LICENSE
NOTICE
README.md
pyproject.toml
src/oss_policy_kit/__init__.py
src/oss_policy_kit/__main__.py
src/oss_policy_kit.egg-info/PKG-INFO
src/oss_policy_kit.egg-info/SOURCES.txt
src/oss_policy_kit.egg-info/dependency_links.txt
src/oss_policy_kit.egg-info/entry_points.txt
src/oss_policy_kit.egg-info/requires.txt
src/oss_policy_kit.egg-info/top_level.txt
src/oss_policy_kit/adapters/__init__.py
src/oss_policy_kit/adapters/local_paths.py
src/oss_policy_kit/adapters/scorecard_json.py
src/oss_policy_kit/application/__init__.py
src/oss_policy_kit/application/_evidence_rules.py
src/oss_policy_kit/application/batch_evaluate.py
src/oss_policy_kit/application/cli_output.py
src/oss_policy_kit/application/clock.py
src/oss_policy_kit/application/config_loader.py
src/oss_policy_kit/application/drift.py
src/oss_policy_kit/application/engine.py
src/oss_policy_kit/application/evaluators_ci_cd.py
src/oss_policy_kit/application/evaluators_common.py
src/oss_policy_kit/application/evaluators_containers.py
src/oss_policy_kit/application/evaluators_fuzzing.py
src/oss_policy_kit/application/evaluators_gitlab_ci.py
src/oss_policy_kit/application/evaluators_governance.py
src/oss_policy_kit/application/evaluators_iac.py
src/oss_policy_kit/application/evaluators_iac_bicep.py
src/oss_policy_kit/application/evaluators_iac_cfn.py
src/oss_policy_kit/application/evaluators_iac_pulumi.py
src/oss_policy_kit/application/evaluators_k8s.py
src/oss_policy_kit/application/evaluators_platform.py
src/oss_policy_kit/application/evaluators_release.py
src/oss_policy_kit/application/evaluators_sast.py
src/oss_policy_kit/application/evaluators_supply_chain.py
src/oss_policy_kit/application/evaluators_vuln_management.py
src/oss_policy_kit/application/evaluators_webhook.py
src/oss_policy_kit/application/evidence_loading.py
src/oss_policy_kit/application/evidence_placeholders.py
src/oss_policy_kit/application/evidence_projection.py
src/oss_policy_kit/application/evidence_scaffold.py
src/oss_policy_kit/application/init_planner.py
src/oss_policy_kit/application/init_writer.py
src/oss_policy_kit/application/input_limits.py
src/oss_policy_kit/application/loader.py
src/oss_policy_kit/application/profile_hints.py
src/oss_policy_kit/application/reporting.py
src/oss_policy_kit/application/sarif_writer.py
src/oss_policy_kit/application/waivers.py
src/oss_policy_kit/application/evaluators/__init__.py
src/oss_policy_kit/application/evaluators/_shared.py
src/oss_policy_kit/application/evaluators/ai.py
src/oss_policy_kit/application/evaluators/aws.py
src/oss_policy_kit/application/evaluators/azure.py
src/oss_policy_kit/application/evaluators/cicd.py
src/oss_policy_kit/application/evaluators/cra.py
src/oss_policy_kit/application/evaluators/github.py
src/oss_policy_kit/application/evaluators/gitlab.py
src/oss_policy_kit/application/evaluators/governance.py
src/oss_policy_kit/application/evaluators/supply_chain.py
src/oss_policy_kit/cli/__init__.py
src/oss_policy_kit/cli/batch.py
src/oss_policy_kit/cli/common.py
src/oss_policy_kit/cli/emit_insights.py
src/oss_policy_kit/cli/emit_vex.py
src/oss_policy_kit/cli/evaluate.py
src/oss_policy_kit/cli/evidence.py
src/oss_policy_kit/cli/export_evidence.py
src/oss_policy_kit/cli/help_text.py
src/oss_policy_kit/cli/init.py
src/oss_policy_kit/cli/main.py
src/oss_policy_kit/cli/profiles.py
src/oss_policy_kit/cli/recommend.py
src/oss_policy_kit/cli/reports.py
src/oss_policy_kit/cli/scan_bicep.py
src/oss_policy_kit/cli/scan_cfn.py
src/oss_policy_kit/cli/scan_iac.py
src/oss_policy_kit/cli/scan_k8s.py
src/oss_policy_kit/cli/scan_pulumi.py
src/oss_policy_kit/cli/scan_sast.py
src/oss_policy_kit/cli/terminal_ui.py
src/oss_policy_kit/data/controls/catalog.yaml
