fix(quality): Ruff/CVE/TS-Fixes, 104 neue Tests, Complexity-Refactoring

- Ruff: 144 auto-fixes (unused imports, == None → is None), F821/F811/F841 manuell
- CVEs: python-multipart>=0.0.22, weasyprint>=68.0, pillow>=12.1.1, npm audit fix (0 vulns)
- TS: 5 tote Drafting-Engine-Dateien entfernt, allowed-facts/sanitizer/StepHeader/context fixes
- Tests: +104 (ISMS 58, Evidence 18, VVT 14, Generation 14) → 1449 passed
- Refactoring: collect_ci_evidence (F→A), row_to_response (E→A), extract_requirements (E→A)
- Dead Code: pca-platform, 7 Go-Handler, dsr_api.py, duplicate Schemas entfernt

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

backend-compliance/compliance/services/ai_compliance_assistant.py

@@ -11,11 +11,11 @@ Provides AI-powered features for:
 import json
 import logging
 import re
-from dataclasses import dataclass, field
+from dataclasses import dataclass
 from typing import List, Optional, Dict, Any
 from enum import Enum
 
-from .llm_provider import LLMProvider, get_shared_provider, LLMResponse
+from .llm_provider import LLMProvider, get_shared_provider
 from .rag_client import get_rag_client
 
 logger = logging.getLogger(__name__)

backend-compliance/compliance/services/audit_pdf_generator.py

@@ -18,27 +18,23 @@ import io
 import logging
 from datetime import datetime
 from typing import Dict, List, Any, Optional, Tuple
-from uuid import uuid4
-import hashlib
 
-from sqlalchemy.orm import Session, selectinload
+from sqlalchemy.orm import Session
 
 from reportlab.lib import colors
 from reportlab.lib.pagesizes import A4
 from reportlab.lib.styles import getSampleStyleSheet, ParagraphStyle
-from reportlab.lib.units import mm, cm
-from reportlab.lib.enums import TA_CENTER, TA_LEFT, TA_RIGHT, TA_JUSTIFY
+from reportlab.lib.units import mm
+from reportlab.lib.enums import TA_CENTER, TA_JUSTIFY
 from reportlab.platypus import (
     SimpleDocTemplate, Paragraph, Spacer, Table, TableStyle,
-    PageBreak, Image, ListFlowable, ListItem, KeepTogether,
-    HRFlowable
+    PageBreak, HRFlowable
 )
-from reportlab.graphics.shapes import Drawing, Rect, String
+from reportlab.graphics.shapes import Drawing
 from reportlab.graphics.charts.piecharts import Pie
 
 from ..db.models import (
-    AuditSessionDB, AuditSignOffDB, AuditResultEnum, AuditSessionStatusEnum,
-    RequirementDB, RegulationDB
+    AuditSessionDB, AuditSignOffDB, AuditResultEnum, RequirementDB, RegulationDB
 )
 
 logger = logging.getLogger(__name__)

backend-compliance/compliance/services/auto_risk_updater.py

@@ -12,7 +12,7 @@ Sprint 6: CI/CD Evidence Collection (2026-01-18)
 
 import logging
 from datetime import datetime
-from typing import Dict, List, Optional, Any
+from typing import Dict, List, Optional
 from dataclasses import dataclass
 from enum import Enum
 
@@ -21,7 +21,7 @@ from sqlalchemy.orm import Session
 from ..db.models import (
     ControlDB, ControlStatusEnum,
     EvidenceDB, EvidenceStatusEnum,
-    RiskDB, RiskLevelEnum,
+    RiskDB,
 )
 from ..db.repository import ControlRepository, EvidenceRepository, RiskRepository
 

backend-compliance/compliance/services/export_generator.py

@@ -189,7 +189,7 @@ class AuditExportGenerator:
         self, output_dir: Path, included_regulations: Optional[List[str]]
     ) -> None:
         """Export regulations to JSON files."""
-        query = self.db.query(RegulationDB).filter(RegulationDB.is_active == True)
+        query = self.db.query(RegulationDB).filter(RegulationDB.is_active)
         if included_regulations:
             query = query.filter(RegulationDB.code.in_(included_regulations))
 
@@ -557,7 +557,7 @@ Generiert am: """ + datetime.now().strftime("%Y-%m-%d %H:%M:%S")
     ) -> Dict[str, Any]:
         """Calculate compliance statistics."""
         # Count regulations
-        reg_query = self.db.query(RegulationDB).filter(RegulationDB.is_active == True)
+        reg_query = self.db.query(RegulationDB).filter(RegulationDB.is_active)
         if included_regulations:
             reg_query = reg_query.filter(RegulationDB.code.in_(included_regulations))
         total_regulations = reg_query.count()

backend-compliance/compliance/services/llm_provider.py

@@ -26,7 +26,7 @@ import asyncio
 import logging
 from abc import ABC, abstractmethod
 from typing import List, Optional, Dict, Any
-from dataclasses import dataclass, field
+from dataclasses import dataclass
 from enum import Enum
 
 import httpx

backend-compliance/compliance/services/regulation_scraper.py

@@ -11,11 +11,9 @@ Similar pattern to edu-search and zeugnisse-crawler.
 
 import logging
 import re
-import asyncio
 from datetime import datetime
 from typing import Dict, List, Any, Optional
 from enum import Enum
-import hashlib
 
 import httpx
 from bs4 import BeautifulSoup

backend-compliance/compliance/services/report_generator.py

@@ -19,16 +19,11 @@ from sqlalchemy.orm import Session
 from sqlalchemy import func
 
 from ..db.models import (
-    RegulationDB,
     RequirementDB,
     ControlDB,
     ControlMappingDB,
-    EvidenceDB,
-    RiskDB,
-    AuditExportDB,
     ControlStatusEnum,
     RiskLevelEnum,
-    EvidenceStatusEnum,
 )
 from ..db.repository import (
     RegulationRepository,
@@ -171,7 +166,6 @@ class ComplianceReportGenerator:
 
         # Control status findings
         by_status = ctrl_stats.get("by_status", {})
-        passed = by_status.get("pass", 0)
         failed = by_status.get("fail", 0)
         planned = by_status.get("planned", 0)
 
@@ -200,10 +194,8 @@ class ComplianceReportGenerator:
         """Generate compliance score section with breakdown."""
         stats = self.ctrl_repo.get_statistics()
 
-        by_domain = stats.get("by_domain", {})
-        domain_scores = {}
-
         controls = self.ctrl_repo.get_all()
+        domain_scores = {}
         domain_stats = {}
 
         for ctrl in controls:

backend-compliance/compliance/services/seeder.py

@@ -5,8 +5,7 @@ Seeds the database with initial regulations, controls, and requirements.
 """
 
 import logging
-from typing import Dict, List, Optional
-from datetime import datetime
+from typing import Dict
 
 from sqlalchemy.orm import Session
 
@@ -23,7 +22,6 @@ from ..db.models import (
     ControlTypeEnum,
     ControlDomainEnum,
     ControlStatusEnum,
-    RiskLevelEnum,
     ServiceTypeEnum,
     RelevanceLevelEnum,
 )