Add enterprise agents: log/code/reg endpoints

.gitignore

@@ -0,0 +1,6 @@
+node_modules/
+dist/
+.DS_Store
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*

package-lock.json

@@ -13,6 +13,7 @@
         "better-sqlite3": "^12.9.0",
         "cheerio": "^1.2.0",
         "express": "^5.2.1",
+        "js-yaml": "^4.1.1",
         "node-cron": "^4.2.1",
         "openai": "^6.34.0",
         "uuid": "^14.0.0"
@@ -279,6 +280,12 @@
       "dev": true,
       "license": "MIT"
     },
+    "node_modules/argparse": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/argparse/-/argparse-2.0.1.tgz",
+      "integrity": "sha512-8+9WqebbFzpX9OR+Wa6O29asIogeRMzcGtAINdpMHHyAg10f05aSFVBbcEqGf/PXw1EjAZ+q2/bEBg3DvurK3Q==",
+      "license": "Python-2.0"
+    },
     "node_modules/asynckit": {
       "version": "0.4.0",
       "resolved": "https://registry.npmjs.org/asynckit/-/asynckit-0.4.0.tgz",
@@ -1400,6 +1407,18 @@
       "integrity": "sha512-hvpoI6korhJMnej285dSg6nu1+e6uxs7zG3BYAm5byqDsgJNWwxzM6z6iZiAgQR4TJ30JmBTOwqZUw3WlyH3AQ==",
       "license": "MIT"
     },
+    "node_modules/js-yaml": {
+      "version": "4.1.1",
+      "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.1.tgz",
+      "integrity": "sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==",
+      "license": "MIT",
+      "dependencies": {
+        "argparse": "^2.0.1"
+      },
+      "bin": {
+        "js-yaml": "bin/js-yaml.js"
+      }
+    },
     "node_modules/make-error": {
       "version": "1.3.6",
       "resolved": "https://registry.npmjs.org/make-error/-/make-error-1.3.6.tgz",

package.json

@@ -17,6 +17,7 @@
     "better-sqlite3": "^12.9.0",
     "cheerio": "^1.2.0",
     "express": "^5.2.1",
+    "js-yaml": "^4.1.1",
     "node-cron": "^4.2.1",
     "openai": "^6.34.0",
     "uuid": "^14.0.0"

src/crawler/api.ts

@@ -250,7 +250,7 @@ router.get('/updates', (req: Request<{}, {}, {}, { app_name?: string, business_l
     
     let topicFilters: string[] = [];
     if (topics) {
-      topicFilters = topics.split(',').map(t => t.trim());
+      topicFilters = topics.split(',').map((t: string) => t.trim());
     }
     
     const updatesMap = {

src/crawler/extractor.ts

@@ -30,7 +30,7 @@ export function extractAndNormalize(snapshot: RawSnapshot): NormalizedDocument |
   // 2. Full-width to half-width (simplified)
   let normalizedText = rawText
     .replace(/\s+/g, ' ')
-    .replace(/[\uFF01-\uFF5E]/g, (char) => String.fromCharCode(char.charCodeAt(0) - 0xFEE0))
+    .replace(/[\uFF01-\uFF5E]/g, (char: string) => String.fromCharCode(char.charCodeAt(0) - 0xFEE0))
     .trim();
 
   const normalizedHash = crypto.createHash('sha256').update(normalizedText).digest('hex');

src/index.ts

@@ -7,7 +7,10 @@ import {
   GapAnalysis,
   ComplianceCheck,
   LegalReviewPack,
-  MissingMaterialItem
+  MissingMaterialItem,
+  LogAnalysisResult,
+  CodeSecurityResult,
+  RegulatoryPenaltySummary
 } from './models';
 import crawlerRouter from './crawler/api';
 import { initDB } from './crawler/db';
@@ -152,6 +155,320 @@ app.post('/api/agents/legal-pack', async (req: Request, res: Response, next: Nex
   }
 });
 
