vaspera 2.13.0 → 2.14.0

package/dist/agents/antagonist/index.d.ts

@@ -0,0 +1,31 @@
+/**
+ * Antagonist Agent
+ *
+ * A meta-analysis agent that runs AFTER all other agents complete.
+ * Synthesizes findings into attack narratives and challenges assumptions.
+ *
+ * Two modes:
+ * 1. Synthesis: "How would an attacker chain these findings?"
+ * 2. Challenger: "What did other agents miss? What assumptions are wrong?"
+ *
+ * @module agents/antagonist
+ */
+import type { Finding } from "../../certification/types.js";
+import type { AntagonistInput, AntagonistConfig, AntagonistResult } from "./types.js";
+export * from "./types.js";
+export { synthesizeNarratives, synthesizeNarrativesDeterministic } from "./synthesizer.js";
+export { runChallenger, runChallengerDeterministic } from "./challenger.js";
+export { prioritizeRemediations, calculatePrioritizationMetrics } from "./prioritizer.js";
+/**
+ * Run full antagonist analysis
+ */
+export declare function runAntagonistAnalysis(input: AntagonistInput, config?: Partial<AntagonistConfig>): Promise<AntagonistResult>;
+/**
+ * Quick antagonist check for a single finding
+ */
+export declare function quickAntagonistCheck(finding: Finding, relatedFindings: Finding[], config?: Partial<AntagonistConfig>): Promise<{
+    inAttackPath: boolean;
+    chainPotential: string[];
+    challengeRisk: "high" | "medium" | "low";
+}>;
+//# sourceMappingURL=index.d.ts.map

package/dist/agents/antagonist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/agents/antagonist/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAa,OAAO,EAAE,MAAM,8BAA8B,CAAC;AAGvE,OAAO,KAAK,EACV,eAAe,EACf,gBAAgB,EAChB,gBAAgB,EAKjB,MAAM,YAAY,CAAC;AAOpB,cAAc,YAAY,CAAC;AAC3B,OAAO,EAAE,oBAAoB,EAAE,iCAAiC,EAAE,MAAM,kBAAkB,CAAC;AAC3F,OAAO,EAAE,aAAa,EAAE,0BAA0B,EAAE,MAAM,iBAAiB,CAAC;AAC5E,OAAO,EAAE,sBAAsB,EAAE,8BAA8B,EAAE,MAAM,kBAAkB,CAAC;AAE1F;;GAEG;AACH,wBAAsB,qBAAqB,CACzC,KAAK,EAAE,eAAe,EACtB,MAAM,GAAE,OAAO,CAAC,gBAAgB,CAAM,GACrC,OAAO,CAAC,gBAAgB,CAAC,CA2G3B;AA2DD;;GAEG;AACH,wBAAsB,oBAAoB,CACxC,OAAO,EAAE,OAAO,EAChB,eAAe,EAAE,OAAO,EAAE,EAC1B,MAAM,GAAE,OAAO,CAAC,gBAAgB,CAAM,GACrC,OAAO,CAAC;IACT,YAAY,EAAE,OAAO,CAAC;IACtB,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,aAAa,EAAE,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;CAC1C,CAAC,CA+BD"}

