Skip to content

Add IBM i Security Operations Tools and Agent #21

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Nov 11, 2025
Merged

Add IBM i Security Operations Tools and Agent #21

merged 4 commits into from
Nov 11, 2025

Conversation

@itsdevansh
Copy link
Collaborator

@itsdevansh itsdevansh commented Nov 10, 2025
edited
Loading

IBM i Security Operations Tools & Agent

Overview
This pull request introduces 18 security tools grouped into four functional categories and a new Security Operations Agent.

Security Tools (18)

Tool Configuration: tools/security/security-ops.yaml
Category: security

Domains

  1. vulnerability-assessment – 12 tools
    Identify security vulnerabilities, assess user privileges, file permissions, and potential attack vectors

  2. audit – 2 tools
    Audit security configurations and maintain security data

  3. user-management – 2 tools
    Manage user capabilities and permissions

  4. remediation – 2 tools
    Generate and execute security remediation commands

Security Operations Agent

Specialized agent for identifying security vulnerabilities, auditing system configurations, and remediating security issues on IBM i systems.

Usage:

# Filter by domain
uv run test_agents.py --agent security --category vulnerability-assessment
uv run test_agents.py --agent security --category audit
uv run test_agents.py --agent security --category user-management
uv run test_agents.py --agent security --category remediation

@itsdevansh
feat: add security vulnerability assessment and remediation tools
ac83138 
Add comprehensive YAML-based security tools for IBM i systems including:
- User management tools (limited capabilities, command permissions)
- Vulnerability assessment tools (file permissions, user profiles, attack vectors)
- Security audit tools (special authority tracking, command audit settings)
- Remediation tools (impersonation lockdown generation and execution)

Organized into three toolsets: security_vulnerability_assessment, security_audit, and security_remediation

Signed-off-by: itsdevansh <[email protected]>
@itsdevansh
feat: Add Security Operations Agent with category filtering
0208a78 
Signed-off-by: itsdevansh <[email protected]>
@itsdevansh itsdevansh force-pushed the feat/security-ops-tools branch from eb59bf4 to 0208a78 Compare November 10, 2025 12:20
@itsdevansh itsdevansh requested a review from ajshedivy November 10, 2025 12:20
@itsdevansh
feat: implement dynamic human-in-the-loop middleware for security tools
1a19da3 
- Add _get_non_readonly_tools() helper to extract tools with readOnly: false
- Modify create_security_ops_agent() to dynamically build HumanInTheLoopMiddleware
- Automatically apply approval workflow to tools marked as non-readonly in YAML
- Add enable_human_in_loop parameter to allow disabling middleware

Signed-off-by: itsdevansh <[email protected]>
@itsdevansh
Merge main into feat/security-ops-tools
bd99868
@ajshedivy ajshedivy merged commit 1017157 into main Nov 11, 2025
1 check passed
@ajshedivy ajshedivy deleted the feat/security-ops-tools branch November 11, 2025 18:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ajshedivy ajshedivy Awaiting requested review from ajshedivy

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@itsdevansh @ajshedivy