https://github.com/gusinfosec/compliance-as-code
Codify frameworks (SOX, PCI DSS, HIPAA, ISO27001) into YAML. Automate evidence collection and keep dashboards audit-ready β without the spreadsheets..
https://github.com/gusinfosec/compliance-as-code
audit automation cybersecurity github-actions sas
Last synced: 5 months ago
JSON representation
Codify frameworks (SOX, PCI DSS, HIPAA, ISO27001) into YAML. Automate evidence collection and keep dashboards audit-ready β without the spreadsheets..
- Host: GitHub
- URL: https://github.com/gusinfosec/compliance-as-code
- Owner: gusinfosec
- License: mit
- Created: 2025-09-27T03:55:29.000Z (6 months ago)
- Default Branch: main
- Last Pushed: 2025-10-08T03:15:49.000Z (5 months ago)
- Last Synced: 2025-10-08T05:35:04.321Z (5 months ago)
- Topics: audit, automation, cybersecurity, github-actions, sas
- Homepage:
- Size: 4.7 MB
- Stars: 1
- Watchers: 0
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE.md
Awesome Lists containing this project
README
---
# Compliance-as-Code
---
### π Get Compliance-as-Code
Automate your compliance journey with YAML-based policies, evidence collection, and audit dashboards.
Choose a subscription tier or a one-time download.
[](https://buy.stripe.com/3cIfZh8Yo9SL4bD12ffbq03)
[](https://buy.stripe.com/fZu3cv8Yo7KD4bD12ffbq04)
---
### β One-Time Ko-fi Purchase
Prefer a single purchase? Get the current version as a direct download.
*(Future updates require a new purchase or Stripe subscription.)*
[](https://ko-fi.com/s/76ff7669fc)
---
**Codify compliance. Automate evidence. Stay auditβready.**
Compliance-as-Code (CaC) turns frameworks like SOX, PCI DSS, ISO 27001, and HIPAA into YAML policies that drive automation and audit dashboards.
---
## π What is CaC?
CaC is a **B2B SaaS** platform that simplifies compliance management:
- **Policy-as-Code**: YAML-based compliance controls.
- **Automation**: Collect evidence automatically across your systems.
- **Audit-Ready Dashboards**: Export clean reports for auditors.
- **Integrations**: Works with your CI/CD, cloud infra, and ticketing tools.
---
## π³ Pricing & Plans
Choose a subscription tier or a one-time Ko-fi purchase.
### π£ Startup β **$99/mo**
- Full YAML policy engine (SOX, PCI, HIPAA, ISO27001)
- Automated evidence collection
- Compliance dashboard access
- Basic integrations (GitHub, GitLab, Jira)
---
### π Enterprise β **$499/mo**
Everything in Startup, plus:
- Advanced integrations (Atlassian, ServiceNow, cloud APIs)
- Priority roadmap influence
- Premium onboarding & support
- Export-ready auditor packages
---
### β One-Time Ko-fi Purchase β **$15**
- Download current version instantly
- No subscription required
*(future updates require new purchase or subscription)*
[](https://ko-fi.com/yourlink)
---
## π Compare Plans
| Feature | Startup ($99/mo) | Enterprise ($499/mo) |
|--------------------------------------|------------------|-----------------------|
| YAML Policy Engine | β
| β
|
| Automated Evidence Collection | β
| β
|
| Audit Dashboards & Exports | β
| β
|
| Basic Integrations (GitHub/Jira) | β
| β
|
| Advanced Integrations (Atlassian, etc.) | β | β
|
| Priority Roadmap Influence | β | β
|
| Premium Onboarding & Support | β | β
|
---
## β‘ Quick Install
1. Clone the repo and install dependencies:
```bash
git clone https://github.com/gusinfosec/compliance-as-code.git
cd compliance-as-code
pnpm install
```
2. Start API (port 4000) & Web (port 3001):
```bash
pnpm --filter cac-api dev
pnpm --filter cac-web dev
```
3. Open browser at `http://localhost:3001`
---
## π License & Privacy
- [LICENSE.md](LICENSE.md) β MIT License
- [PRIVACY.md](PRIVACY.md) β Our privacy commitment
---
## π€ Support
- π³ Stripe: Monthly subscriptions (Startup / Enterprise)
- β Ko-fi: One-time support ($15)
- GitHub Sponsors: Coming soon
---
**Compliance-as-Code** β Automating trust, one YAML at a time.