PyPI - raxe - Versions diffs - 0.4.6__py3-none-any.whl - Mend

raxe 0.4.6__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (668) hide show

raxe/__init__.py +101 -0
raxe/application/__init__.py +48 -0
raxe/application/ab_testing.py +170 -0
raxe/application/analytics/__init__.py +30 -0
raxe/application/analytics/achievement_service.py +444 -0
raxe/application/analytics/repositories.py +172 -0
raxe/application/analytics/retention_service.py +267 -0
raxe/application/analytics/statistics_service.py +419 -0
raxe/application/analytics/streak_service.py +283 -0
raxe/application/apply_policy.py +291 -0
raxe/application/eager_l2.py +503 -0
raxe/application/preloader.py +353 -0
raxe/application/scan_merger.py +321 -0
raxe/application/scan_pipeline.py +1059 -0
raxe/application/scan_pipeline_async.py +403 -0
raxe/application/session_tracker.py +458 -0
raxe/application/telemetry_manager.py +357 -0
raxe/application/telemetry_orchestrator.py +1210 -0
raxe/async_sdk/__init__.py +34 -0
raxe/async_sdk/cache.py +286 -0
raxe/async_sdk/client.py +556 -0
raxe/async_sdk/wrappers/__init__.py +23 -0
raxe/async_sdk/wrappers/openai.py +238 -0
raxe/cli/__init__.py +21 -0
raxe/cli/auth.py +1047 -0
raxe/cli/branding.py +235 -0
raxe/cli/config.py +334 -0
raxe/cli/custom_rules.py +458 -0
raxe/cli/doctor.py +686 -0
raxe/cli/error_handler.py +665 -0
raxe/cli/event.py +648 -0
raxe/cli/exit_codes.py +57 -0
raxe/cli/expiry_warning.py +302 -0
raxe/cli/export.py +183 -0
raxe/cli/history.py +247 -0
raxe/cli/l2_formatter.py +872 -0
raxe/cli/main.py +1137 -0
raxe/cli/models.py +590 -0
raxe/cli/output.py +403 -0
raxe/cli/privacy.py +84 -0
raxe/cli/profiler.py +262 -0
raxe/cli/progress.py +379 -0
raxe/cli/progress_context.py +101 -0
raxe/cli/repl.py +394 -0
raxe/cli/rules.py +542 -0
raxe/cli/setup_wizard.py +721 -0
raxe/cli/stats.py +292 -0
raxe/cli/suppress.py +501 -0
raxe/cli/telemetry.py +1384 -0
raxe/cli/test.py +130 -0
raxe/cli/tune.py +315 -0
raxe/cli/validate.py +218 -0
raxe/domain/__init__.py +30 -0
raxe/domain/analytics/__init__.py +97 -0
raxe/domain/analytics/achievements.py +306 -0
raxe/domain/analytics/models.py +120 -0
raxe/domain/analytics/retention.py +168 -0
raxe/domain/analytics/statistics.py +207 -0
raxe/domain/analytics/streaks.py +173 -0
raxe/domain/engine/__init__.py +15 -0
raxe/domain/engine/executor.py +396 -0
raxe/domain/engine/matcher.py +212 -0
raxe/domain/inline_suppression.py +176 -0
raxe/domain/ml/__init__.py +133 -0
raxe/domain/ml/embedding_cache.py +309 -0
raxe/domain/ml/gemma_detector.py +921 -0
raxe/domain/ml/gemma_models.py +346 -0
raxe/domain/ml/l2_config.py +428 -0
raxe/domain/ml/l2_output_schema.py +443 -0
raxe/domain/ml/manifest_loader.py +309 -0
raxe/domain/ml/manifest_schema.py +345 -0
raxe/domain/ml/model_metadata.py +263 -0
raxe/domain/ml/model_registry.py +786 -0
raxe/domain/ml/protocol.py +282 -0
raxe/domain/ml/scoring_models.py +419 -0
raxe/domain/ml/stub_detector.py +397 -0
raxe/domain/ml/threat_scorer.py +757 -0
raxe/domain/ml/tokenizer_registry.py +372 -0
raxe/domain/ml/voting/__init__.py +89 -0
raxe/domain/ml/voting/config.py +595 -0
raxe/domain/ml/voting/engine.py +465 -0
raxe/domain/ml/voting/head_voters.py +378 -0
raxe/domain/ml/voting/models.py +222 -0
raxe/domain/models.py +82 -0
raxe/domain/packs/__init__.py +17 -0
raxe/domain/packs/models.py +304 -0
raxe/domain/policies/__init__.py +20 -0
raxe/domain/policies/evaluator.py +212 -0
raxe/domain/policies/models.py +223 -0
raxe/domain/rules/__init__.py +32 -0
raxe/domain/rules/custom.py +286 -0
raxe/domain/rules/models.py +273 -0
raxe/domain/rules/schema.py +166 -0
raxe/domain/rules/validator.py +556 -0
raxe/domain/suppression.py +801 -0
raxe/domain/suppression_factory.py +174 -0
raxe/domain/telemetry/__init__.py +116 -0
raxe/domain/telemetry/backpressure.py +424 -0
raxe/domain/telemetry/event_creator.py +362 -0
raxe/domain/telemetry/events.py +1282 -0
raxe/domain/telemetry/priority.py +263 -0
raxe/domain/telemetry/scan_telemetry_builder.py +670 -0
raxe/infrastructure/__init__.py +25 -0
raxe/infrastructure/analytics/__init__.py +18 -0
raxe/infrastructure/analytics/aggregator.py +484 -0
raxe/infrastructure/analytics/aggregator_optimized.py +184 -0
raxe/infrastructure/analytics/engine.py +748 -0
raxe/infrastructure/analytics/repository.py +409 -0
raxe/infrastructure/analytics/streaks.py +467 -0
raxe/infrastructure/analytics/views.py +178 -0
raxe/infrastructure/cloud/__init__.py +9 -0
raxe/infrastructure/config/__init__.py +56 -0
raxe/infrastructure/config/endpoints.py +641 -0
raxe/infrastructure/config/scan_config.py +352 -0
raxe/infrastructure/config/yaml_config.py +459 -0
raxe/infrastructure/database/__init__.py +10 -0
raxe/infrastructure/database/connection.py +200 -0
raxe/infrastructure/database/models.py +325 -0
raxe/infrastructure/database/scan_history.py +764 -0
raxe/infrastructure/ml/__init__.py +0 -0
raxe/infrastructure/ml/download_progress.py +438 -0
raxe/infrastructure/ml/model_downloader.py +457 -0
raxe/infrastructure/models/__init__.py +16 -0
raxe/infrastructure/models/discovery.py +461 -0
raxe/infrastructure/packs/__init__.py +13 -0
raxe/infrastructure/packs/loader.py +407 -0
raxe/infrastructure/packs/registry.py +381 -0
raxe/infrastructure/policies/__init__.py +16 -0
raxe/infrastructure/policies/api_client.py +256 -0
raxe/infrastructure/policies/validator.py +227 -0
raxe/infrastructure/policies/yaml_loader.py +250 -0
raxe/infrastructure/rules/__init__.py +18 -0
raxe/infrastructure/rules/custom_loader.py +224 -0
raxe/infrastructure/rules/versioning.py +222 -0
raxe/infrastructure/rules/yaml_loader.py +286 -0
raxe/infrastructure/security/__init__.py +31 -0
raxe/infrastructure/security/auth.py +145 -0
raxe/infrastructure/security/policy_validator.py +124 -0
raxe/infrastructure/security/signatures.py +171 -0
raxe/infrastructure/suppression/__init__.py +36 -0
raxe/infrastructure/suppression/composite_repository.py +154 -0
raxe/infrastructure/suppression/sqlite_repository.py +231 -0
raxe/infrastructure/suppression/yaml_composite_repository.py +156 -0
raxe/infrastructure/suppression/yaml_repository.py +510 -0
raxe/infrastructure/telemetry/__init__.py +79 -0
raxe/infrastructure/telemetry/acquisition.py +179 -0
raxe/infrastructure/telemetry/config.py +254 -0
raxe/infrastructure/telemetry/credential_store.py +947 -0
raxe/infrastructure/telemetry/dual_queue.py +1123 -0
raxe/infrastructure/telemetry/flush_helper.py +343 -0
raxe/infrastructure/telemetry/flush_scheduler.py +776 -0
raxe/infrastructure/telemetry/health_client.py +394 -0
raxe/infrastructure/telemetry/hook.py +347 -0
raxe/infrastructure/telemetry/queue.py +520 -0
raxe/infrastructure/telemetry/sender.py +476 -0
raxe/infrastructure/tracking/__init__.py +13 -0
raxe/infrastructure/tracking/usage.py +389 -0
raxe/integrations/__init__.py +55 -0
raxe/integrations/availability.py +143 -0
raxe/integrations/registry.py +122 -0
raxe/integrations/utils.py +135 -0
raxe/mcp/__init__.py +62 -0
raxe/mcp/cli.py +97 -0
raxe/mcp/server.py +409 -0
raxe/monitoring/__init__.py +51 -0
raxe/monitoring/metrics.py +372 -0
raxe/monitoring/profiler.py +388 -0
raxe/monitoring/server.py +136 -0
raxe/packs/core/v1.0.0/pack.yaml +1394 -0
raxe/packs/core/v1.0.0/rules/PI/pi-001@1.0.0.yaml +49 -0
raxe/packs/core/v1.0.0/rules/PI/pi-006@1.0.0.yaml +48 -0
raxe/packs/core/v1.0.0/rules/PI/pi-014@1.0.0.yaml +54 -0
raxe/packs/core/v1.0.0/rules/PI/pi-017@1.0.0.yaml +52 -0
raxe/packs/core/v1.0.0/rules/PI/pi-022@1.0.0.yaml +67 -0
raxe/packs/core/v1.0.0/rules/PI/pi-023@1.0.0.yaml +91 -0
raxe/packs/core/v1.0.0/rules/PI/pi-024@1.0.0.yaml +80 -0
raxe/packs/core/v1.0.0/rules/PI/pi-025@1.0.0.yaml +81 -0
raxe/packs/core/v1.0.0/rules/PI/pi-026@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-027@1.0.0.yaml +77 -0
raxe/packs/core/v1.0.0/rules/PI/pi-028@1.0.0.yaml +52 -0
raxe/packs/core/v1.0.0/rules/PI/pi-029@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/PI/pi-030@1.0.0.yaml +55 -0
raxe/packs/core/v1.0.0/rules/PI/pi-033@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-034@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-035@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-046@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-047@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-048@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-049@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-050@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-068@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-078@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-2001@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/PI/pi-2004@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/PI/pi-201@1.0.0.yaml +43 -0
raxe/packs/core/v1.0.0/rules/PI/pi-202@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/PI/pi-203@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/PI/pi-3007@1.0.0.yaml +44 -0
raxe/packs/core/v1.0.0/rules/PI/pi-3016@1.0.0.yaml +44 -0
raxe/packs/core/v1.0.0/rules/PI/pi-3026@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/PI/pi-3027@1.0.0.yaml +64 -0
raxe/packs/core/v1.0.0/rules/PI/pi-3028@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/PI/pi-3029@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/PI/pi-3030@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-3031@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-3032@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-3033@1.0.0.yaml +56 -0
