@panguard-ai/atr 1.4.3 → 1.5.1

package/dist/mcp-tools/submit-proposal.js

@@ -0,0 +1,103 @@
+/**
+ * atr_submit_proposal MCP tool - Generate ATR rule draft from threat description
+ * @module agent-threat-rules/mcp-tools/submit-proposal
+ */
+import { RuleScaffolder } from '../rule-scaffolder.js';
+const VALID_CATEGORIES = new Set([
+    'prompt-injection',
+    'tool-poisoning',
+    'context-exfiltration',
+    'agent-manipulation',
+    'privilege-escalation',
+    'excessive-autonomy',
+    'data-poisoning',
+    'model-abuse',
+    'skill-compromise',
+]);
+const VALID_SEVERITIES = new Set([
+    'critical',
+    'high',
+    'medium',
+    'low',
+    'informational',
+]);
+export function handleSubmitProposal(args) {
+    const title = args['title'];
+    const category = args['category'];
+    const attackDescription = args['attack_description'];
+    const examplePayloads = args['example_payloads'];
+    const severity = args['severity'];
+    const mitreRefs = args['mitre_refs'];
+    // Validate required fields
+    if (typeof title !== 'string' || title.trim().length === 0) {
+        return {
+            content: [{ type: 'text', text: 'Error: "title" is required and must be a non-empty string.' }],
+            isError: true,
+        };
+    }
+    if (typeof category !== 'string' || !VALID_CATEGORIES.has(category)) {
+        return {
+            content: [{ type: 'text', text: `Error: "category" must be one of: ${[...VALID_CATEGORIES].join(', ')}` }],
+            isError: true,
+        };
+    }
+    if (typeof attackDescription !== 'string' || attackDescription.trim().length === 0) {
+        return {
+            content: [{ type: 'text', text: 'Error: "attack_description" is required and must be a non-empty string.' }],
+            isError: true,
+        };
+    }
+    if (!Array.isArray(examplePayloads) || examplePayloads.length === 0) {
+        return {
+            content: [{ type: 'text', text: 'Error: "example_payloads" must be a non-empty array of strings.' }],
+            isError: true,
+        };
+    }
+    for (const payload of examplePayloads) {
+        if (typeof payload !== 'string') {
+            return {
+                content: [{ type: 'text', text: 'Error: All items in "example_payloads" must be strings.' }],
+                isError: true,
+            };
+        }
+    }
+    if (severity && !VALID_SEVERITIES.has(severity)) {
+        return {
+            content: [{ type: 'text', text: `Error: "severity" must be one of: ${[...VALID_SEVERITIES].join(', ')}` }],
+            isError: true,
+        };
+    }
+    if (mitreRefs !== undefined) {
+        if (!Array.isArray(mitreRefs) || mitreRefs.some((r) => typeof r !== 'string')) {
+            return {
+                content: [{ type: 'text', text: 'Error: "mitre_refs" must be an array of strings.' }],
+                isError: true,
+            };
+        }
+    }
+    const scaffolder = new RuleScaffolder();
+    const result = scaffolder.scaffold({
+        title: title.trim(),
+        category: category,
+        attackDescription: attackDescription.trim(),
+        examplePayloads: examplePayloads.map((p) => p.trim()),
+        severity: severity,
+        mitreRefs: mitreRefs,
+    });
+    const response = {
+        generated_id: result.id,
+        warnings: result.warnings,
+        yaml_rule: result.yaml,
+        next_steps: [
+            'Review and refine the generated detection patterns',
+            'Add more specific regex patterns for your use case',
+            'Test with atr_scan using example payloads',
+            'Validate with atr_validate_rule before submitting',
+            'Submit as a PR to the ATR repository',
+        ],
+    };
+    return {
+        content: [{ type: 'text', text: JSON.stringify(response, null, 2) }],
+    };
+}
+//# sourceMappingURL=submit-proposal.js.map

