atlan-application-sdk-conformance 0.2.0__tar.gz

atlan_application_sdk_conformance-0.2.0/.gitignore

@@ -0,0 +1,195 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+share/python-wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.nox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*.cover
+*.py,cover
+.hypothesis/
+.pytest_cache/
+cover/
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+local_settings.py
+db.sqlite3
+db.sqlite3-journal
+
+# Flask stuff:
+instance/
+.webassets-cache
+
+# Scrapy stuff:
+.scrapy
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+.pybuilder/
+target/
+
+# Jupyter Notebook
+.ipynb_checkpoints
+
+# IPython
+profile_default/
+ipython_config.py
+
+# pyenv
+#   For a library or package, you might want to ignore these files since the code is
+#   intended to run in multiple environments; otherwise, check them in:
+# .python-version
+
+# pipenv
+#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
+#   However, in case of collaboration, if having platform-specific dependencies or dependencies
+#   having no cross-platform support, pipenv may install dependencies that don't work, or not
+#   install all needed dependencies.
+#Pipfile.lock
+
+# pdm
+#   Similar to Pipfile.lock, it is generally recommended to include pdm.lock in version control.
+#pdm.lock
+#   pdm stores project-wide configurations in .pdm.toml, but it is recommended to not include it
+#   in version control.
+#   https://pdm.fming.dev/latest/usage/project/#working-with-version-control
+.pdm.toml
+.pdm-python
+.pdm-build/
+
+# PEP 582; used by e.g. github.com/David-OConnor/pyflow and github.com/pdm-project/pdm
+__pypackages__/
+
+# Celery stuff
+celerybeat-schedule
+celerybeat.pid
+
+# SageMath parsed files
+*.sage.py
+
+# Environments
+.env
+.venv
+env/
+venv/
+ENV/
+env.bak/
+venv.bak/
+
+# Spyder project settings
+.spyderproject
+.spyproject
+
+# Rope project settings
+.ropeproject
+
+# mkdocs documentation
+docs/site
+
+# mypy
+.mypy_cache/
+.dmypy.json
+dmypy.json
+
+# Pyre type checker
+.pyre/
+
+# pytype static type analyzer
+.pytype/
+
+# Cython debug symbols
+cython_debug/
+
+# PyCharm
+#  JetBrains specific template is maintained in a separate JetBrains.gitignore that can
+#  be found at https://github.com/github/gitignore/blob/main/Global/JetBrains.gitignore
+#  and can be added to the global gitignore or merged into this file.  For a more nuclear
+#  option (not recommended) you can uncomment the following to ignore the entire idea folder.
+.idea/
+.atlan
+
+workflow_status.md
+
+# Scale data generator
+output
+docs/reference/*.rst
+.DS_Store
+
+# Interrogate coverage report
+docstring-cov.md
+
+# vscode settings
+.vscode
+
+# local
+local/
+temporal.db
+
+# Claude Code worktrees
+.claude/worktrees/
+
+# Claude Code plans (local working files, not for version control)
+.claude/plans/
+# >>> atlan-builders >>>
+# Managed by atlan-core — edit inside this block and it will be preserved
+# only until the next bootstrap tick. Add your own rules outside the block.
+.atlan/journal/pending.jsonl
+.atlan/journal/.drafts/
+.atlan/cache/
+# <<< atlan-builders <<<
+
+# Claude Code runtime lock files
+.claude/scheduled_tasks.lock
+
+# Remediation run artifacts
+remediation/node_modules/
+remediation/runs/
+
+# Renovate setup
+renovate-config/README.md

atlan_application_sdk_conformance-0.2.0/CHANGELOG.md

@@ -0,0 +1,10 @@
+# Changelog
+
+All notable changes to `atlan-application-sdk-conformance` are documented here.
+
+## [0.2.0] - 2026-06-15
+
+### Features
+
+- extract conformance suite to standalone publishable package (#2138) ([595d0e8](https://github.com/atlanhq/application-sdk/commit/595d0e8))
+

