UNPKG

@governed/frameworks

Version:

OWASP, NIST, ISO, MITRE AI threat coverage scores with evaluation methodology

github.com/governed/living-governance

governed/living-governance

87 lines (86 loc) 2.49 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
export interface Framework { id: string; name: string; organization: string; url: string; dataSource?: string; aiCoverageScore: number; status: 'active' | 'applicable' | 'no-guidance'; gaps: string[]; lastFrameworkUpdate: string; } export type DetailedEvaluationKey = 'owasp-agentic-threats-v1' | 'nist-ai-rmf-v1' | 'iso-27090-draft' | 'iso-42001-2023' | 'mitre-atlas-v4' | 'cis-controls-v8' | 'mitre-attack-v15'; export interface DetailedEvaluation { frameworkName: string; evaluationDate: Date; evaluatedBy: string; scores: { threatIdentification: number; practicalGuidance: number; evidenceQuality: number; completeness: number; total: number; }; breakdown: { [key: string]: boolean | 'unknown'; }; strengths: string[]; weaknesses: string[]; verdict: string; } export declare const frameworkCoverageKnowledge: { id: string; name: string; evaluation: { date: Date; by: string; validDays: number; methodology: string; }; methodologyComparison: { criteria: { category: string; name: string; points: number; section: string; }[]; frameworks: { owasp: DetailedEvaluationKey; nist: DetailedEvaluationKey; iso27090: DetailedEvaluationKey; iso42001: DetailedEvaluationKey; atlas: DetailedEvaluationKey; attack: DetailedEvaluationKey; cis: DetailedEvaluationKey; }; }; updateInstructions: string; timeline: { date: Date; framework: string; change: string; confidence: string; }[]; metadata: { description: string; details: string[]; category: string; tags: string[]; }; frameworks: Framework[]; insights: string[]; recommendations: string[]; sources: { name: string; url: string; date: Date; }[]; detailedEvaluations: Record<DetailedEvaluationKey, DetailedEvaluation>; }; export declare function isStale(knowledge: typeof frameworkCoverageKnowledge): boolean; export declare function getConfidenceStatus(knowledge: typeof frameworkCoverageKnowledge): { confidence: number; status: string; daysUntilStale: number; }; export declare function getLatestChange(knowledge: typeof frameworkCoverageKnowledge): string;