Benjamin_Boenisch/breakpilot-compliance
1
1
Fork 0
Code Issues 24 Pull Requests Actions Packages Projects Releases Wiki Activity
Files
e140477c0bd62d20ebdcca7c7b5543a2612dc880
breakpilot-compliance/backend-compliance/compliance/api
T
History
Benjamin Admin e140477c0b
CI / nodejs-build (push) Successful in 3m12s
Details
CI / test-go (push) Has been skipped
Details
CI / iace-gt-coverage (push) Has been skipped
Details
CI / test-python-backend (push) Successful in 39s
Details
CI / test-python-document-crawler (push) Has been skipped
Details
CI / test-python-dsms-gateway (push) Has been skipped
Details
CI / detect-changes (push) Successful in 15s
Details
CI / branch-name (push) Has been skipped
Details
CI / guardrail-integrity (push) Has been skipped
Details
CI / secret-scan (push) Has been skipped
Details
CI / dep-audit (push) Has been skipped
Details
CI / sbom-scan (push) Has been skipped
Details
CI / build-sha-integrity (push) Successful in 12s
Details
CI / validate-canonical-controls (push) Successful in 12s
Details
CI / loc-budget (push) Successful in 25s
Details
CI / go-lint (push) Has been skipped
Details
CI / python-lint (push) Has been skipped
Details
CI / nodejs-lint (push) Has been skipped
Details
feat(cra): Pull-Flow — Findings vom Scanner-MCP ziehen + assessen 
(2) Wir als MCP-Client zum compliance-scanner-agent:
- scanner_mcp_client.fetch_findings(): streamablehttp_client + ClientSession →
  list_findings, parst JSON-Text zu Finding-Dicts. Config via SCANNER_MCP_URL/
  SCANNER_MCP_TOKEN (unset = leer → UI behält Demo). Transport lazy-importiert.
- POST /v1/cra/assess-from-scanner: rohe Scanner-Dicts → toleranter Mapper
  (behält scan_type/cvss_score/file_path) → assess + Breadth.
- Tests: parse_findings_text + no-config-Pfad.

Live-Verdrahtung der UI folgt, sobald ihr Endpoint+Token stehen (dann nur Env
setzen + useCRA auf /assess-from-scanner zeigen).

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-06-15 19:05:44 +02:00
..
agent_check
feat(cookie+routing): Storage-Typ-Filter + legal_notice capture-only
2026-06-11 20:45:18 +02:00
document_templates
__init__.py
feat(controls): shared get_controls_for_use_case retrieval API
2026-06-13 21:37:18 +02:00
_http_errors.py
agent_analyze_routes.py
agent_compare_routes.py
agent_compliance_check_routes.py
fix(snapshot): Cookie-Dedup + schneller Impressum-Tab + Tabellen-Zahl
2026-06-11 19:54:15 +02:00
agent_doc_check_banner.py
feat(audit-mail): P58/P59c/P60b/P61/P62 — Mercedes-Cycle Phase 1 abgeschlossen
2026-05-21 08:01:27 +02:00
agent_doc_check_critical.py
feat(audit-tonality): P89/P76/P91 — Co-Pilot statt Roboter-Anwalt
2026-05-21 11:24:57 +02:00
agent_doc_check_exec_summary.py
feat(audit): P34 Exec-Summary Score-Einordnung — 'wo Sie stehen sollten'
2026-05-21 16:51:34 +02:00
agent_doc_check_extras.py
feat(audit-mail): P58/P59c/P60b/P61/P62 — Mercedes-Cycle Phase 1 abgeschlossen
2026-05-21 08:01:27 +02:00
agent_doc_check_redundancy.py
feat(compliance-check): exec-summary + voll-audit + TDM-respect + cookie-KB-extended + saving-scan-funnel
2026-05-18 23:48:34 +02:00
agent_doc_check_report.py
feat(consent+report): P56-P67 Mercedes-Audit-Cycle (Anti-Audit, Phase G Vendors, Cookie-Behavior-Validator + 5 Mail-Polish-Items) [migration-approved]
2026-05-21 06:28:25 +02:00
agent_doc_check_routes.py
feat(agent): MC scorecard + audit drill-down + tenant trend (A1-A6)
2026-05-17 13:45:58 +02:00
agent_doc_check_scorecard.py
feat(compliance-check): exec-summary + voll-audit + TDM-respect + cookie-KB-extended + saving-scan-funnel
2026-05-18 23:48:34 +02:00
agent_findings_routes.py
feat(banner): P19 + P20 — Per-Category-Click-Test + Frontend-Drilldown
2026-05-19 14:31:13 +02:00
agent_history_routes.py
agent_migration_routes.py
feat(agent): migrate compliance-check results to banner + documents (M1-M5)
2026-05-17 14:06:28 +02:00
agent_notification_routes.py
