@sunaiva/gate 1.1.0 → 1.1.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/BUSINESS_LICENSE.md +70 -70
- package/CHANGELOG.md +254 -148
- package/LICENSE +0 -0
- package/README.DRAFT.md +418 -0
- package/README.md +46 -26
- package/README.md.bak-v1.0.0-stale-MIT +59 -0
- package/SUPPORT.md +75 -0
- package/TIER_DEFINITIONS.md +161 -0
- package/dist/config/defaults.d.ts +30 -10
- package/dist/config/defaults.d.ts.map +1 -1
- package/dist/config/defaults.js +49 -26
- package/dist/config/defaults.js.map +1 -1
- package/dist/config/loader.d.ts +0 -0
- package/dist/config/loader.d.ts.map +1 -1
- package/dist/config/loader.js +1 -1
- package/dist/config/loader.js.map +1 -1
- package/dist/engine/backend-client.d.ts +0 -0
- package/dist/engine/backend-client.d.ts.map +1 -1
- package/dist/engine/backend-client.js +2 -2
- package/dist/engine/backend-client.js.map +1 -1
- package/dist/engine/hmac-verifier.d.ts +19 -0
- package/dist/engine/hmac-verifier.d.ts.map +1 -1
- package/dist/engine/hmac-verifier.js +1 -3
- package/dist/engine/hmac-verifier.js.map +1 -1
- package/dist/engine/immutability.d.ts +0 -0
- package/dist/engine/immutability.d.ts.map +1 -1
- package/dist/engine/immutability.js +0 -0
- package/dist/engine/immutability.js.map +1 -1
- package/dist/engine/pattern-matcher.d.ts +0 -0
- package/dist/engine/pattern-matcher.d.ts.map +1 -1
- package/dist/engine/pattern-matcher.js +0 -0
- package/dist/engine/pattern-matcher.js.map +1 -1
- package/dist/engine/rule-engine.d.ts +8 -1
- package/dist/engine/rule-engine.d.ts.map +1 -1
- package/dist/engine/rule-engine.js +21 -4
- package/dist/engine/rule-engine.js.map +1 -1
- package/dist/engine/session-state.d.ts +0 -0
- package/dist/engine/session-state.d.ts.map +1 -1
- package/dist/engine/session-state.js +0 -0
- package/dist/engine/session-state.js.map +1 -1
- package/dist/engine/ship-confidence-gate.d.ts +48 -0
- package/dist/engine/ship-confidence-gate.d.ts.map +1 -1
- package/dist/engine/ship-confidence-gate.js +2 -2
- package/dist/engine/ship-confidence-gate.js.map +1 -1
- package/dist/identity/first-run.d.ts +24 -0
- package/dist/identity/first-run.d.ts.map +1 -0
- package/dist/identity/first-run.js +88 -0
- package/dist/identity/first-run.js.map +1 -0
- package/dist/identity/nudge.d.ts +29 -0
- package/dist/identity/nudge.d.ts.map +1 -0
- package/dist/identity/nudge.js +74 -0
- package/dist/identity/nudge.js.map +1 -0
- package/dist/identity/premium-unlock.d.ts +30 -0
- package/dist/identity/premium-unlock.d.ts.map +1 -0
- package/dist/identity/premium-unlock.js +65 -0
- package/dist/identity/premium-unlock.js.map +1 -0
- package/dist/identity/register-client.d.ts +25 -0
- package/dist/identity/register-client.d.ts.map +1 -0
- package/dist/identity/register-client.js +48 -0
- package/dist/identity/register-client.js.map +1 -0
- package/dist/identity/telemetry.d.ts +64 -0
- package/dist/identity/telemetry.d.ts.map +1 -0
- package/dist/identity/telemetry.js +173 -0
- package/dist/identity/telemetry.js.map +1 -0
- package/dist/index.d.ts +0 -0
- package/dist/index.js +101 -23
- package/dist/rules/categories.json +0 -0
- package/dist/rules/presets.json +0 -0
- package/dist/rules/rules.json +257 -178
- package/dist/tools/audit.d.ts +0 -0
- package/dist/tools/audit.d.ts.map +1 -1
- package/dist/tools/audit.js +0 -0
- package/dist/tools/audit.js.map +1 -1
- package/dist/tools/bypass.d.ts +0 -0
- package/dist/tools/bypass.d.ts.map +1 -1
- package/dist/tools/bypass.js +1 -1
- package/dist/tools/bypass.js.map +1 -1
- package/dist/tools/export-attestation.d.ts +45 -0
- package/dist/tools/export-attestation.d.ts.map +1 -0
- package/dist/tools/export-attestation.js +152 -0
- package/dist/tools/export-attestation.js.map +1 -0
- package/dist/tools/rules.d.ts +0 -0
- package/dist/tools/rules.d.ts.map +0 -0
- package/dist/tools/rules.js +0 -0
- package/dist/tools/rules.js.map +0 -0
- package/dist/tools/ship-confidence.d.ts +6 -0
- package/dist/tools/ship-confidence.d.ts.map +1 -1
- package/dist/tools/ship-confidence.js +0 -0
- package/dist/tools/ship-confidence.js.map +1 -1
- package/dist/tools/update.d.ts +0 -0
- package/dist/tools/update.d.ts.map +1 -1
- package/dist/tools/update.js +1 -1
- package/dist/tools/update.js.map +1 -1
- package/dist/tools/validate.d.ts +0 -0
- package/dist/tools/validate.d.ts.map +1 -1
- package/dist/tools/validate.js +1 -1
- package/dist/tools/validate.js.map +1 -1
- package/dist/types/backend.d.ts +1 -1
- package/dist/types/backend.d.ts.map +1 -1
- package/dist/types/backend.js +1 -1
- package/dist/types/backend.js.map +1 -1
- package/package.json +84 -73
- package/dist/index.d.ts.map +0 -1
- package/dist/index.js.map +0 -1
package/dist/rules/rules.json
CHANGED
|
@@ -22,7 +22,7 @@
|
|
|
22
22
|
"full-suite",
|
|
23
23
|
"minimal"
|
|
24
24
|
],
|
|
25
|
-
"
|
|
25
|
+
"tier": "constitutional"
|
|
26
26
|
},
|
|
27
27
|
{
|
|
28
28
|
"id": "fin-002",
|
|
@@ -46,7 +46,7 @@
|
|
|
46
46
|
"financial-protection",
|
|
47
47
|
"full-suite"
|
|
48
48
|
