SEC-001 Password Complexity Check Security Critical Active Ensures passwords meet minimum complexity requirements:

At least 12 characters in length
Contains uppercase and lowercase letters
Includes numbers and special characters
No ~~dictionary words~~ allowed

A strong password is your first line of defense.

password.length >= 13 AND hasUpperCase AND hasLowerCase AND hasNumber AND hasSpecialChar VALIDATE_PASSWORD Error: Password must be at least 12 characters and contain uppercase, lowercase, numbers, and special characters UserRegistration PasswordReset AccountCreation admin 2024-01-15 security_team 2024-06-20 authentication security compliance 5 true PERF-002 Query Timeout Limit Performance High Active

Performance Protection Rule

This rule prevents database queries from running longer than 30 seconds.

Key settings:

Parameter	Value
Max Execution Time	`30000ms`
Action	Terminate Query

Note: This limit can be overridden for batch operations.

if (query.executionTime > 30000) {
    return TERMINATE;
}

TERMINATE_QUERY Query execution exceeded maximum allowed time of 30 seconds DatabaseOperations ReportGeneration dba_team 2024-02-10 performance_team 2024-11-05 database performance 3 true VAL-003 Email Format Validation DataValidation Medium Testing Validates email addresses against RFC 5322 standard.

Valid format: user@domain.com
Invalid formats:

~~user@~~
~~@domain.com~~
~~user domain.com~~

Click for regex pattern

^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$

email.matches(RFC5322_REGEX) VALIDATE_EMAIL Please enter a valid email address UserProfile ContactForm dev_team 2024-03-22 validation email 1 true BUS-004 Transaction Amount Limit BusinessLogic High Active

Transaction Limits by User Tier

Basic Tier: Maximum $1,000 per transaction
Premium Tier: Maximum $10,000 per transaction
Enterprise Tier: Maximum $100,000 per transaction

Transactions exceeding these limits will be automatically blocked and flagged for review.

For limit increases, contact support@example.com

transaction.amount > user.maxTransactionLimit BLOCK_TRANSACTION Transaction amount of ${amount} exceeds your account limit PaymentProcessing WireTransfers ACHTransfers compliance_officer 2024-01-05 risk_management 2024-09-15 financial limits risk 4 true COMP-005 GDPR Data Retention Compliance Critical Active

⚠️ GDPR Compliance Rule

Personal data retention must comply with GDPR Article 5(1)(e).

"Personal data shall be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed."

Maximum retention periods:

Customer Data: 2 years after account closure
Employee Data: 7 years after employment ends
Marketing Data: 1 year after last interaction

Reference: GDPR Regulation (EU) 2016/679

data.retentionPeriod > 730 AND data.type == 'PERSONAL' FLAG_FOR_DELETION ⚠️ Warning: Personal data retention period exceeded GDPR requirements DataManagement UserRecords legal_team 2024-05-25 GDPR privacy compliance 5 false ACC-006 Multi-Factor Authentication Required UserAccess High Active

MFA is mandatory for privileged accounts.

Press Ctrl + Alt + M to open MFA settings.

Supported methods:

📱 SMS verification
📧 Email OTP
🔐 Authenticator app
🔑 Hardware token

Formula: security_score = password_strength × mfa_enabled²

user.role IN ('admin', 'finance', 'hr') AND !session.hasMFA REQUIRE_MFA 🔒 Security Alert: Multi-factor authentication is required for this operation AdminPanel FinancialReports EmployeeData security_team 2024-04-10 ciso 2024-12-01 security authentication MFA 4 true SEC-007 SQL Injection Prevention Security Critical Active

🛡️ Critical Security Rule

This rule detects and blocks potential SQL injection attempts.

Common injection patterns blocked:

SELECT * FROM users WHERE id = '1' OR '1'='1'
DROP TABLE users; --
UNION SELECT * FROM passwords

Protection includes:

Input validation - All inputs sanitized
Parameterized queries - No direct concatenation
Escape sequences - Special characters handled

Updated: Now includes NoSQL injection prevention

if (detectSQLInjection(input)) { return BLOCK; } BLOCK_REQUEST ⛔ SECURITY VIOLATION: Potentially malicious input detected and blocked APIEndpoints SearchFunctions security_team 2024-01-20 security injection SQL 5 true PERF-008 API Rate Limiting Performance Medium Deprecated

~~This rule has been deprecated~~ in favor of the new adaptive rate limiting system.

Previous limits were:

Tier	Requests/Hour	Burst Limit
Free	100	10
Pro	1,000	50
Enterprise	10,000	500

For questions, contact:
API Team
api-support@example.com

Deprecated on December 31, 2024 user.apiCalls > 1000 AND timeWindow == '1hour' THROTTLE_REQUESTS API rate limit exceeded. Please try again later PublicAPI api_team 2024-02-28 API rate-limiting 2 true