framework-mcp 1.3.7 → 1.5.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/COPILOT_INTEGRATION.md +49 -62
- package/DEPLOYMENT_GUIDE.md +46 -47
- package/MCP_INTEGRATION_GUIDE.md +96 -129
- package/MIGRATION_GUIDE_v1.4.0.md +190 -0
- package/README.md +148 -173
- package/RELEASE_NOTES_v1.4.0.md +178 -0
- package/dist/core/safeguard-manager.d.ts.map +1 -1
- package/dist/core/safeguard-manager.js +2271 -153
- package/dist/core/safeguard-manager.js.map +1 -1
- package/dist/index.d.ts +0 -1
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +1 -2
- package/dist/index.js.map +1 -1
- package/dist/interfaces/http/http-server.d.ts +0 -4
- package/dist/interfaces/http/http-server.d.ts.map +1 -1
- package/dist/interfaces/http/http-server.js +6 -85
- package/dist/interfaces/http/http-server.js.map +1 -1
- package/dist/interfaces/mcp/mcp-server.d.ts +0 -4
- package/dist/interfaces/mcp/mcp-server.d.ts.map +1 -1
- package/dist/interfaces/mcp/mcp-server.js +4 -71
- package/dist/interfaces/mcp/mcp-server.js.map +1 -1
- package/dist/shared/types.d.ts +7 -0
- package/dist/shared/types.d.ts.map +1 -1
- package/examples/llm-analysis-patterns.md +553 -0
- package/package.json +2 -2
- package/scripts/validate-documentation.sh +4 -4
- package/src/core/safeguard-manager.ts +2271 -153
- package/src/index.ts +1 -2
- package/src/interfaces/http/http-server.ts +6 -101
- package/src/interfaces/mcp/mcp-server.ts +4 -85
- package/src/shared/types.ts +7 -0
- package/swagger.json +43 -168
- package/dist/core/capability-analyzer.d.ts +0 -23
- package/dist/core/capability-analyzer.d.ts.map +0 -1
- package/dist/core/capability-analyzer.js +0 -333
- package/dist/core/capability-analyzer.js.map +0 -1
- package/src/core/capability-analyzer.ts +0 -417
package/MCP_INTEGRATION_GUIDE.md
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
|
|
3
3
|
## Claude Code MCP Integration
|
|
4
4
|
|
|
5
|
-
This guide shows how to integrate Framework MCP with Claude Code for CIS Controls capability
|
|
5
|
+
This guide shows how to integrate Framework MCP v1.4.0's Pure Data Provider architecture with Claude Code for LLM-driven CIS Controls capability analysis.
|
|
6
6
|
|
|
7
7
|
## Prerequisites
|
|
8
8
|
|
|
@@ -68,189 +68,156 @@ claude-code "List all available CIS Control safeguards"
|
|
|
68
68
|
|
|
69
69
|
Expected response: List of 153 safeguards across 18 CIS Controls
|
|
70
70
|
|
|
71
|
-
## 🔧
|
|
71
|
+
## 🔧 Pure Data Provider Tools
|
|
72
72
|
|
|
73
|
-
### 1.
|
|
73
|
+
### 1. get_safeguard_details (PRIMARY)
|
|
74
74
|
|
|
75
|
-
**
|
|
75
|
+
**Primary Tool**: Retrieve detailed CIS safeguard breakdown for LLM analysis
|
|
76
76
|
|
|
77
77
|
```bash
|
|
78
|
-
#
|
|
79
|
-
claude-code "Use
|
|
78
|
+
# Get comprehensive safeguard data for analysis
|
|
79
|
+
claude-code "Use get_safeguard_details with safeguard_id '1.1' and include_examples true"
|
|
80
80
|
|
|
81
|
-
#
|
|
82
|
-
claude-code "Use
|
|
81
|
+
# Research multiple related safeguards
|
|
82
|
+
claude-code "Use get_safeguard_details for safeguard 5.1 then explain the key requirements for account inventory management"
|
|
83
83
|
|
|
84
|
-
#
|
|
85
|
-
claude-code "Use
|
|
84
|
+
# Get data for comparative analysis
|
|
85
|
+
claude-code "Use get_safeguard_details for safeguard 6.3 then explain what makes this different from basic authentication controls"
