{"allTime":{"count":58,"items":[{"ruleId":"CMD_INJECTION","hitCount":457},{"ruleId":"SSRF_ADVANCED","hitCount":369},{"ruleId":"CROSS_TOOL_ACCESS","hitCount":166},{"ruleId":"A2A_DATA_LEAK","hitCount":137},{"ruleId":"A2A_CROSS_AGENT_INJECT","hitCount":129},{"ruleId":"CRYPTO_THEFT","hitCount":118},{"ruleId":"A2A_TASK_HIJACK","hitCount":110},{"ruleId":"SHELL_EXEC","hitCount":109},{"ruleId":"REVERSE_SHELL","hitCount":91},{"ruleId":"SSRF_PATTERN","hitCount":78},{"ruleId":"THREAT_CHAIN_DATA_EXFILTRATION","hitCount":64},{"ruleId":"THREAT_CHAIN_PERSISTENCE_WITH_THEFT","hitCount":44},{"ruleId":"AGENT_MEMORY_MOD","hitCount":30},{"ruleId":"CRED_ENV_READ","hitCount":28},{"ruleId":"THREAT_CHAIN_SYSTEM_COMPROMISE","hitCount":25},{"ruleId":"STRUCT_READ_EXFIL","hitCount":22},{"ruleId":"A2A_CAPABILITY_ABUSE","hitCount":22},{"ruleId":"THREAT_CHAIN_AGENT_MANIPULATION","hitCount":21},{"ruleId":"DATA_EXFIL","hitCount":21},{"ruleId":"XSS_INJECTION","hitCount":20},{"ruleId":"ENV_RECON","hitCount":20},{"ruleId":"URL_SUSPICIOUS","hitCount":19},{"ruleId":"INDIRECT_PROMPT_INJECT","hitCount":18},{"ruleId":"MCP_SCHEMA_POISON","hitCount":17},{"ruleId":"TOOL_POISONING","hitCount":15},{"ruleId":"RESOURCE_ABUSE","hitCount":13},{"ruleId":"INSECURE_CRYPTO","hitCount":11},{"ruleId":"THREAT_CHAIN_CREDENTIAL_OBFUSCATION","hitCount":10},{"ruleId":"TOOL_SHADOW","hitCount":10},{"ruleId":"THREAT_CHAIN_SESSION_HIJACKING","hitCount":9},{"ruleId":"URL_RAW_IP","hitCount":8},{"ruleId":"INTENT_SECURITY_DISABLE_INTENT","hitCount":8},{"ruleId":"PROMPT_INJECT","hitCount":7},{"ruleId":"THREAT_CHAIN_COMMAND_AND_CONTROL","hitCount":7},{"ruleId":"PRIVILEGE_ESC","hitCount":7},{"ruleId":"TIME_BOMB","hitCount":6},{"ruleId":"PERSISTENCE","hitCount":6},{"ruleId":"THREAT_CHAIN_DROPPER_BEHAVIOR","hitCount":6},{"ruleId":"DNS_REBIND","hitCount":5},{"ruleId":"TOKEN_STEAL","hitCount":5},{"ruleId":"NET_SUSPICIOUS","hitCount":5},{"ruleId":"SUPPLY_CHAIN","hitCount":5},{"ruleId":"INTENT_MALWARE_INSTALL_INTENT","hitCount":4},{"ruleId":"THREAT_CHAIN_STAGED_EXFILTRATION","hitCount":4},{"ruleId":"CONTAINER_ESCAPE","hitCount":3},{"ruleId":"EXFIL_COVERT","hitCount":3},{"ruleId":"INVISIBLE_UNICODE_RAW","hitCount":3},{"ruleId":"A2A_AGENT_IMPERSONATION","hitCount":2},{"ruleId":"ENV_INJECTION","hitCount":2},{"ruleId":"BASE64_HIDDEN_HIDDEN_CODE_EXECUTION","hitCount":1},{"ruleId":"SQL_INJECTION","hitCount":1},{"ruleId":"FS_WRITE","hitCount":1},{"ruleId":"OBFUSCATION","hitCount":1},{"ruleId":"INTENT_CREDENTIAL_FORWARDING_INTENT","hitCount":1},{"ruleId":"THREAT_CHAIN_OBFUSCATED_EXECUTION","hitCount":1},{"ruleId":"BASE64_HIDDEN_HIDDEN_DESTRUCTIVE_COMMAND","hitCount":1},{"ruleId":"INTENT_EXPLICIT_EXFILTRATION","hitCount":1},{"ruleId":"REGEX_DOS","hitCount":1}]},"today":{"count":8,"items":[{"ruleId":"CMD_INJECTION","hitCount":41},{"ruleId":"ENV_RECON","hitCount":7},{"ruleId":"THREAT_CHAIN_SYSTEM_COMPROMISE","hitCount":5},{"ruleId":"SSRF_ADVANCED","hitCount":4},{"ruleId":"INVISIBLE_UNICODE_RAW","hitCount":3},{"ruleId":"INTENT_SECURITY_DISABLE_INTENT","hitCount":1},{"ruleId":"TOOL_SHADOW","hitCount":1},{"ruleId":"INDIRECT_PROMPT_INJECT","hitCount":1}]}}