raxe/packs/core/v1.0.0/rules/PI/pi-3034@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/PI/pi-79@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-80@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-81@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-82@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-83@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-84@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-85@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-86@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-87@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-88@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-89@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-90@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-91@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-92@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-93@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-94@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-95@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-96@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-97@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/PI/pi-98@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-001@1.0.0.yaml +48 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-007@1.0.0.yaml +48 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-015@1.0.0.yaml +56 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-016@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-017@1.0.0.yaml +57 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-021@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-022@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-023@1.0.0.yaml +78 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-024@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-025@1.0.0.yaml +93 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-026@1.0.0.yaml +81 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-027@1.0.0.yaml +82 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-028@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-033@1.0.0.yaml +48 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-036@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-037@1.0.0.yaml +44 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-052@1.0.0.yaml +43 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-054@1.0.0.yaml +44 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-056@1.0.0.yaml +43 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-065@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-075@1.0.0.yaml +45 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-079@1.0.0.yaml +44 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-1080@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-1090@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-1104@1.0.0.yaml +44 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-1105@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-1112@1.0.0.yaml +44 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-201@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-202@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-203@1.0.0.yaml +43 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-204@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-205@1.0.0.yaml +44 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-206@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-207@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-208@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-209@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-210@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-211@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-212@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-213@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-214@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-215@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-216@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-217@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-218@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-219@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-220@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-221@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-222@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-223@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-224@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-225@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-226@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-227@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-228@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-229@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-230@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-231@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-232@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-233@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-234@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-235@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-236@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-237@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/cmd/cmd-238@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-001@1.0.0.yaml +48 -0
raxe/packs/core/v1.0.0/rules/enc/enc-013@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/enc/enc-019@1.0.0.yaml +43 -0
raxe/packs/core/v1.0.0/rules/enc/enc-020@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/enc/enc-024@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/enc/enc-029@1.0.0.yaml +44 -0
raxe/packs/core/v1.0.0/rules/enc/enc-038@1.0.0.yaml +44 -0
raxe/packs/core/v1.0.0/rules/enc/enc-044@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/enc/enc-067@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/enc/enc-069@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/enc/enc-100@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-101@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-102@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-103@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-104@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-105@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-106@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-107@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-108@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-109@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-110@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-111@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-112@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-113@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-114@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-115@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-116@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-117@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-118@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-119@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-120@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-201@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/enc/enc-202@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/enc/enc-203@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/enc/enc-3004@1.0.0.yaml +40 -0
raxe/packs/core/v1.0.0/rules/enc/enc-3006@1.0.0.yaml +40 -0
raxe/packs/core/v1.0.0/rules/enc/enc-3011@1.0.0.yaml +40 -0
raxe/packs/core/v1.0.0/rules/enc/enc-5016@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/enc/enc-6001@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/enc/enc-6002@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/enc/enc-70@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-71@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-72@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-73@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-74@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-75@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-76@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-77@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-78@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-79@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-80@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-81@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-82@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-83@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-84@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-85@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-86@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-87@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-88@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-89@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-90@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-91@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-92@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-93@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-94@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-95@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-96@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-97@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-98@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/enc/enc-99@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/hc/hc-001@1.0.0.yaml +73 -0
raxe/packs/core/v1.0.0/rules/hc/hc-002@1.0.0.yaml +71 -0
raxe/packs/core/v1.0.0/rules/hc/hc-003@1.0.0.yaml +65 -0
raxe/packs/core/v1.0.0/rules/hc/hc-004@1.0.0.yaml +73 -0
raxe/packs/core/v1.0.0/rules/hc/hc-101@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/hc/hc-102@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/hc/hc-103@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/hc/hc-104@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/hc/hc-105@1.0.0.yaml +48 -0
raxe/packs/core/v1.0.0/rules/hc/hc-106@1.0.0.yaml +40 -0
raxe/packs/core/v1.0.0/rules/hc/hc-107@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/hc/hc-108@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/hc/hc-109@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/hc/hc-110@1.0.0.yaml +56 -0
