Benjamin_Boenisch/breakpilot-compliance
1
1
Fork 0
Code Issues 24 Pull Requests Actions Packages Projects Releases Wiki Activity
1,330 Commits 12 Branches 1 Tag
0f443b6a9c35a0655ce373ab30d7eb2ba3b99e10
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Benjamin Admin 0f443b6a9c fix(iace): roadmap group B — citation/license/tier cleanup 
C1: drop the misleading OSHA §1910.212(a)(5) fan-guard citation from M602
    (overhead lift clearance) — EN 349 + EN ISO 13854 already cover it.
C2: frame M237's 25/500 mm as Richtwerte to be determined per EN ISO 13854
    (single factual values in prose are facts, not table reproduction — but
    keep the conservative caveat).
C3: keep ergonomic W=2 deliberately and document why — ESAW ranks it the most
    frequent non-fatal mode (24.7%) but that population doesn't transfer to an
    acute machine point-hazard; the machine GT governs.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-06-11 15:21:25 +02:00
.claude
fix(ci): unblock deploy on main — test-go vet, loc-budget, build-sha
2026-06-10 14:17:27 +02:00
.gitea/workflows
fix(ci): unblock deploy on main — test-go vet, loc-budget, build-sha
2026-06-10 14:17:27 +02:00
.woodpecker
admin-compliance
refactor+feat: Snapshot-Router-Split + generischer ChecklistAgent + AGB-Modul
2026-06-11 14:23:29 +02:00
ai-compliance-sdk
fix(iace): roadmap group B — citation/license/tier cleanup
2026-06-11 15:21:25 +02:00
backend-compliance
fix(agb): Gewährleistung erkennt 'bei Mängeln' / '§ N Mängel'-Heading
2026-06-11 14:31:41 +02:00
breakpilot-compliance-sdk
compliance-tts-service
feat(p83): wire BUILD_SHA through all Dockerfiles + compose + CI check
2026-05-22 18:29:03 +02:00
consent-sdk
consent-tester
feat(crawl): Vollstaendigkeit — Shadow-DOM/versteckte Links + Interaktions-Fixpunkt + Wayback-CDX-Orphans
2026-06-09 12:33:34 +02:00
developer-portal
feat(p83): wire BUILD_SHA through all Dockerfiles + compose + CI check
2026-05-22 18:29:03 +02:00
docs-site
feat(p83): wire BUILD_SHA through all Dockerfiles + compose + CI check
2026-05-22 18:29:03 +02:00
docs-src
feat(p83): wire BUILD_SHA through all Dockerfiles + compose + CI check
2026-05-22 18:29:03 +02:00
document-crawler
feat(p83): wire BUILD_SHA through all Dockerfiles + compose + CI check
2026-05-22 18:29:03 +02:00
dsms-gateway
feat(iace): DSMS-CID-Badge im Tech-File-Export + aggregierter Bulk-Diff
2026-06-09 09:07:20 +02:00
dsms-node
feat(p83): wire BUILD_SHA through all Dockerfiles + compose + CI check
2026-05-22 18:29:03 +02:00
scripts
feat(audit): Phase 1 Quick-Wins (P81 + P85 + P70 + P83) + TCF DELETE/INSERT-Fix
2026-05-22 08:24:46 +02:00
zeroclaw
fix(cookie-inventory): fuzzy prefix-match + BMW-GT-File
2026-06-07 21:29:21 +02:00
.env.example
.env.orca.example
chore: replace all Coolify references with Orca
2026-04-19 16:33:56 +02:00
.gitignore
AGENTS.go.md
fix: resolve CI failures in Python tests and admin-compliance build
2026-04-19 16:41:39 +02:00
AGENTS.python.md
fix: resolve CI failures in Python tests and admin-compliance build
2026-04-19 16:41:39 +02:00
AGENTS.typescript.md
docs(agents): require build + lint + test locally before pushing [guardrail-change]
2026-04-19 16:38:21 +02:00
CONTRIBUTING.md
chore: replace all Coolify references with Orca
2026-04-19 16:33:56 +02:00
docker-compose.hetzner.yml
docker-compose.orca.yml
chore: replace all Coolify references with Orca
2026-04-19 16:33:56 +02:00
docker-compose.yml
MC mapping: defensive route + MinIO overridable + iace migration 151 (#27)
2026-06-10 11:54:48 +00:00
mkdocs.yml
docs: add Pass 0b cost benchmark — v3 vs v4 vs backfill vs Mac Mini
2026-04-27 16:00:11 +02:00
README.md
chore: replace all Coolify references with Orca
2026-04-19 16:33:56 +02:00
REFACTOR_PLAYBOOK.md

