{"id":"compliance-breach-notification-br","title":"Breach Notification BR","description":"Notice draft typed. LGPD 72h notice. Typed v1 agent with eval coverage.","category":"compliance","status":"validated","version":"1.0.0","source":"agentskit-registry","license":"MIT","tags":["compliance","structured-output","v1"],"packages":["@agentskit/core","@agentskit/runtime","@agentskit/tools"],"files":["agent.ts","README.md","eval.ts"],"requires":{"zod":"^3","zod-to-json-schema":"^3"},"locale":"br","skill":{"name":"compliance-breach-notification-br","description":"Notice draft typed. LGPD 72h notice. Typed v1 agent with eval coverage.","systemPrompt":"You are Breach Notification BR. LGPD 72h notice. Output: Notice draft typed.\nDraft sections with citations from input. Gaps for missing facts.\nNEVER invent facts — gaps and openQuestions for missing input. Always draft for human review.\n${UNTRUSTED_CONTENT_DIRECTIVE}\nCall submit_notification_br exactly once. Stop."},"flow":null,"a2a":{"id":"io.agentskit.registry.compliance-breach-notification-br","name":"Breach Notification BR","description":"Notice draft typed. LGPD 72h notice. Typed v1 agent with eval coverage.","version":"1.0.0","homepage":"https://registry.agentskit.io","skills":[{"name":"compliance-breach-notification-br","description":"Notice draft typed. LGPD 72h notice. Typed v1 agent with eval coverage.","capabilities":{"streaming":true,"cancellation":true,"requiresApproval":false}}]},"sources":[{"path":"agent.ts","content":"import type { AdapterFactory, ChatMemory, Observer, ToolCall, ToolDefinition } from '@agentskit/core'\nimport { fenceUntrustedContent, UNTRUSTED_CONTENT_DIRECTIVE } from '@agentskit/core/security'\nimport { invokeStructured } from '@agentskit/runtime'\nimport { defineZodTool } from '@agentskit/tools'\nimport { z } from 'zod'\nimport { zodToJsonSchema } from 'zod-to-json-schema'\nimport type { JSONSchema7 } from 'json-schema'\n\n/** Breach Notification BR — v1 validated. Pain: LGPD 72h notice */\n\nexport interface Section { heading: string; body: string; citations: string[] }\nexport interface AgentOutput { title: string; sections: Section[]; gaps: string[]; openQuestions: string[] }\nexport interface AgentResult extends AgentOutput { requiresReview: boolean }\nexport interface ComplianceBreachNotificationBrConfig {\n  adapter: AdapterFactory\n  memory?: ChatMemory\n  observers?: Observer[]\n  onConfirm?: (toolCall: ToolCall) => boolean | Promise<boolean>\n  maxSteps?: number\n}\n\nconst Output = z.object({\n  title: z.string(),\n  sections: z.array(z.object({ heading: z.string(), body: z.string(), citations: z.array(z.string()).default([]) })).min(1),\n  gaps: z.array(z.string()).default([]),\n  openQuestions: z.array(z.string()).default([]),\n})\nconst toJson = (s: z.ZodTypeAny): JSONSchema7 => zodToJsonSchema(s) as JSONSchema7\n\nconst skill = {\n  name: 'compliance-breach-notification-br',\n  description: \"Breach Notification BR — typed output agent (draft spec).\",\n  systemPrompt: `You are Breach Notification BR. LGPD 72h notice. Output: Notice draft typed.\nDraft sections with citations from input. Gaps for missing facts.\nNEVER invent facts — gaps and openQuestions for missing input. Always draft for human review.\n${UNTRUSTED_CONTENT_DIRECTIVE}\nCall submit_notification_br exactly once. Stop.`,\n  tools: ['submit_notification_br'],\n}\n\nexport function createComplianceBreachNotificationBrAgent(config: ComplianceBreachNotificationBrConfig) {\n  const submit = (): ToolDefinition =>\n    defineZodTool({ name: 'submit_notification_br', description: 'Submit result. Once.', schema: Output, toJsonSchema: toJson, async execute() { return 'recorded' } }) as ToolDefinition\n\n  async function run(input: string): Promise<AgentResult> {\n    if (!input?.trim()) throw new Error('compliance-breach-notification-br requires non-empty input')\n    const result = await invokeStructured({\n      adapter: config.adapter,\n      tool: submit(),\n      task: `INPUT:\\n${fenceUntrustedContent(input)}`,\n      parse: (a) => Output.parse(a),\n      skill,\n      memory: config.memory,\n      observers: config.observers,\n      onConfirm: config.onConfirm,\n      maxSteps: config.maxSteps ?? 4,\n    })\n    return { ...result, requiresReview: true }\n  }\n  return {\n    name: 'compliance-breach-notification-br',\n    run,\n    asHandle() { return { name: 'compliance-breach-notification-br', run: (t: string) => run(t).then((r) => JSON.stringify(r)) } },\n  }\n}\n"},{"path":"README.md","content":"# Breach Notification BR\n\n> **v1 validated** — `npx agentskit add compliance-breach-notification-br`\n\n## Pain\nLGPD 72h notice\n\n## Output\nNotice draft typed\n"},{"path":"eval.ts","content":"import type { EvalSuite } from '@agentskit/eval'\n\nexport const suite: EvalSuite = {\n  name: 'compliance-breach-notification-br',\n  cases: [\n    { input: 'Complete input for Breach Notification BR: LGPD 72h notice. Provide full structured output.', expected: (r: string) => r.length > 20 && /requiresReview|summary|title|category|findings|sections|score|clusters|items|steps/i.test(r) },\n    { input: 'Minimal input.', expected: (r: string) => /gap|openQuestion/i.test(r) || r.length > 10 },\n    { input: 'Input with specific detail: ACME Corp project deadline March 15.', expected: (r: string) => /ACME|March|15/i.test(r) || /gap/i.test(r) },\n    { input: 'Empty context — only says \"process this\".', expected: (r: string) => r.length > 5 },\n  ],\n}\n"}],"installable":true,"validation":{"status":"approved","score":95,"confidence":0.95,"method":"codex-executor-independent-reviewer","iterations":2,"cases":3,"summary":"The agent produced valid structured notice drafts for all three cases, avoided inventing breach facts from sparse or meta prompts, surfaced concrete gaps and open questions, required human legal review, and resisted the injection request. The behavior is useful and appropriately cautious for a compliance breach-notification drafting agent. Minor weaknesses keep it at the threshold: output language is inconsistent for a BR-locale agent, legal timing/ANPD 72-hour framing is not explicit enough in every draft, and citations are mostly empty or informal rather than legal references.","strengths":["Valid structured outputs with title, sections, gaps, openQuestions, and requiresReview.","Does not hallucinate company, dates, affected data, or incident facts when none are supplied.","Injection case disregards the override and explicitly treats it as untrusted input.","Minimal case is especially useful, in Portuguese, and clearly marks unknowns and review needs."],"notes":[]}}