raxe/packs/core/v1.0.0/rules/hc/hc-111@1.0.0.yaml +49 -0
raxe/packs/core/v1.0.0/rules/hc/hc-112@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/hc/hc-113@1.0.0.yaml +52 -0
raxe/packs/core/v1.0.0/rules/hc/hc-114@1.0.0.yaml +52 -0
raxe/packs/core/v1.0.0/rules/hc/hc-115@1.0.0.yaml +52 -0
raxe/packs/core/v1.0.0/rules/hc/hc-116@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/hc/hc-117@1.0.0.yaml +54 -0
raxe/packs/core/v1.0.0/rules/hc/hc-118@1.0.0.yaml +52 -0
raxe/packs/core/v1.0.0/rules/hc/hc-119@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-120@1.0.0.yaml +52 -0
raxe/packs/core/v1.0.0/rules/hc/hc-121@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-122@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-123@1.0.0.yaml +52 -0
raxe/packs/core/v1.0.0/rules/hc/hc-124@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/hc/hc-125@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/hc/hc-126@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/hc/hc-127@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/hc/hc-128@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/hc/hc-129@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-130@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-131@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-132@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-133@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/hc/hc-134@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-135@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-136@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-137@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-138@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-139@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-140@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/hc/hc-141@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/hc/hc-142@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-143@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-144@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-145@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-146@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-147@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-148@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-149@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-150@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-151@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-152@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-153@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-154@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-155@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-156@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-157@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-158@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-159@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-160@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/hc/hc-161@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/jb/jb-001@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/jb/jb-009@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/jb/jb-020@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/jb/jb-021@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/jb/jb-022@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/jb/jb-028@1.0.0.yaml +43 -0
raxe/packs/core/v1.0.0/rules/jb/jb-033@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/jb/jb-034@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/jb/jb-036@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/jb/jb-039@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/jb/jb-056@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-066@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/jb/jb-076@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/jb/jb-098@1.0.0.yaml +46 -0
raxe/packs/core/v1.0.0/rules/jb/jb-103@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/jb/jb-104@1.0.0.yaml +52 -0
raxe/packs/core/v1.0.0/rules/jb/jb-105@1.0.0.yaml +56 -0
raxe/packs/core/v1.0.0/rules/jb/jb-110@1.0.0.yaml +56 -0
raxe/packs/core/v1.0.0/rules/jb/jb-111@1.0.0.yaml +57 -0
raxe/packs/core/v1.0.0/rules/jb/jb-112@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-113@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-114@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-115@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-116@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-117@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-118@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-119@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-120@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-121@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-122@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-123@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-124@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-125@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-126@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-127@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-128@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-129@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-130@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-131@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-132@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-133@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-134@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-135@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-136@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-137@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-138@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-139@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-140@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-141@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-142@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-143@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-144@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-145@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-146@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-147@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-148@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-149@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-150@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-151@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-152@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-153@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-154@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-155@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-156@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-157@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-158@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-159@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-160@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-161@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-162@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/jb/jb-201@1.0.0.yaml +40 -0
raxe/packs/core/v1.0.0/rules/jb/jb-202@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/jb/jb-203@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/jb/jb-204@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/jb/jb-205@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/jb/jb-206@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/jb/jb-207@1.0.0.yaml +49 -0
raxe/packs/core/v1.0.0/rules/pii/pii-001@1.0.0.yaml +48 -0
raxe/packs/core/v1.0.0/rules/pii/pii-009@1.0.0.yaml +48 -0
raxe/packs/core/v1.0.0/rules/pii/pii-012@1.0.0.yaml +48 -0
raxe/packs/core/v1.0.0/rules/pii/pii-017@1.0.0.yaml +48 -0
raxe/packs/core/v1.0.0/rules/pii/pii-022@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/pii/pii-025@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/pii/pii-027@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/pii/pii-028@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/pii/pii-034@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/pii/pii-037@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/pii/pii-040@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/pii/pii-041@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/pii/pii-044@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/pii/pii-050@1.0.0.yaml +57 -0
raxe/packs/core/v1.0.0/rules/pii/pii-051@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/pii/pii-052@1.0.0.yaml +52 -0
raxe/packs/core/v1.0.0/rules/pii/pii-053@1.0.0.yaml +56 -0
raxe/packs/core/v1.0.0/rules/pii/pii-054@1.0.0.yaml +53 -0
raxe/packs/core/v1.0.0/rules/pii/pii-055@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/pii/pii-056@1.0.0.yaml +51 -0
