diff --git a/docs/business-intelligence/governance-bi-tools.md b/docs/business-intelligence/governance-bi-tools.md index 9add8e88..fa3fed41 100644 --- a/docs/business-intelligence/governance-bi-tools.md +++ b/docs/business-intelligence/governance-bi-tools.md @@ -73,7 +73,7 @@ The framework automatically classifies every governance decision by: - **Data Sensitivity**: Public → Internal → Confidential → Restricted - **Reversibility**: Easy → Moderate → Difficult -**Implementation**: `activity-classifier.util.js` applies deterministic rules based on file paths, action metadata, and service patterns. +**Implementation**: The activity classifier applies deterministic rules based on file paths, action metadata, and service patterns. **Accuracy**: Classification logic is heuristic-based. Requires validation with real organizational data. @@ -382,7 +382,7 @@ Cost = BaseCost(Severity) × **For Organizations Piloting BI Tools**: -1. **Dashboard Access** (`/admin/audit-analytics.html`) +1. **Administrative Dashboard** - Summary metrics (Total Actions, Allowed, Blocked, Violations) - Cost Avoidance Calculator (with custom cost model) - Framework Maturity Score @@ -391,19 +391,21 @@ Cost = BaseCost(Severity) × - Enterprise Scaling Projections - Future Research Roadmap -2. **API Endpoints**: - - `GET /api/admin/audit-logs` - Raw audit data - - `GET /api/admin/audit-analytics` - Computed metrics - - `GET /api/admin/cost-config` - Current cost factors - - `POST /api/admin/cost-config` - Update cost model +2. **Data Access Layer**: + - Authenticated API for retrieving audit data + - Computed analytics and metrics endpoints + - Cost model configuration interface + - Role-based access controls (admin-only) -3. **Activity Classifier** (`src/utils/activity-classifier.util.js`) +3. **Activity Classification System**: - Automatic governance decision classification - Business impact scoring (0-100 points) + - Risk level assessment -4. **Enhanced Hook Validators**: - - `validate-file-edit.js` - Logs activity context to MongoDB +4. **Enforcement Integration**: + - Enhanced hook validators with business intelligence logging - Captures: activity type, risk level, stakeholder impact, business impact + - MongoDB-backed audit trail ### 5.2 Trial Deployment Checklist @@ -448,7 +450,7 @@ Organizations may need to customize file path patterns for their codebase struct Example: If client-facing code is in `app/client/` instead of `public/`: ```javascript -// In activity-classifier.util.js +// In activity classifier configuration if (filePath.includes('app/client/') && !filePath.includes('admin/')) { activityType = ACTIVITY_TYPES.CLIENT_COMMUNICATION; // ... @@ -595,9 +597,9 @@ The Governance Business Intelligence tools represent a **novel approach to quant ``` File Edit Action ↓ -Hook Validator (validate-file-edit.js) +Hook Validator ↓ -Activity Classifier (activity-classifier.util.js) +Activity Classifier → Classifies: Type, Risk, Impact, Sensitivity ↓ Business Impact Calculator @@ -606,10 +608,10 @@ Business Impact Calculator MongoDB Audit Log → Stores: Classification + Impact + Violations ↓ -Analytics Controller (audit.controller.js) +Analytics Controller → Aggregates: Cost avoided, Maturity score, Team comparison ↓ -Dashboard UI (audit-analytics.html) +Administrative Dashboard → Displays: ROI metrics for executives ```