package/dist/mcp-tools/submit-proposal.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"submit-proposal.js","sourceRoot":"","sources":["../../src/mcp-tools/submit-proposal.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAGvD,MAAM,gBAAgB,GAAwB,IAAI,GAAG,CAAC;IACpD,kBAAkB;IAClB,gBAAgB;IAChB,sBAAsB;IACtB,oBAAoB;IACpB,sBAAsB;IACtB,oBAAoB;IACpB,gBAAgB;IAChB,aAAa;IACb,kBAAkB;CACnB,CAAC,CAAC;AAEH,MAAM,gBAAgB,GAAwB,IAAI,GAAG,CAAC;IACpD,UAAU;IACV,MAAM;IACN,QAAQ;IACR,KAAK;IACL,eAAe;CAChB,CAAC,CAAC;AAEH,MAAM,UAAU,oBAAoB,CAAC,IAA6B;IAIhE,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,CAAC;IAC5B,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC;IAClC,MAAM,iBAAiB,GAAG,IAAI,CAAC,oBAAoB,CAAC,CAAC;IACrD,MAAM,eAAe,GAAG,IAAI,CAAC,kBAAkB,CAAC,CAAC;IACjD,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAuB,CAAC;IACxD,MAAM,SAAS,GAAG,IAAI,CAAC,YAAY,CAAyB,CAAC;IAE7D,2BAA2B;IAC3B,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC3D,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,4DAA4D,EAAE,CAAC;YAC/F,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;IAED,IAAI,OAAO,QAAQ,KAAK,QAAQ,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QACpE,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,qCAAqC,CAAC,GAAG,gBAAgB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;YAC1G,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;IAED,IAAI,OAAO,iBAAiB,KAAK,QAAQ,IAAI,iBAAiB,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACnF,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,yEAAyE,EAAE,CAAC;YAC5G,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,IAAI,eAAe,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpE,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,iEAAiE,EAAE,CAAC;YACpG,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;IAED,KAAK,MAAM,OAAO,IAAI,eAAe,EAAE,CAAC;QACtC,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAChC,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,yDAAyD,EAAE,CAAC;gBAC5F,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;IACH,CAAC;IAED,IAAI,QAAQ,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QAChD,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,qCAAqC,CAAC,GAAG,gBAAgB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;YAC1G,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;IAED,IAAI,SAAS,KAAK,SAAS,EAAE,CAAC;QAC5B,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,IAAI,SAAS,CAAC,IAAI,CAAC,CAAC,CAAU,EAAE,EAAE,CAAC,OAAO,CAAC,KAAK,QAAQ,CAAC,EAAE,CAAC;YACvF,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,kDAAkD,EAAE,CAAC;gBACrF,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;IACH,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,cAAc,EAAE,CAAC;IACxC,MAAM,MAAM,GAAG,UAAU,CAAC,QAAQ,CAAC;QACjC,KAAK,EAAE,KAAK,CAAC,IAAI,EAAE;QACnB,QAAQ,EAAE,QAAuB;QACjC,iBAAiB,EAAE,iBAAiB,CAAC,IAAI,EAAE;QAC3C,eAAe,EAAE,eAAe,CAAC,GAAG,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAC7D,QAAQ,EAAE,QAAmC;QAC7C,SAAS,EAAE,SAAS;KACrB,CAAC,CAAC;IAEH,MAAM,QAAQ,GAAG;QACf,YAAY,EAAE,MAAM,CAAC,EAAE;QACvB,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,SAAS,EAAE,MAAM,CAAC,IAAI;QACtB,UAAU,EAAE;YACV,oDAAoD;YACpD,oDAAoD;YACpD,2CAA2C;YAC3C,mDAAmD;YACnD,sCAAsC;SACvC;KACF,CAAC;IAEF,OAAO;QACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC;KACrE,CAAC;AACJ,CAAC"}

package/dist/mcp-tools/threat-summary.d.ts

@@ -0,0 +1,12 @@
+/**
+ * atr_threat_summary MCP tool - Aggregate threat statistics
+ * @module agent-threat-rules/mcp-tools/threat-summary
+ */
+import type { ATREngine } from '../engine.js';
+export declare function handleThreatSummary(engine: ATREngine, args: Record<string, unknown>): {
+    content: Array<{
+        type: string;
+        text: string;
+    }>;
+};
+//# sourceMappingURL=threat-summary.d.ts.map

package/dist/mcp-tools/threat-summary.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"threat-summary.d.ts","sourceRoot":"","sources":["../../src/mcp-tools/threat-summary.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAE9C,wBAAgB,mBAAmB,CAAC,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG;IACrF,OAAO,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;CAChD,CA8EA"}

package/dist/mcp-tools/threat-summary.js

@@ -0,0 +1,74 @@
+/**
+ * atr_threat_summary MCP tool - Aggregate threat statistics
+ * @module agent-threat-rules/mcp-tools/threat-summary
+ */
+export function handleThreatSummary(engine, args) {
+    const category = args['category'];
+    const rules = [...engine.getRules()];
+    const filtered = category
+        ? rules.filter((r) => r.tags.category === category)
+        : rules;
+    // Aggregate by category
+    const byCategory = {};
+    for (const rule of filtered) {
+        const cat = rule.tags.category;
+        byCategory[cat] = (byCategory[cat] ?? 0) + 1;
+    }
+    // Aggregate by severity
+    const bySeverity = {};
+    for (const rule of filtered) {
+        bySeverity[rule.severity] = (bySeverity[rule.severity] ?? 0) + 1;
+    }
+    // Aggregate by status
+    const byStatus = {};
+    for (const rule of filtered) {
+        byStatus[rule.status] = (byStatus[rule.status] ?? 0) + 1;
+    }
+    // Aggregate by source type
+    const bySourceType = {};
+    for (const rule of filtered) {
+        const src = rule.agent_source.type;
+        bySourceType[src] = (bySourceType[src] ?? 0) + 1;
+    }
+    // Count test cases
+    let totalTestCases = 0;
+    let rulesWithTests = 0;
+    for (const rule of filtered) {
+        if (rule.test_cases) {
+            rulesWithTests++;
+            totalTestCases +=
+                (rule.test_cases.true_positives?.length ?? 0) +
+                    (rule.test_cases.true_negatives?.length ?? 0);
+        }
+    }
+    // Top actions
+    const actionCounts = {};
+    for (const rule of filtered) {
+        for (const action of rule.response.actions) {
+            actionCounts[action] = (actionCounts[action] ?? 0) + 1;
+        }
+    }
+    const topActions = Object.entries(actionCounts)
+        .sort((a, b) => b[1] - a[1])
+        .slice(0, 5)
+        .map(([action, count]) => ({ action, count }));
+    const result = {
+        summary_timestamp: new Date().toISOString(),
+        ...(category ? { filtered_category: category } : {}),
+        total_rules: filtered.length,
+        by_category: byCategory,
+        by_severity: bySeverity,
+        by_status: byStatus,
+        by_source_type: bySourceType,
+        test_coverage: {
+            rules_with_tests: rulesWithTests,
+            rules_without_tests: filtered.length - rulesWithTests,
+            total_test_cases: totalTestCases,
+        },
+        top_response_actions: topActions,
+    };
+    return {
+        content: [{ type: 'text', text: JSON.stringify(result, null, 2) }],
+    };
+}
+//# sourceMappingURL=threat-summary.js.map

