feat: platform expansion — Vaccine loop, Skillogy v0.2, dashboard, infra#738
Open
NetVar1337 wants to merge 1 commit into
Open
feat: platform expansion — Vaccine loop, Skillogy v0.2, dashboard, infra#738NetVar1337 wants to merge 1 commit into
NetVar1337 wants to merge 1 commit into
Conversation
…d, infra Offensive Vaccine (attack→defend→verify closed loop): - Vaccine agent factory, tools (generate_remediation_brief, apply_defense, verify_defense, record_vaccine_result), middleware, 3 skills, KG defense schema (Mitigation/DefenseAction/VerificationResult nodes), design doc Skillogy v0.2 capability plane: - 20 Capability nodes, 72 PRODUCES + 47 CONSUMES + 40 COMPOSES_WITH + 20 SUBSTITUTES + 28 FORBIDDEN_BY edges - suggest_next() and get_skill_chain() tool implementations - 30 MITRE ATLAS technique nodes + 45 IMPLEMENTS_ATLAS edges CVE bench + KG schema: - 6 CVE bench fixtures (CVE-2023-20198, CVE-2023-23397, CVE-2024-3400, CVE-2024-47575, CVE-2022-38028, CVE-2024-21887) - KG schema extensions (Domain, CloudResource, NetworkSegment, Session, Finding, Campaign nodes) - Updated knowledge-graph-v2.md documentation Agent capabilities: - C2 Havoc Dockerfile + entrypoint + skill - Blue Cell skills: sigma-rule-generation, response-playbook, siem-query-templates, ioc-operationalization - Executive report template, compliance mapping (NIST/ISO/PCI/SOC2/HIPAA/CIS) - Continuous engagement mode skill Web dashboard (Next.js/TypeScript/Tailwind): - Attack graph force-directed visualization + Neo4j API route - Finding triage workflow with status management + CRUD API - MITRE ATT&CK Navigator heatmap + aggregation API - Engagement comparison diff component + diff API Infrastructure: - Helm chart (11 templates) for Kubernetes deployment - Terraform modules for AWS (EKS/RDS/ECR), GCP (GKE/Cloud SQL), Azure (AKS/PostgreSQL Flex) - OpenTelemetry Collector config + observability compose (Prometheus/ Grafana/Tempo) + engagement dashboard - Plugin marketplace with discovery, install, registry (7 seed plugins)
|
You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard. |
Contributor
There was a problem hiding this comment.
Trivy found more than 20 potential problems in the proposed changes. Check the Files changed tab for more details.
| } | ||
|
|
||
| const state = await loadTriageState(engDir); | ||
| state[findingId] = { |
| import { Button } from "@/components/ui/button"; | ||
| import { Input } from "@/components/ui/input"; | ||
| import { Skeleton } from "@/components/ui/skeleton"; | ||
| import { Card, CardContent, CardHeader, CardTitle } from "@/components/ui/card"; |
|
|
||
| # Module-level graph for LangGraph Platform (langgraph serve) | ||
| if is_bundle_enabled("standard"): | ||
| graph = create_vaccine_agent() |
|
|
||
| from __future__ import annotations | ||
|
|
||
| from dataclasses import dataclass, field |
| mod = spec.rsplit(":", 1)[0].rsplit(".", 1)[-1] | ||
| if mod in module_path: | ||
| return PluginStatus.ACTIVE | ||
| except ImportError: |
| from dataclasses import dataclass, field | ||
| from importlib.resources import as_file, files | ||
| from pathlib import Path | ||
| from typing import Iterable, Sequence |
|
|
||
| from __future__ import annotations | ||
|
|
||
| import json |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Changes
65 files, +12,541 lines across 6 areas.
Offensive Vaccine
Closed-loop defense verification: Vaccine agent factory, 4 tools (
generate_remediation_brief,apply_defense,verify_defense,record_vaccine_result), state middleware, 3 skills, KG defense schema (Mitigation/DefenseAction/VerificationResultnodes), design doc.Skillogy v0.2
Capability plane: 20 Capability nodes, 72 PRODUCES + 47 CONSUMES + 40 COMPOSES_WITH + 20 SUBSTITUTES + 28 FORBIDDEN_BY edges.
suggest_next()andget_skill_chain()implementations. 30 MITRE ATLAS technique nodes + 45 IMPLEMENTS_ATLAS edges.CVE Bench + KG Schema
6 fixtures (CVE-2023-20198, CVE-2023-23397, CVE-2024-3400, CVE-2024-47575, CVE-2022-38028, CVE-2024-21887). KG extensions: Domain, CloudResource, NetworkSegment, Session, Finding, Campaign nodes. Updated docs.
Agent Capabilities
C2 Havoc Dockerfile + entrypoint + skill. Blue Cell: sigma-rule-generation, response-playbook, siem-query-templates, ioc-operationalization. Executive report template, compliance mapping (NIST/ISO/PCI/SOC2/HIPAA/CIS). Continuous engagement mode.
Web Dashboard
4 components + 4 API routes: AttackGraph (force-directed KG viz), FindingTriage (status workflow), MitreHeatmap (ATT&CK matrix), EngagementDiff (side-by-side comparison).
Infrastructure
Helm chart (11 templates, sandbox NetworkPolicy). Terraform: AWS (EKS/RDS), GCP (GKE/Cloud SQL), Azure (AKS/PostgreSQL Flex). OTel Collector + observability compose (Prometheus/Grafana/Tempo) + dashboard. Plugin marketplace.