],
|
|
49
|
-
"
|
|
49
|
+
"tier": "constitutional"
|
|
50
50
|
},
|
|
51
51
|
{
|
|
52
52
|
"id": "fin-003",
|
|
@@ -68,14 +68,14 @@
|
|
|
68
68
|
"financial-protection",
|
|
69
69
|
"full-suite"
|
|
70
70
|
],
|
|
71
|
-
"
|
|
71
|
+
"tier": "constitutional"
|
|
72
72
|
},
|
|
73
73
|
{
|
|
74
74
|
"id": "fin-004",
|
|
75
75
|
"name": "Crypto Transaction Block",
|
|
76
76
|
"description": "Block all cryptocurrency transfers, wallet interactions, and token purchases without explicit multi-step human approval",
|
|
77
77
|
"category": "financial-safety",
|
|
78
|
-
"enforcement": "
|
|
78
|
+
"enforcement": "standard",
|
|
79
79
|
"gate_type": "pre-action",
|
|
80
80
|
"severity": "block",
|
|
81
81
|
"detection_pattern": "Detects: wallet addresses, ETH/BTC/USDC transfers, DeFi interactions, NFT purchases, gas fee submissions, seed phrase usage",
|
|
@@ -91,7 +91,7 @@
|
|
|
91
91
|
"financial-protection",
|
|
92
92
|
"full-suite"
|
|
93
93
|
],
|
|
94
|
-
"
|
|
94
|
+
"tier": "recommended_default"
|
|
95
95
|
},
|
|
96
96
|
{
|
|
97
97
|
"id": "fin-005",
|
|
@@ -112,8 +112,9 @@
|
|
|
112
112
|
"financial-protection",
|
|
113
113
|
"full-suite"
|
|
114
114
|
],
|
|
115
|
-
"
|
|
116
|
-
"
|
|
115
|
+
"backend_required": true,
|
|
116
|
+
"tier": "premium",
|
|
117
|
+
"detection_pattern": "[server-side]"
|
|
117
118
|
},
|
|
118
119
|
{
|
|
119
120
|
"id": "fin-006",
|
|
@@ -134,8 +135,9 @@
|
|
|
134
135
|
"financial-protection",
|
|
135
136
|
"full-suite"
|
|
136
137
|
],
|
|
137
|
-
"
|
|
138
|
-
"
|
|
138
|
+
"backend_required": true,
|
|
139
|
+
"tier": "premium",
|
|
140
|
+
"detection_pattern": "[server-side]"
|
|
139
141
|
},
|
|
140
142
|
{
|
|
141
143
|
"id": "fin-007",
|
|
@@ -157,8 +159,9 @@
|
|
|
157
159
|
"full-suite",
|
|
158
160
|
"developer-safety"
|
|
159
161
|
],
|
|
160
|
-
"
|
|
161
|
-
"
|
|
162
|
+
"backend_required": true,
|
|
163
|
+
"tier": "premium",
|
|
164
|
+
"detection_pattern": "[server-side]"
|
|
162
165
|
},
|
|
163
166
|
{
|
|
164
167
|
"id": "fin-008",
|
|
@@ -181,7 +184,7 @@
|
|
|
181
184
|
"full-suite",
|
|
182
185
|
"minimal"
|
|
183
186
|
],
|
|
184
|
-
"
|
|
187
|
+
"tier": "constitutional"
|
|
185
188
|
},
|
|
186
189
|
{
|
|
187
190
|
"id": "fin-009",
|
|
@@ -203,7 +206,7 @@
|
|
|
203
206
|
"financial-protection",
|
|
204
207
|
"full-suite"
|
|
205
208
|
],
|
|
206
|
-
"
|
|
209
|
+
"tier": "constitutional"
|
|
207
210
|
},
|
|
208
211
|
{
|
|
209
212
|
"id": "fin-010",
|
|
@@ -225,8 +228,9 @@
|
|
|
225
228
|
"full-suite",
|
|
226
229
|
"developer-safety"
|
|
227
230
|
],
|
|
228
|
-
"
|
|
229
|
-
"
|
|
231
|
+
"backend_required": true,
|
|
232
|
+
"tier": "premium",
|
|
233
|
+
"detection_pattern": "[server-side]"
|
|
230
234
|
},
|
|
231
235
|
{
|
|
232
236
|
"id": "fin-011",
|
|
@@ -247,8 +251,9 @@
|
|
|
247
251
|
"financial-protection",
|
|
248
252
|
"full-suite"
|
|
249
253
|
],
|
|
250
|
-
"
|
|
251
|
-
"
|
|
254
|
+
"backend_required": true,
|
|
255
|
+
"tier": "premium",
|
|
256
|
+
"detection_pattern": "[server-side]"
|
|
252
257
|
},
|
|
253
258
|
{
|
|
254
259
|
"id": "fin-012",
|
|
@@ -270,8 +275,9 @@
|
|
|
270
275
|
"financial-protection",
|
|
271
276
|
"full-suite"
|
|
272
277
|
],
|
|
273
|
-
"
|
|
274
|
-
"
|
|
278
|
+
"backend_required": true,
|
|
279
|
+
"tier": "premium",
|
|
280
|
+
"detection_pattern": "[server-side]"
|
|
275
281
|
},
|
|
276
282
|
{
|
|
277
283
|
"id": "dat-001",
|
|
@@ -295,7 +301,7 @@
|
|
|
295
301
|
"full-suite",
|
|
296
302
|
"minimal"
|
|
297
303
|
],
|
|
298
|
-
"
|
|
304
|
+
"tier": "constitutional"
|
|
299
305
|
},
|
|
300
306
|
{
|
|
301
307
|
"id": "dat-002",
|
|
@@ -318,7 +324,7 @@
|
|
|
318
324
|
"essential",
|
|
319
325
|
"full-suite"
|
|
320
326
|
],
|
|
321
|
-
"
|
|
327
|
+
"tier": "constitutional"
|
|
322
328
|
},
|
|
323
329
|
{
|
|
324
330
|
"id": "dat-003",
|
|
@@ -340,8 +346,9 @@
|
|
|
340
346
|
"developer-safety",
|
|
341
347
|
"full-suite"
|
|
342
348
|
],
|
|
343
|
-
"
|
|
344
|
-
"
|
|
349
|
+
"backend_required": true,
|
|
350
|
+
"tier": "premium",
|
|
351
|
+
"detection_pattern": "[server-side]"
|
|
345
352
|
},
|
|
346
353
|
{
|
|
347
354
|
"id": "dat-004",
|
|
@@ -365,7 +372,7 @@
|
|
|
365
372
|
"developer-safety",
|
|
366
373
|
"full-suite"
|
|
367
374
|
],
|
|
368
|
-
"
|
|
375
|
+
"tier": "constitutional"
|
|
369
376
|
},
|
|
370
377
|
{
|
|
371
378
|
"id": "dat-005",
|
|
@@ -388,8 +395,9 @@
|
|
|
388
395
|
"developer-safety",
|
|
389
396
|
"full-suite"
|
|
390
397
|
],
|
|
391
|
-
"
|
|
392
|
-
"
|
|
398
|
+
"backend_required": true,
|
|
399
|
+
"tier": "premium",
|
|
400
|
+
"detection_pattern": "[server-side]"
|
|
393
401
|
},
|
|
394
402
|
{
|
|
395
403
|
"id": "dat-006",
|
|
@@ -409,8 +417,9 @@
|
|
|
409
417
|
"preset_groups": [
|
|
410
418
|
"full-suite"
|
|
411
419
|
],
|
|
412
|
-
"
|
|
413
|
-
"
|
|
420
|
+
"backend_required": true,
|
|
421
|
+
"tier": "premium",
|
|
422
|
+
"detection_pattern": "[server-side]"
|
|
414
423
|
},
|
|
415
424
|
{
|
|
416
425
|
"id": "dat-007",
|
|
@@ -432,8 +441,9 @@
