compliance-scanner-agent

sharang/compliance-scanner-agent

Fork 0

Commit Graph

Author	SHA1	Message	Date
Sharang Parnerkar	23ba52276b	feat: add new scanners, enhanced triage, findings refinement, and deployment tooling Some checks failed CI / Deploy Agent (push) Has been skipped Details CI / Deploy Dashboard (push) Has been skipped Details CI / Deploy Docs (push) Has been skipped Details CI / Deploy MCP (push) Has been skipped Details CI / Deploy Agent (pull_request) Has been skipped Details CI / Deploy Dashboard (pull_request) Has been skipped Details CI / Deploy Docs (pull_request) Has been skipped Details CI / Format (push) Failing after 3s Details CI / Clippy (push) Failing after 2m44s Details CI / Security Audit (push) Has been skipped Details CI / Tests (push) Has been skipped Details CI / Format (pull_request) Failing after 3s Details CI / Clippy (pull_request) Failing after 2m51s Details CI / Security Audit (pull_request) Has been skipped Details CI / Tests (pull_request) Has been skipped Details CI / Detect Changes (push) Has been skipped Details CI / Detect Changes (pull_request) Has been skipped Details CI / Deploy MCP (pull_request) Has been skipped Details - Add gitleaks secret detection, lint scanning (clippy/eslint/ruff), and LLM code review scanners - Enhance LLM triage with multi-action support (confirm/downgrade/upgrade/dismiss), surrounding code context, and file-path classification confidence adjustment - Add text search, column sorting, and bulk status update to findings dashboard - Fix finding detail page status refresh and add developer feedback field - Fix BSON DateTime deserialization across all models with shared serde helpers - Add scan progress spinner with polling to repositories page - Batch OSV.dev queries to avoid "Too many queries" errors - Add gitleaks, semgrep, and ruff to Dockerfile.agent for deployment Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-09 11:05:31 +01:00
Sharang Parnerkar	37689d4661	Fix dashboard wasm build and feature-gate mongodb for wasm compatibility - Feature-gate mongodb in compliance-core (optional, default on) so wasm builds don't pull in tokio/mio via mongodb - Use bson v2 directly for ObjectId types (wasm-compatible) - Restructure dashboard infrastructure/mod.rs: server function modules always compiled (for RPC stubs), server-only modules cfg-gated - Remove reqwest from dashboard web feature (not needed, data flows through server functions) - Add .gitignore Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-02 17:16:38 +01:00
Sharang Parnerkar	0867e401bc	Initial commit: Compliance Scanner Agent Autonomous security and compliance scanning agent for git repositories. Features: SAST (Semgrep), SBOM (Syft), CVE monitoring (OSV.dev/NVD), GDPR/OAuth pattern detection, LLM triage, issue creation (GitHub/GitLab/Jira), PR reviews, and Dioxus fullstack dashboard. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-02 13:30:17 +01:00

Author

SHA1

Message

Date

Sharang Parnerkar

23ba52276b

feat: add new scanners, enhanced triage, findings refinement, and deployment tooling

CI / Deploy Agent (push) Has been skipped

Details

CI / Deploy Dashboard (push) Has been skipped

Details

CI / Deploy Docs (push) Has been skipped

Details

CI / Deploy MCP (push) Has been skipped

Details

CI / Deploy Agent (pull_request) Has been skipped

Details

CI / Deploy Dashboard (pull_request) Has been skipped

Details

CI / Deploy Docs (pull_request) Has been skipped

Details

CI / Format (push) Failing after 3s

Details

CI / Clippy (push) Failing after 2m44s

Details

CI / Security Audit (push) Has been skipped

Details

CI / Tests (push) Has been skipped

Details

CI / Format (pull_request) Failing after 3s

Details

CI / Clippy (pull_request) Failing after 2m51s

Details

CI / Security Audit (pull_request) Has been skipped

Details

CI / Tests (pull_request) Has been skipped

Details

CI / Detect Changes (push) Has been skipped

Details

CI / Detect Changes (pull_request) Has been skipped

Details

CI / Deploy MCP (pull_request) Has been skipped

Details

- Add gitleaks secret detection, lint scanning (clippy/eslint/ruff), and LLM code review scanners
- Enhance LLM triage with multi-action support (confirm/downgrade/upgrade/dismiss),
  surrounding code context, and file-path classification confidence adjustment
- Add text search, column sorting, and bulk status update to findings dashboard
- Fix finding detail page status refresh and add developer feedback field
- Fix BSON DateTime deserialization across all models with shared serde helpers
- Add scan progress spinner with polling to repositories page
- Batch OSV.dev queries to avoid "Too many queries" errors
- Add gitleaks, semgrep, and ruff to Dockerfile.agent for deployment

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-09 11:05:31 +01:00

Sharang Parnerkar

37689d4661

Fix dashboard wasm build and feature-gate mongodb for wasm compatibility

- Feature-gate mongodb in compliance-core (optional, default on) so wasm
  builds don't pull in tokio/mio via mongodb
- Use bson v2 directly for ObjectId types (wasm-compatible)
- Restructure dashboard infrastructure/mod.rs: server function modules
  always compiled (for RPC stubs), server-only modules cfg-gated
- Remove reqwest from dashboard web feature (not needed, data flows
  through server functions)
- Add .gitignore

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-02 17:16:38 +01:00

Sharang Parnerkar

0867e401bc

Initial commit: Compliance Scanner Agent

Autonomous security and compliance scanning agent for git repositories.
Features: SAST (Semgrep), SBOM (Syft), CVE monitoring (OSV.dev/NVD),
GDPR/OAuth pattern detection, LLM triage, issue creation (GitHub/GitLab/Jira),
PR reviews, and Dioxus fullstack dashboard.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-02 13:30:17 +01:00

3 Commits