package/dist/agents/antagonist/index.js

@@ -0,0 +1,175 @@
+/**
+ * Antagonist Agent
+ *
+ * A meta-analysis agent that runs AFTER all other agents complete.
+ * Synthesizes findings into attack narratives and challenges assumptions.
+ *
+ * Two modes:
+ * 1. Synthesis: "How would an attacker chain these findings?"
+ * 2. Challenger: "What did other agents miss? What assumptions are wrong?"
+ *
+ * @module agents/antagonist
+ */
+import { DEFAULT_ANTAGONIST_CONFIG } from "./types.js";
+import { synthesizeNarratives } from "./synthesizer.js";
+import { runChallenger } from "./challenger.js";
+import { prioritizeRemediations } from "./prioritizer.js";
+import { logger } from "../../logger.js";
+export * from "./types.js";
+export { synthesizeNarratives, synthesizeNarrativesDeterministic } from "./synthesizer.js";
+export { runChallenger, runChallengerDeterministic } from "./challenger.js";
+export { prioritizeRemediations, calculatePrioritizationMetrics } from "./prioritizer.js";
+/**
+ * Run full antagonist analysis
+ */
+export async function runAntagonistAnalysis(input, config = {}) {
+    const startTime = Date.now();
+    const fullConfig = { ...DEFAULT_ANTAGONIST_CONFIG, ...config };
+    logger.info("antagonist.analysis_started", {
+        certificationId: input.certificationId,
+        findingsCount: input.findings.length,
+        chainsCount: input.exploitChains.length,
+        mode: fullConfig.mode,
+    });
+    const analysisId = `ant-${Date.now().toString(36)}-${Math.random().toString(36).slice(2, 6)}`;
+    let narratives = [];
+    let assessments = [];
+    let gapAnalysis = {
+        untestedAttackVectors: [],
+        missingControls: [],
+        blindSpots: [],
+        recommendations: [],
+        coverageScore: 100,
+    };
+    let prioritization = [];
+    let totalTokens = 0;
+    try {
+        if (fullConfig.mode === "synthesis" || fullConfig.mode === "both") {
+            const synthesisResult = await synthesizeNarratives(input.findings, input.exploitChains, input.exfilPaths, fullConfig);
+            narratives = synthesisResult.narratives;
+            totalTokens += synthesisResult.tokensUsed;
+            logger.debug("antagonist.synthesis_complete", {
+                narrativesFound: narratives.length,
+                tokensUsed: synthesisResult.tokensUsed,
+            });
+        }
+        if (fullConfig.mode === "challenger" || fullConfig.mode === "both") {
+            const challengerResult = await runChallenger(input.findings, input.agentSummaries, fullConfig);
+            assessments = challengerResult.assessments;
+            gapAnalysis = challengerResult.gapAnalysis;
+            totalTokens += challengerResult.tokensUsed;
+            logger.debug("antagonist.challenger_complete", {
+                assessmentsFound: assessments.length,
+                coverageScore: gapAnalysis.coverageScore,
+                tokensUsed: challengerResult.tokensUsed,
+            });
+        }
+        if (fullConfig.includePrioritization && narratives.length > 0) {
+            prioritization = prioritizeRemediations(input.findings, narratives);
+            logger.debug("antagonist.prioritization_complete", {
+                prioritizedFindings: prioritization.length,
+            });
+        }
+        const summary = generateSummary(narratives, assessments, gapAnalysis, prioritization);
+        const duration = Date.now() - startTime;
+        logger.info("antagonist.analysis_complete", {
+            analysisId,
+            narratives: narratives.length,
+            assessments: assessments.length,
+            coverageScore: gapAnalysis.coverageScore,
+            duration,
+            tokensUsed: totalTokens,
+        });
+        return {
+            success: true,
+            analysisId,
+            attackNarratives: narratives,
+            challengerAssessments: assessments,
+            prioritization,
+            gapAnalysis,
+            summary,
+            duration,
+            tokensUsed: totalTokens,
+        };
+    }
+    catch (error) {
+        const errorMessage = error instanceof Error ? error.message : String(error);
+        logger.error("antagonist.analysis_failed", { error: errorMessage });
+        return {
+            success: false,
+            analysisId,
+            attackNarratives: narratives,
+            challengerAssessments: assessments,
+            prioritization,
+            gapAnalysis,
+            summary: `Analysis failed: ${errorMessage}`,
+            duration: Date.now() - startTime,
+            tokensUsed: totalTokens,
+            error: errorMessage,
+        };
+    }
+}
+/**
+ * Generate summary text from analysis results
+ */
+function generateSummary(narratives, assessments, gapAnalysis, prioritization) {
+    const lines = [];
+    if (narratives.length > 0) {
+        const highLikelihood = narratives.filter((n) => n.likelihood === "high").length;
+        const criticalImpact = narratives.filter((n) => n.impact.toLowerCase().includes("complete") || n.impact.toLowerCase().includes("critical")).length;
+        lines.push(`Identified ${narratives.length} attack narrative(s): ${highLikelihood} high-likelihood, ${criticalImpact} with critical impact.`);
+        const topNarrative = narratives[0];
+        if (topNarrative) {
+            lines.push(`Most likely attack: "${topNarrative.name}" (${topNarrative.likelihood} likelihood, ${topNarrative.difficulty} difficulty).`);
+        }
+    }
+    else {
+        lines.push("No clear attack narratives identified from current findings.");
+    }
+    if (assessments.length > 0) {
+        const fpLikely = assessments.filter((a) => a.type === "false_positive_likely").length;
+        const missedChecks = assessments.filter((a) => a.type === "missed_check").length;
+        if (fpLikely > 0) {
+            lines.push(`Flagged ${fpLikely} potential false positive(s) for review.`);
+        }
+        if (missedChecks > 0) {
+            lines.push(`Identified ${missedChecks} uncovered attack vector(s).`);
+        }
+    }
+    if (gapAnalysis.coverageScore < 80) {
+        lines.push(`Coverage score: ${gapAnalysis.coverageScore}%. Missing: ${gapAnalysis.untestedAttackVectors.slice(0, 3).join(", ")}.`);
+    }
+    if (prioritization.length > 0) {
+        const topThree = prioritization.slice(0, 3).map((p) => p.findingId);
+        lines.push(`Priority fixes: ${topThree.join(", ")}.`);
+    }
+    return lines.join(" ");
+}
+/**
+ * Quick antagonist check for a single finding
+ */
+export async function quickAntagonistCheck(finding, relatedFindings, config = {}) {
+    const fullConfig = {
+        ...DEFAULT_ANTAGONIST_CONFIG,
+        ...config,
+        useLlm: false,