|
|
|
432
441
|
"developer-safety",
|
|
433
442
|
"full-suite"
|
|
434
443
|
],
|
|
435
|
-
"
|
|
436
|
-
"
|
|
444
|
+
"backend_required": true,
|
|
445
|
+
"tier": "premium",
|
|
446
|
+
"detection_pattern": "[server-side]"
|
|
437
447
|
},
|
|
438
448
|
{
|
|
439
449
|
"id": "dat-008",
|
|
@@ -453,8 +463,9 @@
|
|
|
453
463
|
"preset_groups": [
|
|
454
464
|
"full-suite"
|
|
455
465
|
],
|
|
456
|
-
"
|
|
457
|
-
"
|
|
466
|
+
"backend_required": true,
|
|
467
|
+
"tier": "premium",
|
|
468
|
+
"detection_pattern": "[server-side]"
|
|
458
469
|
},
|
|
459
470
|
{
|
|
460
471
|
"id": "dat-009",
|
|
@@ -474,8 +485,9 @@
|
|
|
474
485
|
"preset_groups": [
|
|
475
486
|
"full-suite"
|
|
476
487
|
],
|
|
477
|
-
"
|
|
478
|
-
"
|
|
488
|
+
"backend_required": true,
|
|
489
|
+
"tier": "premium",
|
|
490
|
+
"detection_pattern": "[server-side]"
|
|
479
491
|
},
|
|
480
492
|
{
|
|
481
493
|
"id": "dat-010",
|
|
@@ -497,7 +509,7 @@
|
|
|
497
509
|
"developer-safety",
|
|
498
510
|
"full-suite"
|
|
499
511
|
],
|
|
500
|
-
"
|
|
512
|
+
"tier": "constitutional"
|
|
501
513
|
},
|
|
502
514
|
{
|
|
503
515
|
"id": "dat-011",
|
|
@@ -517,8 +529,9 @@
|
|
|
517
529
|
"preset_groups": [
|
|
518
530
|
"full-suite"
|
|
519
531
|
],
|
|
520
|
-
"
|
|
521
|
-
"
|
|
532
|
+
"backend_required": true,
|
|
533
|
+
"tier": "premium",
|
|
534
|
+
"detection_pattern": "[server-side]"
|
|
522
535
|
},
|
|
523
536
|
{
|
|
524
537
|
"id": "dat-012",
|
|
@@ -538,8 +551,9 @@
|
|
|
538
551
|
"preset_groups": [
|
|
539
552
|
"full-suite"
|
|
540
553
|
],
|
|
541
|
-
"
|
|
542
|
-
"
|
|
554
|
+
"backend_required": true,
|
|
555
|
+
"tier": "premium",
|
|
556
|
+
"detection_pattern": "[server-side]"
|
|
543
557
|
},
|
|
544
558
|
{
|
|
545
559
|
"id": "gov-001",
|
|
@@ -563,7 +577,7 @@
|
|
|
563
577
|
"full-suite",
|
|
564
578
|
"minimal"
|
|
565
579
|
],
|
|
566
|
-
"
|
|
580
|
+
"tier": "constitutional"
|
|
567
581
|
},
|
|
568
582
|
{
|
|
569
583
|
"id": "gov-002",
|
|
@@ -588,7 +602,7 @@
|
|
|
588
602
|
"full-suite",
|
|
589
603
|
"minimal"
|
|
590
604
|
],
|
|
591
|
-
"
|
|
605
|
+
"tier": "constitutional"
|
|
592
606
|
},
|
|
593
607
|
{
|
|
594
608
|
"id": "gov-003",
|
|
@@ -609,8 +623,9 @@
|
|
|
609
623
|
"developer-safety",
|
|
610
624
|
"full-suite"
|
|
611
625
|
],
|
|
612
|
-
"
|
|
613
|
-
"
|
|
626
|
+
"backend_required": true,
|
|
627
|
+
"tier": "premium",
|
|
628
|
+
"detection_pattern": "[server-side]"
|
|
614
629
|
},
|
|
615
630
|
{
|
|
616
631
|
"id": "gov-004",
|
|
@@ -632,7 +647,7 @@
|
|
|
632
647
|
"developer-safety",
|
|
633
648
|
"full-suite"
|
|
634
649
|
],
|
|
635
|
-
"
|
|
650
|
+
"tier": "constitutional"
|
|
636
651
|
},
|
|
637
652
|
{
|
|
638
653
|
"id": "gov-005",
|
|
@@ -654,7 +669,7 @@
|
|
|
654
669
|
"developer-safety",
|
|
655
670
|
"full-suite"
|
|
656
671
|
],
|
|
657
|
-
"
|
|
672
|
+
"tier": "constitutional"
|
|
658
673
|
},
|
|
659
674
|
{
|
|
660
675
|
"id": "gov-006",
|
|
@@ -675,7 +690,7 @@
|
|
|
675
690
|
"preset_groups": [
|
|
676
691
|
"full-suite"
|
|
677
692
|
],
|
|
678
|
-
"
|
|
693
|
+
"tier": "constitutional"
|
|
679
694
|
},
|
|
680
695
|
{
|
|
681
696
|
"id": "gov-007",
|
|
@@ -696,8 +711,9 @@
|
|
|
696
711
|
"developer-safety",
|
|
697
712
|
"full-suite"
|
|
698
713
|
],
|
|
699
|
-
"
|
|
700
|
-
"
|
|
714
|
+
"backend_required": true,
|
|
715
|
+
"tier": "premium",
|
|
716
|
+
"detection_pattern": "[server-side]"
|
|
701
717
|
},
|
|
702
718
|
{
|
|
703
719
|
"id": "gov-008",
|
|
@@ -720,7 +736,7 @@
|
|
|
720
736
|
"essential",
|
|
721
737
|
"full-suite"
|
|
722
738
|
],
|
|
723
|
-
"
|
|
739
|
+
"tier": "constitutional"
|
|
724
740
|
},
|
|
725
741
|
{
|
|
726
742
|
"id": "gov-009",
|
|
@@ -741,8 +757,9 @@
|
|
|
741
757
|
"developer-safety",
|
|
742
758
|
"full-suite"
|
|
743
759
|
],
|
|
744
|
-
"
|
|
745
|
-
"
|
|
760
|
+
"backend_required": true,
|
|
761
|
+
"tier": "premium",
|
|
762
|
+
"detection_pattern": "[server-side]"
|
|
746
763
|
},
|
|
747
764
|
{
|
|
748
765
|
"id": "gov-010",
|
|
@@ -764,8 +781,9 @@
|
|
|
764
781
|
"developer-safety",
|
|
765
782
|
"full-suite"
|
|
766
783
|
],
|
|
767
|
-
"
|
|
768
|
-
"
|
|
784
|
+
"backend_required": true,
|
|
785
|
+
"tier": "premium",
|
|
786
|
+
"detection_pattern": "[server-side]"
|
|
769
787
|
},
|
|
770
788
|
{
|
|
771
789
|
"id": "gov-011",
|
|
@@ -786,8 +804,9 @@
|
|
|
786
804
|
"developer-safety",
|
|
787
805
|
"full-suite"
|
|
788
806
|
],
|
|
789
|
-
"
|
|
790
|
-
"
|
|
807
|
+
"backend_required": true,
|
|
808
|
+
"tier": "premium",
|
|
809
|
+
"detection_pattern": "[server-side]"
|
|
791
810
|
},
|
|
792
811
|
{
|
|
793
812
|
"id": "gov-012",
|
|
@@ -810,7 +829,7 @@
|
|
|
810
829
|
"developer-safety",
|
|
811
830
|
"full-suite"
|
|
812
831
|
],
|
|
813
|
-
"
|
|
832
|
+
"tier": "constitutional"
|
|
814
833
|
},
|
|
815
834
|
{
|
|
816
835
|
"id": "qlt-001",
|
|
@@ -831,8 +850,9 @@
|
|
|
831
850
|
"developer-safety",
|
|
832
851
|
"full-suite"
|
|
833
852
|
],
|
|
834
|
-
"
|
|
835
|
-
"
|
|
853
|
+
"backend_required": true,
