npm - @robinmordasiewicz/f5xc-xcsh - Versions diffs - 1.0.91-2601022325 → 1.0.91-2601030100 - Mend

@robinmordasiewicz/f5xc-xcsh 1.0.91-2601022325 → 1.0.91-2601030100

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.js CHANGED Viewed

@@ -44105,1970 +44105,2355 @@ var {
 // src/types/domains_generated.ts
 var generatedDomains = /* @__PURE__ */ new Map([
-  ["admin_console_and_ui", {
-    name: "admin_console_and_ui",
-    displayName: "Admin Console And Ui",
-    description: "Dashboard customization through namespace-bounded asset libraries. Storage systems for branding resources, layout templates, and interactive widgets. Catalog organization with system object references tracking modification history and deployment status. Schema enforcement ensuring configuration validity across tenant hierarchies and environment boundaries.",
-    descriptionShort: "Static UI components and console assets.",
-    descriptionMedium: "Namespace-scoped visual elements with versioning. Custom widget deployment and catalog management for portal surfaces.",
-    aliases: ["console-ui", "ui-assets", "static-components"],
-    complexity: "simple",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Platform",
-    useCases: ["Manage static UI components for admin console", "Deploy and retrieve UI assets within namespaces", "Configure console interface elements", "Manage custom UI component metadata"],
-    relatedDomains: ["admin", "system"],
-    icon: "\u{1F5A5}\uFE0F",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%238B5CF6'%3E%3Cpath d='M21 2H3c-1.1 0-2 .9-2 2v12c0 1.1.9 2 2 2h7v2H8v2h8v-2h-2v-2h7c1.1 0 2-.9 2-2V4c0-1.1-.9-2-2-2zm0 14H3V4h18v12z'/%3E%3C/svg%3E",
-    uiCategory: "Configuration",
-    primaryResources: [
-      {
-        name: "ui_component",
-        description: "UI component for console customization",
-        descriptionShort: "UI component",
-        tier: "Standard",
-        icon: "\u{1F3A8}",
-        category: "Other",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "static_asset",
-        description: "Static asset for UI resources",
-        descriptionShort: "Static asset",
-        tier: "Standard",
-        icon: "\u{1F4C1}",
-        category: "Other",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["ai_services", {
-    name: "ai_services",
-    displayName: "Ai Services",
-    description: "Query handling through inference routing with production and test modes. Positive and negative quality markers with detailed categorization capture assistant performance. Streaming connections support authenticated access, subscription lifecycles, and feature flags. IP provisioning services allocate infrastructure resources for model workloads across distributed systems.",
-    descriptionShort: "AI assistant queries and feedback collection.",
-    descriptionMedium: "Natural language processing with quality signals and anomaly monitoring. Token authentication for data stream subscriptions.",
-    aliases: ["ai", "genai", "assistant"],
-    complexity: "simple",
-    isPreview: true,
-    requiresTier: "Advanced",
-    category: "AI",
-    useCases: ["Access AI-powered features", "Configure AI assistant policies", "Enable flow anomaly detection", "Manage AI data collection"],
-    relatedDomains: [],
-    icon: "\u{1F916}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%236366F1'%3E%3Cpath d='M21 10.12h-6.78l2.74-2.82c-2.73-2.7-7.15-2.8-9.88-.1-2.73 2.71-2.73 7.08 0 9.79s7.15 2.71 9.88 0C18.32 15.65 19 14.08 19 12.1h2c0 1.98-.88 4.55-2.64 6.29-3.51 3.48-9.21 3.48-12.72 0-3.5-3.47-3.53-9.11-.02-12.58s9.14-3.47 12.65 0L21 3v7.12zM12.5 8v4.25l3.5 2.08-.72 1.21L11 13V8h1.5z'/%3E%3C/svg%3E",
-    uiCategory: "AI & Automation",
-    primaryResources: [
-      {
-        name: "ai_policy",
-        description: "AI policy for generative AI traffic control",
-        descriptionShort: "AI policy",
-        tier: "Advanced",
-        icon: "\u{1F916}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true
-      },
-      {
-        name: "ai_gateway",
-        description: "AI gateway for LLM API management",
-        descriptionShort: "AI gateway",
-        tier: "Advanced",
-        icon: "\u{1F680}",
-        category: "API Management",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { optional: ["ai_policy"] },
-        relationshipHints: ["ai_policy: Policy for AI traffic control"]
-      }
-    ]
-  }],
-  ["api", {
-    name: "api",
-    displayName: "Api",
-    description: "Structured classification systems with versioning support for contract evolution. Hierarchical groupings segment resources by operational role or security boundaries. Behavioral verification confirms authentication flows and permission constraints. Token and key safeguards protect sensitive credentials. Traffic inspection through connected load balancers and firewalls enables threat detection at network perimeters.",
-    descriptionShort: "Interface definitions, schema validation, and grouping.",
-    descriptionMedium: "Resource cataloging with automatic classification and security profiling. Organizational hierarchies segment access by function or protection policy.",
-    aliases: ["apisec", "api-discovery"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Security",
-    useCases: ["Discover and catalog APIs", "Test API security and behavior", "Manage API credentials", "Define API groups and testing policies"],
-    relatedDomains: ["waf", "network_security"],
-    cliMetadata: {
-      "quick_start": {
-        "command": "curl $F5XC_API_URL/api/config/namespaces/default/api_catalogs -H 'Authorization: APIToken $F5XC_API_TOKEN'",
-        "description": "List all API catalogs in default namespace",
-        "expected_output": "JSON array of API catalog objects"
+  [
+    "admin_console_and_ui",
+    {
+      name: "admin_console_and_ui",
+      displayName: "Admin Console And Ui",
+      description: "Dashboard customization through namespace-bounded asset libraries. Storage systems for branding resources, layout templates, and interactive widgets. Catalog organization with system object references tracking modification history and deployment status. Schema enforcement ensuring configuration validity across tenant hierarchies and environment boundaries.",
+      descriptionShort: "Static UI components and console assets.",
+      descriptionMedium: "Namespace-scoped visual elements with versioning. Custom widget deployment and catalog management for portal surfaces.",
+      aliases: ["console-ui", "ui-assets", "static-components"],
+      complexity: "simple",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Platform",
+      useCases: [
+        "Manage static UI components for admin console",
+        "Deploy and retrieve UI assets within namespaces",
+        "Configure console interface elements",
+        "Manage custom UI component metadata"
+      ],
+      relatedDomains: ["admin", "system"],
+      icon: "\u{1F5A5}\uFE0F",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%238B5CF6'%3E%3Cpath d='M21 2H3c-1.1 0-2 .9-2 2v12c0 1.1.9 2 2 2h7v2H8v2h8v-2h-2v-2h7c1.1 0 2-.9 2-2V4c0-1.1-.9-2-2-2zm0 14H3V4h18v12z'/%3E%3C/svg%3E",
+      uiCategory: "Configuration",
+      primaryResources: [
+        {
+          name: "ui_component",
+          description: "UI component for console customization",
+          descriptionShort: "UI component",
+          tier: "Standard",
+          icon: "\u{1F3A8}",
+          category: "Other",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "static_asset",
+          description: "Static asset for UI resources",
+          descriptionShort: "Static asset",
+          tier: "Standard",
+          icon: "\u{1F4C1}",
+          category: "Other",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "ai_services",
+    {
+      name: "ai_services",
+      displayName: "Ai Services",
+      description: "Query handling through inference routing with production and test modes. Positive and negative quality markers with detailed categorization capture assistant performance. Streaming connections support authenticated access, subscription lifecycles, and feature flags. IP provisioning services allocate infrastructure resources for model workloads across distributed systems.",
+      descriptionShort: "AI assistant queries and feedback collection.",
+      descriptionMedium: "Natural language processing with quality signals and anomaly monitoring. Token authentication for data stream subscriptions.",
+      aliases: ["ai", "genai", "assistant"],
+      complexity: "simple",
+      isPreview: true,
+      requiresTier: "Advanced",
+      category: "AI",
+      useCases: [
+        "Access AI-powered features",
+        "Configure AI assistant policies",
+        "Enable flow anomaly detection",
+        "Manage AI data collection"
+      ],
+      relatedDomains: [],
+      icon: "\u{1F916}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%236366F1'%3E%3Cpath d='M21 10.12h-6.78l2.74-2.82c-2.73-2.7-7.15-2.8-9.88-.1-2.73 2.71-2.73 7.08 0 9.79s7.15 2.71 9.88 0C18.32 15.65 19 14.08 19 12.1h2c0 1.98-.88 4.55-2.64 6.29-3.51 3.48-9.21 3.48-12.72 0-3.5-3.47-3.53-9.11-.02-12.58s9.14-3.47 12.65 0L21 3v7.12zM12.5 8v4.25l3.5 2.08-.72 1.21L11 13V8h1.5z'/%3E%3C/svg%3E",
+      uiCategory: "AI & Automation",
+      primaryResources: [
+        {
+          name: "ai_policy",
+          description: "AI policy for generative AI traffic control",
+          descriptionShort: "AI policy",
+          tier: "Advanced",
+          icon: "\u{1F916}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true
+        },
+        {
+          name: "ai_gateway",
+          description: "AI gateway for LLM API management",
+          descriptionShort: "AI gateway",
+          tier: "Advanced",
+          icon: "\u{1F680}",
+          category: "API Management",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { optional: ["ai_policy"] },
+          relationshipHints: [
+            "ai_policy: Policy for AI traffic control"
+          ]
+        }
+      ]
+    }
+  ],
+  [
+    "api",
+    {
+      name: "api",
+      displayName: "Api",
+      description: "Structured classification systems with versioning support for contract evolution. Hierarchical groupings segment resources by operational role or security boundaries. Behavioral verification confirms authentication flows and permission constraints. Token and key safeguards protect sensitive credentials. Traffic inspection through connected load balancers and firewalls enables threat detection at network perimeters.",
+      descriptionShort: "Interface definitions, schema validation, and grouping.",
+      descriptionMedium: "Resource cataloging with automatic classification and security profiling. Organizational hierarchies segment access by function or protection policy.",
+      aliases: ["apisec", "api-discovery"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Security",
+      useCases: [
+        "Discover and catalog APIs",
+        "Test API security and behavior",
+        "Manage API credentials",
+        "Define API groups and testing policies"
+      ],
+      relatedDomains: ["waf", "network_security"],
+      cliMetadata: {
+        quick_start: {
+          command: "curl $F5XC_API_URL/api/config/namespaces/default/api_catalogs -H 'Authorization: APIToken $F5XC_API_TOKEN'",
+          description: "List all API catalogs in default namespace",
+          expected_output: "JSON array of API catalog objects"
+        },
+        common_workflows: [
+          {
+            name: "Protect API with Security Policy",
+            description: "Discover and protect APIs with WAF security policies",
+            steps: [
+              {
+                step: 1,
+                command: "curl -X POST $F5XC_API_URL/api/config/namespaces/default/api_catalogs -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...catalog_config...}'",
+                description: "Create API catalog for API discovery and documentation"
+              },
+              {
+                step: 2,
+                command: "curl -X POST $F5XC_API_URL/api/config/namespaces/default/api_definitions -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...api_config...}'",
+                description: "Create API definition with security enforcement"
+              }
+            ],
+            prerequisites: [
+              "API endpoints documented",
+              "Security policies defined",
+              "WAF rules configured"
+            ],
+            expected_outcome: "APIs protected, violations logged and blocked"
+          }
+        ],
+        troubleshooting: [
+          {
+            problem: "API traffic blocked by security policy",
+            symptoms: [
+              "HTTP 403 Forbidden",
+              "Requests rejected at edge"
+            ],
+            diagnosis_commands: [
+              "curl $F5XC_API_URL/api/config/namespaces/default/api_definitions/{api} -H 'Authorization: APIToken $F5XC_API_TOKEN'",
+              "Check security policy enforcement rules"
+            ],
+            solutions: [
+              "Review API definition and security policy rules",
+              "Adjust rule sensitivity to reduce false positives",
+              "Add exception rules for legitimate traffic patterns"
+            ]
+          }
+        ],
+        icon: "\u{1F510}"
       },
-      "common_workflows": [
+      icon: "\u{1F510}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23EF4444'%3E%3Cpath d='M12 1L3 5v6c0 5.55 3.84 10.74 9 12 5.16-1.26 9-6.45 9-12V5l-9-4zm0 10.99h7c-.53 4.12-3.28 7.79-7 8.94V12H5V6.3l7-3.11v8.8z'/%3E%3C/svg%3E",
+      uiCategory: "API Protection",
+      primaryResources: [
+        {
+          name: "api_definition",
+          description: "API schema definition for discovery and protection",
+          descriptionShort: "API definition",
+          tier: "Advanced",
+          icon: "\u{1F4C4}",
+          category: "API Management",
+          supportsLogs: false,
+          supportsMetrics: false,
+          dependencies: { optional: ["api_endpoint"] },
+          relationshipHints: [
+            "api_endpoint: Endpoints defined by this API"
+          ]
+        },
         {
-          "name": "Protect API with Security Policy",
-          "description": "Discover and protect APIs with WAF security policies",
-          "steps": [
-            {
-              "step": 1,
-              "command": "curl -X POST $F5XC_API_URL/api/config/namespaces/default/api_catalogs -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...catalog_config...}'",
-              "description": "Create API catalog for API discovery and documentation"
-            },
-            {
-              "step": 2,
-              "command": "curl -X POST $F5XC_API_URL/api/config/namespaces/default/api_definitions -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...api_config...}'",
-              "description": "Create API definition with security enforcement"
-            }
-          ],
-          "prerequisites": [
-            "API endpoints documented",
-            "Security policies defined",
-            "WAF rules configured"
-          ],
-          "expected_outcome": "APIs protected, violations logged and blocked"
+          name: "api_endpoint",
+          description: "Individual API endpoint configuration and protection",
+          descriptionShort: "API endpoint",
+          tier: "Advanced",
+          icon: "\u{1F50C}",
+          category: "API Management",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { optional: ["api_rate_limit"] },
+          relationshipHints: [
+            "api_rate_limit: Rate limiting for this endpoint"
+          ]
+        },
+        {
+          name: "api_rate_limit",
+          description: "API rate limiting configuration for traffic control",
+          descriptionShort: "API rate limit",
+          tier: "Advanced",
+          icon: "\u23F1\uFE0F",
+          category: "API Management",
+          supportsLogs: true,
+          supportsMetrics: true
+        }
+      ]
+    }
+  ],
+  [
+    "authentication",
+    {
+      name: "authentication",
+      displayName: "Authentication",
+      description: "F5 Distributed Cloud Authentication API specifications",
+      descriptionShort: "Authentication API",
+      descriptionMedium: "F5 Distributed Cloud Authentication API specifications",
+      aliases: ["authn", "oidc", "sso"],
+      complexity: "simple",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Platform",
+      useCases: [
+        "Configure authentication mechanisms",
+        "Manage OIDC and OAuth providers",
+        "Configure SCIM user provisioning",
+        "Manage API credentials and access",
+        "Configure account signup policies"
+      ],
+      relatedDomains: ["system", "users"],
+      icon: "\u{1F511}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23FBBF24'%3E%3Cpath d='M12.65 10C11.83 7.67 9.61 6 7 6c-3.31 0-6 2.69-6 6s2.69 6 6 6c2.61 0 4.83-1.67 5.65-4H17v4h4v-4h2v-4H12.65zM7 14c-1.1 0-2-.9-2-2s.9-2 2-2 2 .9 2 2-.9 2-2 2z'/%3E%3C/svg%3E",
+      uiCategory: "Identity & Access",
+      primaryResources: [
+        {
+          name: "authentication_policy",
+          description: "Authentication policy for user and API access",
+          descriptionShort: "Auth policy",
+          tier: "Standard",
+          icon: "\u{1F510}",
+          category: "Identity",
+          supportsLogs: true,
+          supportsMetrics: false
+        },
+        {
+          name: "token",
+          description: "API token for programmatic access",
+          descriptionShort: "Token",
+          tier: "Standard",
+          icon: "\u{1F3AB}",
+          category: "Identity",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "api_credential",
+          description: "API credential for service authentication",
+          descriptionShort: "API credential",
+          tier: "Standard",
+          icon: "\u{1F511}",
+          category: "Identity",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "bigip",
+    {
+      name: "bigip",
+      displayName: "Bigip",
+      description: "On-premises appliance connector enabling iRule lifecycle operations and data group replication. APM policy coordination, virtual server configuration binding, and CNE linkage. Telemetry aggregation and health status monitoring across hybrid infrastructure deployments.",
+      descriptionShort: "iRules, data groups, and APM integration.",
+      descriptionMedium: "Legacy device orchestration with iRule scripts and data group synchronization. Virtual server bindings and metrics collection.",
+      aliases: ["f5-bigip", "irule", "ltm"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Platform",
+      useCases: [
+        "Manage BigIP F5 appliances",
+        "Configure iRule scripts",
+        "Manage data groups",
+        "Integrate BigIP CNE"
+      ],
+      relatedDomains: ["marketplace"],
+      icon: "\u{1F3E2}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23EF4444'%3E%3Cpath d='M12 7V3H2v18h20V7H12zM6 19H4v-2h2v2zm0-4H4v-2h2v2zm0-4H4V9h2v2zm0-4H4V5h2v2zm4 12H8v-2h2v2zm0-4H8v-2h2v2zm0-4H8V9h2v2zm0-4H8V5h2v2zm10 12h-8v-2h2v-2h-2v-2h2v-2h-2V9h8v10zm-2-8h-2v2h2v-2zm0 4h-2v2h2v-2z'/%3E%3C/svg%3E",
+      uiCategory: "BIG-IP Connector",
+      primaryResources: [
+        {
+          name: "bigip_pool",
+          description: "BIG-IP pool for load balancing integration",
+          descriptionShort: "BIG-IP pool",
+          tier: "Advanced",
+          icon: "\u{1F3AF}",
+          category: "Load Balancing",
+          supportsLogs: false,
+          supportsMetrics: true
+        },
+        {
+          name: "bigip_device",
+          description: "BIG-IP device registration and management",
+          descriptionShort: "BIG-IP device",
+          tier: "Advanced",
+          icon: "\u{1F5A5}\uFE0F",
+          category: "Infrastructure",
+          supportsLogs: true,
+          supportsMetrics: true
+        }
+      ]
+    }
+  ],
+  [
+    "billing_and_usage",
+    {
+      name: "billing_and_usage",
+      displayName: "Billing And Usage",
+      description: "Subscription lifecycle with plan transitions and billing states. Payment method hierarchies supporting primary and secondary configurations. Invoice generation with PDF downloads and custom listing. Resource quotas per namespace with limit definitions and consumption metrics. Contact types for billing notifications and tenant deletion workflows.",
+      descriptionShort: "Subscription plans, payment methods, and quotas.",
+      descriptionMedium: "Plan transitions, invoicing, and resource consumption. Namespace-level quota limits and usage tracking.",
+      aliases: ["billing-usage", "quotas", "usage-tracking"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Platform",
+      useCases: [
+        "Manage subscription plans and billing transitions",
+        "Configure payment methods and invoices",
+        "Track resource quota usage across namespaces",
+        "Monitor usage limits and capacity"
+      ],
+      relatedDomains: ["system", "users"],
+      icon: "\u{1F4B3}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2310B981'%3E%3Cpath d='M20 4H4c-1.11 0-1.99.89-1.99 2L2 18c0 1.11.89 2 2 2h16c1.11 0 2-.89 2-2V6c0-1.11-.89-2-2-2zm0 14H4v-6h16v6zm0-10H4V6h16v2z'/%3E%3C/svg%3E",
+      uiCategory: "Configuration",
+      primaryResources: [
+        {
+          name: "subscription",
+          description: "Subscription for service entitlements",
+          descriptionShort: "Subscription",
+          tier: "Standard",
+          icon: "\u{1F4B3}",
+          category: "Other",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "quota",
+          description: "Resource quota for usage limits",
+          descriptionShort: "Quota",
+          tier: "Standard",
+          icon: "\u{1F4CA}",
+          category: "Other",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "usage_report",
+          description: "Usage report for consumption tracking",
+          descriptionShort: "Usage report",
+          tier: "Standard",
+          icon: "\u{1F4C8}",
+          category: "Other",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "blindfold",
+    {
+      name: "blindfold",
+      displayName: "Blindfold",
+      description: "Public key retrieval and secret policy enforcement for encrypted data handling. Policy rules govern access with configurable matching and transformation actions. VoltShare integration provides decryption services, access counting, and audit log aggregation. Namespace-scoped policies enable fine-grained control over sensitive information with administrative overrides.",
+      descriptionShort: "Secret encryption, key policies, and audit trails.",
+      descriptionMedium: "Encryption key management with policy-based access controls. Audit logging and secure data protection.",
+      aliases: ["bf", "encrypt", "secrets"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Security",
+      useCases: [
+        "Configure secret policies for encryption",
+        "Manage sensitive data encryption",
+        "Enforce data protection policies"
+      ],
+      relatedDomains: ["client_side_defense", "certificates"],
+      icon: "\u{1F50F}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%236366F1'%3E%3Cpath d='M18 8h-1V6c0-2.76-2.24-5-5-5S7 3.24 7 6h2c0-1.66 1.34-3 3-3s3 1.34 3 3v2H6c-1.1 0-2 .9-2 2v10c0 1.1.9 2 2 2h12c1.1 0 2-.9 2-2V10c0-1.1-.9-2-2-2zm0 12H6V10h12v10zm-6-3c1.1 0 2-.9 2-2s-.9-2-2-2-2 .9-2 2 .9 2 2 2z'/%3E%3C/svg%3E",
+      uiCategory: "Security",
+      primaryResources: [
+        {
+          name: "blindfold_secret",
+          description: "Encrypted secret using Blindfold encryption",
+          descriptionShort: "Blindfold secret",
+          tier: "Standard",
+          icon: "\u{1F510}",
+          category: "Security",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "secret_policy",
+          description: "Secret management policy configuration",
+          descriptionShort: "Secret policy",
+          tier: "Standard",
+          icon: "\u{1F4CB}",
+          category: "Security",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "policy_document",
+          description: "Policy document for access control definitions",
+          descriptionShort: "Policy document",
+          tier: "Standard",
+          icon: "\u{1F4C4}",
+          category: "Security",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "bot_and_threat_defense",
+    {
+      name: "bot_and_threat_defense",
+      displayName: "Bot And Threat Defense",
+      description: "Behavioral fingerprinting identifies automated clients through request patterns, mouse movements, and JavaScript execution. Threat categories classify attacks by type including credential stuffing, scraping, and denial-of-service. Defense instances apply per-namespace policies with configurable sensitivity thresholds and challenge actions. Provisioning handles integration credentials for third-party threat intelligence feeds.",
+      descriptionShort: "Bot detection, threat categories, and defense instances.",
+      descriptionMedium: "Threat classification with behavioral analysis and signature matching. Automated blocking for malicious traffic patterns.",
+      aliases: ["threat-defense", "tpm", "shape-bot"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Security",
+      useCases: [
+        "Configure bot defense instances per namespace",
+        "Manage TPM threat categories for classification",
+        "Provision API keys for automated defense systems",
+        "Integrate threat intelligence services"
+      ],
+      relatedDomains: ["bot_defense", "shape", "waf"],
+      icon: "\u{1F9A0}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23EF4444'%3E%3Cpath d='M19.5 5.5 18 4l-1.5 1.5L18 7l1.5-1.5zM12 2v3m0 14v3m10-10h-3M5 12H2m15.5 6.5L18 20l1.5-1.5L18 17l-1.5 1.5zm-11 0L6 20l-1.5-1.5L6 17l-1.5 1.5zm0-11L6 4l-1.5 1.5L6 7 4.5 5.5zM12 7c-2.76 0-5 2.24-5 5s2.24 5 5 5 5-2.24 5-5-2.24-5-5-5zm0 8c-1.66 0-3-1.34-3-3s1.34-3 3-3 3 1.34 3 3-1.34 3-3 3z'/%3E%3C/svg%3E",
+      uiCategory: "Bot Defense",
+      primaryResources: [
+        {
+          name: "bot_defense_instance",
+          description: "Bot defense instance for deployment",
+          descriptionShort: "Bot defense instance",
+          tier: "Advanced",
+          icon: "\u{1F916}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true
+        },
+        {
