@panguard-ai/atr 1.4.3 → 1.5.1

package/dist/quality/index.js

@@ -0,0 +1,39 @@
+/**
+ * ATR Quality Standard — Public API
+ *
+ * Vendor-neutral library for scoring and validating AI agent threat detection
+ * rules. See docs/proposals/001-atr-quality-standard-rfc.md for the RFC.
+ *
+ * @example Compute a confidence score for an ATR rule
+ * ```typescript
+ * import { parseATRRule, computeConfidence } from 'agent-threat-rules/quality';
+ * import { readFileSync } from 'node:fs';
+ *
+ * const yaml = readFileSync('rules/prompt-injection/ATR-2026-00001.yaml', 'utf-8');
+ * const rule = parseATRRule(yaml);
+ * const score = computeConfidence(rule);
+ * console.log(`Confidence: ${score.total}/100`);
+ * ```
+ *
+ * @example Run a rule through the quality gate
+ * ```typescript
+ * import { parseATRRule, validateRuleMeetsStandard } from 'agent-threat-rules/quality';
+ *
+ * const rule = parseATRRule(yamlContent);
+ * const gate = validateRuleMeetsStandard(rule, 'experimental');
+ * if (!gate.passed) {
+ *   console.error('Rule rejected:', gate.issues);
+ * }
+ * ```
+ *
+ * @module agent-threat-rules/quality
+ */
+// Scoring
+export { computeConfidence, deploymentFor, applyCrossContextPenalty, } from "./compute-confidence.js";
+// Validation
+export { validateRuleMeetsStandard, getRequirements } from "./quality-gate.js";
+// Maturity transitions
+export { canPromote, shouldDemote, getMaturityThresholds, } from "./validate-maturity.js";
+// Adapters
+export { parseATRRule, atrRuleToMetadata } from "./adapters/atr.js";
+//# sourceMappingURL=index.js.map

package/dist/quality/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/quality/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA6BG;AAcH,UAAU;AACV,OAAO,EACL,iBAAiB,EACjB,aAAa,EACb,wBAAwB,GACzB,MAAM,yBAAyB,CAAC;AAEjC,aAAa;AACb,OAAO,EAAE,yBAAyB,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAE/E,uBAAuB;AACvB,OAAO,EACL,UAAU,EACV,YAAY,EACZ,qBAAqB,GACtB,MAAM,wBAAwB,CAAC;AAEhC,WAAW;AACX,OAAO,EAAE,YAAY,EAAE,iBAAiB,EAAE,MAAM,mBAAmB,CAAC"}

package/dist/quality/quality-gate.d.ts

@@ -0,0 +1,86 @@
+/**
+ * ATR Quality Standard — Quality Gate
+ *
+ * Checks whether a rule meets the minimum quality bar for a target maturity
+ * level. Used by TC crystallization pipeline to reject weak LLM-generated
+ * rules before they enter the proposal pipeline.
+ *
+ * See docs/proposals/001-atr-quality-standard-rfc.md §3 for the required
+ * metadata matrix.
+ *
+ * @module agent-threat-rules/quality/quality-gate
+ */
+import type { Maturity, QualityGateResult, RuleMetadata } from "./types.js";
+/**
+ * Minimum requirements for each maturity level.
+ *
+ * RFC-001 v1.1 (effective 2026-04-12) splits the quality bar:
+ * - experimental: 3/3/0 — low barrier for community contribution. OWASP,
+ *   MITRE, evasion tests, and FP docs are encouraged but NOT required.
+ *   The upgrade pipeline adds these during promotion to stable.
+ * - stable: 5/5/3 — production-quality bar with verified provenance,
+ *   OWASP + MITRE mapping, evasion tests, and wild validation.
+ *
+ * Rationale: VirusTotal doesn't reject "low quality" samples — everything
+ * gets in. Sigma experimental is loose. A strict experimental gate kills
+ * community contribution velocity. Data velocity > data purity at scale.
+ *
+ * See docs/proposals/001-atr-quality-standard-rfc.md §1 and §3.
+ */
+declare const REQUIREMENTS: {
+    readonly draft: {
+        readonly minConditions: 1;
+        readonly minTruePositives: 1;
+        readonly minTrueNegatives: 1;
+        readonly minEvasionTests: 0;
+        readonly requireOwasp: false;
+        readonly requireMitre: false;
+        readonly requireFalsePositiveDocs: false;
+        readonly requireHumanReviewedProvenance: false;
+    };
+    readonly experimental: {
+        readonly minConditions: 1;
+        readonly minTruePositives: 3;
+        readonly minTrueNegatives: 3;
+        readonly minEvasionTests: 0;
+        readonly requireOwasp: false;
+        readonly requireMitre: false;
+        readonly requireFalsePositiveDocs: false;
+        readonly requireHumanReviewedProvenance: false;
+    };
+    readonly stable: {
+        readonly minConditions: 3;
+        readonly minTruePositives: 5;
+        readonly minTrueNegatives: 5;
+        readonly minEvasionTests: 3;
+        readonly requireOwasp: true;
+        readonly requireMitre: true;
+        readonly requireFalsePositiveDocs: true;
+        readonly requireHumanReviewedProvenance: true;
+    };
+};
+/**
+ * RFC-001 v1.1 §1.1 — Single-Pattern Rule Exception threshold.
+ *
+ * A rule with fewer than `minConditions` for its target maturity level
+ * is still accepted if it has been validated against at least this many
+ * real-world samples with a measured false-positive rate of exactly 0.
+ * Set to the size of the most recent ATR mega scan as of effective date,
+ * which is the empirical evidence baseline the standard authors used.
+ */
+export declare const SINGLE_PATTERN_EXCEPTION_MIN_SAMPLES = 50000;
+/**
+ * Validate a rule against the quality bar for a target maturity level.
+ *
+ * @param rule - Rule metadata
+ * @param target - Target maturity level to validate against (default: rule.maturity)
+ * @returns Gate result with passed/failed and human-readable issues
+ */
+export declare function validateRuleMeetsStandard(rule: RuleMetadata, target?: Maturity): QualityGateResult;
+/**
+ * Public accessor for the requirements table.
+ * Useful for documentation generators and UIs that display the quality bar.
+ */
+export declare function getRequirements(): typeof REQUIREMENTS;
+export {};
+//# sourceMappingURL=quality-gate.d.ts.map

