npm - agent-threat-rules - Versions diffs - 0.4.0 → 1.0.0 - Mend

agent-threat-rules 0.4.0 → 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (291) hide show

package/dist/embedding/vector-store.js DELETED Viewed

@@ -1,70 +0,0 @@
-/**
- * In-memory vector store with cosine similarity search.
- *
- * Stores pre-computed attack embeddings and finds nearest neighbors
- * for incoming text. Sub-millisecond for ~2000 vectors at 384 dimensions.
- *
- * @module agent-threat-rules/embedding/vector-store
- */
-export class VectorStore {
-    entries;
-    constructor(entries) {
-        this.entries = entries ?? [];
-    }
-    /** Create new store with additional entries (immutable) */
-    withEntries(newEntries) {
-        return new VectorStore([...this.entries, ...newEntries]);
-    }
-    /**
-     * Find top-K nearest neighbors by cosine similarity.
-     * Only returns results above the threshold.
-     */
-    search(query, topK = 3, threshold = 0.82) {
-        if (this.entries.length === 0)
-            return [];
-        const results = [];
-        for (const entry of this.entries) {
-            const sim = cosineSimilarity(query, entry.vector);
-            if (sim >= threshold) {
-                results.push({ entry, similarity: sim });
-            }
-        }
-        // Sort by similarity descending, take top K
-        results.sort((a, b) => b.similarity - a.similarity);
-        return results.slice(0, topK);
-    }
-    size() {
-        return this.entries.length;
-    }
-}
-/**
- * Cosine similarity between two vectors.
- * Returns value between -1 and 1 (1 = identical direction).
- */
-function cosineSimilarity(a, b) {
-    if (a.length !== b.length)
-        return 0;
-    let dot = 0;
-    let magA = 0;
-    let magB = 0;
-    for (let i = 0; i < a.length; i++) {
-        dot += a[i] * b[i];
-        magA += a[i] * a[i];
-        magB += b[i] * b[i];
-    }
-    const denom = Math.sqrt(magA) * Math.sqrt(magB);
-    if (denom === 0)
-        return 0;
-    return dot / denom;
-}
-/** Load pre-computed embeddings from JSON */
-export function loadVectorEntries(data) {
-    return data.map((d) => ({
-        id: d.id,
-        vector: new Float32Array(d.vector),
-        label: d.label,
-        category: d.category,
-        severity: (d.severity || 'medium'),
-    }));
-}
-//# sourceMappingURL=vector-store.js.map

