{
  "tool_id": "art-09-dora-incident-classifier",
  "mcp_name": "classify_dora_incident",
  "policy_parameters": {
    "incident_type": "cyber_attack",
    "entity_type": "credit_institution",
    "detection_dt": "2026-06-19T08:00:00.000Z",
    "classification_dt": "2026-06-19T09:00:00.000Z",
    "resolution_dt": null,
    "clients_affected": 50000,
    "total_clients": 200000,
    "tx_value_eur": 15,
    "outage_duration_mins": 45,
    "member_states": 3,
    "data_loss": true,
    "critical_fn": true,
    "cross_border": true,
    "tp_ict": false
  },
  "_fixture_note": "criteria_detail.value fields use toLocaleString() and are locale-sensitive; they are omitted from expected_output_payload. The hash test (--update) pins the full output including locale-specific strings from the pinning environment.",
  "expected_output_payload": {
    "major_incident": true,
    "determination_code": "MAJOR",
    "qualifying_criteria": [
      "critical_fn",
      "clients",
      "data_loss",
      "tx_value",
      "geographic"
    ],
    "reporting_clock": {
      "detection_datetime": "2026-06-19T08:00:00.000Z",
      "classification_datetime": "2026-06-19T09:00:00.000Z",
      "initial_notification_deadline": "2026-06-19T13:00:00.000Z",
      "intermediate_report_deadline": "2026-06-22T13:00:00.000Z",
      "final_report_deadline": null
    },
    "entity_type": "credit_institution",
    "incident_type": "cyber_attack",
    "cross_border": true,
    "third_party_ict": false,
    "competent_authority_note": "Report to your national competent authority (NCA) per DORA Art. 19. Cross-border incidents require coordination per Art. 19(6).",
    "regulatory_framework": "DORA (EU) 2022/2554 Art. 23 · ESA Joint RTS EBA/RTS/2023/11 (published January 2025)"
  },
  "expected_execution_hash": "sha256:676c7262a67fa7c19760393508f8555d4c35a2e684b7cb1b07e8142c409b7e97"
}
