← Back to Factory Recipes
📋

Compliance Review Factory

Policy scan, license audit, data flow analysis, and compliance report

Operations 6 stages 3 specialists v1.0.0

About

A compliance review pipeline that runs parallel scans for organizational policy violations and dependency license compatibility, maps PII and sensitive data flows, then consolidates findings with severity ratings and remediation guidance. Produces an audit-ready compliance report with evidence references, requiring compliance officer sign-off with a 4-hour review window.

Input / Output

Input

Codebase or system to review for compliance

codebase

Output

Audit-ready compliance report with evidence and remediation guidance

min quality: 0.85

Pipeline Stages

policy scan

Execute

Scan codebase against organizational security and coding policies

👤 guardian 🔧 file_read, grep
⇅ runs in parallel

license audit

Execute

Audit all dependency licenses for compatibility and compliance

👤 analyst 🔧 shell, file_read
⇅ runs in parallel

data flow

Execute

Map PII and sensitive data flows through the application

👤 analyst 🔧 file_read, grep ← policy scan

findings

Execute

Consolidate compliance findings with severity and remediation guidance

👤 analyst 🔧 file_read, file_write ← policy scan, license audit, data flow

compliance report

Execute

Generate audit-ready compliance report with evidence references

👤 writer 🔧 file_write ← findings

approval

Approval

Compliance officer review and sign-off

← compliance report timeout: 240m

Tags

complianceauditlicensegdprpiigovernance

Related Recipes

🚨
Incident Response Factory

Automated incident triage, investigation, and remediation pipeline

 🛡️
Security Audit Factory

Dependency scan, SAST analysis, secret detection, and compliance check