|
|
86
86
|
```
|
|
87
87
|
|
|
88
|
-
### 2.
|
|
88
|
+
### 2. list_available_safeguards
|
|
89
89
|
|
|
90
|
-
**
|
|
90
|
+
**Discovery Tool**: Explore available safeguards for planning and assessment
|
|
91
91
|
|
|
92
92
|
```bash
|
|
93
|
-
#
|
|
94
|
-
claude-code "Use analyze_vendor_response with vendor_name 'Okta', safeguard_id '5.1', and response_text 'We provide comprehensive identity lifecycle management with automated account provisioning, detailed user directories, quarterly access reviews, and full compliance reporting with audit trails.'"
|
|
95
|
-
|
|
96
|
-
# Analyze cross-domain vendor
|
|
97
|
-
claude-code "Use analyze_vendor_response with vendor_name 'CrowdStrike Falcon', safeguard_id '1.1', and response_text 'Our endpoint protection platform provides real-time asset visibility with comprehensive device inventory, software tracking, and continuous asset monitoring across all enterprise endpoints.'"
|
|
98
|
-
```
|
|
99
|
-
|
|
100
|
-
### 3. get_safeguard_details
|
|
101
|
-
|
|
102
|
-
**Purpose**: Research safeguard requirements before assessment
|
|
103
|
-
|
|
104
|
-
```bash
|
|
105
|
-
# Basic safeguard details
|
|
106
|
-
claude-code "Use get_safeguard_details with safeguard_id '1.1'"
|
|
107
|
-
|
|
108
|
-
# Detailed safeguard with examples
|
|
109
|
-
claude-code "Use get_safeguard_details with safeguard_id '5.1' and include_examples true"
|
|
110
|
-
|
|
111
|
-
# Research multiple safeguards
|
|
112
|
-
claude-code "Use get_safeguard_details for safeguard 6.3 then explain what makes this safeguard different from 5.1"
|
|
113
|
-
```
|
|
114
|
-
|
|
115
|
-
### 4. list_available_safeguards
|
|
116
|
-
|
|
117
|
-
**Purpose**: Discover available safeguards for planning
|
|
118
|
-
|
|
119
|
-
```bash
|
|
120
|
-
# Complete safeguard list
|
|
93
|
+
# Complete safeguard framework exploration
|
|
121
94
|
claude-code "Use list_available_safeguards"
|
|
122
95
|
|
|
123
96
|
# Targeted safeguard discovery
|
|
124
97
|
claude-code "Use list_available_safeguards then identify which safeguards are most relevant for identity management vendor assessment"
|
|
98
|
+
|
|
99
|
+
# Implementation Group planning
|
|
100
|
+
claude-code "Use list_available_safeguards then show me all IG1 safeguards for small business security planning"
|
|
125
101
|
```
|
|
126
102
|
|
|
127
|
-
## 📋
|
|
103
|
+
## 📋 LLM-Driven Analysis Workflows
|
|
128
104
|
|
|
129
|
-
### Workflow 1:
|
|
105
|
+
### Workflow 1: Comprehensive Vendor Assessment
|
|
130
106
|
```bash
|
|
131
|
-
# Step 1:
|
|
132
|
-
claude-code "Use get_safeguard_details
|
|
107
|
+
# Step 1: Get authoritative safeguard data
|
|
108
|
+
claude-code "Use get_safeguard_details with safeguard_id '1.1' and include_examples true"
|
|
133
109
|
|
|
134
|
-
# Step 2:
|
|
135
|
-
claude-code "
|
|
110
|
+
# Step 2: Perform LLM-driven analysis
|
|
111
|
+
claude-code "Based on the safeguard 1.1 requirements above, analyze Device42's capability: 'Our IT asset management platform provides comprehensive device discovery, detailed inventory tracking, and complete asset lifecycle management.' Determine capability role, provide confidence assessment, and recommend implementation approach."