+        maxNarratives: 3,
+    };
+    const { narratives } = await synthesizeNarratives([finding, ...relatedFindings], [], [], fullConfig);
+    const inAttackPath = narratives.some((n) => n.findingIds.includes(finding.id));
+    const chainPotential = narratives
+        .filter((n) => n.findingIds.includes(finding.id))
+        .flatMap((n) => n.findingIds)
+        .filter((id) => id !== finding.id);
+    let challengeRisk = "low";
+    if (finding.confidence < 50)
+        challengeRisk = "high";
+    else if (finding.confidence < 70 || finding.file?.includes("test"))
+        challengeRisk = "medium";
+    return {
+        inAttackPath,
+        chainPotential: [...new Set(chainPotential)],
+        challengeRisk,
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/agents/antagonist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/agents/antagonist/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAcH,OAAO,EAAE,yBAAyB,EAAE,MAAM,YAAY,CAAC;AACvD,OAAO,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AACxD,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAChD,OAAO,EAAE,sBAAsB,EAAkC,MAAM,kBAAkB,CAAC;AAC1F,OAAO,EAAE,MAAM,EAAE,MAAM,iBAAiB,CAAC;AAEzC,cAAc,YAAY,CAAC;AAC3B,OAAO,EAAE,oBAAoB,EAAE,iCAAiC,EAAE,MAAM,kBAAkB,CAAC;AAC3F,OAAO,EAAE,aAAa,EAAE,0BAA0B,EAAE,MAAM,iBAAiB,CAAC;AAC5E,OAAO,EAAE,sBAAsB,EAAE,8BAA8B,EAAE,MAAM,kBAAkB,CAAC;AAE1F;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,KAAsB,EACtB,SAAoC,EAAE;IAEtC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAC7B,MAAM,UAAU,GAAqB,EAAE,GAAG,yBAAyB,EAAE,GAAG,MAAM,EAAE,CAAC;IAEjF,MAAM,CAAC,IAAI,CAAC,6BAA6B,EAAE;QACzC,eAAe,EAAE,KAAK,CAAC,eAAe;QACtC,aAAa,EAAE,KAAK,CAAC,QAAQ,CAAC,MAAM;QACpC,WAAW,EAAE,KAAK,CAAC,aAAa,CAAC,MAAM;QACvC,IAAI,EAAE,UAAU,CAAC,IAAI;KACtB,CAAC,CAAC;IAEH,MAAM,UAAU,GAAG,OAAO,IAAI,CAAC,GAAG,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;IAE9F,IAAI,UAAU,GAAsB,EAAE,CAAC;IACvC,IAAI,WAAW,GAA2B,EAAE,CAAC;IAC7C,IAAI,WAAW,GAAgB;QAC7B,qBAAqB,EAAE,EAAE;QACzB,eAAe,EAAE,EAAE;QACnB,UAAU,EAAE,EAAE;QACd,eAAe,EAAE,EAAE;QACnB,aAAa,EAAE,GAAG;KACnB,CAAC;IACF,IAAI,cAAc,GAA6B,EAAE,CAAC;IAClD,IAAI,WAAW,GAAG,CAAC,CAAC;IAEpB,IAAI,CAAC;QACH,IAAI,UAAU,CAAC,IAAI,KAAK,WAAW,IAAI,UAAU,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;YAClE,MAAM,eAAe,GAAG,MAAM,oBAAoB,CAChD,KAAK,CAAC,QAAQ,EACd,KAAK,CAAC,aAAa,EACnB,KAAK,CAAC,UAAU,EAChB,UAAU,CACX,CAAC;YACF,UAAU,GAAG,eAAe,CAAC,UAAU,CAAC;YACxC,WAAW,IAAI,eAAe,CAAC,UAAU,CAAC;YAE1C,MAAM,CAAC,KAAK,CAAC,+BAA+B,EAAE;gBAC5C,eAAe,EAAE,UAAU,CAAC,MAAM;gBAClC,UAAU,EAAE,eAAe,CAAC,UAAU;aACvC,CAAC,CAAC;QACL,CAAC;QAED,IAAI,UAAU,CAAC,IAAI,KAAK,YAAY,IAAI,UAAU,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;YACnE,MAAM,gBAAgB,GAAG,MAAM,aAAa,CAC1C,KAAK,CAAC,QAAQ,EACd,KAAK,CAAC,cAAc,EACpB,UAAU,CACX,CAAC;YACF,WAAW,GAAG,gBAAgB,CAAC,WAAW,CAAC;YAC3C,WAAW,GAAG,gBAAgB,CAAC,WAAW,CAAC;YAC3C,WAAW,IAAI,gBAAgB,CAAC,UAAU,CAAC;YAE3C,MAAM,CAAC,KAAK,CAAC,gCAAgC,EAAE;gBAC7C,gBAAgB,EAAE,WAAW,CAAC,MAAM;gBACpC,aAAa,EAAE,WAAW,CAAC,aAAa;gBACxC,UAAU,EAAE,gBAAgB,CAAC,UAAU;aACxC,CAAC,CAAC;QACL,CAAC;QAED,IAAI,UAAU,CAAC,qBAAqB,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC9D,cAAc,GAAG,sBAAsB,CAAC,KAAK,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;YAEpE,MAAM,CAAC,KAAK,CAAC,oCAAoC,EAAE;gBACjD,mBAAmB,EAAE,cAAc,CAAC,MAAM;aAC3C,CAAC,CAAC;QACL,CAAC;QAED,MAAM,OAAO,GAAG,eAAe,CAAC,UAAU,EAAE,WAAW,EAAE,WAAW,EAAE,cAAc,CAAC,CAAC;QACtF,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QAExC,MAAM,CAAC,IAAI,CAAC,8BAA8B,EAAE;YAC1C,UAAU;YACV,UAAU,EAAE,UAAU,CAAC,MAAM;YAC7B,WAAW,EAAE,WAAW,CAAC,MAAM;YAC/B,aAAa,EAAE,WAAW,CAAC,aAAa;YACxC,QAAQ;YACR,UAAU,EAAE,WAAW;SACxB,CAAC,CAAC;QAEH,OAAO;YACL,OAAO,EAAE,IAAI;YACb,UAAU;YACV,gBAAgB,EAAE,UAAU;YAC5B,qBAAqB,EAAE,WAAW;YAClC,cAAc;YACd,WAAW;YACX,OAAO;YACP,QAAQ;YACR,UAAU,EAAE,WAAW;SACxB,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAC5E,MAAM,CAAC,KAAK,CAAC,4BAA4B,EAAE,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,CAAC;QAEpE,OAAO;YACL,OAAO,EAAE,KAAK;YACd,UAAU;YACV,gBAAgB,EAAE,UAAU;YAC5B,qBAAqB,EAAE,WAAW;YAClC,cAAc;YACd,WAAW;YACX,OAAO,EAAE,oBAAoB,YAAY,EAAE;YAC3C,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;YAChC,UAAU,EAAE,WAAW;YACvB,KAAK,EAAE,YAAY;SACpB,CAAC;IACJ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CACtB,UAA6B,EAC7B,WAAmC,EACnC,WAAwB,EACxB,cAAwC;IAExC,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC1B,MAAM,cAAc,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;QAChF,MAAM,cAAc,GAAG,UAAU,CAAC,MAAM,CACtC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,UAAU,CAAC,CAClG,CAAC,MAAM,CAAC;QAET,KAAK,CAAC,IAAI,CACR,cAAc,UAAU,CAAC,MAAM,yBAAyB,cAAc,qBAAqB,cAAc,wBAAwB,CAClI,CAAC;QAEF,MAAM,YAAY,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC;QACnC,IAAI,YAAY,EAAE,CAAC;YACjB,KAAK,CAAC,IAAI,CACR,wBAAwB,YAAY,CAAC,IAAI,MAAM,YAAY,CAAC,UAAU,gBAAgB,YAAY,CAAC,UAAU,eAAe,CAC7H,CAAC;QACJ,CAAC;IACH,CAAC;SAAM,CAAC;QACN,KAAK,CAAC,IAAI,CAAC,8DAA8D,CAAC,CAAC;IAC7E,CAAC;IAED,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC3B,MAAM,QAAQ,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,uBAAuB,CAAC,CAAC,MAAM,CAAC;QACtF,MAAM,YAAY,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,cAAc,CAAC,CAAC,MAAM,CAAC;QAEjF,IAAI,QAAQ,GAAG,CAAC,EAAE,CAAC;YACjB,KAAK,CAAC,IAAI,CAAC,WAAW,QAAQ,0CAA0C,CAAC,CAAC;QAC5E,CAAC;QACD,IAAI,YAAY,GAAG,CAAC,EAAE,CAAC;YACrB,KAAK,CAAC,IAAI,CAAC,cAAc,YAAY,8BAA8B,CAAC,CAAC;QACvE,CAAC;IACH,CAAC;IAED,IAAI,WAAW,CAAC,aAAa,GAAG,EAAE,EAAE,CAAC;QACnC,KAAK,CAAC,IAAI,CACR,mBAAmB,WAAW,CAAC,aAAa,eAAe,WAAW,CAAC,qBAAqB,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CACvH,CAAC;IACJ,CAAC;IAED,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC9B,MAAM,QAAQ,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;QACpE,KAAK,CAAC,IAAI,CAAC,mBAAmB,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACxD,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AACzB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,OAAgB,EAChB,eAA0B,EAC1B,SAAoC,EAAE;IAMtC,MAAM,UAAU,GAAqB;QACnC,GAAG,yBAAyB;QAC5B,GAAG,MAAM;QACT,MAAM,EAAE,KAAK;QACb,aAAa,EAAE,CAAC;KACjB,CAAC;IAEF,MAAM,EAAE,UAAU,EAAE,GAAG,MAAM,oBAAoB,CAC/C,CAAC,OAAO,EAAE,GAAG,eAAe,CAAC,EAC7B,EAAE,EACF,EAAE,EACF,UAAU,CACX,CAAC;IAEF,MAAM,YAAY,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC;IAE/E,MAAM,cAAc,GAAG,UAAU;SAC9B,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;SAChD,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC;SAC5B,MAAM,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,KAAK,OAAO,CAAC,EAAE,CAAC,CAAC;IAErC,IAAI,aAAa,GAA8B,KAAK,CAAC;IACrD,IAAI,OAAO,CAAC,UAAU,GAAG,EAAE;QAAE,aAAa,GAAG,MAAM,CAAC;SAC/C,IAAI,OAAO,CAAC,UAAU,GAAG,EAAE,IAAI,OAAO,CAAC,IAAI,EAAE,QAAQ,CAAC,MAAM,CAAC;QAAE,aAAa,GAAG,QAAQ,CAAC;IAE7F,OAAO;QACL,YAAY;QACZ,cAAc,EAAE,CAAC,GAAG,IAAI,GAAG,CAAC,cAAc,CAAC,CAAC;QAC5C,aAAa;KACd,CAAC;AACJ,CAAC"}