package/dist/quality/quality-gate.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"quality-gate.d.ts","sourceRoot":"","sources":["../../src/quality/quality-gate.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EACV,QAAQ,EAER,iBAAiB,EACjB,YAAY,EACb,MAAM,YAAY,CAAC;AAEpB;;;;;;;;;;;;;;;GAeG;AACH,QAAA,MAAM,YAAY;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA+BR,CAAC;AAEX;;;;;;;;GAQG;AACH,eAAO,MAAM,oCAAoC,QAAS,CAAC;AAQ3D;;;;;;GAMG;AACH,wBAAgB,yBAAyB,CACvC,IAAI,EAAE,YAAY,EAClB,MAAM,CAAC,EAAE,QAAQ,GAChB,iBAAiB,CAiHnB;AAMD;;;GAGG;AACH,wBAAgB,eAAe,IAAI,OAAO,YAAY,CAErD"}

package/dist/quality/quality-gate.js

@@ -0,0 +1,187 @@
+/**
+ * ATR Quality Standard — Quality Gate
+ *
+ * Checks whether a rule meets the minimum quality bar for a target maturity
+ * level. Used by TC crystallization pipeline to reject weak LLM-generated
+ * rules before they enter the proposal pipeline.
+ *
+ * See docs/proposals/001-atr-quality-standard-rfc.md §3 for the required
+ * metadata matrix.
+ *
+ * @module agent-threat-rules/quality/quality-gate
+ */
+/**
+ * Minimum requirements for each maturity level.
+ *
+ * RFC-001 v1.1 (effective 2026-04-12) splits the quality bar:
+ * - experimental: 3/3/0 — low barrier for community contribution. OWASP,
+ *   MITRE, evasion tests, and FP docs are encouraged but NOT required.
+ *   The upgrade pipeline adds these during promotion to stable.
+ * - stable: 5/5/3 — production-quality bar with verified provenance,
+ *   OWASP + MITRE mapping, evasion tests, and wild validation.
+ *
+ * Rationale: VirusTotal doesn't reject "low quality" samples — everything
+ * gets in. Sigma experimental is loose. A strict experimental gate kills
+ * community contribution velocity. Data velocity > data purity at scale.
+ *
+ * See docs/proposals/001-atr-quality-standard-rfc.md §1 and §3.
+ */
+const REQUIREMENTS = {
+    draft: {
+        minConditions: 1,
+        minTruePositives: 1,
+        minTrueNegatives: 1,
+        minEvasionTests: 0,
+        requireOwasp: false,
+        requireMitre: false,
+        requireFalsePositiveDocs: false,
+        requireHumanReviewedProvenance: false,
+    },
+    experimental: {
+        minConditions: 1,
+        minTruePositives: 3, // RFC-001 v1.1: lowered for community contribution velocity
+        minTrueNegatives: 3,
+        minEvasionTests: 0, // encouraged but not required — pipeline adds during upgrade
+        requireOwasp: false, // pipeline adds during promotion to stable
+        requireMitre: false, // pipeline adds during promotion to stable
+        requireFalsePositiveDocs: false, // pipeline adds during promotion to stable
+        requireHumanReviewedProvenance: false,
+    },
+    stable: {
+        minConditions: 3,
+        minTruePositives: 5,
+        minTrueNegatives: 5,
+        minEvasionTests: 3, // hard requirement
+        requireOwasp: true,
+        requireMitre: true,
+        requireFalsePositiveDocs: true,
+        requireHumanReviewedProvenance: true, // stable demands verified provenance
+    },
+};
+/**
+ * RFC-001 v1.1 §1.1 — Single-Pattern Rule Exception threshold.
+ *
+ * A rule with fewer than `minConditions` for its target maturity level
+ * is still accepted if it has been validated against at least this many
+ * real-world samples with a measured false-positive rate of exactly 0.
+ * Set to the size of the most recent ATR mega scan as of effective date,
+ * which is the empirical evidence baseline the standard authors used.
+ */
+export const SINGLE_PATTERN_EXCEPTION_MIN_SAMPLES = 50_000;
+/** Provenance values that count as "verified" for stable promotion */
+const VERIFIED_PROVENANCE = [
+    "human-reviewed",
+    "community-contributed",
+];
+/**
+ * Validate a rule against the quality bar for a target maturity level.
+ *
+ * @param rule - Rule metadata
+ * @param target - Target maturity level to validate against (default: rule.maturity)
+ * @returns Gate result with passed/failed and human-readable issues
+ */
+export function validateRuleMeetsStandard(rule, target) {
+    const level = target ?? rule.maturity;
+    // Deprecated rules are always valid (they're being retired, not used)
+    if (level === "deprecated") {
+        return { passed: true, issues: [], warnings: [] };
+    }
+    const req = REQUIREMENTS[level];
+    const issues = [];
+    const warnings = [];
+    // RFC-001 v1.1 §1.1 — Single-Pattern Rule Exception.
+    //
+    // A rule with fewer than the default minimum number of detection conditions
+    // MAY still pass the experimental gate if it has been wild-validated to a