|
|
136
112
|
|
|
137
|
-
# Step 3:
|
|
138
|
-
claude-code "
|
|
113
|
+
# Step 3: Context-aware evaluation
|
|
114
|
+
claude-code "For our 500-employee technology company, assess whether Device42 meets our asset management needs for IG2 compliance. Consider deployment complexity and integration requirements."
|
|
139
115
|
```
|
|
140
116
|
|
|
141
|
-
### Workflow 2:
|
|
117
|
+
### Workflow 2: Multi-Vendor Comparative Analysis
|
|
142
118
|
```bash
|
|
143
|
-
#
|
|
144
|
-
claude-code "Use
|
|
119
|
+
# Get safeguard requirements
|
|
120
|
+
claude-code "Use get_safeguard_details for safeguard 5.1 with examples"
|
|
145
121
|
|
|
146
|
-
#
|
|
147
|
-
claude-code "
|
|
122
|
+
# Comparative analysis with business context
|
|
123
|
+
claude-code "Using the safeguard 5.1 requirements above, compare these identity management solutions for our financial services organization: 1) Microsoft Entra ID: 'Complete identity management with automated provisioning and compliance reporting' 2) Okta: 'Cloud identity platform with advanced analytics and risk assessment' 3) Ping Identity: 'Enterprise SSO with detailed audit trails and governance workflows'. Rank by compliance strength and implementation fit."
|
|
148
124
|
```
|
|
149
125
|
|
|
150
|
-
### Workflow 3:
|
|
126
|
+
### Workflow 3: Gap Analysis and Roadmap Planning
|
|
151
127
|
```bash
|
|
152
|
-
#
|
|
153
|
-
claude-code "Use
|
|
154
|
-
1. Safeguard 1.1: 'Comprehensive endpoint asset discovery and inventory'
|
|
155
|
-
2. Safeguard 7.1: 'Continuous vulnerability assessment and patch management'
|
|
156
|
-
3. Safeguard 1.2: 'Unauthorized device detection and blocking'"
|
|
157
|
-
```
|
|
158
|
-
|
|
159
|
-
## 🎯 Domain Validation Examples
|
|
160
|
-
|
|
161
|
-
### Asset Management Domain (Safeguards 1.1, 1.2)
|
|
162
|
-
```bash
|
|
163
|
-
# Appropriate tool type (should pass)
|
|
164
|
-
claude-code "Use validate_vendor_mapping for 'Lansweeper', safeguard '1.1', claimed 'full', with 'Complete IT asset management with automated discovery, comprehensive inventory, and detailed asset tracking.'"
|
|
128
|
+
# Research multiple related safeguards
|
|
129
|
+
claude-code "Use get_safeguard_details for safeguard 5.1, then get details for 5.2, 5.3, and 5.4"
|
|
165
130
|
|
|
166
|
-
#
|
|
167
|
-
claude-code "
|
|
131
|
+
# Comprehensive gap analysis
|
|
132
|
+
claude-code "Based on the account management safeguards 5.1-5.4 above, analyze our current IAM capability: Azure AD basic with manual quarterly reviews. Identify gaps, prioritize improvements, and create 12-month implementation roadmap with budget estimates."
|
|
168
133
|
```
|
|
169
134
|
|
|
170
|
-
###
|
|
135
|
+
### Workflow 4: Risk-Based Assessment
|
|
171
136
|
```bash
|
|
172
|
-
#
|
|
173
|
-
claude-code "Use
|
|
137
|
+
# Get network monitoring safeguards
|
|
138
|
+
claude-code "Use get_safeguard_details for safeguard 13.1, then get details for 13.3 and 13.6"
|
|
174
139
|
|
|
175
|
-
#
|
|
176
|
-
claude-code "
|
|
140
|
+
# Risk-focused analysis
|
|
141
|
+
claude-code "Using the network monitoring safeguards above, our financial services organization faces advanced persistent threats and ransomware. Analyze Microsoft Defender for Endpoint's network capabilities: 'Real-time endpoint detection, behavioral analytics, automated response, and network traffic monitoring.' Prioritize safeguards by threat mitigation effectiveness and recommend complementary tools."