+          name: "threat_category",
+          description: "Threat category for classification",
+          descriptionShort: "Threat category",
+          tier: "Advanced",
+          icon: "\u{1F3AF}",
+          category: "Security",
+          supportsLogs: false,
+          supportsMetrics: false
         }
+      ]
+    }
+  ],
+  [
+    "cdn",
+    {
+      name: "cdn",
+      displayName: "Cdn",
+      description: "Content distribution through global edge networks with rule-based eligibility. Path matchers, cookie patterns, and query parameter filters control caching behavior. Expression-based rules enable fine-grained targeting by request attributes. Load balancer integration provides throughput aggregation, request log queries, and on-demand cache clearing across worldwide distribution points.",
+      descriptionShort: "Edge caching, content delivery, and distribution rules.",
+      descriptionMedium: "Path-based policies with TTL controls and header conditions. Purge operations, access logs, and cache eligibility for multi-region deployments.",
+      aliases: ["cache", "content"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Networking",
+      useCases: [
+        "Configure CDN load balancing",
+        "Manage content delivery network services",
+        "Configure caching policies",
+        "Manage data delivery and distribution"
       ],
-      "troubleshooting": [
+      relatedDomains: ["virtual"],
+      icon: "\u{1F680}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F97316'%3E%3Cpath d='M12 2.5s4.5 2.04 4.5 10c0 3.22-1.67 5.6-3.25 7.08L12 22l-1.25-2.42C9.17 18.1 7.5 15.72 7.5 12.5c0-7.96 4.5-10 4.5-10zm0 8c1.1 0 2-.9 2-2s-.9-2-2-2-2 .9-2 2 .9 2 2 2zM5 14.5c0 1.22.57 2.36 1.44 3.22l1.76-1.76c-.43-.43-.7-1.01-.7-1.66 0-.25.04-.49.1-.72L5.21 12.1c-.13.77-.21 1.58-.21 2.4zm14 0c0-.82-.08-1.63-.21-2.4l-2.39 1.48c.06.23.1.47.1.72 0 .65-.27 1.23-.7 1.66l1.76 1.76c.87-.86 1.44-2 1.44-3.22z'/%3E%3C/svg%3E",
+      uiCategory: "Load Balancing",
+      primaryResources: [
+        {
+          name: "cdn_loadbalancer",
+          description: "Content delivery network load balancer for edge caching",
+          descriptionShort: "CDN load balancer",
+          tier: "Standard",
+          icon: "\u{1F30D}",
+          category: "Load Balancing",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { required: ["cdn_origin_pool"] },
+          relationshipHints: [
+            "cdn_origin_pool: Origin servers for CDN content"
+          ]
+        },
         {
-          "problem": "API traffic blocked by security policy",
-          "symptoms": [
-            "HTTP 403 Forbidden",
-            "Requests rejected at edge"
-          ],
-          "diagnosis_commands": [
-            "curl $F5XC_API_URL/api/config/namespaces/default/api_definitions/{api} -H 'Authorization: APIToken $F5XC_API_TOKEN'",
-            "Check security policy enforcement rules"
-          ],
-          "solutions": [
-            "Review API definition and security policy rules",
-            "Adjust rule sensitivity to reduce false positives",
-            "Add exception rules for legitimate traffic patterns"
+          name: "cdn_origin_pool",
+          description: "Origin server pool for CDN content sourcing",
+          descriptionShort: "CDN origin pool",
+          tier: "Standard",
+          icon: "\u{1F3AF}",
+          category: "Load Balancing",
+          supportsLogs: false,
+          supportsMetrics: true
+        }
+      ]
+    }
+  ],
+  [
+    "ce_management",
+    {
+      name: "ce_management",
+      displayName: "Ce Management",
+      description: "Customer edge node lifecycle through secure enrollment tokens and downloadable deployment images. Network connectivity options span exclusive, common, and administrative pathways with DHCP address pools supporting both IPv4 and IPv6. Bulk grouping consolidates configuration across distributed locations. Compatibility verification runs before software updates, with rollout tracking for version progression across the infrastructure.",
+      descriptionShort: "Network interfaces, fleets, and site registration.",
+      descriptionMedium: "Token-based provisioning with image downloads and pre-upgrade validation. Fleet grouping enables bulk operations across distributed locations.",
+      aliases: ["ce-mgmt", "edge-management", "ce-lifecycle"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Infrastructure",
+      useCases: [
+        "Manage Customer Edge site lifecycle",
+        "Configure network interfaces and fleet settings",
+        "Handle site registration and token workflows",
+        "Execute site upgrades with pre-upgrade checks"
+      ],
+      relatedDomains: ["customer_edge", "sites"],
+      icon: "\u{1F527}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F59E0B'%3E%3Cpath d='M22.7 19l-9.1-9.1c.9-2.3.4-5-1.5-6.9-2-2-5-2.4-7.4-1.3L9 6 6 9 1.6 4.7C.4 7.1.9 10.1 2.9 12.1c1.9 1.9 4.6 2.4 6.9 1.5l9.1 9.1c.4.4 1 .4 1.4 0l2.3-2.3c.5-.4.5-1.1.1-1.4z'/%3E%3C/svg%3E",
+      uiCategory: "Sites",
+      primaryResources: [
+        {
+          name: "site_config",
+          description: "Site configuration for edge node settings",
+          descriptionShort: "Site config",
+          tier: "Standard",
+          icon: "\u2699\uFE0F",
+          category: "Infrastructure",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "fleet_config",
+          description: "Fleet configuration for multi-site management",
+          descriptionShort: "Fleet config",
+          tier: "Standard",
+          icon: "\u{1F680}",
+          category: "Infrastructure",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "registration_token",
+          description: "Registration token for site onboarding",
+          descriptionShort: "Registration token",
+          tier: "Standard",
+          icon: "\u{1F3AB}",
+          category: "Infrastructure",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "certificates",
+    {
+      name: "certificates",
+      displayName: "Certificates",
+      description: "X.509 certificate chains with intermediate and root CA support. Trusted CA list bundles for client authentication and mTLS validation. CRL distribution points and OCSP stapling configuration. Certificate manifests link credentials to load balancers and gateways. Automatic expiration tracking and renewal notifications.",
+      descriptionShort: "SSL/TLS chains, trusted CAs, and revocation lists.",
+      descriptionMedium: "Certificate chains and trusted CA bundles. Revocation list management and manifest configuration for PKI operations.",
+      aliases: ["cert", "certs", "ssl", "tls"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Security",
+      useCases: [
+        "Manage SSL/TLS certificates",
+        "Configure trusted CAs",
+        "Manage certificate revocation lists (CRL)",
+        "Configure certificate manifests"
+      ],
+      relatedDomains: ["blindfold", "system"],
+      icon: "\u{1F4DC}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2314B8A6'%3E%3Cpath d='M14 2H6c-1.1 0-1.99.9-1.99 2L4 20c0 1.1.89 2 1.99 2H18c1.1 0 2-.9 2-2V8l-6-6zm2 16H8v-2h8v2zm0-4H8v-2h8v2zm-3-5V3.5L18.5 9H13z'/%3E%3C/svg%3E",
+      uiCategory: "Security",
+      primaryResources: [
+        {
+          name: "certificate",
+          description: "TLS certificate for secure HTTPS connections",
+          descriptionShort: "Certificate",
+          tier: "Standard",
+          icon: "\u{1F4DC}",
+          category: "Security",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "ca_certificate",
+          description: "Certificate authority certificate for trust chain",
+          descriptionShort: "CA certificate",
+          tier: "Standard",
+          icon: "\u{1F4DC}",
+          category: "Security",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "certificate_chain",
+          description: "Certificate chain for complete trust verification",
+          descriptionShort: "Certificate chain",
+          tier: "Standard",
+          icon: "\u{1F517}",
+          category: "Security",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "cloud_infrastructure",
+    {
+      name: "cloud_infrastructure",
+      displayName: "Cloud Infrastructure",
+      description: "Hyperscaler integration supporting Amazon Web Services, Microsoft Azure, and Google Cloud Platform environments. Virtual network attachment workflows enable elastic compute provisioning with automatic reattachment capabilities. Edge authentication secrets for provider access. Segment telemetry and cross-region link reapplication for distributed deployments. Autonomous path synchronization across peered networks with real-time topology updates.",
+      descriptionShort: "AWS, Azure, GCP connectors and VPC attachments.",
+      descriptionMedium: "Multi-cloud provider connections with gateway peering and network path configuration. Credential vault integration and subnet enumeration.",
+      aliases: ["cloud", "infra", "provider"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Infrastructure",
+      useCases: [
+        "Connect to cloud providers (AWS, Azure, GCP)",
+        "Manage cloud credentials and authentication",
+        "Configure cloud connectivity and elastic provisioning",
+        "Link and manage cloud regions"
+      ],
+      relatedDomains: ["sites", "customer_edge"],
+      icon: "\u2601\uFE0F",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2306B6D4'%3E%3Cpath d='M19.35 10.04C18.67 6.59 15.64 4 12 4 9.11 4 6.6 5.64 5.35 8.04 2.34 8.36 0 10.91 0 14c0 3.31 2.69 6 6 6h13c2.76 0 5-2.24 5-5 0-2.64-2.05-4.78-4.65-4.96z'/%3E%3C/svg%3E",
+      uiCategory: "Cloud Connect",
+      primaryResources: [
+        {
+          name: "aws_vpc_site",
+          description: "AWS VPC site deployment with edge node provisioning",
+          descriptionShort: "AWS VPC site",
+          tier: "Standard",
+          icon: "\u2601\uFE0F",
+          category: "Infrastructure",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { required: ["cloud_credentials"] },
+          relationshipHints: [
+            "cloud_credentials: AWS authentication for deployment"
           ]
+        },
+        {
+          name: "azure_vnet_site",
+          description: "Azure VNet site deployment with edge node provisioning",
+          descriptionShort: "Azure VNet site",
+          tier: "Standard",
+          icon: "\u2601\uFE0F",
+          category: "Infrastructure",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { required: ["cloud_credentials"] },
+          relationshipHints: [
+            "cloud_credentials: Azure authentication for deployment"
+          ]
+        },
+        {
+          name: "gcp_vpc_site",
+          description: "Google Cloud VPC site deployment with edge node provisioning",
+          descriptionShort: "GCP VPC site",
+          tier: "Standard",
+          icon: "\u2601\uFE0F",
+          category: "Infrastructure",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { required: ["cloud_credentials"] },
+          relationshipHints: [
+            "cloud_credentials: GCP authentication for deployment"
+          ]
+        },
+        {
+          name: "cloud_credentials",
+          description: "Cloud provider authentication credentials for site deployment",
+          descriptionShort: "Cloud credentials",
+          tier: "Standard",
+          icon: "\u{1F511}",
+          category: "Infrastructure",
+          supportsLogs: false,
+          supportsMetrics: false
         }
+      ]
+    }
+  ],
+  [
+    "container_services",
+    {
+      name: "container_services",
+      displayName: "Container Services",
+      description: "Namespaced isolation with configurable limits and autoscaling policies. vK8s abstracts operational overhead while providing scheduling, persistent storage, and service mesh integration. Compute profiles specify CPU, memory, and GPU allocations for reproducible environments. Telemetry tracks consumption patterns across geographically distributed infrastructure nodes.",
+      descriptionShort: "Containerized workloads and virtual Kubernetes clusters.",
+      descriptionMedium: "Pod orchestration without full cluster complexity. Edge site execution, quota enforcement, and standardized compute profiles for distributed apps.",
+      aliases: ["vk8s", "containers", "workloads"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Infrastructure",
+      useCases: [
+        "Deploy XCCS (Container Services) namespaces for multi-tenant workloads",
+        "Manage container workloads with simplified orchestration",
+        "Configure distributed edge container deployments",
+        "Run containerized applications without full K8s complexity"
       ],
-      "icon": "\u{1F510}"
-    },
-    icon: "\u{1F510}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23EF4444'%3E%3Cpath d='M12 1L3 5v6c0 5.55 3.84 10.74 9 12 5.16-1.26 9-6.45 9-12V5l-9-4zm0 10.99h7c-.53 4.12-3.28 7.79-7 8.94V12H5V6.3l7-3.11v8.8z'/%3E%3C/svg%3E",
-    uiCategory: "API Protection",
-    primaryResources: [
-      {
-        name: "api_definition",
-        description: "API schema definition for discovery and protection",
-        descriptionShort: "API definition",
-        tier: "Advanced",
-        icon: "\u{1F4C4}",
-        category: "API Management",
-        supportsLogs: false,
-        supportsMetrics: false,
-        dependencies: { optional: ["api_endpoint"] },
-        relationshipHints: ["api_endpoint: Endpoints defined by this API"]
-      },
-      {
-        name: "api_endpoint",
-        description: "Individual API endpoint configuration and protection",
-        descriptionShort: "API endpoint",
-        tier: "Advanced",
-        icon: "\u{1F50C}",
-        category: "API Management",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { optional: ["api_rate_limit"] },
-        relationshipHints: ["api_rate_limit: Rate limiting for this endpoint"]
-      },
-      {
-        name: "api_rate_limit",
-        description: "API rate limiting configuration for traffic control",
-        descriptionShort: "API rate limit",
-        tier: "Advanced",
-        icon: "\u23F1\uFE0F",
-        category: "API Management",
-        supportsLogs: true,
-        supportsMetrics: true
-      }
-    ]
-  }],
-  ["authentication", {
-    name: "authentication",
-    displayName: "Authentication",
-    description: "F5 Distributed Cloud Authentication API specifications",
-    descriptionShort: "Authentication API",
-    descriptionMedium: "F5 Distributed Cloud Authentication API specifications",
-    aliases: ["authn", "oidc", "sso"],
-    complexity: "simple",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Platform",
-    useCases: ["Configure authentication mechanisms", "Manage OIDC and OAuth providers", "Configure SCIM user provisioning", "Manage API credentials and access", "Configure account signup policies"],
-    relatedDomains: ["system", "users"],
-    icon: "\u{1F511}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23FBBF24'%3E%3Cpath d='M12.65 10C11.83 7.67 9.61 6 7 6c-3.31 0-6 2.69-6 6s2.69 6 6 6c2.61 0 4.83-1.67 5.65-4H17v4h4v-4h2v-4H12.65zM7 14c-1.1 0-2-.9-2-2s.9-2 2-2 2 .9 2 2-.9 2-2 2z'/%3E%3C/svg%3E",
-    uiCategory: "Identity & Access",
-    primaryResources: [
-      {
-        name: "authentication_policy",
-        description: "Authentication policy for user and API access",
-        descriptionShort: "Auth policy",
-        tier: "Standard",
-        icon: "\u{1F510}",
-        category: "Identity",
-        supportsLogs: true,
-        supportsMetrics: false
-      },
-      {
-        name: "token",
-        description: "API token for programmatic access",
-        descriptionShort: "Token",
-        tier: "Standard",
-        icon: "\u{1F3AB}",
-        category: "Identity",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "api_credential",
-        description: "API credential for service authentication",
-        descriptionShort: "API credential",
-        tier: "Standard",
-        icon: "\u{1F511}",
-        category: "Identity",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["bigip", {
-    name: "bigip",
-    displayName: "Bigip",
-    description: "On-premises appliance connector enabling iRule lifecycle operations and data group replication. APM policy coordination, virtual server configuration binding, and CNE linkage. Telemetry aggregation and health status monitoring across hybrid infrastructure deployments.",
-    descriptionShort: "iRules, data groups, and APM integration.",
-    descriptionMedium: "Legacy device orchestration with iRule scripts and data group synchronization. Virtual server bindings and metrics collection.",
-    aliases: ["f5-bigip", "irule", "ltm"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Platform",
-    useCases: ["Manage BigIP F5 appliances", "Configure iRule scripts", "Manage data groups", "Integrate BigIP CNE"],
-    relatedDomains: ["marketplace"],
-    icon: "\u{1F3E2}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23EF4444'%3E%3Cpath d='M12 7V3H2v18h20V7H12zM6 19H4v-2h2v2zm0-4H4v-2h2v2zm0-4H4V9h2v2zm0-4H4V5h2v2zm4 12H8v-2h2v2zm0-4H8v-2h2v2zm0-4H8V9h2v2zm0-4H8V5h2v2zm10 12h-8v-2h2v-2h-2v-2h2v-2h-2V9h8v10zm-2-8h-2v2h2v-2zm0 4h-2v2h2v-2z'/%3E%3C/svg%3E",
-    uiCategory: "BIG-IP Connector",
-    primaryResources: [
-      {
-        name: "bigip_pool",
-        description: "BIG-IP pool for load balancing integration",
-        descriptionShort: "BIG-IP pool",
-        tier: "Advanced",
-        icon: "\u{1F3AF}",
-        category: "Load Balancing",
-        supportsLogs: false,
-        supportsMetrics: true
-      },
-      {
-        name: "bigip_device",
-        description: "BIG-IP device registration and management",
-        descriptionShort: "BIG-IP device",
-        tier: "Advanced",
-        icon: "\u{1F5A5}\uFE0F",
-        category: "Infrastructure",
-        supportsLogs: true,
-        supportsMetrics: true
-      }
-    ]
-  }],
-  ["billing_and_usage", {
-    name: "billing_and_usage",
-    displayName: "Billing And Usage",
-    description: "Subscription lifecycle with plan transitions and billing states. Payment method hierarchies supporting primary and secondary configurations. Invoice generation with PDF downloads and custom listing. Resource quotas per namespace with limit definitions and consumption metrics. Contact types for billing notifications and tenant deletion workflows.",
-    descriptionShort: "Subscription plans, payment methods, and quotas.",
-    descriptionMedium: "Plan transitions, invoicing, and resource consumption. Namespace-level quota limits and usage tracking.",
-    aliases: ["billing-usage", "quotas", "usage-tracking"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Platform",
-    useCases: ["Manage subscription plans and billing transitions", "Configure payment methods and invoices", "Track resource quota usage across namespaces", "Monitor usage limits and capacity"],
-    relatedDomains: ["system", "users"],
-    icon: "\u{1F4B3}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2310B981'%3E%3Cpath d='M20 4H4c-1.11 0-1.99.89-1.99 2L2 18c0 1.11.89 2 2 2h16c1.11 0 2-.89 2-2V6c0-1.11-.89-2-2-2zm0 14H4v-6h16v6zm0-10H4V6h16v2z'/%3E%3C/svg%3E",
-    uiCategory: "Configuration",
-    primaryResources: [
-      {
-        name: "subscription",
-        description: "Subscription for service entitlements",
-        descriptionShort: "Subscription",
-        tier: "Standard",
-        icon: "\u{1F4B3}",
-        category: "Other",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "quota",
-        description: "Resource quota for usage limits",
-        descriptionShort: "Quota",
-        tier: "Standard",
-        icon: "\u{1F4CA}",
-        category: "Other",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "usage_report",
-        description: "Usage report for consumption tracking",
-        descriptionShort: "Usage report",
-        tier: "Standard",
-        icon: "\u{1F4C8}",
-        category: "Other",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["blindfold", {
-    name: "blindfold",
-    displayName: "Blindfold",
-    description: "Public key retrieval and secret policy enforcement for encrypted data handling. Policy rules govern access with configurable matching and transformation actions. VoltShare integration provides decryption services, access counting, and audit log aggregation. Namespace-scoped policies enable fine-grained control over sensitive information with administrative overrides.",
-    descriptionShort: "Secret encryption, key policies, and audit trails.",
-    descriptionMedium: "Encryption key management with policy-based access controls. Audit logging and secure data protection.",
-    aliases: ["bf", "encrypt", "secrets"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Security",
-    useCases: ["Configure secret policies for encryption", "Manage sensitive data encryption", "Enforce data protection policies"],
-    relatedDomains: ["client_side_defense", "certificates"],
-    icon: "\u{1F50F}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%236366F1'%3E%3Cpath d='M18 8h-1V6c0-2.76-2.24-5-5-5S7 3.24 7 6h2c0-1.66 1.34-3 3-3s3 1.34 3 3v2H6c-1.1 0-2 .9-2 2v10c0 1.1.9 2 2 2h12c1.1 0 2-.9 2-2V10c0-1.1-.9-2-2-2zm0 12H6V10h12v10zm-6-3c1.1 0 2-.9 2-2s-.9-2-2-2-2 .9-2 2 .9 2 2 2z'/%3E%3C/svg%3E",
-    uiCategory: "Security",
-    primaryResources: [
-      {
-        name: "blindfold_secret",
-        description: "Encrypted secret using Blindfold encryption",
-        descriptionShort: "Blindfold secret",
-        tier: "Standard",
-        icon: "\u{1F510}",
-        category: "Security",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "secret_policy",
-        description: "Secret management policy configuration",
-        descriptionShort: "Secret policy",
-        tier: "Standard",
-        icon: "\u{1F4CB}",
-        category: "Security",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "policy_document",
-        description: "Policy document for access control definitions",
-        descriptionShort: "Policy document",
-        tier: "Standard",
-        icon: "\u{1F4C4}",
-        category: "Security",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["bot_and_threat_defense", {
-    name: "bot_and_threat_defense",
-    displayName: "Bot And Threat Defense",
-    description: "Behavioral fingerprinting identifies automated clients through request patterns, mouse movements, and JavaScript execution. Threat categories classify attacks by type including credential stuffing, scraping, and denial-of-service. Defense instances apply per-namespace policies with configurable sensitivity thresholds and challenge actions. Provisioning handles integration credentials for third-party threat intelligence feeds.",
-    descriptionShort: "Bot detection, threat categories, and defense instances.",
-    descriptionMedium: "Threat classification with behavioral analysis and signature matching. Automated blocking for malicious traffic patterns.",
-    aliases: ["threat-defense", "tpm", "shape-bot"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Security",
-    useCases: ["Configure bot defense instances per namespace", "Manage TPM threat categories for classification", "Provision API keys for automated defense systems", "Integrate threat intelligence services"],
-    relatedDomains: ["bot_defense", "shape", "waf"],
-    icon: "\u{1F9A0}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23EF4444'%3E%3Cpath d='M19.5 5.5 18 4l-1.5 1.5L18 7l1.5-1.5zM12 2v3m0 14v3m10-10h-3M5 12H2m15.5 6.5L18 20l1.5-1.5L18 17l-1.5 1.5zm-11 0L6 20l-1.5-1.5L6 17l-1.5 1.5zm0-11L6 4l-1.5 1.5L6 7 4.5 5.5zM12 7c-2.76 0-5 2.24-5 5s2.24 5 5 5 5-2.24 5-5-2.24-5-5-5zm0 8c-1.66 0-3-1.34-3-3s1.34-3 3-3 3 1.34 3 3-1.34 3-3 3z'/%3E%3C/svg%3E",
-    uiCategory: "Bot Defense",
-    primaryResources: [
-      {
-        name: "bot_defense_instance",
-        description: "Bot defense instance for deployment",
-        descriptionShort: "Bot defense instance",
-        tier: "Advanced",
-        icon: "\u{1F916}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true
-      },
-      {
-        name: "threat_category",
-        description: "Threat category for classification",
-        descriptionShort: "Threat category",
-        tier: "Advanced",
-        icon: "\u{1F3AF}",
-        category: "Security",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["cdn", {
-    name: "cdn",
-    displayName: "Cdn",
-    description: "Content distribution through global edge networks with rule-based eligibility. Path matchers, cookie patterns, and query parameter filters control caching behavior. Expression-based rules enable fine-grained targeting by request attributes. Load balancer integration provides throughput aggregation, request log queries, and on-demand cache clearing across worldwide distribution points.",
-    descriptionShort: "Edge caching, content delivery, and distribution rules.",
-    descriptionMedium: "Path-based policies with TTL controls and header conditions. Purge operations, access logs, and cache eligibility for multi-region deployments.",
-    aliases: ["cache", "content"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Networking",
-    useCases: ["Configure CDN load balancing", "Manage content delivery network services", "Configure caching policies", "Manage data delivery and distribution"],
-    relatedDomains: ["virtual"],
-    icon: "\u{1F680}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F97316'%3E%3Cpath d='M12 2.5s4.5 2.04 4.5 10c0 3.22-1.67 5.6-3.25 7.08L12 22l-1.25-2.42C9.17 18.1 7.5 15.72 7.5 12.5c0-7.96 4.5-10 4.5-10zm0 8c1.1 0 2-.9 2-2s-.9-2-2-2-2 .9-2 2 .9 2 2 2zM5 14.5c0 1.22.57 2.36 1.44 3.22l1.76-1.76c-.43-.43-.7-1.01-.7-1.66 0-.25.04-.49.1-.72L5.21 12.1c-.13.77-.21 1.58-.21 2.4zm14 0c0-.82-.08-1.63-.21-2.4l-2.39 1.48c.06.23.1.47.1.72 0 .65-.27 1.23-.7 1.66l1.76 1.76c.87-.86 1.44-2 1.44-3.22z'/%3E%3C/svg%3E",
-    uiCategory: "Load Balancing",
-    primaryResources: [
-      {
-        name: "cdn_loadbalancer",
-        description: "Content delivery network load balancer for edge caching",
-        descriptionShort: "CDN load balancer",
-        tier: "Standard",
-        icon: "\u{1F30D}",
-        category: "Load Balancing",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { required: ["cdn_origin_pool"] },
-        relationshipHints: ["cdn_origin_pool: Origin servers for CDN content"]
-      },
-      {
-        name: "cdn_origin_pool",