+function normString(value: unknown): string {
+  if (value === null || value === undefined) return '';
+  if (Array.isArray(value)) return value.map(v => String(v)).join('\n').trim();
+  if (typeof value !== 'string') return String(value).trim();
+  return value.trim();
+}
+
+function maskSecrets(text: string): string {
+  let s = text;
+  s = s.replace(/sk-[A-Za-z0-9_-]{8,}/g, 'sk-***');
+  s = s.replace(/(?<![A-Za-z0-9])[A-Fa-f0-9]{32,}(?![A-Za-z0-9])/g, '***');
+  s = s.replace(/(?<![A-Za-z0-9])[A-Za-z0-9_\\-]{24,}(?![A-Za-z0-9])/g, '***');
+  return s;
+}
+
+function parseLogPatterns(logText: string) {
+  const lines = logText.split(/\r?\n/).map(l => l.trim()).filter(Boolean);
+  const map = new Map<string, { count: number; first?: string; last?: string; samples: string[]; level: 'high' | 'medium' | 'low' }>();
+
+  const timeRe = /(\d{2}:\d{2}:\d{2}|\d{2}:\d{2})/;
+  for (const line of lines) {
+    const timeMatch = line.match(timeRe);
+    const time = timeMatch ? timeMatch[1] : '';
+    const upper = line.toUpperCase();
+    const level: 'high' | 'medium' | 'low' =
+      upper.includes('ERROR') || upper.includes('EXCEPTION') || upper.includes('FATAL') || upper.includes('TIMEOUT') ? 'high' :
+      upper.includes('WARN') ? 'medium' : 'low';
+
+    const normalized = line
+      .replace(/^\d{4}-\d{2}-\d{2}[ T]\d{2}:\d{2}:\d{2}(?:\.\d+)?(?:Z|[+-]\d{2}:?\d{2})?\s*/g, '')
+      .replace(/^\[?\d{2}:\d{2}:\d{2}\]?\s*/g, '')
+      .replace(/\b0x[0-9a-fA-F]+\b/g, '0x#')
+      .replace(/\b\d+\b/g, '#')
+      .replace(/\s+/g, ' ')
+      .slice(0, 220);
+
+    const key = normalized || line.slice(0, 220);
+    const existing = map.get(key);
+    if (!existing) {
+      const record: { count: number; first?: string; last?: string; samples: string[]; level: 'high' | 'medium' | 'low' } = {
+        count: 1,
+        samples: [maskSecrets(line).slice(0, 320)],
+        level
+      };
+      if (time) {
+        record.first = time;
+        record.last = time;
+      }
+      map.set(key, record);
+    } else {
+      existing.count += 1;
+      if (time) {
+        if (!existing.first) existing.first = time;
+        existing.last = time;
+      }
+      if (existing.samples.length < 3) existing.samples.push(maskSecrets(line).slice(0, 320));
+      if (level === 'high' || (level === 'medium' && existing.level === 'low')) existing.level = level;
+    }
+  }
+
+  const patterns = Array.from(map.entries())
+    .sort((a, b) => b[1].count - a[1].count)
+    .slice(0, 12)
+    .map(([pattern, v]) => ({
+      pattern,
+      count: v.count,
+      first_seen: v.first || '',
+      last_seen: v.last || '',
+      level: v.level,
+      sample_logs: v.samples
+    }));
+
+  const timeline = patterns
+    .filter(p => p.first_seen)
+    .slice(0, 8)
+    .map(p => ({ time: p.first_seen, event: `首次出现：${p.pattern}` }));
+
+  return { patterns, timeline, line_count: lines.length };
+}
+
+function parseScanFindings(scanText: string) {
+  const s = scanText.trim();
+  if (!s) return [];
+  let obj: any;
+  try {
+    obj = JSON.parse(s);
+  } catch {
+    return [];
+  }
+
+  const findings: any[] = [];
+
+  const semgrepResults = Array.isArray(obj?.results) ? obj.results : [];
+  for (const r of semgrepResults) {
+    const file = r?.path || r?.extra?.path || '';
+    const line = Number(r?.start?.line || r?.extra?.line || 0);
+    const ruleId = r?.check_id || r?.rule_id || r?.extra?.metadata?.id || '';
+    const severityRaw = String(r?.extra?.severity || r?.extra?.metadata?.severity || r?.severity || 'medium').toLowerCase();
+    const severity =
+      severityRaw.includes('critical') ? 'critical' :
+      severityRaw.includes('high') || severityRaw.includes('error') ? 'high' :
+      severityRaw.includes('low') ? 'low' :
+      severityRaw.includes('info') ? 'info' :
+      'medium';
+    const message = r?.extra?.message || r?.extra?.metadata?.message || r?.message || '';
+    const evidence = r?.extra?.lines || r?.extra?.metavars ? JSON.stringify({ lines: r?.extra?.lines, metavars: r?.extra?.metavars }) : '';
+    findings.push({
+      tool: 'semgrep',
+      type: 'static_analysis',
+      severity,