|
|
177
142
|
```
|
|
178
143
|
|
|
179
|
-
## 🚀 Advanced
|
|
144
|
+
## 🚀 Advanced LLM Analysis Patterns
|
|
180
145
|
|
|
181
|
-
### Custom
|
|
146
|
+
### Custom Methodology Applications
|
|
182
147
|
```bash
|
|
183
|
-
#
|
|
184
|
-
claude-code "Use
|
|
148
|
+
# Compliance-focused assessment
|
|
149
|
+
claude-code "Use get_safeguard_details for safeguard 8.2. Apply PCI-DSS Level 1 compliance methodology to analyze Splunk Enterprise Security's logging capability: 'Centralized log management, real-time monitoring, compliance reporting, and data retention policies.' Focus on regulatory alignment and audit readiness."
|
|
185
150
|
|
|
186
|
-
#
|
|
187
|
-
claude-code "Use get_safeguard_details for safeguard
|
|
151
|
+
# Technology integration assessment
|
|
152
|
+
claude-code "Use get_safeguard_details for safeguard 16.1. Our DevOps pipeline uses Azure DevOps, GitHub, and Kubernetes. Analyze SonarQube's capability: 'Static application security testing with CI/CD integration and policy enforcement.' Recommend implementation approach and configuration."
|
|
188
153
|
|
|
189
|
-
#
|
|
190
|
-
claude-code "Use list_available_safeguards to identify all
|
|
154
|
+
# Strategic planning
|
|
155
|
+
claude-code "Use list_available_safeguards to identify all Implementation Group 1 safeguards, then create vendor selection strategy for a 200-employee company with $500K security budget. Prioritize by business impact and implementation complexity."
|
|
191
156
|
```
|
|
192
157
|
|
|
193
|
-
###
|
|
158
|
+
### Data Validation Examples
|
|
194
159
|
```bash
|
|
195
160
|
# Invalid safeguard ID
|
|
196
161
|
claude-code "Use get_safeguard_details with safeguard_id '99.99'"
|
|
197
162
|
# Expected: Error with available safeguards suggestion
|
|
198
163
|
|
|
199
|
-
#
|
|
200
|
-
claude-code "Use
|
|
201
|
-
# Expected: Error
|
|
164
|
+
# Missing required parameter
|
|
165
|
+
claude-code "Use get_safeguard_details without safeguard_id"
|
|
166
|
+
# Expected: Error specifying required parameter
|
|
202
167
|
|
|
203
|
-
#
|
|
204
|
-
claude-code "Use
|
|
205
|
-
# Expected:
|
|
168
|
+
# Valid request with detailed response
|
|
169
|
+
claude-code "Use get_safeguard_details with safeguard_id '1.1' and include_examples true"
|
|
170
|
+
# Expected: Complete safeguard breakdown with implementation examples
|
|
206
171
|
```
|
|
207
172
|
|
|
208
|
-
## 📊 Understanding
|
|
173
|
+
## 📊 Understanding Pure Data Provider Responses
|
|
209
174
|
|
|
210
|
-
###
|
|
175
|
+
### Detailed Safeguard Data Response
|
|
211
176
|
```json
|
|
212
177
|
{
|
|
213
|
-
"
|
|
214
|
-
"
|
|
215
|
-
"
|
|
216
|
-
"
|
|
217
|
-
"
|
|
218
|
-
|
|
219
|
-
|
|
220
|
-
"
|
|
221
|
-
|
|
222
|
-
|
|
223
|
-
|
|
224
|
-
|
|
225
|
-
"
|
|
226
|
-
|
|
227
|
-
|
|
228
|
-
"
|
|
229
|
-
|
|
230
|
-
|
|
231
|
-
|
|
178
|
+
"id": "1.1",
|
|
179
|
+
