example_rules_detailed.json

{
  "rules": [
    {
      "rule": "Block password disclosure requests",
      "pattern": ".*(password|pwd|passcode|credential|login).*",
      "severity": "high",
      "description": "Prevents users from requesting or sharing passwords, credentials, or authentication information"
    },
    {
      "rule": "Prevent sharing of API keys or tokens",
      "pattern": ".*(api.?key|token|secret|access.?key|auth.?token).*",
      "severity": "critical",
      "description": "Blocks requests to share, generate, or disclose API keys, tokens, or authentication secrets"
    },
    {
      "rule": "Block social security number requests",
      "pattern": ".*(ssn|social.?security|tax.?id|ein).*",
      "severity": "high",
      "description": "Prevents disclosure of social security numbers or tax identification numbers"
    },
    {
      "rule": "No sharing of credit card information",
      "pattern": ".*(credit.?card|card.?number|cvv|cvc|expiration).*",
      "severity": "critical",
      "description": "Blocks requests to share or store credit card numbers, CVV codes, or payment card information"
    },
    {
      "rule": "Block requests for bank account details",
      "pattern": ".*(bank.?account|routing.?number|account.?number|swift|iban).*",
      "severity": "high",
      "description": "Prevents disclosure of bank account numbers, routing numbers, or financial account information"
    },
    {
      "rule": "Prevent sharing of employee personal information",
      "pattern": ".*(employee.?data|staff.?info|personnel.?record|hr.?data).*",
      "severity": "medium",
      "description": "Blocks requests to access or share employee personal information without authorization"
    },
    {
      "rule": "No unauthorized access to financial records",
      "pattern": ".*(financial.?record|accounting|bookkeeping|financial.?data).*",
      "severity": "high",
      "description": "Prevents unauthorized access to financial records, accounting data, or bookkeeping information"
    },
    {
      "rule": "Block requests for confidential business strategies",
      "pattern": ".*(business.?strategy|strategic.?plan|confidential.?plan|roadmap).*",
      "severity": "medium",
      "description": "Prevents disclosure of confidential business strategies, plans, or roadmaps"
    },
    {
      "rule": "Prevent disclosure of proprietary information",
      "pattern": ".*(proprietary|trade.?secret|intellectual.?property|ip).*",
      "severity": "high",
      "description": "Blocks requests to share proprietary information, trade secrets, or intellectual property"
    },
    {
      "rule": "Block requests for personal data of EU citizens",
      "pattern": ".*(gdpr|eu.?citizen|personal.?data|data.?subject).*",
      "severity": "critical",
      "description": "Prevents unauthorized access to personal data of EU citizens, violating GDPR regulations"
    },
    {
      "rule": "Prevent sharing of health information",
      "pattern": ".*(health.?info|medical.?record|patient.?data|hipaa).*",
      "severity": "critical",
      "description": "Blocks requests to share health information or medical records, protecting HIPAA compliance"
    },
    {
      "rule": "No disclosure of children's personal information",
      "pattern": ".*(child|minor|under.?18|coppa).*",
      "severity": "critical",
      "description": "Prevents disclosure of personal information of children under 18, ensuring COPPA compliance"
    },
    {
      "rule": "Block requests to delete system logs",
      "pattern": ".*(delete.?log|remove.?log|clear.?log|purge.?log).*",
      "severity": "high",
      "description": "Prevents deletion or modification of system logs, which are critical for security and compliance"
    },
    {
      "rule": "Prevent unauthorized system configuration changes",
      "pattern": ".*(system.?config|change.?setting|modify.?config|update.?config).*",
      "severity": "high",
      "description": "Blocks unauthorized changes to system configuration that could compromise security"
    },
    {
      "rule": "No sharing of infrastructure credentials",
      "pattern": ".*(infrastructure|server.?credential|deployment.?key|cloud.?access).*",
      "severity": "critical",
      "description": "Prevents sharing of infrastructure credentials, server access, or cloud deployment keys"
    },
    {
      "rule": "Block requests for generating harmful content",
      "pattern": ".*(harmful|violent|hate.?speech|offensive|illegal).*",
      "severity": "medium",
      "description": "Prevents generation of harmful, violent, hateful, or illegal content"
    },
    {
      "rule": "Prevent creation of misleading information",
      "pattern": ".*(misleading|fake.?news|false.?info|disinformation).*",
      "severity": "medium",
      "description": "Blocks creation of misleading information, fake news, or disinformation"
    },
    {
      "rule": "No sharing of defamatory statements",
      "pattern": ".*(defamatory|libel|slander|defame).*",
      "severity": "medium",
      "description": "Prevents creation or sharing of defamatory statements that could cause legal issues"
    },
    {
      "rule": "Block requests for competitor pricing information",
      "pattern": ".*(competitor|pricing|competitive.?intelligence).*",
      "severity": "low",
      "description": "Prevents sharing of competitor pricing information or competitive intelligence"
    },
    {
      "rule": "Prevent sharing of upcoming product launch details",
      "pattern": ".*(product.?launch|upcoming.?release|new.?product).*",
      "severity": "medium",
      "description": "Blocks disclosure of upcoming product launches or new product information"
    }
  ],
  "usage_instructions": {
    "simple": "Copy rules from example_rules.txt and paste into Gradio UI",
    "detailed": "Use the JSON format with patterns and severity levels for more control",
    "bulk_upload": "Use the /admin/rules/bulk endpoint with the rules array",
    "individual": "Add rules one by one using the /admin/rules endpoint with JSON payload"
  }
}