Benjamin_Boenisch/breakpilot-compliance
1
0
Fork 0
Code Issues 24 Pull Requests Actions Packages Projects Releases Wiki Activity
Files
361a5e7605293bcdd5e4755bcdc82fe939fd9604
breakpilot-compliance/backend-compliance/compliance/api
T
History
Benjamin Admin 361a5e7605
CI / detect-changes (push) Successful in 7s
Details
CI / branch-name (push) Has been skipped
Details
CI / guardrail-integrity (push) Has been skipped
Details
CI / secret-scan (push) Has been skipped
Details
CI / dep-audit (push) Has been skipped
Details
CI / sbom-scan (push) Has been skipped
Details
CI / build-sha-integrity (push) Failing after 4s
Details
CI / validate-canonical-controls (push) Successful in 10s
Details
CI / loc-budget (push) Successful in 12s
Details
CI / go-lint (push) Has been skipped
Details
CI / python-lint (push) Has been skipped
Details
CI / iace-gt-coverage (push) Has been skipped
Details
CI / nodejs-lint (push) Has been skipped
Details
CI / nodejs-build (push) Has been skipped
Details
CI / test-go (push) Has been skipped
Details
CI / test-python-backend (push) Successful in 28s
Details
CI / test-python-document-crawler (push) Has been skipped
Details
CI / test-python-dsms-gateway (push) Has been skipped
Details
feat(agents): Test-Harness nutzt volle Compliance-Pipeline für Fetch 
Statt der simplen dsi-discovery-Wrapper-Funktion ruft der Test-Harness
jetzt _fetch_text() aus agent_check/_fetch.py — die VOLLE Pipeline
die auch der produktive Compliance-Check verwendet:
  - consent-tester dsi-discovery mit 240s Timeout (statt 120s)
  - doc_type-aware max_documents (1 für cookie/dse, 3 für impressum)
  - CMP-Payload-Capture (ePaaS, OneTrust …)
  - HTTP-Fallback mit Browser-User-Agent + DomainRateLimiter
  - HTML-Tag-Strip wenn Playwright fail

Damit funktionieren Cloudflare-/Anti-Bot-geschützte Sites wie BMW
und Elli auch im Test-Harness — vorher Timeout nach 90s.

Plus: bei leerem Fetch klare Fehlermeldung im Slot
('Cloudflare-/Anti-Bot-geschützt — Tipp: Text manuell einfügen')
statt silent-fail. cmp_payloads landen jetzt auch im Vault.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-06-08 18:38:59 +02:00
..
agent_check
fix: 4 Bugs gemeinsam — B22 PDF + B17 Walk-Fallback + company_name + Plausibility-Fallback
2026-06-08 16:39:33 +02:00
document_templates
fix(quality): Ruff/CVE/TS-Fixes, 104 neue Tests, Complexity-Refactoring
2026-03-07 19:00:33 +01:00
__init__.py
feat(agents): SSE-Endpoint + Agent-Test-Tab (5-URL parallel)
2026-06-08 17:47:05 +02:00
_http_errors.py
refactor(backend/api): extract AuditSession service layer (Step 4 worked example)
2026-04-07 18:16:50 +02:00
agent_analyze_routes.py
fix: derive intake flags from DETECTED SERVICES, not from text content
2026-05-02 08:37:51 +02:00
agent_compare_routes.py
feat: Phase 6-8 — PDF export, recurring scans, multi-website compare
2026-04-29 15:27:51 +02:00
agent_compliance_check_routes.py
refactor(agent-check): split routes file (2692→347 LOC) + wire B1/B3/A1 [guardrail-change]
2026-06-06 14:47:25 +02:00
agent_doc_check_banner.py
feat(audit-mail): P58/P59c/P60b/P61/P62 — Mercedes-Cycle Phase 1 abgeschlossen
2026-05-21 08:01:27 +02:00
agent_doc_check_critical.py
feat(audit-tonality): P89/P76/P91 — Co-Pilot statt Roboter-Anwalt
2026-05-21 11:24:57 +02:00
agent_doc_check_exec_summary.py
feat(audit): P34 Exec-Summary Score-Einordnung — 'wo Sie stehen sollten'
2026-05-21 16:51:34 +02:00
agent_doc_check_extras.py