package/dist/mcp-tools/threat-summary.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"threat-summary.js","sourceRoot":"","sources":["../../src/mcp-tools/threat-summary.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,MAAM,UAAU,mBAAmB,CAAC,MAAiB,EAAE,IAA6B;IAGlF,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAuB,CAAC;IACxD,MAAM,KAAK,GAAG,CAAC,GAAG,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC;IAErC,MAAM,QAAQ,GAAG,QAAQ;QACvB,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,KAAK,QAAQ,CAAC;QACnD,CAAC,CAAC,KAAK,CAAC;IAEV,wBAAwB;IACxB,MAAM,UAAU,GAA2B,EAAE,CAAC;IAC9C,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;QAC5B,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC;QAC/B,UAAU,CAAC,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IAC/C,CAAC;IAED,wBAAwB;IACxB,MAAM,UAAU,GAA2B,EAAE,CAAC;IAC9C,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;QAC5B,UAAU,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IACnE,CAAC;IAED,sBAAsB;IACtB,MAAM,QAAQ,GAA2B,EAAE,CAAC;IAC5C,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;QAC5B,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IAC3D,CAAC;IAED,2BAA2B;IAC3B,MAAM,YAAY,GAA2B,EAAE,CAAC;IAChD,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;QAC5B,MAAM,GAAG,GAAG,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC;QACnC,YAAY,CAAC,GAAG,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IACnD,CAAC;IAED,mBAAmB;IACnB,IAAI,cAAc,GAAG,CAAC,CAAC;IACvB,IAAI,cAAc,GAAG,CAAC,CAAC;IACvB,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;QAC5B,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;YACpB,cAAc,EAAE,CAAC;YACjB,cAAc;gBACZ,CAAC,IAAI,CAAC,UAAU,CAAC,cAAc,EAAE,MAAM,IAAI,CAAC,CAAC;oBAC7C,CAAC,IAAI,CAAC,UAAU,CAAC,cAAc,EAAE,MAAM,IAAI,CAAC,CAAC,CAAC;QAClD,CAAC;IACH,CAAC;IAED,cAAc;IACd,MAAM,YAAY,GAA2B,EAAE,CAAC;IAChD,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;QAC5B,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC;YAC3C,YAAY,CAAC,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QACzD,CAAC;IACH,CAAC;IAED,MAAM,UAAU,GAAG,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC;SAC5C,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;SAC3B,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;SACX,GAAG,CAAC,CAAC,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC;IAEjD,MAAM,MAAM,GAAG;QACb,iBAAiB,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QAC3C,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,iBAAiB,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACpD,WAAW,EAAE,QAAQ,CAAC,MAAM;QAC5B,WAAW,EAAE,UAAU;QACvB,WAAW,EAAE,UAAU;QACvB,SAAS,EAAE,QAAQ;QACnB,cAAc,EAAE,YAAY;QAC5B,aAAa,EAAE;YACb,gBAAgB,EAAE,cAAc;YAChC,mBAAmB,EAAE,QAAQ,CAAC,MAAM,GAAG,cAAc;YACrD,gBAAgB,EAAE,cAAc;SACjC;QACD,oBAAoB,EAAE,UAAU;KACjC,CAAC;IAEF,OAAO;QACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC;KACnE,CAAC;AACJ,CAAC"}

package/dist/mcp-tools/validate.d.ts

@@ -0,0 +1,15 @@
+/**
+ * atr_validate_rule MCP tool - Validate ATR rule YAML
+ * @module agent-threat-rules/mcp-tools/validate
+ */
+export interface ValidateInput {
+    yaml_content: string;
+}
+export declare function handleValidate(args: Record<string, unknown>): {
+    content: Array<{
+        type: string;
+        text: string;
+    }>;
+    isError?: boolean;
+};
+//# sourceMappingURL=validate.d.ts.map

package/dist/mcp-tools/validate.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validate.d.ts","sourceRoot":"","sources":["../../src/mcp-tools/validate.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAKH,MAAM,WAAW,aAAa;IAC5B,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,wBAAgB,cAAc,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG;IAC7D,OAAO,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAC/C,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB,CA+CA"}

