@jigyasudham/veto 0.8.2 → 1.0.0

package/src/agents/security/penetration.ts

@@ -1,262 +0,0 @@
-import type { AgentPlan } from '../types.js';
-
-// ─── System-type detection ─────────────────────────────────────────────────
-
-type SystemType = 'web-api' | 'web-frontend' | 'auth-system' | 'file-upload' | 'generic';
-
-function detectSystemType(task: string): SystemType {
-  const t = task.toLowerCase();
-  if (/\bfile\s*upload\b|multipart|multer|form[\s-]?data|attachment/.test(t)) return 'file-upload';
-  if (/\bauth(?:entication)?\b|login|signin|password|oauth|session|jwt|mfa/.test(t)) return 'auth-system';
-  if (/\bapi\b|rest(?:ful)?|graphql|endpoint|route|swagger/.test(t)) return 'web-api';
-  if (/\bfrontend\b|react|vue|angular|spa|browser|html|dom/.test(t)) return 'web-frontend';
-  return 'generic';
-}
-
-// ─── Data maps ────────────────────────────────────────────────────────────
-
-const APPROACH: Record<SystemType, string> = {
-  'web-api':
-    'Map all API endpoints, enumerate authentication requirements, then systematically test auth bypass, ' +
-    'IDOR, injection, SSRF, rate limiting, header security, and CORS misconfiguration.',
-  'web-frontend':
-    'Enumerate all user-controlled input surfaces and event handlers, then test for XSS, CSRF, ' +
-    'clickjacking, open redirect, content injection, and client-side storage misuse.',
-  'auth-system':
-    'Attack the authentication surface: attempt brute force, account enumeration via timing/response ' +
-    'differences, session fixation, token prediction, MFA bypass, and password reset flaws.',
-  'file-upload':
-    'Test file type validation bypass, path traversal via filename, execution of uploaded content, ' +
-    'storage disclosure, and denial of service via large or malformed files.',
-  generic:
-    'Apply a full-scope penetration test methodology: reconnaissance, threat modelling, vulnerability ' +
-    'scanning, exploitation, and post-exploitation reporting.',
-};
-
-const STEPS: Record<SystemType, string[]> = {
-  'web-api': [
-    'Reconnaissance: enumerate endpoints via OpenAPI spec, JS bundles, and forced browsing',
-    'Authentication bypass: test unauthenticated access to every endpoint',
-    'Broken Object Level Authorisation (BOLA/IDOR): replace IDs with other users\' IDs',
-    'Broken Function Level Authorisation: access admin/privileged endpoints as low-privilege user',
-    'SQL injection: test string/integer parameters with single quotes and UNION payloads',
-    'NoSQL injection: inject {"$gt": ""} into JSON body parameters',
-    'Command injection: test parameters used in file paths or shell commands',
-    'Mass assignment: send undocumented fields (role, isAdmin) in POST/PUT body',
-    'SSRF: submit internal URLs (http://169.254.169.254, http://localhost) to URL-accepting parameters',
-    'Rate limiting: send 100+ requests/second to auth and sensitive endpoints',
-    'Security headers: verify CSP, HSTS, X-Content-Type-Options, X-Frame-Options, Referrer-Policy',
-    'CORS: check for wildcard origin or reflection of Origin header with credentials',
-    'Verbose errors: trigger 500 errors and check for stack traces in the response body',
-    'JWT attacks: test alg:none, weak secrets (brute force HS256), RS/HS confusion',
-  ],
-  'web-frontend': [
-    'Reflected XSS: inject <script>alert(1)</script> into every URL parameter and form field',
-    'Stored XSS: submit XSS payloads in persistent fields (username, bio, comments)',
-    'DOM-based XSS: review JavaScript for innerHTML, document.write, eval with user data',
-    'CSRF: submit state-changing requests without CSRF token from a cross-origin page',
-    'Clickjacking: embed the page in an iframe; check for X-Frame-Options or CSP frame-ancestors',
-    'Open redirect: test redirect parameters with https://evil.com as the value',
-    'Client-side template injection: inject {{7*7}} into Angular/Handlebars templates',
-    'HTML injection: inject <img src=x onerror=alert(1)> into reflected fields',
-    'localStorage secret exposure: check stored tokens via browser devtools',
-    'postMessage attacks: look for unvalidated message event listeners',
-    'Content-Security-Policy bypass: look for unsafe-inline, unsafe-eval, or overly broad sources',
-    'Sensitive data in URL: check query strings for tokens, passwords, or PII',
-    'Third-party script integrity: verify Subresource Integrity (SRI) on CDN scripts',
-  ],
-  'auth-system': [