agent_recurring_routes.py
agent_scan_helpers.py
agent_scan_models.py
agent_scan_routes.py
ai_routes.py
assertion_routes.py
audit_routes.py
audit_trail_utils.py
banner_ab_routes.py
banner_analytics_routes.py
banner_routes.py
canonical_control_routes.py
feat(compliance-check): MC-Classification + Embedding + Vendor-Redundanz + Action-Recipes + Borlabs-Features
2026-05-18 18:30:08 +02:00
change_request_engine.py
change_request_routes.py
company_profile_routes.py
compliance_report_routes.py
compliance_scope_routes.py
consent_template_routes.py
control_generator_routes.py
cra_annex_i_data.py
feat(cra): CRA Compliance module Phase 1+2+3 (intake, scope, path, requirements, backlog, sbom, checks)
2026-05-18 17:56:52 +02:00
cra_assess_routes.py
feat(cra): Pull-Flow — Findings vom Scanner-MCP ziehen + assessen
2026-06-15 19:05:44 +02:00
cra_doc_templates.py
fix(cra): Konformitätspfad-Kacheln korrekt benennen + Gating nach CRA Art. 32
2026-06-15 13:49:00 +02:00
cra_link_routes.py
feat(cra): hard CRA<->IACE link — IACE tab pulls the linked assessment [migration-approved]
2026-06-14 19:22:29 +02:00
cra_routes.py
fix(cra): Konformitätspfad-Kacheln korrekt benennen + Gating nach CRA Art. 32
2026-06-15 13:49:00 +02:00
crosswalk_routes.py
crud_factory.py
dashboard_routes.py
db_utils.py
doc_action_mappings.py
feat(consent+report): P56-P67 Mercedes-Audit-Cycle (Anti-Audit, Phase G Vendors, Cookie-Behavior-Validator + 5 Mail-Polish-Items) [migration-approved]
2026-05-21 06:28:25 +02:00
document_review_routes.py
dsfa_routes.py
dsr_routes.py
einwilligungen_export_routes.py
feat(compliance-check): MC-Classification + Embedding + Vendor-Redundanz + Action-Recipes + Borlabs-Features
2026-05-18 18:30:08 +02:00
einwilligungen_routes.py
email_template_routes.py
escalation_routes.py
evidence_check_routes.py
evidence_routes.py
extraction_routes.py
founding_wizard_routes.py
feat(founding-wizard): Per-Person IP-Assignment + Prefill + E2E-Tests
2026-05-21 18:49:10 +02:00
generation_routes.py
import_routes.py
incident_routes.py
isms_routes.py
legal_document_routes.py
feat(document-library): zentrale Doc-Übersicht + Workflow-Auto-Select (Phase 3)
2026-06-08 09:32:25 +02:00
legal_template_routes.py
licenses_routes.py
feat(licenses): attribution renderer — Stufe 1 (overview) + Stufe 3 (SourceBadge)
2026-05-21 21:00:10 +02:00
llm_audit_routes.py
loeschfristen_routes.py
module_routes.py
notfallplan_routes.py
obligation_routes.py
org_role_routes.py
process_task_routes.py
project_routes.py
quaidal_routes.py
feat(quaidal): backend API + frontend tab for BSI QUAIDAL data-quality controls
2026-05-19 13:03:54 +02:00
quality_routes.py
risk_routes.py
routes.py
saving_scan_routes.py
feat(compliance-check): exec-summary + voll-audit + TDM-respect + cookie-KB-extended + saving-scan-funnel
2026-05-18 23:48:34 +02:00
schemas.py
scope_disclaimer.py
feat(audit-mail): P58/P59c/P60b/P61/P62 — Mercedes-Cycle Phase 1 abgeschlossen
2026-05-21 08:01:27 +02:00
scraper_routes.py
screening_routes.py
security_backlog_routes.py
snapshot_check_routes.py
feat(audit-report): Exec-Summary, Top-N je Modul, Statistik, Gesamtanalyse
2026-06-13 15:57:07 +02:00
source_policy_router.py
specialist_agent_routes.py
fix(agents): HTML-Entity-Decode vor Agent + Pattern duldet '('
2026-06-08 18:45:37 +02:00
tcf_routes.py
template_rule_routes.py
feat(template-rules): backend foundation for profile-based document recommendations
2026-06-06 23:13:50 +02:00
tenant_utils.py
tom_mapping_routes.py
tom_routes.py
use_case_controls_routes.py
feat(controls): 5 neue Use Cases + Machinery-Fix + Korpus-/Lizenz-Übersicht
2026-06-14 21:49:22 +02:00
vendor_assessment_routes.py
vendor_compliance_routes.py
versioning_utils.py
vvt_library_routes.py
vvt_routes.py
vvt_table_renderer.py
feat(audit-tonality): P89/P76/P91 — Co-Pilot statt Roboter-Anwalt
2026-05-21 11:24:57 +02:00
whistleblower_routes.py
wiki_routes.py