package/dist/mcp-tools/validate.js

@@ -0,0 +1,51 @@
+/**
+ * atr_validate_rule MCP tool - Validate ATR rule YAML
+ * @module agent-threat-rules/mcp-tools/validate
+ */
+import yaml from 'js-yaml';
+import { validateRule } from '../loader.js';
+export function handleValidate(args) {
+    const yamlContent = args['yaml_content'];
+    if (typeof yamlContent !== 'string' || yamlContent.trim().length === 0) {
+        return {
+            content: [{ type: 'text', text: 'Error: "yaml_content" is required and must be a non-empty string.' }],
+            isError: true,
+        };
+    }
+    if (yamlContent.length > 1_000_000) {
+        return {
+            content: [{ type: 'text', text: 'Error: YAML content exceeds 1MB limit.' }],
+            isError: true,
+        };
+    }
+    try {
+        const parsed = yaml.load(yamlContent);
+        if (!parsed || typeof parsed !== 'object') {
+            return {
+                content: [{ type: 'text', text: JSON.stringify({ valid: false, errors: ['YAML parsed to a non-object value.'] }, null, 2) }],
+            };
+        }
+        const result = validateRule(parsed);
+        const response = {
+            valid: result.valid,
+            errors: result.errors,
+            parsed_fields: {
+                id: parsed['id'] ?? null,
+                title: parsed['title'] ?? null,
+                severity: parsed['severity'] ?? null,
+                category: parsed['tags']?.['category'] ?? null,
+                status: parsed['status'] ?? null,
+            },
+        };
+        return {
+            content: [{ type: 'text', text: JSON.stringify(response, null, 2) }],
+        };
+    }
+    catch (e) {
+        const msg = e instanceof Error ? e.message : String(e);
+        return {
+            content: [{ type: 'text', text: JSON.stringify({ valid: false, errors: [`YAML parse error: ${msg}`] }, null, 2) }],
+        };
+    }
+}
+//# sourceMappingURL=validate.js.map

package/dist/mcp-tools/validate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validate.js","sourceRoot":"","sources":["../../src/mcp-tools/validate.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,IAAI,MAAM,SAAS,CAAC;AAC3B,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAM5C,MAAM,UAAU,cAAc,CAAC,IAA6B;IAI1D,MAAM,WAAW,GAAG,IAAI,CAAC,cAAc,CAAC,CAAC;IACzC,IAAI,OAAO,WAAW,KAAK,QAAQ,IAAI,WAAW,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACvE,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,mEAAmE,EAAE,CAAC;YACtG,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;IAED,IAAI,WAAW,CAAC,MAAM,GAAG,SAAS,EAAE,CAAC;QACnC,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,wCAAwC,EAAE,CAAC;YAC3E,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;IAED,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QACtC,IAAI,CAAC,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;YAC1C,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,oCAAoC,CAAC,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC;aAC7H,CAAC;QACJ,CAAC;QAED,MAAM,MAAM,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;QAEpC,MAAM,QAAQ,GAAG;YACf,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,aAAa,EAAE;gBACb,EAAE,EAAG,MAAkC,CAAC,IAAI,CAAC,IAAI,IAAI;gBACrD,KAAK,EAAG,MAAkC,CAAC,OAAO,CAAC,IAAI,IAAI;gBAC3D,QAAQ,EAAG,MAAkC,CAAC,UAAU,CAAC,IAAI,IAAI;gBACjE,QAAQ,EAAI,MAAkC,CAAC,MAAM,CAAyC,EAAE,CAAC,UAAU,CAAC,IAAI,IAAI;gBACpH,MAAM,EAAG,MAAkC,CAAC,QAAQ,CAAC,IAAI,IAAI;aAC9D;SACF,CAAC;QAEF,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC;SACrE,CAAC;IACJ,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,MAAM,GAAG,GAAG,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QACvD,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,qBAAqB,GAAG,EAAE,CAAC,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC;SACnH,CAAC;IACJ,CAAC;AACH,CAAC"}

package/dist/modules/embedding.d.ts

@@ -0,0 +1,71 @@
+/**
+ * Embedding Module -- Tier 2.5 semantic similarity detection.
+ *
+ * Compares incoming text against pre-computed attack embeddings using
+ * cosine similarity. Catches paraphrases, multilingual attacks, and
+ * semantic variants that regex cannot detect.
+ *
+ * Uses all-MiniLM-L6-v2 (384 dimensions, ~22MB, runs locally in JS/WASM).
+ * No API calls. Optional dependency: @xenova/transformers.
+ *
+ * @module agent-threat-rules/modules/embedding
+ */
+import type { AgentEvent } from '../types.js';
+import type { ATRModule, ModuleCondition, ModuleResult } from './index.js';
+import { type VectorEntry, type SearchResult } from '../embedding/vector-store.js';
+import type { EmbeddingModel } from '../embedding/model-loader.js';
+export interface EmbeddingModuleConfig {
+    /** Pre-loaded attack vector entries */
+    readonly attackVectors?: readonly VectorEntry[];
+    /** Path to pre-computed attack-embeddings.json file */
+    readonly attackVectorsPath?: string;
+    /** Raw JSON data (alternative to file path) */
+    readonly attackVectorsData?: readonly {
+        id: string;
+        vector: number[];
+        label: string;
+        category: string;
+        severity: string;
+    }[];
+    /** Cosine similarity threshold (default: 0.65) */
+    readonly similarityThreshold?: number;
+    /** Top-K results to consider (default: 3) */
+    readonly topK?: number;
+    /** Custom embedding model (default: TransformersJSModel) */
+    readonly model?: EmbeddingModel;
+}
+export declare class EmbeddingModule implements ATRModule {
+    private readonly config;
+    readonly name = "embedding";
+    readonly description = "Vector similarity detection against known attack embeddings";
+    readonly version = "0.1.0";
+    readonly functions: {
+        name: string;
+        description: string;
+        args: ({
+            name: string;
+            type: "string";
+            required: boolean;
+            description: string;
+        } | {
+            name: string;
+            type: "number";
+            required: boolean;
+            description: string;
+        })[];
+    }[];
+    private store;
+    private model;
+    private readonly threshold;
+    private readonly topK;
+    private initialized;
+    constructor(config?: EmbeddingModuleConfig);
+    initialize(): Promise<void>;
+    evaluate(event: AgentEvent, condition: ModuleCondition): Promise<ModuleResult>;
+    /** Get search results with full details (for debugging/testing) */
+    searchDetailed(text: string, threshold?: number): Promise<readonly SearchResult[]>;
+    destroy(): Promise<void>;
+    /** Check if module is operational */
+    isAvailable(): boolean;
+}
+//# sourceMappingURL=embedding.d.ts.map

