Skip to content

Patterns

Patterns is the central feed of clustered findings on the Briefing. It occupies the right-side column you read top to bottom when you sign in. Findings and risk model defines the taxonomy; the Findings by dimension tile shows the count rollup; Patterns is the narrative form. Each row describes one repeated, named behaviour AI Hypervisor saw across many sessions, with enough context to decide whether to act.

A Patterns row reads like:

Huge โ€” Unauthenticated API call on ai-hypervisor-demo (6,239 sessions) โ€” ai-hypervisor-demo โ†’ shadow-ai.svc.cluster.local โ€” PII redaction

first seen 16h ago

Scan the column from the top to triage the day. Each row links into the underlying session waterfall, the affected entity, or a follow-up action.

What a pattern is

A pattern is a cluster of similar findings. The clustering engine groups calls that share a destination, a detector signal, a user attribution path, or a verdict shape into one row. Each pattern carries:

  • A severity tag (huge, high, medium, low) reflecting the scale (sessions affected) or the criticality of the underlying finding.

  • A description in plain language: the short story of what is happening.

  • A session count: how many distinct sessions the pattern appeared in.

  • The entities involved: source application, destination host, model provider, MCP server, data class.

  • A first-seen timestamp.

  • Per-row actions: a History drawer with every contributing session, and (for actionable patterns) a Draft policy chip that pre-fills an Enforcement proposal.

Pattern types

Patterns fall into a handful of recurring kinds:

  • Shadow exposure. <app> is exposing <host>, an AI-shaped API endpoint not in your Registry. Drills into Shadow AI.

  • Unauthenticated call. Identity or auth missing on a service-to-service or browser-to-service flow.

  • PII redaction. Repeated PII detections on the same flow; useful for sizing how often a redaction rule fires.

  • Unsanctioned model in use. A workload is calling an LLM provider or model that is not in the Sanctioned baseline in Registry.

  • Behavior-cert drift. An agent is performing actions outside its signed Behavior Cert.

  • Tool misuse. An MCP tool is invoked with parameters that violate its declared scope.

How to use Patterns

The Patterns column is a triage queue. Read it top to bottom. For each row, pick one of:

  • Investigate. Open the row's session history, or pin the pattern in Debugger for follow-up.

  • Promote or sanction. If the pattern shows something legitimate that was not declared, fix the inventory in Registry.

  • Draft an enforcement rule. If the pattern should be prevented, the row seeds a proposal for the inline enforcement rule set โ€” see Enforcement. Requires the Policies surface to be enabled for your tenant.

  • Dismiss. False positive or accepted risk. The pattern collapses without losing the underlying audit record.

Cross-references

From Patterns You land in
Pattern โ†’ session history User Tracks, filtered to the pattern's sessions
Pattern โ†’ affected entity Registry, entity detail
Pattern โ†’ investigate Debugger, pattern pre-pinned
Pattern โ†’ draft enforcement rule Enforcement, inline rule set
Pattern โ†’ shadow exposure Shadow AI, source signal