Initial commit: Compliance Scanner Agent

Autonomous security and compliance scanning agent for git repositories.
Features: SAST (Semgrep), SBOM (Syft), CVE monitoring (OSV.dev/NVD),
GDPR/OAuth pattern detection, LLM triage, issue creation (GitHub/GitLab/Jira),
PR reviews, and Dioxus fullstack dashboard.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

compliance-core/src/models/scan.rs

@@ -0,0 +1,81 @@
+use chrono::{DateTime, Utc};
+use serde::{Deserialize, Serialize};
+
+use super::repository::ScanTrigger;
+
+#[derive(Debug, Clone, Serialize, Deserialize, PartialEq, Eq)]
+#[serde(rename_all = "lowercase")]
+pub enum ScanType {
+    Sast,
+    Sbom,
+    Cve,
+    Gdpr,
+    OAuth,
+}
+
+impl std::fmt::Display for ScanType {
+    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
+        match self {
+            Self::Sast => write!(f, "sast"),
+            Self::Sbom => write!(f, "sbom"),
+            Self::Cve => write!(f, "cve"),
+            Self::Gdpr => write!(f, "gdpr"),
+            Self::OAuth => write!(f, "oauth"),
+        }
+    }
+}
+
+#[derive(Debug, Clone, Serialize, Deserialize, PartialEq, Eq)]
+#[serde(rename_all = "snake_case")]
+pub enum ScanRunStatus {
+    Running,
+    Completed,
+    Failed,
+}
+
+#[derive(Debug, Clone, Serialize, Deserialize, PartialEq, Eq)]
+#[serde(rename_all = "snake_case")]
+pub enum ScanPhase {
+    ChangeDetection,
+    Sast,
+    SbomGeneration,
+    CveScanning,
+    PatternScanning,
+    LlmTriage,
+    IssueCreation,
+    Completed,
+}
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct ScanRun {
+    #[serde(rename = "_id", skip_serializing_if = "Option::is_none")]
+    pub id: Option<mongodb::bson::oid::ObjectId>,
+    pub repo_id: String,
+    pub trigger: ScanTrigger,
+    pub commit_sha: Option<String>,
+    pub status: ScanRunStatus,
+    pub current_phase: ScanPhase,
+    pub phases_completed: Vec<ScanPhase>,
+    pub new_findings_count: u32,
+    pub error_message: Option<String>,
+    pub started_at: DateTime<Utc>,
+    pub completed_at: Option<DateTime<Utc>>,
+}
+
+impl ScanRun {
+    pub fn new(repo_id: String, trigger: ScanTrigger) -> Self {
+        Self {
+            id: None,
+            repo_id,
+            trigger,
+            commit_sha: None,
+            status: ScanRunStatus::Running,
+            current_phase: ScanPhase::ChangeDetection,
+            phases_completed: Vec::new(),
+            new_findings_count: 0,
+            error_message: None,
+            started_at: Utc::now(),
+            completed_at: None,
+        }
+    }
+}