package/dist/agents/antagonist/prioritizer.d.ts

@@ -0,0 +1,27 @@
+/**
+ * Antagonist Remediation Prioritizer
+ *
+ * Prioritizes findings based on:
+ * 1. Attack surface reduction (blocks most narratives)
+ * 2. Bottleneck findings (appear in multiple chains)
+ * 3. Effort vs. impact trade-offs
+ *
+ * @module agents/antagonist/prioritizer
+ */
+import type { Finding } from "../../certification/types.js";
+import type { AttackNarrative, PrioritizedRemediation } from "./types.js";
+/**
+ * Generate prioritized remediation list
+ */
+export declare function prioritizeRemediations(findings: Finding[], narratives: AttackNarrative[]): PrioritizedRemediation[];
+/**
+ * Calculate overall prioritization metrics
+ */
+export declare function calculatePrioritizationMetrics(prioritizations: PrioritizedRemediation[], narratives: AttackNarrative[]): {
+    totalFindings: number;
+    criticalPathFindings: number;
+    quickWins: number;
+    estimatedEffort: string;
+    topThreeImpact: string;
+};
+//# sourceMappingURL=prioritizer.d.ts.map

package/dist/agents/antagonist/prioritizer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"prioritizer.d.ts","sourceRoot":"","sources":["../../../src/agents/antagonist/prioritizer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAY,MAAM,8BAA8B,CAAC;AACtE,OAAO,KAAK,EAAE,eAAe,EAAE,sBAAsB,EAAE,MAAM,YAAY,CAAC;AAkF1E;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,QAAQ,EAAE,OAAO,EAAE,EACnB,UAAU,EAAE,eAAe,EAAE,GAC5B,sBAAsB,EAAE,CAsE1B;AAuCD;;GAEG;AACH,wBAAgB,8BAA8B,CAC5C,eAAe,EAAE,sBAAsB,EAAE,EACzC,UAAU,EAAE,eAAe,EAAE,GAC5B;IACD,aAAa,EAAE,MAAM,CAAC;IACtB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,SAAS,EAAE,MAAM,CAAC;IAClB,eAAe,EAAE,MAAM,CAAC;IACxB,cAAc,EAAE,MAAM,CAAC;CACxB,CA+BA"}

