npm - llm-entropy-filter - Versions diffs - 1.1.0 → 1.2.0 - Mend

llm-entropy-filter 1.1.0 → 1.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (23) hide show

package/CHANGELOG.md +155 -51
package/LICENSE +93 -93
package/README.md +297 -352
package/dist/index.cjs +104 -70
package/dist/index.cjs.map +1 -1
package/dist/index.d.cts +31 -1
package/dist/index.d.ts +31 -1
package/dist/index.js +104 -70
package/dist/index.js.map +1 -1
package/integrations/express.mjs +117 -117
package/integrations/fastify.mjs +106 -106
package/integrations/langchain.mjs +98 -98
package/integrations/vercel-ai-sdk.mjs +44 -44
package/package.json +99 -59
package/rulesets/default.js +8 -0
package/rulesets/default.json +77 -73
package/rulesets/public-api.js +7 -0
package/rulesets/public-api.json +179 -27
package/rulesets/schema +24 -24
package/rulesets/strict.js +7 -0
package/rulesets/strict.json +173 -25
package/rulesets/support.js +7 -0
package/rulesets/support.json +22 -22

package/CHANGELOG.md CHANGED Viewed

@@ -1,51 +1,155 @@
-# Changelog
-All notable changes to this project will be documented in this file.
-The format is based on semantic versioning principles.
----
-## [1.1.0] - 2026-01-28
-### 🚀 Added
-- Introduced formal **ruleset architecture** (`default`, `strict`, `support`, `public-api`).
-- Added `rulesets/` directory for configurable entropy presets.
-- Added integration examples:
-  - Express middleware
-  - Fastify plugin
-  - Vercel AI SDK pre-gate wrapper
-- Added reproducible benchmark scripts for spam dataset evaluation.
-- Added economic & performance impact documentation.
-- Added stability & hallucination mitigation section in README.
-- Added production-readiness checklist.
-### 🧪 Bench & Metrics
-- Included reproducible SMS spam dataset benchmarking.
-- Added support for generating precision / recall style reports.
-- Added structured telemetry output for integration logging.
-### 🛠 Internal
-- No changes to core `gate()` logic.
-- No breaking changes to public API.
-- Existing behavior remains the default under `ruleset: "default"`.
-### ⚠️ Breaking Changes
-None.
-This release focuses on infrastructure packaging, documentation clarity, and integration readiness without altering the deterministic entropy engine.
----
-## [1.0.1] - 2026-01-27
-### Added
-- Initial demo server (`/analyze`, `/triad`)
-- Deterministic entropy scoring
-- ALLOW / WARN / BLOCK verdict structure
-- Performance benchmark documentation
+[1.2.0] – 2026-01-29
+Major Improvements
+Introduced policy-based deterministic overrides
+block_flags
+warn_flags
+Implemented hard escalation independent of entropy score.
+Eliminated BLOCK → ALLOW leaks in benchmark dataset.
+Improved logical signal clustering behavior.
+Refactored gate.ts decision flow for clearer policy precedence.
+Decision Flow Order (Updated)
+Score calculation
+Policy overrides
+Threshold comparison
+Final action resolution
+Security Improvements
+Deterministic phishing escalation (phishing_2fa_code)
+Fraud payment request detection
+Scam work-from-home detection
+Strong spam clustering logic
+Shouting + money signal amplification
+Metrics (public-api preset)
+Recall improved from 33% → 50%
+F1 improved to 66.67%
+BLOCK→ALLOW leaks: 0
+Deterministic behavior confirmed
+Internal Refactors
+Cleaned entropy.ts
+Cleaned gate.ts decision logic
+Clarified ruleset schema
+Improved type safety
+[1.1.0] – 2026-01-28
+Added
+Configurable strong_spam_block policy option
+Initial policy override support
+Ruleset-level normalization controls
+Benchmark CLI metrics runner
+Improvements
+Improved spam keyword coverage
+Added urgency detection
+Added fraud signal hints
+Added link detection patterns
+Known Limitations
+Contextual false negatives on isolated phishing patterns
+No cluster-based deterministic override
+Score-only dependency in some edge cases
+[1.0.0] – Initial Release
+Features
+Deterministic entropy scoring engine
+Hard trigger system
+Topic hint architecture
+Threshold-based decisions (warn / block)
+Public API preset
+Strict preset
+CLI benchmark tool
+Philosophy
+Linguistic entropy detection
+Deterministic filtering
+Middleware-first design
+Roadmap (Next Minor Versions)
+Planned for 1.3.x
+Flag cluster policies (block on combination)
+Configurable signal groups
+Weighted cluster escalation
+Expanded multilingual patterns
+Subject/intent classification layer
+Future (Enterprise Layer – Separate Project)
+Context memory
+Behavioral pattern tracking
+Secondary AI review pipeline
+Adaptive thresholding
+Admin dashboard
+Threat intelligence feeds
+Versioning Philosophy
+This project evolves by:
+Increasing determinism
+Improving recall without sacrificing precision
+Strengthening policy clarity
+Maintaining reproducibility
+No hidden behavior.
+No silent escalation.
+No model dependency.