+      status: 'confirmed',
+      file: String(file),
+      line,
+      rule_id: String(ruleId),
+      description: String(message),
+      evidence: maskSecrets(String(evidence || message || ''))
+    });
+  }
+
+  const gitleaksResults = Array.isArray(obj) ? obj : Array.isArray(obj?.leaks) ? obj.leaks : [];
+  for (const r of gitleaksResults) {
+    const ruleId = r?.RuleID || r?.rule_id || '';
+    const file = r?.File || r?.file || '';
+    const line = Number(r?.StartLine || r?.line || 0);
+    const desc = r?.Description || r?.description || r?.Message || r?.message || 'Possible secret';
+    const secret = r?.Secret || r?.secret || '';
+    const evidence = secret ? maskSecrets(String(secret)) : maskSecrets(JSON.stringify(r).slice(0, 240));
+    if (ruleId || file) {
+      findings.push({
+        tool: 'gitleaks',
+        type: 'secret',
+        severity: 'high',
+        status: 'confirmed',
+        file: String(file),
+        line,
+        rule_id: String(ruleId || 'gitleaks'),
+        description: String(desc),
+        evidence
+      });
+    }
+  }
+
+  return findings.slice(0, 80);
+}
+
+const AGENT_VERSION = 'v1.0.0';
+const PROMPT_VERSION = 'v1.0.0';
+
+app.post('/api/agents/log-analysis/run', async (req: Request, res: Response, next: NextFunction) => {
+  try {
+    const system_name = normString(req.body?.system_name);
+    const environment = normString(req.body?.environment);
+    const time_range = normString(req.body?.time_range);
+    const log_text = normString(req.body?.log_text || req.body?.log_content || req.body?.logs);
+    const known_changes = req.body?.known_changes ?? req.body?.change_notes ?? '';
+    const business_impact = normString(req.body?.business_impact);
+    const log_format = normString(req.body?.log_format);
+    const knowledge_context = normString(req.body?.knowledge_context || req.body?.kb || req.body?.knowledge_base);
+
+    const missingItems: MissingMaterialItem[] = [];
+    if (!system_name) missingItems.push({ material_type: 'system_name', reason: '缺少系统名称', requirement_level: 'required' });
+    if (!environment) missingItems.push({ material_type: 'environment', reason: '缺少环境信息', requirement_level: 'required' });
+    if (!time_range) missingItems.push({ material_type: 'time_range', reason: '缺少时间范围', requirement_level: 'required' });
+    if (!log_text) missingItems.push({ material_type: 'log_text', reason: '缺少日志文本', requirement_level: 'required' });
+
+    if (missingItems.length > 0) {
+      throw new MissingMaterialError(missingItems);
+    }
+
+    const parsed = parseLogPatterns(log_text);
+    const payload = {
+      system_name,
+      environment,
+      time_range,
+      business_impact,
+      log_format,
+      parsed,
+      known_changes,
+      knowledge_context
+    };
+
+    const startLLM = Date.now();
+    const response = await callLLM<LogAnalysisResult>(JSON.stringify(payload), 'LogAnalysisResult');
+    res.locals.llm_latency_ms = Date.now() - startLLM;
+
+    res.json({
+      ...response,
+      schema_version: 'v1.0',
+      agent_version: AGENT_VERSION,
+      prompt_version: PROMPT_VERSION,
+      model_version: process.env.LLM_MODEL_NAME || 'deepseek-chat'
+    });
+  } catch (error) {
+    next(error);
+  }
+});
+
+app.post('/api/agents/code-security/run', async (req: Request, res: Response, next: NextFunction) => {
+  try {
+    const repo_name = normString(req.body?.repo_name);
+    const language = normString(req.body?.language);
+    const branch = normString(req.body?.branch);
+    const security_standard = normString(req.body?.security_standard);
+    const review_mode = normString(req.body?.review_mode);
+    const scan_result_text = normString(req.body?.scan_result_text || req.body?.scan_results || req.body?.scan_result);
+    const code_text = normString(req.body?.code_text || req.body?.code_snippet || req.body?.code);
+    const knowledge_context = normString(req.body?.knowledge_context || req.body?.kb || req.body?.knowledge_base);
+
+    const missingItems: MissingMaterialItem[] = [];
+    if (!repo_name) missingItems.push({ material_type: 'repo_name', reason: '缺少仓库名称', requirement_level: 'required' });
