← Back to skill catalog
GeneratorArchitect OS eligible

Compliance Builder

Generates compliance artifacts — policy documents, technical controls, evidence collection systems, and audit-ready documentation. Closes gaps identified by compliance-mapper and SOX compliance agent.

How to activate

Say any of these phrases in your IDE to trigger this skill:

build compliancegenerate compliancecompliance artifactsbuild controlsgenerate policiescompliance documentationaudit evidence

Run via CLI

enterprise-skills run compliance-builder

Aliases:

build-compliancecompliance-artifactscompliance-docsbuild-controlsgenerate-policies

Relationships

Depends on:

Governance Enforcement

Enforces Pre-Code Gate, model roles, preflight resolution, mid-session handoff, execution logging, and feedback capture. Reads .project-ai/ authority pack when available.

Coordinates with:

Compliance Mapper

Maps codebase against regulatory compliance frameworks (SOC 2, HIPAA, GDPR). Generates compliance matrices and gap reports.

SOX Compliance Agent

Sarbanes-Oxley compliance and financial security agent. Audits financial data handling, access controls, audit trails, change management, segregation of duties. Covers SOX Section 302/404, COSO framework, and ITGC.

Security Audit

Scans for auth gaps, hardcoded secrets, missing RLS, XSS, CSRF, unprotected routes, exposed env vars.

Security Hardening Agent

Audits and remediates infrastructure, application, and network security. Covers OWASP Top 10, CIS Benchmarks, HTTP headers, TLS, CORS, CSP, container security, IAM, supply chain, and zero-trust assessment.