atlan_application_sdk_conformance-0.2.0/PKG-INFO

@@ -0,0 +1,64 @@
+Metadata-Version: 2.4
+Name: atlan-application-sdk-conformance
+Version: 0.2.0
+Summary: Conformance suite, remediation programs, and CLI for the Atlan Application SDK
+Author-email: Atlan App Team <connect@atlan.com>
+License-Expression: Apache-2.0
+Keywords: atlan,conformance,linting,remediation,sdk
+Classifier: Development Status :: 4 - Beta
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: Apache Software License
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Classifier: Programming Language :: Python :: 3.14
+Requires-Python: >=3.11
+Requires-Dist: jsonschema<5.0.0,>=4.23.0
+Requires-Dist: pydantic<3.0.0,>=2.10.6
+Provides-Extra: test
+Requires-Dist: atlan-application-sdk; extra == 'test'
+Requires-Dist: pytest-asyncio<2.0.0,>=1.4.0; extra == 'test'
+Requires-Dist: pytest<10.0.0,>=8.3.3; extra == 'test'
+Description-Content-Type: text/markdown
+
+# atlan-application-sdk-conformance
+
+Dev-only conformance suite, remediation programs, and CLI for the
+[Atlan Application SDK](https://pypi.org/project/atlan-application-sdk/).
+
+**Do not add this as a production dependency.** It is intended for developer
+machines and CI only.
+
+## Installation
+
+```bash
+uv add --dev atlan-application-sdk-conformance
+```
+
+## Usage
+
+```bash
+# Run the conformance suite
+uv run atlan-application-sdk-conformance detect --repo . --series E,L,C --output report.sarif
+
+# Get the path to bundled remediation programs (for SKILL.md / reactor)
+uv run atlan-application-sdk-conformance programs-dir
+
+# Regenerate rule docs
+uv run atlan-application-sdk-conformance gen-rule-docs
+```
+
+## In CI
+
+Consumer repos should reference this package via the reusable workflow in
+`atlanhq/application-sdk`:
+
+```yaml
+uses: atlanhq/application-sdk/.github/workflows/conformance-reusable.yaml@main
+# No inputs required — the published PyPI package is used by default.
+```
+
+See `conformance/programs/conformance-remediation.prose.md` for the
+`/remediate` skill entry contract.

atlan_application_sdk_conformance-0.2.0/README.md

@@ -0,0 +1,39 @@
+# atlan-application-sdk-conformance
+
+Dev-only conformance suite, remediation programs, and CLI for the
+[Atlan Application SDK](https://pypi.org/project/atlan-application-sdk/).
+
+**Do not add this as a production dependency.** It is intended for developer
+machines and CI only.
+
+## Installation
+
+```bash
+uv add --dev atlan-application-sdk-conformance
+```
+
+## Usage
+
+```bash
+# Run the conformance suite
+uv run atlan-application-sdk-conformance detect --repo . --series E,L,C --output report.sarif
+
+# Get the path to bundled remediation programs (for SKILL.md / reactor)
+uv run atlan-application-sdk-conformance programs-dir
+
+# Regenerate rule docs
+uv run atlan-application-sdk-conformance gen-rule-docs
+```
+
+## In CI
+
+Consumer repos should reference this package via the reusable workflow in
+`atlanhq/application-sdk`:
+
+```yaml
+uses: atlanhq/application-sdk/.github/workflows/conformance-reusable.yaml@main
+# No inputs required — the published PyPI package is used by default.
+```
+
+See `conformance/programs/conformance-remediation.prose.md` for the
+`/remediate` skill entry contract.

atlan_application_sdk_conformance-0.2.0/conformance/__init__.py

@@ -0,0 +1,7 @@
+"""Atlan Application SDK Conformance Suite.
+
+Dev-only package.  Provides the conformance validators, remediation programs,
+and CLI for the atlan-application-sdk ecosystem.
+"""
+
+__version__ = "0.2.0"