package/dist/agents/antagonist/prioritizer.js

@@ -0,0 +1,181 @@
+/**
+ * Antagonist Remediation Prioritizer
+ *
+ * Prioritizes findings based on:
+ * 1. Attack surface reduction (blocks most narratives)
+ * 2. Bottleneck findings (appear in multiple chains)
+ * 3. Effort vs. impact trade-offs
+ *
+ * @module agents/antagonist/prioritizer
+ */
+/**
+ * Effort estimation based on finding category
+ */
+const CATEGORY_EFFORT = {
+    "hardcoded-secret": "low",
+    xss: "low",
+    "path-traversal": "low",
+    "sql-injection": "medium",
+    "auth-bypass": "medium",
+    "broken-access-control": "medium",
+    "command-injection": "medium",
+    "code-injection": "high",
+    "prompt-injection": "high",
+    "excessive-agency": "high",
+    "logic-flaw": "high",
+};
+/**
+ * Impact estimation based on severity and narrative involvement
+ */
+function calculateImpact(finding, narrativeCount) {
+    const severityScore = {
+        critical: 5,
+        high: 4,
+        medium: 3,
+        low: 2,
+        info: 1,
+    };
+    const score = severityScore[finding.severity] + narrativeCount;
+    if (score >= 7)
+        return "high";
+    if (score >= 4)
+        return "medium";
+    return "low";
+}
+/**
+ * Count how many narratives each finding appears in
+ */
+function countNarrativeAppearances(findings, narratives) {
+    const appearances = new Map();
+    for (const finding of findings) {
+        appearances.set(finding.id, []);
+    }
+    for (const narrative of narratives) {
+        for (const findingId of narrative.findingIds) {
+            const existing = appearances.get(findingId) || [];
+            existing.push(narrative.id);
+            appearances.set(findingId, existing);
+        }
+    }
+    return appearances;
+}
+/**
+ * Calculate attack surface reduction if finding is fixed
+ */
+function calculateAttackSurfaceReduction(findingId, narratives) {
+    const totalNarratives = narratives.length;
+    if (totalNarratives === 0)
+        return 0;
+    const blockedNarratives = narratives.filter((n) => n.findingIds.includes(findingId)).length;
+    return Math.round((blockedNarratives / totalNarratives) * 100);
+}
+/**
+ * Generate prioritized remediation list
+ */
+export function prioritizeRemediations(findings, narratives) {
+    const appearances = countNarrativeAppearances(findings, narratives);
+    const prioritizations = [];
+    const findingsWithNarratives = findings.filter((f) => {
+        const narrativeIds = appearances.get(f.id) || [];
+        return narrativeIds.length > 0;
+    });
+    const scored = findingsWithNarratives.map((finding) => {
+        const narrativeIds = appearances.get(finding.id) || [];
+        const attackSurfaceReduction = calculateAttackSurfaceReduction(finding.id, narratives);
+        const severityScore = {
+            critical: 100,
+            high: 75,
+            medium: 50,
+            low: 25,
+            info: 10,
+        };
+        const effortPenalty = {
+            low: 0,
+            medium: 15,
+            high: 30,
+        };
+        const effort = CATEGORY_EFFORT[finding.category] || "medium";
+        const score = severityScore[finding.severity] +
+            attackSurfaceReduction +
+            narrativeIds.length * 10 -
+            effortPenalty[effort];
+        return { finding, narrativeIds, score, effort };
+    });
+    scored.sort((a, b) => b.score - a.score);
+    for (let i = 0; i < scored.length; i++) {
+        const { finding, narrativeIds, effort } = scored[i];
+        prioritizations.push({
+            order: i + 1,
+            findingId: finding.id,
+            reason: generateReason(finding, narrativeIds.length, narratives),
+            blocksNarratives: narrativeIds,
+            effort,
+            impact: calculateImpact(finding, narrativeIds.length),
+        });
+    }
+    for (const finding of findings) {
+        const narrativeIds = appearances.get(finding.id) || [];
+        if (narrativeIds.length === 0 && finding.severity !== "info") {
+            prioritizations.push({
+                order: prioritizations.length + 1,
+                findingId: finding.id,
+                reason: `Standalone ${finding.severity} finding not in attack chains`,
+                blocksNarratives: [],
+                effort: CATEGORY_EFFORT[finding.category] || "medium",
+                impact: calculateImpact(finding, 0),
+            });
+        }
+    }
+    return prioritizations;
+}
+/**
+ * Generate reason for prioritization
+ */
+function generateReason(finding, narrativeCount, narratives) {
+    const reasons = [];
+    if (finding.severity === "critical") {
+        reasons.push("Critical severity requires immediate attention");
+    }
+    if (narrativeCount > 2) {
+        reasons.push(`Bottleneck: appears in ${narrativeCount} attack paths`);
+    }
+    else if (narrativeCount > 0) {
+        reasons.push(`Part of ${narrativeCount} attack path(s)`);
+    }
+    const isEntryPoint = narratives.some((n) => n.entryPoint === finding.id);
+    if (isEntryPoint) {
+        reasons.push("Entry point for attack chain");
+    }
+    const effort = CATEGORY_EFFORT[finding.category] || "medium";
+    if (effort === "low") {
+        reasons.push("Quick fix");
+    }
+    if (reasons.length === 0) {
+        reasons.push(`${finding.severity} ${finding.category} vulnerability`);
+    }
+    return reasons.join(". ");
+}
+/**
+ * Calculate overall prioritization metrics
+ */
+export function calculatePrioritizationMetrics(prioritizations, narratives) {
+    const criticalPathFindings = prioritizations.filter((p) => p.blocksNarratives.length > 0).length;
+    const quickWins = prioritizations.filter((p) => p.effort === "low" && p.impact !== "low").length;
+    const effortHours = {
+        low: 1,
+        medium: 4,
+        high: 8,
+    };
+    const totalHours = prioritizations.reduce((sum, p) => sum + effortHours[p.effort], 0);
+    const topThree = prioritizations.slice(0, 3);
+    const topThreeBlocks = new Set(topThree.flatMap((p) => p.blocksNarratives));
+    const topThreeImpact = `Fixing top 3 blocks ${topThreeBlocks.size}/${narratives.length} attack paths`;
+    return {
+        totalFindings: prioritizations.length,
+        criticalPathFindings,
+        quickWins,
+        estimatedEffort: `${totalHours} hours`,
+        topThreeImpact,
+    };
+}
+//# sourceMappingURL=prioritizer.js.map