-        description: "Origin server pool for CDN content sourcing",
-        descriptionShort: "CDN origin pool",
-        tier: "Standard",
-        icon: "\u{1F3AF}",
-        category: "Load Balancing",
-        supportsLogs: false,
-        supportsMetrics: true
-      }
-    ]
-  }],
-  ["ce_management", {
-    name: "ce_management",
-    displayName: "Ce Management",
-    description: "Customer edge node lifecycle through secure enrollment tokens and downloadable deployment images. Network connectivity options span exclusive, common, and administrative pathways with DHCP address pools supporting both IPv4 and IPv6. Bulk grouping consolidates configuration across distributed locations. Compatibility verification runs before software updates, with rollout tracking for version progression across the infrastructure.",
-    descriptionShort: "Network interfaces, fleets, and site registration.",
-    descriptionMedium: "Token-based provisioning with image downloads and pre-upgrade validation. Fleet grouping enables bulk operations across distributed locations.",
-    aliases: ["ce-mgmt", "edge-management", "ce-lifecycle"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Infrastructure",
-    useCases: ["Manage Customer Edge site lifecycle", "Configure network interfaces and fleet settings", "Handle site registration and token workflows", "Execute site upgrades with pre-upgrade checks"],
-    relatedDomains: ["customer_edge", "sites"],
-    icon: "\u{1F527}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F59E0B'%3E%3Cpath d='M22.7 19l-9.1-9.1c.9-2.3.4-5-1.5-6.9-2-2-5-2.4-7.4-1.3L9 6 6 9 1.6 4.7C.4 7.1.9 10.1 2.9 12.1c1.9 1.9 4.6 2.4 6.9 1.5l9.1 9.1c.4.4 1 .4 1.4 0l2.3-2.3c.5-.4.5-1.1.1-1.4z'/%3E%3C/svg%3E",
-    uiCategory: "Sites",
-    primaryResources: [
-      {
-        name: "site_config",
-        description: "Site configuration for edge node settings",
-        descriptionShort: "Site config",
-        tier: "Standard",
-        icon: "\u2699\uFE0F",
-        category: "Infrastructure",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "fleet_config",
-        description: "Fleet configuration for multi-site management",
-        descriptionShort: "Fleet config",
-        tier: "Standard",
-        icon: "\u{1F680}",
-        category: "Infrastructure",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "registration_token",
-        description: "Registration token for site onboarding",
-        descriptionShort: "Registration token",
-        tier: "Standard",
-        icon: "\u{1F3AB}",
-        category: "Infrastructure",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["certificates", {
-    name: "certificates",
-    displayName: "Certificates",
-    description: "X.509 certificate chains with intermediate and root CA support. Trusted CA list bundles for client authentication and mTLS validation. CRL distribution points and OCSP stapling configuration. Certificate manifests link credentials to load balancers and gateways. Automatic expiration tracking and renewal notifications.",
-    descriptionShort: "SSL/TLS chains, trusted CAs, and revocation lists.",
-    descriptionMedium: "Certificate chains and trusted CA bundles. Revocation list management and manifest configuration for PKI operations.",
-    aliases: ["cert", "certs", "ssl", "tls"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Security",
-    useCases: ["Manage SSL/TLS certificates", "Configure trusted CAs", "Manage certificate revocation lists (CRL)", "Configure certificate manifests"],
-    relatedDomains: ["blindfold", "system"],
-    icon: "\u{1F4DC}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2314B8A6'%3E%3Cpath d='M14 2H6c-1.1 0-1.99.9-1.99 2L4 20c0 1.1.89 2 1.99 2H18c1.1 0 2-.9 2-2V8l-6-6zm2 16H8v-2h8v2zm0-4H8v-2h8v2zm-3-5V3.5L18.5 9H13z'/%3E%3C/svg%3E",
-    uiCategory: "Security",
-    primaryResources: [
-      {
-        name: "certificate",
-        description: "TLS certificate for secure HTTPS connections",
-        descriptionShort: "Certificate",
-        tier: "Standard",
-        icon: "\u{1F4DC}",
-        category: "Security",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "ca_certificate",
-        description: "Certificate authority certificate for trust chain",
-        descriptionShort: "CA certificate",
-        tier: "Standard",
-        icon: "\u{1F4DC}",
-        category: "Security",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "certificate_chain",
-        description: "Certificate chain for complete trust verification",
-        descriptionShort: "Certificate chain",
-        tier: "Standard",
-        icon: "\u{1F517}",
-        category: "Security",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["cloud_infrastructure", {
-    name: "cloud_infrastructure",
-    displayName: "Cloud Infrastructure",
-    description: "Hyperscaler integration supporting Amazon Web Services, Microsoft Azure, and Google Cloud Platform environments. Virtual network attachment workflows enable elastic compute provisioning with automatic reattachment capabilities. Edge authentication secrets for provider access. Segment telemetry and cross-region link reapplication for distributed deployments. Autonomous path synchronization across peered networks with real-time topology updates.",
-    descriptionShort: "AWS, Azure, GCP connectors and VPC attachments.",
-    descriptionMedium: "Multi-cloud provider connections with gateway peering and network path configuration. Credential vault integration and subnet enumeration.",
-    aliases: ["cloud", "infra", "provider"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Infrastructure",
-    useCases: ["Connect to cloud providers (AWS, Azure, GCP)", "Manage cloud credentials and authentication", "Configure cloud connectivity and elastic provisioning", "Link and manage cloud regions"],
-    relatedDomains: ["sites", "customer_edge"],
-    icon: "\u2601\uFE0F",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2306B6D4'%3E%3Cpath d='M19.35 10.04C18.67 6.59 15.64 4 12 4 9.11 4 6.6 5.64 5.35 8.04 2.34 8.36 0 10.91 0 14c0 3.31 2.69 6 6 6h13c2.76 0 5-2.24 5-5 0-2.64-2.05-4.78-4.65-4.96z'/%3E%3C/svg%3E",
-    uiCategory: "Cloud Connect",
-    primaryResources: [
-      {
-        name: "aws_vpc_site",
-        description: "AWS VPC site deployment with edge node provisioning",
-        descriptionShort: "AWS VPC site",
-        tier: "Standard",
-        icon: "\u2601\uFE0F",
-        category: "Infrastructure",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { required: ["cloud_credentials"] },
-        relationshipHints: ["cloud_credentials: AWS authentication for deployment"]
-      },
-      {
-        name: "azure_vnet_site",
-        description: "Azure VNet site deployment with edge node provisioning",
-        descriptionShort: "Azure VNet site",
-        tier: "Standard",
-        icon: "\u2601\uFE0F",
-        category: "Infrastructure",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { required: ["cloud_credentials"] },
-        relationshipHints: ["cloud_credentials: Azure authentication for deployment"]
-      },
-      {
-        name: "gcp_vpc_site",
-        description: "Google Cloud VPC site deployment with edge node provisioning",
-        descriptionShort: "GCP VPC site",
-        tier: "Standard",
-        icon: "\u2601\uFE0F",
-        category: "Infrastructure",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { required: ["cloud_credentials"] },
-        relationshipHints: ["cloud_credentials: GCP authentication for deployment"]
-      },
-      {
-        name: "cloud_credentials",
-        description: "Cloud provider authentication credentials for site deployment",
-        descriptionShort: "Cloud credentials",
-        tier: "Standard",
-        icon: "\u{1F511}",
-        category: "Infrastructure",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["container_services", {
-    name: "container_services",
-    displayName: "Container Services",
-    description: "Namespaced isolation with configurable limits and autoscaling policies. vK8s abstracts operational overhead while providing scheduling, persistent storage, and service mesh integration. Compute profiles specify CPU, memory, and GPU allocations for reproducible environments. Telemetry tracks consumption patterns across geographically distributed infrastructure nodes.",
-    descriptionShort: "Containerized workloads and virtual Kubernetes clusters.",
-    descriptionMedium: "Pod orchestration without full cluster complexity. Edge site execution, quota enforcement, and standardized compute profiles for distributed apps.",
-    aliases: ["vk8s", "containers", "workloads"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Infrastructure",
-    useCases: ["Deploy XCCS (Container Services) namespaces for multi-tenant workloads", "Manage container workloads with simplified orchestration", "Configure distributed edge container deployments", "Run containerized applications without full K8s complexity"],
-    relatedDomains: ["managed_kubernetes", "sites", "service_mesh"],
-    icon: "\u{1F4E6}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%238B5CF6'%3E%3Cpath d='M21 16.5c0 .38-.21.71-.53.88l-7.9 4.44c-.16.12-.36.18-.57.18s-.41-.06-.57-.18l-7.9-4.44A.991.991 0 0 1 3 16.5v-9c0-.38.21-.71.53-.88l7.9-4.44c.16-.12.36-.18.57-.18s.41.06.57.18l7.9 4.44c.32.17.53.5.53.88v9zM12 4.15L5 8.09v7.82l7 3.94 7-3.94V8.09l-7-3.94z'/%3E%3C/svg%3E",
-    uiCategory: "Edge Stack",
-    primaryResources: [
-      {
-        name: "virtual_k8s",
-        description: "Virtual Kubernetes namespace for container workloads",
-        descriptionShort: "Virtual K8s",
-        tier: "Advanced",
-        icon: "\u2638\uFE0F",
-        category: "Container",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { optional: ["workload"] },
-        relationshipHints: ["workload: Container workloads in this namespace"]
-      },
-      {
-        name: "workload",
-        description: "Container workload deployment configuration",
-        descriptionShort: "Workload",
-        tier: "Advanced",
-        icon: "\u{1F4E6}",
-        category: "Container",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { required: ["virtual_k8s"] },
-        relationshipHints: ["virtual_k8s: Namespace for workload deployment"]
-      },
-      {
-        name: "pod_security_policy",
-        description: "Pod security policy for container runtime constraints",
-        descriptionShort: "Pod security policy",
-        tier: "Advanced",
-        icon: "\u{1F512}",
-        category: "Container",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["data_and_privacy_security", {
-    name: "data_and_privacy_security",
-    displayName: "Data And Privacy Security",
-    description: "Pattern-based detection for personally identifiable information across request and response payloads. Custom data type definitions enable organization-specific classification beyond built-in PII categories. Regional log and metrics aggregation with Clickhouse, Elasticsearch, and Kafka export options. Geo-configuration policies enforce data residency requirements and jurisdiction-specific privacy regulations.",
-    descriptionShort: "PII detection, data types, and regional compliance.",
-    descriptionMedium: "Sensitive data policies with custom classification rules. LMA region configuration and geo-based compliance controls.",
-    aliases: ["data-privacy", "pii", "sensitive-data", "lma"],
-    complexity: "simple",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Security",
-    useCases: ["Configure sensitive data detection policies", "Define custom data types for PII classification", "Manage LMA region configurations", "Integrate geo-configurations for compliance"],
-    relatedDomains: ["blindfold", "client_side_defense"],
-    icon: "\u{1F510}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23EF4444'%3E%3Cpath d='M12 1L3 5v6c0 5.55 3.84 10.74 9 12 5.16-1.26 9-6.45 9-12V5l-9-4zm0 10.99h7c-.53 4.12-3.28 7.79-7 8.94V12H5V6.3l7-3.11v8.8z'/%3E%3C/svg%3E",
-    uiCategory: "Data Protection",
-    primaryResources: [
-      {
-        name: "sensitive_data_policy",
-        description: "Sensitive data policy for PII protection",
-        descriptionShort: "Sensitive data policy",
-        tier: "Advanced",
-        icon: "\u{1F510}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: false
-      },
-      {
-        name: "data_classification",
-        description: "Data classification for content categorization",
-        descriptionShort: "Data classification",
-        tier: "Advanced",
-        icon: "\u{1F3F7}\uFE0F",
-        category: "Security",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["data_intelligence", {
-    name: "data_intelligence",
-    displayName: "Data Intelligence",
-    description: "F5 Distributed Cloud Data Intelligence API specifications",
-    descriptionShort: "Data Intelligence API",
-    descriptionMedium: "F5 Distributed Cloud Data Intelligence API specifications",
-    aliases: ["di", "intelligence", "insights"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Operations",
-    useCases: ["Analyze security and traffic data", "Generate intelligent insights from logs", "Configure data analytics policies"],
-    relatedDomains: ["statistics", "observability"],
-    icon: "\u{1F9E0}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23A855F7'%3E%3Cpath d='M15.5 14l-1.34-4H9.84L8.5 14H6.09l4.01-10h3.8l4.01 10H15.5zm-4.5-5.4h2l.9-2.35.8 2.35h1.8l-1.45 1.05.55 1.7-1.4-1.02-1.4 1.02.55-1.7L11 8.6z'/%3E%3C/svg%3E",
-    uiCategory: "Discovery",
-    primaryResources: [
-      {
-        name: "analytics_query",
-        description: "Analytics query for data analysis",
-        descriptionShort: "Analytics query",
-        tier: "Standard",
-        icon: "\u{1F4CA}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "data_export",
-        description: "Data export configuration for reporting",
-        descriptionShort: "Data export",
-        tier: "Standard",
-        icon: "\u{1F4E4}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["ddos", {
-    name: "ddos",
-    displayName: "Ddos",
-    description: "Network perimeter hardening through deny list configurations, rule group hierarchies, and encrypted tunnel endpoints. Attack signature detection identifies flood patterns while throttling mechanisms block anomalous traffic bursts. Tunnel health checks verify coverage across distributed segments. Priority ordering governs policy application for multi-layered screening approaches.",
-    descriptionShort: "Volumetric attack mitigation and traffic scrubbing.",
-    descriptionMedium: "Deny lists, firewall rule groups, and tunnel-based safeguards. Rate limiting and pattern analysis for network perimeter security.",
-    aliases: ["dos", "ddos-protect"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Security",
-    useCases: ["Configure DDoS protection policies", "Monitor and analyze DDoS threats", "Configure infrastructure protection"],
-    relatedDomains: ["network_security", "virtual"],
-    icon: "\u{1F6D1}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23DC2626'%3E%3Cpath d='M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm5 11H7v-2h10v2z'/%3E%3C/svg%3E",
-    uiCategory: "Infrastructure Protection",
-    primaryResources: [
-      {
-        name: "ddos_protection",
-        description: "DDoS protection configuration for traffic scrubbing",
-        descriptionShort: "DDoS protection",
-        tier: "Advanced",
-        icon: "\u{1F6E1}\uFE0F",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { optional: ["ddos_mitigation_rule"] },
-        relationshipHints: ["ddos_mitigation_rule: Custom mitigation rules"]
-      },
-      {
-        name: "ddos_mitigation_rule",
-        description: "DDoS mitigation rule for attack response",
-        descriptionShort: "DDoS mitigation rule",
-        tier: "Advanced",
-        icon: "\u{1F4CB}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["dns", {
-    name: "dns",
-    displayName: "Dns",
-    description: "Primary and secondary zone configuration with support for A, AAAA, CNAME, CAA, CERT, and AFSDB record types. Zone cloning, BIND file imports, and AXFR transfers for migration. Load balancer health checks with metrics collection and request log analysis. Compliance policies and RRSet management for enterprise name resolution.",
-    descriptionShort: "Zones, record types, and load balancing.",
-    descriptionMedium: "Authoritative zone hosting with BIND and AXFR imports. Health checks, failover policies, and request logging.",
-    aliases: ["dns-zone", "zones"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Networking",
-    useCases: ["Configure DNS load balancing", "Manage DNS zones and domains", "Configure DNS compliance policies", "Manage resource record sets (RRSets)"],
-    relatedDomains: ["virtual", "network"],
-    cliMetadata: {
-      "quick_start": {
-        "command": "curl $F5XC_API_URL/api/config/namespaces/default/dns_domains -H 'Authorization: APIToken $F5XC_API_TOKEN'",
-        "description": "List all DNS domains configured in default namespace",
-        "expected_output": "JSON array of DNS domain objects"
+      relatedDomains: ["managed_kubernetes", "sites", "service_mesh"],
+      icon: "\u{1F4E6}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%238B5CF6'%3E%3Cpath d='M21 16.5c0 .38-.21.71-.53.88l-7.9 4.44c-.16.12-.36.18-.57.18s-.41-.06-.57-.18l-7.9-4.44A.991.991 0 0 1 3 16.5v-9c0-.38.21-.71.53-.88l7.9-4.44c.16-.12.36-.18.57-.18s.41.06.57.18l7.9 4.44c.32.17.53.5.53.88v9zM12 4.15L5 8.09v7.82l7 3.94 7-3.94V8.09l-7-3.94z'/%3E%3C/svg%3E",
+      uiCategory: "Edge Stack",
+      primaryResources: [
+        {
+          name: "virtual_k8s",
+          description: "Virtual Kubernetes namespace for container workloads",
+          descriptionShort: "Virtual K8s",
+          tier: "Advanced",
+          icon: "\u2638\uFE0F",
+          category: "Container",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { optional: ["workload"] },
+          relationshipHints: [
+            "workload: Container workloads in this namespace"
+          ]
+        },
+        {
+          name: "workload",
+          description: "Container workload deployment configuration",
+          descriptionShort: "Workload",
+          tier: "Advanced",
+          icon: "\u{1F4E6}",
+          category: "Container",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { required: ["virtual_k8s"] },
+          relationshipHints: [
+            "virtual_k8s: Namespace for workload deployment"
+          ]
+        },
+        {
+          name: "pod_security_policy",
+          description: "Pod security policy for container runtime constraints",
+          descriptionShort: "Pod security policy",
+          tier: "Advanced",
+          icon: "\u{1F512}",
+          category: "Container",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "data_and_privacy_security",
+    {
+      name: "data_and_privacy_security",
+      displayName: "Data And Privacy Security",
+      description: "Pattern-based detection for personally identifiable information across request and response payloads. Custom data type definitions enable organization-specific classification beyond built-in PII categories. Regional log and metrics aggregation with Clickhouse, Elasticsearch, and Kafka export options. Geo-configuration policies enforce data residency requirements and jurisdiction-specific privacy regulations.",
+      descriptionShort: "PII detection, data types, and regional compliance.",
+      descriptionMedium: "Sensitive data policies with custom classification rules. LMA region configuration and geo-based compliance controls.",
+      aliases: ["data-privacy", "pii", "sensitive-data", "lma"],
+      complexity: "simple",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Security",
+      useCases: [
+        "Configure sensitive data detection policies",
+        "Define custom data types for PII classification",
+        "Manage LMA region configurations",
+        "Integrate geo-configurations for compliance"
+      ],
+      relatedDomains: ["blindfold", "client_side_defense"],
+      icon: "\u{1F510}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23EF4444'%3E%3Cpath d='M12 1L3 5v6c0 5.55 3.84 10.74 9 12 5.16-1.26 9-6.45 9-12V5l-9-4zm0 10.99h7c-.53 4.12-3.28 7.79-7 8.94V12H5V6.3l7-3.11v8.8z'/%3E%3C/svg%3E",
+      uiCategory: "Data Protection",
+      primaryResources: [
+        {
+          name: "sensitive_data_policy",
+          description: "Sensitive data policy for PII protection",
+          descriptionShort: "Sensitive data policy",
+          tier: "Advanced",
+          icon: "\u{1F510}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: false
+        },
+        {
+          name: "data_classification",
+          description: "Data classification for content categorization",
+          descriptionShort: "Data classification",
+          tier: "Advanced",
+          icon: "\u{1F3F7}\uFE0F",
+          category: "Security",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "data_intelligence",
+    {
+      name: "data_intelligence",
+      displayName: "Data Intelligence",
+      description: "F5 Distributed Cloud Data Intelligence API specifications",
+      descriptionShort: "Data Intelligence API",
+      descriptionMedium: "F5 Distributed Cloud Data Intelligence API specifications",
+      aliases: ["di", "intelligence", "insights"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Operations",
+      useCases: [
+        "Analyze security and traffic data",
+        "Generate intelligent insights from logs",
+        "Configure data analytics policies"
+      ],
+      relatedDomains: ["statistics", "observability"],
+      icon: "\u{1F9E0}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23A855F7'%3E%3Cpath d='M15.5 14l-1.34-4H9.84L8.5 14H6.09l4.01-10h3.8l4.01 10H15.5zm-4.5-5.4h2l.9-2.35.8 2.35h1.8l-1.45 1.05.55 1.7-1.4-1.02-1.4 1.02.55-1.7L11 8.6z'/%3E%3C/svg%3E",
+      uiCategory: "Discovery",
+      primaryResources: [
+        {
+          name: "analytics_query",
+          description: "Analytics query for data analysis",
+          descriptionShort: "Analytics query",
+          tier: "Standard",
+          icon: "\u{1F4CA}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "data_export",
+          description: "Data export configuration for reporting",
+          descriptionShort: "Data export",
+          tier: "Standard",
+          icon: "\u{1F4E4}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "ddos",
+    {
+      name: "ddos",
+      displayName: "Ddos",
+      description: "Network perimeter hardening through deny list configurations, rule group hierarchies, and encrypted tunnel endpoints. Attack signature detection identifies flood patterns while throttling mechanisms block anomalous traffic bursts. Tunnel health checks verify coverage across distributed segments. Priority ordering governs policy application for multi-layered screening approaches.",
+      descriptionShort: "Volumetric attack mitigation and traffic scrubbing.",
+      descriptionMedium: "Deny lists, firewall rule groups, and tunnel-based safeguards. Rate limiting and pattern analysis for network perimeter security.",
+      aliases: ["dos", "ddos-protect"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Security",
+      useCases: [
+        "Configure DDoS protection policies",
+        "Monitor and analyze DDoS threats",
+        "Configure infrastructure protection"
+      ],
+      relatedDomains: ["network_security", "virtual"],
+      icon: "\u{1F6D1}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23DC2626'%3E%3Cpath d='M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm5 11H7v-2h10v2z'/%3E%3C/svg%3E",
+      uiCategory: "Infrastructure Protection",
+      primaryResources: [
+        {
+          name: "ddos_protection",
+          description: "DDoS protection configuration for traffic scrubbing",
+          descriptionShort: "DDoS protection",
+          tier: "Advanced",
+          icon: "\u{1F6E1}\uFE0F",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { optional: ["ddos_mitigation_rule"] },
+          relationshipHints: [
+            "ddos_mitigation_rule: Custom mitigation rules"
+          ]
+        },
+        {
+          name: "ddos_mitigation_rule",
+          description: "DDoS mitigation rule for attack response",
+          descriptionShort: "DDoS mitigation rule",
+          tier: "Advanced",
+          icon: "\u{1F4CB}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "dns",
+    {
+      name: "dns",
+      displayName: "Dns",
+      description: "Primary and secondary zone configuration with support for A, AAAA, CNAME, CAA, CERT, and AFSDB record types. Zone cloning, BIND file imports, and AXFR transfers for migration. Load balancer health checks with metrics collection and request log analysis. Compliance policies and RRSet management for enterprise name resolution.",
+      descriptionShort: "Zones, record types, and load balancing.",
+      descriptionMedium: "Authoritative zone hosting with BIND and AXFR imports. Health checks, failover policies, and request logging.",
+      aliases: ["dns-zone", "zones"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Networking",
+      useCases: [
+        "Configure DNS load balancing",
+        "Manage DNS zones and domains",
+        "Configure DNS compliance policies",
+        "Manage resource record sets (RRSets)"
+      ],
+      relatedDomains: ["virtual", "network"],
+      cliMetadata: {
+        quick_start: {
+          command: "curl $F5XC_API_URL/api/config/namespaces/default/dns_domains -H 'Authorization: APIToken $F5XC_API_TOKEN'",
+          description: "List all DNS domains configured in default namespace",
+          expected_output: "JSON array of DNS domain objects"
+        },
+        common_workflows: [
+          {
+            name: "Create DNS Domain",
+            description: "Configure DNS domain with load balancer backend",
+            steps: [
+              {
+                step: 1,
+                command: "Create load balancer endpoint first (virtual domain)",
+                description: "Ensure target load balancer exists"
+              },
+              {
+                step: 2,
+                command: "curl -X POST $F5XC_API_URL/api/config/namespaces/default/dns_domains -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...dns_config...}'",
+                description: "Create DNS domain pointing to load balancer"