package/dist/embedding/vector-store.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"vector-store.js","sourceRoot":"","sources":["../../src/embedding/vector-store.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAiBH,MAAM,OAAO,WAAW;IACL,OAAO,CAAyB;IAEjD,YAAY,OAAgC;QAC1C,IAAI,CAAC,OAAO,GAAG,OAAO,IAAI,EAAE,CAAC;IAC/B,CAAC;IAED,2DAA2D;IAC3D,WAAW,CAAC,UAAkC;QAC5C,OAAO,IAAI,WAAW,CAAC,CAAC,GAAG,IAAI,CAAC,OAAO,EAAE,GAAG,UAAU,CAAC,CAAC,CAAC;IAC3D,CAAC;IAED;;;OAGG;IACH,MAAM,CAAC,KAAmB,EAAE,OAAe,CAAC,EAAE,YAAoB,IAAI;QACpE,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,EAAE,CAAC;QAEzC,MAAM,OAAO,GAAmB,EAAE,CAAC;QAEnC,KAAK,MAAM,KAAK,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YACjC,MAAM,GAAG,GAAG,gBAAgB,CAAC,KAAK,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC;YAClD,IAAI,GAAG,IAAI,SAAS,EAAE,CAAC;gBACrB,OAAO,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,UAAU,EAAE,GAAG,EAAE,CAAC,CAAC;YAC3C,CAAC;QACH,CAAC;QAED,4CAA4C;QAC5C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,GAAG,CAAC,CAAC,UAAU,CAAC,CAAC;QACpD,OAAO,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;IAChC,CAAC;IAED,IAAI;QACF,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC;IAC7B,CAAC;CACF;AAED;;;GAGG;AACH,SAAS,gBAAgB,CAAC,CAAe,EAAE,CAAe;IACxD,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM;QAAE,OAAO,CAAC,CAAC;IAEpC,IAAI,GAAG,GAAG,CAAC,CAAC;IACZ,IAAI,IAAI,GAAG,CAAC,CAAC;IACb,IAAI,IAAI,GAAG,CAAC,CAAC;IAEb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAClC,GAAG,IAAI,CAAC,CAAC,CAAC,CAAE,GAAG,CAAC,CAAC,CAAC,CAAE,CAAC;QACrB,IAAI,IAAI,CAAC,CAAC,CAAC,CAAE,GAAG,CAAC,CAAC,CAAC,CAAE,CAAC;QACtB,IAAI,IAAI,CAAC,CAAC,CAAC,CAAE,GAAG,CAAC,CAAC,CAAC,CAAE,CAAC;IACxB,CAAC;IAED,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAChD,IAAI,KAAK,KAAK,CAAC;QAAE,OAAO,CAAC,CAAC;IAE1B,OAAO,GAAG,GAAG,KAAK,CAAC;AACrB,CAAC;AAED,6CAA6C;AAC7C,MAAM,UAAU,iBAAiB,CAC/B,IAAoG;IAEpG,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACtB,EAAE,EAAE,CAAC,CAAC,EAAE;QACR,MAAM,EAAE,IAAI,YAAY,CAAC,CAAC,CAAC,MAAM,CAAC;QAClC,KAAK,EAAE,CAAC,CAAC,KAAK;QACd,QAAQ,EAAE,CAAC,CAAC,QAAQ;QACpB,QAAQ,EAAE,CAAC,CAAC,CAAC,QAAQ,IAAI,QAAQ,CAAgB;KAClD,CAAC,CAAC,CAAC;AACN,CAAC"}

