txt2detection 1.0.7__py3-none-any.whl → 1.0.9__py3-none-any.whl

txt2detection/models.py

@@ -8,6 +8,7 @@ from slugify import slugify
 from datetime import date as dt_date
 from typing import Any, ClassVar, List, Literal, Optional, Union
 from uuid import UUID
+from stix2extensions.data_source import DataSource
 
 import jsonschema
 from pydantic import BaseModel, Field, computed_field, field_validator
@@ -18,6 +19,8 @@ from stix2 import (
     MarkingDefinition,
 )
 
+from txt2detection.ai_extractor.models import AttackFlowList
+
 if typing.TYPE_CHECKING:
     from txt2detection.bundler import Bundler
 
@@ -124,11 +127,11 @@ class TLP_LEVEL(enum.Enum):
         ]
 
     @classmethod
-    def get(cls, level: 'str|TLP_LEVEL'):
+    def get(cls, level: "str|TLP_LEVEL"):
         if isinstance(level, cls):
             return level
         level = level.lower()
-        level = level.replace('+', '_').replace('-', '_')
+        level = level.replace("+", "_").replace("-", "_")
         if level not in cls.levels():
             raise Exception(f"unsupported tlp level: `{level}`")
         return cls.levels()[level]
@@ -137,6 +140,7 @@ class TLP_LEVEL(enum.Enum):
     def name(self):
         return super().name.lower()
 
+
 class Statuses(enum.StrEnum):
     stable = enum.auto()
     test = enum.auto()
@@ -144,6 +148,7 @@ class Statuses(enum.StrEnum):
     deprecated = enum.auto()
     unsupported = enum.auto()
 
+
 class Level(enum.StrEnum):
     informational = enum.auto()
     low = enum.auto()
@@ -151,6 +156,7 @@ class Level(enum.StrEnum):
     high = enum.auto()
     critical = enum.auto()
 
+
 class SigmaTag(str):
     @classmethod
     def __get_pydantic_core_schema__(
@@ -158,31 +164,35 @@ class SigmaTag(str):
         _source: type[Any],
         _handler,
     ) -> core_schema.CoreSchema:
-        return core_schema.no_info_after_validator_function(cls._validate, core_schema.str_schema())
+        return core_schema.no_info_after_validator_function(
+            cls._validate, core_schema.str_schema()
+        )
 
     @classmethod
-    def __get_pydantic_json_schema__(
-        cls, core_schema: core_schema.CoreSchema, handler
-    ):
+    def __get_pydantic_json_schema__(cls, core_schema: core_schema.CoreSchema, handler):
         field_schema = handler(core_schema)
-        field_schema.update(type='string', pattern=TAG_PATTERN.pattern, format='sigma-tag')
+        field_schema.update(
+            type="string", pattern=TAG_PATTERN.pattern, format="sigma-tag"
+        )
         return field_schema
 
     @classmethod
     def _validate(cls, input_value: str, /) -> str:
         if not TAG_PATTERN.match(input_value):
             raise PydanticCustomError(
-            'value_error',
-            'value is not a valid SIGMA tag: {reason}',
-            {'reason': f'Must be in format namespace.value and match pattern {TAG_PATTERN.pattern}'},
-        )
+                "value_error",
+                "value is not a valid SIGMA tag: {reason}",
+                {
+                    "reason": f"Must be in format namespace.value and match pattern {TAG_PATTERN.pattern}"
+                },
+            )
         return input_value
-    
+
+
 class RelatedRule(BaseModel):
     id: UUID
-    type: Literal[
-        "derived", "obsolete", "merged", "renamed", "similar"
-    ]
+    type: Literal["derived", "obsolete", "merged", "renamed", "similar"]
+
 
 class BaseDetection(BaseModel):
     title: str
@@ -195,7 +205,9 @@ class BaseDetection(BaseModel):
     level: Level
     _custom_id = None
     _extra_data: dict
-    sigma_json_schema: ClassVar = requests.get("https://github.com/SigmaHQ/sigma-specification/raw/refs/heads/main/json-schema/sigma-detection-rule-schema.json").json()
+    sigma_json_schema: ClassVar = requests.get(
+        "https://github.com/SigmaHQ/sigma-specification/raw/refs/heads/main/json-schema/sigma-detection-rule-schema.json"
+    ).json()
 