feat(audit-mail): P58/P59c/P60b/P61/P62 — Mercedes-Cycle Phase 1 abgeschlossen
2026-05-21 08:01:27 +02:00
agent_doc_check_redundancy.py
feat(compliance-check): exec-summary + voll-audit + TDM-respect + cookie-KB-extended + saving-scan-funnel
2026-05-18 23:48:34 +02:00
agent_doc_check_report.py
feat(consent+report): P56-P67 Mercedes-Audit-Cycle (Anti-Audit, Phase G Vendors, Cookie-Behavior-Validator + 5 Mail-Polish-Items) [migration-approved]
2026-05-21 06:28:25 +02:00
agent_doc_check_routes.py
feat(agent): MC scorecard + audit drill-down + tenant trend (A1-A6)
2026-05-17 13:45:58 +02:00
agent_doc_check_scorecard.py
feat(compliance-check): exec-summary + voll-audit + TDM-respect + cookie-KB-extended + saving-scan-funnel
2026-05-18 23:48:34 +02:00
agent_findings_routes.py
feat(banner): P19 + P20 — Per-Category-Click-Test + Frontend-Drilldown
2026-05-19 14:31:13 +02:00
agent_history_routes.py
feat: Phase 6-8 — PDF export, recurring scans, multi-website compare
2026-04-29 15:27:51 +02:00
agent_migration_routes.py
feat(agent): migrate compliance-check results to banner + documents (M1-M5)
2026-05-17 14:06:28 +02:00
agent_notification_routes.py
fix: relax email validation for .local domains in agent notify endpoint
2026-04-27 23:39:16 +02:00
agent_recurring_routes.py
feat: Phase 6-8 — PDF export, recurring scans, multi-website compare
2026-04-29 15:27:51 +02:00
agent_scan_helpers.py
fix: resolve all merge conflict markers from feat/zeroclaw-compliance-agent
2026-05-11 12:15:07 +02:00
agent_scan_models.py
fix: resolve all merge conflict markers from feat/zeroclaw-compliance-agent
2026-05-11 12:15:07 +02:00
agent_scan_routes.py
fix: resolve all merge conflict markers from feat/zeroclaw-compliance-agent
2026-05-11 12:15:07 +02:00
ai_routes.py
refactor: phase 0 guardrails + phase 1 step 2 (models.py split)
2026-04-07 13:18:29 +02:00
assertion_routes.py
feat: Anti-Fake-Evidence System (Phase 1-4b)
2026-03-23 17:15:45 +01:00
audit_routes.py
tech-debt: mypy --strict config + integration tests for audit routes
2026-04-07 18:39:40 +02:00
audit_trail_utils.py
feat: Anti-Fake-Evidence System (Phase 1-4b)
2026-03-23 17:15:45 +01:00
banner_ab_routes.py
feat: A/B Testing + Compliance Report PDF (F5 + F8)
2026-05-03 21:42:50 +02:00
banner_analytics_routes.py
feat: Vendor-level consent + Consent analytics (F4 + F6)
2026-05-03 20:58:06 +02:00
banner_routes.py
feat(cmp): timezone→geo_country mapping + timezone parameter
2026-05-12 14:43:13 +02:00
canonical_control_routes.py
feat(compliance-check): MC-Classification + Embedding + Vendor-Redundanz + Action-Recipes + Borlabs-Features
2026-05-18 18:30:08 +02:00
change_request_engine.py
fix(quality): Ruff/CVE/TS-Fixes, 104 neue Tests, Complexity-Refactoring
2026-03-07 19:00:33 +01:00
change_request_routes.py
fix(quality): Ruff/CVE/TS-Fixes, 104 neue Tests, Complexity-Refactoring
2026-03-07 19:00:33 +01:00
company_profile_routes.py
refactor(backend/api): extract CompanyProfileService (Step 4 — file 4 of 18)
2026-04-07 19:47:29 +02:00
compliance_report_routes.py
feat: A/B Testing + Compliance Report PDF (F5 + F8)
2026-05-03 21:42:50 +02:00
compliance_scope_routes.py
fix: migrate deployment from Hetzner to Coolify (#1)
2026-03-13 10:45:35 +00:00
consent_template_routes.py
refactor: phase 0 guardrails + phase 1 step 2 (models.py split)
2026-04-07 13:18:29 +02:00
control_generator_routes.py
merge: sync with origin/main, take upstream on conflicts
