naftiko: 1.0.0-alpha2
info:
  label: Logz.io Security Rules
  description: 'Logz.io Security Rules business capability. Self-contained Naftiko capability covering one Logz.io API surface
    on the api.logz.io control plane.'
  tags:
  - Logz.io
  - Security
  - SIEM
  created: '2026-05-25'
  modified: '2026-05-25'
binds:
- namespace: env
  keys:
    LOGZIO_API_TOKEN: LOGZIO_API_TOKEN
    LOGZIO_API_BASE: LOGZIO_API_BASE
capability:
  consumes:
  - type: http
    namespace: security-rules
    baseUri: '{{env.LOGZIO_API_BASE}}'
    description: Manage Cloud SIEM detection rules.
    resources:
    - name: security-rules-resource
      path: /v2/security/rules
      operations:
      - name: get
        method: GET
        description: Retrieve Security Rules resources.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
    authentication:
      type: apikey
      key: X-API-TOKEN
      value: '{{env.LOGZIO_API_TOKEN}}'
      placement: header
  exposes:
  - type: rest
    namespace: security-rules-rest
    port: 8080
    description: REST adapter for Logz.io Security Rules.
    resources:
    - path: /v2/security/rules
      name: security-rules-resource
      description: REST surface for Logz.io Security Rules.
      operations:
      - method: GET
        name: get
        description: Retrieve Security Rules resources.
        call: security-rules.get
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: security-rules-mcp
    port: 9090
    transport: http
    description: MCP adapter for Logz.io Security Rules.
    tools:
    - name: logzio-security-rules-get
      description: Retrieve Logz.io Security Rules resources.
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: security-rules.get
      outputParameters:
      - type: object
        mapping: $.