package/dist/agents/antagonist/prioritizer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prioritizer.js","sourceRoot":"","sources":["../../../src/agents/antagonist/prioritizer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAKH;;GAEG;AACH,MAAM,eAAe,GAA8C;IACjE,kBAAkB,EAAE,KAAK;IACzB,GAAG,EAAE,KAAK;IACV,gBAAgB,EAAE,KAAK;IACvB,eAAe,EAAE,QAAQ;IACzB,aAAa,EAAE,QAAQ;IACvB,uBAAuB,EAAE,QAAQ;IACjC,mBAAmB,EAAE,QAAQ;IAC7B,gBAAgB,EAAE,MAAM;IACxB,kBAAkB,EAAE,MAAM;IAC1B,kBAAkB,EAAE,MAAM;IAC1B,YAAY,EAAE,MAAM;CACrB,CAAC;AAEF;;GAEG;AACH,SAAS,eAAe,CACtB,OAAgB,EAChB,cAAsB;IAEtB,MAAM,aAAa,GAA6B;QAC9C,QAAQ,EAAE,CAAC;QACX,IAAI,EAAE,CAAC;QACP,MAAM,EAAE,CAAC;QACT,GAAG,EAAE,CAAC;QACN,IAAI,EAAE,CAAC;KACR,CAAC;IAEF,MAAM,KAAK,GAAG,aAAa,CAAC,OAAO,CAAC,QAAQ,CAAC,GAAG,cAAc,CAAC;IAE/D,IAAI,KAAK,IAAI,CAAC;QAAE,OAAO,MAAM,CAAC;IAC9B,IAAI,KAAK,IAAI,CAAC;QAAE,OAAO,QAAQ,CAAC;IAChC,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,SAAS,yBAAyB,CAChC,QAAmB,EACnB,UAA6B;IAE7B,MAAM,WAAW,GAAG,IAAI,GAAG,EAAoB,CAAC;IAEhD,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;IAClC,CAAC;IAED,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;QACnC,KAAK,MAAM,SAAS,IAAI,SAAS,CAAC,UAAU,EAAE,CAAC;YAC7C,MAAM,QAAQ,GAAG,WAAW,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,EAAE,CAAC;YAClD,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YAC5B,WAAW,CAAC,GAAG,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;QACvC,CAAC;IACH,CAAC;IAED,OAAO,WAAW,CAAC;AACrB,CAAC;AAED;;GAEG;AACH,SAAS,+BAA+B,CACtC,SAAiB,EACjB,UAA6B;IAE7B,MAAM,eAAe,GAAG,UAAU,CAAC,MAAM,CAAC;IAC1C,IAAI,eAAe,KAAK,CAAC;QAAE,OAAO,CAAC,CAAC;IAEpC,MAAM,iBAAiB,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAChD,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC,CACjC,CAAC,MAAM,CAAC;IAET,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,iBAAiB,GAAG,eAAe,CAAC,GAAG,GAAG,CAAC,CAAC;AACjE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,sBAAsB,CACpC,QAAmB,EACnB,UAA6B;IAE7B,MAAM,WAAW,GAAG,yBAAyB,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;IACpE,MAAM,eAAe,GAA6B,EAAE,CAAC;IAErD,MAAM,sBAAsB,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;QACnD,MAAM,YAAY,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,EAAE,CAAC;QACjD,OAAO,YAAY,CAAC,MAAM,GAAG,CAAC,CAAC;IACjC,CAAC,CAAC,CAAC;IAEH,MAAM,MAAM,GAAG,sBAAsB,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE;QACpD,MAAM,YAAY,GAAG,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,IAAI,EAAE,CAAC;QACvD,MAAM,sBAAsB,GAAG,+BAA+B,CAC5D,OAAO,CAAC,EAAE,EACV,UAAU,CACX,CAAC;QAEF,MAAM,aAAa,GAA6B;YAC9C,QAAQ,EAAE,GAAG;YACb,IAAI,EAAE,EAAE;YACR,MAAM,EAAE,EAAE;YACV,GAAG,EAAE,EAAE;YACP,IAAI,EAAE,EAAE;SACT,CAAC;QAEF,MAAM,aAAa,GAA8C;YAC/D,GAAG,EAAE,CAAC;YACN,MAAM,EAAE,EAAE;YACV,IAAI,EAAE,EAAE;SACT,CAAC;QAEF,MAAM,MAAM,GAAG,eAAe,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,QAAQ,CAAC;QAC7D,MAAM,KAAK,GACT,aAAa,CAAC,OAAO,CAAC,QAAQ,CAAC;YAC/B,sBAAsB;YACtB,YAAY,CAAC,MAAM,GAAG,EAAE;YACxB,aAAa,CAAC,MAAM,CAAC,CAAC;QAExB,OAAO,EAAE,OAAO,EAAE,YAAY,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC;IAClD,CAAC,CAAC,CAAC;IAEH,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC;IAEzC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACvC,MAAM,EAAE,OAAO,EAAE,YAAY,EAAE,MAAM,EAAE,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;QAEpD,eAAe,CAAC,IAAI,CAAC;YACnB,KAAK,EAAE,CAAC,GAAG,CAAC;YACZ,SAAS,EAAE,OAAO,CAAC,EAAE;YACrB,MAAM,EAAE,cAAc,CAAC,OAAO,EAAE,YAAY,CAAC,MAAM,EAAE,UAAU,CAAC;YAChE,gBAAgB,EAAE,YAAY;YAC9B,MAAM;YACN,MAAM,EAAE,eAAe,CAAC,OAAO,EAAE,YAAY,CAAC,MAAM,CAAC;SACtD,CAAC,CAAC;IACL,CAAC;IAED,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,YAAY,GAAG,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,IAAI,EAAE,CAAC;QACvD,IAAI,YAAY,CAAC,MAAM,KAAK,CAAC,IAAI,OAAO,CAAC,QAAQ,KAAK,MAAM,EAAE,CAAC;YAC7D,eAAe,CAAC,IAAI,CAAC;gBACnB,KAAK,EAAE,eAAe,CAAC,MAAM,GAAG,CAAC;gBACjC,SAAS,EAAE,OAAO,CAAC,EAAE;gBACrB,MAAM,EAAE,cAAc,OAAO,CAAC,QAAQ,+BAA+B;gBACrE,gBAAgB,EAAE,EAAE;gBACpB,MAAM,EAAE,eAAe,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,QAAQ;gBACrD,MAAM,EAAE,eAAe,CAAC,OAAO,EAAE,CAAC,CAAC;aACpC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,eAAe,CAAC;AACzB,CAAC;AAED;;GAEG;AACH,SAAS,cAAc,CACrB,OAAgB,EAChB,cAAsB,EACtB,UAA6B;IAE7B,MAAM,OAAO,GAAa,EAAE,CAAC;IAE7B,IAAI,OAAO,CAAC,QAAQ,KAAK,UAAU,EAAE,CAAC;QACpC,OAAO,CAAC,IAAI,CAAC,gDAAgD,CAAC,CAAC;IACjE,CAAC;IAED,IAAI,cAAc,GAAG,CAAC,EAAE,CAAC;QACvB,OAAO,CAAC,IAAI,CAAC,0BAA0B,cAAc,eAAe,CAAC,CAAC;IACxE,CAAC;SAAM,IAAI,cAAc,GAAG,CAAC,EAAE,CAAC;QAC9B,OAAO,CAAC,IAAI,CAAC,WAAW,cAAc,iBAAiB,CAAC,CAAC;IAC3D,CAAC;IAED,MAAM,YAAY,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,OAAO,CAAC,EAAE,CAAC,CAAC;IACzE,IAAI,YAAY,EAAE,CAAC;QACjB,OAAO,CAAC,IAAI,CAAC,8BAA8B,CAAC,CAAC;IAC/C,CAAC;IAED,MAAM,MAAM,GAAG,eAAe,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,QAAQ,CAAC;IAC7D,IAAI,MAAM,KAAK,KAAK,EAAE,CAAC;QACrB,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;IAC5B,CAAC;IAED,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,CAAC,IAAI,CAAC,GAAG,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,QAAQ,gBAAgB,CAAC,CAAC;IACxE,CAAC;IAED,OAAO,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC5B,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,8BAA8B,CAC5C,eAAyC,EACzC,UAA6B;IAQ7B,MAAM,oBAAoB,GAAG,eAAe,CAAC,MAAM,CACjD,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,gBAAgB,CAAC,MAAM,GAAG,CAAC,CACrC,CAAC,MAAM,CAAC;IAET,MAAM,SAAS,GAAG,eAAe,CAAC,MAAM,CACtC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,KAAK,IAAI,CAAC,CAAC,MAAM,KAAK,KAAK,CAChD,CAAC,MAAM,CAAC;IAET,MAAM,WAAW,GAA8C;QAC7D,GAAG,EAAE,CAAC;QACN,MAAM,EAAE,CAAC;QACT,IAAI,EAAE,CAAC;KACR,CAAC;IAEF,MAAM,UAAU,GAAG,eAAe,CAAC,MAAM,CACvC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,WAAW,CAAC,CAAC,CAAC,MAAM,CAAC,EACvC,CAAC,CACF,CAAC;IAEF,MAAM,QAAQ,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IAC7C,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC;IAC5E,MAAM,cAAc,GAAG,uBAAuB,cAAc,CAAC,IAAI,IAAI,UAAU,CAAC,MAAM,eAAe,CAAC;IAEtG,OAAO;QACL,aAAa,EAAE,eAAe,CAAC,MAAM;QACrC,oBAAoB;QACpB,SAAS;QACT,eAAe,EAAE,GAAG,UAAU,QAAQ;QACtC,cAAc;KACf,CAAC;AACJ,CAAC"}