+    if (!language) missingItems.push({ material_type: 'language', reason: '缺少代码语言', requirement_level: 'required' });
+    if (!security_standard) missingItems.push({ material_type: 'security_standard', reason: '缺少安全标准', requirement_level: 'required' });
+    if (!review_mode) missingItems.push({ material_type: 'review_mode', reason: '缺少审查模式', requirement_level: 'required' });
+
+    if (missingItems.length > 0) {
+      throw new MissingMaterialError(missingItems);
+    }
+
+    const findings = parseScanFindings(scan_result_text);
+    const hasScan = findings.length > 0;
+
+    if (!hasScan && !code_text) {
+      throw new MissingMaterialError([{ material_type: 'scan_result_text/code_text', reason: '缺少扫描结果或代码内容', requirement_level: 'required' }]);
+    }
+
+    const payload = {
+      repo_name,
+      language,
+      branch,
+      security_standard,
+      review_mode,
+      findings,
+      code_text: maskSecrets(code_text).slice(0, 8000),
+      knowledge_context,
+      has_scan_results: hasScan
+    };
+
+    const startLLM = Date.now();
+    const response = await callLLM<CodeSecurityResult>(JSON.stringify(payload), 'CodeSecurityResult');
+    res.locals.llm_latency_ms = Date.now() - startLLM;
+
+    res.json({
+      ...response,
+      schema_version: 'v1.0',
+      agent_version: AGENT_VERSION,
+      prompt_version: PROMPT_VERSION,
+      model_version: process.env.LLM_MODEL_NAME || 'deepseek-chat'
+    });
+  } catch (error) {
+    next(error);
+  }
+});
+
+app.post('/api/agents/regulatory-penalty-summary/run', async (req: Request, res: Response, next: NextFunction) => {
+  try {
+    const topic = normString(req.body?.topic);
+    const industry = normString(req.body?.industry);
+    const time_range = normString(req.body?.time_range);
+    const regulators = req.body?.regulators;
+    const keywords = req.body?.keywords;
+    const report_type = normString(req.body?.report_type);
+    const cases = Array.isArray(req.body?.cases) ? req.body.cases : [];
+    const knowledge_context = normString(req.body?.knowledge_context || req.body?.kb || req.body?.knowledge_base);
+
+    const missingItems: MissingMaterialItem[] = [];
+    if (!topic) missingItems.push({ material_type: 'topic', reason: '缺少主题', requirement_level: 'required' });
+    if (!industry) missingItems.push({ material_type: 'industry', reason: '缺少行业', requirement_level: 'required' });
+    if (!time_range) missingItems.push({ material_type: 'time_range', reason: '缺少时间范围', requirement_level: 'required' });
+    if (!regulators || (Array.isArray(regulators) && regulators.length === 0)) {
+      missingItems.push({ material_type: 'regulators', reason: '缺少监管机构', requirement_level: 'required' });
+    }
+    if (!report_type) missingItems.push({ material_type: 'report_type', reason: '缺少报告类型', requirement_level: 'required' });
+
+    if (missingItems.length > 0) {
+      throw new MissingMaterialError(missingItems);
+    }
+
+    const normalizedCases = cases
+      .map((c: any) => ({
+        case_name: normString(c?.case_name || c?.title || ''),
+        regulator: normString(c?.regulator || ''),
+        date: normString(c?.date || c?.publish_date || ''),
+        source_url: normString(c?.source_url || c?.url || ''),
+        excerpt: normString(c?.excerpt || c?.summary || '')
+      }))
+      .filter((c: any) => c.case_name && c.regulator && c.date && c.source_url && c.excerpt);
+
+    const payload = {
+      topic,
+      industry,
+      time_range,
+      regulators,
+      keywords,
+      report_type,
+      cases: normalizedCases.slice(0, 80),
+      knowledge_context
+    };
+
+    const startLLM = Date.now();
+    const response = await callLLM<RegulatoryPenaltySummary>(JSON.stringify(payload), 'RegulatoryPenaltySummary');
+    res.locals.llm_latency_ms = Date.now() - startLLM;
+
+    res.json({
+      ...response,
+      schema_version: 'v1.0',
+      agent_version: AGENT_VERSION,
+      prompt_version: PROMPT_VERSION,
+      model_version: process.env.LLM_MODEL_NAME || 'deepseek-chat'
+    });
+  } catch (error) {
+    next(error);
+  }
+});
+
 // 挂载全局错误处理中间件
 app.use(errorHandler);
 

