fix: Restore all files lost during destructive rebase

A previous `git pull --rebase origin main` dropped 177 local commits, losing 3400+ files across admin-v2, backend, studio-v2, website, klausur-service, and many other services. The partial restore attempt (660295e2) only recovered some files. This commit restores all missing files from pre-rebase ref 98933f5e while preserving post-rebase additions (night-scheduler, night-mode UI, NightModeWidget dashboard integration). Restored features include: - AI Module Sidebar (FAB), OCR Labeling, OCR Compare - GPU Dashboard, RAG Pipeline, Magic Help - Klausur-Korrektur (8 files), Abitur-Archiv (5+ files) - Companion, Zeugnisse-Crawler, Screen Flow - Full backend, studio-v2, website, klausur-service - All compliance SDKs, agent-core, voice-service - CI/CD configs, documentation, scripts Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-09 09:51:32 +01:00
parent f7487ee240
commit 21a844cb8a
1986 changed files with 744143 additions and 1731 deletions
--- a/breakpilot-compliance-sdk/packages/cli/src/commands/export.ts
+++ b/breakpilot-compliance-sdk/packages/cli/src/commands/export.ts
@@ -0,0 +1,222 @@
+/**
+ * Export command - Export compliance reports
+ */
+
+import { Command } from 'commander'
+import * as fs from 'fs'
+import * as path from 'path'
+
+interface ExportOptions {
+  format?: string
+  output?: string
+  type?: string
+}
+
+export const exportCommand = new Command('export')
+  .description('Export compliance reports and documentation')
+  .option('-f, --format <format>', 'Export format (pdf, docx, json, csv)', 'pdf')
+  .option('-o, --output <path>', 'Output file path')
+  .option('-t, --type <type>', 'Report type (full, summary, vvt, tom, dsfa, controls, risks)', 'summary')
+  .action(async (options: ExportOptions) => {
+    const chalk = (await import('chalk')).default
+    const ora = (await import('ora')).default
+    const inquirer = (await import('inquirer')).default
+
+    console.log(chalk.bold.blue('\n📄 BreakPilot Compliance Export\n'))
+
+    // Prompt for export details
+    const answers = await inquirer.prompt([
+      {
+        type: 'list',
+        name: 'type',
+        message: 'Select report type:',
+        choices: [
+          { name: 'Full Compliance Report', value: 'full' },
+          { name: 'Executive Summary', value: 'summary' },
+          { name: 'Verarbeitungsverzeichnis (VVT)', value: 'vvt' },
+          { name: 'Technische & Organisatorische Maßnahmen (TOM)', value: 'tom' },
+          { name: 'Datenschutz-Folgenabschätzung (DSFA)', value: 'dsfa' },
+          { name: 'Controls Overview', value: 'controls' },
+          { name: 'Risk Register', value: 'risks' },
+          { name: 'SBOM (Software Bill of Materials)', value: 'sbom' },
+        ],
+        default: options.type,
+      },
+      {
+        type: 'list',
+        name: 'format',
+        message: 'Select export format:',
+        choices: [
+          { name: 'PDF', value: 'pdf' },
+          { name: 'Word Document (DOCX)', value: 'docx' },
+          { name: 'JSON', value: 'json' },
+          { name: 'CSV', value: 'csv' },
+          { name: 'CycloneDX (SBOM only)', value: 'cyclonedx' },
+          { name: 'SPDX (SBOM only)', value: 'spdx' },
+        ],
+        default: options.format,
+      },
+      {
+        type: 'input',
+        name: 'output',
+        message: 'Output file path:',
+        default: (answers: { type: string; format: string }) =>
+          `compliance-${answers.type}-${new Date().toISOString().split('T')[0]}.${answers.format}`,
+      },
+    ])
+
+    const spinner = ora('Generating report...').start()
+
+    try {
+      // In a real implementation, this would:
+      // 1. Connect to the compliance API
+      // 2. Fetch all relevant data
+      // 3. Generate the report in the requested format
+
+      spinner.text = 'Fetching compliance data...'
+      await sleep(1000)
+
+      spinner.text = 'Generating document...'
+      await sleep(1500)
+
+      const outputPath = path.resolve(answers.output)
+
+      // Generate mock output
+      const content = generateMockReport(answers.type, answers.format)
+      fs.writeFileSync(outputPath, content)
+
+      spinner.succeed('Report generated successfully!')