+              }
+            ],
+            prerequisites: [
+              "DNS domain registered",
+              "Load balancer configured",
+              "SOA and NS records prepared"
+            ],
+            expected_outcome: "DNS domain in Active status, queries resolving to load balancer"
+          }
+        ],
+        troubleshooting: [
+          {
+            problem: "DNS queries not resolving",
+            symptoms: [
+              "NXDOMAIN responses",
+              "Timeout on DNS queries"
+            ],
+            diagnosis_commands: [
+              "curl $F5XC_API_URL/api/config/namespaces/default/dns_domains/{domain} -H 'Authorization: APIToken $F5XC_API_TOKEN'",
+              "nslookup {domain} @ns-server"
+            ],
+            solutions: [
+              "Verify domain delegation to F5 XC nameservers",
+              "Check DNS domain configuration and backend load balancer status",
+              "Validate zone file and record configuration"
+            ]
+          }
+        ],
+        icon: "\u{1F310}"
       },
-      "common_workflows": [
+      icon: "\u{1F310}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%232563EB'%3E%3Cpath d='M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm-1 17.93c-3.95-.49-7-3.85-7-7.93 0-.62.08-1.21.21-1.79L9 15v1c0 1.1.9 2 2 2v1.93zm6.9-2.54c-.26-.81-1-1.39-1.9-1.39h-1v-3c0-.55-.45-1-1-1H8v-2h2c.55 0 1-.45 1-1V7h2c1.1 0 2-.9 2-2v-.41c2.93 1.19 5 4.06 5 7.41 0 2.08-.8 3.97-2.1 5.39z'/%3E%3C/svg%3E",
+      uiCategory: "DNS",
+      primaryResources: [
+        {
+          name: "dns_zone",
+          description: "Authoritative DNS zone with record management capabilities",
+          descriptionShort: "DNS zone",
+          tier: "Standard",
+          icon: "\u{1F310}",
+          category: "DNS",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { optional: ["dns_load_balancer"] },
+          relationshipHints: [
+            "dns_load_balancer: Geographic or weighted DNS routing"
+          ]
+        },
         {
-          "name": "Create DNS Domain",
-          "description": "Configure DNS domain with load balancer backend",
-          "steps": [
-            {
-              "step": 1,
-              "command": "Create load balancer endpoint first (virtual domain)",
-              "description": "Ensure target load balancer exists"
-            },
-            {
-              "step": 2,
-              "command": "curl -X POST $F5XC_API_URL/api/config/namespaces/default/dns_domains -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...dns_config...}'",
-              "description": "Create DNS domain pointing to load balancer"
-            }
-          ],
-          "prerequisites": [
-            "DNS domain registered",
-            "Load balancer configured",
-            "SOA and NS records prepared"
-          ],
-          "expected_outcome": "DNS domain in Active status, queries resolving to load balancer"
+          name: "dns_domain",
+          description: "DNS domain delegation and configuration settings",
+          descriptionShort: "DNS domain",
+          tier: "Standard",
+          icon: "\u{1F517}",
+          category: "DNS",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "dns_load_balancer",
+          description: "DNS-based traffic distribution with geographic routing and failover",
+          descriptionShort: "DNS load balancer",
+          tier: "Standard",
+          icon: "\u2696\uFE0F",
+          category: "DNS",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { required: ["dns_zone"] },
+          relationshipHints: [
+            "dns_zone: Parent zone for DNS records"
+          ]
         }
+      ]
+    }
+  ],
+  [
+    "managed_kubernetes",
+    {
+      name: "managed_kubernetes",
+      displayName: "Managed Kubernetes",
+      description: "Role-based access controls with cluster-scoped permissions and namespace bindings. Pod security admission levels enforce baseline, restricted, or privileged profiles. Container registry credentials support private image pulls across hybrid deployments. Policy rules define resource verbs, groups, and non-resource URL access patterns.",
+      descriptionShort: "Cluster RBAC, pod security, and container registries.",
+      descriptionMedium: "Kubernetes role bindings and admission policies. Registry integration for EKS, AKS, and GKE workloads.",
+      aliases: ["mk8s", "appstack", "k8s-mgmt"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Infrastructure",
+      useCases: [
+        "Manage XCKS (Managed Kubernetes) cluster RBAC and security",
+        "Configure pod security policies and admission controllers",
+        "Manage container registries for enterprise deployments",
+        "Integrate with external Kubernetes clusters (EKS, AKS, GKE)"
       ],
-      "troubleshooting": [
+      relatedDomains: ["container_services", "sites", "service_mesh"],
+      icon: "\u2699\uFE0F",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2364748B'%3E%3Cpath d='M19.14 12.94c.04-.31.06-.63.06-.94 0-.31-.02-.63-.06-.94l2.03-1.58a.49.49 0 0 0 .12-.61l-1.92-3.32a.488.488 0 0 0-.59-.22l-2.39.96c-.5-.38-1.03-.7-1.62-.94l-.36-2.54a.484.484 0 0 0-.48-.41h-3.84c-.24 0-.43.17-.47.41l-.36 2.54c-.59.24-1.13.57-1.62.94l-2.39-.96c-.22-.08-.47 0-.59.22L2.74 8.87c-.12.21-.08.47.12.61l2.03 1.58c-.04.31-.06.63-.06.94s.02.63.06.94l-2.03 1.58a.49.49 0 0 0-.12.61l1.92 3.32c.12.22.37.29.59.22l2.39-.96c.5.38 1.03.7 1.62.94l.36 2.54c.05.24.24.41.48.41h3.84c.24 0 .44-.17.47-.41l.36-2.54c.59-.24 1.13-.56 1.62-.94l2.39.96c.22.08.47 0 .59-.22l1.92-3.32c.12-.22.07-.47-.12-.61l-2.01-1.58zM12 15.6c-1.98 0-3.6-1.62-3.6-3.6s1.62-3.6 3.6-3.6 3.6 1.62 3.6 3.6-1.62 3.6-3.6 3.6z'/%3E%3C/svg%3E",
+      uiCategory: "Kubernetes",
+      primaryResources: [
+        {
+          name: "mk8s_cluster",
+          description: "Managed Kubernetes cluster configuration",
+          descriptionShort: "MK8s cluster",
+          tier: "Advanced",
+          icon: "\u2638\uFE0F",
+          category: "Container",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { optional: ["k8s_cluster_role"] },
+          relationshipHints: [
+            "k8s_cluster_role: RBAC roles for cluster access"
+          ]
+        },
         {
-          "problem": "DNS queries not resolving",
-          "symptoms": [
-            "NXDOMAIN responses",
-            "Timeout on DNS queries"
-          ],
-          "diagnosis_commands": [
-            "curl $F5XC_API_URL/api/config/namespaces/default/dns_domains/{domain} -H 'Authorization: APIToken $F5XC_API_TOKEN'",
-            "nslookup {domain} @ns-server"
-          ],
-          "solutions": [
-            "Verify domain delegation to F5 XC nameservers",
-            "Check DNS domain configuration and backend load balancer status",
-            "Validate zone file and record configuration"
+          name: "k8s_cluster_role",
+          description: "Kubernetes cluster RBAC role configuration",
+          descriptionShort: "K8s cluster role",
+          tier: "Advanced",
+          icon: "\u{1F464}",
+          category: "Container",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "container_registry",
+          description: "Container image registry for workload images",
+          descriptionShort: "Container registry",
+          tier: "Advanced",
+          icon: "\u{1F4E6}",
+          category: "Container",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "marketplace",
+    {
+      name: "marketplace",
+      displayName: "Marketplace",
+      description: "External connector infrastructure supporting direct, GRE, and encrypted tunnel modes with IKE parameter configuration and dead peer detection intervals. Cloud provider instances for Terraform automation and vendor partnerships. Service catalog entries with per-namespace activation flags, resource quotas, and administrative dashboard tile arrangement for operational workflows.",
+      descriptionShort: "Add-on services, connectors, and TPM policies.",
+      descriptionMedium: "Third-party GRE and IPSec tunnel provisioning with DPD timers. Shared resource allocation across namespaces with tile placement controls.",
+      aliases: ["market", "addons", "extensions"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Platform",
+      useCases: [
+        "Access third-party integrations and add-ons",
+        "Manage marketplace extensions",
+        "Configure Terraform and external integrations",
+        "Manage TPM policies"
+      ],
+      relatedDomains: ["bigip", "admin"],
+      icon: "\u{1F3EA}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F97316'%3E%3Cpath d='M18.36 9l.6 3H5.04l.6-3h12.72M20 4H4v2h16V4zm0 3H4l-1 5v2h1v6h10v-6h4v6h2v-6h1v-2l-1-5zM6 18v-4h6v4H6z'/%3E%3C/svg%3E",
+      uiCategory: "Configuration",
+      primaryResources: [
+        {
+          name: "marketplace_item",
+          description: "Marketplace item for service catalog",
+          descriptionShort: "Marketplace item",
+          tier: "Standard",
+          icon: "\u{1F6D2}",
+          category: "Other",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "subscription",
+          description: "Subscription for service entitlements",
+          descriptionShort: "Subscription",
+          tier: "Standard",
+          icon: "\u{1F4B3}",
+          category: "Other",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "network",
+    {
+      name: "network",
+      displayName: "Network",
+      description: "Routing table manipulation via peer state machines and path selection algorithms. Secure conduits between locations using IKE handshakes, cipher suites, and key exchanges. Segment attachments bridge hybrid topologies spanning cloud providers and on-premises infrastructure. SRv6 addressing, CIDR block matching, and advertisement controls direct traffic flows across distributed deployments with granular policy enforcement.",
+      descriptionShort: "BGP peering, IPsec tunnels, and segment policies.",
+      descriptionMedium: "Border gateway protocol with ASN management and autonomous system relationships. Site-to-site VPN linking datacenters through encrypted channels.",
+      aliases: ["net", "routing", "bgp"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Networking",
+      useCases: [
+        "Configure BGP routing and ASN management",
+        "Manage IPsec tunnels and IKE phases",
+        "Configure network connectors and routes",
+        "Manage SRv6 and subnetting",
+        "Define segment connections and policies",
+        "Configure IP prefix sets"
+      ],
+      relatedDomains: ["virtual", "network_security", "dns"],
+      icon: "\u{1F50C}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%233B82F6'%3E%3Cpath d='M16 9v4.66l-3.5 3.51V19h-1v-1.83L8 13.65V9h8m0-6h-2v4h-4V3H8v4H6v6.5l3.5 3.5v5h5v-5l3.5-3.5V7h-2V3z'/%3E%3C/svg%3E",
+      uiCategory: "Networking",
+      primaryResources: [
+        {
+          name: "virtual_network",
+          description: "Virtual network for site connectivity and segmentation",
+          descriptionShort: "Virtual network",
+          tier: "Standard",
+          icon: "\u{1F517}",
+          category: "Networking",
+          supportsLogs: false,
+          supportsMetrics: false,
+          dependencies: { optional: ["network_connector"] },
+          relationshipHints: [
+            "network_connector: Connect to external networks"
+          ]
+        },
+        {
+          name: "network_connector",
+          description: "Network connector for site-to-site or cloud connectivity",
+          descriptionShort: "Network connector",
+          tier: "Advanced",
+          icon: "\u{1F50C}",
+          category: "Networking",
+          supportsLogs: false,
+          supportsMetrics: true,
+          dependencies: { required: ["virtual_network"] },
+          relationshipHints: ["virtual_network: Network to connect"]
+        },
+        {
+          name: "site_mesh_group",
+          description: "Mesh connectivity configuration between multiple sites",
+          descriptionShort: "Site mesh group",
+          tier: "Advanced",
+          icon: "\u{1F578}\uFE0F",
+          category: "Infrastructure",
+          supportsLogs: false,
+          supportsMetrics: true,
+          dependencies: { required: ["site"] },
+          relationshipHints: [
+            "site: Sites to include in mesh connectivity"
           ]
         }
+      ]
+    }
+  ],
+  [
+    "network_security",
+    {
+      name: "network_security",
+      displayName: "Network Security",
+      description: "Perimeter defense through firewall configurations, address translation, and ingress/egress policies. Traffic steering directs packets according to defined criteria including origin, target, and service type. Segment boundaries create workload isolation zones while HTTP intermediaries manage client requests to external destinations. Port mappings employ static and dynamic address pools for flexible translation scenarios across multi-tenant environments.",
+      descriptionShort: "NAT policies, firewalls, and segment connections.",
+      descriptionMedium: "Firewall rules with routing decisions based on source, destination, or protocol. Segmentation isolates workloads while outbound proxies govern access.",
+      aliases: ["netsec", "nfw"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Security",
+      useCases: [
+        "Configure network firewall and ACL policies",
+        "Manage NAT policies and port forwarding",
+        "Configure policy-based routing",
+        "Define network segments and policies",
+        "Configure forward proxy policies"
       ],
-      "icon": "\u{1F310}"
-    },
-    icon: "\u{1F310}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%232563EB'%3E%3Cpath d='M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm-1 17.93c-3.95-.49-7-3.85-7-7.93 0-.62.08-1.21.21-1.79L9 15v1c0 1.1.9 2 2 2v1.93zm6.9-2.54c-.26-.81-1-1.39-1.9-1.39h-1v-3c0-.55-.45-1-1-1H8v-2h2c.55 0 1-.45 1-1V7h2c1.1 0 2-.9 2-2v-.41c2.93 1.19 5 4.06 5 7.41 0 2.08-.8 3.97-2.1 5.39z'/%3E%3C/svg%3E",
-    uiCategory: "DNS",
-    primaryResources: [
-      {
-        name: "dns_zone",
-        description: "Authoritative DNS zone with record management capabilities",
-        descriptionShort: "DNS zone",
-        tier: "Standard",
-        icon: "\u{1F310}",
-        category: "DNS",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { optional: ["dns_load_balancer"] },
-        relationshipHints: ["dns_load_balancer: Geographic or weighted DNS routing"]
-      },
-      {
-        name: "dns_domain",
-        description: "DNS domain delegation and configuration settings",
-        descriptionShort: "DNS domain",
-        tier: "Standard",
-        icon: "\u{1F517}",
-        category: "DNS",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "dns_load_balancer",
-        description: "DNS-based traffic distribution with geographic routing and failover",
-        descriptionShort: "DNS load balancer",
-        tier: "Standard",
-        icon: "\u2696\uFE0F",
-        category: "DNS",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { required: ["dns_zone"] },
-        relationshipHints: ["dns_zone: Parent zone for DNS records"]
-      }
-    ]
-  }],
-  ["managed_kubernetes", {
-    name: "managed_kubernetes",
-    displayName: "Managed Kubernetes",
-    description: "Role-based access controls with cluster-scoped permissions and namespace bindings. Pod security admission levels enforce baseline, restricted, or privileged profiles. Container registry credentials support private image pulls across hybrid deployments. Policy rules define resource verbs, groups, and non-resource URL access patterns.",
-    descriptionShort: "Cluster RBAC, pod security, and container registries.",
-    descriptionMedium: "Kubernetes role bindings and admission policies. Registry integration for EKS, AKS, and GKE workloads.",
-    aliases: ["mk8s", "appstack", "k8s-mgmt"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Infrastructure",
-    useCases: ["Manage XCKS (Managed Kubernetes) cluster RBAC and security", "Configure pod security policies and admission controllers", "Manage container registries for enterprise deployments", "Integrate with external Kubernetes clusters (EKS, AKS, GKE)"],
-    relatedDomains: ["container_services", "sites", "service_mesh"],
-    icon: "\u2699\uFE0F",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2364748B'%3E%3Cpath d='M19.14 12.94c.04-.31.06-.63.06-.94 0-.31-.02-.63-.06-.94l2.03-1.58a.49.49 0 0 0 .12-.61l-1.92-3.32a.488.488 0 0 0-.59-.22l-2.39.96c-.5-.38-1.03-.7-1.62-.94l-.36-2.54a.484.484 0 0 0-.48-.41h-3.84c-.24 0-.43.17-.47.41l-.36 2.54c-.59.24-1.13.57-1.62.94l-2.39-.96c-.22-.08-.47 0-.59.22L2.74 8.87c-.12.21-.08.47.12.61l2.03 1.58c-.04.31-.06.63-.06.94s.02.63.06.94l-2.03 1.58a.49.49 0 0 0-.12.61l1.92 3.32c.12.22.37.29.59.22l2.39-.96c.5.38 1.03.7 1.62.94l.36 2.54c.05.24.24.41.48.41h3.84c.24 0 .44-.17.47-.41l.36-2.54c.59-.24 1.13-.56 1.62-.94l2.39.96c.22.08.47 0 .59-.22l1.92-3.32c.12-.22.07-.47-.12-.61l-2.01-1.58zM12 15.6c-1.98 0-3.6-1.62-3.6-3.6s1.62-3.6 3.6-3.6 3.6 1.62 3.6 3.6-1.62 3.6-3.6 3.6z'/%3E%3C/svg%3E",
-    uiCategory: "Kubernetes",
-    primaryResources: [
-      {
-        name: "mk8s_cluster",
-        description: "Managed Kubernetes cluster configuration",
-        descriptionShort: "MK8s cluster",
-        tier: "Advanced",
-        icon: "\u2638\uFE0F",
-        category: "Container",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { optional: ["k8s_cluster_role"] },
-        relationshipHints: ["k8s_cluster_role: RBAC roles for cluster access"]
-      },
-      {
-        name: "k8s_cluster_role",
-        description: "Kubernetes cluster RBAC role configuration",
-        descriptionShort: "K8s cluster role",
-        tier: "Advanced",
-        icon: "\u{1F464}",
-        category: "Container",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "container_registry",
-        description: "Container image registry for workload images",
-        descriptionShort: "Container registry",
-        tier: "Advanced",
-        icon: "\u{1F4E6}",
-        category: "Container",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["marketplace", {
-    name: "marketplace",
-    displayName: "Marketplace",
-    description: "External connector infrastructure supporting direct, GRE, and encrypted tunnel modes with IKE parameter configuration and dead peer detection intervals. Cloud provider instances for Terraform automation and vendor partnerships. Service catalog entries with per-namespace activation flags, resource quotas, and administrative dashboard tile arrangement for operational workflows.",
-    descriptionShort: "Add-on services, connectors, and TPM policies.",
-    descriptionMedium: "Third-party GRE and IPSec tunnel provisioning with DPD timers. Shared resource allocation across namespaces with tile placement controls.",
-    aliases: ["market", "addons", "extensions"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Platform",
-    useCases: ["Access third-party integrations and add-ons", "Manage marketplace extensions", "Configure Terraform and external integrations", "Manage TPM policies"],
-    relatedDomains: ["bigip", "admin"],
-    icon: "\u{1F3EA}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F97316'%3E%3Cpath d='M18.36 9l.6 3H5.04l.6-3h12.72M20 4H4v2h16V4zm0 3H4l-1 5v2h1v6h10v-6h4v6h2v-6h1v-2l-1-5zM6 18v-4h6v4H6z'/%3E%3C/svg%3E",
-    uiCategory: "Configuration",
-    primaryResources: [
-      {
-        name: "marketplace_item",
-        description: "Marketplace item for service catalog",
-        descriptionShort: "Marketplace item",
-        tier: "Standard",
-        icon: "\u{1F6D2}",
-        category: "Other",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "subscription",
-        description: "Subscription for service entitlements",
-        descriptionShort: "Subscription",
-        tier: "Standard",
-        icon: "\u{1F4B3}",
-        category: "Other",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["network", {
-    name: "network",
-    displayName: "Network",
-    description: "Routing table manipulation via peer state machines and path selection algorithms. Secure conduits between locations using IKE handshakes, cipher suites, and key exchanges. Segment attachments bridge hybrid topologies spanning cloud providers and on-premises infrastructure. SRv6 addressing, CIDR block matching, and advertisement controls direct traffic flows across distributed deployments with granular policy enforcement.",
-    descriptionShort: "BGP peering, IPsec tunnels, and segment policies.",
-    descriptionMedium: "Border gateway protocol with ASN management and autonomous system relationships. Site-to-site VPN linking datacenters through encrypted channels.",
-    aliases: ["net", "routing", "bgp"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Networking",
-    useCases: ["Configure BGP routing and ASN management", "Manage IPsec tunnels and IKE phases", "Configure network connectors and routes", "Manage SRv6 and subnetting", "Define segment connections and policies", "Configure IP prefix sets"],
-    relatedDomains: ["virtual", "network_security", "dns"],
-    icon: "\u{1F50C}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%233B82F6'%3E%3Cpath d='M16 9v4.66l-3.5 3.51V19h-1v-1.83L8 13.65V9h8m0-6h-2v4h-4V3H8v4H6v6.5l3.5 3.5v5h5v-5l3.5-3.5V7h-2V3z'/%3E%3C/svg%3E",
-    uiCategory: "Networking",
-    primaryResources: [
-      {
-        name: "virtual_network",
-        description: "Virtual network for site connectivity and segmentation",
-        descriptionShort: "Virtual network",
-        tier: "Standard",
-        icon: "\u{1F517}",
-        category: "Networking",
-        supportsLogs: false,
-        supportsMetrics: false,
-        dependencies: { optional: ["network_connector"] },
-        relationshipHints: ["network_connector: Connect to external networks"]
-      },
-      {
-        name: "network_connector",
-        description: "Network connector for site-to-site or cloud connectivity",
-        descriptionShort: "Network connector",
-        tier: "Advanced",
-        icon: "\u{1F50C}",
-        category: "Networking",
-        supportsLogs: false,
-        supportsMetrics: true,
-        dependencies: { required: ["virtual_network"] },
-        relationshipHints: ["virtual_network: Network to connect"]
-      },
-      {
-        name: "site_mesh_group",
-        description: "Mesh connectivity configuration between multiple sites",
-        descriptionShort: "Site mesh group",
-        tier: "Advanced",
-        icon: "\u{1F578}\uFE0F",
-        category: "Infrastructure",
-        supportsLogs: false,
-        supportsMetrics: true,
-        dependencies: { required: ["site"] },
-        relationshipHints: ["site: Sites to include in mesh connectivity"]
-      }
-    ]
-  }],
-  ["network_security", {
-    name: "network_security",
-    displayName: "Network Security",
-    description: "Perimeter defense through firewall configurations, address translation, and ingress/egress policies. Traffic steering directs packets according to defined criteria including origin, target, and service type. Segment boundaries create workload isolation zones while HTTP intermediaries manage client requests to external destinations. Port mappings employ static and dynamic address pools for flexible translation scenarios across multi-tenant environments.",
-    descriptionShort: "NAT policies, firewalls, and segment connections.",
-    descriptionMedium: "Firewall rules with routing decisions based on source, destination, or protocol. Segmentation isolates workloads while outbound proxies govern access.",
-    aliases: ["netsec", "nfw"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Security",
-    useCases: ["Configure network firewall and ACL policies", "Manage NAT policies and port forwarding", "Configure policy-based routing", "Define network segments and policies", "Configure forward proxy policies"],
-    relatedDomains: ["waf", "api", "network"],
-    icon: "\u{1F512}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F59E0B'%3E%3Cpath d='M18 8h-1V6c0-2.76-2.24-5-5-5S7 3.24 7 6v2H6c-1.1 0-2 .9-2 2v10c0 1.1.9 2 2 2h12c1.1 0 2-.9 2-2V10c0-1.1-.9-2-2-2zm-6 9c-1.1 0-2-.9-2-2s.9-2 2-2 2 .9 2 2-.9 2-2 2zm3.1-9H8.9V6c0-1.71 1.39-3.1 3.1-3.1 1.71 0 3.1 1.39 3.1 3.1v2z'/%3E%3C/svg%3E",
-    uiCategory: "Security",
-    primaryResources: [
-      {
-        name: "network_policy",
-        description: "Network security policy for traffic filtering",
-        descriptionShort: "Network policy",
-        tier: "Standard",
-        icon: "\u{1F512}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: false
-      },
-      {
-        name: "forward_proxy_policy",
-        description: "Forward proxy policy for outbound traffic control",
-        descriptionShort: "Forward proxy policy",
-        tier: "Advanced",
-        icon: "\u27A1\uFE0F",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true
-      },
-      {
-        name: "network_firewall",
-        description: "Network firewall for layer 3/4 traffic protection",
-        descriptionShort: "Network firewall",
-        tier: "Standard",
-        icon: "\u{1F9F1}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true
-      }
-    ]
-  }],
-  ["nginx_one", {
-    name: "nginx_one",
-    displayName: "Nginx One",
-    description: "Dataplane server registration with health status tracking and location awareness. Service discovery bindings for dynamic upstream resolution. Cloud service gateway integration for hybrid deployments. WAF policy attachment and instance-level security controls.",
-    descriptionShort: "NGINX Plus instances and dataplane servers.",
-    descriptionMedium: "Instance discovery, WAF integration, and service mesh connectivity. Subscription lifecycle and configuration synchronization.",
-    aliases: ["nginx", "nms", "nginx-plus"],
-    complexity: "simple",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Platform",
-    useCases: ["Manage NGINX One platform integrations", "Configure NGINX Plus instances", "Integrate NGINX configuration management"],
-    relatedDomains: ["marketplace"],
-    icon: "\u{1F7E2}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2322C55E'%3E%3Ccircle cx='12' cy='12' r='10'/%3E%3C/svg%3E",
-    uiCategory: "NGINX One",
-    primaryResources: [
-      {
-        name: "nginx_config",