-    'Username enumeration: compare response time/body for valid vs invalid usernames',
-    'Password brute force: attempt 10,000 common passwords; verify rate limiting and lockout',
-    'Account lockout bypass: vary IP (X-Forwarded-For), vary username case, distribute attempts',
-    'Session fixation: set a known session ID before login; check if it is preserved post-auth',
-    'Concurrent session attack: log in twice; verify previous session is invalidated if not intended',
-    'Session token prediction: collect 100 session tokens and test for sequential or low-entropy patterns',
-    'Token reuse after logout: capture a JWT/session token; log out; replay the token',
-    'Password reset poisoning: manipulate Host header or forward headers to poison reset link',
-    'MFA bypass: attempt to skip MFA step by directly calling authenticated endpoints',
-    'OAuth state forgery: replay a used authorisation code or tamper with the state parameter',
-    'JWT algorithm confusion: change RS256 to HS256 and sign with the public key',
-    'Privilege escalation via JWT claims: modify role claim in an unsigned/weak-signature token',
-    'Remember-me token hijacking: extract persistent cookie value and replay from a new session',
-    'Account takeover via email change: change email without re-authentication or verification',
-  ],
-  'file-upload': [
-    'MIME type bypass: upload a PHP/JSP/ASP file with image/jpeg content type',
-    'Extension bypass: test double extension (shell.php.jpg), null byte (shell.php%00.jpg)',
-    'Magic bytes bypass: prepend valid image magic bytes to a server-side script',
-    'Path traversal via filename: submit ../../../etc/passwd as the filename',
-    'Zip slip: upload a zip archive with ../ entries that extract outside the target directory',
-    'Stored XSS via SVG: upload an SVG file containing <script> or onload handler',
-    'XXE via XML upload: upload an XML/XLSX/DOCX with an external entity reference',
-    'RCE via server-side script execution: upload a script to a web-accessible directory',
-    'Storage disclosure: guess or enumerate upload paths to access other users\' files',
-    'Denial of service via upload: send a very large file, a zip bomb, or a decompression bomb',
-    'SSRF via image processing: supply a URL-based image src pointing to internal services',
-    'Metadata exfiltration: upload an image with EXIF data and verify the server strips it',
-  ],
-  generic: [
-    'Reconnaissance: passive (WHOIS, DNS, Shodan) and active (port scan, banner grab)',
-    'Threat modelling: identify assets, entry points, trust boundaries, and threat actors',
-    'Vulnerability scanning: run automated scanner (Nessus, OpenVAS, ZAP, Burp Suite)',
-    'Authentication testing: brute force, bypass, session management flaws',
-    'Injection testing: SQL, NoSQL, OS command, LDAP, template, XML injection',
-    'Broken access control testing: IDOR, privilege escalation, path traversal',
-    'Cryptographic testing: weak ciphers, certificate validation, key exposure',
-    'Insecure direct object references: enumerate and swap resource IDs',
-    'Security misconfiguration: default credentials, verbose errors, open admin interfaces',
-    'Sensitive data exposure: HTTP traffic, logs, error messages, client-side storage',
-    'API security: undocumented endpoints, mass assignment, improper rate limiting',
-    'Network-level: open ports, unnecessary services, firewall bypass, DNS zone transfer',
-    'Post-exploitation: lateral movement, persistence, data exfiltration paths',
-    'Reporting: CVSS scoring, business impact assessment, remediation priority ranking',
-  ],
-};
-
-const CHECKLIST: Record<SystemType, string[]> = {
-  'web-api': [
-    'All endpoints require valid authentication token',
-    'IDOR test: swapping another user\'s ID returns 403, not the resource',
-    'Admin endpoints return 403 to non-admin authenticated users',
-    'SQL injection payloads in all parameters return no data or 400, not 500',
-    'eval() and shell execution with user input are absent',
-    'Internal URLs submitted to URL parameters are blocked',
-    'Auth endpoints respond with 429 after 10 rapid requests',
-    'CORS: only listed domains can send credentialed requests',
-    'Security headers present on all API responses',
-    'Error responses contain a generic message, not stack traces',
-    'JWT alg:none and HS/RS confusion attacks are rejected',