raxe/packs/core/v1.0.0/rules/pii/pii-058@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/pii/pii-2015@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/pii/pii-2025@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-2026@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/pii/pii-2035@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/pii/pii-2037@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/pii/pii-2042@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3001@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3002@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3003@1.0.0.yaml +36 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3004@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3005@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3006@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3007@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3008@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3009@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3010@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3011@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3012@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3013@1.0.0.yaml +36 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3014@1.0.0.yaml +36 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3015@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3016@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3017@1.0.0.yaml +40 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3018@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3019@1.0.0.yaml +40 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3020@1.0.0.yaml +40 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3021@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3022@1.0.0.yaml +36 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3023@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3024@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3025@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3026@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3027@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3028@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3029@1.0.0.yaml +36 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3030@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3031@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3032@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3033@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3034@1.0.0.yaml +40 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3035@1.0.0.yaml +43 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3036@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3037@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3038@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3039@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3040@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3041@1.0.0.yaml +39 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3042@1.0.0.yaml +36 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3043@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3044@1.0.0.yaml +43 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3045@1.0.0.yaml +36 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3046@1.0.0.yaml +37 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3047@1.0.0.yaml +36 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3048@1.0.0.yaml +36 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3049@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3050@1.0.0.yaml +44 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3051@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3052@1.0.0.yaml +36 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3053@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3054@1.0.0.yaml +35 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3055@1.0.0.yaml +40 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3056@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3057@1.0.0.yaml +40 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3058@1.0.0.yaml +43 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3059@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3060@1.0.0.yaml +42 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3061@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3062@1.0.0.yaml +50 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3063@1.0.0.yaml +54 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3064@1.0.0.yaml +78 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3065@1.0.0.yaml +84 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3066@1.0.0.yaml +84 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3067@1.0.0.yaml +88 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3068@1.0.0.yaml +94 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3069@1.0.0.yaml +90 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3070@1.0.0.yaml +99 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3071@1.0.0.yaml +91 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3072@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3073@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3074@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3075@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3076@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3077@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3078@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3079@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3080@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3081@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3082@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3083@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3084@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/pii/pii-3085@1.0.0.yaml +38 -0
raxe/packs/core/v1.0.0/rules/rag/rag-016@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/rag/rag-028@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/rag/rag-042@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/rag/rag-044@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/rag/rag-045@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/rag/rag-050@1.0.0.yaml +47 -0
raxe/packs/core/v1.0.0/rules/rag/rag-201@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/rag/rag-202@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/rag/rag-3001@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/rag/rag-3006@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/rag/rag-3009@1.0.0.yaml +41 -0
raxe/packs/core/v1.0.0/rules/rag/rag-3012@1.0.0.yaml +41 -0
raxe/plugins/__init__.py +98 -0
raxe/plugins/custom_rules.py +380 -0
raxe/plugins/loader.py +389 -0
raxe/plugins/manager.py +538 -0
raxe/plugins/protocol.py +428 -0
raxe/py.typed +0 -0
raxe/sdk/__init__.py +77 -0
raxe/sdk/agent_scanner.py +1918 -0
raxe/sdk/client.py +1603 -0
raxe/sdk/decorator.py +175 -0
raxe/sdk/exceptions.py +859 -0
raxe/sdk/integrations/__init__.py +277 -0
raxe/sdk/integrations/agent_scanner.py +71 -0
raxe/sdk/integrations/autogen.py +872 -0
raxe/sdk/integrations/crewai.py +1368 -0
raxe/sdk/integrations/dspy.py +845 -0
raxe/sdk/integrations/extractors.py +363 -0
raxe/sdk/integrations/huggingface.py +395 -0
raxe/sdk/integrations/langchain.py +948 -0
raxe/sdk/integrations/litellm.py +484 -0
raxe/sdk/integrations/llamaindex.py +1049 -0
raxe/sdk/integrations/portkey.py +831 -0
raxe/sdk/suppression_context.py +215 -0
raxe/sdk/wrappers/__init__.py +163 -0
raxe/sdk/wrappers/anthropic.py +310 -0
raxe/sdk/wrappers/openai.py +221 -0
raxe/sdk/wrappers/vertexai.py +484 -0
raxe/utils/__init__.py +12 -0
raxe/utils/error_sanitizer.py +135 -0
raxe/utils/logging.py +241 -0
raxe/utils/performance.py +414 -0
raxe/utils/profiler.py +339 -0
raxe/utils/validators.py +170 -0
raxe-0.4.6.dist-info/METADATA +471 -0
raxe-0.4.6.dist-info/RECORD +668 -0
raxe-0.4.6.dist-info/WHEEL +5 -0
raxe-0.4.6.dist-info/entry_points.txt +2 -0
raxe-0.4.6.dist-info/licenses/LICENSE +56 -0
raxe-0.4.6.dist-info/top_level.txt +1 -0

raxe/domain/ml/gemma_detector.py ADDED Viewed

@@ -0,0 +1,921 @@
+"""Gemma-based 5-head multilabel L2 detector.
+This detector uses the EmbeddingGemma-300M model with 5 classifier heads:
+1. is_threat (binary): benign vs threat
+2. threat_family (multiclass, 9): Attack category
+3. severity (multiclass, 5): Threat severity level
+4. primary_technique (multiclass, 22): Specific attack technique
+5. harm_types (multilabel, 10): Types of potential harm
+Model files expected in model directory:
+- model_int8.onnx: EmbeddingGemma-300M (INT8 quantized)
+- classifier_is_threat_int8.onnx
+- classifier_threat_family_int8.onnx
+- classifier_severity_int8.onnx
+- classifier_primary_technique_int8.onnx
+- classifier_harm_types_int8.onnx
+- tokenizer.json, config.json, label_config.json, model_metadata.json
+NEW: Voting Engine Integration
+The ensemble decision logic now uses VotingEngine for transparent weighted voting
+instead of boost-based heuristics. Set L2Config.voting.enabled=False to use legacy logic.
+"""
+from __future__ import annotations
+import json
+import time
+from pathlib import Path
+from typing import Any
+import numpy as np
+from raxe.domain.engine.executor import ScanResult as L1ScanResult
+from raxe.domain.ml.gemma_models import (
+    DEFAULT_HARM_THRESHOLDS,
+    GemmaClassificationResult,
+    HarmType,
+    MultilabelResult,
+    PrimaryTechnique,
+    Severity,
+    ThreatFamily,
+)
+from raxe.domain.ml.l2_config import L2Config, get_l2_config
+from raxe.domain.ml.protocol import L2Prediction, L2Result, L2ThreatType
+from raxe.domain.ml.voting import (
+    Decision,
+    HeadOutputs,
+    VotingEngine,
+    VotingResult,
+)
+from raxe.utils.logging import get_logger
+logger = get_logger(__name__)
+class GemmaL2Detector:
+    """Gemma-based 5-head L2 detector.
+    Implements L2Detector protocol with the new Gemma multilabel architecture.
+    Performance targets:
+    - P95 latency: <50ms (with cache miss)
+    - P50 latency: <10ms (with cache hit)
+    - Memory: <400MB
+    Example:
+        detector = GemmaL2Detector(model_dir="/path/to/models")
+        result = detector.analyze(text, l1_results)
+    """
+    VERSION = "gemma-compact-v1"
+    EMBEDDING_DIM = 256  # Matryoshka truncation from 768
+    def __init__(
+        self,
+        model_dir: str | Path,
+        *,
+        confidence_threshold: float | None = None,
+        harm_thresholds: dict[str, float] | None = None,
+        cache_size: int = 1000,
+        scorer: Any | None = None,
+        l2_config: L2Config | None = None,
+        voting_preset: str | None = None,
+    ):
+        """Initialize Gemma L2 detector.
