Multi-framework policy-as-code compliance scanner for infrastructure and application code.
Project description
prodcycle
Multi-framework policy-as-code compliance scanner for infrastructure and application code. Scans Terraform, Kubernetes, Docker, .env, and application source against SOC 2, HIPAA, and NIST CSF policies.
Features
- 3 compliance frameworks: SOC 2, HIPAA, NIST CSF
- Automated policy enforcement: Server-side OPA/Rego and Cedar evaluation engines
- Infrastructure scanning: Terraform, Kubernetes manifests, Dockerfiles,
.envfiles - Application code scanning: TypeScript, Python, Go, Java, Ruby
- CI/CD integration: CLI with SARIF output for GitHub Code Scanning
- Programmatic API: Full Python API for custom integrations
- Self-remediation:
gate()function returns actionable remediation prompts
Installation
pip install prodcycle
Quick Start
CLI
# Scan current directory against SOC 2 and HIPAA
prodcycle . --framework soc2,hipaa
# Output as SARIF for GitHub Code Scanning
prodcycle . --framework soc2 --format sarif --output results.sarif
# Set severity threshold (only report HIGH and above)
prodcycle . --framework hipaa --severity-threshold high
Programmatic API
from prodcycle import scan, gate
# Full Repository Scan
response = scan(
repo_path='/path/to/repo',
frameworks=['soc2', 'hipaa'],
options={
'severityThreshold': 'high',
'failOn': ['critical', 'high'],
}
)
print(f"Found {len(response['findings'])} findings")
print(f"Exit code: {response['exitCode']}")
# Gate function (for coding agents)
result = gate(
files={
'src/config.ts': 'export const DB_PASSWORD = "hardcoded-secret";',
'terraform/main.tf': 'resource "aws_s3_bucket" "data" { }',
},
frameworks=['soc2', 'hipaa'],
)
if not result['passed']:
print('Compliance issues found:')
print(result['prompt']) # Pre-formatted remediation instructions
API Key
An API key is required for production use to authenticate with ProdCycle. Set it via environment variable:
export PC_API_KEY=pc_your_api_key_here
API keys are created through the ProdCycle dashboard.
Requirements
- Python >= 3.12
License
MIT
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file prodcycle-0.2.0.tar.gz.
File metadata
- Download URL: prodcycle-0.2.0.tar.gz
- Upload date:
- Size: 8.7 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.12.11
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
2e5e8b2cc1e69c0c5e217c6de9cd6a94aaf5282c0dcd6f5c85fb1fa47c8d2b2e
|
|
| MD5 |
0a6969d7596527ecedd989610bc84427
|
|
| BLAKE2b-256 |
d016b32d37e4ef44f1f6d7b9f713887e68c85603760287cfd4327523d4aeb138
|
File details
Details for the file prodcycle-0.2.0-py3-none-any.whl.
File metadata
- Download URL: prodcycle-0.2.0-py3-none-any.whl
- Upload date:
- Size: 9.1 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.12.11
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
9b36c4615fd68e0a391a4b7a604b64847d367c7d1269a535774f11ac7553a54d
|
|
| MD5 |
2862e6bb2f9fc096593b7879b2c69635
|
|
| BLAKE2b-256 |
537dea033a16fd31b245c5fa86c961e89217e45ae904072017ed23c90ff9a2bb
|