     def model_post_init(self, __context):
         self.tags = self.tags or []
@@ -213,17 +225,16 @@ class BaseDetection(BaseModel):
     @property
     def tlp_level(self):
         return tlp_from_tags(self.tags)
-    
+
     @tlp_level.setter
     def tlp_level(self, level):
         set_tlp_level_in_tags(self.tags, level)
-    
+
     def set_labels(self, labels):
         self.tags.extend(labels)
 
     def set_extra_data_from_bundler(self, bundler: "Bundler"):
-        raise NotImplementedError('this class should no longer be in use')
-
+        raise NotImplementedError("this class should no longer be in use")
 
     def make_rule(self, bundler: "Bundler"):
         self.set_extra_data_from_bundler(bundler)
@@ -232,19 +243,17 @@ class BaseDetection(BaseModel):
         rule = dict(
             id=self.detection_id,
             **self.model_dump(
-                exclude=["indicator_types", "id"], 
-                mode="json",
-                by_alias=True
+                exclude=["indicator_types", "id"], mode="json", by_alias=True
             ),
         )
         for k, v in list(rule.items()):
             if not v:
                 rule.pop(k, None)
-                
+
         self.validate_rule_with_json_schema(rule)
-        if getattr(self, 'date', 0):
+        if getattr(self, "date", 0):
             rule.update(date=self.date)
-        if getattr(self, 'modified', 0):
+        if getattr(self, "modified", 0):
             rule.update(modified=self.modified)
         return yaml.dump(rule, sort_keys=False, indent=4)
 
@@ -253,13 +262,13 @@ class BaseDetection(BaseModel):
             rule,
             self.sigma_json_schema,
         )
-    
+
     @property
     def external_references(self):
         refs = []
-        for attr in ['level', 'status', 'license']:
+        for attr in ["level", "status", "license"]:
             if attr_val := getattr(self, attr, None):
-                refs.append(dict(source_name=f'sigma-{attr}', description=attr_val))
+                refs.append(dict(source_name=f"sigma-{attr}", description=attr_val))
         return refs
 
     @property
@@ -280,19 +289,34 @@ class BaseDetection(BaseModel):
                 retval.append(namespace.upper() + "-" + label_id)
         return retval
 
+    def make_data_source(self):
+        return DataSource(
+            category=self.logsource.get("category"),
+            product=self.logsource.get("product"),
+            service=self.logsource.get("service"),
+            definition=self.logsource.get("definition"),
+        )
+
 
 class AIDetection(BaseDetection):
     indicator_types: list[str] = Field(default_factory=list)
-    
+
     def to_sigma_rule_detection(self, bundler):
         rule_dict = {
-            **self.model_dump(exclude=['indicator_types']),
-            **dict(date=bundler.report.created.date(), modified=bundler.report.modified.date(), id=uuid.uuid4())
+            **self.model_dump(exclude=["indicator_types"]),
+            **dict(
+                date=bundler.report.created.date(),
+                modified=bundler.report.modified.date(),
+                id=uuid.uuid4(),
+            ),
         }
         try:
             return SigmaRuleDetection.model_validate(rule_dict)
         except Exception as e:
-            raise ValueError(dict(message='validate ai output failed', error=e, content=rule_dict))
+            raise ValueError(
+                dict(message="validate ai output failed", error=e, content=rule_dict)
+            )
+
 