|
|
854
|
+
"tier": "premium",
|
|
855
|
+
"detection_pattern": "[server-side]"
|
|
836
856
|
},
|
|
837
857
|
{
|
|
838
858
|
"id": "qlt-002",
|
|
@@ -854,8 +874,9 @@
|
|
|
854
874
|
"developer-safety",
|
|
855
875
|
"full-suite"
|
|
856
876
|
],
|
|
857
|
-
"
|
|
858
|
-
"
|
|
877
|
+
"backend_required": true,
|
|
878
|
+
"tier": "premium",
|
|
879
|
+
"detection_pattern": "[server-side]"
|
|
859
880
|
},
|
|
860
881
|
{
|
|
861
882
|
"id": "qlt-003",
|
|
@@ -876,8 +897,9 @@
|
|
|
876
897
|
"developer-safety",
|
|
877
898
|
"full-suite"
|
|
878
899
|
],
|
|
879
|
-
"
|
|
880
|
-
"
|
|
900
|
+
"backend_required": true,
|
|
901
|
+
"tier": "premium",
|
|
902
|
+
"detection_pattern": "[server-side]"
|
|
881
903
|
},
|
|
882
904
|
{
|
|
883
905
|
"id": "qlt-004",
|
|
@@ -898,8 +920,9 @@
|
|
|
898
920
|
"developer-safety",
|
|
899
921
|
"full-suite"
|
|
900
922
|
],
|
|
901
|
-
"
|
|
902
|
-
"
|
|
923
|
+
"backend_required": true,
|
|
924
|
+
"tier": "premium",
|
|
925
|
+
"detection_pattern": "[server-side]"
|
|
903
926
|
},
|
|
904
927
|
{
|
|
905
928
|
"id": "qlt-005",
|
|
@@ -920,8 +943,9 @@
|
|
|
920
943
|
"developer-safety",
|
|
921
944
|
"full-suite"
|
|
922
945
|
],
|
|
923
|
-
"
|
|
924
|
-
"
|
|
946
|
+
"backend_required": true,
|
|
947
|
+
"tier": "premium",
|
|
948
|
+
"detection_pattern": "[server-side]"
|
|
925
949
|
},
|
|
926
950
|
{
|
|
927
951
|
"id": "qlt-006",
|
|
@@ -942,8 +966,9 @@
|
|
|
942
966
|
"developer-safety",
|
|
943
967
|
"full-suite"
|
|
944
968
|
],
|
|
945
|
-
"
|
|
946
|
-
"
|
|
969
|
+
"backend_required": true,
|
|
970
|
+
"tier": "premium",
|
|
971
|
+
"detection_pattern": "[server-side]"
|
|
947
972
|
},
|
|
948
973
|
{
|
|
949
974
|
"id": "qlt-007",
|
|
@@ -964,8 +989,9 @@
|
|
|
964
989
|
"developer-safety",
|
|
965
990
|
"full-suite"
|
|
966
991
|
],
|
|
967
|
-
"
|
|
968
|
-
"
|
|
992
|
+
"backend_required": true,
|
|
993
|
+
"tier": "premium",
|
|
994
|
+
"detection_pattern": "[server-side]"
|
|
969
995
|
},
|
|
970
996
|
{
|
|
971
997
|
"id": "qlt-008",
|
|
@@ -986,8 +1012,9 @@
|
|
|
986
1012
|
"developer-safety",
|
|
987
1013
|
"full-suite"
|
|
988
1014
|
],
|
|
989
|
-
"
|
|
990
|
-
"
|
|
1015
|
+
"backend_required": true,
|
|
1016
|
+
"tier": "premium",
|
|
1017
|
+
"detection_pattern": "[server-side]"
|
|
991
1018
|
},
|
|
992
1019
|
{
|
|
993
1020
|
"id": "qlt-009",
|
|
@@ -1008,8 +1035,9 @@
|
|
|
1008
1035
|
"developer-safety",
|
|
1009
1036
|
"full-suite"
|
|
1010
1037
|
],
|
|
1011
|
-
"
|
|
1012
|
-
"
|
|
1038
|
+
"backend_required": true,
|
|
1039
|
+
"tier": "premium",
|
|
1040
|
+
"detection_pattern": "[server-side]"
|
|
1013
1041
|
},
|
|
1014
1042
|
{
|
|
1015
1043
|
"id": "qlt-010",
|
|
@@ -1030,8 +1058,9 @@
|
|
|
1030
1058
|
"developer-safety",
|
|
1031
1059
|
"full-suite"
|
|
1032
1060
|
],
|
|
1033
|
-
"
|
|
1034
|
-
"
|
|
1061
|
+
"backend_required": true,
|
|
1062
|
+
"tier": "premium",
|
|
1063
|
+
"detection_pattern": "[server-side]"
|
|
1035
1064
|
},
|
|
1036
1065
|
{
|
|
1037
1066
|
"id": "qlt-011",
|
|
@@ -1052,8 +1081,9 @@
|
|
|
1052
1081
|
"developer-safety",
|
|
1053
1082
|
"full-suite"
|
|
1054
1083
|
],
|
|
1055
|
-
"
|
|
1056
|
-
"
|
|
1084
|
+
"backend_required": true,
|
|
1085
|
+
"tier": "premium",
|
|
1086
|
+
"detection_pattern": "[server-side]"
|
|
1057
1087
|
},
|
|
1058
1088
|
{
|
|
1059
1089
|
"id": "qlt-012",
|
|
@@ -1074,15 +1104,16 @@
|
|
|
1074
1104
|
"developer-safety",
|
|
1075
1105
|
"full-suite"
|
|
1076
1106
|
],
|
|
1077
|
-
"
|
|
1078
|
-
"
|
|
1107
|
+
"backend_required": true,
|
|
1108
|
+
"tier": "premium",
|
|
1109
|
+
"detection_pattern": "[server-side]"
|
|
1079
1110
|
},
|
|
1080
1111
|
{
|
|
1081
1112
|
"id": "com-001",
|
|
1082
1113
|
"name": "Email Review Gate",
|
|
1083
1114
|
"description": "Block sending any external email drafted by an agent without human review of content, recipients, and subject line",
|
|
1084
1115
|
"category": "communication-safety",
|
|
1085
|
-
"enforcement": "
|
|
1116
|
+
"enforcement": "standard",
|
|
1086
1117
|
"gate_type": "pre-action",
|
|
1087
1118
|
"severity": "block",
|
|
1088
1119
|
"detection_pattern": "Detects: SMTP send commands, Gmail API message sends, Postmark/SendGrid single sends, nodemailer send calls with external recipients",
|
|
@@ -1097,14 +1128,14 @@
|
|
|
1097
1128
|
"essential",
|
|
1098
1129
|
"full-suite"
|
|
1099
1130
|
],
|
|
1100
|
-
"
|
|
1131
|
+
"tier": "recommended_default"
|
|
1101
1132
|
},
|
|
1102
1133
|
{
|
|
1103
1134
|
"id": "com-002",
|
|
1104
1135
|
"name": "Social Media Approval Gate",
|
|
1105
1136
|
"description": "Block posting, publishing, or scheduling any social media content without human review and approval",
|
|
1106
1137
|
"category": "communication-safety",
|
|
1107
|
-
"enforcement": "
|
|
1138
|
+
"enforcement": "standard",
|
|
1108
1139
|
"gate_type": "pre-action",
|
|
1109
1140
|
"severity": "block",
|
|
1110
1141
|
"detection_pattern": "Detects: Twitter/X API post calls, LinkedIn share submissions, Facebook page post API, Instagram media publishes, TikTok upload completions",