-        description: "NGINX configuration for proxy settings",
-        descriptionShort: "NGINX config",
-        tier: "Advanced",
-        icon: "\u2699\uFE0F",
-        category: "Load Balancing",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { optional: ["nginx_upstream"] },
-        relationshipHints: ["nginx_upstream: Backend server configuration"]
-      },
-      {
-        name: "nginx_upstream",
-        description: "NGINX upstream for backend server pools",
-        descriptionShort: "NGINX upstream",
-        tier: "Advanced",
-        icon: "\u{1F3AF}",
-        category: "Load Balancing",
-        supportsLogs: false,
-        supportsMetrics: true
-      }
-    ]
-  }],
-  ["object_storage", {
-    name: "object_storage",
-    displayName: "Object Storage",
-    description: "Blob management for application component delivery across namespaces. Time-limited download links with cryptographic signing protect asset retrieval. Version-controlled packages organized by operating system type support artifact discovery. Query filtering by name, type, and release number enables programmatic access to integrator libraries and protection modules for mobile deployments.",
-    descriptionShort: "Mobile SDK assets, versioned binaries, and app shield files.",
-    descriptionMedium: "Versioned library distribution for mobile app integrators. Presigned URLs enable secure downloads with OS-specific builds for iOS and Android.",
-    aliases: ["storage", "s3", "buckets"],
-    complexity: "simple",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Platform",
-    useCases: ["Manage object storage services", "Configure stored objects and buckets", "Manage storage policies"],
-    relatedDomains: ["marketplace"],
-    icon: "\u{1F5C4}\uFE0F",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2378716C'%3E%3Cpath d='M20 2H4c-1.1 0-2 .9-2 2v16c0 1.1.9 2 2 2h16c1.1 0 2-.9 2-2V4c0-1.1-.9-2-2-2zM8 20H4v-8h4v8zm6 0h-4v-8h4v8zm6 0h-4v-8h4v8zm0-10H4V4h16v6z'/%3E%3C/svg%3E",
-    uiCategory: "Configuration",
-    primaryResources: [
-      {
-        name: "object_store",
-        description: "Object store for blob storage management",
-        descriptionShort: "Object store",
-        tier: "Standard",
-        icon: "\u{1F4BE}",
-        category: "Storage",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { optional: ["bucket"] },
-        relationshipHints: ["bucket: Storage buckets in this store"]
-      },
-      {
-        name: "bucket",
-        description: "Storage bucket for object storage",
-        descriptionShort: "Bucket",
-        tier: "Standard",
-        icon: "\u{1F4E6}",
-        category: "Storage",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { required: ["object_store"] },
-        relationshipHints: ["object_store: Parent object store"]
-      }
-    ]
-  }],
-  ["observability", {
-    name: "observability",
-    displayName: "Observability",
-    description: "Telemetry systems execute scheduled availability checks from distributed AWS locations worldwide. Response code validation and timing metrics feed into historical trend analysis. DNS resolution accuracy verification ensures name service reliability. Certificate lifecycle tracking generates expiration warnings before outages occur. Regional probe distribution provides geographic coverage insights. Health summaries aggregate results into actionable dashboards with configurable alerting thresholds.",
-    descriptionShort: "Synthetic health checks and DNS resolution validation.",
-    descriptionMedium: "HTTP availability probes with latency measurement. Certificate expiration alerts and global status dashboards for infrastructure health.",
-    aliases: ["obs", "monitoring", "synth"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Operations",
-    useCases: ["Configure synthetic monitoring", "Define monitoring and testing policies", "Manage observability dashboards"],
-    relatedDomains: ["statistics", "support"],
-    icon: "\u{1F4CA}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%233B82F6'%3E%3Cpath d='M5 9.2h3V19H5V9.2zM10.6 5h2.8v14h-2.8V5zm5.6 8H19v6h-2.8v-6z'/%3E%3C/svg%3E",
-    uiCategory: "Observability",
-    primaryResources: [
-      {
-        name: "log_receiver",
-        description: "Log receiver for centralized log collection",
-        descriptionShort: "Log receiver",
-        tier: "Standard",
-        icon: "\u{1F4DD}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "metrics_receiver",
-        description: "Metrics receiver for centralized metrics collection",
-        descriptionShort: "Metrics receiver",
-        tier: "Standard",
-        icon: "\u{1F4CA}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "alert_policy",
-        description: "Alert policy for monitoring and notification",
-        descriptionShort: "Alert policy",
-        tier: "Standard",
-        icon: "\u{1F514}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["rate_limiting", {
-    name: "rate_limiting",
-    displayName: "Rate Limiting",
-    description: "Threshold-based request blocking using sliding window calculations. Burst smoothing algorithms maintain sustained throughput without exceeding defined maximums. Per-connection controls apply granular restrictions by protocol type. Automatic block actions trigger when request counts surpass configured limits within specified intervals.",
-    descriptionShort: "Request throttling, quotas, and policer rules.",
-    descriptionMedium: "Time-based quota enforcement with configurable windows in hours, minutes, or seconds. Protocol-specific controls for traffic shaping.",
-    aliases: ["ratelimit", "throttle", "policer"],
-    complexity: "simple",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Networking",
-    useCases: ["Configure rate limiter policies", "Manage policer configurations", "Control traffic flow and queuing"],
-    relatedDomains: ["virtual", "network_security"],
-    icon: "\u23F1\uFE0F",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F97316'%3E%3Cpath d='M15 1H9v2h6V1zm-4 13h2V8h-2v6zm8.03-6.61 1.42-1.42c-.43-.51-.9-.99-1.41-1.41l-1.42 1.42C16.07 4.74 14.12 4 12 4c-4.97 0-9 4.03-9 9s4.02 9 9 9 9-4.03 9-9c0-2.12-.74-4.07-1.97-5.61zM12 20c-3.87 0-7-3.13-7-7s3.13-7 7-7 7 3.13 7 7-3.13 7-7 7z'/%3E%3C/svg%3E",
-    uiCategory: "Networking",
-    primaryResources: [
-      {
-        name: "rate_limiter",
-        description: "Rate limiter for traffic throttling and protection",
-        descriptionShort: "Rate limiter",
-        tier: "Standard",
-        icon: "\u23F1\uFE0F",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { optional: ["rate_limiter_policy"] },
-        relationshipHints: ["rate_limiter_policy: Detailed rate limiting rules"]
-      },
-      {
-        name: "rate_limiter_policy",
-        description: "Rate limiter policy with detailed throttling rules",
-        descriptionShort: "Rate limiter policy",
-        tier: "Standard",
-        icon: "\u{1F4CB}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true
-      },
-      {
-        name: "rate_limit_threshold",
-        description: "Rate limit threshold configuration for traffic control",
-        descriptionShort: "Rate limit threshold",
-        tier: "Standard",
-        icon: "\u{1F4CA}",
-        category: "Security",
-        supportsLogs: false,
-        supportsMetrics: true
-      }
-    ]
-  }],
-  ["secops_and_incident_response", {
-    name: "secops_and_incident_response",
-    displayName: "Secops And Incident Response",
-    description: "User threat assessment with configurable risk thresholds and mitigation rules. Detection covers high, medium, and low threat levels with corresponding actions like blocking, rate limiting, or alerting. Mitigation policies link to load balancers for real-time enforcement against identified bad actors.",
-    descriptionShort: "Threat detection, user risk scoring, and automated blocking.",
-    descriptionMedium: "Malicious user mitigation with threat level classification. Automated response actions for suspicious behavior patterns.",
-    aliases: ["secops", "incident-response", "mitigation"],
-    complexity: "simple",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Security",
-    useCases: ["Configure automated threat mitigation policies", "Define rules for malicious user detection", "Manage incident response workflows", "Apply blocking or rate limiting to threats"],
-    relatedDomains: ["bot_defense", "waf", "network_security"],
-    icon: "\u{1F6A8}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23DC2626'%3E%3Cpath d='M12 2L4 5v6.09c0 5.05 3.41 9.76 8 10.91 4.59-1.15 8-5.86 8-10.91V5l-8-3zm6 9.09c0 4-2.55 7.7-6 8.83-3.45-1.13-6-4.82-6-8.83V6.31l6-2.25 6 2.25v4.78zM11 7h2v6h-2zm0 8h2v2h-2z'/%3E%3C/svg%3E",
-    uiCategory: "Security",
-    primaryResources: [
-      {
-        name: "mitigation_policy",
-        description: "Mitigation policy for incident response",
-        descriptionShort: "Mitigation policy",
-        tier: "Advanced",
-        icon: "\u{1F6E1}\uFE0F",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: false
-      },
-      {
-        name: "malicious_user_rule",
-        description: "Malicious user rule for threat mitigation",
-        descriptionShort: "Malicious user rule",
-        tier: "Advanced",
-        icon: "\u{1F6A8}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["service_mesh", {
-    name: "service_mesh",
-    displayName: "Service Mesh",
-    description: "NFV service lifecycle and software version tracking. Machine learning-driven classification with security risk assessment and PII detection. Override management for application behavior customization. Sidecar proxy orchestration with automatic mTLS certificate rotation and policy enforcement across distributed workloads.",
-    descriptionShort: "Microservice routing and sidecar configuration.",
-    descriptionMedium: "Application type definitions with discovery and learned schema analysis. Traffic pattern inference for intelligent request handling.",
-    aliases: ["mesh", "svc-mesh"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Infrastructure",
-    useCases: ["Configure service mesh connectivity", "Manage endpoint discovery and routing", "Configure NFV services", "Define application settings and types"],
-    relatedDomains: ["managed_kubernetes", "container_services", "virtual"],
-    icon: "\u{1F578}\uFE0F",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23A855F7'%3E%3Cpath d='M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm-1 17.93c-3.95-.49-7-3.85-7-7.93 0-.62.08-1.21.21-1.79L9 15v1c0 1.1.9 2 2 2v1.93zm6.9-2.54c-.26-.81-1-1.39-1.9-1.39h-1v-3c0-.55-.45-1-1-1H8v-2h2c.55 0 1-.45 1-1V7h2c1.1 0 2-.9 2-2v-.41c2.93 1.19 5 4.06 5 7.41 0 2.08-.8 3.97-2.1 5.39z'/%3E%3C/svg%3E",
-    uiCategory: "Service Mesh",
-    primaryResources: [
-      {
-        name: "endpoint",
-        description: "Service mesh endpoint for traffic routing",
-        descriptionShort: "Endpoint",
-        tier: "Advanced",
-        icon: "\u{1F3AF}",
-        category: "Networking",
-        supportsLogs: true,
-        supportsMetrics: true
-      },
-      {
-        name: "origin_pool",
-        description: "Backend server group for load balancer traffic distribution",
-        descriptionShort: "Origin pool",
-        tier: "Standard",
-        icon: "\u{1F3AF}",
-        category: "Load Balancing",
-        supportsLogs: false,
-        supportsMetrics: true,
-        dependencies: { optional: ["healthcheck"] },
-        relationshipHints: ["healthcheck: Monitor origin server health"]
-      },
-      {
-        name: "service_discovery",
-        description: "Service discovery configuration for dynamic endpoints",
-        descriptionShort: "Service discovery",
-        tier: "Advanced",
-        icon: "\u{1F50D}",
-        category: "Networking",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["shape", {
-    name: "shape",
-    displayName: "Shape",
-    description: "Bot infrastructure policies with deployment tracking and subscription management. SafeAP protection against credential stuffing and account takeover. Mobile application shielding through SDK integration with OS-specific configurations. Real-time threat intelligence updates and automated response actions based on risk scoring and traffic patterns.",
-    descriptionShort: "Bot defense, fraud prevention, and client integrity.",
-    descriptionMedium: "Threat recognition with behavioral analysis and device fingerprinting. Mobile SDK integration for application shielding.",
-    aliases: ["shape-sec", "safeap"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Security",
-    useCases: ["Configure Shape Security policies", "Manage bot and threat prevention", "Configure SafeAP policies", "Enable threat recognition"],
-    relatedDomains: ["bot_defense", "waf"],
-    icon: "\u{1F3AD}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23A855F7'%3E%3Cpath d='M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm0 18c-4.41 0-8-3.59-8-8s3.59-8 8-8 8 3.59 8 8-3.59 8-8 8zm-5-9c.83 0 1.5-.67 1.5-1.5S7.83 8 7 8s-1.5.67-1.5 1.5S6.17 11 7 11zm10 0c.83 0 1.5-.67 1.5-1.5S17.83 8 17 8s-1.5.67-1.5 1.5.67 1.5 1.5 1.5zM12 17.5c2.33 0 4.31-1.46 5.11-3.5H6.89c.8 2.04 2.78 3.5 5.11 3.5z'/%3E%3C/svg%3E",
-    uiCategory: "Client-Side Defense",
-    primaryResources: [
-      {
-        name: "shape_app_firewall",
-        description: "Shape application firewall for advanced protection",
-        descriptionShort: "Shape WAF",
-        tier: "Advanced",
-        icon: "\u{1F6E1}\uFE0F",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true
-      },
-      {
-        name: "shape_recognizer",
-        description: "Shape recognizer for traffic pattern analysis",
-        descriptionShort: "Shape recognizer",
-        tier: "Advanced",
-        icon: "\u{1F50D}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true
-      }
-    ]
-  }],
-  ["sites", {
-    name: "sites",
-    displayName: "Sites",
-    description: "Multi-cloud node provisioning spanning major public cloud environments including TGW, VNet, and VPC architectures. VPN tunnel configuration handles secure connectivity while IP prefix management controls address allocation. Customer edge deployments support external container orchestration platforms. Geographic distribution with resource sharing enables consistent policy enforcement across deployment points.",
-    descriptionShort: "Cloud and edge node deployments.",
-    descriptionMedium: "AWS, Azure, GCP VPC integration with transit gateways. Label-based selection for policy application across regions.",
-    aliases: ["site", "deployment"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Infrastructure",
-    useCases: ["Deploy F5 XC across cloud providers (AWS, Azure, GCP)", "Manage XCKS (Managed Kubernetes) site deployments (formerly AppStack)", "Deploy Secure Mesh sites for networking-focused edge deployments", "Integrate external Kubernetes clusters as Customer Edge", "Configure AWS VPC, Azure VNet, and GCP VPC sites", "Manage virtual sites and site policies"],
-    relatedDomains: ["cloud_infrastructure", "customer_edge", "managed_kubernetes"],
-    cliMetadata: {
-      "quick_start": {
-        "command": "curl $F5XC_API_URL/api/config/namespaces/default/sites -H 'Authorization: APIToken $F5XC_API_TOKEN'",
-        "description": "List all configured sites in default namespace",
-        "expected_output": "JSON array of site objects with deployment status"
-      },
-      "common_workflows": [
+      relatedDomains: ["waf", "api", "network"],
+      icon: "\u{1F512}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F59E0B'%3E%3Cpath d='M18 8h-1V6c0-2.76-2.24-5-5-5S7 3.24 7 6v2H6c-1.1 0-2 .9-2 2v10c0 1.1.9 2 2 2h12c1.1 0 2-.9 2-2V10c0-1.1-.9-2-2-2zm-6 9c-1.1 0-2-.9-2-2s.9-2 2-2 2 .9 2 2-.9 2-2 2zm3.1-9H8.9V6c0-1.71 1.39-3.1 3.1-3.1 1.71 0 3.1 1.39 3.1 3.1v2z'/%3E%3C/svg%3E",
+      uiCategory: "Security",
+      primaryResources: [
+        {
+          name: "network_policy",
+          description: "Network security policy for traffic filtering",
+          descriptionShort: "Network policy",
+          tier: "Standard",
+          icon: "\u{1F512}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: false
+        },
+        {
+          name: "forward_proxy_policy",
+          description: "Forward proxy policy for outbound traffic control",
+          descriptionShort: "Forward proxy policy",
+          tier: "Advanced",
+          icon: "\u27A1\uFE0F",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true
+        },
+        {
+          name: "network_firewall",
+          description: "Network firewall for layer 3/4 traffic protection",
+          descriptionShort: "Network firewall",
+          tier: "Standard",
+          icon: "\u{1F9F1}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true
+        }
+      ]
+    }
+  ],
+  [
+    "nginx_one",
+    {
+      name: "nginx_one",
+      displayName: "Nginx One",
+      description: "Dataplane server registration with health status tracking and location awareness. Service discovery bindings for dynamic upstream resolution. Cloud service gateway integration for hybrid deployments. WAF policy attachment and instance-level security controls.",
+      descriptionShort: "NGINX Plus instances and dataplane servers.",
+      descriptionMedium: "Instance discovery, WAF integration, and service mesh connectivity. Subscription lifecycle and configuration synchronization.",
+      aliases: ["nginx", "nms", "nginx-plus"],
+      complexity: "simple",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Platform",
+      useCases: [
+        "Manage NGINX One platform integrations",
+        "Configure NGINX Plus instances",
+        "Integrate NGINX configuration management"
+      ],
+      relatedDomains: ["marketplace"],
+      icon: "\u{1F7E2}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2322C55E'%3E%3Ccircle cx='12' cy='12' r='10'/%3E%3C/svg%3E",
+      uiCategory: "NGINX One",
+      primaryResources: [
+        {
+          name: "nginx_config",
+          description: "NGINX configuration for proxy settings",
+          descriptionShort: "NGINX config",
+          tier: "Advanced",
+          icon: "\u2699\uFE0F",
+          category: "Load Balancing",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { optional: ["nginx_upstream"] },
+          relationshipHints: [
+            "nginx_upstream: Backend server configuration"
+          ]
+        },
         {
-          "name": "Deploy AWS Cloud Site",
-          "description": "Deploy F5 XC in AWS for traffic management",
-          "steps": [
-            {
-              "step": 1,
-              "command": "curl -X POST $F5XC_API_URL/api/config/namespaces/default/cloud_credentials -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...aws_credentials...}'",
-              "description": "Create cloud credentials for AWS access"
-            },
-            {
-              "step": 2,
-              "command": "curl -X POST $F5XC_API_URL/api/config/namespaces/default/sites -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...site_config...}'",
-              "description": "Create site definition for AWS deployment"
-            }
-          ],
-          "prerequisites": [
-            "AWS account configured",
-            "Cloud credentials created",
-            "VPC and security groups prepared"
-          ],
-          "expected_outcome": "Site deployed in AWS, nodes connected and healthy"
+          name: "nginx_upstream",
+          description: "NGINX upstream for backend server pools",
+          descriptionShort: "NGINX upstream",
+          tier: "Advanced",
+          icon: "\u{1F3AF}",
+          category: "Load Balancing",
+          supportsLogs: false,
+          supportsMetrics: true
         }
+      ]
+    }
+  ],
+  [
+    "object_storage",
+    {
+      name: "object_storage",
+      displayName: "Object Storage",
+      description: "Blob management for application component delivery across namespaces. Time-limited download links with cryptographic signing protect asset retrieval. Version-controlled packages organized by operating system type support artifact discovery. Query filtering by name, type, and release number enables programmatic access to integrator libraries and protection modules for mobile deployments.",
+      descriptionShort: "Mobile SDK assets, versioned binaries, and app shield files.",
+      descriptionMedium: "Versioned library distribution for mobile app integrators. Presigned URLs enable secure downloads with OS-specific builds for iOS and Android.",
+      aliases: ["storage", "s3", "buckets"],
+      complexity: "simple",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Platform",
+      useCases: [
+        "Manage object storage services",
+        "Configure stored objects and buckets",
+        "Manage storage policies"
       ],
-      "troubleshooting": [
-        {
-          "problem": "Site deployment fails",
-          "symptoms": [
-            "Status: Error",
-            "Nodes not coming online",
-            "Connectivity issues"
-          ],
-          "diagnosis_commands": [
-            "curl $F5XC_API_URL/api/config/namespaces/default/sites/{site} -H 'Authorization: APIToken $F5XC_API_TOKEN'",
-            "Check site events and node status"
-          ],
-          "solutions": [
-            "Verify cloud credentials have required permissions",
-            "Check VPC and security group configuration",
-            "Review site logs for deployment errors",
-            "Ensure sufficient cloud resources available"
+      relatedDomains: ["marketplace"],
+      icon: "\u{1F5C4}\uFE0F",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2378716C'%3E%3Cpath d='M20 2H4c-1.1 0-2 .9-2 2v16c0 1.1.9 2 2 2h16c1.1 0 2-.9 2-2V4c0-1.1-.9-2-2-2zM8 20H4v-8h4v8zm6 0h-4v-8h4v8zm6 0h-4v-8h4v8zm0-10H4V4h16v6z'/%3E%3C/svg%3E",
+      uiCategory: "Configuration",
+      primaryResources: [
+        {
+          name: "object_store",
+          description: "Object store for blob storage management",
+          descriptionShort: "Object store",
+          tier: "Standard",
+          icon: "\u{1F4BE}",
+          category: "Storage",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { optional: ["bucket"] },
+          relationshipHints: [
+            "bucket: Storage buckets in this store"
           ]
+        },
+        {
+          name: "bucket",
+          description: "Storage bucket for object storage",
+          descriptionShort: "Bucket",
+          tier: "Standard",
+          icon: "\u{1F4E6}",
+          category: "Storage",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { required: ["object_store"] },
+          relationshipHints: ["object_store: Parent object store"]
         }
+      ]
+    }
+  ],
+  [
+    "observability",
+    {
+      name: "observability",
+      displayName: "Observability",
+      description: "Telemetry systems execute scheduled availability checks from distributed AWS locations worldwide. Response code validation and timing metrics feed into historical trend analysis. DNS resolution accuracy verification ensures name service reliability. Certificate lifecycle tracking generates expiration warnings before outages occur. Regional probe distribution provides geographic coverage insights. Health summaries aggregate results into actionable dashboards with configurable alerting thresholds.",
+      descriptionShort: "Synthetic health checks and DNS resolution validation.",
+      descriptionMedium: "HTTP availability probes with latency measurement. Certificate expiration alerts and global status dashboards for infrastructure health.",
+      aliases: ["obs", "monitoring", "synth"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Operations",
+      useCases: [
+        "Configure synthetic monitoring",
+        "Define monitoring and testing policies",
+        "Manage observability dashboards"
       ],
-      "icon": "\u{1F30D}"
-    },
-    icon: "\u{1F30D}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2310B981'%3E%3Cpath d='M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm-1 17.93c-3.95-.49-7-3.85-7-7.93 0-.62.08-1.21.21-1.79L9 15v1c0 1.1.9 2 2 2v1.93zm6.9-2.54c-.26-.81-1-1.39-1.9-1.39h-1v-3c0-.55-.45-1-1-1H8v-2h2c.55 0 1-.45 1-1V7h2c1.1 0 2-.9 2-2v-.41c2.93 1.19 5 4.06 5 7.41 0 2.08-.8 3.97-2.1 5.39z'/%3E%3C/svg%3E",
-    uiCategory: "Sites",
-    primaryResources: [
-      {
-        name: "site",
-        description: "Physical or cloud deployment location for edge services",
-        descriptionShort: "Site",
-        tier: "Standard",
-        icon: "\u{1F3E2}",
-        category: "Infrastructure",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { optional: ["virtual_site"] },
-        relationshipHints: ["virtual_site: Logical grouping of physical sites"]
-      },
-      {
-        name: "virtual_site",
-        description: "Logical grouping of sites using label selectors",
-        descriptionShort: "Virtual site",
-        tier: "Standard",
-        icon: "\u{1F3F7}\uFE0F",
-        category: "Infrastructure",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "site_mesh_group",
-        description: "Mesh connectivity configuration between multiple sites",
-        descriptionShort: "Site mesh group",
-        tier: "Advanced",
-        icon: "\u{1F578}\uFE0F",
-        category: "Infrastructure",
-        supportsLogs: false,
-        supportsMetrics: true,
-        dependencies: { required: ["site"] },
-        relationshipHints: ["site: Sites to include in mesh connectivity"]
-      }
-    ]
-  }],
-  ["statistics", {
-    name: "statistics",
-    displayName: "Statistics",
-    description: "Alert policies with custom matchers, label groupings, and notification parameters. Log receivers for centralized collection with confirmation and verification workflows. Flow analytics, historical trend data, and namespace-scoped dashboards. Topology discovery and site-level health indicators for operational visibility.",
-    descriptionShort: "Alerts, logs, flow analytics, and reporting.",
-    descriptionMedium: "Alerting policies with receiver integrations. Log aggregation, topology views, and site health tracking.",
-    aliases: ["stats", "metrics", "logs"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Operations",
-    useCases: ["Access flow statistics and analytics", "Manage alerts and alerting policies", "View logs and log receivers", "Generate reports and graphs", "Track topology and service discovery", "Monitor status at sites"],