package/dist/agents/antagonist/prompts.d.ts

@@ -0,0 +1,12 @@
+/**
+ * Antagonist Agent LLM Prompts
+ *
+ * @module agents/antagonist/prompts
+ */
+export declare const SYNTHESIS_SYSTEM_PROMPT = "You are a senior red team operator analyzing security findings from multiple tools and agents.\n\nYour task is to synthesize individual findings into realistic attack narratives. Think like an attacker:\n- What would be the entry point?\n- How would findings chain together?\n- What is the ultimate goal (data exfil, persistence, privilege escalation)?\n- What makes this attack likely to succeed?\n\nFor each narrative, map to MITRE ATT&CK kill chain phases:\n1. Reconnaissance - Gathering information\n2. Resource Development - Establishing resources\n3. Initial Access - Gaining foothold\n4. Execution - Running malicious code\n5. Persistence - Maintaining access\n6. Privilege Escalation - Getting higher permissions\n7. Defense Evasion - Avoiding detection\n8. Credential Access - Stealing credentials\n9. Discovery - Learning the environment\n10. Lateral Movement - Moving through network\n11. Collection - Gathering data\n12. Command and Control - Communicating with implants\n13. Exfiltration - Stealing data\n14. Impact - Disruption or destruction\n\nOutput JSON with this structure:\n{\n  \"narratives\": [\n    {\n      \"name\": \"Attack name\",\n      \"entryPoint\": \"First finding ID\",\n      \"targetAsset\": \"What attacker wants\",\n      \"impact\": \"Business impact\",\n      \"difficulty\": \"trivial|easy|moderate|hard|expert\",\n      \"likelihood\": \"high|medium|low\",\n      \"findingIds\": [\"finding-1\", \"finding-2\"],\n      \"phases\": [\n        {\"phase\": \"initial-access\", \"findingId\": \"...\", \"description\": \"...\", \"technique\": \"T1190\"}\n      ],\n      \"mitreTechniques\": [\"T1190\", \"T1059\"],\n      \"narrative\": \"Detailed attack story...\",\n      \"confidence\": 85\n    }\n  ]\n}";
+export declare const CHALLENGER_SYSTEM_PROMPT = "You are a skeptical security reviewer challenging the findings from other agents.\n\nYour job is to identify:\n1. FALSE POSITIVES - findings that are likely not exploitable in context\n2. MISSING CONTEXT - findings that need more evidence\n3. WRONG SEVERITY - findings that should be higher or lower severity\n4. WRONG ASSUMPTIONS - findings based on incorrect assumptions\n5. BLIND SPOTS - what attacks were NOT checked\n\nBe constructive but rigorous. If a finding lacks evidence of real exploitability, challenge it.\nIf an obvious attack vector was missed, flag it.\n\nOutput JSON with this structure:\n{\n  \"challenges\": [\n    {\n      \"type\": \"false_positive_likely|missing_context|wrong_severity|wrong_assumption|missed_check\",\n      \"targetAgent\": \"security|reliability|adversary|etc\",\n      \"targetFindingId\": \"finding-id or null\",\n      \"challenge\": \"What is wrong\",\n      \"evidence\": \"Why you think this\",\n      \"suggestedAction\": \"What should be done\",\n      \"severity\": \"high|medium|low\",\n      \"confidence\": 75\n    }\n  ],\n  \"blindSpots\": [\"Attack vector not tested\", \"...\"]\n}";
+export declare const PRIORITIZATION_SYSTEM_PROMPT = "You are a security architect prioritizing remediation efforts.\n\nGiven attack narratives and findings, determine the optimal fix order that:\n1. Blocks the most attack paths with the least effort\n2. Addresses bottleneck findings (appear in multiple narratives)\n3. Considers fix complexity vs. security impact\n\nOutput JSON with this structure:\n{\n  \"prioritization\": [\n    {\n      \"order\": 1,\n      \"findingId\": \"finding-id\",\n      \"reason\": \"Why fix this first\",\n      \"blocksNarratives\": [\"narrative-1\", \"narrative-2\"],\n      \"effort\": \"low|medium|high\",\n      \"impact\": \"low|medium|high\"\n    }\n  ]\n}";
+export declare function buildSynthesisPrompt(findings: string, chains: string, paths: string): string;
+export declare function buildChallengerPrompt(findings: string, agentSummaries: string, vectors: string): string;
+export declare function buildPrioritizationPrompt(narratives: string, findings: string): string;
+//# sourceMappingURL=prompts.d.ts.map

package/dist/agents/antagonist/prompts.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"prompts.d.ts","sourceRoot":"","sources":["../../../src/agents/antagonist/prompts.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,eAAO,MAAM,uBAAuB,stDA2ClC,CAAC;AAEH,eAAO,MAAM,wBAAwB,wnCA2BnC,CAAC;AAEH,eAAO,MAAM,4BAA4B,woBAmBvC,CAAC;AAEH,wBAAgB,oBAAoB,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,MAAM,CAmB5F;AAED,wBAAgB,qBAAqB,CACnC,QAAQ,EAAE,MAAM,EAChB,cAAc,EAAE,MAAM,EACtB,OAAO,EAAE,MAAM,GACd,MAAM,CAoBR;AAED,wBAAgB,yBAAyB,CACvC,UAAU,EAAE,MAAM,EAClB,QAAQ,EAAE,MAAM,GACf,MAAM,CAeR"}