"title": "Establish and Maintain Detailed Enterprise Asset Inventory",
|
|
180
|
+
"description": "Establish and maintain an accurate, detailed, and up-to-date inventory of all enterprise assets...",
|
|
181
|
+
"implementationGroup": "IG1",
|
|
182
|
+
"governanceElements": [
|
|
183
|
+
"Maintain detailed inventory procedures",
|
|
184
|
+
"Establish asset classification standards",
|
|
185
|
+
"Define asset ownership responsibilities"
|
|
186
|
+
],
|
|
187
|
+
"coreRequirements": [
|
|
188
|
+
"Automated discovery of enterprise assets",
|
|
189
|
+
"Detailed hardware and software inventory",
|
|
190
|
+
"Asset ownership and location tracking"
|
|
191
|
+
],
|
|
192
|
+
"subTaxonomicalElements": [
|
|
193
|
+
"Device identification and classification",
|
|
194
|
+
"Software inventory and licensing",
|
|
195
|
+
"Network topology mapping"
|
|
196
|
+
],
|
|
197
|
+
"implementationSuggestions": [
|
|
198
|
+
"Deploy automated discovery tools",
|
|
199
|
+
"Implement CMDB solutions",
|
|
200
|
+
"Regular inventory audits and updates"
|
|
201
|
+
]
|
|
232
202
|
}
|
|
233
203
|
```
|
|
234
204
|
|
|
235
|
-
###
|
|
236
|
-
```
|
|
237
|
-
|
|
238
|
-
|
|
239
|
-
|
|
240
|
-
|
|
241
|
-
|
|
242
|
-
|
|
243
|
-
|
|
244
|
-
|
|
245
|
-
|
|
246
|
-
|
|
247
|
-
|
|
248
|
-
|
|
249
|
-
|
|
250
|
-
|
|
251
|
-
"Consider repositioning as FACILITATES capability to align with tool type"
|
|
252
|
-
]
|
|
253
|
-
}
|
|
205
|
+
### LLM Analysis Response Pattern
|
|
206
|
+
```
|
|
207
|
+
CAPABILITY ASSESSMENT: ServiceNow CMDB vs Safeguard 1.1
|
|
208
|
+
|
|
209
|
+
DETERMINATION: FULL + GOVERNANCE + VALIDATES
|
|
210
|
+
CONFIDENCE: 88%
|
|
211
|
+
|
|
212
|
+
EVIDENCE ANALYSIS:
|
|
213
|
+
✅ Core Requirements: Comprehensive CMDB with automated discovery
|
|
214
|
+
✅ Governance Elements: Detailed procedures and asset classification
|
|
215
|
+
✅ Sub-Elements: Complete device and software inventory tracking
|
|
216
|
+
✅ Implementation: Strong technical capabilities and proven enterprise deployment
|
|
217
|
+
|
|
218
|
+
REASONING: ServiceNow CMDB demonstrates strong alignment with all core requirements and provides additional governance and validation capabilities through workflow automation and compliance reporting.
|
|
219
|
+
|
|
220
|
+
RECOMMENDATIONS: Excellent foundation for IG2-IG3 implementation. Consider integration with security tools for enhanced asset risk assessment.
|
|
254
221
|
```
|
|
255
222
|
|
|
256
223
|
## 🔍 Troubleshooting
|
|
@@ -0,0 +1,190 @@
|
|
|
1
|
+
# Migration Guide: Framework MCP v1.4.0
|
|
2
|
+
|
|
3
|
+
## Pure Data Provider Architecture Transformation
|
|
4
|
+
|
|
5
|
+
Framework MCP v1.4.0 introduces a **Pure Data Provider architecture** that transforms how vendor capability analysis is performed. This guide helps existing users migrate to the new approach and understand the enhanced capabilities.