2026-04-16 16:26:48 +02:00
cra_annex_i_data.py
feat(cra): CRA Compliance module Phase 1+2+3 (intake, scope, path, requirements, backlog, sbom, checks)
2026-05-18 17:56:52 +02:00
cra_doc_templates.py
feat(cra): Phase 5 — Technical Doc + DoC Generator (Annex V + VII)
2026-05-18 22:10:23 +02:00
cra_routes.py
feat(cra): Phase 4 — Vulnerability Disclosure + Post-Market Monitoring
2026-05-18 22:08:49 +02:00
crosswalk_routes.py
fix: adapt batch dedup to NULL pattern_id — group by merge_group_hint
2026-03-24 07:24:02 +01:00
crud_factory.py
refactor: phase 0 guardrails + phase 1 step 2 (models.py split)
2026-04-07 13:18:29 +02:00
dashboard_routes.py
merge: sync with origin/main, take upstream on conflicts
2026-04-16 16:26:48 +02:00
db_utils.py
feat(sdk): API-Referenz Frontend + Backend-Konsolidierung (Shared Utilities, CRUD Factory)
2026-03-07 17:07:43 +01:00
doc_action_mappings.py
feat(consent+report): P56-P67 Mercedes-Audit-Cycle (Anti-Audit, Phase G Vendors, Cookie-Behavior-Validator + 5 Mail-Polish-Items) [migration-approved]
2026-05-21 06:28:25 +02:00
document_review_routes.py
feat: Academy integration — training gap detection after document approval (F7)
2026-05-03 22:03:25 +02:00
dsfa_routes.py
fix: EvidenceService Import + get_workflow_service Factory
2026-04-25 23:01:44 +02:00
dsr_routes.py
feat: Art. 11 DSGVO — reject DSR when data subject not identifiable
2026-05-03 23:30:18 +02:00
einwilligungen_export_routes.py
feat(compliance-check): MC-Classification + Embedding + Vendor-Redundanz + Action-Recipes + Borlabs-Features
2026-05-18 18:30:08 +02:00
einwilligungen_routes.py
refactor: phase 0 guardrails + phase 1 step 2 (models.py split)
2026-04-07 13:18:29 +02:00
email_template_routes.py
refactor(backend/api): extract Email Template services (Step 4 — file 10 of 18)
2026-04-08 22:39:19 +02:00
escalation_routes.py
refactor: phase 0 guardrails + phase 1 step 2 (models.py split)
2026-04-07 13:18:29 +02:00
evidence_check_routes.py
feat: add compliance modules 2-5 (dashboard, security templates, process manager, evidence collector)
2026-03-14 21:03:04 +01:00
evidence_routes.py
feat(dsms): Stufe 2+3 — Evidence/TechFile → DSMS + Version Chains + Audit Timeline
2026-05-12 13:55:07 +02:00
extraction_routes.py
merge: sync with origin/main, take upstream on conflicts
2026-04-16 16:26:48 +02:00
founding_wizard_routes.py
feat(founding-wizard): Per-Person IP-Assignment + Prefill + E2E-Tests
2026-05-21 18:49:10 +02:00
generation_routes.py
fix(backend): SQLAlchemy text() fuer alle raw SQL + UI-Verbesserungen
2026-03-08 22:53:29 +01:00
import_routes.py
fix: migrate deployment from Hetzner to Coolify (#1)
2026-03-13 10:45:35 +00:00
incident_routes.py
refactor(backend/api): extract Incident services (Step 4 — file 11 of 18)
2026-04-09 08:35:57 +02:00
isms_routes.py
merge: sync with origin/main, take upstream on conflicts
2026-04-16 16:26:48 +02:00
legal_document_routes.py
feat(document-library): zentrale Doc-Übersicht + Workflow-Auto-Select (Phase 3)
2026-06-08 09:32:25 +02:00
legal_template_routes.py
feat: DSR Prozessbeschreibungen Art. 15-21 mit Swim-Lane-Diagrammen
2026-04-28 19:25:38 +02:00
licenses_routes.py
feat(licenses): attribution renderer — Stufe 1 (overview) + Stufe 3 (SourceBadge)
2026-05-21 21:00:10 +02:00
llm_audit_routes.py
feat: Anti-Fake-Evidence System (Phase 1-4b)
2026-03-23 17:15:45 +01:00
loeschfristen_routes.py