 class SigmaRuleDetection(BaseDetection):
     title: str
@@ -319,59 +343,71 @@ class SigmaRuleDetection(BaseDetection):
     @property
     def detection_id(self):
         return str(self.id)
-    
+
     @property
     def indicator_types(self):
         return self._indicator_types
-    
+
     @indicator_types.setter
     def indicator_types(self, types):
         self._indicator_types = types
-    
+
     @detection_id.setter
     def detection_id(self, new_id):
         if self.id and str(self.id) != str(new_id):
             self.related = self.related or []
             self.related.append(RelatedRule(id=self.id, type="renamed"))
         self.id = new_id
-    
-    @field_validator('tags', mode='after')
+
+    @field_validator("tags", mode="after")
     @classmethod
     def validate_tlp(cls, tags: list[str]):
         tlps = []
         for tag in tags:
-            if tag.startswith('tlp.'):
+            if tag.startswith("tlp."):
                 tlps.append(tag)
         if len(tlps) > 1:
-            raise ValueError(f'tag must not contain more than one tag in tlp namespace. Got {tlps}')
+            raise ValueError(
+                f"tag must not contain more than one tag in tlp namespace. Got {tlps}"
+            )
         return tags
-    
-    @field_validator('modified', mode='after')
+
+    @field_validator("modified", mode="after")
     @classmethod
     def validate_modified(cls, modified, info):
-        if info.data.get('date') == modified:
+        if info.data.get("date") == modified:
             return None
         return modified
-    
+
     def set_extra_data_from_bundler(self, bundler: "Bundler"):
         if not bundler:
             return
-        
+
         if not self.date:
             from .utils import as_date
+
             self.date = as_date(bundler.created)
-    
+
         self.set_labels(bundler.labels)
         self.tlp_level = bundler.tlp_level.name
         self.author = bundler.report.created_by_ref
         self.license = bundler.license
         self.references = bundler.reference_urls
 
+
 class DetectionContainer(BaseModel):
     success: bool
-    detections: list[Union[BaseDetection , AIDetection, SigmaRuleDetection]]
+    detections: list[Union[BaseDetection, AIDetection, SigmaRuleDetection]]
 
 
+class DataContainer(BaseModel):
+    detections: DetectionContainer
+    attack_flow: AttackFlowList = Field(default=None)
+    navigator_layer: list = Field(default=None)
+    observables: list[dict] = Field(default=None)
+    cves: dict[str, str] = Field(default=None)
+    attacks: dict[str, str] = Field(default=None)
+
 
 def tlp_from_tags(tags: list[SigmaTag]):
     for tag in tags:
@@ -382,10 +418,11 @@ def tlp_from_tags(tags: list[SigmaTag]):
             return tlp_level
     return None
 
+
 def set_tlp_level_in_tags(tags: list[SigmaTag], level):
     level = str(level)
     for i, tag in enumerate(tags):
-        if tag.startswith('tlp.'):
+        if tag.startswith("tlp."):
             tags.remove(tag)
-    tags.append('tlp.'+level.replace("_", "-"))
+    tags.append("tlp." + level.replace("_", "-"))
     return tags

txt2detection/observables.py

@@ -183,4 +183,3 @@ def to_stix_object(observable_type: str, value):
 
 # for a, b in observables:
 #     print(to_stix_object(a, b))
-

txt2detection/utils.py

@@ -17,11 +17,14 @@ from .models import UUID_NAMESPACE
 class DetectionLanguage(SimpleNamespace):
     pass
 
+
 def parse_model(value: str):
-    splits = value.split(':', 1)
+    splits = value.split(":", 1)
     provider = splits[0]
     if provider not in ALL_AI_EXTRACTORS:
-        raise NotImplementedError(f"invalid AI provider in `{value}`, must be one of {list(ALL_AI_EXTRACTORS)}")
+        raise NotImplementedError(
+            f"invalid AI provider in `{value}`, must be one of {list(ALL_AI_EXTRACTORS)}"
+        )
     provider = ALL_AI_EXTRACTORS[provider]
     try:
         if len(splits) == 2:
@@ -30,8 +33,10 @@ def parse_model(value: str):
     except Exception as e:
         raise ModelError(f"Unable to initialize model `{value}`") from e
 