+    // very high standard. Empirically (see ATR-2026-00139, 00146, etc.) some
+    // attack categories — casual social engineering, single-token homoglyph
+    // injection, ChatML system-token spoofing — are best caught by exactly one
+    // narrow regex; padding with additional conditions only adds false-positive
+    // surface without improving recall.
+    //
+    // Eligibility for the exception:
+    //   - wild_samples >= SINGLE_PATTERN_EXCEPTION_MIN_SAMPLES
+    //   - wild_fp_rate === 0 (must be exactly zero, not <= 0.5%)
+    //   - rule still has >= 1 condition (true zero-condition rules are invalid)
+    //
+    // The exception is intentionally narrow: it costs the rule author a hard
+    // empirical claim (wild_fp_rate exactly 0% on >=N samples). Authors who
+    // cannot meet this bar must add more detection conditions OR keep the rule
+    // at maturity `draft` until they can.
+    const meetsSinglePatternException = level === "experimental" &&
+        rule.conditions >= 1 &&
+        rule.wildSamples !== undefined &&
+        rule.wildSamples >= SINGLE_PATTERN_EXCEPTION_MIN_SAMPLES &&
+        rule.wildFpRate === 0;
+    if (rule.conditions < req.minConditions) {
+        if (meetsSinglePatternException) {
+            warnings.push(`only ${rule.conditions} detection condition(s) — accepted under RFC-001 v1.1 §1.1 single-pattern exception (wild_samples=${rule.wildSamples}, wild_fp_rate=0%)`);
+        }
+        else {
+            issues.push(`only ${rule.conditions} detection condition(s) (need ${req.minConditions}+, or wild_samples >= ${SINGLE_PATTERN_EXCEPTION_MIN_SAMPLES} with wild_fp_rate = 0% for the single-pattern exception)`);
+        }
+    }
+    if (rule.truePositives < req.minTruePositives) {
+        issues.push(`only ${rule.truePositives} true_positive(s) (need ${req.minTruePositives}+)`);
+    }
+    if (rule.trueNegatives < req.minTrueNegatives) {
+        issues.push(`only ${rule.trueNegatives} true_negative(s) (need ${req.minTrueNegatives}+)`);
+    }
+    if (req.minEvasionTests > 0 && rule.evasionTests < req.minEvasionTests) {
+        issues.push(`only ${rule.evasionTests} evasion_test(s) (need ${req.minEvasionTests}+)`);
+    }
+    else if (rule.evasionTests < 3 && level === "experimental") {
+        warnings.push(`only ${rule.evasionTests} evasion_test(s) — recommend 3+ for stable promotion`);
+    }
+    if (req.requireOwasp && !rule.hasOwaspRef) {
+        issues.push("missing OWASP reference (LLM Top 10 or Agentic Top 10)");
+    }
+    if (req.requireMitre && !rule.hasMitreRef) {
+        issues.push("missing MITRE reference (ATLAS or ATT&CK)");
+    }
+    if (req.requireFalsePositiveDocs && !rule.hasFalsePositiveDocs) {
+        issues.push("missing false_positives documentation");
+    }
+    // Stable promotion requires human-verified provenance on key fields
+    if (req.requireHumanReviewedProvenance) {
+        const p = rule.provenance ?? {};
+        const mitreProvenance = p.mitre_atlas ?? p.mitre_attack;
+        const owaspProvenance = p.owasp_llm ?? p.owasp_agentic;
+        if (rule.hasMitreRef && mitreProvenance && !isVerified(mitreProvenance)) {
+            issues.push(`MITRE reference is "${mitreProvenance}" — stable requires human-reviewed or community-contributed`);
+        }
+        if (rule.hasOwaspRef && owaspProvenance && !isVerified(owaspProvenance)) {
+            issues.push(`OWASP reference is "${owaspProvenance}" — stable requires human-reviewed or community-contributed`);
+        }
+    }
+    else {
+        // experimental/draft: surface provenance as warning so consumers can see it
+        const p = rule.provenance ?? {};
+        const autoFields = [];
+        if (p.mitre_atlas === "auto-generated")
+            autoFields.push("mitre_atlas");
+        if (p.owasp_llm === "auto-generated")
+            autoFields.push("owasp_llm");
+        if (p.owasp_agentic === "auto-generated")
+            autoFields.push("owasp_agentic");
+        if (autoFields.length > 0) {
+            warnings.push(`auto-generated provenance on: ${autoFields.join(", ")} — needs human review for stable`);
+        }
+    }
+    return {
+        passed: issues.length === 0,
+        issues,
+        warnings,
+    };
+}
+function isVerified(p) {
+    return VERIFIED_PROVENANCE.includes(p);
+}
+/**
+ * Public accessor for the requirements table.
+ * Useful for documentation generators and UIs that display the quality bar.
+ */
+export function getRequirements() {
+    return REQUIREMENTS;
+}
+//# sourceMappingURL=quality-gate.js.map

