Metadata-Version: 2.4
Name: venruk
Version: 0.1.0
Summary: Venruk — CTO-in-a-Box: A unified, modular, developer-first code auditing platform.
Project-URL: Homepage, https://github.com/venruk/venruk
Project-URL: Documentation, https://venruk.dev/docs
Project-URL: Repository, https://github.com/venruk/venruk
Project-URL: Issues, https://github.com/venruk/venruk/issues
Author: Venruk Team
License: Apache-2.0
License-File: LICENSE
Keywords: architecture-analysis,code-audit,code-quality,compliance,dependency-scanner,devops,devsecops,sast,secrets-detection,security,vulnerability-scanner
Classifier: Development Status :: 3 - Alpha
Classifier: Environment :: Console
Classifier: Intended Audience :: Developers
Classifier: License :: OSI Approved :: Apache Software License
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.12
Classifier: Programming Language :: Python :: 3.13
Classifier: Topic :: Security
Classifier: Topic :: Software Development :: Quality Assurance
Classifier: Topic :: Software Development :: Testing
Classifier: Typing :: Typed
Requires-Python: >=3.12
Requires-Dist: alembic>=1.14.0
Requires-Dist: anyio>=4.7.0
Requires-Dist: fastapi>=0.115.0
Requires-Dist: gitpython>=3.1.0
Requires-Dist: httpx>=0.28.0
Requires-Dist: jschema-to-python>=1.2.3
Requires-Dist: networkx>=3.6.1
Requires-Dist: openai>=2.43.0
Requires-Dist: psycopg2-binary>=2.9.12
Requires-Dist: pydantic-settings>=2.6.0
Requires-Dist: pydantic>=2.10.0
Requires-Dist: pygithub>=2.9.1
Requires-Dist: python-dotenv>=1.2.2
Requires-Dist: pyyaml>=6.0
Requires-Dist: rich-click>=1.8.0
Requires-Dist: rich>=13.9.0
Requires-Dist: sarif-om>=1.0.4
Requires-Dist: sqlalchemy>=2.0.0
Requires-Dist: structlog>=24.4.0
Requires-Dist: tree-sitter-javascript>=0.25.0
Requires-Dist: tree-sitter-python>=0.24.0
Requires-Dist: tree-sitter>=0.24.0
Requires-Dist: typer>=0.15.0
Requires-Dist: uvicorn>=0.34.0
Requires-Dist: watchdog>=6.0.0
Requires-Dist: xxhash>=3.5.0
Provides-Extra: ai
Requires-Dist: anthropic>=0.40.0; extra == 'ai'
Requires-Dist: ollama>=0.4.0; extra == 'ai'
Requires-Dist: openai>=1.57.0; extra == 'ai'
Provides-Extra: all
Requires-Dist: alembic>=1.14.0; extra == 'all'
Requires-Dist: anthropic>=0.40.0; extra == 'all'
Requires-Dist: fastapi>=0.115.0; extra == 'all'
Requires-Dist: mypy>=1.13.0; extra == 'all'
Requires-Dist: ollama>=0.4.0; extra == 'all'
Requires-Dist: openai>=1.57.0; extra == 'all'
Requires-Dist: pre-commit>=4.0.0; extra == 'all'
Requires-Dist: psycopg2-binary>=2.9.0; extra == 'all'
Requires-Dist: pytest-asyncio>=0.25.0; extra == 'all'
Requires-Dist: pytest-cov>=6.0.0; extra == 'all'
Requires-Dist: pytest-xdist>=3.5.0; extra == 'all'
Requires-Dist: pytest>=8.3.0; extra == 'all'
Requires-Dist: ruff>=0.8.0; extra == 'all'
Requires-Dist: sqlalchemy>=2.0.0; extra == 'all'
Requires-Dist: tree-sitter-languages>=1.10.0; extra == 'all'
Requires-Dist: tree-sitter>=0.24.0; extra == 'all'
Requires-Dist: uvicorn>=0.34.0; extra == 'all'
Provides-Extra: dashboard
Requires-Dist: alembic>=1.14.0; extra == 'dashboard'
Requires-Dist: fastapi>=0.115.0; extra == 'dashboard'
Requires-Dist: psycopg2-binary>=2.9.0; extra == 'dashboard'
Requires-Dist: sqlalchemy>=2.0.0; extra == 'dashboard'
Requires-Dist: uvicorn>=0.34.0; extra == 'dashboard'
Provides-Extra: dev
Requires-Dist: mypy>=1.13.0; extra == 'dev'
Requires-Dist: pre-commit>=4.0.0; extra == 'dev'
Requires-Dist: pytest-asyncio>=0.25.0; extra == 'dev'
Requires-Dist: pytest-cov>=6.0.0; extra == 'dev'
Requires-Dist: pytest-xdist>=3.5.0; extra == 'dev'
Requires-Dist: pytest>=8.3.0; extra == 'dev'
Requires-Dist: ruff>=0.8.0; extra == 'dev'
Provides-Extra: treesitter
Requires-Dist: tree-sitter-languages>=1.10.0; extra == 'treesitter'
Requires-Dist: tree-sitter>=0.24.0; extra == 'treesitter'
Description-Content-Type: text/markdown