+
 def make_identity(name, namespace=None, created_by_ref=None, object_marking_refs=None):
     from .bundler import Bundler
+
     if isinstance(namespace, str):
         namespace = uuid.UUID(namespace)
     namespace = namespace or UUID_NAMESPACE
@@ -41,25 +46,31 @@ def make_identity(name, namespace=None, created_by_ref=None, object_marking_refs
         created_by_ref=created_by_ref or Bundler.default_identity.id,
         created=datetime(2020, 1, 1),
         modified=datetime(2020, 1, 1),
-        object_marking_refs=object_marking_refs or [
+        object_marking_refs=object_marking_refs
+        or [
             "marking-definition--94868c89-83c2-464b-929b-a1a8aa3c8487",
-            "marking-definition--a4d70b75-6f4a-5d19-9137-da863edd33d7"
+            "marking-definition--a4d70b75-6f4a-5d19-9137-da863edd33d7",
         ],
     )
 
 
 def validate_token_count(max_tokens, input, extractor: BaseAIExtractor):
-    logging.info('INPUT_TOKEN_LIMIT = %d', max_tokens)
+    logging.info("INPUT_TOKEN_LIMIT = %d", max_tokens)
     token_count = extractor.count_tokens(input)
-    logging.info('TOKEN COUNT FOR %s: %d', extractor.extractor_name, token_count)
-    if  token_count > max_tokens:
-        raise Exception(f"{extractor.extractor_name}: input_file token count ({token_count}) exceeds INPUT_TOKEN_LIMIT ({max_tokens})")
+    logging.info("TOKEN COUNT FOR %s: %d", extractor.extractor_name, token_count)
+    if token_count > max_tokens:
+        raise Exception(
+            f"{extractor.extractor_name}: input_file token count ({token_count}) exceeds INPUT_TOKEN_LIMIT ({max_tokens})"
+        )
 
 
 @lru_cache(maxsize=5)
 def get_licenses(date):
-    resp = requests.get("https://github.com/spdx/license-list-data/raw/refs/heads/main/json/licenses.json")
-    return {l['licenseId']: l['name'] for l in resp.json()['licenses']}
+    resp = requests.get(
+        "https://github.com/spdx/license-list-data/raw/refs/heads/main/json/licenses.json"
+    )
+    return {l["licenseId"]: l["name"] for l in resp.json()["licenses"]}
+
 
 def valid_licenses():
     return get_licenses(datetime.now().date().isoformat())
@@ -75,9 +86,10 @@ def remove_rule_specific_tags(tags):
     return labels
 
 
-def as_date(d: 'date|datetime'):
+def as_date(d: "date|datetime"):
     if isinstance(d, datetime):
         return d.date()
     return d
 
-STATUSES = ['stable', 'test', 'experimental', 'deprecated', 'unsupported']
+
+STATUSES = ["stable", "test", "experimental", "deprecated", "unsupported"]

{txt2detection-1.0.7.dist-info → txt2detection-1.0.9.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: txt2detection
-Version: 1.0.7
+Version: 1.0.9
 Summary: A command line tool that takes a txt file containing threat intelligence and turns it into a detection rule.
 Project-URL: Homepage, https://github.com/muchdogesec/txt2detection
 Project-URL: Issues, https://github.com/muchdogesec/txt2detection/issues
@@ -21,6 +21,7 @@ Requires-Dist: python-slugify
 Requires-Dist: pyyaml
 Requires-Dist: requests>=2.31.0; python_version >= '3.7'
 Requires-Dist: stix2
+Requires-Dist: stix2extensions
 Requires-Dist: tqdm>=4.66.4; python_version >= '3.7'
 Requires-Dist: validators>=0.34.0
 Provides-Extra: anthropic
@@ -71,12 +72,6 @@ txt2detection allows a user to enter some threat intelligence as a file to consi
 2. Based on the user input, AI prompts structured and sent to produce an intelligence rule
 3. Rules converted into STIX objects
 
-## tl;dr
-
-[![txt2detection](https://img.youtube.com/vi/uJWXYKyu3Xg/0.jpg)](https://www.youtube.com/watch?v=uJWXYKyu3Xg)
-
-[Watch the demo](https://www.youtube.com/watch?v=uJWXYKyu3Xg).
-
 ## Usage
 