atlan_application_sdk_conformance-0.2.0/conformance/cli.py

@@ -0,0 +1,126 @@
+"""Entry point for the atlan-application-sdk-conformance CLI."""
+
+from __future__ import annotations
+
+import sys
+
+
+def _cmd_detect(argv: list[str]) -> int:
+    from conformance.suite.runner import main
+
+    return main(argv)
+
+
+def _cmd_programs_dir(_argv: list[str]) -> int:
+    import importlib.resources as _ir
+    import pathlib
+
+    programs = _ir.files("conformance") / "programs"
+    # Resolve to a real filesystem path (works for both installed wheels and
+    # editable installs where the files are already on disk).
+    try:
+        ctx = _ir.as_file(programs)
+        with ctx as p:
+            print(str(p))
+    except (FileNotFoundError, ModuleNotFoundError):
+        # Fallback: direct path (editable installs)
+        here = pathlib.Path(__file__).parent
+        print(str(here / "programs"))
+    return 0
+
+
+def _cmd_gen_rule_docs(argv: list[str]) -> int:
+    from conformance.tools.generate_rule_docs import main
+
+    try:
+        main(argv)
+        return 0
+    except SystemExit as e:
+        return int(e.code) if e.code is not None else 0
+
+
+def _cmd_remediate(argv: list[str]) -> int:
+    """Print the resolved programs path + version, then exit.
+
+    The actual remediation loop is driven by the SKILL.md shim which reads
+    the .prose.md contracts from the printed programs directory.
+    """
+    import pathlib
+
+    from conformance import __version__
+
+    here = pathlib.Path(__file__).parent
+    programs = here / "programs"
+    print(f"atlan-application-sdk-conformance {__version__}")
+    print(f"programs: {programs}")
+    print(f"entry:    {programs / 'conformance-remediation.prose.md'}")
+    return 0
+
+
+# The SKILL.md written by `bootstrap`. Keep it minimal and stable — the real
+# logic lives in the package; this shim just locates and invokes it.
+_SKILL_MD = """\
+---
+name: remediate
+description: Drive the conformance remediation loop (validators + OpenProse programs from the atlan-application-sdk-conformance package)
+argument-hint: "[--area error-handling|logging|ci] [--strict] [path]"
+---
+
+1. Resolve programs dir:
+   - Inside a connector repo: `PROGRAMS=$(uv run atlan-application-sdk-conformance programs-dir)`
+   - Anywhere else: `PROGRAMS=$(uvx atlan-application-sdk-conformance@latest programs-dir)`
+2. Read `$PROGRAMS/conformance-remediation.prose.md` and execute it as the entry contract.
+3. All gated re-checks call `atlan-application-sdk-conformance detect` — follow the .prose.md exactly.
+"""
+
+
+def _cmd_bootstrap(argv: list[str]) -> int:
+    """Write .claude/skills/remediate/SKILL.md in the current repo (or --force to overwrite)."""
+    import pathlib
+
+    force = "--force" in argv
+    dest = pathlib.Path.cwd() / ".claude" / "skills" / "remediate" / "SKILL.md"
+
+    if dest.exists() and not force:
+        print(f"already installed: {dest}  (pass --force to overwrite)")
+        return 0
+
+    existed = dest.exists()
+    dest.parent.mkdir(parents=True, exist_ok=True)
+    dest.write_text(_SKILL_MD)
+    action = "updated" if existed else "installed"
+    print(f"{action}: {dest}")
+    return 0
+
+
+_COMMANDS = {
+    "detect": _cmd_detect,
+    "programs-dir": _cmd_programs_dir,
+    "gen-rule-docs": _cmd_gen_rule_docs,
+    "remediate": _cmd_remediate,
+    "bootstrap": _cmd_bootstrap,
+}
+
+_USAGE = """\
+usage: atlan-application-sdk-conformance <command> [args]
+
+commands:
+  detect         Run the conformance suite and emit SARIF
+  programs-dir   Print the absolute path to the bundled .prose.md programs
+  gen-rule-docs  Regenerate rule docs from Python rule definitions
+  remediate      Print programs path + version banner (SKILL.md drives execution)
+  bootstrap      Write ~/.claude/skills/remediate/SKILL.md  (--force to overwrite)
+"""
+
+
+def main() -> None:
+    if len(sys.argv) < 2 or sys.argv[1] in ("-h", "--help"):
+        print(_USAGE)
+        sys.exit(0)
+
+    cmd = sys.argv[1]
+    if cmd not in _COMMANDS:
+        print(f"error: unknown command '{cmd}'\n{_USAGE}", file=sys.stderr)
+        sys.exit(1)
+
+    sys.exit(_COMMANDS[cmd](sys.argv[2:]))

atlan_application_sdk_conformance-0.2.0/conformance/docs/rules/ci.md

@@ -0,0 +1,33 @@
+<!-- AUTO-GENERATED — do not edit this file directly.
+     Source of truth: conformance/suite/rules/ci.py
+     To regenerate:  uv run poe generate-rule-docs
+     To check CI staleness: uv run poe generate-rule-docs --check -->
+
+# CI/Workflow Supply-Chain Rules (C-series)
+
+**1 rule** · Checker: `suite.checks.actions_pinning` and related workflow checks (static)
+
+Suppress a finding on the violating line or the line directly above it:
+
+```python
+# conformance: ignore[C001] intentional: org-internal action
+```
+
+| ID | Name | Tier | Category | Autofixable | Since |
+|---|---|---|---|---|---|
+| [C001](#c001) | `UnpinnedActionReference` | `block` | `supply-chain` | yes | 3.16.0 |
+
+---
+
+## C001 — `UnpinnedActionReference` {#c001}
+
+**Tier:** `block` · **Category:** `supply-chain` · **Autofixable:** yes · **Since:** 3.16.0
+
+> External GitHub Action not pinned to a full commit digest
+
+External actions reused via `uses:` must be pinned to a full-length commit SHA (digest),
+never a mutable tag (@v4) or branch (@main). A tag can be re-pointed to malicious code
+after review. Actions in the `atlanhq/` org are exempt (they intentionally track @main);
+local `./` composite-action refs are exempt (no version to pin).
+
+---