package/dist/quality/quality-gate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"quality-gate.js","sourceRoot":"","sources":["../../src/quality/quality-gate.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AASH;;;;;;;;;;;;;;;GAeG;AACH,MAAM,YAAY,GAAG;IACnB,KAAK,EAAE;QACL,aAAa,EAAE,CAAC;QAChB,gBAAgB,EAAE,CAAC;QACnB,gBAAgB,EAAE,CAAC;QACnB,eAAe,EAAE,CAAC;QAClB,YAAY,EAAE,KAAK;QACnB,YAAY,EAAE,KAAK;QACnB,wBAAwB,EAAE,KAAK;QAC/B,8BAA8B,EAAE,KAAK;KACtC;IACD,YAAY,EAAE;QACZ,aAAa,EAAE,CAAC;QAChB,gBAAgB,EAAE,CAAC,EAAE,4DAA4D;QACjF,gBAAgB,EAAE,CAAC;QACnB,eAAe,EAAE,CAAC,EAAE,6DAA6D;QACjF,YAAY,EAAE,KAAK,EAAE,2CAA2C;QAChE,YAAY,EAAE,KAAK,EAAE,2CAA2C;QAChE,wBAAwB,EAAE,KAAK,EAAE,2CAA2C;QAC5E,8BAA8B,EAAE,KAAK;KACtC;IACD,MAAM,EAAE;QACN,aAAa,EAAE,CAAC;QAChB,gBAAgB,EAAE,CAAC;QACnB,gBAAgB,EAAE,CAAC;QACnB,eAAe,EAAE,CAAC,EAAE,mBAAmB;QACvC,YAAY,EAAE,IAAI;QAClB,YAAY,EAAE,IAAI;QAClB,wBAAwB,EAAE,IAAI;QAC9B,8BAA8B,EAAE,IAAI,EAAE,qCAAqC;KAC5E;CACO,CAAC;AAEX;;;;;;;;GAQG;AACH,MAAM,CAAC,MAAM,oCAAoC,GAAG,MAAM,CAAC;AAE3D,sEAAsE;AACtE,MAAM,mBAAmB,GAA0B;IACjD,gBAAgB;IAChB,uBAAuB;CACxB,CAAC;AAEF;;;;;;GAMG;AACH,MAAM,UAAU,yBAAyB,CACvC,IAAkB,EAClB,MAAiB;IAEjB,MAAM,KAAK,GAAG,MAAM,IAAI,IAAI,CAAC,QAAQ,CAAC;IAEtC,sEAAsE;IACtE,IAAI,KAAK,KAAK,YAAY,EAAE,CAAC;QAC3B,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC;IACpD,CAAC;IAED,MAAM,GAAG,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC;IAChC,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,MAAM,QAAQ,GAAa,EAAE,CAAC;IAE9B,qDAAqD;IACrD,EAAE;IACF,4EAA4E;IAC5E,0EAA0E;IAC1E,yEAAyE;IACzE,wEAAwE;IACxE,2EAA2E;IAC3E,4EAA4E;IAC5E,oCAAoC;IACpC,EAAE;IACF,iCAAiC;IACjC,2DAA2D;IAC3D,6DAA6D;IAC7D,4EAA4E;IAC5E,EAAE;IACF,yEAAyE;IACzE,wEAAwE;IACxE,2EAA2E;IAC3E,sCAAsC;IACtC,MAAM,2BAA2B,GAC/B,KAAK,KAAK,cAAc;QACxB,IAAI,CAAC,UAAU,IAAI,CAAC;QACpB,IAAI,CAAC,WAAW,KAAK,SAAS;QAC9B,IAAI,CAAC,WAAW,IAAI,oCAAoC;QACxD,IAAI,CAAC,UAAU,KAAK,CAAC,CAAC;IAExB,IAAI,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC,aAAa,EAAE,CAAC;QACxC,IAAI,2BAA2B,EAAE,CAAC;YAChC,QAAQ,CAAC,IAAI,CACX,QAAQ,IAAI,CAAC,UAAU,qGAAqG,IAAI,CAAC,WAAW,oBAAoB,CACjK,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CACT,QAAQ,IAAI,CAAC,UAAU,iCAAiC,GAAG,CAAC,aAAa,yBAAyB,oCAAoC,2DAA2D,CAClM,CAAC;QACJ,CAAC;IACH,CAAC;IACD,IAAI,IAAI,CAAC,aAAa,GAAG,GAAG,CAAC,gBAAgB,EAAE,CAAC;QAC9C,MAAM,CAAC,IAAI,CACT,QAAQ,IAAI,CAAC,aAAa,2BAA2B,GAAG,CAAC,gBAAgB,IAAI,CAC9E,CAAC;IACJ,CAAC;IACD,IAAI,IAAI,CAAC,aAAa,GAAG,GAAG,CAAC,gBAAgB,EAAE,CAAC;QAC9C,MAAM,CAAC,IAAI,CACT,QAAQ,IAAI,CAAC,aAAa,2BAA2B,GAAG,CAAC,gBAAgB,IAAI,CAC9E,CAAC;IACJ,CAAC;IACD,IAAI,GAAG,CAAC,eAAe,GAAG,CAAC,IAAI,IAAI,CAAC,YAAY,GAAG,GAAG,CAAC,eAAe,EAAE,CAAC;QACvE,MAAM,CAAC,IAAI,CACT,QAAQ,IAAI,CAAC,YAAY,0BAA0B,GAAG,CAAC,eAAe,IAAI,CAC3E,CAAC;IACJ,CAAC;SAAM,IAAI,IAAI,CAAC,YAAY,GAAG,CAAC,IAAI,KAAK,KAAK,cAAc,EAAE,CAAC;QAC7D,QAAQ,CAAC,IAAI,CACX,QAAQ,IAAI,CAAC,YAAY,sDAAsD,CAChF,CAAC;IACJ,CAAC;IACD,IAAI,GAAG,CAAC,YAAY,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC;QAC1C,MAAM,CAAC,IAAI,CAAC,wDAAwD,CAAC,CAAC;IACxE,CAAC;IACD,IAAI,GAAG,CAAC,YAAY,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC;QAC1C,MAAM,CAAC,IAAI,CAAC,2CAA2C,CAAC,CAAC;IAC3D,CAAC;IACD,IAAI,GAAG,CAAC,wBAAwB,IAAI,CAAC,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC/D,MAAM,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;IACvD,CAAC;IAED,oEAAoE;IACpE,IAAI,GAAG,CAAC,8BAA8B,EAAE,CAAC;QACvC,MAAM,CAAC,GAAG,IAAI,CAAC,UAAU,IAAI,EAAE,CAAC;QAChC,MAAM,eAAe,GAAG,CAAC,CAAC,WAAW,IAAI,CAAC,CAAC,YAAY,CAAC;QACxD,MAAM,eAAe,GAAG,CAAC,CAAC,SAAS,IAAI,CAAC,CAAC,aAAa,CAAC;QAEvD,IAAI,IAAI,CAAC,WAAW,IAAI,eAAe,IAAI,CAAC,UAAU,CAAC,eAAe,CAAC,EAAE,CAAC;YACxE,MAAM,CAAC,IAAI,CACT,uBAAuB,eAAe,6DAA6D,CACpG,CAAC;QACJ,CAAC;QACD,IAAI,IAAI,CAAC,WAAW,IAAI,eAAe,IAAI,CAAC,UAAU,CAAC,eAAe,CAAC,EAAE,CAAC;YACxE,MAAM,CAAC,IAAI,CACT,uBAAuB,eAAe,6DAA6D,CACpG,CAAC;QACJ,CAAC;IACH,CAAC;SAAM,CAAC;QACN,4EAA4E;QAC5E,MAAM,CAAC,GAAG,IAAI,CAAC,UAAU,IAAI,EAAE,CAAC;QAChC,MAAM,UAAU,GAAa,EAAE,CAAC;QAChC,IAAI,CAAC,CAAC,WAAW,KAAK,gBAAgB;YAAE,UAAU,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QACvE,IAAI,CAAC,CAAC,SAAS,KAAK,gBAAgB;YAAE,UAAU,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QACnE,IAAI,CAAC,CAAC,aAAa,KAAK,gBAAgB;YAAE,UAAU,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QAC3E,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC1B,QAAQ,CAAC,IAAI,CACX,iCAAiC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,kCAAkC,CACzF,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO;QACL,MAAM,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC;QAC3B,MAAM;QACN,QAAQ;KACT,CAAC;AACJ,CAAC;AAED,SAAS,UAAU,CAAC,CAAa;IAC/B,OAAO,mBAAmB,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;AACzC,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,eAAe;IAC7B,OAAO,YAAY,CAAC;AACtB,CAAC"}

