Code-level compliance coverage report
codeinspectus_compliance_reportProduce a per-framework control-coverage report from a prior code scan, showing findings count against code-visible controls for NIST, ISO, SOC2, CIS, Essential Eight, or OWASP.
Instructions
Produce a per-framework code-level control-coverage view for a prior scan (NIST CSF 2.0, ISO 27001:2022, SOC 2, CIS v8.1, Essential Eight, OWASP Web/LLM). Reports 'X of N code-visible controls have findings' with the code-visible subset as the explicit denominator. This is NOT a compliance audit, certification, or attestation — code-level evidence only.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| scan_id | Yes | scan_id returned by a prior codeinspectus_scan call. | |
| framework | No | Restrict the report to one framework. Default: all frameworks. |
Output Schema
| Name | Required | Description | Default |
|---|---|---|---|
| scan_id | Yes | ||
| disclaimer | Yes | ||
| frameworks | Yes | ||
| posture_note | Yes | ||
| posture_score | Yes |