src/llm.ts

@@ -1,14 +1,23 @@
 import OpenAI from 'openai';
-import { PeerRegSummary, GapAnalysis, ComplianceCheck, LegalReviewPack } from './models';
+import { PeerRegSummary, GapAnalysis, ComplianceCheck, LegalReviewPack, LogAnalysisResult, CodeSecurityResult, RegulatoryPenaltySummary } from './models';
 
-// 初始化 DeepSeek 官方客户端
-const openai = new OpenAI({
-  baseURL: 'https://api.deepseek.com/v1',
-  apiKey: process.env.DEEPSEEK_API_KEY || 'sk-a05d3ac4dcc440f689521151c718ead8',
-});
+const MODEL_NAME = process.env.LLM_MODEL_NAME || 'deepseek-chat';
+const BASE_URL = process.env.DEEPSEEK_BASE_URL || 'https://api.deepseek.com/v1';
 
-// DeepSeek 官方模型名称
-const MODEL_NAME = 'deepseek-chat';
+function getApiKey(): string {
+  const key = process.env.DEEPSEEK_API_KEY;
+  if (!key) {
+    throw new Error('MISSING_LLM_API_KEY');
+  }
+  return key;
+}
+
+function getClient(): OpenAI {
+  return new OpenAI({
+    baseURL: BASE_URL,
+    apiKey: getApiKey(),
+  });
+}
 
 const PROMPTS: Record<string, string> = {
   PeerRegSummary: `你是银行APP隐私合规场景中的“同业/监管变化摘要智能体”。
@@ -91,6 +100,51 @@ const PROMPTS: Record<string, string> = {
 - focus_items 只保留最关键的法务关注点，并为其打上 priority 标签 (P0/P1/P2)；
 - 不得出现最终审批语气。
 