package/dist/engine.d.ts DELETED Viewed

@@ -1,163 +0,0 @@
-/**
- * ATR Engine - Evaluates agent events against ATR rules
- *
- * Core detection engine that:
- * 1. Loads ATR YAML rules from disk
- * 2. Evaluates agent events (LLM I/O, tool calls, behaviors) against rules
- * 3. Returns matched rules with confidence scores
- * 4. Supports two condition formats:
- *    - Array format: conditions is an array of {field, operator, value} objects
- *    - Named format: conditions is an object map of named condition blocks
- *
- * @module agent-threat-rules/engine
- */
-import type { ATRRule, ATRMatch, AgentEvent, ATRVerdict, ActionResult } from './types.js';
-import type { SessionTracker } from './session-tracker.js';
-import type { ActionExecutor } from './action-executor.js';
-import type { SkillFingerprintStore } from './skill-fingerprint.js';
-import type { SemanticLayerConfig } from './layer-integration.js';
-import type { InvariantChecker } from './tier0-invariant.js';
-import type { BlacklistProvider } from './tier1-blacklist.js';
-import type { EmbeddingModule } from './modules/embedding.js';
-export interface ATREngineConfig {
-    /** Directory containing ATR rule YAML files */
-    rulesDir?: string;
-    /** Pre-loaded rules (for testing or embedding) */
-    rules?: ATRRule[];
-    /** Optional session tracker for behavioral detection across events */
-    sessionTracker?: SessionTracker;
-    /** Optional Tier 0: Invariant enforcement (hard boundaries, pre-check) */
-    invariantChecker?: InvariantChecker;
-    /** Optional Tier 1: Skill blacklist provider (known-bad lookup) */
-    blacklistProvider?: BlacklistProvider;
-    /** Optional Layer 2: Skill behavioral fingerprinting (no LLM required) */
-    fingerprintStore?: SkillFingerprintStore;
-    /** Optional Tier 2.5: Embedding similarity module (requires @xenova/transformers) */
-    embeddingModule?: EmbeddingModule;
-    /** Optional Layer 3: Semantic LLM-as-judge analysis (requires API key) */
-    semanticModule?: SemanticLayerConfig;
-}
-export declare class ATREngine {
-    private readonly config;
-    private rules;
-    private readonly compiledPatterns;
-    private readonly semanticModuleInstance;
-    constructor(config?: ATREngineConfig);
-    /**
-     * Load rules from configured directory and/or pre-loaded rules.
-     */
-    loadRules(): Promise<number>;
-    /**
-     * Load a single rule file and add it to the engine.
-     */
-    addRuleFile(filePath: string): void;
-    /**
-     * Add a pre-parsed rule to the engine.
-     */
-    addRule(rule: ATRRule): void;
-    /**
-     * Evaluate an agent event against all loaded ATR rules.
-     * Returns all matching rules with details.
-     */
-    evaluate(event: AgentEvent): ATRMatch[];
-    /**
-     * Evaluate a single rule against an event.
-     * Supports both array-format and named-map-format conditions.
-     */
-    private evaluateRule;
-    /**
-     * Evaluate array-format conditions: [{field, operator, value}, ...]
-     * with condition: "any" | "all"
-     */
-    private evaluateArrayConditions;
-    /**
-     * Evaluate a single array-format condition {field, operator, value}.
-     */
-    private evaluateArrayCondition;
-    /**
-     * Evaluate named-map-format conditions: {name: {field, patterns, match_type}, ...}
-     * with condition: "name1 AND name2" | "name1 OR name2" | "name1"
-     */
-    private evaluateNamedConditions;
-    /**
-     * Evaluate a single named condition against an event.
-     */
-    private evaluateNamedCondition;
-    /**
-     * Evaluate a pattern matching condition (named format with patterns array).
-     */
-    private evaluatePatternCondition;
-    /**
-     * Evaluate a behavioral threshold condition.
-     * When a session tracker is available and the event has a sessionId,
-     * supports session-derived metrics: call_frequency, pattern_frequency, event_count.
-     */
-    private evaluateBehavioralCondition;
-    /**
-     * Resolve a metric value from event metrics or session tracker.
-     * Session-derived metrics use the format: "call_frequency:toolName" or "pattern_frequency:pattern".
-     */
-    private resolveMetricValue;
-    /**
-     * Parse a window string (e.g. "5m", "1h", "30s") to milliseconds.
-     * Defaults to 5 minutes if not specified or unparseable.
-     */
-    private parseWindowMs;
-    /**
-     * Evaluate a sequence condition against the current event.
-     *
-     * Two modes:
-     * 1. Session-aware (when SessionTracker + sessionId available):
-     *    Checks patterns across historical events in the session.
-     *    Respects `ordered` flag and `within` time window.
-     * 2. Single-event fallback: checks if patterns co-occur in one event.
-     */
-    private evaluateSequenceCondition;
-    /**
-     * Cross-event sequence detection using SessionTracker.
-     * Checks if step patterns have been seen across events in order.
-     */
-    private evaluateSequenceAcrossSession;
-    /**
-     * Single-event fallback: check if step patterns co-occur in one event.
-     */
-    private evaluateSequenceSingleEvent;
-    /**
-     * Resolve a field value from an agent event.
-     */
-    private resolveField;
-    /**
-     * Evaluate a boolean expression string against condition results.
-     * Supports AND, OR, NOT operators.
-     */
-    private evaluateExpression;
-    /**
-     * Split expression by operator, respecting parentheses.
-     */
-    private splitByOperator;
-    /**
-     * Pre-compile regex patterns for a rule (performance optimization).
-     * Supports both array-format and named-map-format conditions.
-     */
-    private compilePatterns;
-    /**
-     * Evaluate an event and compute a verdict with optional action execution.
-     *
-     * Combines evaluate() + computeVerdict() + optional ActionExecutor
-     * into a single call for convenience.
-     */
-    evaluateWithVerdict(event: AgentEvent, executor?: ActionExecutor): Promise<{
-        verdict: ATRVerdict;
-        actionResults: readonly ActionResult[];
-        layersUsed: readonly string[];
-    }>;
-    /** Get loaded rule count */
-    getRuleCount(): number;
-    /** Get all loaded rules */
-    getRules(): readonly ATRRule[];
-    /** Get a rule by ID */
-    getRuleById(id: string): ATRRule | undefined;
-    /** Get rules by category */
-    getRulesByCategory(category: string): ATRRule[];
-}
-//# sourceMappingURL=engine.d.ts.map