|
|
@@ -1119,7 +1150,7 @@
|
|
|
1119
1150
|
"essential",
|
|
1120
1151
|
"full-suite"
|
|
1121
1152
|
],
|
|
1122
|
-
"
|
|
1153
|
+
"tier": "recommended_default"
|
|
1123
1154
|
},
|
|
1124
1155
|
{
|
|
1125
1156
|
"id": "com-003",
|
|
@@ -1139,8 +1170,9 @@
|
|
|
1139
1170
|
"preset_groups": [
|
|
1140
1171
|
"full-suite"
|
|
1141
1172
|
],
|
|
1142
|
-
"
|
|
1143
|
-
"
|
|
1173
|
+
"backend_required": true,
|
|
1174
|
+
"tier": "premium",
|
|
1175
|
+
"detection_pattern": "[server-side]"
|
|
1144
1176
|
},
|
|
1145
1177
|
{
|
|
1146
1178
|
"id": "com-004",
|
|
@@ -1160,15 +1192,16 @@
|
|
|
1160
1192
|
"preset_groups": [
|
|
1161
1193
|
"full-suite"
|
|
1162
1194
|
],
|
|
1163
|
-
"
|
|
1164
|
-
"
|
|
1195
|
+
"backend_required": true,
|
|
1196
|
+
"tier": "premium",
|
|
1197
|
+
"detection_pattern": "[server-side]"
|
|
1165
1198
|
},
|
|
1166
1199
|
{
|
|
1167
1200
|
"id": "com-005",
|
|
1168
1201
|
"name": "Customer Communication Gate",
|
|
1169
1202
|
"description": "Block any direct communication to customers, clients, or partners initiated by an agent without human sign-off",
|
|
1170
1203
|
"category": "communication-safety",
|
|
1171
|
-
"enforcement": "
|
|
1204
|
+
"enforcement": "standard",
|
|
1172
1205
|
"gate_type": "pre-action",
|
|
1173
1206
|
"severity": "block",
|
|
1174
1207
|
"detection_pattern": "Detects: CRM-triggered customer emails, in-app messages sent to user segments, support ticket replies, automated refund communications, contract or invoice emails",
|
|
@@ -1183,14 +1216,14 @@
|
|
|
1183
1216
|
"essential",
|
|
1184
1217
|
"full-suite"
|
|
1185
1218
|
],
|
|
1186
|
-
"
|
|
1219
|
+
"tier": "recommended_default"
|
|
1187
1220
|
},
|
|
1188
1221
|
{
|
|
1189
1222
|
"id": "com-006",
|
|
1190
1223
|
"name": "Press Release and PR Content Gate",
|
|
1191
1224
|
"description": "Block publishing or distributing any press release, media statement, or investor communication without executive approval",
|
|
1192
1225
|
"category": "communication-safety",
|
|
1193
|
-
"enforcement": "
|
|
1226
|
+
"enforcement": "standard",
|
|
1194
1227
|
"gate_type": "pre-action",
|
|
1195
1228
|
"severity": "block",
|
|
1196
1229
|
"detection_pattern": "Detects: PR Newswire distribution API, Business Wire submissions, media contact outreach with embargo dates, investor relations email sends",
|
|
@@ -1204,7 +1237,7 @@
|
|
|
1204
1237
|
"preset_groups": [
|
|
1205
1238
|
"full-suite"
|
|
1206
1239
|
],
|
|
1207
|
-
"
|
|
1240
|
+
"tier": "recommended_default"
|
|
1208
1241
|
},
|
|
1209
1242
|
{
|
|
1210
1243
|
"id": "com-007",
|
|
@@ -1225,7 +1258,7 @@
|
|
|
1225
1258
|
"preset_groups": [
|
|
1226
1259
|
"full-suite"
|
|
1227
1260
|
],
|
|
1228
|
-
"
|
|
1261
|
+
"tier": "constitutional"
|
|
1229
1262
|
},
|
|
1230
1263
|
{
|
|
1231
1264
|
"id": "com-008",
|
|
@@ -1245,15 +1278,16 @@
|
|
|
1245
1278
|
"preset_groups": [
|
|
1246
1279
|
"full-suite"
|
|
1247
1280
|
],
|
|
1248
|
-
"
|
|
1249
|
-
"
|
|
1281
|
+
"backend_required": true,
|
|
1282
|
+
"tier": "premium",
|
|
1283
|
+
"detection_pattern": "[server-side]"
|
|
1250
1284
|
},
|
|
1251
1285
|
{
|
|
1252
1286
|
"id": "com-009",
|
|
1253
1287
|
"name": "Outreach Approval Before Launch",
|
|
1254
1288
|
"description": "Require explicit go/no-go approval before activating any cold outreach sequence or automated follow-up campaign",
|
|
1255
1289
|
"category": "communication-safety",
|
|
1256
|
-
"enforcement": "
|
|
1290
|
+
"enforcement": "standard",
|
|
1257
1291
|
"gate_type": "pre-action",
|
|
1258
1292
|
"severity": "block",
|
|
1259
1293
|
"detection_pattern": "Detects: Instantly.ai campaign activation, Lemlist sequence launch, Apollo.io sequence start, Outreach.io sequence enable, HubSpot sequence activation",
|
|
@@ -1268,7 +1302,7 @@
|
|
|
1268
1302
|
"essential",
|
|
1269
1303
|
"full-suite"
|
|
1270
1304
|
],
|
|
1271
|
-
"
|
|
1305
|
+
"tier": "recommended_default"
|
|
1272
1306
|
},
|
|
1273
1307
|
{
|
|
1274
1308
|
"id": "com-010",
|
|
@@ -1288,8 +1322,9 @@
|
|
|
1288
1322
|
"preset_groups": [
|
|
1289
1323
|
"full-suite"
|
|
1290
1324
|
],
|
|
1291
|
-
"
|
|
1292
|
-
"
|
|
1325
|
+
"backend_required": true,
|
|
1326
|
+
"tier": "premium",
|
|
1327
|
+
"detection_pattern": "[server-side]"
|
|
1293
1328
|
},
|
|
1294
1329
|
{
|
|
1295
1330
|
"id": "com-011",
|
|
@@ -1310,7 +1345,7 @@
|
|
|
1310
1345
|
"preset_groups": [
|
|
1311
1346
|
"full-suite"
|
|
1312
1347
|
],
|
|
1313
|
-
"
|
|
1348
|
+
"tier": "constitutional"
|
|
1314
1349
|
},
|
|
1315
1350
|
{
|
|
1316
1351
|
"id": "com-012",
|
|
@@ -1330,8 +1365,9 @@
|
|
|
1330
1365
|
"preset_groups": [
|
|
1331
1366
|
"full-suite"
|
|
1332
1367
|
],
|
|
1333
|
-
"
|
|
1334
|
-
"
|
|
1368
|
+
"backend_required": true,
|
|
1369
|
+
"tier": "premium",
|
|
1370
|
+
"detection_pattern": "[server-side]"
|
|
1335
1371
|
},
|
|
1336
1372
|
{
|
|
1337
1373
|
"id": "know-001",
|
|
@@ -1352,8 +1388,9 @@
|
|
|
1352
1388
|
"developer-safety",
|
|
