npm - icoa-cli - Versions diffs - 2.19.201 → 2.19.203 - Mend

icoa-cli 2.19.201 → 2.19.203

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (21) hide show

package/dist/commands/ai4ctf.js +1 -1
package/dist/commands/ctf4ai-demo.js +1 -1
package/dist/commands/ctf4vla.js +1 -1
package/dist/commands/exam.js +1 -1
package/dist/lib/ai4ctf-curriculum-360.d.ts +12 -0
package/dist/lib/ai4ctf-curriculum-360.js +1 -0
package/dist/lib/ai4ctf-curriculum-96.d.ts +19 -0
package/dist/lib/ai4ctf-curriculum-96.js +1 -0
package/dist/lib/ai4ctf-phases.d.ts +24 -0
package/dist/lib/ai4ctf-phases.js +1 -0
package/dist/lib/ctf4ai-curriculum-360.d.ts +18 -0
package/dist/lib/ctf4ai-curriculum-360.js +1 -0
package/dist/lib/ctf4ai-curriculum-96.d.ts +14 -0
package/dist/lib/ctf4ai-curriculum-96.js +1 -0
package/dist/lib/ctf4ai-phases.d.ts +24 -0
package/dist/lib/ctf4ai-phases.js +1 -0
package/dist/lib/ctf4eai-curriculum-96.d.ts +14 -0
package/dist/lib/ctf4eai-curriculum-96.js +1 -0
package/dist/lib/hint-client.js +1 -1
package/dist/lib/learn-curricula.js +1 -1
package/package.json +1 -1

package/dist/lib/ctf4ai-curriculum-360.d.ts ADDED Viewed

@@ -0,0 +1,18 @@
+/**
+ * ctf4ai-360 — Red-Team Software AI, research-grade curriculum.
+ *
+ * Source: ctf4ai-phases.ts (auto-generated by panda/generate-track-cards.js).
+ * 8 phases × 45 cards = 360 total. Knowledge-only tier.
+ *
+ * Phase 4-8 are the differentiator vs commercial AI security curricula:
+ *   · Phase 2: Classical adversarial attacks (FGSM/PGD/CW/extraction/poisoning)
+ *   · Phase 4: Infrastructure exposure (orchestration platform leaks)
+ *   · Phase 5: Supply chain (malicious MCP/plugin/skill)
+ *   · Phase 6: Persistence + multi-agent (RAG/Memory poisoning, A2A)
+ *   · Phase 7: Sandbox + privilege escape
+ *   · Phase 8: Forensics + responsible disclosure
+ *
+ * Each card carries bilingual EN/ZH + y/n comprehension check.
+ */
+import type { Curriculum } from './learn-curricula.js';
+export declare const CURRICULUM_CTF4AI_360: Curriculum;

package/dist/lib/ctf4ai-curriculum-360.js ADDED Viewed

@@ -0,0 +1 @@

+ import{CTF4AI_ALL_PHASES as e,CTF4AI_PHASE_NAMES as r}from"./ctf4ai-phases.js";const n=function(){const r=[];let n=1;for(let t=0;t<8;t++){const o=(e[t]??[]).slice(0,45);for(const e of o)r.push({...e,number:n,module:t+1}),n++}return r}();export const CURRICULUM_CTF4AI_360={id:"ctf4ai-360",name:"CTF4AI — Red-Team Software AI (Research-grade, n=360)",description:"Knowledge-only research-grade curriculum (~75 hours). Eight phases × 45 cards covering classical adversarial ML, prompt injection, infrastructure exposure, supply chain, persistence/multi-agent, sandbox escape, and forensics. Bilingual EN/ZH with y/n comprehension checks throughout.",totalCards:n.length,modules:function(){const e=[];for(let t=0;t<8;t++){const o=n.filter(e=>e.module===t+1);0!==o.length&&e.push({number:t+1,name:r[t],cardRange:[o[0].number,o[o.length-1].number]})}return e}(),cards:n};if(360!==n.length)throw new Error(`ctf4ai-360: expected 360 cards, got ${n.length}`);

package/dist/lib/ctf4ai-curriculum-96.d.ts ADDED Viewed

@@ -0,0 +1,14 @@
+/**
+ * ctf4ai-96 — competition-focused curated subset of ctf4ai-360.
+ *
+ * Same heuristic as ai4ctf-96: take the first 12 cards of each phase from
+ * the 360 mainline, where outline ordering already prioritized hook +
+ * core concepts.
+ *
+ * IMPORTANT for ctf4ai-96: the contestant MUST recognize the 5 new
+ * attack categories during the exam (Phase 4-7 of the 360). Cards 1-12
+ * of each of those phases cover the foundational landscape — sufficient
+ * for exam-level recognition. Deeper coverage stays in the 360.
+ */
+import type { Curriculum } from './learn-curricula.js';
+export declare const CURRICULUM_CTF4AI_96: Curriculum;

package/dist/lib/ctf4ai-curriculum-96.js ADDED Viewed

@@ -0,0 +1 @@

+ import{CTF4AI_ALL_PHASES as t,CTF4AI_PHASE_NAMES as e}from"./ctf4ai-phases.js";const n=function(){const e=[];let n=1;for(let o=0;o<8;o++){const r=(t[o]??[]).slice(0,12);for(const t of r)e.push({...t,number:n,module:o+1}),n++}return e}();export const CURRICULUM_CTF4AI_96={id:"ctf4ai-96",name:"CTF4AI — Specialist (n=96, competition-focused)",description:"Curated 24-hour subset of ctf4ai-360. Eight phases × 12 cards covering attacker mindset, classical adversarial ML foundations, prompt injection, and the 5 frontier categories at recognition depth. Bilingual EN/ZH with y/n comprehension checks.",totalCards:n.length,modules:function(){const t=[];for(let o=0;o<8;o++){const r=n.filter(t=>t.module===o+1);0!==r.length&&t.push({number:o+1,name:e[o],cardRange:[r[0].number,r[r.length-1].number]})}return t}(),cards:n};if(96!==n.length)throw new Error(`ctf4ai-96: expected 96 cards, got ${n.length}`);

package/dist/lib/ctf4ai-phases.d.ts ADDED Viewed

@@ -0,0 +1,24 @@
+/**
+ * AUTO-GENERATED card content for ctf4ai-360.
+ * Source: panda/generate-track-cards.js + panda/retry-fallback-cards.js
+ * (Gemini 3.5-flash + lite fallback).
+ * DO NOT HAND-EDIT — regenerate by running the scripts.
+ *
+ * Last updated: 2026-05-24T17:26:19.301Z
+ * Cards covered: 360
+ *
+ * Embargo: ICOA-VLA codename only.
+ */
+import type { CardKnowledge } from './learn-curricula.js';
+type CardSource = Omit<CardKnowledge, 'number'>;
+export declare const CTF4AI_PHASE_1: CardSource[];
+export declare const CTF4AI_PHASE_2: CardSource[];
+export declare const CTF4AI_PHASE_3: CardSource[];
+export declare const CTF4AI_PHASE_4: CardSource[];
+export declare const CTF4AI_PHASE_5: CardSource[];
+export declare const CTF4AI_PHASE_6: CardSource[];
+export declare const CTF4AI_PHASE_7: CardSource[];
+export declare const CTF4AI_PHASE_8: CardSource[];
+export declare const CTF4AI_ALL_PHASES: CardSource[][];
+export declare const CTF4AI_PHASE_NAMES: string[];
+export {};