-    'Mass assignment: undocumented fields are ignored, not persisted',
-    'GraphQL introspection disabled in production',
-    'Verbose error messages disabled; internal paths not exposed',
-  ],
-  'web-frontend': [
-    'All user input is HTML-escaped before insertion into the DOM',
-    'Content-Security-Policy header present and does not contain unsafe-inline',
-    'X-Frame-Options: DENY or CSP frame-ancestors \'none\' present',
-    'All state-changing requests require a CSRF token or SameSite=Strict cookie',
-    'Redirect parameters validate against an allow-list of trusted destinations',
-    'No sensitive data (tokens, PII) stored in localStorage or sessionStorage',
-    'postMessage listeners validate event origin before processing',
-    'SRI hashes present on all CDN-loaded scripts and stylesheets',
-    'No Angular/Handlebars/Mustache template injection vectors',
-    'Referrer-Policy header limits cross-origin referrer information',
-  ],
-  'auth-system': [
-    'Username enumeration: identical response for valid and invalid usernames',
-    'Rate limiting enforced: 10 attempts per IP per 15 minutes on login',
-    'Account lockout after 5 failures; lockout is resolvable via email',
-    'Session ID changes on login (fixation prevention)',
-    'Old session invalidated after password change',
-    'JWT tokens are rejected after logout (revocation list or short TTL)',
-    'Password reset links expire after 1 hour and are single-use',
-    'MFA cannot be skipped by directly calling authenticated endpoints',
-    'Session tokens are at least 128 bits of entropy',
-    'HTTPS enforced; HSTS header with includeSubDomains present',
-    'OAuth state parameter required and validated on callback',
-    'JWT alg is explicitly set server-side; alg:none is rejected',
-  ],
-  'file-upload': [
-    'Accepted MIME types validated server-side against an allow-list',
-    'File extension validated against an allow-list (not a deny-list)',
-    'Magic bytes checked for image uploads using a file type library',
-    'Uploaded files stored outside the web root or in a dedicated blob store',
-    'Filenames sanitised: path components stripped, UUID used as stored name',
-    'File size limit enforced server-side (not only client-side)',
-    'Uploaded files served with Content-Disposition: attachment to prevent execution',
-    'SVG uploads sanitised or served from a separate origin',
-    'Zip archives unpacked with path traversal protection',
-    'EXIF metadata stripped from images before storage',
-    'Anti-virus or malware scanning integrated into the upload pipeline',
-    'Upload directory not publicly accessible via direct URL',
-  ],
-  generic: [
-    'Attack surface fully enumerated and documented',
-    'All high/critical severity findings remediated before go-live',
-    'Automated scanner (Burp/ZAP) run with active scanning enabled',
-    'Manual testing performed for logic flaws not detectable by scanners',
-    'Authentication and session management tested end-to-end',
-    'All injection categories tested across every input parameter',
-    'Network exposure reviewed: only required ports open externally',
-    'Security misconfiguration check: no default credentials, no test pages in production',
-    'Finding report includes CVSS score and business impact for each issue',
-    'Remediation verification: re-test each finding after fix is deployed',
-    'Executive summary and technical report produced',
-    'Penetration test signed off by security lead before production release',
-  ],
-};
-
-const PITFALLS: Record<SystemType, string[]> = {
-  'web-api': [
-    'Testing only the happy path — attackers focus on error paths and edge cases',
-    'Stopping at authentication bypass without testing authorisation (IDOR)',
-    'Not testing GraphQL or WebSocket endpoints alongside REST',
-    'Missing business logic flaws that automated scanners cannot detect',
-  ],
-  'web-frontend': [
-    'Only testing XSS in visible input fields — DOM-based XSS lives in JavaScript',
-    'Assuming a CSP header prevents all XSS — test for bypasses (unsafe-inline, JSONP endpoints)',
-    'Not testing in multiple browsers — DOM behaviour differs',
-    'Overlooking postMessage and custom event handlers as injection points',
-  ],
-  'auth-system': [
-    'Testing only the login page — password reset, OAuth callback, and MFA endpoints are also in scope',
-    'Not testing for timing side-channels in username validation',
