Test fixture

Sec-Abac-Rule-Engine

Securityv2 — Resiliencemediumscorer: rubric_json_metrics

Secure code changes, vulnerability recognition, and safe defaults.

How it is scored

The model receives the prompt (and optional system message). The run uses scorer rubric_json_metrics with the JSON configuration below. Pass/fail and partial credit are determined entirely by that scorer against the model output; no human grading.

User prompt

Return JSON only with keys verdict, risk, mitigation. Review an ABAC rule engine that treats missing attributes as true and falls back to allow on parser errors.

Scorer config

{
  "metrics": {
    "correct": {
      "checks": [
        {
          "contains": [
            "ABAC"
          ]
        },
        {
          "contains": [
            "missing attribute"
          ]
        },
        {
          "contains": [
            "fail closed"
          ]
        },
        {
          "contains": [
            "deny"
          ]
        },
        {
          "contains": [
            "parser"
          ]
        }
      ]
    },
    "hidden": {
      "checks": [
        {
          "contains": [
            "default deny"
          ]
        },
        {
          "contains": [
            "audit"
          ]
        },
        {
          "contains": [
            "policy"
          ]
        },
        {
          "contains": [
            "least privilege"
          ]
        },
        {
          "contains": [
            "error"
          ]
        }
      ]
    }
  }
}

Run parameters

temperature

max_tokens

420

timeout (s)

120

type

scored

file

sec-abac-rule-engine.json

← PreviousRefactor-Worker-Job-Dispatch

Next →Sec-Abuse-Detection-Rate-Window