package/dist/modules/embedding.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"embedding.d.ts","sourceRoot":"","sources":["../../src/modules/embedding.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAC9C,OAAO,KAAK,EAAE,SAAS,EAAE,eAAe,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAC3E,OAAO,EAGL,KAAK,WAAW,EAChB,KAAK,YAAY,EAClB,MAAM,8BAA8B,CAAC;AACtC,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAMnE,MAAM,WAAW,qBAAqB;IACpC,uCAAuC;IACvC,QAAQ,CAAC,aAAa,CAAC,EAAE,SAAS,WAAW,EAAE,CAAC;IAChD,uDAAuD;IACvD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,MAAM,CAAC;IACpC,+CAA+C;IAC/C,QAAQ,CAAC,iBAAiB,CAAC,EAAE,SAAS;QACpC,EAAE,EAAE,MAAM,CAAC;QACX,MAAM,EAAE,MAAM,EAAE,CAAC;QACjB,KAAK,EAAE,MAAM,CAAC;QACd,QAAQ,EAAE,MAAM,CAAC;QACjB,QAAQ,EAAE,MAAM,CAAC;KAClB,EAAE,CAAC;IACJ,kDAAkD;IAClD,QAAQ,CAAC,mBAAmB,CAAC,EAAE,MAAM,CAAC;IACtC,6CAA6C;IAC7C,QAAQ,CAAC,IAAI,CAAC,EAAE,MAAM,CAAC;IACvB,4DAA4D;IAC5D,QAAQ,CAAC,KAAK,CAAC,EAAE,cAAc,CAAC;CACjC;AAMD,qBAAa,eAAgB,YAAW,SAAS;IAgCnC,OAAO,CAAC,QAAQ,CAAC,MAAM;IA/BnC,QAAQ,CAAC,IAAI,eAAe;IAC5B,QAAQ,CAAC,WAAW,iEAAiE;IACrF,QAAQ,CAAC,OAAO,WAAW;IAE3B,QAAQ,CAAC,SAAS;;;;;;;;;;;;;;QAmBhB;IAEF,OAAO,CAAC,KAAK,CAAc;IAC3B,OAAO,CAAC,KAAK,CAAwB;IACrC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;IACnC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAS;IAC9B,OAAO,CAAC,WAAW,CAAS;gBAEC,MAAM,GAAE,qBAA0B;IAOzD,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAsC3B,QAAQ,CAAC,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,eAAe,GAAG,OAAO,CAAC,YAAY,CAAC;IA2CpF,mEAAmE;IAC7D,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,YAAY,EAAE,CAAC;IAMlF,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAK9B,qCAAqC;IACrC,WAAW,IAAI,OAAO;CAGvB"}