-    'Assuming short-lived JWTs are safe — test for claims manipulation',
-    'Not verifying lockout bypass via header manipulation (X-Forwarded-For)',
-  ],
-  'file-upload': [
-    'Relying solely on the Content-Type header — trivially spoofed by attackers',
-    'Only testing common extensions — test double extensions, Unicode normalisation tricks',
-    'Not testing what happens when the virus scanner is bypassed by a partial/corrupt file',
-    'Forgetting to test the download/serve path for path traversal',
-  ],
-  generic: [
-    'Automated scanning without manual follow-up — scanners have high false-negative rates for logic flaws',
-    'Testing in a staging environment that differs significantly from production',
-    'Not scoping the test clearly — risk of legal exposure if boundaries are unclear',
-    'Producing findings without risk-ranked remediation guidance',
-  ],
-};
-
-const PATTERNS: Record<SystemType, string[]> = {
-  'web-api': ['OWASP API Security Top 10', 'BOLA/IDOR testing matrix', 'Burp Suite active scan + manual auth testing'],
-  'web-frontend': ['OWASP Testing Guide — Client-Side Testing', 'CSP evaluation methodology', 'Browser-based XSS polyglot testing'],
-  'auth-system': ['OWASP Authentication Cheat Sheet verification', 'Session token entropy analysis', 'Timing attack measurement with wrk/hey'],
-  'file-upload': ['OWASP File Upload Cheat Sheet', 'Magic-byte bypass library (file-type npm)', 'Zip slip detection via extraction simulation'],
-  generic: ['OWASP Testing Guide v4', 'PTES (Penetration Testing Execution Standard)', 'CVSSv3.1 severity scoring'],
-};
-
-// ─── Public API ────────────────────────────────────────────────────────────
-
-export function plan(task: string, context?: string): AgentPlan {
-  const systemType = detectSystemType(task);
-
-  const tierMap: Record<SystemType, 1 | 2 | 3> = {
-    'web-api': 3,
-    'web-frontend': 2,
-    'auth-system': 3,
-    'file-upload': 2,
-    generic: 3,
-  };
-
-  const durationMap: Record<SystemType, string> = {
-    'web-api': '1-2 days',
-    'web-frontend': '4-8 hours',
-    'auth-system': '1-2 days',
-    'file-upload': '4-6 hours',
-    generic: '3-5 days',
-  };
-
-  return {
-    agent: 'penetration',
-    task,
-    tier: tierMap[systemType],
-    approach: APPROACH[systemType],
-    steps: STEPS[systemType],
-    checklist: CHECKLIST[systemType],
-    pitfalls: PITFALLS[systemType],
-    patterns: PATTERNS[systemType],
-    duration_estimate: context?.includes('full-scope') ? '5-10 days' : durationMap[systemType],
-  };
-}

package/src/agents/security/privacy.ts

@@ -1,285 +0,0 @@
-import type { AgentPlan } from '../types.js';
-
-// ─── Data-type detection ───────────────────────────────────────────────────
-
-type PrivacyScenario =
-  | 'registration'
-  | 'analytics'
-  | 'export'
-  | 'deletion'
-  | 'third-party'
-  | 'general';
-
-function detectScenario(task: string): PrivacyScenario {
-  const t = task.toLowerCase();
-  if (/\bregist(?:er|ration)\b|sign[\s-]?up|create\s+account/.test(t)) return 'registration';
-  if (/\banalytics\b|tracking|telemetry|metrics|pageview/.test(t)) return 'analytics';
-  if (/\bexport\b|download\s+data|portability|data\s+request/.test(t)) return 'export';
-  if (/\bdelet(?:e|ion)\b|right\s+to\s+erasure|forget|purge|wipe/.test(t)) return 'deletion';
-  if (/\bthird[\s-]?party\b|integration|external\s+service|vendor|processor/.test(t)) return 'third-party';
-  return 'general';
-}
-
-// ─── Approach map ──────────────────────────────────────────────────────────
-
-const APPROACH: Record<PrivacyScenario, string> = {
-  registration:
-    'Collect only the minimum data required for registration. Obtain informed, granular consent before processing. Apply retention limits from day one.',
-  analytics:
-    'Implement privacy-by-default analytics: anonymise IPs, honour Do-Not-Track, provide opt-out, and avoid cross-site tracking.',
-  export:
-    'Implement the right to data portability: deliver all user data in a machine-readable format within the required time window.',
-  deletion:
-    'Implement the right to erasure: permanently delete or anonymise all user data, including backups and third-party processor copies, within 30 days.',
-  'third-party':
-    'Ensure all third-party data processors have a signed Data Processing Agreement (DPA) and adequate safeguards for data transfers.',
-  general:
-    'Apply GDPR/CCPA privacy principles: lawfulness, fairness, transparency, purpose limitation, data minimisation, accuracy, storage limits, integrity, and accountability.',
-};
-
-// ─── Steps map ────────────────────────────────────────────────────────────
-
-const STEPS: Record<PrivacyScenario, string[]> = {
-  registration: [
-    'Define the legal basis for processing each data field (consent, contract, legitimate interest)',
-    'Present a clear, plain-language consent form with separate opt-ins per purpose',
-    'Collect only fields strictly necessary for the service (data minimisation)',
-    'Set retention period per data category in the data inventory',
-    'Implement double opt-in for marketing communications',
-    'Store consent record with timestamp, version, and IP',
-    'Link to privacy policy and cookie policy at registration',
-    'Provide account settings to update or withdraw consent',
-    'Trigger automated data deletion or anonymisation at retention expiry',
-  ],
-  analytics: [
-    'Audit all analytics scripts for third-party data sharing',
-    'Implement consent management platform (CMP) with granular cookie categories',
-    'Block analytics scripts until consent is granted',
-    'Anonymise IP addresses before sending to analytics provider (e.g., GA anonymizeIp)',
-    'Set analytics data retention to minimum required (e.g., 14 months max)',
-    'Honour Do-Not-Track (DNT) header in custom analytics code',
-    'Provide a clear opt-out mechanism accessible from every page',
-    'Avoid fingerprinting techniques (canvas, audio, font enumeration)',
-    'Test that analytics is inactive until consent is recorded',
-  ],
-  export: [
-    'Identify all data stores that contain user-specific data',
-    'Build an aggregation service that joins all user data from each store',
-    'Output data in a machine-readable format: JSON or CSV minimum',
-    'Respond to export requests within 30 days (GDPR) or 45 days (CCPA)',
-    "Verify the requesting user's identity before delivering the export",
-    'Deliver export via secure, time-limited download link (not email attachment)',
-    'Log export requests with timestamp and requester identity',
-    'Include a data dictionary explaining each exported field',
-  ],
-  deletion: [
-    'Map all tables and data stores that hold user data (data map)',
-    'Implement cascade delete from user ID across all related tables',
-    'Replace user identifiers in analytics/log records with anonymous placeholder',
-    'Submit deletion requests to all third-party processors within 7 days',
-    'Schedule purge of backups containing user data within the backup retention period',
-    'Verify user identity before processing deletion request',
-    'Send confirmation email once deletion is complete',
-    'Log deletion requests and completion timestamps for regulatory records',
-    'Test that no user data remains accessible after deletion via API or DB query',
-  ],
-  'third-party': [
-    'Maintain an inventory of all third-party data processors and sub-processors',
-    'Obtain a signed Data Processing Agreement (DPA) from each processor',
-    'Verify that processors maintain adequate safeguards (SOC 2, ISO 27001, or SCCs for EU transfers)',
-    'Implement Standard Contractual Clauses (SCCs) for transfers outside the EEA',
-    'Minimise data shared with third parties to what they strictly require',
-    'Review processor sub-processor lists annually',
-    'Include processor list in the privacy policy',
-    'Implement contractual audit rights and breach notification obligations',
-    'Test that data deleted from primary store is also deleted from processors',
-  ],
-  general: [
-    'Conduct a Data Protection Impact Assessment (DPIA) for high-risk processing',
-    'Appoint a Data Protection Officer (DPO) if required by scale or data type',
-    'Publish a clear, up-to-date privacy policy',
-    'Implement consent management for all non-essential processing',
-    'Maintain a Record of Processing Activities (RoPA)',
-    'Define and enforce data retention periods per category',
-    'Implement all data subject rights: access, rectification, erasure, portability, objection',
-    'Establish a breach notification procedure (72-hour GDPR window)',
-    'Conduct annual privacy training for all staff who handle personal data',
-  ],
-};
-
-// ─── Checklist map ────────────────────────────────────────────────────────
-
-const CHECKLIST: Record<PrivacyScenario, string[]> = {
-  registration: [