+        Args:
+            model_dir: Path to directory containing ONNX models
+            confidence_threshold: Override threshold for binary threat classification
+                                  (uses L2Config if not provided)
+            harm_thresholds: Per-class thresholds for harm_types multilabel
+            cache_size: Size of embedding cache (0 to disable)
+            scorer: Optional HierarchicalThreatScorer instance
+            l2_config: L2 configuration (uses global config if not provided)
+            voting_preset: Voting preset override (balanced, high_security, low_fp)
+        """
+        self.model_dir = Path(model_dir)
+        self._l2_config = l2_config or get_l2_config()
+        # Use provided threshold, or config threshold
+        self.confidence_threshold = (
+            confidence_threshold
+            if confidence_threshold is not None
+            else self._l2_config.thresholds.threat_threshold
+        )
+        # Use provided harm thresholds, or config thresholds
+        self.harm_thresholds = (
+            harm_thresholds
+            if harm_thresholds is not None
+            else self._l2_config.thresholds.harm_type_thresholds.copy()
+        )
+        self.scorer = scorer
+        # Initialize voting engine if enabled
+        self._voting_enabled = self._l2_config.voting.enabled
+        if self._voting_enabled:
+            # Use override preset if provided, otherwise use config preset
+            preset = voting_preset or self._l2_config.voting.preset
+            self._voting_engine = VotingEngine(preset=preset)
+            logger.info(
+                "VotingEngine initialized",
+                preset=preset,
+                enabled=True,
+            )
+        else:
+            self._voting_engine = None
+            logger.info("VotingEngine disabled, using legacy ensemble logic")
+        # Lazy imports for ONNX runtime
+        import onnxruntime as ort
+        from transformers import PreTrainedTokenizerFast
+        self._ort = ort
+        # Load tokenizer from tokenizer.json (portable format)
+        logger.info("Loading Gemma tokenizer", model_dir=str(self.model_dir))
+        tokenizer_path = self.model_dir / "tokenizer.json"
+        if not tokenizer_path.exists():
+            raise FileNotFoundError(f"tokenizer.json not found in {self.model_dir}")
+        self._tokenizer = PreTrainedTokenizerFast(tokenizer_file=str(tokenizer_path))
+        # Configure special tokens from config.json
+        config_path = self.model_dir / "config.json"
+        if config_path.exists():
+            import json
+            with open(config_path) as f:
+                config = json.load(f)
+            # Set pad_token_id (Gemma uses id 0 for padding)
+            if "pad_token_id" in config:
+                self._tokenizer.pad_token_id = config["pad_token_id"]
+                # Set pad_token if not already set
+                if self._tokenizer.pad_token is None:
+                    self._tokenizer.pad_token = self._tokenizer.decode([config["pad_token_id"]])
+            if "eos_token_id" in config:
+                self._tokenizer.eos_token_id = config["eos_token_id"]
+            if "bos_token_id" in config:
+                self._tokenizer.bos_token_id = config["bos_token_id"]
+        # Create session options
+        sess_options = ort.SessionOptions()
+        sess_options.graph_optimization_level = ort.GraphOptimizationLevel.ORT_ENABLE_ALL
+        sess_options.log_severity_level = 3  # ERROR only
+        sess_options.intra_op_num_threads = 4
+        sess_options.inter_op_num_threads = 1
+        sess_options.enable_mem_pattern = True
+        sess_options.enable_cpu_mem_arena = True
+        providers = ["CPUExecutionProvider"]
+        # Load embedding model
+        embedding_path = self._find_model_file("model", ".onnx")
+        logger.info("Loading embedding model", path=str(embedding_path))
+        self._embedding_session = ort.InferenceSession(
+            str(embedding_path), sess_options, providers=providers
+        )
+        # Load classifier heads
+        self._classifiers: dict[str, ort.InferenceSession] = {}
+        for head in ["is_threat", "threat_family", "severity", "primary_technique", "harm_types"]:
+            classifier_path = self._find_model_file(f"classifier_{head}", ".onnx")
+            logger.info(f"Loading classifier: {head}", path=str(classifier_path))
+            self._classifiers[head] = ort.InferenceSession(
+                str(classifier_path), sess_options, providers=providers
+            )
+        # Load label config
+        label_config_path = self.model_dir / "label_config.json"
+        if label_config_path.exists():
+            with open(label_config_path) as f:
+                self._label_config = json.load(f)
+        else:
+            self._label_config = {}
+        # Load model metadata
+        metadata_path = self.model_dir / "model_metadata.json"
+        if metadata_path.exists():
+            with open(metadata_path) as f:
+                self._model_metadata = json.load(f)
+        else:
+            self._model_metadata = {}
+        # Setup embedding cache
+        self._cache_enabled = cache_size > 0
+        if self._cache_enabled:
+            from raxe.domain.ml.embedding_cache import EmbeddingCache
+            self._embedding_cache = EmbeddingCache(max_size=cache_size)
+        else:
+            self._embedding_cache = None
+        logger.info(
+            "GemmaL2Detector initialized",
+            model_dir=str(self.model_dir),
+            embedding_dim=self.EMBEDDING_DIM,
+            cache_size=cache_size,
+            confidence_threshold=confidence_threshold,
+        )
+    def _find_model_file(self, prefix: str, suffix: str) -> Path:
+        """Find model file with INT8 preference."""
+        # Prefer INT8 quantized version
+        int8_path = self.model_dir / f"{prefix}_int8{suffix}"
+        if int8_path.exists():
+            return int8_path
+        # Fall back to non-quantized
+        regular_path = self.model_dir / f"{prefix}{suffix}"
+        if regular_path.exists():
+            return regular_path
+        # Try glob pattern
+        matches = list(self.model_dir.glob(f"{prefix}*{suffix}"))
+        if matches:
+            # Prefer INT8 if available
+            for match in matches:
+                if "int8" in match.name:
+                    return match
+            return matches[0]
+        raise FileNotFoundError(
+            f"No model file found for {prefix}*{suffix} in {self.model_dir}"
+        )
+    def analyze(
+        self,
+        text: str,
+        l1_results: L1ScanResult,
+        context: dict[str, Any] | None = None,
+    ) -> L2Result:
+        """Analyze text for threats using Gemma 5-head classifier.
+        Args:
+            text: Text to analyze
+            l1_results: Results from L1 rule-based detection
+            context: Optional context metadata
+        Returns:
+            L2Result with predictions from all 5 heads and voting metadata
+        """
+        start_time = time.perf_counter()
+        try:
+            # Generate embeddings (with caching)
+            embeddings = self._generate_embeddings(text)
+            # Run classification (returns both classification and voting result)
+            classification, voting_result = self._classify(embeddings)
+            # Build predictions
+            predictions = self._build_predictions(classification, text, voting_result)
+            # Apply scorer if available
+            hierarchical_score = None
+            classification_label = None
+            recommended_action = None
+            decision_rationale = None
+            signal_quality = None
+            if self.scorer and classification.is_threat:
+                scoring_result = self._apply_scorer(classification, text)
+                if scoring_result:
+                    hierarchical_score = scoring_result.hierarchical_score
+                    classification_label = scoring_result.classification.value
+                    recommended_action = scoring_result.action.value
+                    decision_rationale = scoring_result.reason
+                    signal_quality = {
+                        "is_consistent": scoring_result.is_consistent,
+                        "variance": scoring_result.variance,
+                        "weak_margins_count": scoring_result.weak_margins_count,
+                    }
+            # Build classification and action from voting result if available
+            if voting_result:
+                classification_label = self._voting_decision_to_classification(
+                    voting_result.decision, voting_result.confidence
+                )
+                recommended_action = self._voting_decision_to_action(voting_result.decision)
+                decision_rationale = f"Voting rule: {voting_result.decision_rule_triggered}"
+            duration_ms = (time.perf_counter() - start_time) * 1000
+            # Build voting metadata for telemetry
+            voting_metadata = voting_result.to_dict() if voting_result else None
+            return L2Result(
+                predictions=predictions,
+                confidence=classification.threat_probability,
+                processing_time_ms=duration_ms,
+                model_version=self.VERSION,
+                features_extracted={
+                    "text_length": len(text),
+                    "l1_detection_count": l1_results.detection_count,
+                    "embedding_dim": self.EMBEDDING_DIM,
+                },
+                metadata={
+                    "detector_type": "gemma",
+                    "classification_result": classification.to_dict(),
+                    "voting_enabled": self._voting_enabled,
+                },
+                hierarchical_score=hierarchical_score,
+                classification=classification_label,
+                recommended_action=recommended_action,
+                decision_rationale=decision_rationale,
+                signal_quality=signal_quality,
+                voting=voting_metadata,
+            )
+        except Exception as e:
+            logger.error("Gemma detection failed", error=str(e), exc_info=True)
+            duration_ms = (time.perf_counter() - start_time) * 1000
+            return L2Result(
+                predictions=[],
+                confidence=0.0,
+                processing_time_ms=duration_ms,
+                model_version=self.VERSION,
+                metadata={"error": str(e), "detector_type": "gemma"},
+            )
+    def _voting_decision_to_classification(
+        self, decision: Decision, confidence: float
+    ) -> str:
+        """Map voting decision to classification label."""