-    relatedDomains: ["observability", "support"],
-    icon: "\u{1F4C8}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2310B981'%3E%3Cpath d='M3.5 18.49l6-6.01 4 4L22 6.92l-1.41-1.41-7.09 7.97-4-4L2 16.99z'/%3E%3C/svg%3E",
-    uiCategory: "Observability",
-    primaryResources: [
-      {
-        name: "dashboard",
-        description: "Dashboard for metrics visualization",
-        descriptionShort: "Dashboard",
-        tier: "Standard",
-        icon: "\u{1F4CA}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: false,
-        dependencies: { optional: ["saved_query"] },
-        relationshipHints: ["saved_query: Queries displayed on dashboard"]
-      },
-      {
-        name: "saved_query",
-        description: "Saved query for metrics and log analysis",
-        descriptionShort: "Saved query",
-        tier: "Standard",
-        icon: "\u{1F50D}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["support", {
-    name: "support",
-    displayName: "Support",
-    description: "Case management workflows including submission, commentary, and closure paths. Urgency adjustments and routing for time-sensitive incidents. Tax exemption verification requests. Site-level tcpdump operations\u2014initiation, enumeration, and termination\u2014for low-level network troubleshooting and protocol analysis.",
-    descriptionShort: "Tickets, escalations, and network diagnostics.",
-    descriptionMedium: "Issue lifecycle with comments, severity changes, and resolution tracking. Packet capture for connection analysis.",
-    aliases: ["tickets", "help-desk"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Operations",
-    useCases: ["Submit and manage support tickets", "Track customer support requests", "Access operational support documentation"],
-    relatedDomains: ["statistics", "observability"],
-    icon: "\u{1F3AB}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2314B8A6'%3E%3Cpath d='M22 10V6c0-1.11-.9-2-2-2H4c-1.1 0-1.99.89-1.99 2v4c1.1 0 1.99.9 1.99 2s-.89 2-2 2v4c0 1.1.9 2 2 2h16c1.1 0 2-.9 2-2v-4c-1.1 0-2-.9-2-2s.9-2 2-2zm-2-1.46c-1.19.69-2 1.99-2 3.46s.81 2.77 2 3.46V18H4v-2.54c1.19-.69 2-1.99 2-3.46 0-1.48-.8-2.77-1.99-3.46L4 6h16v2.54z'/%3E%3C/svg%3E",
-    uiCategory: "Configuration",
-    primaryResources: [
-      {
-        name: "support_case",
-        description: "Support case for issue tracking and resolution",
-        descriptionShort: "Support case",
-        tier: "Standard",
-        icon: "\u{1F3AB}",
-        category: "Other",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "alert",
-        description: "System alert for operational notifications",
-        descriptionShort: "Alert",
-        tier: "Standard",
-        icon: "\u{1F514}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "audit_log",
-        description: "Audit log for compliance and security tracking",
-        descriptionShort: "Audit log",
-        tier: "Standard",
-        icon: "\u{1F4DD}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["telemetry_and_insights", {
-    name: "telemetry_and_insights",
-    displayName: "Telemetry And Insights",
-    description: "F5 Distributed Cloud Telemetry And Insights API specifications",
-    descriptionShort: "Telemetry And Insights API",
-    descriptionMedium: "F5 Distributed Cloud Telemetry And Insights API specifications",
-    aliases: ["telemetry", "ti"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Operations",
-    useCases: ["Collect and analyze telemetry data", "Generate actionable insights from metrics", "Configure telemetry collection policies"],
-    relatedDomains: ["observability", "statistics"],
-    icon: "\u{1F4C9}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F59E0B'%3E%3Cpath d='M19 3H5c-1.1 0-2 .9-2 2v14c0 1.1.9 2 2 2h14c1.1 0 2-.9 2-2V5c0-1.1-.9-2-2-2zM9 17H7v-7h2v7zm4 0h-2V7h2v10zm4 0h-2v-4h2v4z'/%3E%3C/svg%3E",
-    uiCategory: "Observability",
-    primaryResources: [
-      {
-        name: "telemetry_receiver",
-        description: "Telemetry receiver for data collection",
-        descriptionShort: "Telemetry receiver",
-        tier: "Standard",
-        icon: "\u{1F4E1}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "insight_query",
-        description: "Insight query for analytics",
-        descriptionShort: "Insight query",
-        tier: "Standard",
-        icon: "\u{1F50D}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["tenant_and_identity", {
-    name: "tenant_and_identity",
-    displayName: "Tenant And Identity",
-    description: "Profile images and display customizations for personalized dashboard experiences. Federated authentication toggles controlling SSO behavior across organizational boundaries. Session lifecycle tracking with real-time visibility into active connections and timeout policies. Support ticket workflows including attachment handling and closure procedures for managed client escalations. Initial access provisioning sequences for new user onboarding.",
-    descriptionShort: "User profiles, sessions, and OTP settings.",
-    descriptionMedium: "Account view configurations and admin alert channels. One-time password resets, provisioning flows, and active connection monitoring.",
-    aliases: ["tenant-identity", "idm", "user-settings"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Platform",
-    useCases: ["Manage user profiles and notification preferences", "Configure session controls and OTP settings", "Handle identity management operations", "Process initial user access requests"],
-    relatedDomains: ["users", "authentication", "system"],
-    icon: "\u{1FAAA}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2306B6D4'%3E%3Cpath d='M20 4H4c-1.1 0-2 .9-2 2v12c0 1.1.9 2 2 2h16c1.1 0 2-.9 2-2V6c0-1.1-.9-2-2-2zm-9 3.5c1.38 0 2.5 1.12 2.5 2.5S12.38 12.5 11 12.5 8.5 11.38 8.5 10s1.12-2.5 2.5-2.5zm5 10.5H6v-1.25c0-1.66 3.33-2.5 5-2.5s5 .84 5 2.5V18zm2-4h-4v-2h4v2zm0-4h-4V8h4v2z'/%3E%3C/svg%3E",
-    uiCategory: "Identity & Access",
-    primaryResources: [
-      {
-        name: "user_profile",
-        description: "User profile with personal settings",
-        descriptionShort: "User profile",
-        tier: "Standard",
-        icon: "\u{1F464}",
-        category: "Identity",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "session",
-        description: "User session for authentication state",
-        descriptionShort: "Session",
-        tier: "Standard",
-        icon: "\u{1F511}",
-        category: "Identity",
-        supportsLogs: true,
-        supportsMetrics: false
-      },
-      {
-        name: "otp_policy",
-        description: "OTP policy for multi-factor authentication",
-        descriptionShort: "OTP policy",
-        tier: "Standard",
-        icon: "\u{1F510}",
-        category: "Identity",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["threat_campaign", {
-    name: "threat_campaign",
-    displayName: "Threat Campaign",
-    description: "F5 Distributed Cloud Threat Campaign API specifications",
-    descriptionShort: "Threat Campaign API",
-    descriptionMedium: "F5 Distributed Cloud Threat Campaign API specifications",
-    aliases: ["threats", "campaigns", "threat-intel"],
-    complexity: "moderate",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Security",
-    useCases: ["Track and analyze threat campaigns", "Monitor active threats and attack patterns", "Configure threat intelligence integration"],
-    relatedDomains: ["bot_defense", "ddos"],
-    icon: "\u26A0\uFE0F",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23FBBF24'%3E%3Cpath d='M1 21h22L12 2 1 21zm12-3h-2v-2h2v2zm0-4h-2v-4h2v4z'/%3E%3C/svg%3E",
-    uiCategory: "Security",
-    primaryResources: [
-      {
-        name: "threat_campaign_policy",
-        description: "Threat campaign detection and mitigation policy",
-        descriptionShort: "Threat campaign policy",
-        tier: "Advanced",
-        icon: "\u{1F3AF}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true
-      }
-    ]
-  }],
-  ["users", {
-    name: "users",
-    displayName: "Users",
-    description: "Token lifecycle governs automated site onboarding through cloud-init integration with configurable validity periods. Explicit category keys establish permitted classification hierarchies enforced across deployments. Inferred attributes attach automatically based on object characteristics and placement context. Namespace-scoped operations handle credential generation, revocation, and state transitions for streamlined provisioning workflows.",
-    descriptionShort: "Account tokens, labels, and cloud-init config.",
-    descriptionMedium: "Site enrollment credentials with automatic expiration. Taxonomy keys define allowed categorization while auto-derived tags apply dynamically.",
-    aliases: ["user", "accounts", "iam"],
-    complexity: "simple",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Platform",
-    useCases: ["Manage user accounts and tokens", "Configure user identification", "Manage user settings and preferences", "Configure implicit and known labels"],
-    relatedDomains: ["system", "admin"],
-    icon: "\u{1F465}",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%236366F1'%3E%3Cpath d='M16 11c1.66 0 2.99-1.34 2.99-3S17.66 5 16 5c-1.66 0-3 1.34-3 3s1.34 3 3 3zm-8 0c1.66 0 2.99-1.34 2.99-3S9.66 5 8 5C6.34 5 5 6.34 5 8s1.34 3 3 3zm0 2c-2.33 0-7 1.17-7 3.5V19h14v-2.5c0-2.33-4.67-3.5-7-3.5zm8 0c-.29 0-.62.02-.97.05 1.16.84 1.97 1.97 1.97 3.45V19h6v-2.5c0-2.33-4.67-3.5-7-3.5z'/%3E%3C/svg%3E",
-    uiCategory: "Identity & Access",
-    primaryResources: [
-      {
-        name: "user",
-        description: "User account for platform access",
-        descriptionShort: "User",
-        tier: "Standard",
-        icon: "\u{1F464}",
-        category: "Identity",
-        supportsLogs: false,
-        supportsMetrics: false,
-        dependencies: { optional: ["user_role"] },
-        relationshipHints: ["user_role: Role assignment for user permissions"]
-      },
-      {
-        name: "user_role",
-        description: "User role for permission management",
-        descriptionShort: "User role",
-        tier: "Standard",
-        icon: "\u{1F454}",
-        category: "Identity",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "namespace_role",
-        description: "Namespace-scoped role for fine-grained permissions",
-        descriptionShort: "Namespace role",
-        tier: "Standard",
-        icon: "\u{1F4C1}",
-        category: "Identity",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["virtual", {
-    name: "virtual",
-    displayName: "Virtual",
-    description: "Traffic distribution across origin pools with weighted routing and session persistence. Malware protection integration, threat campaign blocking, and request inspection. Proxy forwarding policies, server monitoring, and latency-based routing decisions. Service policy sets for fine-grained access control and rate limiter policies for traffic shaping.",
-    descriptionShort: "HTTP, TCP, UDP load balancers and origin pools.",
-    descriptionMedium: "Layer 7 routing rules with health checks and failover. Rate limiting, geo-routing, and service policy enforcement.",
-    aliases: ["lb", "loadbalancer", "vhost"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Networking",
-    useCases: ["Configure HTTP/TCP/UDP load balancers", "Manage origin pools and services", "Configure virtual hosts and routing", "Define rate limiter and service policies", "Manage geo-location-based routing", "Configure proxy and forwarding policies", "Manage malware protection and threat campaigns", "Configure health checks and endpoint monitoring"],
-    relatedDomains: ["dns", "service_policy", "network"],
-    cliMetadata: {
-      "quick_start": {
-        "command": "curl $F5XC_API_URL/api/config/namespaces/default/http_loadbalancers -H 'Authorization: APIToken $F5XC_API_TOKEN'",
-        "description": "List all HTTP load balancers in default namespace",
-        "expected_output": "JSON array of load balancer objects with status"
-      },
-      "common_workflows": [
+      relatedDomains: ["statistics", "support"],
+      icon: "\u{1F4CA}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%233B82F6'%3E%3Cpath d='M5 9.2h3V19H5V9.2zM10.6 5h2.8v14h-2.8V5zm5.6 8H19v6h-2.8v-6z'/%3E%3C/svg%3E",
+      uiCategory: "Observability",
+      primaryResources: [
+        {
+          name: "log_receiver",
+          description: "Log receiver for centralized log collection",
+          descriptionShort: "Log receiver",
+          tier: "Standard",
+          icon: "\u{1F4DD}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "metrics_receiver",
+          description: "Metrics receiver for centralized metrics collection",
+          descriptionShort: "Metrics receiver",
+          tier: "Standard",
+          icon: "\u{1F4CA}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "alert_policy",
+          description: "Alert policy for monitoring and notification",
+          descriptionShort: "Alert policy",
+          tier: "Standard",
+          icon: "\u{1F514}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "rate_limiting",
+    {
+      name: "rate_limiting",
+      displayName: "Rate Limiting",
+      description: "Threshold-based request blocking using sliding window calculations. Burst smoothing algorithms maintain sustained throughput without exceeding defined maximums. Per-connection controls apply granular restrictions by protocol type. Automatic block actions trigger when request counts surpass configured limits within specified intervals.",
+      descriptionShort: "Request throttling, quotas, and policer rules.",
+      descriptionMedium: "Time-based quota enforcement with configurable windows in hours, minutes, or seconds. Protocol-specific controls for traffic shaping.",
+      aliases: ["ratelimit", "throttle", "policer"],
+      complexity: "simple",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Networking",
+      useCases: [
+        "Configure rate limiter policies",
+        "Manage policer configurations",
+        "Control traffic flow and queuing"
+      ],
+      relatedDomains: ["virtual", "network_security"],
+      icon: "\u23F1\uFE0F",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F97316'%3E%3Cpath d='M15 1H9v2h6V1zm-4 13h2V8h-2v6zm8.03-6.61 1.42-1.42c-.43-.51-.9-.99-1.41-1.41l-1.42 1.42C16.07 4.74 14.12 4 12 4c-4.97 0-9 4.03-9 9s4.02 9 9 9 9-4.03 9-9c0-2.12-.74-4.07-1.97-5.61zM12 20c-3.87 0-7-3.13-7-7s3.13-7 7-7 7 3.13 7 7-3.13 7-7 7z'/%3E%3C/svg%3E",
+      uiCategory: "Networking",
+      primaryResources: [
+        {
+          name: "rate_limiter",
+          description: "Rate limiter for traffic throttling and protection",
+          descriptionShort: "Rate limiter",
+          tier: "Standard",
+          icon: "\u23F1\uFE0F",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { optional: ["rate_limiter_policy"] },
+          relationshipHints: [
+            "rate_limiter_policy: Detailed rate limiting rules"
+          ]
+        },
         {
-          "name": "Create HTTP Load Balancer",
-          "description": "Deploy basic HTTP load balancer with origin pool backend",
-          "steps": [
-            {
-              "step": 1,
-              "command": "curl -X POST $F5XC_API_URL/api/config/namespaces/default/origin_pools -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...pool_config...}'",
-              "description": "Create backend origin pool with target endpoints"
-            },
-            {
-              "step": 2,
-              "command": "curl -X POST $F5XC_API_URL/api/config/namespaces/default/http_loadbalancers -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...lb_config...}'",
-              "description": "Create HTTP load balancer pointing to origin pool"
-            }
-          ],
-          "prerequisites": [
-            "Active namespace",
-            "Origin pool targets reachable",
-            "DNS domain configured"
-          ],
-          "expected_outcome": "Load balancer in Active status, traffic routed to origins"
+          name: "rate_limiter_policy",
+          description: "Rate limiter policy with detailed throttling rules",
+          descriptionShort: "Rate limiter policy",
+          tier: "Standard",
+          icon: "\u{1F4CB}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true
+        },
+        {
+          name: "rate_limit_threshold",
+          description: "Rate limit threshold configuration for traffic control",
+          descriptionShort: "Rate limit threshold",
+          tier: "Standard",
+          icon: "\u{1F4CA}",
+          category: "Security",
+          supportsLogs: false,
+          supportsMetrics: true
+        }
+      ]
+    }
+  ],
+  [
+    "secops_and_incident_response",
+    {
+      name: "secops_and_incident_response",
+      displayName: "Secops And Incident Response",
+      description: "User threat assessment with configurable risk thresholds and mitigation rules. Detection covers high, medium, and low threat levels with corresponding actions like blocking, rate limiting, or alerting. Mitigation policies link to load balancers for real-time enforcement against identified bad actors.",
+      descriptionShort: "Threat detection, user risk scoring, and automated blocking.",
+      descriptionMedium: "Malicious user mitigation with threat level classification. Automated response actions for suspicious behavior patterns.",
+      aliases: ["secops", "incident-response", "mitigation"],
+      complexity: "simple",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Security",
+      useCases: [
+        "Configure automated threat mitigation policies",
+        "Define rules for malicious user detection",
+        "Manage incident response workflows",
+        "Apply blocking or rate limiting to threats"
+      ],
+      relatedDomains: ["bot_defense", "waf", "network_security"],
+      icon: "\u{1F6A8}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23DC2626'%3E%3Cpath d='M12 2L4 5v6.09c0 5.05 3.41 9.76 8 10.91 4.59-1.15 8-5.86 8-10.91V5l-8-3zm6 9.09c0 4-2.55 7.7-6 8.83-3.45-1.13-6-4.82-6-8.83V6.31l6-2.25 6 2.25v4.78zM11 7h2v6h-2zm0 8h2v2h-2z'/%3E%3C/svg%3E",
+      uiCategory: "Security",
+      primaryResources: [
+        {
+          name: "mitigation_policy",
+          description: "Mitigation policy for incident response",
+          descriptionShort: "Mitigation policy",
+          tier: "Advanced",
+          icon: "\u{1F6E1}\uFE0F",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: false
+        },
+        {
+          name: "malicious_user_rule",
+          description: "Malicious user rule for threat mitigation",
+          descriptionShort: "Malicious user rule",
+          tier: "Advanced",
+          icon: "\u{1F6A8}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: false
         }
+      ]
+    }
+  ],
+  [
+    "service_mesh",
+    {
+      name: "service_mesh",
+      displayName: "Service Mesh",
+      description: "NFV service lifecycle and software version tracking. Machine learning-driven classification with security risk assessment and PII detection. Override management for application behavior customization. Sidecar proxy orchestration with automatic mTLS certificate rotation and policy enforcement across distributed workloads.",
+      descriptionShort: "Microservice routing and sidecar configuration.",
+      descriptionMedium: "Application type definitions with discovery and learned schema analysis. Traffic pattern inference for intelligent request handling.",
+      aliases: ["mesh", "svc-mesh"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Infrastructure",
+      useCases: [
+        "Configure service mesh connectivity",
+        "Manage endpoint discovery and routing",
+        "Configure NFV services",
+        "Define application settings and types"
       ],
-      "troubleshooting": [
-        {
-          "problem": "Load balancer shows Configuration Error status",
-          "symptoms": [
-            "Status: Configuration Error",
-            "No traffic routing",
-            "Requests timeout"
-          ],
-          "diagnosis_commands": [
-            "curl $F5XC_API_URL/api/config/namespaces/default/http_loadbalancers/{name} -H 'Authorization: APIToken $F5XC_API_TOKEN'",
-            "Check origin_pool status and endpoint connectivity"
-          ],
-          "solutions": [
-            "Verify origin pool targets are reachable from edge",
-            "Check DNS configuration and domain propagation",
-            "Validate certificate configuration if using HTTPS",
-            "Review security policies not blocking traffic"
+      relatedDomains: [
+        "managed_kubernetes",
+        "container_services",
+        "virtual"
+      ],
+      icon: "\u{1F578}\uFE0F",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23A855F7'%3E%3Cpath d='M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm-1 17.93c-3.95-.49-7-3.85-7-7.93 0-.62.08-1.21.21-1.79L9 15v1c0 1.1.9 2 2 2v1.93zm6.9-2.54c-.26-.81-1-1.39-1.9-1.39h-1v-3c0-.55-.45-1-1-1H8v-2h2c.55 0 1-.45 1-1V7h2c1.1 0 2-.9 2-2v-.41c2.93 1.19 5 4.06 5 7.41 0 2.08-.8 3.97-2.1 5.39z'/%3E%3C/svg%3E",
+      uiCategory: "Service Mesh",
+      primaryResources: [
+        {
+          name: "endpoint",
+          description: "Service mesh endpoint for traffic routing",
+          descriptionShort: "Endpoint",
+          tier: "Advanced",
+          icon: "\u{1F3AF}",
+          category: "Networking",
+          supportsLogs: true,
+          supportsMetrics: true
+        },
+        {
+          name: "origin_pool",
+          description: "Backend server group for load balancer traffic distribution",
+          descriptionShort: "Origin pool",
+          tier: "Standard",
+          icon: "\u{1F3AF}",
+          category: "Load Balancing",
+          supportsLogs: false,
+          supportsMetrics: true,
+          dependencies: { optional: ["healthcheck"] },
+          relationshipHints: [
+            "healthcheck: Monitor origin server health"
           ]
+        },
+        {
+          name: "service_discovery",
+          description: "Service discovery configuration for dynamic endpoints",
+          descriptionShort: "Service discovery",
+          tier: "Advanced",
+          icon: "\u{1F50D}",
+          category: "Networking",
+          supportsLogs: false,
+          supportsMetrics: false
         }
+      ]
+    }
+  ],
+  [
+    "shape",
+    {
+      name: "shape",
+      displayName: "Shape",
+      description: "Bot infrastructure policies with deployment tracking and subscription management. SafeAP protection against credential stuffing and account takeover. Mobile application shielding through SDK integration with OS-specific configurations. Real-time threat intelligence updates and automated response actions based on risk scoring and traffic patterns.",
+      descriptionShort: "Bot defense, fraud prevention, and client integrity.",
+      descriptionMedium: "Threat recognition with behavioral analysis and device fingerprinting. Mobile SDK integration for application shielding.",
+      aliases: ["shape-sec", "safeap"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Security",
+      useCases: [
+        "Configure Shape Security policies",
+        "Manage bot and threat prevention",
+        "Configure SafeAP policies",
+        "Enable threat recognition"
       ],
-      "icon": "\u2696\uFE0F"
-    },
-    icon: "\u2696\uFE0F",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%234F46E5'%3E%3Cpath d='M12 3c-1.27 0-2.4.8-2.82 2H3v2h1.95L2 14c-.47 2 1 4 4 4s4.47-2 4-4L7.05 7H9.1c.42 1.2 1.55 2 2.9 2s2.4-.8 2.82-2h2.13L14 14c-.47 2 1 4 4 4s4.47-2 4-4l-2.95-7H21V5h-6.18c-.42-1.2-1.55-2-2.82-2zm-6 12.5c-.73 0-1.45-.3-1.97-.82L6 10l1.97 4.68c-.52.52-1.24.82-1.97.82zm12 0c-.73 0-1.45-.3-1.97-.82L18 10l1.97 4.68c-.52.52-1.24.82-1.97.82z'/%3E%3C/svg%3E",
-    uiCategory: "Load Balancing",
-    primaryResources: [
-      {
-        name: "http_loadbalancer",
-        description: "Layer 7 HTTP/HTTPS load balancer for application traffic distribution",
-        descriptionShort: "HTTP load balancer",
-        tier: "Standard",
-        icon: "\u{1F310}",
-        category: "Load Balancing",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { required: ["origin_pool"], optional: ["healthcheck", "app_firewall", "certificate", "rate_limiter", "service_policy", "bot_defense_policy"] },
-        relationshipHints: ["origin_pool: Backend servers for traffic distribution", "app_firewall: WAF protection (requires WAAP subscription)", "healthcheck: Monitor backend availability", "certificate: TLS termination for HTTPS", "rate_limiter: Protect against traffic spikes"]
-      },
-      {
-        name: "tcp_loadbalancer",
-        description: "Layer 4 TCP/UDP load balancer for non-HTTP protocol traffic",
-        descriptionShort: "TCP load balancer",
-        tier: "Standard",
-        icon: "\u{1F50C}",
-        category: "Load Balancing",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { required: ["origin_pool"], optional: ["healthcheck"] },
-        relationshipHints: ["origin_pool: Backend servers for TCP/UDP traffic", "healthcheck: Monitor origin server health"]
-      },
-      {
-        name: "origin_pool",
-        description: "Backend server group for load balancer traffic distribution",
-        descriptionShort: "Origin pool",
-        tier: "Standard",
-        icon: "\u{1F3AF}",
-        category: "Load Balancing",
-        supportsLogs: false,
-        supportsMetrics: true,
-        dependencies: { optional: ["healthcheck"] },
-        relationshipHints: ["healthcheck: Monitor origin server health"]
-      },
-      {
-        name: "healthcheck",
-        description: "Health monitoring configuration for origin server availability",
-        descriptionShort: "Health check",
-        tier: "Standard",
-        icon: "\u{1F493}",
-        category: "Monitoring",
-        supportsLogs: false,
-        supportsMetrics: true
-      }
-    ]
-  }],
-  ["vpm_and_node_management", {
-    name: "vpm_and_node_management",
-    displayName: "Vpm And Node Management",
-    description: "F5 Distributed Cloud Vpm And Node Management API specifications",
-    descriptionShort: "Vpm And Node Management API",
-    descriptionMedium: "F5 Distributed Cloud Vpm And Node Management API specifications",
-    aliases: ["vpm", "nodes", "node-mgmt"],
-    complexity: "simple",
-    isPreview: false,