package/dist/quality/types.d.ts

@@ -0,0 +1,129 @@
+/**
+ * ATR Quality Standard — Type Definitions
+ *
+ * Vendor-neutral types for rule quality scoring and maturity validation.
+ * See docs/proposals/001-atr-quality-standard-rfc.md for the full RFC.
+ *
+ * @module agent-threat-rules/quality/types
+ */
+/** Rule maturity level — matches ATR schema and RFC-001 §1 */
+export type Maturity = "draft" | "experimental" | "stable" | "deprecated";
+/**
+ * Provenance of a metadata field.
+ * RFC-001 §4: two-dimensional compliance model.
+ *
+ * - `human-reviewed`: a human maintainer verified this mapping/content
+ * - `community-contributed`: submitted via PR by an external contributor
+ * - `auto-generated`: filled by a script or LLM without human review
+ * - `llm-generated`: produced by the TC crystallization flywheel
+ *
+ * The quality gate treats these differently:
+ *  - experimental gate accepts any provenance
+ *  - stable gate requires `human-reviewed` or `community-contributed`
+ */
+export type Provenance = "human-reviewed" | "community-contributed" | "auto-generated" | "llm-generated";
+/**
+ * Per-field provenance tracking.
+ * Each metadata field can have its own provenance so partially-reviewed
+ * rules are represented accurately.
+ */
+export interface MetadataProvenance {
+    readonly mitre_atlas?: Provenance;
+    readonly mitre_attack?: Provenance;
+    readonly owasp_llm?: Provenance;
+    readonly owasp_agentic?: Provenance;
+    readonly test_cases?: Provenance;
+    readonly evasion_tests?: Provenance;
+    readonly false_positives?: Provenance;
+}
+/**
+ * Minimal metadata required to score and validate a rule.
+ * Any vendor's rule format can be adapted to this interface via a parser.
+ */
+export interface RuleMetadata {
+    /** Unique rule identifier */
+    readonly id: string;
+    /** Human-readable title */
+    readonly title: string;
+    /** Current maturity level */
+    readonly maturity: Maturity;
+    /** Number of distinct detection conditions (layers) */
+    readonly conditions: number;
+    /** Count of true_positive test cases */
+    readonly truePositives: number;
+    /** Count of true_negative test cases */
+    readonly trueNegatives: number;
+    /** Count of documented evasion tests */
+    readonly evasionTests: number;
+    /** Has at least one OWASP reference (LLM Top 10 or Agentic Top 10) */
+    readonly hasOwaspRef: boolean;
+    /** Has at least one MITRE reference (ATLAS or ATT&CK) */
+    readonly hasMitreRef: boolean;
+    /** Has at least one documented false_positive pattern */
+    readonly hasFalsePositiveDocs: boolean;
+    /** Number of real-world samples validated against this rule */
+    readonly wildSamples?: number;
+    /** Measured false positive rate on wild samples (0.0 - 100.0) */
+    readonly wildFpRate?: number;
+    /** ISO date of last wild validation run */
+    readonly wildValidatedAt?: string;
+    /** True if the rule was generated by an LLM (not human-authored) */
+    readonly llmGenerated?: boolean;
+    /** True if a human reviewer has explicitly approved this rule */
+    readonly humanReviewed?: boolean;
+    /** Per-field provenance tracking (RFC-001 §4) */
+    readonly provenance?: MetadataProvenance;
+}
+/** Confidence score components and total */
+export interface ConfidenceScore {
+    /** Overall score 0-100, rounded to integer */
+    readonly total: number;
+    /** Precision component (weight 0.40) */
+    readonly precisionScore: number;
+    /** Wild validation component (weight 0.30) */
+    readonly wildValidationScore: number;
+    /** Coverage breadth component (weight 0.20) */
+    readonly coverageScore: number;
+    /** Evasion documentation component (weight 0.10) */
+    readonly evasionScore: number;
+    /** True if score was capped due to LLM-generated origin without human review */
+    readonly capped: boolean;
+}
+/** Result of running a rule through the quality gate */
+export interface QualityGateResult {
+    /** True if the rule meets all required criteria for its target maturity */
+    readonly passed: boolean;
+    /** Human-readable list of gate failures (empty if passed) */
+    readonly issues: readonly string[];
+    /** Warnings that do not block promotion but should be addressed */
+    readonly warnings: readonly string[];
+}
+/** Decision output from canPromote() */
+export interface PromotionDecision {
+    /** True if the rule is eligible to promote to `to` */
+    readonly eligible: boolean;
+    /** The maturity level this decision is for */
+    readonly to: Maturity;
+    /** Reasons the rule is not eligible (empty if eligible) */
+    readonly blockers: readonly string[];
+}
+/** A false positive report used in demotion decisions */
+export interface FpReport {
+    /** ISO timestamp of the report */
+    readonly reportedAt: string;
+    /** Whether this report has been investigated and resolved */
+    readonly resolved: boolean;
+}
+/** Decision output from shouldDemote() */
+export interface DemotionDecision {
+    /** True if the rule should be automatically demoted */
+    readonly shouldDemote: boolean;
+    /** Reasons for demotion (empty if shouldDemote is false) */
+    readonly reasons: readonly string[];
+}
+/**
+ * Deployment guidance based on confidence score.
+ * Maps confidence to a recommended production use.
+ */
+export type DeploymentRecommendation = "block-in-production" | "block-with-monitoring" | "alert-only" | "evaluation-only" | "do-not-deploy";
+//# sourceMappingURL=types.d.ts.map