1353
1389
|
"full-suite"
|
|
1354
1390
|
],
|
|
1355
|
-
"
|
|
1356
|
-
"
|
|
1391
|
+
"backend_required": true,
|
|
1392
|
+
"tier": "premium",
|
|
1393
|
+
"detection_pattern": "[server-side]"
|
|
1357
1394
|
},
|
|
1358
1395
|
{
|
|
1359
1396
|
"id": "know-002",
|
|
@@ -1373,8 +1410,9 @@
|
|
|
1373
1410
|
"preset_groups": [
|
|
1374
1411
|
"full-suite"
|
|
1375
1412
|
],
|
|
1376
|
-
"
|
|
1377
|
-
"
|
|
1413
|
+
"backend_required": true,
|
|
1414
|
+
"tier": "premium",
|
|
1415
|
+
"detection_pattern": "[server-side]"
|
|
1378
1416
|
},
|
|
1379
1417
|
{
|
|
1380
1418
|
"id": "know-003",
|
|
@@ -1394,8 +1432,9 @@
|
|
|
1394
1432
|
"preset_groups": [
|
|
1395
1433
|
"full-suite"
|
|
1396
1434
|
],
|
|
1397
|
-
"
|
|
1398
|
-
"
|
|
1435
|
+
"backend_required": true,
|
|
1436
|
+
"tier": "premium",
|
|
1437
|
+
"detection_pattern": "[server-side]"
|
|
1399
1438
|
},
|
|
1400
1439
|
{
|
|
1401
1440
|
"id": "know-004",
|
|
@@ -1416,8 +1455,9 @@
|
|
|
1416
1455
|
"developer-safety",
|
|
1417
1456
|
"full-suite"
|
|
1418
1457
|
],
|
|
1419
|
-
"
|
|
1420
|
-
"
|
|
1458
|
+
"backend_required": true,
|
|
1459
|
+
"tier": "premium",
|
|
1460
|
+
"detection_pattern": "[server-side]"
|
|
1421
1461
|
},
|
|
1422
1462
|
{
|
|
1423
1463
|
"id": "know-005",
|
|
@@ -1438,8 +1478,9 @@
|
|
|
1438
1478
|
"developer-safety",
|
|
1439
1479
|
"full-suite"
|
|
1440
1480
|
],
|
|
1441
|
-
"
|
|
1442
|
-
"
|
|
1481
|
+
"backend_required": true,
|
|
1482
|
+
"tier": "premium",
|
|
1483
|
+
"detection_pattern": "[server-side]"
|
|
1443
1484
|
},
|
|
1444
1485
|
{
|
|
1445
1486
|
"id": "know-006",
|
|
@@ -1460,8 +1501,9 @@
|
|
|
1460
1501
|
"essential",
|
|
1461
1502
|
"full-suite"
|
|
1462
1503
|
],
|
|
1463
|
-
"
|
|
1464
|
-
"
|
|
1504
|
+
"backend_required": true,
|
|
1505
|
+
"tier": "premium",
|
|
1506
|
+
"detection_pattern": "[server-side]"
|
|
1465
1507
|
},
|
|
1466
1508
|
{
|
|
1467
1509
|
"id": "know-007",
|
|
@@ -1482,8 +1524,9 @@
|
|
|
1482
1524
|
"developer-safety",
|
|
1483
1525
|
"full-suite"
|
|
1484
1526
|
],
|
|
1485
|
-
"
|
|
1486
|
-
"
|
|
1527
|
+
"backend_required": true,
|
|
1528
|
+
"tier": "premium",
|
|
1529
|
+
"detection_pattern": "[server-side]"
|
|
1487
1530
|
},
|
|
1488
1531
|
{
|
|
1489
1532
|
"id": "know-008",
|
|
@@ -1504,15 +1547,16 @@
|
|
|
1504
1547
|
"developer-safety",
|
|
1505
1548
|
"full-suite"
|
|
1506
1549
|
],
|
|
1507
|
-
"
|
|
1508
|
-
"
|
|
1550
|
+
"backend_required": true,
|
|
1551
|
+
"tier": "premium",
|
|
1552
|
+
"detection_pattern": "[server-side]"
|
|
1509
1553
|
},
|
|
1510
1554
|
{
|
|
1511
1555
|
"id": "know-009",
|
|
1512
1556
|
"name": "No Fabricated Statistics",
|
|
1513
1557
|
"description": "Block agent from presenting invented numbers, market sizes, or performance statistics as factual claims",
|
|
1514
1558
|
"category": "knowledge-protocol",
|
|
1515
|
-
"enforcement": "
|
|
1559
|
+
"enforcement": "standard",
|
|
1516
1560
|
"gate_type": "post-action",
|
|
1517
1561
|
"severity": "block",
|
|
1518
1562
|
"detection_pattern": "Detects: market size claims without cited research, performance benchmarks not sourced to a test run, conversion rates stated as fact without underlying data",
|
|
@@ -1526,7 +1570,7 @@
|
|
|
1526
1570
|
"preset_groups": [
|
|
1527
1571
|
"full-suite"
|
|
1528
1572
|
],
|
|
1529
|
-
"
|
|
1573
|
+
"tier": "recommended_default"
|
|
1530
1574
|
},
|
|
1531
1575
|
{
|
|
1532
1576
|
"id": "know-010",
|
|
@@ -1546,8 +1590,9 @@
|
|
|
1546
1590
|
"preset_groups": [
|
|
1547
1591
|
"full-suite"
|
|
1548
1592
|
],
|
|
1549
|
-
"
|
|
1550
|
-
"
|
|
1593
|
+
"backend_required": true,
|
|
1594
|
+
"tier": "premium",
|
|
1595
|
+
"detection_pattern": "[server-side]"
|
|
1551
1596
|
},
|
|
1552
1597
|
{
|
|
1553
1598
|
"id": "know-011",
|
|
@@ -1567,8 +1612,9 @@
|
|
|
1567
1612
|
"preset_groups": [
|
|
1568
1613
|
"full-suite"
|
|
1569
1614
|
],
|
|
1570
|
-
"
|
|
1571
|
-
"
|
|
1615
|
+
"backend_required": true,
|
|
1616
|
+
"tier": "premium",
|
|
1617
|
+
"detection_pattern": "[server-side]"
|
|
1572
1618
|
},
|
|
1573
1619
|
{
|
|
1574
1620
|
"id": "know-012",
|
|
@@ -1589,8 +1635,9 @@
|
|
|
1589
1635
|
"developer-safety",
|
|
1590
1636
|
"full-suite"
|
|
1591
1637
|
],
|
|
1592
|
-
"
|
|
1593
|
-
"
|
|
1638
|
+
"backend_required": true,
|
|
1639
|
+
"tier": "premium",
|
|
1640
|
+
"detection_pattern": "[server-side]"
|
|
1594
1641
|
},
|
|
1595
1642
|
{
|
|
1596
1643
|
"id": "res-001",
|
|
@@ -1612,8 +1659,9 @@
|
|
|
1612
1659
|
"resource-protection",
|
|
1613
1660
|
"full-suite"
|
|
1614
1661
|
],
|
|
1615
|
-
"
|
|
1616
|
-
"
|
|
1662
|
+
"backend_required": true,
|
|
1663
|
+
"tier": "premium",
|
|
1664
|
+
"detection_pattern": "[server-side]"
|
|
1617
1665
|
},
|
|
1618
1666
|
{
|
|
1619
1667
|
"id": "res-002",
|
|
@@ -1636,8 +1684,9 @@
|
|
|
1636
1684
|
"resource-protection",
|
|
1637
1685
|
"full-suite"
|
|
1638
1686
|
],
|
|
1639
|
-
"
|
|
1640
|
-
"
|
|
1687
|
+
"backend_required": true,
|
|
1688
|
+
"tier": "premium",
|
|
1689
|
+