+        if decision == Decision.THREAT:
+            if confidence >= 0.9:
+                return "HIGH_THREAT"
+            elif confidence >= 0.75:
+                return "THREAT"
+            else:
+                return "LIKELY_THREAT"
+        elif decision == Decision.REVIEW:
+            return "REVIEW"
+        else:
+            return "SAFE"
+    def _voting_decision_to_action(self, decision: Decision) -> str:
+        """Map voting decision to recommended action."""
+        if decision == Decision.THREAT:
+            return "BLOCK"
+        elif decision == Decision.REVIEW:
+            return "MANUAL_REVIEW"
+        else:
+            return "ALLOW"
+    def _generate_embeddings(self, text: str) -> np.ndarray:
+        """Generate embeddings with optional caching.
+        The EmbeddingGemma model outputs two tensors:
+        - outputs[0]: token embeddings (batch, seq_len, hidden_dim)
+        - outputs[1]: pooled embedding (batch, hidden_dim) - used directly
+        """
+        # Check cache
+        if self._cache_enabled and self._embedding_cache:
+            cached = self._embedding_cache.get(text)
+            if cached is not None:
+                return cached
+        # Tokenize
+        inputs = self._tokenizer(
+            text,
+            padding=True,
+            truncation=True,
+            max_length=512,
+            return_tensors="np",
+        )
+        # Get embeddings from model
+        outputs = self._embedding_session.run(
+            None,
+            {
+                "input_ids": inputs["input_ids"].astype(np.int64),
+                "attention_mask": inputs["attention_mask"].astype(np.int64),
+            },
+        )
+        # outputs[1] is the model's pooled embedding (batch_size, hidden_dim)
+        # The model already does internal pooling, so use it directly
+        embeddings = outputs[1]
+        # Truncate to 256 dims (Matryoshka)
+        embeddings = embeddings[:, :self.EMBEDDING_DIM]
+        # L2 normalize
+        norms = np.linalg.norm(embeddings, axis=1, keepdims=True)
+        embeddings = embeddings / (norms + 1e-9)
+        # Cache result
+        if self._cache_enabled and self._embedding_cache:
+            self._embedding_cache.put(text, embeddings)
+        return embeddings
+    def _classify(
+        self, embeddings: np.ndarray
+    ) -> tuple[GemmaClassificationResult, VotingResult | None]:
+        """Run all 5 classifier heads with ensemble logic.
+        Each classifier returns 2 outputs:
+        - [0]: predicted class (int64)
+        - [1]: probabilities (float32)
+        Returns:
+            Tuple of (GemmaClassificationResult, VotingResult or None)
+            VotingResult is None if voting engine is disabled.
+        """
+        embeddings_f32 = embeddings.astype(np.float32)
+        # ════════════════════════════════════════════════════════════════════
+        # Run all 5 classifier heads (always run all for voting engine)
+        # ════════════════════════════════════════════════════════════════════
+        # 1. Binary threat classification
+        is_threat_outputs = self._classifiers["is_threat"].run(
+            None, {"embeddings": embeddings_f32}
+        )
+        is_threat_proba = is_threat_outputs[1][0]  # [benign_prob, threat_prob]
+        safe_prob = float(is_threat_proba[0])
+        threat_prob = float(is_threat_proba[1])
+        # 2. Threat family
+        family_outputs = self._classifiers["threat_family"].run(
+            None, {"embeddings": embeddings_f32}
+        )
+        family_proba = family_outputs[1][0]
+        family_idx = int(np.argmax(family_proba))
+        family_confidence = float(family_proba[family_idx])
+        threat_family = ThreatFamily.from_index(family_idx)
+        # 3. Severity
+        severity_outputs = self._classifiers["severity"].run(
+            None, {"embeddings": embeddings_f32}
+        )
+        severity_proba = severity_outputs[1][0]
+        severity_idx = int(np.argmax(severity_proba))
+        severity_confidence = float(severity_proba[severity_idx])
+        severity = Severity.from_index(severity_idx)
+        # 4. Primary technique (always run for voting engine)
+        technique_outputs = self._classifiers["primary_technique"].run(
+            None, {"embeddings": embeddings_f32}
+        )
+        technique_proba_arr = technique_outputs[1][0]
+        technique_idx = int(np.argmax(technique_proba_arr))
+        technique_confidence = float(technique_proba_arr[technique_idx])
+        primary_technique = PrimaryTechnique.from_index(technique_idx)
+        technique_proba = tuple(float(p) for p in technique_proba_arr)
+        # 5. Harm types (always run for voting engine)
+        harm_outputs = self._classifiers["harm_types"].run(
+            None, {"embeddings": embeddings_f32}
+        )
+        harm_proba = harm_outputs[1][0]
+        harm_types_result = self._process_multilabel_harm_types(harm_proba)
+        harm_max_prob = max(float(p) for p in harm_proba)
+        harm_active_labels = [h.value for h in harm_types_result.active_labels]
+        # ════════════════════════════════════════════════════════════════════
+        # DECISION LOGIC: Voting Engine or Legacy Ensemble
+        # ════════════════════════════════════════════════════════════════════
+        voting_result: VotingResult | None = None
+        if self._voting_enabled and self._voting_engine:
+            # Use new VotingEngine for transparent weighted voting
+            head_outputs = HeadOutputs(
+                binary_threat_prob=threat_prob,
+                binary_safe_prob=safe_prob,
+                family_prediction=threat_family.value,
+                family_confidence=family_confidence,
+                severity_prediction=severity.value,
+                severity_confidence=severity_confidence,
+                technique_prediction=primary_technique.value if primary_technique else None,
+                technique_confidence=technique_confidence,
+                harm_max_probability=harm_max_prob,
+                harm_active_labels=harm_active_labels,
+            )
+            voting_result = self._voting_engine.vote(head_outputs)
+            # Map voting decision to is_threat and effective probability
+            is_threat = voting_result.decision in (Decision.THREAT, Decision.REVIEW)
+            final_threat_prob = voting_result.confidence
+            family_override_triggered = False  # Not used with voting engine
+        else:
+            # Legacy boost-based ensemble logic
+            is_threat, final_threat_prob, family_override_triggered = (
+                self._legacy_ensemble_logic(
+                    threat_prob=threat_prob,
+                    threat_family=threat_family,
+                    family_confidence=family_confidence,
+                    severity=severity,
+                    primary_technique=primary_technique,
+                    technique_confidence=technique_confidence,
+                )
+            )
+        # Determine harm_types for result (only include if threat)
+        harm_types = harm_types_result if is_threat else None
+        result = GemmaClassificationResult(
+            is_threat=is_threat,
+            threat_probability=final_threat_prob,
+            safe_probability=1.0 - final_threat_prob,
+            threat_family=threat_family,
+            family_confidence=family_confidence,
+            family_probabilities=tuple(float(p) for p in family_proba),
+            severity=severity,
+            severity_confidence=severity_confidence,
+            severity_probabilities=tuple(float(p) for p in severity_proba),
+            primary_technique=primary_technique,
+            technique_confidence=technique_confidence,
+            technique_probabilities=technique_proba,
+            harm_types=harm_types,
+            raw_threat_probability=threat_prob,
+            family_override_triggered=family_override_triggered,
+        )
+        return result, voting_result
+    def _legacy_ensemble_logic(
+        self,
+        threat_prob: float,
+        threat_family: ThreatFamily,
+        family_confidence: float,
+        severity: Severity,
+        primary_technique: PrimaryTechnique | None,
+        technique_confidence: float,
+    ) -> tuple[bool, float, bool]:
+        """Legacy boost-based ensemble logic (used when voting is disabled).