package/dist/quality/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/quality/types.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,8DAA8D;AAC9D,MAAM,MAAM,QAAQ,GAAG,OAAO,GAAG,cAAc,GAAG,QAAQ,GAAG,YAAY,CAAC;AAE1E;;;;;;;;;;;;GAYG;AACH,MAAM,MAAM,UAAU,GAClB,gBAAgB,GAChB,uBAAuB,GACvB,gBAAgB,GAChB,eAAe,CAAC;AAEpB;;;;GAIG;AACH,MAAM,WAAW,kBAAkB;IACjC,QAAQ,CAAC,WAAW,CAAC,EAAE,UAAU,CAAC;IAClC,QAAQ,CAAC,YAAY,CAAC,EAAE,UAAU,CAAC;IACnC,QAAQ,CAAC,SAAS,CAAC,EAAE,UAAU,CAAC;IAChC,QAAQ,CAAC,aAAa,CAAC,EAAE,UAAU,CAAC;IACpC,QAAQ,CAAC,UAAU,CAAC,EAAE,UAAU,CAAC;IACjC,QAAQ,CAAC,aAAa,CAAC,EAAE,UAAU,CAAC;IACpC,QAAQ,CAAC,eAAe,CAAC,EAAE,UAAU,CAAC;CACvC;AAED;;;GAGG;AACH,MAAM,WAAW,YAAY;IAC3B,6BAA6B;IAC7B,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAC;IACpB,2BAA2B;IAC3B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,6BAA6B;IAC7B,QAAQ,CAAC,QAAQ,EAAE,QAAQ,CAAC;IAC5B,uDAAuD;IACvD,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;IAC5B,wCAAwC;IACxC,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAC;IAC/B,wCAAwC;IACxC,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAC;IAC/B,wCAAwC;IACxC,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAC;IAC9B,sEAAsE;IACtE,QAAQ,CAAC,WAAW,EAAE,OAAO,CAAC;IAC9B,yDAAyD;IACzD,QAAQ,CAAC,WAAW,EAAE,OAAO,CAAC;IAC9B,yDAAyD;IACzD,QAAQ,CAAC,oBAAoB,EAAE,OAAO,CAAC;IACvC,+DAA+D;IAC/D,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,CAAC;IAC9B,iEAAiE;IACjE,QAAQ,CAAC,UAAU,CAAC,EAAE,MAAM,CAAC;IAC7B,2CAA2C;IAC3C,QAAQ,CAAC,eAAe,CAAC,EAAE,MAAM,CAAC;IAClC,oEAAoE;IACpE,QAAQ,CAAC,YAAY,CAAC,EAAE,OAAO,CAAC;IAChC,iEAAiE;IACjE,QAAQ,CAAC,aAAa,CAAC,EAAE,OAAO,CAAC;IACjC,iDAAiD;IACjD,QAAQ,CAAC,UAAU,CAAC,EAAE,kBAAkB,CAAC;CAC1C;AAED,4CAA4C;AAC5C,MAAM,WAAW,eAAe;IAC9B,8CAA8C;IAC9C,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,wCAAwC;IACxC,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAC;IAChC,8CAA8C;IAC9C,QAAQ,CAAC,mBAAmB,EAAE,MAAM,CAAC;IACrC,+CAA+C;IAC/C,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAC;IAC/B,oDAAoD;IACpD,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAC;IAC9B,gFAAgF;IAChF,QAAQ,CAAC,MAAM,EAAE,OAAO,CAAC;CAC1B;AAED,wDAAwD;AACxD,MAAM,WAAW,iBAAiB;IAChC,2EAA2E;IAC3E,QAAQ,CAAC,MAAM,EAAE,OAAO,CAAC;IACzB,6DAA6D;IAC7D,QAAQ,CAAC,MAAM,EAAE,SAAS,MAAM,EAAE,CAAC;IACnC,mEAAmE;IACnE,QAAQ,CAAC,QAAQ,EAAE,SAAS,MAAM,EAAE,CAAC;CACtC;AAED,wCAAwC;AACxC,MAAM,WAAW,iBAAiB;IAChC,sDAAsD;IACtD,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC;IAC3B,8CAA8C;IAC9C,QAAQ,CAAC,EAAE,EAAE,QAAQ,CAAC;IACtB,2DAA2D;IAC3D,QAAQ,CAAC,QAAQ,EAAE,SAAS,MAAM,EAAE,CAAC;CACtC;AAED,yDAAyD;AACzD,MAAM,WAAW,QAAQ;IACvB,kCAAkC;IAClC,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;IAC5B,6DAA6D;IAC7D,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC;CAC5B;AAED,0CAA0C;AAC1C,MAAM,WAAW,gBAAgB;IAC/B,uDAAuD;IACvD,QAAQ,CAAC,YAAY,EAAE,OAAO,CAAC;IAC/B,4DAA4D;IAC5D,QAAQ,CAAC,OAAO,EAAE,SAAS,MAAM,EAAE,CAAC;CACrC;AAED;;;GAGG;AACH,MAAM,MAAM,wBAAwB,GAChC,qBAAqB,GACrB,uBAAuB,GACvB,YAAY,GACZ,iBAAiB,GACjB,eAAe,CAAC"}