|
|
6
|
+
|
|
7
|
+
## 🎯 Architectural Benefits
|
|
8
|
+
|
|
9
|
+
### Before v1.4.0: Hardcoded Analysis Engine
|
|
10
|
+
- **Limited Flexibility**: Fixed analysis logic with preset validation rules
|
|
11
|
+
- **Rigid Assessment**: Single approach to capability determination
|
|
12
|
+
- **Complex Configuration**: Multiple analysis parameters and validation settings
|
|
13
|
+
- **Opaque Processing**: Analysis logic hidden within the tool
|
|
14
|
+
|
|
15
|
+
### After v1.4.0: Pure Data Provider + LLM Analysis
|
|
16
|
+
- **Unlimited Flexibility**: LLMs can apply any analysis approach or methodology
|
|
17
|
+
- **Context-Aware Assessment**: Analysis considers industry, risk profile, and specific requirements
|
|
18
|
+
- **Simplified Interface**: Clean data provision without analysis complexity
|
|
19
|
+
- **Transparent Process**: Analysis reasoning fully visible and customizable
|
|
20
|
+
|
|
21
|
+
## 🔄 Migration Overview
|
|
22
|
+
|
|
23
|
+
**KEY CHANGE**: Framework MCP no longer performs analysis - it provides authoritative CIS Controls data for LLMs to analyze with sophisticated, context-aware intelligence.
|
|
24
|
+
|
|
25
|
+
### Tools Removed
|
|
26
|
+
- ❌ `analyze_vendor_response` - Analysis logic moved to LLM capability
|
|
27
|
+
- ❌ `validate_vendor_mapping` - Validation logic moved to LLM intelligence
|
|
28
|
+
|
|
29
|
+
### Tools Retained (Enhanced Data Focus)
|
|
30
|
+
- ✅ `get_safeguard_details` - **Enhanced** with rich, structured CIS data
|
|
31
|
+
- ✅ `list_available_safeguards` - Complete framework coverage
|
|
32
|
+
|
|
33
|
+
## 📋 Step-by-Step Migration
|
|
34
|
+
|
|
35
|
+
### Step 1: Update Framework MCP
|
|
36
|
+
```bash
|
|
37
|
+
npm update -g framework-mcp
|
|
38
|
+
# Or reinstall to ensure latest version
|
|
39
|
+
npm uninstall -g framework-mcp && npm install -g framework-mcp
|
|
40
|
+
```
|
|
41
|
+
|
|
42
|
+
### Step 2: Replace Analysis Calls with LLM-Driven Patterns
|
|
43
|
+
|
|
44
|
+
#### OLD v1.3.7 Approach (Hardcoded Analysis)
|
|
45
|
+
```bash
|
|
46
|
+
claude-code "Use analyze_vendor_response with vendor_name 'Microsoft Defender', safeguard_id '5.1', and response_text 'We provide centralized account management with automated provisioning'"
|
|
47
|
+
```
|
|
48
|
+
|
|
49
|
+
#### NEW v1.4.0 Approach (LLM-Driven Analysis)
|
|
50
|
+
```bash
|
|
51
|
+
claude-code "Get safeguard details for 5.1, then analyze this vendor response against those requirements: Microsoft Defender - 'We provide centralized account management with automated provisioning'. Assess capability role considering enterprise context and provide confidence rating."
|
|
52
|
+
```
|
|
53
|
+
|
|
54
|
+
### Step 3: Leverage Enhanced LLM Capabilities
|
|
55
|
+
|
|
56
|
+
The new approach enables sophisticated analysis patterns:
|
|
57
|
+
|
|
58
|
+
#### Risk-Based Assessment
|
|
59
|
+
```bash
|
|
60
|
+
claude-code "Get details for safeguard 8.2. For a high-risk financial services environment, analyze SentinelOne's response: 'We collect endpoint telemetry and forward logs to SIEM platforms.' Consider regulatory requirements and determine appropriate capability role."
|
|
61
|
+
```
|
|
62
|
+
|
|
63
|
+
#### Comparative Analysis
|
|
64
|
+
```bash
|
|
65
|
+
claude-code "Get safeguard 1.1 details. Compare these vendor capabilities and rank by implementation completeness: 1) Lansweeper: 'Complete network discovery and inventory' 2) ServiceNow: 'CMDB with manual asset entry' 3) Microsoft Intune: 'Managed device tracking only'"
|
|
66
|
+
```
|
|
67
|
+
|
|
68
|
+
#### Multi-Safeguard Assessment
|
|
69
|
+
```bash
|
|
70
|
+
claude-code "Get details for safeguards 5.1, 5.2, and 5.3. Analyze how CyberArk PAM addresses these account management requirements and identify any gaps in coverage."