package/LICENSE CHANGED Viewed

@@ -1,93 +1,93 @@
-Apache License
-Version 2.0, January 2004
-http://www.apache.org/licenses/
-Copyright 2026 Ernesto Rosati
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-    http://www.apache.org/licenses/LICENSE-2.0
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
---------------------------------------------------------------------
-Apache License
-Version 2.0, January 2004
-TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-1. Definitions.
-"License" shall mean the terms and conditions for use, reproduction,
-and distribution as defined by Sections 1 through 9 of this document.
-"Licensor" shall mean the copyright owner or entity authorized by
-the copyright owner that is granting the License.
-"Legal Entity" shall mean the union of the acting entity and all
-other entities that control, are controlled by, or are under common
-control with that entity.
-"You" (or "Your") shall mean an individual or Legal Entity
-exercising permissions granted by this License.
-"Source" form shall mean the preferred form for making modifications,
-including but not limited to software source code.
-"Object" form shall mean any form resulting from mechanical
-transformation or translation of a Source form.
-"Work" shall mean the work of authorship made available under the License.
-"Derivative Works" shall mean any work based upon the Work.
-2. Grant of Copyright License.
-Subject to the terms and conditions of this License, each Contributor
-hereby grants You a perpetual, worldwide, non-exclusive, no-charge,
-royalty-free, irrevocable copyright license to reproduce, prepare
-Derivative Works of, publicly display, publicly perform, sublicense,
-and distribute the Work.
-3. Grant of Patent License.
-Each Contributor hereby grants You a perpetual, worldwide,
-non-exclusive, no-charge, royalty-free, irrevocable patent license
-to make, use, sell, offer to sell, import, and otherwise transfer
-the Work.
-4. Redistribution.
-You may reproduce and distribute copies of the Work provided that
-You give recipients a copy of this License and retain attribution notices.
-5. Submission of Contributions.
-Unless You explicitly state otherwise, any Contribution intentionally
-submitted for inclusion in the Work shall be under the terms of this License.
-6. Trademarks.
-This License does not grant permission to use the trade names,
-trademarks, service marks, or product names of the Licensor.
-7. Disclaimer of Warranty.
-The Work is provided "AS IS", WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND.
-8. Limitation of Liability.
-In no event shall any Contributor be liable for damages arising from
-the use of the Work.
-9. Accepting Warranty or Additional Liability.
-You may offer support or warranty protection for a fee, but only
-on Your own behalf and responsibility.
+Apache License
+Version 2.0, January 2004
+http://www.apache.org/licenses/
+Copyright 2026 Ernesto Rosati
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+    http://www.apache.org/licenses/LICENSE-2.0
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+--------------------------------------------------------------------
+Apache License
+Version 2.0, January 2004
+TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+1. Definitions.
+"License" shall mean the terms and conditions for use, reproduction,
+and distribution as defined by Sections 1 through 9 of this document.
+"Licensor" shall mean the copyright owner or entity authorized by
+the copyright owner that is granting the License.
+"Legal Entity" shall mean the union of the acting entity and all
+other entities that control, are controlled by, or are under common
+control with that entity.
+"You" (or "Your") shall mean an individual or Legal Entity
+exercising permissions granted by this License.
+"Source" form shall mean the preferred form for making modifications,
+including but not limited to software source code.
+"Object" form shall mean any form resulting from mechanical
+transformation or translation of a Source form.
+"Work" shall mean the work of authorship made available under the License.
+"Derivative Works" shall mean any work based upon the Work.
+2. Grant of Copyright License.
+Subject to the terms and conditions of this License, each Contributor
+hereby grants You a perpetual, worldwide, non-exclusive, no-charge,
+royalty-free, irrevocable copyright license to reproduce, prepare
+Derivative Works of, publicly display, publicly perform, sublicense,
+and distribute the Work.
+3. Grant of Patent License.
+Each Contributor hereby grants You a perpetual, worldwide,
+non-exclusive, no-charge, royalty-free, irrevocable patent license
+to make, use, sell, offer to sell, import, and otherwise transfer
+the Work.
+4. Redistribution.
+You may reproduce and distribute copies of the Work provided that
+You give recipients a copy of this License and retain attribution notices.
+5. Submission of Contributions.
+Unless You explicitly state otherwise, any Contribution intentionally
+submitted for inclusion in the Work shall be under the terms of this License.
+6. Trademarks.
+This License does not grant permission to use the trade names,
+trademarks, service marks, or product names of the Licensor.
+7. Disclaimer of Warranty.
+The Work is provided "AS IS", WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND.
+8. Limitation of Liability.
+In no event shall any Contributor be liable for damages arising from
+the use of the Work.
+9. Accepting Warranty or Additional Liability.
+You may offer support or warranty protection for a fee, but only
+on Your own behalf and responsibility.