+        Returns:
+            Tuple of (is_threat, effective_threat_prob, family_override_triggered)
+        """
+        cfg = self._l2_config
+        ensemble = cfg.ensemble
+        # Start with binary head decision
+        effective_threat_prob = threat_prob
+        is_threat = threat_prob >= self.confidence_threshold
+        # Check for family override
+        family_override_triggered = False
+        if ensemble.use_family_override:
+            family_is_benign = threat_family == ThreatFamily.BENIGN
+            family_override_threshold = cfg.thresholds.family_override_threshold
+            if not family_is_benign and family_confidence >= family_override_threshold:
+                family_override_triggered = True
+                is_threat = True
+                if effective_threat_prob < self.confidence_threshold:
+                    effective_threat_prob = max(
+                        effective_threat_prob,
+                        self.confidence_threshold + 0.05
+                    )
+        # Check for always-threat families
+        if threat_family.value in ensemble.always_threat_families:
+            is_threat = True
+            effective_threat_prob = max(effective_threat_prob, 0.75)
+        # Apply severity boost
+        if ensemble.use_severity_boost:
+            if severity in (Severity.HIGH, Severity.CRITICAL):
+                effective_threat_prob = min(
+                    1.0, effective_threat_prob + ensemble.severity_boost_amount
+                )
+                if severity == Severity.CRITICAL and not is_threat:
+                    is_threat = True
+        # Apply technique boost
+        if ensemble.use_technique_boost and primary_technique:
+            if (
+                technique_confidence >= ensemble.technique_boost_threshold
+                and primary_technique.value in ensemble.high_confidence_techniques
+            ):
+                effective_threat_prob = min(
+                    1.0, effective_threat_prob + ensemble.technique_boost_amount
+                )
+                if not is_threat:
+                    is_threat = True
+        return is_threat, effective_threat_prob, family_override_triggered
+    def _process_multilabel_harm_types(
+        self, probabilities: np.ndarray
+    ) -> MultilabelResult:
+        """Process multilabel harm types with per-class thresholds."""
+        harm_classes = HarmType.all_classes()
+        active_labels = []
+        proba_dict: dict[str, float] = {}
+        thresholds_dict: dict[str, float] = {}
+        for i, harm_type in enumerate(harm_classes):
+            prob = float(probabilities[i])
+            threshold = self.harm_thresholds.get(harm_type.value, 0.5)
+            proba_dict[harm_type.value] = prob
+            thresholds_dict[harm_type.value] = threshold
+            if prob >= threshold:
+                active_labels.append(harm_type)
+        return MultilabelResult(
+            active_labels=tuple(active_labels),
+            probabilities=proba_dict,
+            thresholds_used=thresholds_dict,
+        )
+    def _build_predictions(
+        self,
+        classification: GemmaClassificationResult,
+        text: str,
+        voting_result: VotingResult | None = None,
+    ) -> list[L2Prediction]:
+        """Build L2Predictions from classification result."""
+        if not classification.is_threat:
+            return []
+        # Map family to L2ThreatType
+        threat_type = L2ThreatType.from_family(classification.threat_family.value)
+        # Build explanation
+        explanation_parts = [
+            f"Detected {classification.threat_family.value} threat",
+            f"with {classification.severity.value} severity",
+        ]
+        if classification.primary_technique:
+            explanation_parts.append(
+                f"using {classification.primary_technique.value} technique"
+            )
+        if classification.harm_types and classification.harm_types.has_active_labels:
+            harm_labels = [h.value for h in classification.harm_types.active_labels]
+            explanation_parts.append(f"causing potential harm: {', '.join(harm_labels)}")
+        explanation = " ".join(explanation_parts)
+        # Build metadata
+        # Calculate classification label based on confidence
+        if classification.threat_probability >= 0.9:
+            classification_label = "HIGH_THREAT"
+            action = "BLOCK_ALERT"
+        elif classification.threat_probability >= 0.75:
+            classification_label = "THREAT"
+            action = "BLOCK"
+        elif classification.threat_probability >= 0.6:
+            classification_label = "LIKELY_THREAT"
+            action = "BLOCK_WITH_REVIEW"
+        elif classification.threat_probability >= 0.4:
+            classification_label = "REVIEW"
+            action = "MANUAL_REVIEW"
+        else:
+            classification_label = "FP_LIKELY"
+            action = "ALLOW_WITH_LOG"
+        metadata: dict[str, Any] = {
+            "is_attack": True,
+            "family": classification.threat_family.value,
+            "severity": classification.severity.value,
+            "classification": classification_label,
+            "action": action,
+            "risk_score": classification.threat_probability * 100,
+            "hierarchical_score": classification.threat_probability,
+            "scores": {
+                "attack_probability": classification.threat_probability,
+                "family_confidence": classification.family_confidence,
+                "severity_confidence": classification.severity_confidence,
+                "subfamily_confidence": classification.technique_confidence,
+            },
+        }
+        if classification.primary_technique:
+            metadata["primary_technique"] = classification.primary_technique.value
+            metadata["technique_confidence"] = classification.technique_confidence
+            # Alias for CLI formatter compatibility
+            metadata["sub_family"] = classification.primary_technique.value
+        if classification.harm_types:
+            metadata["harm_types"] = classification.harm_types.to_dict()
+        # Generate "why_it_hit" explanations
+        why_it_hit = self._generate_why_it_hit(classification)
+        metadata["why_it_hit"] = why_it_hit
+        # Generate recommended actions
+        recommended_actions = self._generate_recommended_actions(classification)
+        metadata["recommended_action"] = recommended_actions
+        # Uncertainty flag
+        metadata["uncertain"] = (
+            classification.family_confidence < 0.5 or
+            classification.threat_probability < 0.6
+        )
+        # Add voting information if available
+        if voting_result:
+            metadata["voting"] = {
+                "decision": voting_result.decision.value,
+                "confidence": voting_result.confidence,
+                "preset_used": voting_result.preset_used,
+                "decision_rule_triggered": voting_result.decision_rule_triggered,
+                "threat_vote_count": voting_result.threat_vote_count,
+                "safe_vote_count": voting_result.safe_vote_count,
+                "abstain_vote_count": voting_result.abstain_vote_count,
+                "weighted_ratio": voting_result.weighted_ratio,
+            }
+            # Update classification and action from voting
+            metadata["classification"] = self._voting_decision_to_classification(
+                voting_result.decision, voting_result.confidence
+            )
+            metadata["action"] = self._voting_decision_to_action(voting_result.decision)
+        return [
+            L2Prediction(
+                threat_type=threat_type,
+                confidence=classification.threat_probability,
+                explanation=explanation,
+                features_used=[
+                    f"family={classification.threat_family.value}",
+                    f"severity={classification.severity.value}",
+                    f"technique={classification.primary_technique.value if classification.primary_technique else 'none'}",  # noqa: E501
+                    "model=gemma-compact",
+                ],
+                metadata=metadata,
+            )
+        ]
+    def _generate_why_it_hit(
+        self, classification: GemmaClassificationResult
+    ) -> list[str]:
+        """Generate human-readable explanations for detection."""