+
+      console.log(chalk.green('\n✅ Export complete'))
+      console.log(chalk.gray(`   File: ${outputPath}`))
+      console.log(chalk.gray(`   Type: ${answers.type}`))
+      console.log(chalk.gray(`   Format: ${answers.format}`))
+
+      // Show report preview for JSON
+      if (answers.format === 'json') {
+        console.log(chalk.bold('\n📋 Preview:\n'))
+        const preview = JSON.parse(content)
+        console.log(chalk.gray(JSON.stringify(preview, null, 2).substring(0, 500) + '...'))
+      }
+    } catch (error) {
+      spinner.fail('Export failed')
+      console.error(chalk.red('Error:'), error)
+      process.exit(1)
+    }
+  })
+
+function generateMockReport(type: string, format: string): string {
+  const reportData = {
+    generatedAt: new Date().toISOString(),
+    reportType: type,
+    format: format,
+    organization: 'Example Organization',
+    complianceScore: 78,
+    summary: {
+      totalControls: 44,
+      implementedControls: 35,
+      partialControls: 6,
+      openControls: 3,
+      totalRisks: 12,
+      criticalRisks: 1,
+      highRisks: 2,
+      regulations: ['DSGVO', 'NIS2', 'AI Act'],
+    },
+    sections: getSectionsForType(type),
+  }
+
+  if (format === 'json' || format === 'cyclonedx' || format === 'spdx') {
+    return JSON.stringify(reportData, null, 2)
+  }
+
+  // For PDF/DOCX, we'd use a proper document generation library
+  // For now, return a placeholder
+  return `[${format.toUpperCase()} Report - ${type}]\n\n${JSON.stringify(reportData, null, 2)}`
+}
+
+function getSectionsForType(type: string): Record<string, unknown>[] {
+  switch (type) {
+    case 'vvt':
+      return [
+        {
+          id: 'vvt-1',
+          name: 'Kundenmanagement',
+          purpose: 'Verwaltung von Kundenbeziehungen',
+          legalBasis: 'Art. 6 Abs. 1 lit. b DSGVO',
+          dataCategories: ['Kontaktdaten', 'Vertragsdetails', 'Kommunikationshistorie'],
+          retentionPeriod: '10 Jahre nach Vertragsende',
+        },
+        {
+          id: 'vvt-2',
+          name: 'Personalverwaltung',
+          purpose: 'Verwaltung von Mitarbeiterdaten',
+          legalBasis: 'Art. 6 Abs. 1 lit. b, c DSGVO',
+          dataCategories: ['Personaldaten', 'Gehaltsdaten', 'Leistungsdaten'],
+          retentionPeriod: '10 Jahre nach Beendigung',
+        },
+      ]
+    case 'tom':
+      return [
+        {
+          category: 'Zutrittskontrolle',
+          measures: [
+            'Zutrittskontrollsystem mit Chipkarten',
+            'Videoüberwachung der Eingänge',
+            'Besucherregistrierung',
+          ],
+        },
+        {
+          category: 'Zugangskontrolle',
+          measures: [
+            'Passwort-Policy (min. 12 Zeichen)',
+            'Multi-Faktor-Authentifizierung',
+            'Automatische Sperrung nach 5 Fehlversuchen',
+          ],
+        },
+      ]
+    case 'controls':
+      return [
+        {
+          id: 'ctrl-1',
+          domain: 'ACCESS_CONTROL',
+          title: 'Benutzerauthentifizierung',
+          status: 'IMPLEMENTED',
+          evidence: ['auth-policy.pdf', 'mfa-config.png'],
+        },
+        {
+          id: 'ctrl-2',
+          domain: 'DATA_PROTECTION',
+          title: 'Datenverschlüsselung',
+          status: 'IMPLEMENTED',
+          evidence: ['encryption-certificate.pdf'],
+        },
+      ]
+    case 'risks':
+      return [
+        {
+          id: 'risk-1',
+          title: 'Datenverlust durch Cyberangriff',
+          likelihood: 3,
+          impact: 5,
+          severity: 'HIGH',
+          mitigation: 'Backup-Strategie, Incident Response Plan',
+          status: 'MITIGATED',
+        },
+        {
+          id: 'risk-2',
+          title: 'DSGVO-Bußgeld wegen unzureichender Dokumentation',
+          likelihood: 2,
+          impact: 4,
+          severity: 'MEDIUM',
+          mitigation: 'Regelmäßige Dokumentationsaudits',
+          status: 'MONITORING',
+        },
+      ]
+    default:
+      return []
+  }
+}
+
+function sleep(ms: number): Promise<void> {
+  return new Promise(resolve => setTimeout(resolve, ms))
+}