Run compliance and security audit
audit-runcommandsetup L3★1
jonmaxmore/GACP-Certification-Application ↗What it does
Run platform-wide security and compliance audit in parallel across two agents
Best for
Monthly security/compliance audits and pre-release verification on platforms with strict PDPA/regulatory requirements
Inputs
- · main branch
- · GACP platform codebase
Outputs
- · 08-security-audit.md
- · 09-compliance-audit.md
- · 13-audit-summary.md
- · critical findings escalation
Requires
- · npm audit
- · secret scan tools
- · OWASP Top 10 scanner
- · compliance rule checker
Preconditions
- · main branch accessible
- · npm installed
- · platform codebase in root
Failure modes
- · false positives in secret scan
- · compliance rules outdated
- · audit incomplete due to timeouts
Trust signals
- · Parallel agents (QA security + QA compliance)
- · three-tier severity (critical/high/medium/low)
- · comparison vs last audit