+输出语言：中文。
+请严格输出JSON格式，不要包裹在 \`\`\`json 中，直接输出 { 开始。`
+,
+
+  LogAnalysisResult: `你是国内中小银行生产系统日志分析专家。
+
+你的任务：
+基于日志解析结果、错误聚类、时间线、已知变更、业务影响与知识库内容，生成日志异常摘要、疑似原因、排查建议和风险提示，并生成可归档 Markdown 报告。
+
+必须遵守：
+1. 不得直接认定根因，除非证据充分；优先使用“疑似”“可能”“建议进一步核查”。
+2. 不得建议用户直接重启生产服务、删除文件、回滚版本或修改生产配置；只给出检查/对比/验证类建议。
+3. 所有判断必须给出 evidence。
+4. 如果日志样本不足或信息缺失，必须写 insufficient_context=true，并说明缺失点。
+5. 输出必须为 JSON。
+
+输出语言：中文。
+请严格输出JSON格式，不要包裹在 \`\`\`json 中，直接输出 { 开始。`,
+
+  CodeSecurityResult: `你是银行代码安全检测结果解释与修复建议专家。
+
+你的任务：
+基于扫描工具结果（优先）与代码片段（可选）解释漏洞、给出修复建议与安全边界提示，并生成可归档 Markdown 报告。
+
+必须遵守：
+1. 以扫描结果为主；没有扫描结果时，不得输出“confirmed”确定性漏洞结论，只能输出“suspicious”并提示补充扫描或进入人工复核。
+2. 不得输出完整密钥、token、账号等敏感信息；若 evidence 中出现疑似 secret，必须掩码。
+3. 每条漏洞必须包含 file/line/rule_id/evidence。
+4. 输出必须为 JSON。
+
+输出语言：中文。
+请严格输出JSON格式，不要包裹在 \`\`\`json 中，直接输出 { 开始。`,
+
+  RegulatoryPenaltySummary: `你是国内中小银行监管处罚信息汇总专家。
+
+你的任务：
+基于白名单来源抓取/检索结果、监管案例材料与法规知识库，归纳监管处罚趋势、高频风险类型、典型案例和整改建议，并生成简报 Markdown。
+
+必须遵守：
+1. 不得编造监管处罚案例、日期、监管机构、来源链接。
+2. 每个典型案例必须包含 regulator、date、source_url、excerpt。
+3. 无来源信息时，必须写 insufficient_context=true，不得输出确定性结论。
+4. 不得作出最终法律意见，只能输出风险提示与整改建议。
+5. 输出必须为 JSON。
+
 输出语言：中文。
 请严格输出JSON格式，不要包裹在 \`\`\`json 中，直接输出 { 开始。`
 };
@@ -103,6 +157,7 @@ export async function callLLM<T>(prompt: string, schemaType: string): Promise<T>
   }
 
   try {
+    const openai = getClient();
     const response = await openai.chat.completions.create({
       model: MODEL_NAME,
       messages: [
@@ -120,7 +175,11 @@ export async function callLLM<T>(prompt: string, schemaType: string): Promise<T>
 
     return JSON.parse(content) as T;
   } catch (error) {
-    console.error(`LLM Call Failed for ${schemaType}:`, error);
+    const msg = error instanceof Error ? error.message : String(error);
+    if (msg === 'MISSING_LLM_API_KEY') {
+      throw new Error('MISSING_LLM_API_KEY');
+    }
+    console.error(`LLM Call Failed for ${schemaType}: ${msg}`);
     throw new Error('LLM_INFERENCE_FAILED');
   }
 }

src/middlewares.ts

@@ -29,7 +29,7 @@ export const requestLogger = (req: Request, res: Response, next: NextFunction) =
   
   // 拦截 res.send 记录结束时间
   const originalSend = res.send;
-  res.send = function (body) {
+  res.send = function (body: any) {
     const ended_at = new Date();
     
     // 提取 case_context
@@ -46,6 +46,9 @@ export const requestLogger = (req: Request, res: Response, next: NextFunction) =
     else if (req.path.includes('policy-rewrite')) agent_name = 'AGENT-02';
     else if (req.path.includes('compliance-check')) agent_name = 'AGENT-03';
     else if (req.path.includes('legal-pack')) agent_name = 'AGENT-04';
+    else if (req.path.includes('log-analysis')) agent_name = 'LOG_ANALYSIS';
+    else if (req.path.includes('code-security')) agent_name = 'CODE_SECURITY';
+    else if (req.path.includes('regulatory-penalty-summary')) agent_name = 'REG_PENALTY_SUMMARY';
 
     const status = res.statusCode >= 400 ? 'failed' : 'success';
     const error_code = res.locals.errorCode || 0;
@@ -105,6 +108,10 @@ export const errorHandler = (err: any, req: Request, res: Response, next: NextFu
     statusCode = 500;
     errorCode = 5002;
     message = '外部上下文缺失';
+  } else if (err.message === 'MISSING_LLM_API_KEY') {
+    statusCode = 500;
+    errorCode = 5003;
+    message = 'LLM密钥未配置';
   }
 