package/dist/agents/antagonist/prompts.js

@@ -0,0 +1,155 @@
+/**
+ * Antagonist Agent LLM Prompts
+ *
+ * @module agents/antagonist/prompts
+ */
+export const SYNTHESIS_SYSTEM_PROMPT = `You are a senior red team operator analyzing security findings from multiple tools and agents.
+
+Your task is to synthesize individual findings into realistic attack narratives. Think like an attacker:
+- What would be the entry point?
+- How would findings chain together?
+- What is the ultimate goal (data exfil, persistence, privilege escalation)?
+- What makes this attack likely to succeed?
+
+For each narrative, map to MITRE ATT&CK kill chain phases:
+1. Reconnaissance - Gathering information
+2. Resource Development - Establishing resources
+3. Initial Access - Gaining foothold
+4. Execution - Running malicious code
+5. Persistence - Maintaining access
+6. Privilege Escalation - Getting higher permissions
+7. Defense Evasion - Avoiding detection
+8. Credential Access - Stealing credentials
+9. Discovery - Learning the environment
+10. Lateral Movement - Moving through network
+11. Collection - Gathering data
+12. Command and Control - Communicating with implants
+13. Exfiltration - Stealing data
+14. Impact - Disruption or destruction
+
+Output JSON with this structure:
+{
+  "narratives": [
+    {
+      "name": "Attack name",
+      "entryPoint": "First finding ID",
+      "targetAsset": "What attacker wants",
+      "impact": "Business impact",
+      "difficulty": "trivial|easy|moderate|hard|expert",
+      "likelihood": "high|medium|low",
+      "findingIds": ["finding-1", "finding-2"],
+      "phases": [
+        {"phase": "initial-access", "findingId": "...", "description": "...", "technique": "T1190"}
+      ],
+      "mitreTechniques": ["T1190", "T1059"],
+      "narrative": "Detailed attack story...",
+      "confidence": 85
+    }
+  ]
+}`;
+export const CHALLENGER_SYSTEM_PROMPT = `You are a skeptical security reviewer challenging the findings from other agents.
+
+Your job is to identify:
+1. FALSE POSITIVES - findings that are likely not exploitable in context
+2. MISSING CONTEXT - findings that need more evidence
+3. WRONG SEVERITY - findings that should be higher or lower severity
+4. WRONG ASSUMPTIONS - findings based on incorrect assumptions
+5. BLIND SPOTS - what attacks were NOT checked
+
+Be constructive but rigorous. If a finding lacks evidence of real exploitability, challenge it.
+If an obvious attack vector was missed, flag it.
+
+Output JSON with this structure:
+{
+  "challenges": [
+    {
+      "type": "false_positive_likely|missing_context|wrong_severity|wrong_assumption|missed_check",
+      "targetAgent": "security|reliability|adversary|etc",
+      "targetFindingId": "finding-id or null",
+      "challenge": "What is wrong",
+      "evidence": "Why you think this",
+      "suggestedAction": "What should be done",
+      "severity": "high|medium|low",
+      "confidence": 75
+    }
+  ],
+  "blindSpots": ["Attack vector not tested", "..."]
+}`;
+export const PRIORITIZATION_SYSTEM_PROMPT = `You are a security architect prioritizing remediation efforts.
+
+Given attack narratives and findings, determine the optimal fix order that:
+1. Blocks the most attack paths with the least effort
+2. Addresses bottleneck findings (appear in multiple narratives)
+3. Considers fix complexity vs. security impact
+
+Output JSON with this structure:
+{
+  "prioritization": [
+    {
+      "order": 1,
+      "findingId": "finding-id",
+      "reason": "Why fix this first",
+      "blocksNarratives": ["narrative-1", "narrative-2"],
+      "effort": "low|medium|high",
+      "impact": "low|medium|high"
+    }
+  ]
+}`;
+export function buildSynthesisPrompt(findings, chains, paths) {
+    return `Analyze these security findings and synthesize them into attack narratives:
+
+## Findings from All Agents
+${findings}
+
+## Existing Exploit Chains Detected
+${chains}
+
+## Data Exfiltration Paths
+${paths}
+
+Based on this data, identify realistic attack scenarios an attacker would pursue. Focus on:
+- Which findings can be chained together
+- What the attacker's likely goals would be
+- How difficult each attack would be
+- What MITRE ATT&CK techniques apply
+
+Generate 3-5 attack narratives, prioritized by likelihood and impact.`;
+}
+export function buildChallengerPrompt(findings, agentSummaries, vectors) {
+    return `Review these security findings and challenge any that seem questionable:
+
+## Findings to Review
+${findings}
+
+## Agent Coverage Summary
+${agentSummaries}
+
+## Attack Vectors to Check
+${vectors}
+
+Identify:
+1. Findings that are likely false positives (not exploitable in this context)
+2. Findings with insufficient evidence
+3. Findings with wrong severity (over or underrated)
+4. Missing checks - attack vectors that weren't tested
+5. Wrong assumptions made by agents
+
+Be specific and cite evidence for each challenge.`;
+}
+export function buildPrioritizationPrompt(narratives, findings) {
+    return `Given these attack narratives and findings, create an optimal remediation plan:
+
+## Attack Narratives
+${narratives}
+
+## All Findings
+${findings}
+
+Prioritize fixes to:
+1. Block the maximum number of attack paths
+2. Fix bottleneck findings that appear in multiple narratives first
+3. Balance effort vs. impact
+
+Output an ordered list of findings to fix, with justification for each.`;
+}
+//# sourceMappingURL=prompts.js.map

package/dist/agents/antagonist/prompts.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prompts.js","sourceRoot":"","sources":["../../../src/agents/antagonist/prompts.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,MAAM,CAAC,MAAM,uBAAuB,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA2CrC,CAAC;AAEH,MAAM,CAAC,MAAM,wBAAwB,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;EA2BtC,CAAC;AAEH,MAAM,CAAC,MAAM,4BAA4B,GAAG;;;;;;;;;;;;;;;;;;;EAmB1C,CAAC;AAEH,MAAM,UAAU,oBAAoB,CAAC,QAAgB,EAAE,MAAc,EAAE,KAAa;IAClF,OAAO;;;EAGP,QAAQ;;;EAGR,MAAM;;;EAGN,KAAK;;;;;;;;sEAQ+D,CAAC;AACvE,CAAC;AAED,MAAM,UAAU,qBAAqB,CACnC,QAAgB,EAChB,cAAsB,EACtB,OAAe;IAEf,OAAO;;;EAGP,QAAQ;;;EAGR,cAAc;;;EAGd,OAAO;;;;;;;;;kDASyC,CAAC;AACnD,CAAC;AAED,MAAM,UAAU,yBAAyB,CACvC,UAAkB,EAClB,QAAgB;IAEhB,OAAO;;;EAGP,UAAU;;;EAGV,QAAQ;;;;;;;wEAO8D,CAAC;AACzE,CAAC"}