"detection_pattern": "[server-side]"
|
|
1641
1690
|
},
|
|
1642
1691
|
{
|
|
1643
1692
|
"id": "res-003",
|
|
@@ -1659,8 +1708,9 @@
|
|
|
1659
1708
|
"resource-protection",
|
|
1660
1709
|
"full-suite"
|
|
1661
1710
|
],
|
|
1662
|
-
"
|
|
1663
|
-
"
|
|
1711
|
+
"backend_required": true,
|
|
1712
|
+
"tier": "premium",
|
|
1713
|
+
"detection_pattern": "[server-side]"
|
|
1664
1714
|
},
|
|
1665
1715
|
{
|
|
1666
1716
|
"id": "res-004",
|
|
@@ -1682,8 +1732,9 @@
|
|
|
1682
1732
|
"resource-protection",
|
|
1683
1733
|
"full-suite"
|
|
1684
1734
|
],
|
|
1685
|
-
"
|
|
1686
|
-
"
|
|
1735
|
+
"backend_required": true,
|
|
1736
|
+
"tier": "premium",
|
|
1737
|
+
"detection_pattern": "[server-side]"
|
|
1687
1738
|
},
|
|
1688
1739
|
{
|
|
1689
1740
|
"id": "res-005",
|
|
@@ -1704,8 +1755,9 @@
|
|
|
1704
1755
|
"resource-protection",
|
|
1705
1756
|
"full-suite"
|
|
1706
1757
|
],
|
|
1707
|
-
"
|
|
1708
|
-
"
|
|
1758
|
+
"backend_required": true,
|
|
1759
|
+
"tier": "premium",
|
|
1760
|
+
"detection_pattern": "[server-side]"
|
|
1709
1761
|
},
|
|
1710
1762
|
{
|
|
1711
1763
|
"id": "res-006",
|
|
@@ -1726,8 +1778,9 @@
|
|
|
1726
1778
|
"resource-protection",
|
|
1727
1779
|
"full-suite"
|
|
1728
1780
|
],
|
|
1729
|
-
"
|
|
1730
|
-
"
|
|
1781
|
+
"backend_required": true,
|
|
1782
|
+
"tier": "premium",
|
|
1783
|
+
"detection_pattern": "[server-side]"
|
|
1731
1784
|
},
|
|
1732
1785
|
{
|
|
1733
1786
|
"id": "res-007",
|
|
@@ -1749,8 +1802,9 @@
|
|
|
1749
1802
|
"resource-protection",
|
|
1750
1803
|
"full-suite"
|
|
1751
1804
|
],
|
|
1752
|
-
"
|
|
1753
|
-
"
|
|
1805
|
+
"backend_required": true,
|
|
1806
|
+
"tier": "premium",
|
|
1807
|
+
"detection_pattern": "[server-side]"
|
|
1754
1808
|
},
|
|
1755
1809
|
{
|
|
1756
1810
|
"id": "res-008",
|
|
@@ -1772,8 +1826,9 @@
|
|
|
1772
1826
|
"resource-protection",
|
|
1773
1827
|
"full-suite"
|
|
1774
1828
|
],
|
|
1775
|
-
"
|
|
1776
|
-
"
|
|
1829
|
+
"backend_required": true,
|
|
1830
|
+
"tier": "premium",
|
|
1831
|
+
"detection_pattern": "[server-side]"
|
|
1777
1832
|
},
|
|
1778
1833
|
{
|
|
1779
1834
|
"id": "res-009",
|
|
@@ -1795,8 +1850,9 @@
|
|
|
1795
1850
|
"resource-protection",
|
|
1796
1851
|
"full-suite"
|
|
1797
1852
|
],
|
|
1798
|
-
"
|
|
1799
|
-
"
|
|
1853
|
+
"backend_required": true,
|
|
1854
|
+
"tier": "premium",
|
|
1855
|
+
"detection_pattern": "[server-side]"
|
|
1800
1856
|
},
|
|
1801
1857
|
{
|
|
1802
1858
|
"id": "res-010",
|
|
@@ -1817,8 +1873,9 @@
|
|
|
1817
1873
|
"resource-protection",
|
|
1818
1874
|
"full-suite"
|
|
1819
1875
|
],
|
|
1820
|
-
"
|
|
1821
|
-
"
|
|
1876
|
+
"backend_required": true,
|
|
1877
|
+
"tier": "premium",
|
|
1878
|
+
"detection_pattern": "[server-side]"
|
|
1822
1879
|
},
|
|
1823
1880
|
{
|
|
1824
1881
|
"id": "res-011",
|
|
@@ -1840,8 +1897,9 @@
|
|
|
1840
1897
|
"resource-protection",
|
|
1841
1898
|
"full-suite"
|
|
1842
1899
|
],
|
|
1843
|
-
"
|
|
1844
|
-
"
|
|
1900
|
+
"backend_required": true,
|
|
1901
|
+
"tier": "premium",
|
|
1902
|
+
"detection_pattern": "[server-side]"
|
|
1845
1903
|
},
|
|
1846
1904
|
{
|
|
1847
1905
|
"id": "res-012",
|
|
@@ -1863,8 +1921,9 @@
|
|
|
1863
1921
|
"resource-protection",
|
|
1864
1922
|
"full-suite"
|
|
1865
1923
|
],
|
|
1866
|
-
"
|
|
1867
|
-
"
|
|
1924
|
+
"backend_required": true,
|
|
1925
|
+
"tier": "premium",
|
|
1926
|
+
"detection_pattern": "[server-side]"
|
|
1868
1927
|
},
|
|
1869
1928
|
{
|
|
1870
1929
|
"id": "sec-001",
|
|
@@ -1887,7 +1946,7 @@
|
|
|
1887
1946
|
"developer-safety",
|
|
1888
1947
|
"full-suite"
|
|
1889
1948
|
],
|
|
1890
|
-
"
|
|
1949
|
+
"tier": "constitutional"
|
|
1891
1950
|
},
|
|
1892
1951
|
{
|
|
1893
1952
|
"id": "sec-002",
|
|
@@ -1909,7 +1968,7 @@
|
|
|
1909
1968
|
"developer-safety",
|
|
1910
1969
|
"full-suite"
|
|
1911
1970
|
],
|
|
1912
|
-
"
|
|
1971
|
+
"tier": "constitutional"
|
|
1913
1972
|
},
|
|
1914
1973
|
{
|
|
1915
1974
|
"id": "sec-003",
|
|
@@ -1930,8 +1989,9 @@
|
|
|
1930
1989
|
"developer-safety",
|
|
1931
1990
|
"full-suite"
|
|
1932
1991
|
],
|
|
1933
|
-
"
|
|
1934
|
-
"
|
|
1992
|
+
"backend_required": true,
|
|
1993
|
+
"tier": "premium",
|
|
1994
|
+
"detection_pattern": "[server-side]"
|
|
1935
1995
|
},
|
|
1936
1996
|
{
|
|
1937
1997
|
"id": "sec-004",
|
|
@@ -1953,7 +2013,7 @@
|
|
|
1953
2013
|
"developer-safety",
|
|
1954
2014
|
"full-suite"
|
|
1955
2015
|
],
|
|
1956
|
-
"
|
|
2016
|
+
"tier": "constitutional"
|
|
1957
2017
|
},
|
|
1958
2018
|
{
|
|
1959
2019
|
"id": "sec-005",
|
|
@@ -1974,8 +2034,9 @@
|
|
|
1974
2034
|
"developer-safety",
|
|
1975
2035
|
"full-suite"
|
|
1976
2036
|
],
|
|
1977
|
-
"
|
|
1978
|
-
"
|
|
2037
|
+
"backend_required": true,
|
|
2038
|
+
"tier": "premium",
|
|
2039
|
+
"detection_pattern": "[server-side]"
|
|
1979
2040
|
},
|
|
1980
2041
|
{
|
|
1981
2042
|
"id": "sec-006",
|
|
@@ -1997,7 +2058,7 @@
|
|
|
1997
2058
|
"developer-safety",
|
|
1998
2059
|
"full-suite"
|
|
1999
2060
|
],
|
|
2000
|
-
"
|
|
2061
|
+
"tier": "constitutional"
|
|
2001
2062
|
},