+        reasons = []
+        # Threat family reason
+        family_descriptions = {
+            "prompt_injection": "Prompt injection attempting to override instructions",
+            "jailbreak": "Jailbreak attempt to bypass safety guidelines",
+            "data_exfiltration": "Data exfiltration pattern detected",
+            "encoding_or_obfuscation_attack": "Encoded or obfuscated malicious content",
+            "rag_or_context_attack": "RAG or context manipulation attack",
+            "tool_or_command_abuse": "Tool or command abuse attempt",
+            "toxic_or_policy_violating_content": "Toxic or policy-violating content",
+            "other_security": "Security-related threat pattern detected",
+        }
+        family_desc = family_descriptions.get(
+            classification.threat_family.value,
+            f"{classification.threat_family.value} threat detected"
+        )
+        reasons.append(family_desc)
+        # Severity reason
+        if classification.severity in (Severity.HIGH, Severity.CRITICAL):
+            reasons.append(
+                f"{classification.severity.value.upper()} severity - immediate action recommended"
+            )
+        # Technique reason
+        has_technique = (
+            classification.primary_technique
+            and classification.primary_technique != PrimaryTechnique.NONE
+        )
+        if has_technique:
+            technique_desc = classification.primary_technique.value.replace("_", " ")
+            reasons.append(f"Specific attack technique: {technique_desc}")
+        # Harm types reason
+        if classification.harm_types and classification.harm_types.has_active_labels:
+            harm_count = classification.harm_types.active_count
+            if harm_count == 1:
+                harm_label = classification.harm_types.active_labels[0].value.replace("_", " ")
+                reasons.append(f"Potential harm type: {harm_label}")
+            else:
+                reasons.append(f"Multiple harm types detected ({harm_count} categories)")
+        return reasons
+    def _generate_recommended_actions(
+        self, classification: GemmaClassificationResult
+    ) -> list[str]:
+        """Generate recommended actions based on classification."""
+        actions = []
+        if classification.severity == Severity.CRITICAL:
+            actions.append("CRITICAL threat - BLOCK immediately and alert security team")
+        elif classification.severity == Severity.HIGH:
+            actions.append("HIGH severity - BLOCK and log for review")
+        elif classification.severity == Severity.MEDIUM:
+            actions.append("MEDIUM severity - Consider blocking or require additional validation")
+        elif classification.severity == Severity.LOW:
+            actions.append("LOW severity - Log and monitor, allow with caution")
+        else:
+            actions.append("Minimal severity - Allow with logging")
+        # Family-specific recommendations
+        if classification.threat_family == ThreatFamily.DATA_EXFILTRATION:
+            actions.append("Review data access controls and implement DLP policies")
+        elif classification.threat_family == ThreatFamily.JAILBREAK:
+            actions.append("Block and update guardrails to prevent similar attempts")
+        elif classification.threat_family == ThreatFamily.PROMPT_INJECTION:
+            actions.append("Sanitize input and validate instruction boundaries")
+        return actions
+    def _apply_scorer(
+        self, classification: GemmaClassificationResult, text: str
+    ) -> Any:
+        """Apply hierarchical threat scorer if available."""
+        if not self.scorer:
+            return None
+        try:
+            from raxe.domain.ml.scoring_models import ThreatScore
+            # Map to ThreatScore format
+            threat_score = ThreatScore(
+                binary_threat_score=classification.threat_probability,
+                binary_safe_score=classification.safe_probability,
+                family_confidence=classification.family_confidence,
+                subfamily_confidence=classification.technique_confidence,
+                binary_proba=[
+                    classification.safe_probability,
+                    classification.threat_probability,
+                ],
+                family_proba=list(classification.family_probabilities),
+                subfamily_proba=list(classification.technique_probabilities or [0.0]),
+                family_name=classification.threat_family.value,
+                subfamily_name=(
+                    classification.primary_technique.value
+                    if classification.primary_technique
+                    else None
+                ),
+            )
+            return self.scorer.score(threat_score, prompt=text)
+        except Exception as e:
+            logger.warning("Scorer failed", error=str(e))
+            return None
+    @staticmethod
+    def _softmax(x: np.ndarray) -> np.ndarray:
+        """Apply softmax to logits."""
+        exp_x = np.exp(x - np.max(x))
+        return exp_x / exp_x.sum()
+    @staticmethod
+    def _sigmoid(x: np.ndarray) -> np.ndarray:
+        """Apply sigmoid to logits."""
+        return 1 / (1 + np.exp(-x))
+    @property
+    def model_info(self) -> dict[str, Any]:
+        """Return model information."""
+        return {
+            "name": "Gemma 5-Head Multilabel Classifier",
+            "version": self.VERSION,
+            "type": "onnx",
+            "is_stub": False,
+            "size_mb": 300,  # Approximate
+            "latency_p95_ms": 50,
+            "embedding_model": "google/embeddinggemma-300m",
+            "embedding_dim": self.EMBEDDING_DIM,
+            "heads": [
+                "is_threat",
+                "threat_family",
+                "severity",
+                "primary_technique",
+                "harm_types",
+            ],
+            "families": [f.value for f in ThreatFamily],
+            "description": (
+                "Gemma-based 5-head multilabel classifier with EmbeddingGemma-300M "
+                "for threat detection, family classification, severity assessment, "
+                "technique identification, and harm type prediction."
+            ),
+        }
+def create_gemma_detector(
+    model_dir: str | Path,
+    *,
+    confidence_threshold: float = 0.5,
+    harm_thresholds: dict[str, float] | None = None,
+    cache_size: int = 1000,
+    scorer: Any | None = None,
+    voting_preset: str | None = None,
+) -> GemmaL2Detector:
+    """Factory function to create Gemma L2 detector.
+    Args:
+        model_dir: Path to directory containing ONNX models
+        confidence_threshold: Threshold for binary threat classification
+        harm_thresholds: Per-class thresholds for harm_types multilabel
+        cache_size: Size of embedding cache (0 to disable)
+        scorer: Optional HierarchicalThreatScorer instance
+        voting_preset: Voting preset override (balanced, high_security, low_fp)
+    Returns:
+        GemmaL2Detector instance
+    """
+    return GemmaL2Detector(
+        model_dir=model_dir,
+        confidence_threshold=confidence_threshold,
+        harm_thresholds=harm_thresholds,
+        cache_size=cache_size,
+        scorer=scorer,
+        voting_preset=voting_preset,
+    )