   // 记录 errorCode 给 logger 使用

src/models/index.ts

@@ -168,3 +168,88 @@ export interface NeedMoreMaterialResponse extends BaseResponse {
   message: string;
   missing_materials: MissingMaterialItem[];
 }
+
+export interface LogAnalysisResult extends BaseResponse {
+  insufficient_context?: boolean;
+  summary: string;
+  error_patterns: {
+    pattern: string;
+    count: number;
+    first_seen?: string;
+    last_seen?: string;
+    level: 'high' | 'medium' | 'low';
+    sample_logs: string[];
+  }[];
+  timeline: {
+    time: string;
+    event: string;
+  }[];
+  possible_causes: {
+    cause: string;
+    confidence: 'high' | 'medium' | 'low';
+    evidence: string[];
+  }[];
+  suggested_actions: string[];
+  risks: {
+    risk: string;
+    level: 'high' | 'medium' | 'low';
+    suggestion: string;
+  }[];
+  need_human_review: boolean;
+  confidence?: 'high' | 'medium' | 'low';
+  evidence?: string[];
+  report_markdown: string;
+}
+
+export interface CodeSecurityResult extends BaseResponse {
+  insufficient_context?: boolean;
+  risk_summary: string;
+  vulnerabilities: {
+    type: string;
+    severity: 'critical' | 'high' | 'medium' | 'low' | 'info';
+    status: 'confirmed' | 'suspicious' | 'false_positive_candidate';
+    tool?: string;
+    file: string;
+    line: number;
+    rule_id: string;
+    description: string;
+    evidence: string;
+    impact: string;
+    fix_suggestion: string;
+    safe_example?: string;
+  }[];
+  fix_plan: string[];
+  compliance_notes: string[];
+  need_security_review: boolean;
+  confidence?: 'high' | 'medium' | 'low';
+  evidence?: string[];
+  report_markdown: string;
+}
+
+export interface RegulatoryPenaltySummary extends BaseResponse {
+  insufficient_context?: boolean;
+  topic: string;
+  summary: string;
+  risk_categories: {
+    category: string;
+    frequency: 'high' | 'medium' | 'low';
+    severity: 'high' | 'medium' | 'low';
+    description: string;
+    typical_cases: {
+      case_name: string;
+      regulator: string;
+      date: string;
+      source_url: string;
+      excerpt: string;
+    }[];
+    suggestions: string[];
+  }[];
+  top_risks: string[];
+  action_suggestions: string[];
+  references: {
+    source: string;
+    url: string;
+    details: string;
+  }[];
+  briefing_markdown: string;
+}

src/schemas/CodeSecurityResult.schema.json

@@ -0,0 +1,45 @@
+{
+  "$schema": "https://json-schema.org/draft/2020-12/schema",
+  "title": "CodeSecurityResult",
+  "type": "object",
+  "required": [
+    "risk_summary",
+    "vulnerabilities",
+    "fix_plan",
+    "compliance_notes",
+    "need_security_review",
+    "report_markdown"
+  ],
+  "properties": {
+    "insufficient_context": { "type": "boolean" },
+    "risk_summary": { "type": "string" },
+    "vulnerabilities": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "required": ["type", "severity", "status", "file", "line", "rule_id", "description", "evidence", "impact", "fix_suggestion"],
+        "properties": {
+          "type": { "type": "string" },
+          "severity": { "type": "string", "enum": ["critical", "high", "medium", "low", "info"] },
+          "status": { "type": "string", "enum": ["confirmed", "suspicious", "false_positive_candidate"] },
+          "tool": { "type": "string" },
+          "file": { "type": "string" },
+          "line": { "type": "number" },
+          "rule_id": { "type": "string" },
+          "description": { "type": "string" },
+          "evidence": { "type": "string" },
+          "impact": { "type": "string" },
+          "fix_suggestion": { "type": "string" },
+          "safe_example": { "type": "string" }
+        }
+      }
+    },
+    "fix_plan": { "type": "array", "items": { "type": "string" } },
+    "compliance_notes": { "type": "array", "items": { "type": "string" } },
+    "need_security_review": { "type": "boolean" },
+    "confidence": { "type": "string", "enum": ["high", "medium", "low"] },
+    "evidence": { "type": "array", "items": { "type": "string" } },
+    "report_markdown": { "type": "string" }
+  }
+}
+