-    'Consent is explicit, granular, and obtained before processing starts',
-    'Consent record stored with timestamp, version, and IP address',
-    'Only fields necessary for the stated purpose are collected',
-    'Privacy policy linked at registration with plain-language summary',
-    'Marketing opt-in is a separate, unchecked checkbox',
-    'Double opt-in implemented for email marketing',
-    'Retention period defined and enforced for each data category',
-    'Automated deletion or anonymisation triggered at retention expiry',
-    'Users can view and withdraw consent from their account settings',
-    'Data breach notification procedure documented and tested',
-    'DPIA conducted if processing sensitive categories of data',
-    'Sub-processors listed in privacy policy',
-  ],
-  analytics: [
-    'Consent management platform (CMP) implemented and tested',
-    'Analytics scripts blocked until explicit consent is granted',
-    'IP addresses anonymised before transmission to analytics provider',
-    'Analytics data retention set to 14 months maximum',
-    'Do-Not-Track (DNT) header honoured in custom scripts',
-    'Clear opt-out link present on every page',
-    'No cross-site tracking (third-party cookies) without separate consent',
-    'Analytics vendor DPA signed and stored',
-    'Cookie audit performed; no undisclosed cookies present',
-    'Privacy policy updated to list analytics cookies and their purpose',
-    'Users can withdraw analytics consent and data is not collected retroactively',
-    'Fingerprinting techniques absent from the codebase',
-  ],
-  export: [
-    'All user data stores identified and included in export',
-    'Export generated within 30 days of verified request',
-    'Identity verification required before export delivery',
-    'Export delivered via secure, time-limited download link',
-    'Export format is machine-readable (JSON/CSV)',
-    'Data dictionary included explaining each field',
-    'Export request and delivery logged with timestamp',
-    'Export excludes data about third parties embedded in user records',
-    'Large exports split into manageable archive files',
-    'Automated end-to-end test confirms export completeness',
-    'Privacy policy describes the export right and the request process',
-    'Requests acknowledged within 72 hours even if processing takes longer',
-  ],
-  deletion: [
-    'All data stores with user data identified in the data map',
-    'Cascade delete implemented across all related tables',
-    'Analytics and log records anonymised (not deleted) to preserve aggregate stats',
-    'Third-party processors notified within 7 days',
-    'Backup purge scheduled within backup retention window',
-    'Identity verification required before deletion is processed',
-    'Confirmation email sent to user on completion',
-    'Deletion request and completion timestamp logged',
-    'Automated test verifies no user data accessible after deletion',
-    'Right to erasure exceptions documented (legal hold, fraud prevention)',
-    'Privacy policy explains erasure right and any applicable exceptions',
-    'Requests processed within 30-day GDPR statutory window',
-  ],
-  'third-party': [
-    'Data processor inventory maintained and kept current',
-    'Signed DPA on file for every processor',
-    'SCCs in place for transfers outside the EEA',
-    'Sub-processor list published in privacy policy',
-    'Data minimisation applied to third-party data shares',
-    'Processors audited annually (questionnaire or certification review)',
-    'Breach notification clause in every DPA (72-hour escalation)',
-    'Audit rights clause in every DPA',
-    'Processors instructed to delete data on contract termination',
-    'Third-party scripts reviewed for unexpected data collection',
-    'Privacy policy updated when new processors are added',
-    'DPIA updated when new high-risk processors are engaged',
-  ],
-  general: [
-    'Data Protection Impact Assessment (DPIA) completed for high-risk processing',
-    'Record of Processing Activities (RoPA) maintained and current',
-    'Privacy policy published, accurate, and written in plain language',
-    'Consent mechanism implemented for all non-essential processing',
-    'All six data subject rights implemented: access, rectification, erasure, restriction, portability, objection',
-    'Breach notification procedure tested (72-hour GDPR window)',
-    'Data retention periods defined and automated enforcement in place',