 ### Setup
@@ -161,12 +156,14 @@ Use this mode to generate a set of rules from an input text file;
 * `--license` (optional): [License of the rule according the SPDX ID specification](https://spdx.org/licenses/). Will be added to the rule.
 * `--reference_urls` (optional): A list of URLs to be added as `references` in the Sigma Rule property and in the `external_references` property of the Indicator and Report STIX object created. e.g `"https://www.google.com/" "https://www.facebook.com/"`
 * `--external_refs` (optional): txt2detection will automatically populate the `external_references` of the report object it creates for the input. You can use this value to add additional objects to `external_references`. Note, you can only add `source_name` and `external_id` values currently. Pass as `source_name=external_id`. e.g. `--external_refs txt2stix=demo1 source=id` would create the following objects under the `external_references` property: `{"source_name":"txt2stix","external_id":"demo1"},{"source_name":"source","external_id":"id"}`
-* `ai_provider` (required): defines the `provider:model` to be used to generate the rule. Select one option. Currently supports:
+* `--ai_provider` (required): defines the `provider:model` to be used to generate the rule. Select one option. Currently supports:
     * Provider (env var required `OPENROUTER_API_KEY`): `openrouter:`, providers/models `openai/gpt-4o`, `deepseek/deepseek-chat` ([More here](https://openrouter.ai/models))
     * Provider (env var required `OPENAI_API_KEY`): `openai:`, models e.g.: `gpt-4o`, `gpt-4o-mini`, `gpt-4-turbo`, `gpt-4` ([More here](https://platform.openai.com/docs/models))
     * Provider (env var required `ANTHROPIC_API_KEY`): `anthropic:`, models e.g.: `claude-3-5-sonnet-latest`, `claude-3-5-haiku-latest`, `claude-3-opus-latest` ([More here](https://docs.anthropic.com/en/docs/about-claude/models))
     * Provider (env var required `GOOGLE_API_KEY`): `gemini:models/`, models: `gemini-1.5-pro-latest`, `gemini-1.5-flash-latest` ([More here](https://ai.google.dev/gemini-api/docs/models/gemini))
     * Provider (env var required `DEEPSEEK_API_KEY`): `deepseek:`, models `deepseek-chat` ([More here](https://api-docs.deepseek.com/quick_start/pricing))
+* `--ai_create_attack_flow` (boolean): passing this flag will also prompt the AI model (the same entered for `--ai_provider`, default `false`) to generate an [Attack Flow](https://center-for-threat-informed-defense.github.io/attack-flow/) for the MITRE ATT&CK tags to define the logical order in which they are being described. Note, Sigma currently supports ATT&CK Enterprise only.
+* `--ai_create_attack_navigator_layer` (boolean, default `false`): passing this flag will generate a [MITRE ATT&CK Navigator layer](https://mitre-attack.github.io/attack-navigator/) for MITRE ATT&CK tags. Note, Sigma currently supports ATT&CK Enterprise only. You don't need to pass this if `--ai_create_attack_flow` is set to `true` (as this mode relies on this setting being true)
 
 Note, in this mode, the following values will be automatically assigned to the rule
 
@@ -193,6 +190,8 @@ Note, in this mode you should be aware of a few things;
 * `--external_refs` (optional): txt2detection will automatically populate the `external_references` of the report object it creates for the input. You can use this value to add additional objects to `external_references`. Note, you can only add `source_name` and `external_id` values currently. Pass as `source_name=external_id`. e.g. `--external_refs txt2stix=demo1 source=id` would create the following objects under the `external_references` property: `{"source_name":"txt2stix","external_id":"demo1"},{"source_name":"source","external_id":"id"}`
 * `status` (optional): either `stable`, `test`, `experimental`, `deprecated`, `unsupported`. If passed, will overwrite any existing `status` recorded in the rule
 * `level` (optional): either `informational`, `low`, `medium`, `high`, `critical`. If passed, will overwrite any existing `level` recorded in the rule
+* `--ai_create_attack_flow` (boolean): passing this flag will also prompt the AI model (the same entered for `--ai_provider`, default `false`) to generate an [Attack Flow](https://center-for-threat-informed-defense.github.io/attack-flow/) for the MITRE ATT&CK tags to define the logical order in which they are being described. Note, Sigma currently supports ATT&CK Enterprise only.
+* `--ai_create_attack_navigator_layer` (boolean, default `false`): passing this flag will generate a [MITRE ATT&CK Navigator layer](https://mitre-attack.github.io/attack-navigator/) for MITRE ATT&CK tags. Note, Sigma currently supports ATT&CK Enterprise only. You don't need to pass this if `--ai_create_attack_flow` is set to `true` (as this mode relies on this setting being true)
 