src/oss_policy_kit/data/profiles/ai-agent-baseline-1/profile.yaml
src/oss_policy_kit/data/profiles/appsec-agentic-asi-1/profile.yaml
src/oss_policy_kit/data/profiles/appsec-llm-ssdf-218a-1/profile.yaml
src/oss_policy_kit/data/profiles/appsec-mcp-server-1/profile.yaml
src/oss_policy_kit/data/profiles/appsec-sast-sca-1/profile.yaml
src/oss_policy_kit/data/profiles/aws-level-1/profile.yaml
src/oss_policy_kit/data/profiles/aws-level-2/profile.yaml
src/oss_policy_kit/data/profiles/aws-level-3/profile.yaml
src/oss_policy_kit/data/profiles/aws-release-hardening-1/profile.yaml
src/oss_policy_kit/data/profiles/aws-release-hardening-2/profile.yaml
src/oss_policy_kit/data/profiles/aws-release-hardening-3/profile.yaml
src/oss_policy_kit/data/profiles/azure-level-1/profile.yaml
src/oss_policy_kit/data/profiles/azure-level-2/profile.yaml
src/oss_policy_kit/data/profiles/azure-level-3/profile.yaml
src/oss_policy_kit/data/profiles/azure-release-hardening-1/profile.yaml
src/oss_policy_kit/data/profiles/azure-release-hardening-2/profile.yaml
src/oss_policy_kit/data/profiles/azure-release-hardening-3/profile.yaml
src/oss_policy_kit/data/profiles/cis-supply-chain-1/profile.yaml
src/oss_policy_kit/data/profiles/container-baseline-1/profile.yaml
src/oss_policy_kit/data/profiles/cra-eu-ai-act-art11-1/profile.yaml
src/oss_policy_kit/data/profiles/cra-eu-ready-1/profile.yaml
src/oss_policy_kit/data/profiles/cra-eu-ready-2-1/profile.yaml
src/oss_policy_kit/data/profiles/cra-eu-reporting-1/profile.yaml
src/oss_policy_kit/data/profiles/cra-eu-strict-1/profile.yaml
src/oss_policy_kit/data/profiles/github-aws-level-2/profile.yaml
src/oss_policy_kit/data/profiles/github-azure-level-2/profile.yaml
src/oss_policy_kit/data/profiles/github-level-1/profile.yaml
src/oss_policy_kit/data/profiles/github-level-2/profile.yaml
src/oss_policy_kit/data/profiles/github-level-3/profile.yaml
src/oss_policy_kit/data/profiles/github-release-hardening-1/profile.yaml
src/oss_policy_kit/data/profiles/github-release-hardening-2/profile.yaml
src/oss_policy_kit/data/profiles/github-release-hardening-3/profile.yaml
src/oss_policy_kit/data/profiles/gitlab-level-1/profile.yaml
src/oss_policy_kit/data/profiles/gitlab-level-2/profile.yaml
src/oss_policy_kit/data/profiles/gitlab-level-3/profile.yaml
src/oss_policy_kit/data/profiles/iac-bicep-baseline-1/profile.yaml
src/oss_policy_kit/data/profiles/iac-cfn-baseline-1/profile.yaml
src/oss_policy_kit/data/profiles/iac-pulumi-baseline-1/profile.yaml
src/oss_policy_kit/data/profiles/iac-terraform-baseline-1/profile.yaml
src/oss_policy_kit/data/profiles/kubernetes-baseline-1/profile.yaml
src/oss_policy_kit/data/profiles/osps-baseline-1/profile.yaml
src/oss_policy_kit/data/profiles/osps-baseline-2026-1/profile.yaml
src/oss_policy_kit/data/profiles/oss-publish-readiness-1/profile.yaml
src/oss_policy_kit/data/profiles/owasp-cicd-top10-1/profile.yaml
src/oss_policy_kit/data/profiles/s2c2f-l1-1/profile.yaml
src/oss_policy_kit/data/profiles/s2c2f-l2-1/profile.yaml
src/oss_policy_kit/data/profiles/s2c2f-l3-1/profile.yaml
src/oss_policy_kit/data/profiles/slsa-build-l2-1/profile.yaml
src/oss_policy_kit/data/profiles/slsa-source-l1-1/profile.yaml
src/oss_policy_kit/data/profiles/slsa-source-l2-1/profile.yaml
src/oss_policy_kit/data/profiles/ssdf-baseline-1/profile.yaml
src/oss_policy_kit/data/profiles/webhook-security-1/profile.yaml
src/oss_policy_kit/data/profiles/webhook-security-2/profile.yaml
src/oss_policy_kit/data/schema/__init__.py
src/oss_policy_kit/data/schema/evaluation-report-v1.schema.json
src/oss_policy_kit/data/schema/evaluation-report-v2.schema.json
src/oss_policy_kit/data/schema/evaluation-report-v3.schema.json
