Class: Legion::Extensions::ServiceNow::Skills::SecurityIncidentResponse

Inherits:

LLM::Skills::Base

Object
LLM::Skills::Base
Legion::Extensions::ServiceNow::Skills::SecurityIncidentResponse

show all

Defined in:: lib/legion/extensions/service_now/skills/security_incident_response.rb

Instance Method Summary collapse

#complete(context: {}) ⇒ Object

rubocop:disable Lint/UnusedMethodArgument.
#contain_threat(context: {}) ⇒ Object

rubocop:disable Lint/UnusedMethodArgument.
#investigate(context: {}) ⇒ Object

rubocop:disable Lint/UnusedMethodArgument.
#remediate(context: {}) ⇒ Object

rubocop:disable Lint/UnusedMethodArgument.
#triage_security_incident(context: {}) ⇒ Object

rubocop:disable Lint/UnusedMethodArgument.

Instance Method Details

#complete(context: {}) ⇒ `Object`

rubocop:disable Lint/UnusedMethodArgument

# File 'lib/legion/extensions/service_now/skills/security_incident_response.rb', line 50

def complete(context: {}) # rubocop:disable Lint/UnusedMethodArgument
  Legion::LLM::Skills::StepResult.new(
    inject:   'Security incident response complete.',
    metadata: { step: 'complete' }
  )
end

#contain_threat(context: {}) ⇒ `Object`

rubocop:disable Lint/UnusedMethodArgument

# File 'lib/legion/extensions/service_now/skills/security_incident_response.rb', line 27

def contain_threat(context: {}) # rubocop:disable Lint/UnusedMethodArgument
  Legion::LLM::Skills::StepResult.new(
    inject:   'Identifying containment actions to limit threat spread.',
    metadata: { step: 'contain_threat' },
    gate:     :confirm
  )
end

#investigate(context: {}) ⇒ `Object`

rubocop:disable Lint/UnusedMethodArgument

# File 'lib/legion/extensions/service_now/skills/security_incident_response.rb', line 35

def investigate(context: {}) # rubocop:disable Lint/UnusedMethodArgument
  Legion::LLM::Skills::StepResult.new(
    inject:   'Investigating root cause, attack vector, and affected assets.',
    metadata: { step: 'investigate' }
  )
end

#remediate(context: {}) ⇒ `Object`

rubocop:disable Lint/UnusedMethodArgument

# File 'lib/legion/extensions/service_now/skills/security_incident_response.rb', line 42

def remediate(context: {}) # rubocop:disable Lint/UnusedMethodArgument
  Legion::LLM::Skills::StepResult.new(
    inject:   'Remediating the threat and documenting lessons learned.',
    metadata: { step: 'remediate' },
    gate:     :confirm
  )
end

#triage_security_incident(context: {}) ⇒ `Object`

rubocop:disable Lint/UnusedMethodArgument

# File 'lib/legion/extensions/service_now/skills/security_incident_response.rb', line 20

def triage_security_incident(context: {}) # rubocop:disable Lint/UnusedMethodArgument
  Legion::LLM::Skills::StepResult.new(
    inject:   'Triaging security incident: severity, affected systems, initial indicators.',
    metadata: { step: 'triage_security_incident' }
  )
end

Class: Legion::Extensions::ServiceNow::Skills::SecurityIncidentResponse

Instance Method Summary collapse

Instance Method Details

#complete(context: {}) ⇒ Object

#contain_threat(context: {}) ⇒ Object

#investigate(context: {}) ⇒ Object

#remediate(context: {}) ⇒ Object

#triage_security_incident(context: {}) ⇒ Object

#complete(context: {}) ⇒ `Object`

#contain_threat(context: {}) ⇒ `Object`

#investigate(context: {}) ⇒ `Object`

#remediate(context: {}) ⇒ `Object`

#triage_security_incident(context: {}) ⇒ `Object`