Design notes

• Enhanced ruleset configuration allows multiple instances of the same rule type within a single ruleset. This enables progressive enforcement strategies (e.g., early warning alerts at threshold 1, stronger actions at threshold 3).
• Rules of the same type are visually grouped with a group header showing the rule type name and instance count badge. Each instance is displayed in a separate card with a subtle background to distinguish it from other instances.
• Each rule instance operates independently with its own threshold, violation count/minutes, and actions. The rule type dropdown allows selecting the same type multiple times without restriction.
• When multiple rule instances of the same type are triggered, all qualifying actions fire independently. The system does not attempt to prioritise or deduplicate actions—this places responsibility with the Resident to configure meaningful thresholds.
• All existing functionality is preserved: add rule, edit rule, delete rule, save (creates version), and version history with compare/restore capabilities. Version comparisons show threshold information to help distinguish between instances of the same type.
• Sample data demonstrates progressive enforcement: two IP Country Mismatch rules with different thresholds (threshold 1 with Slack alert only, threshold 3 with Slack alert and session termination).