package/dist/modules/embedding.js

@@ -0,0 +1,141 @@
+/**
+ * Embedding Module -- Tier 2.5 semantic similarity detection.
+ *
+ * Compares incoming text against pre-computed attack embeddings using
+ * cosine similarity. Catches paraphrases, multilingual attacks, and
+ * semantic variants that regex cannot detect.
+ *
+ * Uses all-MiniLM-L6-v2 (384 dimensions, ~22MB, runs locally in JS/WASM).
+ * No API calls. Optional dependency: @xenova/transformers.
+ *
+ * @module agent-threat-rules/modules/embedding
+ */
+import { VectorStore, loadVectorEntries, } from '../embedding/vector-store.js';
+// ---------------------------------------------------------------------------
+// Module
+// ---------------------------------------------------------------------------
+export class EmbeddingModule {
+    config;
+    name = 'embedding';
+    description = 'Vector similarity detection against known attack embeddings';
+    version = '0.1.0';
+    functions = [
+        {
+            name: 'similarity_search',
+            description: 'Find nearest known attacks by embedding similarity',
+            args: [
+                {
+                    name: 'field',
+                    type: 'string',
+                    required: false,
+                    description: 'Event field to embed (default: content)',
+                },
+                {
+                    name: 'threshold',
+                    type: 'number',
+                    required: false,
+                    description: 'Similarity threshold override',
+                },
+            ],
+        },
+    ];
+    store;
+    model;
+    threshold;
+    topK;
+    initialized = false;
+    constructor(config = {}) {
+        this.config = config;
+        this.threshold = config.similarityThreshold ?? 0.65;
+        this.topK = config.topK ?? 3;
+        this.model = config.model ?? null;
+        this.store = new VectorStore(config.attackVectors);
+    }
+    async initialize() {
+        if (this.initialized)
+            return;
+        // Load attack vectors from data
+        if (this.config.attackVectorsData) {
+            const entries = loadVectorEntries(this.config.attackVectorsData);
+            this.store = this.store.withEntries(entries);
+        }
+        // Load attack vectors from file
+        if (this.config.attackVectorsPath) {
+            try {
+                const { readFileSync } = await import('node:fs');
+                const data = JSON.parse(readFileSync(this.config.attackVectorsPath, 'utf-8'));
+                const entries = loadVectorEntries(data);
+                this.store = this.store.withEntries(entries);
+            }
+            catch {
+                // File not found = no pre-computed vectors, continue without them
+            }
+        }
+        // Load model if not provided
+        if (!this.model) {
+            try {
+                const { TransformersJSModel } = await import('../embedding/model-loader.js');
+                this.model = new TransformersJSModel();
+                await this.model.initialize();
+            }
+            catch (err) {
+                // Model not available = module degrades gracefully
+                const msg = err instanceof Error ? err.message : String(err);
+                console.warn(`[embedding] Model not available: ${msg}. Module disabled.`);
+                this.model = null;
+            }
+        }
+        this.initialized = true;
+    }
+    async evaluate(event, condition) {
+        if (!this.model || this.store.size() === 0) {
+            return { matched: false, value: 0, description: 'Embedding module not initialized' };
+        }
+        // Extract text to embed
+        const field = condition.args?.field ?? 'content';
+        const text = field === 'content'
+            ? event.content
+            : event.fields?.[field] ?? event.content;
+        if (!text || text.length < 5) {
+            return { matched: false, value: 0, description: 'Input too short for embedding' };
+        }
+        // Truncate to avoid excessive token usage
+        const truncated = text.slice(0, 512);
+        try {
+            // Encode input
+            const queryVec = await this.model.encode(truncated);
+            // Search for similar attacks
+            const threshold = condition.args?.threshold ?? this.threshold;
+            const results = this.store.search(queryVec, this.topK, threshold);
+            if (results.length === 0) {
+                return { matched: false, value: 0, description: 'No similar attacks found' };
+            }
+            const top = results[0];
+            return {
+                matched: true,
+                value: top.similarity,
+                description: `Similar to known attack: "${top.entry.label}" (${top.entry.category}, similarity: ${top.similarity.toFixed(3)})`,
+            };
+        }
+        catch (err) {
+            const msg = err instanceof Error ? err.message : String(err);
+            return { matched: false, value: 0, description: `Embedding error: ${msg}` };
+        }
+    }
+    /** Get search results with full details (for debugging/testing) */
+    async searchDetailed(text, threshold) {
+        if (!this.model || this.store.size() === 0)
+            return [];
+        const queryVec = await this.model.encode(text.slice(0, 512));
+        return this.store.search(queryVec, this.topK, threshold ?? this.threshold);
+    }
+    async destroy() {
+        this.model = null;
+        this.initialized = false;
+    }
+    /** Check if module is operational */
+    isAvailable() {
+        return this.initialized && this.model !== null && this.store.size() > 0;
+    }
+}
+//# sourceMappingURL=embedding.js.map