-    'Staff privacy training conducted annually',
-    'DPO appointed if required; contact details published',
-    'Privacy-by-design documented in system architecture decisions',
-    'Cookie banner compliant: no pre-ticked boxes, easy to reject',
-    'CCPA opt-out of sale link present if applicable',
-    "Children's data (under 16) not collected without parental consent",
-    'Sensitive data categories (health, biometric, etc.) identified and protected with additional safeguards',
-  ],
-};
-
-// ─── Pitfall and pattern maps ─────────────────────────────────────────────
-
-const PITFALLS: Record<PrivacyScenario, string[]> = {
-  registration: [
-    'Pre-ticking marketing consent checkboxes — invalid consent under GDPR',
-    'Bundling consent with terms of service — consent must be freely given and separate',
-    'Collecting date of birth without age verification logic',
-    'Not storing the consent record — cannot prove lawfulness later',
-  ],
-  analytics: [
-    'Loading Google Analytics before consent — sets cookies and sends data illegally',
-    'Using analytics data for purposes not disclosed in the privacy policy',
-    'Treating analytics as "legitimate interest" without a balancing test',
-    'Not removing analytics data when a user opts out retrospectively',
-  ],
-  export: [
-    'Sending export to the wrong email address — data breach',
-    "Including other users' data in the export (e.g., shared records)",
-    'Generating the export synchronously — times out for large accounts',
-    'Omitting data held in third-party processors from the export',
-  ],
-  deletion: [
-    'Deleting user record but leaving orphaned rows in related tables',
-    'Not deleting from search indexes and caches',
-    'Forgetting to notify third-party processors',
-    'Treating deletion and anonymisation as equivalent without considering the re-identification risk',
-  ],
-  'third-party': [
-    'Assuming cloud providers (AWS, GCP) are automatically GDPR-compliant — SCCs still required for US data transfers',
-    'Not reviewing sub-processor lists — processors may engage additional parties',
-    'Sharing more user data than the processor needs',
-    'Failing to update the privacy policy when onboarding new processors',
-  ],
-  general: [
-    'Treating GDPR as a one-time compliance project rather than an ongoing process',
-    'Using legitimate interest as a catch-all basis without a documented balancing test',
-    'Ignoring CCPA if users are based in California but company is not US-registered',
-    'Not having a documented response procedure for data subject requests',
-  ],
-};
-
-const PATTERNS: Record<PrivacyScenario, string[]> = {
-  registration: ['Consent-first data collection', 'Data minimisation at source', 'Retention-period-as-code'],
-  analytics: ['Consent-gated script loading', 'Privacy-preserving analytics (server-side aggregation)', 'Opt-out-first design'],
-  export: ['Async export job with secure delivery', 'Data aggregation service pattern', 'Identity verification before sensitive operations'],
-  deletion: ['Cascade delete with audit trail', 'Anonymisation as delete alternative for analytics', 'Third-party propagation queue'],
-  'third-party': ['Processor register with DPA tracking', 'Data minimisation at integration boundary', 'Contractual breach escalation chain'],
-  general: ['Privacy by design and by default', 'Data subject rights as first-class API endpoints', 'DPIA for high-risk processing decisions'],
-};
-
-// ─── Public API ────────────────────────────────────────────────────────────
-
-export function plan(task: string, context?: string): AgentPlan {
-  const scenario = detectScenario(task);
-
-  const tierMap: Record<PrivacyScenario, 1 | 2 | 3> = {
-    registration: 2,
-    analytics: 2,
-    export: 2,
-    deletion: 2,
-    'third-party': 3,
-    general: 1,
-  };
-
-  const durationMap: Record<PrivacyScenario, string> = {
-    registration: '3-5 hours',
-    analytics: '2-4 hours',
-    export: '4-6 hours',
-    deletion: '4-8 hours',
-    'third-party': '6-10 hours',
-    general: '2-3 hours',
-  };
-
-  return {
-    agent: 'privacy',
-    task,
-    tier: tierMap[scenario],
-    approach: APPROACH[scenario],
-    steps: STEPS[scenario],
-    checklist: CHECKLIST[scenario],
-    pitfalls: PITFALLS[scenario],
-    patterns: PATTERNS[scenario],
-    duration_estimate: context?.includes('enterprise') ? '2-4 weeks' : durationMap[scenario],
-  };
-}