{"profiles":[{"category":"Remediation","description":"Reviewer-ready packet for a code or configuration fix that stops at draft stage.","example_output":{"evidence":["scanner_before","scanner_after","tests","reviewers"],"report_type":"remediation_pr_packet","risk_level":"high","status":"draft"},"format":"markdown+json","id":"remediation-pr-packet","label":"Remediation PR packet","sections":["executive_summary","scope","root_cause","proposed_change","validation","rollback","approvals"],"status":"native"},{"category":"Scanning","description":"Normalized browser-side report for imported SARIF, SBOM, and scanner context that can be copied or exported downstream as JSON.","example_output":{"critical":2,"finding_count":12,"high":5,"recommended_workflows":["dependency","sast","sensitive-data"],"report_type":"scan_findings_bundle","scanner_artifacts":["findings.sarif.json","bom.cdx.json"]},"format":"json","id":"scan-findings-bundle","label":"Scan findings bundle","sections":["metadata","source","summary","findings","severity_counts","recommended_workflows","artifacts"],"status":"native"},{"category":"Operational handoff","description":"Compact summary optimized for Jira, GitHub Issues, ServiceNow, Linear, or GitLab.","example_output":{"destination":"jira","priority":"high","report_type":"ticket_ready_brief"},"format":"markdown","id":"ticket-ready-brief","label":"Ticket-ready brief","sections":["title","impact","scope","actions","owner_notes","links"],"status":"native"},{"category":"Reporting","description":"Short-form leadership update for weekly risk review or board prep.","example_output":{"decision_needed":"approve_connector_review","report_type":"exec_risk_brief","top_risk_theme":"agentic_api_exposure"},"format":"markdown+json","id":"exec-risk-brief","label":"Executive risk brief","sections":["risk_statement","trend","top_findings","business_impact","next_actions"],"status":"native"},{"category":"Evidence","description":"Evidence-oriented receipt for a browser-run investigation or remediation planning session.","example_output":{"byo_tokens":true,"human_review_required":true,"report_type":"run_receipt","runtime":"browser"},"format":"json","id":"run-receipt","label":"Run receipt","sections":["run_metadata","inputs","decisions","outputs","operator_notes"],"status":"native"},{"category":"Evidence","description":"Grouped browser-local investigation session export with timeline, linked case reference, and handoff guidance.","example_output":{"linked_case_id":"case-dependency-fix-payments-api","record_count":9,"report_type":"investigation_session_packet","session_kind":"agent_run"},"format":"json","id":"investigation-session-packet","label":"Investigation session packet","sections":["investigation_session","session","timeline","linked_case","next_actions"],"status":"native"},{"category":"Governance","description":"Structured approval, hold, or deny pack for new MCP or API integration candidates.","example_output":{"decision":"hold_for_review","report_type":"connector_intake_decision","required_controls":["token_audience_validation","audit_every_tool_call"]},"format":"json","id":"connector-intake-decision","label":"Connector intake decision","sections":["candidate","auth","egress","tool_surface","decision","required_controls"],"status":"native"},{"category":"Incident response","description":"Short-form incident commander brief for XDR, SIEM, and responder escalation workflows.","example_output":{"incident_severity":"high","recommended_escalation":"pagerduty","report_type":"incident_response_brief"},"format":"markdown+json","id":"incident-response-brief","label":"Incident response brief","sections":["incident_summary","triage","impacted_assets","containment","owner_handoff","evidence_links"],"status":"native"},{"category":"Case management","description":"Structured case payload optimized for SOAR and case-management systems that want fields instead of freeform prose.","example_output":{"case_template":"cloud_exposure","destination":"xsoar","report_type":"case_management_packet"},"format":"json","id":"case-management-packet","label":"Case management packet","sections":["title","severity","scope","tasks","entities","references","custom_fields"],"status":"native"},{"category":"Telemetry","description":"Normalized telemetry envelope for SIEM, webhook, and downstream analytics ingestion paths.","example_output":{"destination":"splunk","event_count":1,"report_type":"siem_forwarding_envelope"},"format":"json","id":"siem-forwarding-envelope","label":"SIEM forwarding envelope","sections":["metadata","routing","summary","findings","entities","observables","artifacts"],"status":"native"}]}