package/dist/quality/types.js

@@ -0,0 +1,10 @@
+/**
+ * ATR Quality Standard — Type Definitions
+ *
+ * Vendor-neutral types for rule quality scoring and maturity validation.
+ * See docs/proposals/001-atr-quality-standard-rfc.md for the full RFC.
+ *
+ * @module agent-threat-rules/quality/types
+ */
+export {};
+//# sourceMappingURL=types.js.map

package/dist/quality/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/quality/types.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG"}

package/dist/quality/validate-maturity.d.ts

@@ -0,0 +1,51 @@
+/**
+ * ATR Quality Standard — Maturity Promotion and Demotion
+ *
+ * Pure functions that decide whether a rule is eligible to promote to a
+ * higher maturity level, or should be automatically demoted due to
+ * quality regression.
+ *
+ * See docs/proposals/001-atr-quality-standard-rfc.md §1 for the gate
+ * definitions.
+ *
+ * @module agent-threat-rules/quality/validate-maturity
+ */
+import type { DemotionDecision, FpReport, Maturity, PromotionDecision, RuleMetadata } from "./types.js";
+/**
+ * Determine whether a rule is eligible to promote from its current maturity
+ * to the next level.
+ *
+ * @param rule - Rule metadata
+ * @param target - Target maturity level
+ * @param now - Current timestamp (ISO string) for age calculations
+ * @returns Promotion decision with blockers listed
+ */
+export declare function canPromote(rule: RuleMetadata, target: Maturity, now?: string): PromotionDecision;
+/**
+ * Determine whether a stable rule should be automatically demoted to
+ * experimental due to quality regression.
+ *
+ * Triggers:
+ *  - Wild FP rate exceeds DEMOTION_FP_RATE_THRESHOLD
+ *  - DEMOTION_FP_REPORT_COUNT+ unresolved FP reports in the window
+ *
+ * @param rule - Rule metadata
+ * @param recentFpReports - FP reports from the demotion window
+ * @param now - Current timestamp (ISO string)
+ * @returns Demotion decision
+ */
+export declare function shouldDemote(rule: RuleMetadata, recentFpReports: readonly FpReport[], now?: string): DemotionDecision;
+/**
+ * Public accessor for the promotion/demotion thresholds.
+ * Useful for documentation and UI that displays the gate policy.
+ */
+export declare function getMaturityThresholds(): {
+    minExperimentalDays: number;
+    minWildSamplesForStable: number;
+    maxWildFpForStable: number;
+    minConfidenceForStable: number;
+    demotionFpRateThreshold: number;
+    demotionFpReportCount: number;
+    demotionWindowDays: number;
+};
+//# sourceMappingURL=validate-maturity.d.ts.map

package/dist/quality/validate-maturity.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validate-maturity.d.ts","sourceRoot":"","sources":["../../src/quality/validate-maturity.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAIH,OAAO,KAAK,EACV,gBAAgB,EAChB,QAAQ,EACR,QAAQ,EACR,iBAAiB,EACjB,YAAY,EACb,MAAM,YAAY,CAAC;AAiBpB;;;;;;;;GAQG;AACH,wBAAgB,UAAU,CACxB,IAAI,EAAE,YAAY,EAClB,MAAM,EAAE,QAAQ,EAChB,GAAG,GAAE,MAAiC,GACrC,iBAAiB,CA4DnB;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,YAAY,CAC1B,IAAI,EAAE,YAAY,EAClB,eAAe,EAAE,SAAS,QAAQ,EAAE,EACpC,GAAG,GAAE,MAAiC,GACrC,gBAAgB,CAmClB;AAED;;;GAGG;AACH,wBAAgB,qBAAqB,IAAI;IACvC,mBAAmB,EAAE,MAAM,CAAC;IAC5B,uBAAuB,EAAE,MAAM,CAAC;IAChC,kBAAkB,EAAE,MAAM,CAAC;IAC3B,sBAAsB,EAAE,MAAM,CAAC;IAC/B,uBAAuB,EAAE,MAAM,CAAC;IAChC,qBAAqB,EAAE,MAAM,CAAC;IAC9B,kBAAkB,EAAE,MAAM,CAAC;CAC5B,CAUA"}