|
|
71
|
+
```
|
|
72
|
+
|
|
73
|
+
## 🚀 Advanced LLM Analysis Patterns
|
|
74
|
+
|
|
75
|
+
### 1. Compliance-Focused Analysis
|
|
76
|
+
```bash
|
|
77
|
+
claude-code "Get safeguard 11.1 details. For SOX compliance requirements, assess Veeam Backup's capability: 'Automated daily backups with 99.9% recovery success rate and quarterly recovery testing.' Focus on governance and validation aspects."
|
|
78
|
+
```
|
|
79
|
+
|
|
80
|
+
### 2. Technology-Specific Assessment
|
|
81
|
+
```bash
|
|
82
|
+
claude-code "Get details for safeguard 16.3. From a DevSecOps perspective, analyze GitHub Advanced Security: 'Static analysis, dependency scanning, and secret detection in CI/CD pipeline.' Consider modern development workflows."
|
|
83
|
+
```
|
|
84
|
+
|
|
85
|
+
### 3. Implementation Planning
|
|
86
|
+
```bash
|
|
87
|
+
claude-code "Get safeguard 13.1 details. Our organization uses Splunk SIEM. Analyze how this addresses network monitoring requirements and recommend complementary tools for complete coverage."
|
|
88
|
+
```
|
|
89
|
+
|
|
90
|
+
## 🎨 Benefits of LLM-Driven Analysis
|
|
91
|
+
|
|
92
|
+
### Context Awareness
|
|
93
|
+
- **Industry Considerations**: LLMs understand sector-specific requirements
|
|
94
|
+
- **Risk Profiles**: Analysis adapts to organizational risk tolerance
|
|
95
|
+
- **Technology Stack**: Assessment considers existing tool ecosystems
|
|
96
|
+
|
|
97
|
+
### Analytical Flexibility
|
|
98
|
+
- **Multiple Methodologies**: Apply different assessment frameworks
|
|
99
|
+
- **Custom Criteria**: Focus on organization-specific priorities
|
|
100
|
+
- **Comparative Analysis**: Evaluate multiple vendors simultaneously
|
|
101
|
+
|
|
102
|
+
### Enhanced Intelligence
|
|
103
|
+
- **Natural Language**: Complex analysis requests in plain English
|
|
104
|
+
- **Reasoning Transparency**: Full explanation of assessment logic
|
|
105
|
+
- **Adaptive Questioning**: LLMs can ask clarifying questions
|
|
106
|
+
|
|
107
|
+
## 📊 Migration Examples
|
|
108
|
+
|
|
109
|
+
### Example 1: Basic Capability Assessment
|
|
110
|
+
**Old Method:**
|
|
111
|
+
```bash
|
|
112
|
+
# Required specific tool call format
|
|
113
|
+
claude-code "Use analyze_vendor_response..."
|
|
114
|
+
```
|
|
115
|
+
|
|
116
|
+
**New Method:**
|
|
117
|
+
```bash
|
|
118
|
+
claude-code "Get safeguard 6.8 details and assess whether Okta's MFA solution constitutes FULL or FACILITATES capability for this requirement."
|
|
119
|
+
```
|
|
120
|
+
|
|
121
|
+
### Example 2: Validation Assessment
|
|
122
|
+
**Old Method:**
|
|
123
|
+
```bash
|
|
124
|
+
# Fixed validation logic
|
|
125
|
+
claude-code "Use validate_vendor_mapping..."
|
|
126
|
+
```
|
|
127
|
+
|
|
128
|
+
**New Method:**
|
|
129
|
+
```bash
|
|
130
|
+
claude-code "Get safeguard 12.4 details. This vendor claims FULL capability: 'We monitor all network traffic and identify unauthorized devices.' Validate this claim and provide evidence-based assessment."