 ### A note on observable extraction
 

txt2detection-1.0.9.dist-info/RECORD

@@ -0,0 +1,24 @@
+txt2detection/__init__.py,sha256=Fc460P0q_eb2u3Xc89z-fwl-4ai3jrPqPNVwJQYNkNQ,89
+txt2detection/__main__.py,sha256=s5XcIctE59ALjys6Y8lRIqS_pQWi1mlNo2gyG8_XS5s,11622
+txt2detection/attack_flow.py,sha256=1Ns98ZEoiN8kH-iSo7d6zYtplm11QkhPQAvSZsW4WXQ,8853
+txt2detection/bundler.py,sha256=eHyr6jlnd4ZvynHkyy5Hposkp_XqEAxEwGzlViSq1xU,13319
+txt2detection/credential_checker.py,sha256=NuKk7WlDshtdpGecxY1exoi4fUHCygunPH2lZ20oEA8,2598
+txt2detection/models.py,sha256=_-sR03FEWI46OUZdL7U0tibNn909B0NU9LWNzopBtiY,12888
+txt2detection/observables.py,sha256=RxgJchvk6_Z2pBxJ6MAGsx00gj8TyRt9W2BTQTb1F9o,6762
+txt2detection/utils.py,sha256=EJ5lMhnghUgW0JbcRmeiDXYwm5GaB6XrG4cUjru-52g,2812
+txt2detection/ai_extractor/__init__.py,sha256=itcwTF0-S80mx-SuSvfrKazvcwsojR-QsBN-UvnSDwE,418
+txt2detection/ai_extractor/anthropic.py,sha256=YOi2rHUeeoRMS4CFG6mX7xUU4q4rw9qNl72R74UN6ZM,420
+txt2detection/ai_extractor/base.py,sha256=2C3d4BoH7I4fnvp6cLxbtjiFVPm4WJLFwnS_lAppHr8,3210
+txt2detection/ai_extractor/deepseek.py,sha256=2XehIYbWXG6Odq68nQX4CNtl5GdmBlAmjLP_lG2eEFo,660
+txt2detection/ai_extractor/gemini.py,sha256=hlcKkiHGzQJ0dQECfIhjx2LfdhZoquAF9POwz61RAhw,557
+txt2detection/ai_extractor/models.py,sha256=xMTvUHoxIflbBA4mkGLTjwf657DVEOxd6gqLpEUciQ4,963
+txt2detection/ai_extractor/openai.py,sha256=ggonpHtckNz9GEJIR0ADMzZWDKi6EWuicP0fsxvkP3A,616
+txt2detection/ai_extractor/openrouter.py,sha256=rL-SnzRhzrCnPJGLxbTlRyxU0NAw42RmSq3ouuo3Iag,658
+txt2detection/ai_extractor/prompts.py,sha256=xI82PelsTidnRzi5wnNbEC4lmkio92YUDd8SZu4CQiE,10961
+txt2detection/ai_extractor/utils.py,sha256=SUxyPhkGp5yDbX_H_E018i93R8IbyLsQ00PIBDecfuc,540
+txt2detection/config/detection_languages.yaml,sha256=dgQUJPxhDRJ_IiFEFOiH0yhEer3SkFSIhY4pS3BsX2c,287
+txt2detection-1.0.9.dist-info/METADATA,sha256=UHkUnaL9wEt78RNw0EmQenodg2qxZ3gsTDkmVC2W7IE,15869
+txt2detection-1.0.9.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
+txt2detection-1.0.9.dist-info/entry_points.txt,sha256=ep_rLlS2r1-kKE7S3iKf3SVwbCU9-FZhU9zUebitw7A,62
+txt2detection-1.0.9.dist-info/licenses/LICENSE,sha256=BK8Ppqlc4pdgnNzIxnxde0taoQ1BgicdyqmBvMiNYgY,11364
+txt2detection-1.0.9.dist-info/RECORD,,

