/i,
+            /\bidentity\s*theft/i,
+            /\bsocial\s*engineering\s*(toolkit|kit)/i,
+        ],
+        description: "Tools for fraud, phishing, or deception",
+        requiresHumanReview: true,
+        reviewGuidance: "Verify not security awareness training tool. Check for malicious intent.",
+    },
+    {
+        category: "F",
+        categoryName: "Harassment & Abuse",
+        severity: "HIGH",
+        patterns: [
+            /\bharassment\s*(bot|tool|campaign)/i,
+            /\bdoxx?(ing)?\s*(tool|bot)/i,
+            /\bstalking\s*(tool|software)/i,
+            /\bcyberbully(ing)?\b/i,
+            /\bthreat\s*(generator|bot)/i,
+            /\braid\s*(bot|tool|coordinator)/i,
+            /\bswatting\b/i,
+        ],
+        description: "Tools for harassment, stalking, or abuse",
+        requiresHumanReview: true,
+        reviewGuidance: "Check if tool facilitates targeted harassment or abuse campaigns.",
+    },
+    {
+        category: "G",
+        categoryName: "Privacy Violations",
+        severity: "HIGH",
+        patterns: [
+            /\bpii\s*(scraper|extractor|harvester)/i,
+            /\bdata\s*(breach|leak|dump)\s*(tool|access)/i,
+            /\bscrape\s*(personal|private)\s*(data|info)/i,
+            /\bsurveillance\s*(tool|software|spyware)/i,
+            /\bspy(ware)?\s*(installer|deployer)/i,
+            /\btrack(ing)?\s*(without\s*consent|secretly)/i,
+        ],
+        description: "Tools for unauthorized data collection or surveillance",
+        requiresHumanReview: true,
+        reviewGuidance: "Verify legitimate use case. Check consent and authorization requirements.",
+    },
+    // =========================================================================
+    // MEDIUM - Requires context, may be legitimate
+    // =========================================================================
+    {
+        category: "H",
+        categoryName: "Unauthorized Practice",
+        severity: "MEDIUM",
+        patterns: [
+            /\b(medical|legal|financial)\s*advice\s*(bot|generator)/i,
+            /\bdiagnos(e|is)\s*(tool|bot|generator)/i,
+            /\bprescri(be|ption)\s*(generator|bot)/i,
+            /\blegal\s*document\s*generator/i,
+            /\btax\s*(advice|preparation)\s*bot/i,
+        ],
+        description: "Tools that may provide unauthorized professional advice",
+        requiresHumanReview: true,
+        reviewGuidance: "Check for appropriate disclaimers and professional oversight requirements.",
+    },
+    {
+        category: "I",
+        categoryName: "Copyright Circumvention",
+        severity: "MEDIUM",
+        patterns: [
+            /\bdrm\s*(bypass|crack|remove)/i,
+            /\bcopyright\s*(bypass|circumvent|remove)/i,
+            /\bwatermark\s*(remov|strip|bypass)/i,
+            /\bpiracy\s*(tool|download|stream)/i,
+            /\btorrent\s*(search|download|index)/i,
+            /\bcrack(ed)?\s*(software|game|app)/i,
+        ],
+        description: "Tools for circumventing copyright protections",
+        requiresHumanReview: true,
+        reviewGuidance: "Check if legitimate fair use or security research context.",
+    },
+    {
+        category: "J",
+        categoryName: "High-Risk Decisions",
+        severity: "MEDIUM",
+        patterns: [
+            /\bautomat(ed|ic)\s*(hiring|firing|termination)/i,
+            /\bcredit\s*scor(e|ing)\s*(bot|generator)/i,
+            /\bloan\s*(approval|rejection)\s*bot/i,
+            /\bbail\s*(decision|recommendation)/i,
+            /\bsentencing\s*(recommendation|algorithm)/i,
+            /\bparole\s*(decision|recommendation)/i,
+        ],
+        description: "Tools for automated high-stakes decisions without human oversight",
+        requiresHumanReview: true,
+        reviewGuidance: "Verify human oversight requirements. Check for bias mitigation.",
+    },
+    {
+        category: "K",
+        categoryName: "Critical Infrastructure",
+        severity: "MEDIUM",
+        patterns: [
+            /\bscada\s*(attack|exploit|hack)/i,
+            /\bpower\s*grid\s*(attack|exploit)/i,
+            /\bwater\s*(treatment|supply)\s*(attack|exploit)/i,
+            /\btraffic\s*(control|light)\s*(attack|exploit)/i,
+            /\bhospital\s*system\s*(attack|exploit)/i,
+            /\bnuclear\s*(plant|facility)\s*(attack|exploit)/i,
+        ],
+        description: "Tools targeting critical infrastructure",
+        requiresHumanReview: true,
+        reviewGuidance: "Check if legitimate infrastructure security testing tool.",
+    },
+    // =========================================================================
+    // FLAG - Needs review, often legitimate
+    // =========================================================================
+    {
+        category: "L",