-    requiresTier: "Standard",
-    category: "Platform",
-    useCases: ["Manage Virtual Private Mesh (VPM) configuration", "Configure node lifecycle and management", "Monitor VPM and node status"],
-    relatedDomains: ["sites", "system"],
-    icon: "\u{1F5A5}\uFE0F",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2364748B'%3E%3Cpath d='M20 13H4c-.55 0-1 .45-1 1v6c0 .55.45 1 1 1h16c.55 0 1-.45 1-1v-6c0-.55-.45-1-1-1zM7 19c-1.1 0-2-.9-2-2s.9-2 2-2 2 .9 2 2-.9 2-2 2zM20 3H4c-.55 0-1 .45-1 1v6c0 .55.45 1 1 1h16c.55 0 1-.45 1-1V4c0-.55-.45-1-1-1zM7 9c-1.1 0-2-.9-2-2s.9-2 2-2 2 .9 2 2-.9 2-2 2z'/%3E%3C/svg%3E",
-    uiCategory: "Configuration",
-    primaryResources: [
-      {
-        name: "node_config",
-        description: "Node configuration for edge device settings",
-        descriptionShort: "Node config",
-        tier: "Standard",
-        icon: "\u{1F5A5}\uFE0F",
-        category: "Infrastructure",
-        supportsLogs: false,
-        supportsMetrics: false
-      },
-      {
-        name: "vpm_config",
-        description: "VPM configuration for virtual platform management",
-        descriptionShort: "VPM config",
-        tier: "Standard",
-        icon: "\u2699\uFE0F",
-        category: "Infrastructure",
-        supportsLogs: false,
-        supportsMetrics: false
-      }
-    ]
-  }],
-  ["waf", {
-    name: "waf",
-    displayName: "Waf",
-    description: "Signature-based attack detection with customizable blocking responses. Attack type classification, protocol inspection, and AI-driven risk assessment. Exclusion policies override default blocking for trusted traffic. Staged signature testing validates rules before enforcement. Security event metrics track rule hits and blocked requests across namespaces.",
-    descriptionShort: "Request inspection, attack signatures, and bot mitigation.",
-    descriptionMedium: "Application firewall rules with signature-based detection. Exclusion policies, blocking pages, and anomaly prevention.",
-    aliases: ["firewall", "appfw"],
-    complexity: "advanced",
-    isPreview: false,
-    requiresTier: "Advanced",
-    category: "Security",
-    useCases: ["Configure web application firewall rules", "Manage application security policies", "Enable enhanced firewall capabilities", "Configure protocol inspection"],
-    relatedDomains: ["api", "network_security", "virtual"],
-    icon: "\u{1F6E1}\uFE0F",
-    logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2310B981'%3E%3Cpath d='M12 1L3 5v6c0 5.55 3.84 10.74 9 12 5.16-1.26 9-6.45 9-12V5l-9-4z'/%3E%3C/svg%3E",
-    uiCategory: "Security",
-    primaryResources: [
-      {
-        name: "app_firewall",
-        description: "Web Application Firewall policy for HTTP traffic protection",
-        descriptionShort: "WAF policy",
-        tier: "Advanced",
-        icon: "\u{1F6E1}\uFE0F",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true,
-        dependencies: { optional: ["service_policy"] },
-        relationshipHints: ["service_policy: Fine-grained access control rules"]
+      relatedDomains: ["bot_defense", "waf"],
+      icon: "\u{1F3AD}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23A855F7'%3E%3Cpath d='M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm0 18c-4.41 0-8-3.59-8-8s3.59-8 8-8 8 3.59 8 8-3.59 8-8 8zm-5-9c.83 0 1.5-.67 1.5-1.5S7.83 8 7 8s-1.5.67-1.5 1.5S6.17 11 7 11zm10 0c.83 0 1.5-.67 1.5-1.5S17.83 8 17 8s-1.5.67-1.5 1.5.67 1.5 1.5 1.5zM12 17.5c2.33 0 4.31-1.46 5.11-3.5H6.89c.8 2.04 2.78 3.5 5.11 3.5z'/%3E%3C/svg%3E",
+      uiCategory: "Client-Side Defense",
+      primaryResources: [
+        {
+          name: "shape_app_firewall",
+          description: "Shape application firewall for advanced protection",
+          descriptionShort: "Shape WAF",
+          tier: "Advanced",
+          icon: "\u{1F6E1}\uFE0F",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true
+        },
+        {
+          name: "shape_recognizer",
+          description: "Shape recognizer for traffic pattern analysis",
+          descriptionShort: "Shape recognizer",
+          tier: "Advanced",
+          icon: "\u{1F50D}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true
+        }
+      ]
+    }
+  ],
+  [
+    "sites",
+    {
+      name: "sites",
+      displayName: "Sites",
+      description: "Multi-cloud node provisioning spanning major public cloud environments including TGW, VNet, and VPC architectures. VPN tunnel configuration handles secure connectivity while IP prefix management controls address allocation. Customer edge deployments support external container orchestration platforms. Geographic distribution with resource sharing enables consistent policy enforcement across deployment points.",
+      descriptionShort: "Cloud and edge node deployments.",
+      descriptionMedium: "AWS, Azure, GCP VPC integration with transit gateways. Label-based selection for policy application across regions.",
+      aliases: ["site", "deployment"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Infrastructure",
+      useCases: [
+        "Deploy F5 XC across cloud providers (AWS, Azure, GCP)",
+        "Manage XCKS (Managed Kubernetes) site deployments (formerly AppStack)",
+        "Deploy Secure Mesh sites for networking-focused edge deployments",
+        "Integrate external Kubernetes clusters as Customer Edge",
+        "Configure AWS VPC, Azure VNet, and GCP VPC sites",
+        "Manage virtual sites and site policies"
+      ],
+      relatedDomains: [
+        "cloud_infrastructure",
+        "customer_edge",
+        "managed_kubernetes"
+      ],
+      cliMetadata: {
+        quick_start: {
+          command: "curl $F5XC_API_URL/api/config/namespaces/default/sites -H 'Authorization: APIToken $F5XC_API_TOKEN'",
+          description: "List all configured sites in default namespace",
+          expected_output: "JSON array of site objects with deployment status"
+        },
+        common_workflows: [
+          {
+            name: "Deploy AWS Cloud Site",
+            description: "Deploy F5 XC in AWS for traffic management",
+            steps: [
+              {
+                step: 1,
+                command: "curl -X POST $F5XC_API_URL/api/config/namespaces/default/cloud_credentials -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...aws_credentials...}'",
+                description: "Create cloud credentials for AWS access"
+              },
+              {
+                step: 2,
+                command: "curl -X POST $F5XC_API_URL/api/config/namespaces/default/sites -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...site_config...}'",
+                description: "Create site definition for AWS deployment"
+              }
+            ],
+            prerequisites: [
+              "AWS account configured",
+              "Cloud credentials created",
+              "VPC and security groups prepared"
+            ],
+            expected_outcome: "Site deployed in AWS, nodes connected and healthy"
+          }
+        ],
+        troubleshooting: [
+          {
+            problem: "Site deployment fails",
+            symptoms: [
+              "Status: Error",
+              "Nodes not coming online",
+              "Connectivity issues"
+            ],
+            diagnosis_commands: [
+              "curl $F5XC_API_URL/api/config/namespaces/default/sites/{site} -H 'Authorization: APIToken $F5XC_API_TOKEN'",
+              "Check site events and node status"
+            ],
+            solutions: [
+              "Verify cloud credentials have required permissions",
+              "Check VPC and security group configuration",
+              "Review site logs for deployment errors",
+              "Ensure sufficient cloud resources available"
+            ]
+          }
+        ],
+        icon: "\u{1F30D}"
       },
-      {
-        name: "service_policy",
-        description: "Service-level access control and traffic management rules",
-        descriptionShort: "Service policy",
-        tier: "Advanced",
-        icon: "\u{1F4CB}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: false
+      icon: "\u{1F30D}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2310B981'%3E%3Cpath d='M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm-1 17.93c-3.95-.49-7-3.85-7-7.93 0-.62.08-1.21.21-1.79L9 15v1c0 1.1.9 2 2 2v1.93zm6.9-2.54c-.26-.81-1-1.39-1.9-1.39h-1v-3c0-.55-.45-1-1-1H8v-2h2c.55 0 1-.45 1-1V7h2c1.1 0 2-.9 2-2v-.41c2.93 1.19 5 4.06 5 7.41 0 2.08-.8 3.97-2.1 5.39z'/%3E%3C/svg%3E",
+      uiCategory: "Sites",
+      primaryResources: [
+        {
+          name: "site",
+          description: "Physical or cloud deployment location for edge services",
+          descriptionShort: "Site",
+          tier: "Standard",
+          icon: "\u{1F3E2}",
+          category: "Infrastructure",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { optional: ["virtual_site"] },
+          relationshipHints: [
+            "virtual_site: Logical grouping of physical sites"
+          ]
+        },
+        {
+          name: "virtual_site",
+          description: "Logical grouping of sites using label selectors",
+          descriptionShort: "Virtual site",
+          tier: "Standard",
+          icon: "\u{1F3F7}\uFE0F",
+          category: "Infrastructure",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "site_mesh_group",
+          description: "Mesh connectivity configuration between multiple sites",
+          descriptionShort: "Site mesh group",
+          tier: "Advanced",
+          icon: "\u{1F578}\uFE0F",
+          category: "Infrastructure",
+          supportsLogs: false,
+          supportsMetrics: true,
+          dependencies: { required: ["site"] },
+          relationshipHints: [
+            "site: Sites to include in mesh connectivity"
+          ]
+        }
+      ]
+    }
+  ],
+  [
+    "statistics",
+    {
+      name: "statistics",
+      displayName: "Statistics",
+      description: "Alert policies with custom matchers, label groupings, and notification parameters. Log receivers for centralized collection with confirmation and verification workflows. Flow analytics, historical trend data, and namespace-scoped dashboards. Topology discovery and site-level health indicators for operational visibility.",
+      descriptionShort: "Alerts, logs, flow analytics, and reporting.",
+      descriptionMedium: "Alerting policies with receiver integrations. Log aggregation, topology views, and site health tracking.",
+      aliases: ["stats", "metrics", "logs"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Operations",
+      useCases: [
+        "Access flow statistics and analytics",
+        "Manage alerts and alerting policies",
+        "View logs and log receivers",
+        "Generate reports and graphs",
+        "Track topology and service discovery",
+        "Monitor status at sites"
+      ],
+      relatedDomains: ["observability", "support"],
+      icon: "\u{1F4C8}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2310B981'%3E%3Cpath d='M3.5 18.49l6-6.01 4 4L22 6.92l-1.41-1.41-7.09 7.97-4-4L2 16.99z'/%3E%3C/svg%3E",
+      uiCategory: "Observability",
+      primaryResources: [
+        {
+          name: "dashboard",
+          description: "Dashboard for metrics visualization",
+          descriptionShort: "Dashboard",
+          tier: "Standard",
+          icon: "\u{1F4CA}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: false,
+          dependencies: { optional: ["saved_query"] },
+          relationshipHints: [
+            "saved_query: Queries displayed on dashboard"
+          ]
+        },
+        {
+          name: "saved_query",
+          description: "Saved query for metrics and log analysis",
+          descriptionShort: "Saved query",
+          tier: "Standard",
+          icon: "\u{1F50D}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "support",
+    {
+      name: "support",
+      displayName: "Support",
+      description: "Case management workflows including submission, commentary, and closure paths. Urgency adjustments and routing for time-sensitive incidents. Tax exemption verification requests. Site-level tcpdump operations\u2014initiation, enumeration, and termination\u2014for low-level network troubleshooting and protocol analysis.",
+      descriptionShort: "Tickets, escalations, and network diagnostics.",
+      descriptionMedium: "Issue lifecycle with comments, severity changes, and resolution tracking. Packet capture for connection analysis.",
+      aliases: ["tickets", "help-desk"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Operations",
+      useCases: [
+        "Submit and manage support tickets",
+        "Track customer support requests",
+        "Access operational support documentation"
+      ],
+      relatedDomains: ["statistics", "observability"],
+      icon: "\u{1F3AB}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2314B8A6'%3E%3Cpath d='M22 10V6c0-1.11-.9-2-2-2H4c-1.1 0-1.99.89-1.99 2v4c1.1 0 1.99.9 1.99 2s-.89 2-2 2v4c0 1.1.9 2 2 2h16c1.1 0 2-.9 2-2v-4c-1.1 0-2-.9-2-2s.9-2 2-2zm-2-1.46c-1.19.69-2 1.99-2 3.46s.81 2.77 2 3.46V18H4v-2.54c1.19-.69 2-1.99 2-3.46 0-1.48-.8-2.77-1.99-3.46L4 6h16v2.54z'/%3E%3C/svg%3E",
+      uiCategory: "Configuration",
+      primaryResources: [
+        {
+          name: "support_case",
+          description: "Support case for issue tracking and resolution",
+          descriptionShort: "Support case",
+          tier: "Standard",
+          icon: "\u{1F3AB}",
+          category: "Other",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "alert",
+          description: "System alert for operational notifications",
+          descriptionShort: "Alert",
+          tier: "Standard",
+          icon: "\u{1F514}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "audit_log",
+          description: "Audit log for compliance and security tracking",
+          descriptionShort: "Audit log",
+          tier: "Standard",
+          icon: "\u{1F4DD}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "telemetry_and_insights",
+    {
+      name: "telemetry_and_insights",
+      displayName: "Telemetry And Insights",
+      description: "F5 Distributed Cloud Telemetry And Insights API specifications",
+      descriptionShort: "Telemetry And Insights API",
+      descriptionMedium: "F5 Distributed Cloud Telemetry And Insights API specifications",
+      aliases: ["telemetry", "ti"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Operations",
+      useCases: [
+        "Collect and analyze telemetry data",
+        "Generate actionable insights from metrics",
+        "Configure telemetry collection policies"
+      ],
+      relatedDomains: ["observability", "statistics"],
+      icon: "\u{1F4C9}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23F59E0B'%3E%3Cpath d='M19 3H5c-1.1 0-2 .9-2 2v14c0 1.1.9 2 2 2h14c1.1 0 2-.9 2-2V5c0-1.1-.9-2-2-2zM9 17H7v-7h2v7zm4 0h-2V7h2v10zm4 0h-2v-4h2v4z'/%3E%3C/svg%3E",
+      uiCategory: "Observability",
+      primaryResources: [
+        {
+          name: "telemetry_receiver",
+          description: "Telemetry receiver for data collection",
+          descriptionShort: "Telemetry receiver",
+          tier: "Standard",
+          icon: "\u{1F4E1}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "insight_query",
+          description: "Insight query for analytics",
+          descriptionShort: "Insight query",
+          tier: "Standard",
+          icon: "\u{1F50D}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "tenant_and_identity",
+    {
+      name: "tenant_and_identity",
+      displayName: "Tenant And Identity",
+      description: "Profile images and display customizations for personalized dashboard experiences. Federated authentication toggles controlling SSO behavior across organizational boundaries. Session lifecycle tracking with real-time visibility into active connections and timeout policies. Support ticket workflows including attachment handling and closure procedures for managed client escalations. Initial access provisioning sequences for new user onboarding.",
+      descriptionShort: "User profiles, sessions, and OTP settings.",
+      descriptionMedium: "Account view configurations and admin alert channels. One-time password resets, provisioning flows, and active connection monitoring.",
+      aliases: ["tenant-identity", "idm", "user-settings"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Platform",
+      useCases: [
+        "Manage user profiles and notification preferences",
+        "Configure session controls and OTP settings",
+        "Handle identity management operations",
+        "Process initial user access requests"
+      ],
+      relatedDomains: ["users", "authentication", "system"],
+      icon: "\u{1FAAA}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2306B6D4'%3E%3Cpath d='M20 4H4c-1.1 0-2 .9-2 2v12c0 1.1.9 2 2 2h16c1.1 0 2-.9 2-2V6c0-1.1-.9-2-2-2zm-9 3.5c1.38 0 2.5 1.12 2.5 2.5S12.38 12.5 11 12.5 8.5 11.38 8.5 10s1.12-2.5 2.5-2.5zm5 10.5H6v-1.25c0-1.66 3.33-2.5 5-2.5s5 .84 5 2.5V18zm2-4h-4v-2h4v2zm0-4h-4V8h4v2z'/%3E%3C/svg%3E",
+      uiCategory: "Identity & Access",
+      primaryResources: [
+        {
+          name: "user_profile",
+          description: "User profile with personal settings",
+          descriptionShort: "User profile",
+          tier: "Standard",
+          icon: "\u{1F464}",
+          category: "Identity",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "session",
+          description: "User session for authentication state",
+          descriptionShort: "Session",
+          tier: "Standard",
+          icon: "\u{1F511}",
+          category: "Identity",
+          supportsLogs: true,
+          supportsMetrics: false
+        },
+        {
+          name: "otp_policy",
+          description: "OTP policy for multi-factor authentication",
+          descriptionShort: "OTP policy",
+          tier: "Standard",
+          icon: "\u{1F510}",
+          category: "Identity",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "threat_campaign",
+    {
+      name: "threat_campaign",
+      displayName: "Threat Campaign",
+      description: "F5 Distributed Cloud Threat Campaign API specifications",
+      descriptionShort: "Threat Campaign API",
+      descriptionMedium: "F5 Distributed Cloud Threat Campaign API specifications",
+      aliases: ["threats", "campaigns", "threat-intel"],
+      complexity: "moderate",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Security",
+      useCases: [
+        "Track and analyze threat campaigns",
+        "Monitor active threats and attack patterns",
+        "Configure threat intelligence integration"
+      ],
+      relatedDomains: ["bot_defense", "ddos"],
+      icon: "\u26A0\uFE0F",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%23FBBF24'%3E%3Cpath d='M1 21h22L12 2 1 21zm12-3h-2v-2h2v2zm0-4h-2v-4h2v4z'/%3E%3C/svg%3E",
+      uiCategory: "Security",
+      primaryResources: [
+        {
+          name: "threat_campaign_policy",
+          description: "Threat campaign detection and mitigation policy",
+          descriptionShort: "Threat campaign policy",
+          tier: "Advanced",
+          icon: "\u{1F3AF}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true
+        }
+      ]
+    }
+  ],
+  [
+    "users",
+    {
+      name: "users",
+      displayName: "Users",
+      description: "Token lifecycle governs automated site onboarding through cloud-init integration with configurable validity periods. Explicit category keys establish permitted classification hierarchies enforced across deployments. Inferred attributes attach automatically based on object characteristics and placement context. Namespace-scoped operations handle credential generation, revocation, and state transitions for streamlined provisioning workflows.",
+      descriptionShort: "Account tokens, labels, and cloud-init config.",
+      descriptionMedium: "Site enrollment credentials with automatic expiration. Taxonomy keys define allowed categorization while auto-derived tags apply dynamically.",
+      aliases: ["user", "accounts", "iam"],
+      complexity: "simple",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Platform",
+      useCases: [
+        "Manage user accounts and tokens",
+        "Configure user identification",
+        "Manage user settings and preferences",
+        "Configure implicit and known labels"
+      ],
+      relatedDomains: ["system", "admin"],
+      icon: "\u{1F465}",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%236366F1'%3E%3Cpath d='M16 11c1.66 0 2.99-1.34 2.99-3S17.66 5 16 5c-1.66 0-3 1.34-3 3s1.34 3 3 3zm-8 0c1.66 0 2.99-1.34 2.99-3S9.66 5 8 5C6.34 5 5 6.34 5 8s1.34 3 3 3zm0 2c-2.33 0-7 1.17-7 3.5V19h14v-2.5c0-2.33-4.67-3.5-7-3.5zm8 0c-.29 0-.62.02-.97.05 1.16.84 1.97 1.97 1.97 3.45V19h6v-2.5c0-2.33-4.67-3.5-7-3.5z'/%3E%3C/svg%3E",
+      uiCategory: "Identity & Access",
+      primaryResources: [
+        {
+          name: "user",
+          description: "User account for platform access",
+          descriptionShort: "User",
+          tier: "Standard",
+          icon: "\u{1F464}",
+          category: "Identity",
+          supportsLogs: false,
+          supportsMetrics: false,
+          dependencies: { optional: ["user_role"] },
+          relationshipHints: [
+            "user_role: Role assignment for user permissions"
+          ]
+        },
+        {
+          name: "user_role",
+          description: "User role for permission management",
+          descriptionShort: "User role",
+          tier: "Standard",
+          icon: "\u{1F454}",
+          category: "Identity",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "namespace_role",
+          description: "Namespace-scoped role for fine-grained permissions",
+          descriptionShort: "Namespace role",
+          tier: "Standard",
+          icon: "\u{1F4C1}",
+          category: "Identity",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "virtual",
+    {
+      name: "virtual",
+      displayName: "Virtual",
+      description: "Traffic distribution across origin pools with weighted routing and session persistence. Malware protection integration, threat campaign blocking, and request inspection. Proxy forwarding policies, server monitoring, and latency-based routing decisions. Service policy sets for fine-grained access control and rate limiter policies for traffic shaping.",
+      descriptionShort: "HTTP, TCP, UDP load balancers and origin pools.",
+      descriptionMedium: "Layer 7 routing rules with health checks and failover. Rate limiting, geo-routing, and service policy enforcement.",
+      aliases: ["lb", "loadbalancer", "vhost"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Networking",
+      useCases: [
+        "Configure HTTP/TCP/UDP load balancers",
+        "Manage origin pools and services",
+        "Configure virtual hosts and routing",
+        "Define rate limiter and service policies",
+        "Manage geo-location-based routing",
+        "Configure proxy and forwarding policies",
+        "Manage malware protection and threat campaigns",
+        "Configure health checks and endpoint monitoring"
+      ],
+      relatedDomains: ["dns", "service_policy", "network"],
+      cliMetadata: {
+        quick_start: {
+          command: "curl $F5XC_API_URL/api/config/namespaces/default/http_loadbalancers -H 'Authorization: APIToken $F5XC_API_TOKEN'",
+          description: "List all HTTP load balancers in default namespace",
+          expected_output: "JSON array of load balancer objects with status"
+        },
+        common_workflows: [
+          {
+            name: "Create HTTP Load Balancer",
+            description: "Deploy basic HTTP load balancer with origin pool backend",
+            steps: [
+              {
+                step: 1,
+                command: "curl -X POST $F5XC_API_URL/api/config/namespaces/default/origin_pools -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...pool_config...}'",
+                description: "Create backend origin pool with target endpoints"
+              },
+              {
+                step: 2,
+                command: "curl -X POST $F5XC_API_URL/api/config/namespaces/default/http_loadbalancers -H 'Authorization: APIToken $F5XC_API_TOKEN' -H 'Content-Type: application/json' -d '{...lb_config...}'",
+                description: "Create HTTP load balancer pointing to origin pool"
+              }
+            ],
+            prerequisites: [
+              "Active namespace",
+              "Origin pool targets reachable",
+              "DNS domain configured"
+            ],
+            expected_outcome: "Load balancer in Active status, traffic routed to origins"
+          }
+        ],
+        troubleshooting: [
+          {
+            problem: "Load balancer shows Configuration Error status",
+            symptoms: [
+              "Status: Configuration Error",
+              "No traffic routing",
+              "Requests timeout"
+            ],
+            diagnosis_commands: [
+              "curl $F5XC_API_URL/api/config/namespaces/default/http_loadbalancers/{name} -H 'Authorization: APIToken $F5XC_API_TOKEN'",
+              "Check origin_pool status and endpoint connectivity"
+            ],
+            solutions: [
+              "Verify origin pool targets are reachable from edge",
+              "Check DNS configuration and domain propagation",
+              "Validate certificate configuration if using HTTPS",
+              "Review security policies not blocking traffic"
+            ]
+          }
+        ],
+        icon: "\u2696\uFE0F"
       },
-      {
-        name: "malicious_user_detection",
-        description: "Automated detection and mitigation of malicious user behavior",
-        descriptionShort: "Malicious user detection",
-        tier: "Advanced",
-        icon: "\u{1F6A8}",
-        category: "Security",
-        supportsLogs: true,
-        supportsMetrics: true
-      }
-    ]
-  }]
+      icon: "\u2696\uFE0F",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%234F46E5'%3E%3Cpath d='M12 3c-1.27 0-2.4.8-2.82 2H3v2h1.95L2 14c-.47 2 1 4 4 4s4.47-2 4-4L7.05 7H9.1c.42 1.2 1.55 2 2.9 2s2.4-.8 2.82-2h2.13L14 14c-.47 2 1 4 4 4s4.47-2 4-4l-2.95-7H21V5h-6.18c-.42-1.2-1.55-2-2.82-2zm-6 12.5c-.73 0-1.45-.3-1.97-.82L6 10l1.97 4.68c-.52.52-1.24.82-1.97.82zm12 0c-.73 0-1.45-.3-1.97-.82L18 10l1.97 4.68c-.52.52-1.24.82-1.97.82z'/%3E%3C/svg%3E",
+      uiCategory: "Load Balancing",