txt2detection-1.0.7.dist-info/RECORD

@@ -1,22 +0,0 @@
-txt2detection/__init__.py,sha256=Fc460P0q_eb2u3Xc89z-fwl-4ai3jrPqPNVwJQYNkNQ,89
-txt2detection/__main__.py,sha256=R9TgWWGzA8rxF39rZr2MNOrQubhItdRAgP2nd8Tfb78,9337
-txt2detection/bundler.py,sha256=rIvVTlLEHu9SMPqy8AyLbiJ3Cg0WNq7uWvGIXGoaPsg,10822
-txt2detection/credential_checker.py,sha256=YoOe1ABjNfAJIcNE6PRAZtvznTybUKHNBB57DPQhZsU,2564
-txt2detection/models.py,sha256=AKxqHsjnMQZFX5tWPCsXE6-OQLMbDhQbdu97zWJdNb0,12064
-txt2detection/observables.py,sha256=NNnwF_gOsPmAbfgk5fj1rcluMsShZOHssAGy2VJgvmo,6763
-txt2detection/utils.py,sha256=rLBFzpSepksXkONnqWkRqiMr8R4LTp4j8OrashFVUPc,2741
-txt2detection/ai_extractor/__init__.py,sha256=itcwTF0-S80mx-SuSvfrKazvcwsojR-QsBN-UvnSDwE,418
-txt2detection/ai_extractor/anthropic.py,sha256=YOi2rHUeeoRMS4CFG6mX7xUU4q4rw9qNl72R74UN6ZM,420
-txt2detection/ai_extractor/base.py,sha256=urZe_kpYu3BwXyKJsQ0GQIEtTasUQYp4dFzuz34Hai8,2336
-txt2detection/ai_extractor/deepseek.py,sha256=2XehIYbWXG6Odq68nQX4CNtl5GdmBlAmjLP_lG2eEFo,660
-txt2detection/ai_extractor/gemini.py,sha256=hlcKkiHGzQJ0dQECfIhjx2LfdhZoquAF9POwz61RAhw,557
-txt2detection/ai_extractor/openai.py,sha256=e5Of3i-T2CvUSx1T_v7wHOuewHK2IoImxZXfXeZc3Ds,625
-txt2detection/ai_extractor/openrouter.py,sha256=-KcdcyKPpaeiGfvqJB4L7vMmcXTDhml3Mr0T6kwANZA,645
-txt2detection/ai_extractor/prompts.py,sha256=ACYFWUafdHXHBXz7fq_RSooA4PJ-mBdaBzqsOOSFpVg,5918
-txt2detection/ai_extractor/utils.py,sha256=SUxyPhkGp5yDbX_H_E018i93R8IbyLsQ00PIBDecfuc,540
-txt2detection/config/detection_languages.yaml,sha256=dgQUJPxhDRJ_IiFEFOiH0yhEer3SkFSIhY4pS3BsX2c,287
-txt2detection-1.0.7.dist-info/METADATA,sha256=q3LsITk_4Ix6C8z2OAWIDlzz0qy8l3O1NeLBWVNJzL0,14489
-txt2detection-1.0.7.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
-txt2detection-1.0.7.dist-info/entry_points.txt,sha256=ep_rLlS2r1-kKE7S3iKf3SVwbCU9-FZhU9zUebitw7A,62
-txt2detection-1.0.7.dist-info/licenses/LICENSE,sha256=BK8Ppqlc4pdgnNzIxnxde0taoQ1BgicdyqmBvMiNYgY,11364
-txt2detection-1.0.7.dist-info/RECORD,,