package/dist/modules/embedding.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"embedding.js","sourceRoot":"","sources":["../../src/modules/embedding.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAIH,OAAO,EACL,WAAW,EACX,iBAAiB,GAGlB,MAAM,8BAA8B,CAAC;AA4BtC,8EAA8E;AAC9E,SAAS;AACT,8EAA8E;AAE9E,MAAM,OAAO,eAAe;IAgCG;IA/BpB,IAAI,GAAG,WAAW,CAAC;IACnB,WAAW,GAAG,6DAA6D,CAAC;IAC5E,OAAO,GAAG,OAAO,CAAC;IAElB,SAAS,GAAG;QACnB;YACE,IAAI,EAAE,mBAAmB;YACzB,WAAW,EAAE,oDAAoD;YACjE,IAAI,EAAE;gBACJ;oBACE,IAAI,EAAE,OAAO;oBACb,IAAI,EAAE,QAAiB;oBACvB,QAAQ,EAAE,KAAK;oBACf,WAAW,EAAE,yCAAyC;iBACvD;gBACD;oBACE,IAAI,EAAE,WAAW;oBACjB,IAAI,EAAE,QAAiB;oBACvB,QAAQ,EAAE,KAAK;oBACf,WAAW,EAAE,+BAA+B;iBAC7C;aACF;SACF;KACF,CAAC;IAEM,KAAK,CAAc;IACnB,KAAK,CAAwB;IACpB,SAAS,CAAS;IAClB,IAAI,CAAS;IACtB,WAAW,GAAG,KAAK,CAAC;IAE5B,YAA6B,SAAgC,EAAE;QAAlC,WAAM,GAAN,MAAM,CAA4B;QAC7D,IAAI,CAAC,SAAS,GAAG,MAAM,CAAC,mBAAmB,IAAI,IAAI,CAAC;QACpD,IAAI,CAAC,IAAI,GAAG,MAAM,CAAC,IAAI,IAAI,CAAC,CAAC;QAC7B,IAAI,CAAC,KAAK,GAAG,MAAM,CAAC,KAAK,IAAI,IAAI,CAAC;QAClC,IAAI,CAAC,KAAK,GAAG,IAAI,WAAW,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;IACrD,CAAC;IAED,KAAK,CAAC,UAAU;QACd,IAAI,IAAI,CAAC,WAAW;YAAE,OAAO;QAE7B,gCAAgC;QAChC,IAAI,IAAI,CAAC,MAAM,CAAC,iBAAiB,EAAE,CAAC;YAClC,MAAM,OAAO,GAAG,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;YACjE,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;QAC/C,CAAC;QAED,gCAAgC;QAChC,IAAI,IAAI,CAAC,MAAM,CAAC,iBAAiB,EAAE,CAAC;YAClC,IAAI,CAAC;gBACH,MAAM,EAAE,YAAY,EAAE,GAAG,MAAM,MAAM,CAAC,SAAS,CAAC,CAAC;gBACjD,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,iBAAiB,EAAE,OAAO,CAAC,CAAC,CAAC;gBAC9E,MAAM,OAAO,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC;gBACxC,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;YAC/C,CAAC;YAAC,MAAM,CAAC;gBACP,kEAAkE;YACpE,CAAC;QACH,CAAC;QAED,6BAA6B;QAC7B,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;YAChB,IAAI,CAAC;gBACH,MAAM,EAAE,mBAAmB,EAAE,GAAG,MAAM,MAAM,CAAC,8BAA8B,CAAC,CAAC;gBAC7E,IAAI,CAAC,KAAK,GAAG,IAAI,mBAAmB,EAAE,CAAC;gBACvC,MAAM,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;YAChC,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,mDAAmD;gBACnD,MAAM,GAAG,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;gBAC7D,OAAO,CAAC,IAAI,CAAC,oCAAoC,GAAG,oBAAoB,CAAC,CAAC;gBAC1E,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;YACpB,CAAC;QACH,CAAC;QAED,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;IAC1B,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,KAAiB,EAAE,SAA0B;QAC1D,IAAI,CAAC,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,KAAK,CAAC,EAAE,CAAC;YAC3C,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,EAAE,WAAW,EAAE,kCAAkC,EAAE,CAAC;QACvF,CAAC;QAED,wBAAwB;QACxB,MAAM,KAAK,GAAI,SAAS,CAAC,IAAI,EAAE,KAAgB,IAAI,SAAS,CAAC;QAC7D,MAAM,IAAI,GACR,KAAK,KAAK,SAAS;YACjB,CAAC,CAAC,KAAK,CAAC,OAAO;YACf,CAAC,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,OAAO,CAAC;QAE7C,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC7B,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,EAAE,WAAW,EAAE,+BAA+B,EAAE,CAAC;QACpF,CAAC;QAED,0CAA0C;QAC1C,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;QAErC,IAAI,CAAC;YACH,eAAe;YACf,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YAEpD,6BAA6B;YAC7B,MAAM,SAAS,GAAI,SAAS,CAAC,IAAI,EAAE,SAAoB,IAAI,IAAI,CAAC,SAAS,CAAC;YAC1E,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;YAElE,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACzB,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,EAAE,WAAW,EAAE,0BAA0B,EAAE,CAAC;YAC/E,CAAC;YAED,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAE,CAAC;YACxB,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,KAAK,EAAE,GAAG,CAAC,UAAU;gBACrB,WAAW,EAAE,6BAA6B,GAAG,CAAC,KAAK,CAAC,KAAK,MAAM,GAAG,CAAC,KAAK,CAAC,QAAQ,iBAAiB,GAAG,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG;aAC/H,CAAC;QACJ,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,GAAG,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YAC7D,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,EAAE,WAAW,EAAE,oBAAoB,GAAG,EAAE,EAAE,CAAC;QAC9E,CAAC;IACH,CAAC;IAED,mEAAmE;IACnE,KAAK,CAAC,cAAc,CAAC,IAAY,EAAE,SAAkB;QACnD,IAAI,CAAC,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,KAAK,CAAC;YAAE,OAAO,EAAE,CAAC;QACtD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;QAC7D,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,SAAS,IAAI,IAAI,CAAC,SAAS,CAAC,CAAC;IAC7E,CAAC;IAED,KAAK,CAAC,OAAO;QACX,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QAClB,IAAI,CAAC,WAAW,GAAG,KAAK,CAAC;IAC3B,CAAC;IAED,qCAAqC;IACrC,WAAW;QACT,OAAO,IAAI,CAAC,WAAW,IAAI,IAAI,CAAC,KAAK,KAAK,IAAI,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC1E,CAAC;CACF"}