+      primaryResources: [
+        {
+          name: "http_loadbalancer",
+          description: "Layer 7 HTTP/HTTPS load balancer for application traffic distribution",
+          descriptionShort: "HTTP load balancer",
+          tier: "Standard",
+          icon: "\u{1F310}",
+          category: "Load Balancing",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: {
+            required: ["origin_pool"],
+            optional: [
+              "healthcheck",
+              "app_firewall",
+              "certificate",
+              "rate_limiter",
+              "service_policy",
+              "bot_defense_policy"
+            ]
+          },
+          relationshipHints: [
+            "origin_pool: Backend servers for traffic distribution",
+            "app_firewall: WAF protection (requires WAAP subscription)",
+            "healthcheck: Monitor backend availability",
+            "certificate: TLS termination for HTTPS",
+            "rate_limiter: Protect against traffic spikes"
+          ]
+        },
+        {
+          name: "tcp_loadbalancer",
+          description: "Layer 4 TCP/UDP load balancer for non-HTTP protocol traffic",
+          descriptionShort: "TCP load balancer",
+          tier: "Standard",
+          icon: "\u{1F50C}",
+          category: "Load Balancing",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: {
+            required: ["origin_pool"],
+            optional: ["healthcheck"]
+          },
+          relationshipHints: [
+            "origin_pool: Backend servers for TCP/UDP traffic",
+            "healthcheck: Monitor origin server health"
+          ]
+        },
+        {
+          name: "origin_pool",
+          description: "Backend server group for load balancer traffic distribution",
+          descriptionShort: "Origin pool",
+          tier: "Standard",
+          icon: "\u{1F3AF}",
+          category: "Load Balancing",
+          supportsLogs: false,
+          supportsMetrics: true,
+          dependencies: { optional: ["healthcheck"] },
+          relationshipHints: [
+            "healthcheck: Monitor origin server health"
+          ]
+        },
+        {
+          name: "healthcheck",
+          description: "Health monitoring configuration for origin server availability",
+          descriptionShort: "Health check",
+          tier: "Standard",
+          icon: "\u{1F493}",
+          category: "Monitoring",
+          supportsLogs: false,
+          supportsMetrics: true
+        }
+      ]
+    }
+  ],
+  [
+    "vpm_and_node_management",
+    {
+      name: "vpm_and_node_management",
+      displayName: "Vpm And Node Management",
+      description: "F5 Distributed Cloud Vpm And Node Management API specifications",
+      descriptionShort: "Vpm And Node Management API",
+      descriptionMedium: "F5 Distributed Cloud Vpm And Node Management API specifications",
+      aliases: ["vpm", "nodes", "node-mgmt"],
+      complexity: "simple",
+      isPreview: false,
+      requiresTier: "Standard",
+      category: "Platform",
+      useCases: [
+        "Manage Virtual Private Mesh (VPM) configuration",
+        "Configure node lifecycle and management",
+        "Monitor VPM and node status"
+      ],
+      relatedDomains: ["sites", "system"],
+      icon: "\u{1F5A5}\uFE0F",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2364748B'%3E%3Cpath d='M20 13H4c-.55 0-1 .45-1 1v6c0 .55.45 1 1 1h16c.55 0 1-.45 1-1v-6c0-.55-.45-1-1-1zM7 19c-1.1 0-2-.9-2-2s.9-2 2-2 2 .9 2 2-.9 2-2 2zM20 3H4c-.55 0-1 .45-1 1v6c0 .55.45 1 1 1h16c.55 0 1-.45 1-1V4c0-.55-.45-1-1-1zM7 9c-1.1 0-2-.9-2-2s.9-2 2-2 2 .9 2 2-.9 2-2 2z'/%3E%3C/svg%3E",
+      uiCategory: "Configuration",
+      primaryResources: [
+        {
+          name: "node_config",
+          description: "Node configuration for edge device settings",
+          descriptionShort: "Node config",
+          tier: "Standard",
+          icon: "\u{1F5A5}\uFE0F",
+          category: "Infrastructure",
+          supportsLogs: false,
+          supportsMetrics: false
+        },
+        {
+          name: "vpm_config",
+          description: "VPM configuration for virtual platform management",
+          descriptionShort: "VPM config",
+          tier: "Standard",
+          icon: "\u2699\uFE0F",
+          category: "Infrastructure",
+          supportsLogs: false,
+          supportsMetrics: false
+        }
+      ]
+    }
+  ],
+  [
+    "waf",
+    {
+      name: "waf",
+      displayName: "Waf",
+      description: "Signature-based attack detection with customizable blocking responses. Attack type classification, protocol inspection, and AI-driven risk assessment. Exclusion policies override default blocking for trusted traffic. Staged signature testing validates rules before enforcement. Security event metrics track rule hits and blocked requests across namespaces.",
+      descriptionShort: "Request inspection, attack signatures, and bot mitigation.",
+      descriptionMedium: "Application firewall rules with signature-based detection. Exclusion policies, blocking pages, and anomaly prevention.",
+      aliases: ["firewall", "appfw"],
+      complexity: "advanced",
+      isPreview: false,
+      requiresTier: "Advanced",
+      category: "Security",
+      useCases: [
+        "Configure web application firewall rules",
+        "Manage application security policies",
+        "Enable enhanced firewall capabilities",
+        "Configure protocol inspection"
+      ],
+      relatedDomains: ["api", "network_security", "virtual"],
+      icon: "\u{1F6E1}\uFE0F",
+      logoSvg: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 24 24' fill='%2310B981'%3E%3Cpath d='M12 1L3 5v6c0 5.55 3.84 10.74 9 12 5.16-1.26 9-6.45 9-12V5l-9-4z'/%3E%3C/svg%3E",
+      uiCategory: "Security",
+      primaryResources: [
+        {
+          name: "app_firewall",
+          description: "Web Application Firewall policy for HTTP traffic protection",
+          descriptionShort: "WAF policy",
+          tier: "Advanced",
+          icon: "\u{1F6E1}\uFE0F",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true,
+          dependencies: { optional: ["service_policy"] },
+          relationshipHints: [
+            "service_policy: Fine-grained access control rules"
+          ]
+        },
+        {
+          name: "service_policy",
+          description: "Service-level access control and traffic management rules",
+          descriptionShort: "Service policy",
+          tier: "Advanced",
+          icon: "\u{1F4CB}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: false
+        },
+        {
+          name: "malicious_user_detection",
+          description: "Automated detection and mitigation of malicious user behavior",
+          descriptionShort: "Malicious user detection",
+          tier: "Advanced",
+          icon: "\u{1F6A8}",
+          category: "Security",
+          supportsLogs: true,
+          supportsMetrics: true
+        }
+      ]
+    }
+  ]
 ]);
 // src/types/domains.ts
@@ -46452,34 +46837,34 @@ var CLI_SUMMARY_FROM_SPEC = "Multi-cloud application services with load balancin
 var CLI_DESCRIPTION_FROM_SPEC = "Unified application services across multi-cloud, edge, and hybrid environments. Load balancers with origin pools and health checks for traffic distribution. Web application firewall and bot defense for application protection. DNS zones with geographic routing for name resolution. Cloud sites on AWS, Azure, and GCP for infrastructure deployment. Service policies, network security, and observability dashboards from a single control plane.";
 var generatedDescriptions = {
   version: "1.0.0",
-  generatedAt: "2026-01-02T08:07:08.466Z",
+  generatedAt: "2026-01-02T23:47:33.236Z",
   domains: {
-    "login": {
-      short: "Manage authentication and session profiles",
-      medium: "Configure authentication credentials, manage named profiles for different environments, and control connection context for CLI sessions.",
-      long: "Handle identity verification and persistent session state for CLI operations. Use 'show' to display current token status and credential validity. Create named profiles for distinct tenants or environments with the 'profile' command, enabling quick switching without re-entering passwords. Set active endpoint URLs and default namespaces using 'context'. View system announcements with 'banner'. Stored configurations persist securely across sessions.",
+    login: {
+      short: "Configure authentication profiles and connection context",
+      medium: "Store named credential profiles for multiple tenants, switch active connection contexts, verify session state, and display environment banners.",
+      long: "Manage authentication lifecycle and identity configuration for CLI operations. Define reusable credential sets targeting different tenants without repeated login prompts. Toggle between saved identities to execute commands against distinct environments. Inspect current session details including endpoint URL and token expiration status. Show informational banners reflecting active configuration. Supports environment variable injection for automated pipelines and scripted workflows requiring non-interactive authentication.",
       subcommands: {
-        "profile": {
-          short: "Manage saved credential sets for tenant connections",
-          medium: "Store named authentication configurations with URLs and tokens. Switch between environments without re-entering credentials each time.",
-          long: "Configure named credential sets that persist tenant URLs and access tokens for quick environment switching. Create entries for development, staging, and production tenants, then activate them as needed. List all saved entries, view their configuration details, set one as active for subsequent commands, or remove entries no longer needed. Credentials are stored securely in your local configuration directory and persist across sessions."
+        profile: {
+          short: "Manage saved authentication credentials for tenants",
+          medium: "Store named credential sets for different environments, switch between active connections, and remove outdated entries.",
+          long: "Organize authentication credentials across multiple tenants and environments. Create named entries for production, staging, or development contexts containing URLs and tokens. List available configurations, display stored details, designate which connection to use for subsequent commands, and delete obsolete records. Credentials persist locally, eliminating repeated entry when working across different tenants throughout the day."
         },
-        "context": {
-          short: "Manage default namespace for scoping operations",
-          medium: "Configure, display, and switch between namespace settings that scope subsequent commands to organizational boundaries.",
-          long: "Manage namespace settings that determine the default scope for resource operations. The active namespace applies when commands do not explicitly provide one, reducing repetitive flags across multiple operations. Use 'show' to display the current active namespace, 'set' to change the default for future commands, and 'list' to view all available namespaces. Settings persist across sessions until explicitly changed, streamlining workflows within a single boundary."
+        context: {
+          short: "Set default namespace for scoped command execution",
+          medium: "Configure, display, and switch the active namespace scope. Commands automatically target this namespace when no explicit --namespace flag is provided.",
+          long: "Manage persistent namespace selection that determines where CLI operations execute by default. Subcommands include 'show' to reveal the current setting, 'set' to designate a new active namespace, and 'list' to enumerate all available choices. After configuration, subsequent commands operate within the selected namespace without requiring repetitive flag usage. Settings persist across terminal sessions, reducing overhead during extended work within a single namespace. Remove the stored value to restore explicit per-command namespace specification."
         }
       }
     },
-    "cloudstatus": {
-      short: "Check platform status and service incidents",
-      medium: "View operational health, active incidents, component availability, and scheduled maintenance windows for infrastructure services.",
-      long: "Monitor real-time service availability across infrastructure components. Query active incidents with severity classification and affected systems, inspect individual component states, and review upcoming maintenance schedules. Filter by component type, date range, or impact level. Generate human-readable summaries or structured JSON output for integration with alerting tools and automation pipelines. Designed for operations teams tracking system reliability and coordinating around planned outages."
+    cloudstatus: {
+      short: "Check platform status and active incidents",
+      medium: "Query operational health, view active incidents, track scheduled maintenance windows, and verify component availability across deployment regions.",
+      long: "Display real-time service health and infrastructure component status. Retrieve incident details including severity levels, affected systems, and resolution progress. List upcoming maintenance windows for service interruption planning. Verify regional component availability before deployments. Access historical incident records for post-mortem analysis and SLA tracking. Output supports both human-readable summaries and JSON format for monitoring integration."
     },
-    "completion": {
+    completion: {
       short: "Generate tab-completion scripts for supported shells",
-      medium: "Create shell integration scripts for bash, zsh, and fish that provide intelligent tab-triggered suggestions for commands, flags, and arguments.",
-      long: "Output scripts enabling your terminal to suggest valid options when pressing Tab. Supports bash, zsh, and fish with automatic command discovery, argument hints, and flag recommendations. Install the generated output in your shell's designated directory or source it directly in your configuration file (e.g., .bashrc, .zshrc). Once active, Tab displays available subcommands, recognized flags, and expected parameter values as you type, reducing errors and accelerating CLI usage through context-aware assistance."
+      medium: "Create shell-specific scripts enabling tab-assisted input for commands, subcommands, and flags in bash, zsh, or fish environments.",
+      long: "Output completion scripts that integrate with native shell mechanisms for context-aware suggestions. Supports bash, zsh, and fish with format-specific output suitable for sourcing directly or saving to configuration files. After installation, pressing Tab auto-suggests partial command names, displays available options, and recommends valid flag values. Select the subcommand matching your environment to generate properly formatted output."
     }
   }
 };
@@ -46630,8 +47015,8 @@ function getLogoModeFromEnv(envPrefix) {
 var CLI_NAME = "xcsh";
 var CLI_FULL_NAME = "F5 Distributed Cloud Shell";
 function getVersion() {
-  if ("v1.0.91-2601022325") {
-    return "v1.0.91-2601022325";
+  if ("v1.0.91-2601030100") {
+    return "v1.0.91-2601030100";
   }
   if (process.env.XCSH_VERSION) {
     return process.env.XCSH_VERSION;
@@ -143233,6 +143618,174 @@ function buildCloudstatusSpecs() {
     })
   };
 }
+function buildAIServicesSpecs() {
+  return {
+    query: buildCommandSpec({
+      command: "ai_services query",
+      description: "Query the F5 Distributed Cloud AI assistant with a natural language question. Get intelligent responses about load balancers, WAF, sites, security events, and platform operations.",
+      usage: "xcsh ai_services query <question> [--namespace <ns>] [--output <format>]",
+      flags: [
+        {
+          name: "--namespace",
+          alias: "-ns",
+          description: "Namespace context for the query",
+          type: "string"
+        }
+      ],
+      examples: [
+        {
+          command: 'xcsh ai_services query "What load balancers exist?"',
+          description: "Ask about load balancers in your tenant"
+        },
+        {
+          command: 'xcsh ai query "Show me all WAF policies" --output json',
+          description: "Get WAF policies as JSON using short alias"
+        },
+        {
+          command: 'xcsh genai query "Are there any security events?" --namespace production',
+          description: "Query security events in a specific namespace"
+        }
+      ],
+      category: "ai_services",
+      related: ["ai_services chat", "ai_services feedback"]
+    }),
+    chat: buildCommandSpec({
+      command: "ai_services chat",
+      description: "Start an interactive multi-turn conversation with the AI assistant. Maintains context across exchanges for follow-up questions and complex troubleshooting.",
+      usage: "xcsh ai_services chat [--namespace <ns>]",
+      flags: [
+        {
+          name: "--namespace",
+          alias: "-ns",
+          description: "Default namespace context for the session",
+          type: "string"
+        }
+      ],
+      examples: [
+        {
+          command: "xcsh ai_services chat",
+          description: "Start an interactive chat session"
+        },
+        {
+          command: "xcsh ai chat --namespace staging",
+          description: "Start chat with default namespace context"
+        }
+      ],
+      category: "ai_services",
+      related: ["ai_services query", "ai_services feedback"]
+    }),
+    feedback: buildCommandSpec({
+      command: "ai_services feedback",
+      description: "Submit feedback for AI responses to improve quality. Provide positive feedback for helpful responses or negative feedback with specific reasons.",
+      usage: "xcsh ai_services feedback [--positive | --negative <type>] [--comment <text>] [--query-id <id>]",
+      flags: [
+        {
+          name: "--positive",
+          description: "Mark the response as helpful",
+          type: "boolean"
+        },
+        {
+          name: "--negative",
+          description: "Mark response as needing improvement",
+          type: "string",
+          choices: [
+            "inaccurate",
+            "irrelevant",
+            "incomplete",
+            "poor_format",
+            "slow",
+            "other"
+          ]
+        },
+        {
+          name: "--comment",
+          alias: "-c",
+          description: "Additional feedback comments",
+          type: "string"
+        },
+        {
+          name: "--query-id",
+          description: "Specific query ID to provide feedback for",
+          type: "string"
+        }
+      ],
+      examples: [
+        {
+          command: "xcsh ai_services feedback --positive",
+          description: "Mark last response as helpful"
+        },
+        {
+          command: "xcsh ai feedback --negative inaccurate --comment 'Response was outdated'",
+          description: "Submit negative feedback with reason"
+        }
+      ],
+      category: "ai_services",
+      related: ["ai_services query", "ai_services chat"]
+    }),
+    "eval query": buildCommandSpec({
+      command: "ai_services eval query",
+      description: "Test AI query access with RBAC evaluation. Evaluate whether a query would be permitted under current access control configuration.",
+      usage: "xcsh ai_services eval query <question> [--namespace <ns>]",
+      flags: [
+        {
+          name: "--namespace",
+          alias: "-ns",
+          description: "Namespace context for RBAC evaluation",
+          type: "string"
+        }
+      ],
+      examples: [
+        {
+          command: 'xcsh ai_services eval query "List all namespaces"',
+          description: "Evaluate query access permissions"
+        },
+        {
+          command: 'xcsh ai eval query "Show security events" --namespace production',
+          description: "Test namespace-scoped access"
+        }
+      ],
+      category: "ai_services",
+      related: ["ai_services eval feedback", "ai_services query"]
+    }),
+    "eval feedback": buildCommandSpec({
+      command: "ai_services eval feedback",
+      description: "Test feedback submission access with RBAC evaluation. Verify feedback operations would be permitted without actually submitting.",
+      usage: "xcsh ai_services eval feedback [--positive | --negative <type>]",
+      flags: [
+        {
+          name: "--positive",
+          description: "Test positive feedback submission",
+          type: "boolean"
+        },
+        {
+          name: "--negative",
+          description: "Test negative feedback submission",
+          type: "string",
+          choices: [
+            "inaccurate",
+            "irrelevant",
+            "incomplete",
+            "poor_format",
+            "slow",
+            "other"
+          ]
+        }
+      ],
+      examples: [
+        {
+          command: "xcsh ai_services eval feedback --positive",
+          description: "Evaluate positive feedback access"
+        },
+        {
+          command: "xcsh ai eval feedback --negative incomplete",
+          description: "Test negative feedback permission"
+        }
+      ],
+      category: "ai_services",
+      related: ["ai_services eval query", "ai_services feedback"]
+    })
+  };
+}
 function buildLoginSpecs() {
   return {
     banner: buildCommandSpec({
@@ -143374,6 +143927,7 @@ function buildLoginSpecs() {
 function getCommandSpec(commandPath) {
   const cloudstatusSpecs = buildCloudstatusSpecs();
   const loginSpecs = buildLoginSpecs();
+  const aiServicesSpecs = buildAIServicesSpecs();
   const normalized = commandPath.toLowerCase().trim();
   if (normalized.startsWith("cloudstatus ")) {
     const subcommand = normalized.replace("cloudstatus ", "");
@@ -143383,6 +143937,13 @@ function getCommandSpec(commandPath) {
     const subcommand = normalized.replace("login ", "");
     return loginSpecs[subcommand];
   }
+  const aiAliases = ["ai_services ", "ai ", "genai ", "assistant "];
+  for (const alias of aiAliases) {
+    if (normalized.startsWith(alias)) {
+      const subcommand = normalized.replace(alias, "");
+      return aiServicesSpecs[subcommand];
+    }
+  }
   return void 0;
 }
 function toGlobalFlagSpec(flag) {
@@ -147161,7 +147722,7 @@ var completionDomain = {
   subcommands: /* @__PURE__ */ new Map()
 };
-// src/domains/generative_ai/client.ts
+// src/domains/ai_services/client.ts
 var GenAIClient = class {
   constructor(apiClient) {
     this.apiClient = apiClient;
@@ -147253,7 +147814,7 @@ function getGenAIClient(apiClient) {
   return cachedClient;
 }
-// src/domains/generative_ai/types.ts
+// src/domains/ai_services/types.ts
 function getResponseType(response) {
   if (response.generic_response) return "generic_response";
   if (response.explain_log) return "explain_log";
@@ -147274,7 +147835,7 @@ function getValidFeedbackTypes() {
   return Object.keys(FEEDBACK_TYPE_MAP);
 }
-// src/domains/generative_ai/response-renderer.ts
+// src/domains/ai_services/response-renderer.ts
 function renderResponse(response) {
   const lines = [];
   const responseType = getResponseType(response);
@@ -147454,7 +148015,7 @@ function renderWidgetResponse(response) {
   return lines;
 }
-// src/domains/generative_ai/query.ts
+// src/domains/ai_services/query.ts
 var lastQueryState = {
   namespace: "",
   lastQueryId: null,
@@ -147569,7 +148130,7 @@ var queryCommand = {
   }
 };
-// src/domains/generative_ai/chat.ts
+// src/domains/ai_services/chat.ts
 import * as readline from "readline";
 function parseChatArgs(args, session) {
   const { remainingArgs } = parseDomainOutputFlags(
@@ -147828,7 +148389,7 @@ var chatCommand = {
   }
 };
-// src/domains/generative_ai/feedback.ts
+// src/domains/ai_services/feedback.ts
 function parseFeedbackArgs(args, session) {
   const { remainingArgs } = parseDomainOutputFlags(
     args,
@@ -147972,7 +148533,7 @@ Negative types: ${validTypes}`
   }
 };
-// src/domains/generative_ai/eval.ts
+// src/domains/ai_services/eval.ts
 function parseEvalQueryArgs(args, session) {
   const { options, remainingArgs } = parseDomainOutputFlags(
     args,
@@ -148210,9 +148771,9 @@ var evalSubcommands = {
   defaultCommand: evalQueryCommand
 };
-// src/domains/generative_ai/index.ts
-var generativeAiDomain = {
-  name: "generative_ai",
+// src/domains/ai_services/index.ts
+var aiServicesDomain = {
+  name: "ai_services",
   description: "Interact with the F5 Distributed Cloud AI assistant for natural language queries about platform operations. Ask questions about load balancers, WAF configurations, site status, security events, or any platform topic. Supports single queries with follow-up suggestions, interactive multi-turn chat sessions, and feedback submission to improve AI responses.",
   descriptionShort: "AI assistant queries and feedback",
   descriptionMedium: "Query the AI assistant for help with F5 XC platform operations, configurations, security analysis, and troubleshooting.",
@@ -148224,18 +148785,19 @@ var generativeAiDomain = {
   ]),
   subcommands: /* @__PURE__ */ new Map([["eval", evalSubcommands]])
 };
-var generativeAiAliases = ["ai", "genai", "assistant"];
+var aiServicesAliases = ["ai", "genai", "assistant"];
 // src/domains/index.ts
 customDomains.register(loginDomain);
 customDomains.register(cloudstatusDomain);
 customDomains.register(completionDomain);
-customDomains.register(generativeAiDomain);
+customDomains.register(aiServicesDomain);
 for (const domain of customDomains.all()) {
   completionRegistry.registerDomain(fromCustomDomain(domain));
 }
+var excludedApiDomains = /* @__PURE__ */ new Set(["generative_ai"]);
 for (const [, info] of domainRegistry) {
-  if (!completionRegistry.has(info.name)) {
+  if (!completionRegistry.has(info.name) && !excludedApiDomains.has(info.name)) {
     completionRegistry.registerDomain(fromApiDomain(info));
   }
 }
@@ -148243,8 +148805,8 @@ var domainAliases = /* @__PURE__ */ new Map();
 for (const alias of cloudstatusAliases) {
   domainAliases.set(alias, "cloudstatus");
 }
-for (const alias of generativeAiAliases) {
-  domainAliases.set(alias, "generative_ai");
+for (const alias of aiServicesAliases) {
+  domainAliases.set(alias, "ai_services");
 }
 function resolveDomainAlias(name) {
   return domainAliases.get(name) ?? name;