src/oss_policy_kit/data/schema/evidence-ai-agent-baseline.schema.json
src/oss_policy_kit/data/schema/evidence-ai-system-technical-doc.schema.json
src/oss_policy_kit/data/schema/evidence-audit-log-streaming.schema.json
src/oss_policy_kit/data/schema/evidence-aws-codebuild-project.schema.json
src/oss_policy_kit/data/schema/evidence-aws-codepipeline.schema.json
src/oss_policy_kit/data/schema/evidence-aws-provenance-artifact.schema.json
src/oss_policy_kit/data/schema/evidence-aws-sbom-artifact.schema.json
src/oss_policy_kit/data/schema/evidence-azure-branch-policies.schema.json
src/oss_policy_kit/data/schema/evidence-azure-pipeline-governance.schema.json
src/oss_policy_kit/data/schema/evidence-azure-provenance-artifact.schema.json
src/oss_policy_kit/data/schema/evidence-azure-sbom-artifact.schema.json
src/oss_policy_kit/data/schema/evidence-branch-protection.schema.json
src/oss_policy_kit/data/schema/evidence-disclosure-policy.schema.json
src/oss_policy_kit/data/schema/evidence-github-environment-protection.schema.json
src/oss_policy_kit/data/schema/evidence-github-provenance-artifact.schema.json
src/oss_policy_kit/data/schema/evidence-github-rulesets.schema.json
src/oss_policy_kit/data/schema/evidence-github-secret-scanning.schema.json
src/oss_policy_kit/data/schema/evidence-iac-bicep.schema.json
src/oss_policy_kit/data/schema/evidence-iac-cfn.schema.json
src/oss_policy_kit/data/schema/evidence-iac-pulumi.schema.json
src/oss_policy_kit/data/schema/evidence-iac-terraform.schema.json
src/oss_policy_kit/data/schema/evidence-k8s-baseline.schema.json
src/oss_policy_kit/data/schema/evidence-org-mfa-posture.schema.json
src/oss_policy_kit/data/schema/evidence-release-archival-policy.schema.json
src/oss_policy_kit/data/schema/evidence-runner-groups.schema.json
src/oss_policy_kit/data/schema/profile-recommendation-v2.schema.json
src/oss_policy_kit/data/schema/profile-spec.schema.json
src/oss_policy_kit/data/schema/reports/2.0.json
src/oss_policy_kit/domain/__init__.py
src/oss_policy_kit/domain/errors.py
src/oss_policy_kit/domain/models.py
src/oss_policy_kit/domain/plugin_contract.py
src/oss_policy_kit/infrastructure/__init__.py
src/oss_policy_kit/infrastructure/aws_ci_parser.py
src/oss_policy_kit/infrastructure/azure_pipeline_parser.py
src/oss_policy_kit/infrastructure/fs_walk.py
src/oss_policy_kit/infrastructure/git_remote.py
src/oss_policy_kit/infrastructure/gitlab_ci_parser.py
src/oss_policy_kit/infrastructure/workflow_parser.py
src/oss_policy_kit/infrastructure/yaml_io.py
src/oss_policy_kit/infrastructure/collectors/__init__.py
src/oss_policy_kit/infrastructure/collectors/aws_collector.py
src/oss_policy_kit/infrastructure/collectors/azure_collector.py
src/oss_policy_kit/infrastructure/collectors/base.py
src/oss_policy_kit/infrastructure/collectors/github_collector.py
src/oss_policy_kit/infrastructure/iac/__init__.py
src/oss_policy_kit/infrastructure/iac/hcl_loader.py
src/oss_policy_kit/infrastructure/iac/scanner.py
src/oss_policy_kit/infrastructure/iac/tf_resource_index.py
src/oss_policy_kit/infrastructure/iac/bicep/__init__.py
src/oss_policy_kit/infrastructure/iac/bicep/scanner.py
src/oss_policy_kit/infrastructure/iac/cfn/__init__.py
src/oss_policy_kit/infrastructure/iac/cfn/scanner.py
src/oss_policy_kit/infrastructure/iac/pulumi/__init__.py
src/oss_policy_kit/infrastructure/iac/pulumi/scanner.py
src/oss_policy_kit/infrastructure/k8s/__init__.py
src/oss_policy_kit/infrastructure/k8s/helm_renderer.py
src/oss_policy_kit/infrastructure/k8s/scanner.py
src/oss_policy_kit/infrastructure/scanners/__init__.py
src/oss_policy_kit/infrastructure/scanners/semgrep_adapter.py
tests/test_check_public_hygiene.py