|
|
2002
2063
|
{
|
|
2003
2064
|
"id": "sec-007",
|
|
@@ -2018,8 +2079,9 @@
|
|
|
2018
2079
|
"developer-safety",
|
|
2019
2080
|
"full-suite"
|
|
2020
2081
|
],
|
|
2021
|
-
"
|
|
2022
|
-
"
|
|
2082
|
+
"backend_required": true,
|
|
2083
|
+
"tier": "premium",
|
|
2084
|
+
"detection_pattern": "[server-side]"
|
|
2023
2085
|
},
|
|
2024
2086
|
{
|
|
2025
2087
|
"id": "sec-008",
|
|
@@ -2040,8 +2102,9 @@
|
|
|
2040
2102
|
"developer-safety",
|
|
2041
2103
|
"full-suite"
|
|
2042
2104
|
],
|
|
2043
|
-
"
|
|
2044
|
-
"
|
|
2105
|
+
"backend_required": true,
|
|
2106
|
+
"tier": "premium",
|
|
2107
|
+
"detection_pattern": "[server-side]"
|
|
2045
2108
|
},
|
|
2046
2109
|
{
|
|
2047
2110
|
"id": "sec-009",
|
|
@@ -2063,18 +2126,18 @@
|
|
|
2063
2126
|
"developer-safety",
|
|
2064
2127
|
"full-suite"
|
|
2065
2128
|
],
|
|
2066
|
-
"
|
|
2067
|
-
"
|
|
2129
|
+
"backend_required": true,
|
|
2130
|
+
"tier": "premium",
|
|
2131
|
+
"detection_pattern": "[server-side]"
|
|
2068
2132
|
},
|
|
2069
2133
|
{
|
|
2070
2134
|
"id": "sec-010",
|
|
2071
2135
|
"name": "No Banned Model Providers",
|
|
2072
2136
|
"description": "Block agent from routing requests to providers on the organisation's banned list (e.g. providers with IP leakage concerns)",
|
|
2073
2137
|
"category": "security",
|
|
2074
|
-
"enforcement": "
|
|
2138
|
+
"enforcement": "standard",
|
|
2075
2139
|
"gate_type": "pre-action",
|
|
2076
2140
|
"severity": "block",
|
|
2077
|
-
"detection_pattern": "Detects: API calls to Kimi, MiniMax, DeepSeek, or other banned provider endpoints; model IDs matching banned provider prefixes in routing configs",
|
|
2078
2141
|
"example_blocked": "Agent routes a prompt containing proprietary code to a DeepSeek API endpoint to save costs",
|
|
2079
2142
|
"example_allowed": "Agent routes all requests through approved providers (Anthropic, Google, OpenRouter with approved models only)",
|
|
2080
2143
|
"tags": [
|
|
@@ -2086,7 +2149,19 @@
|
|
|
2086
2149
|
"developer-safety",
|
|
2087
2150
|
"full-suite"
|
|
2088
2151
|
],
|
|
2089
|
-
"
|
|
2152
|
+
"tier": "premium",
|
|
2153
|
+
"backend_required": true,
|
|
2154
|
+
"user_configurable": true,
|
|
2155
|
+
"config_schema": {
|
|
2156
|
+
"banned_providers": {
|
|
2157
|
+
"type": "array",
|
|
2158
|
+
"items": {
|
|
2159
|
+
"type": "string"
|
|
2160
|
+
},
|
|
2161
|
+
"description": "List of model provider substrings to block (e.g. [\"deepseek\", \"qwen\"]). Customer-supplied."
|
|
2162
|
+
}
|
|
2163
|
+
},
|
|
2164
|
+
"detection_pattern": "[server-side]"
|
|
2090
2165
|
},
|
|
2091
2166
|
{
|
|
2092
2167
|
"id": "sec-011",
|
|
@@ -2108,7 +2183,7 @@
|
|
|
2108
2183
|
"developer-safety",
|
|
2109
2184
|
"full-suite"
|
|
2110
2185
|
],
|
|
2111
|
-
"
|
|
2186
|
+
"tier": "constitutional"
|
|
2112
2187
|
},
|
|
2113
2188
|
{
|
|
2114
2189
|
"id": "sec-012",
|
|
@@ -2129,8 +2204,9 @@
|
|
|
2129
2204
|
"developer-safety",
|
|
2130
2205
|
"full-suite"
|
|
2131
2206
|
],
|
|
2132
|
-
"
|
|
2133
|
-
"
|
|
2207
|
+
"backend_required": true,
|
|
2208
|
+
"tier": "premium",
|
|
2209
|
+
"detection_pattern": "[server-side]"
|
|
2134
2210
|
},
|
|
2135
2211
|
{
|
|
2136
2212
|
"id": "cmp-001",
|
|
@@ -2150,15 +2226,16 @@
|
|
|
2150
2226
|
"preset_groups": [
|
|
2151
2227
|
"full-suite"
|
|
2152
2228
|
],
|
|
2153
|
-
"
|
|
2154
|
-
"
|
|
2229
|
+
"backend_required": true,
|
|
2230
|
+
"tier": "premium",
|
|
2231
|
+
"detection_pattern": "[server-side]"
|
|
2155
2232
|
},
|
|
2156
2233
|
{
|
|
2157
2234
|
"id": "cmp-002",
|
|
2158
2235
|
"name": "GDPR Data Handling Protocol",
|
|
2159
2236
|
"description": "Require explicit lawful basis documentation before any collection, processing, or storage of EU resident personal data",
|
|
2160
2237
|
"category": "compliance",
|
|
2161
|
-
"enforcement": "
|
|
2238
|
+
"enforcement": "standard",
|
|
2162
2239
|
"gate_type": "pre-action",
|
|
2163
2240
|
"severity": "block",
|
|
2164
2241
|
"detection_pattern": "Detects: EU resident data stored without consent record, PII processed without documented lawful basis, data transferred outside EU/EEA without Standard Contractual Clauses",
|
|
@@ -2172,7 +2249,7 @@
|
|
|
2172
2249
|
"preset_groups": [
|
|
2173
2250
|
"full-suite"
|
|
2174
2251
|
],
|
|
2175
|
-
"
|
|
2252
|
+
"tier": "recommended_default"
|
|
2176
2253
|
},
|
|
2177
2254
|
{
|
|
2178
2255
|
"id": "cmp-003",
|
|
@@ -2192,8 +2269,9 @@
|
|
|
2192
2269
|
"preset_groups": [
|
|
2193
2270
|
"full-suite"
|
|
2194
2271
|
],
|
|
2195
|
-
"
|
|
2196
|
-
"
|
|
2272
|
+
"backend_required": true,
|
|
2273
|
+
"tier": "premium",
|
|
2274
|
+
"detection_pattern": "[server-side]"
|
|
2197
2275
|
},
|
|
2198
2276
|
{
|
|
2199
2277
|
"id": "cmp-004",
|
|
@@ -2213,7 +2291,8 @@
|
|
|
2213
2291
|
"preset_groups": [
|
|
2214
2292
|
"full-suite"
|
|
2215
2293
|
],
|
|
2216
|
-
"
|
|
2217
|
-
"
|
|
2294
|
+
"backend_required": true,
|
|
2295
|
+
"tier": "premium",
|
|
2296
|
+
"detection_pattern": "[server-side]"
|
|
2218
2297
|
}
|
|
2219
2298
|
]
|