package/dist/engine.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"engine.d.ts","sourceRoot":"","sources":["../src/engine.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,KAAK,EACV,OAAO,EACP,QAAQ,EACR,UAAU,EAGV,UAAU,EACV,YAAY,EACb,MAAM,YAAY,CAAC;AAEpB,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAE3D,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAC3D,OAAO,KAAK,EAAE,qBAAqB,EAAE,MAAM,wBAAwB,CAAC;AAEpE,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AAQlE,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAC7D,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAE9D,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAsB9D,MAAM,WAAW,eAAe;IAC9B,+CAA+C;IAC/C,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,kDAAkD;IAClD,KAAK,CAAC,EAAE,OAAO,EAAE,CAAC;IAClB,sEAAsE;IACtE,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,0EAA0E;IAC1E,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IACpC,mEAAmE;IACnE,iBAAiB,CAAC,EAAE,iBAAiB,CAAC;IACtC,0EAA0E;IAC1E,gBAAgB,CAAC,EAAE,qBAAqB,CAAC;IACzC,qFAAqF;IACrF,eAAe,CAAC,EAAE,eAAe,CAAC;IAClC,0EAA0E;IAC1E,cAAc,CAAC,EAAE,mBAAmB,CAAC;CACtC;AAED,qBAAa,SAAS;IAKR,OAAO,CAAC,QAAQ,CAAC,MAAM;IAJnC,OAAO,CAAC,KAAK,CAAiB;IAC9B,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAA4C;IAC7E,OAAO,CAAC,QAAQ,CAAC,sBAAsB,CAAwB;gBAElC,MAAM,GAAE,eAAoB;IAUzD;;OAEG;IACG,SAAS,IAAI,OAAO,CAAC,MAAM,CAAC;IAyBlC;;OAEG;IACH,WAAW,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI;IAMnC;;OAEG;IACH,OAAO,CAAC,IAAI,EAAE,OAAO,GAAG,IAAI;IAK5B;;;OAGG;IACH,QAAQ,CAAC,KAAK,EAAE,UAAU,GAAG,QAAQ,EAAE;IA6EvC;;;OAGG;IACH,OAAO,CAAC,YAAY;IAapB;;;OAGG;IACH,OAAO,CAAC,uBAAuB;IAuC/B;;OAEG;IACH,OAAO,CAAC,sBAAsB;IA8E9B;;;OAGG;IACH,OAAO,CAAC,uBAAuB;IAmC/B;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAiC9B;;OAEG;IACH,OAAO,CAAC,wBAAwB;IAqEhC;;;;OAIG;IACH,OAAO,CAAC,2BAA2B;IAoBnC;;;OAGG;IACH,OAAO,CAAC,kBAAkB;IAgC1B;;;OAGG;IACH,OAAO,CAAC,aAAa;IAiBrB;;;;;;;;OAQG;IACH,OAAO,CAAC,yBAAyB;IAmBjC;;;OAGG;IACH,OAAO,CAAC,6BAA6B;IAyErC;;OAEG;IACH,OAAO,CAAC,2BAA2B;IA4BnC;;OAEG;IACH,OAAO,CAAC,YAAY;IAgCpB;;;OAGG;IACH,OAAO,CAAC,kBAAkB;IAsC1B;;OAEG;IACH,OAAO,CAAC,eAAe;IAgCvB;;;OAGG;IACH,OAAO,CAAC,eAAe;IAkDvB;;;;;OAKG;IACG,mBAAmB,CACvB,KAAK,EAAE,UAAU,EACjB,QAAQ,CAAC,EAAE,cAAc,GACxB,OAAO,CAAC;QACT,OAAO,EAAE,UAAU,CAAC;QACpB,aAAa,EAAE,SAAS,YAAY,EAAE,CAAC;QACvC,UAAU,EAAE,SAAS,MAAM,EAAE,CAAC;KAC/B,CAAC;IAsGF,4BAA4B;IAC5B,YAAY,IAAI,MAAM;IAItB,2BAA2B;IAC3B,QAAQ,IAAI,SAAS,OAAO,EAAE;IAI9B,uBAAuB;IACvB,WAAW,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,GAAG,SAAS;IAI5C,4BAA4B;IAC5B,kBAAkB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,EAAE;CAGhD"}