README.md

breakpilot-compliance

DSGVO/AI-Act compliance platform — 10 services, Go · Python · TypeScript

CI Go Python Node.js TypeScript FastAPI DSGVO AI Act LOC guard Services

Overview

breakpilot-compliance is a multi-tenant DSGVO/EU AI Act compliance platform that provides an SDK for consent management, data subject requests (DSR), audit logging, iACE impact assessments, and document archival. It ships as 10 containerised services covering an admin dashboard, a developer portal, a Python/FastAPI backend, a Go AI compliance engine, TTS, and a decentralised document store on IPFS. Every service is deployed automatically via Gitea Actions → Orca on every push to main.

Architecture

Service Tech Port Container
admin-compliance Next.js 15 3007 bp-compliance-admin
backend-compliance Python / FastAPI 0.123 8002 bp-compliance-backend
ai-compliance-sdk Go 1.24 / Gin 8093 bp-compliance-ai-sdk
developer-portal Next.js 15 3006 bp-compliance-developer-portal
breakpilot-compliance-sdk TypeScript SDK (React/Vue/Angular/vanilla)
consent-sdk JS/TS Consent SDK
compliance-tts-service Python / Piper TTS 8095 bp-compliance-tts
document-crawler Python / FastAPI 8098 bp-compliance-document-crawler
dsms-gateway Python / FastAPI / IPFS 8082 bp-compliance-dsms-gateway
dsms-node IPFS Kubo v0.24.0 bp-compliance-dsms-node

All containers share the external breakpilot-network Docker network and depend on breakpilot-core (Valkey, Vault, RAG service, Nginx reverse proxy).

Quick Start

Prerequisites: Docker, Go 1.24+, Python 3.12+, Node.js 20+

git clone ssh://git@gitea.meghsakha.com:22222/Benjamin_Boenisch/breakpilot-compliance.git
cd breakpilot-compliance

# Copy and populate secrets (never commit .env)
cp .env.example .env

# Start all services
docker compose up -d

For the Orca/Hetzner production target (x86_64), use the override:

docker compose -f docker-compose.yml -f docker-compose.hetzner.yml up -d

Development Workflow

Use feature branches off main. Supported prefixes: feat/, feature/, hotfix/.

git checkout main && git pull origin main
git checkout -b feat/my-change
# ... make changes ...
git push origin feat/my-change
# Open a PR → squash merge to main

Push to main triggers:

  1. Gitea Actions — lint → test → validate (see CI Pipeline below)
  2. Orca — automatic build + deploy (~3 min total)

Monitor status: https://gitea.meghsakha.com/Benjamin_Boenisch/breakpilot-compliance/actions

CI Pipeline

Defined in .gitea/workflows/ci.yaml.

Job What it checks
loc-budget All source files ≤ 500 LOC; soft target 300
guardrail-integrity Commits touching guardrail files carry [guardrail-change]
go-lint golangci-lint on ai-compliance-sdk/
python-lint ruff + mypy on Python services
nodejs-lint tsc --noEmit + ESLint on Next.js services
test-go-ai-compliance go test ./... in ai-compliance-sdk/
test-python-backend-compliance pytest in backend-compliance/
test-python-document-crawler pytest in document-crawler/
test-python-dsms-gateway pytest test_main.py in dsms-gateway/
sbom-scan License + vulnerability scan via syft + grype
validate-canonical-controls OpenAPI contract baseline diff

File Budget

Limit Value How to check
Soft target 300 LOC bash scripts/check-loc.sh
Hard cap 500 LOC Same; also enforced by PreToolUse hook + git pre-commit + CI
Exceptions .claude/rules/loc-exceptions.txt Require written rationale + [guardrail-change] commit marker

The .claude/settings.json PreToolUse hook blocks Claude Code from writing or editing files that would exceed the hard cap. The git pre-commit hook re-checks. CI is the final gate.

Links

URL
Admin dashboard https://admin-dev.breakpilot.ai
Developer portal https://developers-dev.breakpilot.ai
Backend API https://api-dev.breakpilot.ai
AI SDK API https://sdk-dev.breakpilot.ai
Gitea repo https://gitea.meghsakha.com/Benjamin_Boenisch/breakpilot-compliance
Gitea Actions https://gitea.meghsakha.com/Benjamin_Boenisch/breakpilot-compliance/actions
Reference in New Issue View Git Blame Copy Permalink
S
Description
No description provided
Readme 36 MiB
Languages
TypeScript 41.6%
Python 33.1%
Go 22.8%
Shell 1.2%
PLpgSQL 0.8%
Other 0.2%