[SESSION_127] SecurityAgent: Implement Weighted Threat Scoring (Phase 23)
Resolved ๐ฌ 2 comments Opened Nov 20, 2025 by ragdm Closed Nov 29, 2025
Feature: Weighted Threat Scoring Algorithm
Component: SecurityAgent (/agents/security_agent/)
Severity: ๐ด CRITICAL BLOCKER
Session: SESSION 127 (Definition of Done)
Current Status: Returns hardcoded threat level 'low'
Target Phase: Phase 23
Context
SecurityAgent's core functionality is threat detection through weighted signal correlation. Currently, all threat analyses return hardcoded 'low' severity, making the entire threat detection system ineffective.
Requirements
Threat Scoring Signals (5 signals, configurable weights):
- Loitering duration (20% weight)
- Cross-camera movement (25% weight)
- Temporal anomalies (20% weight)
- Behavioral patterns (20% weight)
- Environmental context (15% weight)
Severity Levels:
low: Single signal exceeds thresholdmedium: Multiple signals triggeredhigh: Persistent patterncritical: Armed zone breach indicators
Impact
Without this feature:
- Cannot distinguish threat levels
- Defeats entire threat detection system
- No meaningful security incidents generated
Effort Estimate
- Signal computation: 6-8 hours
- Weighting algorithm: 2-3 hours
- Testing & calibration: 2-3 hours
- Total: 8-10 hours
---
Generated by SESSION 127 FASE 2.7
This issue has 2 comments on GitHub. Read the full discussion on GitHub โ