# Venruk 🛡️

Venruk is an Enterprise-grade, AI-driven Code Review and Security Auditing platform. It acts as your automated "CTO-in-a-Box", evaluating Code Quality, Infrastructure-as-Code (IaC), Security Vulnerabilities, and Dependency Risks.

![Venruk Dashboard Placeholder](https://via.placeholder.com/800x400.png?text=Venruk+Enterprise+Dashboard)

## 🚀 Key Features

* **Advanced AI Reviewers**: Native integration with **DeepSeek v4 Pro**, **GLM-5.2**, and Air-gapped **Ollama** models.
* **Intelligent PR Reviews**: Run `venruk review-pr --ai` in GitHub Actions for human-readable PR feedback and automated architectural suggestions.
* **Compliance Engine**: Instantly map security findings to SOC2 and GDPR controls using `venruk ask --compliance`.
* **Enterprise Dashboard**: A beautiful, Supabase-inspired Next.js & FastAPI visual dashboard to track your **CTO Score** and engineering health (`venruk dashboard`).
* **Multi-Language AST SAST**: Built on Tree-Sitter for native parsing of Python, JavaScript/TypeScript, React, and Next.js applications.
* **Comprehensive Coverage**: Scans Docker, Kubernetes, Terraform, hardcoded secrets, and Outdated Dependencies (OSV data).

## ⚡ Quick Start

### 1. Fast Installation

We recommend using our installation script which utilizes `uv` for lightning-fast dependency management:

```bash
curl -sL https://install.venruk.ai | bash
# Or locally:
./install.sh
source ~/.bashrc
```

### 2. Initialization

Inside any code repository:

```bash
venruk init
```

### 3. Usage

```bash
# Run a full scan across the codebase
venruk scan --all

# Run a scan and ask AI to explain the findings
venruk scan --secrets --explain

# Automate Code Review in CI/CD pipelines
venruk review-pr . --ai

# Check SOC2 Compliance
venruk ask "Are we SOC2 compliant?" --compliance

# Launch the Enterprise Visual Dashboard
venruk dashboard
```

## 📚 Documentation

Detailed guides are available in the `docs/` folder:

- [Enterprise Setup & CI/CD Guide](docs/enterprise.md)
- [Getting Started & User Guide](docs/getting-started.md)
- [Architecture & Design](docs/architecture.md)

## 🤖 AI Provider Setup

Venruk uses powerful LLMs to analyze code. You can export API keys in your environment:

```bash
# DeepSeek v4 Pro
export DEEPSEEK_API_KEY="sk-..."

# GLM 5.2
export GLM_API_KEY="sk-..."
```
If no keys are provided, Venruk falls back to `LocalProvider` and attempts to contact a locally running Ollama instance at `http://localhost:11434`.

## 📜 License
Apache 2.0
