updated get top risks prompt

2025-09-29 14:07:15 +02:00
parent 98f5801bad
commit d2ff9690a1
14 changed files with 202 additions and 32 deletions
--- a/backend/core/tests/test_utils.py
+++ b/backend/core/tests/test_utils.py
@@ -22,7 +22,6 @@ class UtilsTests(TestCase):
            compliance_frameworks=["Ab", "Ba"],
            industry_sector="Technology",
            it_dependency=8,
-            data_sensitivity="High",
            network_infrastructure="Cloud-based",
            remote_workforce_percentage="50%",
            third_party_vendor_access="10-20",
@@ -65,11 +64,16 @@ class UtilsTests(TestCase):
        mock_client = MagicMock()
        mock_openai.return_value = mock_client
        mock_response = MagicMock()
-        mock_response.choices[0].message.content = "1,2,3"
+        mock_response.choices[0].message.content = (
+            "1. **Risk ID 1 (Privacy Regulation Violation)**: Critical because the company's operations are governed by NIS2 regulations, and any data breach could lead to severe financial penalties and reputational damage.\n"
+            "2. **Risk ID 2 (Third Party Code Compromise)**: This risk is critical given the company's reliance on more than five third-party vendors, which increases the potential for system compromises and data breaches through external partnerships.\n"
+            "3. **Risk ID 3 (Misconfigured Cloud Services)**: Critical due to the company's hybrid IT infrastructure, which may lead to increased data exposure if cloud services are not properly configured, impacting compliance and customer trust.\n"
+        )
        mock_client.chat.completions.create.return_value = mock_response

        risks = get_top_risk(self.organization)
-        self.assertEqual(risks, [1,2,3])
+        top_risk_ids = [r['risk_id'] for r in risks]
+        self.assertEqual(top_risk_ids, [1, 2, 3])

    @patch('backend.core.utils.OpenAI')
    def test_get_controls_for_risk(self, mock_openai):