+        categoryName: "Adult Content",
+        severity: "FLAG",
+        patterns: [
+            /\badult\s*(content|material)\s*(generator|creator)/i,
+            /\bnsfw\s*(generator|creator|content)/i,
+            /\bpornograph(y|ic)\s*(generator|content)/i,
+            /\bexplicit\s*(content|material)\s*(generator|creator)/i,
+        ],
+        description: "Tools for generating adult content",
+        requiresHumanReview: true,
+        reviewGuidance: "Check platform policies. May be allowed with appropriate safeguards.",
+    },
+    {
+        category: "M",
+        categoryName: "Illegal Activities",
+        severity: "FLAG",
+        patterns: [
+            /\bdrug\s*(deal|trad|market)/i,
+            /\bweapon\s*(trad|deal|market)/i,
+            /\bhuman\s*traffick/i,
+            /\bmoney\s*launder/i,
+            /\bblack\s*market/i,
+            /\bdark(net|web)\s*(market|shop)/i,
+        ],
+        description: "Tools potentially facilitating illegal activities",
+        requiresHumanReview: true,
+        reviewGuidance: "Verify not legitimate law enforcement or research tool.",
+    },
+    {
+        category: "N",
+        categoryName: "Other Prohibited Uses",
+        severity: "FLAG",
+        patterns: [
+            /\bgambling\s*(bot|automation)/i,
+            /\bbet(ting)?\s*(bot|automation)/i,
+            /\bcasino\s*(cheat|hack|exploit)/i,
+            /\bspam\s*(bot|generator|sender)/i,
+            /\bmass\s*email(er)?\s*(bot|tool)/i,
+        ],
+        description: "Other potentially prohibited uses",
+        requiresHumanReview: true,
+        reviewGuidance: "Review against full AUP for specific policy violations.",
+    },
+];
+/**
+ * High-Risk Domain Patterns
+ * These domains require additional human oversight regardless of specific AUP category
+ */
+export const HIGH_RISK_DOMAINS = [
+    {
+        pattern: /\b(healthcare|medical|health\s*care|patient)/i,
+        domain: "Healthcare",
+        reason: "May involve HIPAA, medical decisions, or patient data",
+    },
+    {
+        pattern: /\b(financial|banking|payment|trading|investment)/i,
+        domain: "Financial Services",
+        reason: "May involve financial regulations, transactions, or advice",
+    },
+    {
+        pattern: /\b(legal|law\s*firm|attorney|lawyer|court)/i,
+        domain: "Legal",
+        reason: "May involve legal advice or privileged information",
+    },
+    {
+        pattern: /\b(government|federal|military|defense|classified)/i,
+        domain: "Government/Defense",
+        reason: "May involve sensitive government or military data",
+    },
+    {
+        pattern: /\b(education|school|student|academic|grade)/i,
+        domain: "Education",
+        reason: "May involve student data (FERPA) or academic integrity",
+    },
+    {
+        pattern: /\b(child|minor|youth|kid|teen)/i,
+        domain: "Children/Minors",
+        reason: "May involve COPPA or child safety concerns",
+    },
+    {
+        pattern: /\b(insurance|claim|underwriting)/i,
+        domain: "Insurance",
+        reason: "May involve insurance decisions or claims processing",
+    },
+];
+/**
+ * Get all patterns for a specific severity level
+ */
+export function getPatternsBySeverity(severity) {
+    return AUP_PATTERNS.filter((p) => p.severity === severity);
+}
+/**
+ * Get pattern definition for a specific category
+ */
+export function getPatternByCategory(category) {
+    return AUP_PATTERNS.find((p) => p.category === category);
+}
+/**
+ * Check text against all AUP patterns
+ * Returns array of matching patterns with details
+ */
+export function checkTextForAUPViolations(text) {
+    const violations = [];
+    for (const patternDef of AUP_PATTERNS) {
+        for (const pattern of patternDef.patterns) {
+            const match = text.match(pattern);
+            if (match) {
+                violations.push({
+                    category: patternDef.category,
+                    categoryName: patternDef.categoryName,
+                    severity: patternDef.severity,
+                    matchedPattern: pattern.source,
+                    matchedText: match[0],
+                    requiresHumanReview: patternDef.requiresHumanReview,
+                    reviewGuidance: patternDef.reviewGuidance,
+                });
+            }
+        }
+    }
+    return violations;
+}
+/**
+ * Check text for high-risk domain keywords
+ */
+export function checkTextForHighRiskDomains(text) {
+    const matches = [];
+    for (const domainDef of HIGH_RISK_DOMAINS) {
+        const match = text.match(domainDef.pattern);
+        if (match) {
+            matches.push({
+                domain: domainDef.domain,
+                reason: domainDef.reason,
+                matchedText: match[0],
+            });
+        }
+    }
+    return matches;
+}