|
|
131
|
+
```
|
|
132
|
+
|
|
133
|
+
### Example 3: Multi-Vendor Comparison
|
|
134
|
+
**Old Method:**
|
|
135
|
+
```bash
|
|
136
|
+
# Required multiple separate calls
|
|
137
|
+
claude-code "Use analyze_vendor_response..." # Vendor A
|
|
138
|
+
claude-code "Use analyze_vendor_response..." # Vendor B
|
|
139
|
+
```
|
|
140
|
+
|
|
141
|
+
**New Method:**
|
|
142
|
+
```bash
|
|
143
|
+
claude-code "Get safeguard 2.1 details. Compare these software inventory solutions and recommend the best fit for our 500-employee company: 1) Lansweeper 2) Device42 3) ManageEngine AssetExplorer. Consider deployment complexity and feature completeness."
|
|
144
|
+
```
|
|
145
|
+
|
|
146
|
+
## 🔧 Technical Changes
|
|
147
|
+
|
|
148
|
+
### HTTP API Updates
|
|
149
|
+
- **Removed**: `/api/analyze-vendor-response` endpoint
|
|
150
|
+
- **Removed**: `/api/validate-vendor-mapping` endpoint
|
|
151
|
+
- **Enhanced**: Data endpoints optimized for LLM consumption
|
|
152
|
+
- **Maintained**: Full OpenAPI compatibility for Microsoft Copilot
|
|
153
|
+
|
|
154
|
+
### MCP Protocol Changes
|
|
155
|
+
- **Simplified**: 2 core tools instead of 4 complex tools
|
|
156
|
+
- **Enhanced**: Rich data provision with structured safeguard information
|
|
157
|
+
- **Optimized**: Performance improvements for data retrieval
|
|
158
|
+
|
|
159
|
+
## 📚 Common Migration Questions
|
|
160
|
+
|
|
161
|
+
### Q: Will my existing Copilot connectors work?
|
|
162
|
+
**A**: Yes, but update to use data endpoints. The enhanced LLM analysis provides better results than hardcoded validation.
|
|
163
|
+
|
|
164
|
+
### Q: How do I replicate my custom validation logic?
|
|
165
|
+
**A**: Describe your validation criteria to the LLM along with the safeguard data. LLMs can apply complex, custom logic more effectively than preset rules.
|
|
166
|
+
|
|
167
|
+
### Q: Can I still get confidence scores?
|
|
168
|
+
**A**: Yes, LLMs can provide confidence assessments with detailed reasoning - often more nuanced than algorithmic scores.
|
|
169
|
+
|
|
170
|
+
### Q: What about bulk vendor analysis?
|
|
171
|
+
**A**: LLMs excel at processing multiple vendors simultaneously. Upload vendor data and request comparative analysis across all entries.
|
|
172
|
+
|
|
173
|
+
## 🎯 Next Steps
|
|
174
|
+
|
|
175
|
+
1. **Update Framework MCP** to v1.4.0
|
|
176
|
+
2. **Review existing analysis workflows** and identify LLM-driven alternatives
|
|
177
|
+
3. **Experiment with enhanced patterns** like comparative analysis and context-aware assessment
|
|
178
|
+
4. **Update documentation** and training materials for new approach
|
|
179
|
+
5. **Leverage LLM flexibility** to create more sophisticated vendor evaluations
|
|
180
|
+
|
|
181
|
+
## 📞 Support
|
|
182
|
+
|
|
183
|
+
If you encounter migration challenges:
|
|
184
|
+
- 📧 **Issues**: [GitHub Issues](https://github.com/therealcybermattlee/FrameworkMCP/issues)
|
|
185
|
+
- 📖 **Documentation**: [Enhanced Usage Patterns](examples/llm-analysis-patterns.md)
|
|
186
|
+
- 💬 **Discussions**: [GitHub Discussions](https://github.com/therealcybermattlee/FrameworkMCP/discussions)
|
|
187
|
+
|
|
188
|
+
---
|
|
189
|
+
|
|
190
|
+
**The Pure Data Provider architecture transforms Framework MCP from a rigid analysis tool into a flexible foundation for sophisticated, LLM-powered vendor capability assessment.**
|