package/dist/modules/index.d.ts

@@ -0,0 +1,144 @@
+/**
+ * ATR Module System
+ *
+ * Extensible detection modules beyond regex pattern matching.
+ * Inspired by YARA modules, adapted for AI agent threat detection.
+ *
+ * Built-in modules:
+ * - session: Cross-event behavioral analysis using SessionTracker
+ * - semantic: AI-driven semantic threat analysis using LLM-as-judge (v0.2)
+ *
+ * Reserved namespaces (planned):
+ * - embedding: Vector similarity detection (v0.3)
+ * - protocol: MCP/transport-level inspection (v0.3)
+ * - entropy: Information-theoretic anomaly detection (v0.4)
+ * - tokenizer: Token-level analysis for smuggling detection (v0.4)
+ *
+ * @module agent-threat-rules/modules
+ */
+import type { AgentEvent } from '../types.js';
+/**
+ * Condition defined by a module (used in rule YAML).
+ *
+ * Example in YAML:
+ * ```yaml
+ * detection:
+ *   conditions:
+ *     high_frequency:
+ *       module: session
+ *       function: call_frequency
+ *       args:
+ *         tool_name: "execute_code"
+ *         window: "5m"
+ *       operator: gt
+ *       threshold: 10
+ *   condition: "high_frequency"
+ * ```
+ */
+export interface ModuleCondition {
+    /** Module name (e.g., "session", "embedding") */
+    module: string;
+    /** Function within the module to call */
+    function: string;
+    /** Arguments passed to the module function */
+    args: Record<string, unknown>;
+    /** Comparison operator for the result */
+    operator: 'gt' | 'lt' | 'eq' | 'gte' | 'lte';
+    /** Threshold value to compare against */
+    threshold: number;
+}
+/**
+ * Result returned by a module evaluation.
+ */
+export interface ModuleResult {
+    /** Whether the condition was met */
+    matched: boolean;
+    /** Numeric value produced by the module (for threshold comparison) */
+    value: number;
+    /** Human-readable description of the result */
+    description: string;
+}
+/**
+ * Interface that all ATR detection modules must implement.
+ *
+ * Modules extend ATR's detection beyond regex by providing
+ * custom evaluation logic (behavioral analysis, embedding
+ * similarity, protocol inspection, etc.).
+ */
+export interface ATRModule {
+    /** Unique module name (used in rule YAML) */
+    readonly name: string;
+    /** Human-readable description */
+    readonly description: string;
+    /** Module version */
+    readonly version: string;
+    /**
+     * List of functions this module provides.
+     * Each function can be referenced in rule conditions.
+     */
+    readonly functions: ReadonlyArray<{
+        name: string;
+        description: string;
+        args: ReadonlyArray<{
+            name: string;
+            type: 'string' | 'number' | 'boolean';
+            required: boolean;
+            description: string;
+        }>;
+    }>;
+    /**
+     * Initialize the module. Called once when the engine starts.
+     * Use for setup, connection pooling, model loading, etc.
+     */
+    initialize(): Promise<void>;
+    /**
+     * Evaluate a module condition against an agent event.
+     *
+     * @param event - The agent event being evaluated
+     * @param condition - The module condition from the rule
+     * @returns Module evaluation result
+     */
+    evaluate(event: AgentEvent, condition: ModuleCondition): Promise<ModuleResult>;
+    /**
+     * Clean up module resources. Called when the engine shuts down.
+     */
+    destroy(): Promise<void>;
+}
+/**
+ * Registry for ATR detection modules.
+ */
+export declare class ModuleRegistry {
+    private readonly modules;
+    /** Reserved module namespaces (cannot be registered by third parties) */
+    private static readonly RESERVED;
+    /**
+     * Register a detection module.
+     * @throws if module name is already registered or reserved
+     */
+    register(module: ATRModule): void;
+    /**
+     * Check if a module name is reserved by the ATR core team.
+     */
+    isReserved(name: string): boolean;
+    /**
+     * Get a registered module by name.
+     */
+    get(name: string): ATRModule | undefined;
+    /**
+     * List all registered modules.
+     */
+    list(): ReadonlyArray<{
+        name: string;
+        version: string;
+        description: string;
+    }>;
+    /**
+     * Initialize all registered modules.
+     */
+    initializeAll(): Promise<void>;
+    /**
+     * Destroy all registered modules.
+     */
+    destroyAll(): Promise<void>;
+}
+//# sourceMappingURL=index.d.ts.map

package/dist/modules/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/modules/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAE9C;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,WAAW,eAAe;IAC9B,iDAAiD;IACjD,MAAM,EAAE,MAAM,CAAC;IACf,yCAAyC;IACzC,QAAQ,EAAE,MAAM,CAAC;IACjB,8CAA8C;IAC9C,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC9B,yCAAyC;IACzC,QAAQ,EAAE,IAAI,GAAG,IAAI,GAAG,IAAI,GAAG,KAAK,GAAG,KAAK,CAAC;IAC7C,yCAAyC;IACzC,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,oCAAoC;IACpC,OAAO,EAAE,OAAO,CAAC;IACjB,sEAAsE;IACtE,KAAK,EAAE,MAAM,CAAC;IACd,+CAA+C;IAC/C,WAAW,EAAE,MAAM,CAAC;CACrB;AAED;;;;;;GAMG;AACH,MAAM,WAAW,SAAS;IACxB,6CAA6C;IAC7C,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IAEtB,iCAAiC;IACjC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAE7B,qBAAqB;IACrB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IAEzB;;;OAGG;IACH,QAAQ,CAAC,SAAS,EAAE,aAAa,CAAC;QAChC,IAAI,EAAE,MAAM,CAAC;QACb,WAAW,EAAE,MAAM,CAAC;QACpB,IAAI,EAAE,aAAa,CAAC;YAClB,IAAI,EAAE,MAAM,CAAC;YACb,IAAI,EAAE,QAAQ,GAAG,QAAQ,GAAG,SAAS,CAAC;YACtC,QAAQ,EAAE,OAAO,CAAC;YAClB,WAAW,EAAE,MAAM,CAAC;SACrB,CAAC,CAAC;KACJ,CAAC,CAAC;IAEH;;;OAGG;IACH,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAE5B;;;;;;OAMG;IACH,QAAQ,CAAC,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,eAAe,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;IAE/E;;OAEG;IACH,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;CAC1B;AAED;;GAEG;AACH,qBAAa,cAAc;IACzB,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAgC;IAExD,yEAAyE;IACzE,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAO7B;IAEH;;;OAGG;IACH,QAAQ,CAAC,MAAM,EAAE,SAAS,GAAG,IAAI;IAOjC;;OAEG;IACH,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO;IAIjC;;OAEG;IACH,GAAG,CAAC,IAAI,EAAE,MAAM,GAAG,SAAS,GAAG,SAAS;IAIxC;;OAEG;IACH,IAAI,IAAI,aAAa,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,MAAM,CAAA;KAAE,CAAC;IAQ7E;;OAEG;IACG,aAAa,IAAI,OAAO,CAAC,IAAI,CAAC;IAMpC;;OAEG;IACG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;CAKlC"}