merge: sync with origin/main, take upstream on conflicts
2026-04-16 16:26:48 +02:00
module_routes.py
notfallplan_routes.py
refactor(backend/api): extract Notfallplan schemas + services (Step 4)
2026-04-09 20:10:43 +02:00
obligation_routes.py
merge: sync with origin/main, take upstream on conflicts
2026-04-16 16:26:48 +02:00
org_role_routes.py
feat: Rollenkonzept backend + SOP template (Phase 1-3)
2026-05-03 13:03:38 +02:00
process_task_routes.py
feat: add compliance modules 2-5 (dashboard, security templates, process manager, evidence collector)
2026-03-14 21:03:04 +01:00
project_routes.py
feat: Projekt-Verwaltung verbessern — Archivieren, Loeschen, Wiederherstellen
2026-03-09 17:48:02 +01:00
quaidal_routes.py
feat(quaidal): backend API + frontend tab for BSI QUAIDAL data-quality controls
2026-05-19 13:03:54 +02:00
quality_routes.py
refactor: phase 0 guardrails + phase 1 step 2 (models.py split)
2026-04-07 13:18:29 +02:00
risk_routes.py
routes.py
merge: sync with origin/main, take upstream on conflicts
2026-04-16 16:26:48 +02:00
saving_scan_routes.py
feat(compliance-check): exec-summary + voll-audit + TDM-respect + cookie-KB-extended + saving-scan-funnel
2026-05-18 23:48:34 +02:00
schemas.py
merge: sync with origin/main, take upstream on conflicts
2026-04-16 16:26:48 +02:00
scope_disclaimer.py
feat(audit-mail): P58/P59c/P60b/P61/P62 — Mercedes-Cycle Phase 1 abgeschlossen
2026-05-21 08:01:27 +02:00
scraper_routes.py
screening_routes.py
merge: sync with origin/main, take upstream on conflicts
2026-04-16 16:26:48 +02:00
security_backlog_routes.py
refactor: phase 0 guardrails + phase 1 step 2 (models.py split)
2026-04-07 13:18:29 +02:00
source_policy_router.py
refactor(backend/api): extract SourcePolicyService (Step 4 — file 7 of 18)
2026-04-07 19:58:02 +02:00
specialist_agent_routes.py
feat(agents): Test-Harness nutzt volle Compliance-Pipeline für Fetch
2026-06-08 18:38:59 +02:00
tcf_routes.py
feat: IAB TCF 2.2 — TC String encoder + purpose mapping + UI
2026-05-04 07:01:37 +02:00
template_rule_routes.py
feat(template-rules): backend foundation for profile-based document recommendations
2026-06-06 23:13:50 +02:00
tenant_utils.py
feat(sdk): Multi-Tenancy, Versionierung, Change-Requests, Dokumentengenerierung (Phase 1-6)
2026-03-07 14:12:34 +01:00
tom_mapping_routes.py
feat(tom): audit document, compliance checks, 25 controls, canonical control mapping
2026-03-19 11:56:53 +01:00
tom_routes.py
refactor(backend/api): extract TOMService (Step 4 — file 3 of 18)
2026-04-07 19:42:17 +02:00
vendor_assessment_routes.py
feat(vendor-assessment): Pruefprotokoll + Frontend + Sidebar
2026-05-12 23:24:12 +02:00
vendor_compliance_routes.py
refactor(backend/api): extract vendor compliance services (Step 4)
2026-04-09 20:11:24 +02:00
versioning_utils.py
fix(quality): Ruff/CVE/TS-Fixes, 104 neue Tests, Complexity-Refactoring
2026-03-07 19:00:33 +01:00
vvt_library_routes.py
feat(sdk): VVT master libraries, process templates, Loeschfristen profiling + document
2026-03-19 11:56:25 +01:00
vvt_routes.py
fix: 3 weitere Router-Import-Fehler aus Refactoring
2026-04-25 22:48:04 +02:00
vvt_table_renderer.py
feat(audit-tonality): P89/P76/P91 — Co-Pilot statt Roboter-Anwalt
2026-05-21 11:24:57 +02:00
whistleblower_routes.py
feat: Whistleblower backend + Scanner banner-check (last 2 gaps)
2026-05-04 00:22:18 +02:00
wiki_routes.py
feat: Add Compliance Wiki as internal admin knowledge base
2026-03-09 20:01:27 +01:00