src/schemas/LogAnalysisResult.schema.json

@@ -0,0 +1,75 @@
+{
+  "$schema": "https://json-schema.org/draft/2020-12/schema",
+  "title": "LogAnalysisResult",
+  "type": "object",
+  "required": [
+    "summary",
+    "error_patterns",
+    "timeline",
+    "possible_causes",
+    "suggested_actions",
+    "risks",
+    "need_human_review",
+    "report_markdown"
+  ],
+  "properties": {
+    "insufficient_context": { "type": "boolean" },
+    "summary": { "type": "string" },
+    "error_patterns": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "required": ["pattern", "count", "level", "sample_logs"],
+        "properties": {
+          "pattern": { "type": "string" },
+          "count": { "type": "number" },
+          "first_seen": { "type": "string" },
+          "last_seen": { "type": "string" },
+          "level": { "type": "string", "enum": ["high", "medium", "low"] },
+          "sample_logs": { "type": "array", "items": { "type": "string" } }
+        }
+      }
+    },
+    "timeline": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "required": ["time", "event"],
+        "properties": {
+          "time": { "type": "string" },
+          "event": { "type": "string" }
+        }
+      }
+    },
+    "possible_causes": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "required": ["cause", "confidence", "evidence"],
+        "properties": {
+          "cause": { "type": "string" },
+          "confidence": { "type": "string", "enum": ["high", "medium", "low"] },
+          "evidence": { "type": "array", "items": { "type": "string" } }
+        }
+      }
+    },
+    "suggested_actions": { "type": "array", "items": { "type": "string" } },
+    "risks": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "required": ["risk", "level", "suggestion"],
+        "properties": {
+          "risk": { "type": "string" },
+          "level": { "type": "string", "enum": ["high", "medium", "low"] },
+          "suggestion": { "type": "string" }
+        }
+      }
+    },
+    "need_human_review": { "type": "boolean" },
+    "confidence": { "type": "string", "enum": ["high", "medium", "low"] },
+    "evidence": { "type": "array", "items": { "type": "string" } },
+    "report_markdown": { "type": "string" }
+  }
+}
+

src/schemas/RegulatoryPenaltySummary.schema.json

@@ -0,0 +1,63 @@
+{
+  "$schema": "https://json-schema.org/draft/2020-12/schema",
+  "title": "RegulatoryPenaltySummary",
+  "type": "object",
+  "required": [
+    "topic",
+    "summary",
+    "risk_categories",
+    "top_risks",
+    "action_suggestions",
+    "references",
+    "briefing_markdown"
+  ],
+  "properties": {
+    "insufficient_context": { "type": "boolean" },
+    "topic": { "type": "string" },
+    "summary": { "type": "string" },
+    "risk_categories": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "required": ["category", "frequency", "severity", "description", "typical_cases", "suggestions"],
+        "properties": {
+          "category": { "type": "string" },
+          "frequency": { "type": "string", "enum": ["high", "medium", "low"] },
+          "severity": { "type": "string", "enum": ["high", "medium", "low"] },
+          "description": { "type": "string" },
+          "typical_cases": {
+            "type": "array",
+            "items": {
+              "type": "object",
+              "required": ["case_name", "regulator", "date", "source_url", "excerpt"],
+              "properties": {
+                "case_name": { "type": "string" },
+                "regulator": { "type": "string" },
+                "date": { "type": "string" },
+                "source_url": { "type": "string" },
+                "excerpt": { "type": "string" }
+              }
+            }
+          },
+          "suggestions": { "type": "array", "items": { "type": "string" } }
+        }
+      }
+    },
+    "top_risks": { "type": "array", "items": { "type": "string" } },
+    "action_suggestions": { "type": "array", "items": { "type": "string" } },
+    "references": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "required": ["source", "url", "details"],
+        "properties": {
+          "source": { "type": "string" },
+          "url": { "type": "string" },
+          "details": { "type": "string" }
+        }
+      }
+    },
+    "briefing_markdown": { "type": "string" }
+  }
+}
+

tsconfig.json

@@ -9,7 +9,7 @@
     // See also https://aka.ms/tsconfig/module
     "module": "nodenext",
     "target": "esnext",
-    "types": [],
+    "types": ["node"],
     // For nodejs:
     // "lib": ["esnext"],
     // "types": ["node"],