ciso-assistant-api 0.1.0__tar.gz

ciso_assistant_api-0.1.0/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Audel Rouhi
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

ciso_assistant_api-0.1.0/MANIFEST.in

@@ -0,0 +1,4 @@
+include LICENSE
+include README.md
+include requirements.txt
+recursive-include ciso_assistant_api *.md *.json *.yaml *.yml *.py

ciso_assistant_api-0.1.0/PKG-INFO

@@ -0,0 +1,223 @@
+Metadata-Version: 2.4
+Name: ciso-assistant-api
+Version: 0.1.0
+Summary: CISO Assistant API + MCP Server + A2A Agent — 100% API coverage
+Author-email: Audel Rouhi <knucklessg1@gmail.com>
+License: MIT
+Classifier: Development Status :: 4 - Beta
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Environment :: Console
+Classifier: Operating System :: POSIX :: Linux
+Classifier: Programming Language :: Python :: 3
+Requires-Python: <3.15,>=3.11
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: agent-utilities>=0.51.0
+Requires-Dist: python-dotenv>=1.0.0
+Requires-Dist: requests>=2.32.0
+Provides-Extra: mcp
+Requires-Dist: agent-utilities[mcp]>=0.51.0; extra == "mcp"
+Provides-Extra: agent
+Requires-Dist: agent-utilities[agent,logfire]>=0.51.0; extra == "agent"
+Provides-Extra: all
+Requires-Dist: ciso-assistant-api[agent,mcp]>=0.1.0; extra == "all"
+Provides-Extra: test
+Requires-Dist: pytest-xdist>=3.6.0; extra == "test"
+Requires-Dist: pytest; extra == "test"
+Requires-Dist: pytest-asyncio; extra == "test"
+Requires-Dist: pytest-cov; extra == "test"
+Dynamic: license-file
+
+# CISO Assistant - A2A | AG-UI | MCP
+
+![PyPI - Version](https://img.shields.io/pypi/v/ciso-assistant-api)
+![MCP Server](https://badge.mcpx.dev?type=server 'MCP Server')
+![PyPI - Downloads](https://img.shields.io/pypi/dd/ciso-assistant-api)
+![GitHub Repo stars](https://img.shields.io/github/stars/Knuckles-Team/ciso-assistant-api)
+![GitHub forks](https://img.shields.io/github/forks/Knuckles-Team/ciso-assistant-api)
+![GitHub contributors](https://img.shields.io/github/contributors/Knuckles-Team/ciso-assistant-api)
+![PyPI - License](https://img.shields.io/pypi/l/ciso-assistant-api)
+![GitHub](https://img.shields.io/github/license/Knuckles-Team/ciso-assistant-api)
+
+![GitHub last commit (by committer)](https://img.shields.io/github/last-commit/Knuckles-Team/ciso-assistant-api)
+![GitHub pull requests](https://img.shields.io/github/issues-pr/Knuckles-Team/ciso-assistant-api)
+![GitHub closed pull requests](https://img.shields.io/github/issues-pr-closed/Knuckles-Team/ciso-assistant-api)
+![GitHub issues](https://img.shields.io/github/issues/Knuckles-Team/ciso-assistant-api)
+
+![GitHub top language](https://img.shields.io/github/languages/top/Knuckles-Team/ciso-assistant-api)
+![GitHub language count](https://img.shields.io/github/languages/count/Knuckles-Team/ciso-assistant-api)
+![GitHub repo size](https://img.shields.io/github/repo-size/Knuckles-Team/ciso-assistant-api)
+![GitHub repo file count (file type)](https://img.shields.io/github/directory-file-count/Knuckles-Team/ciso-assistant-api)
+![PyPI - Wheel](https://img.shields.io/pypi/wheel/ciso-assistant-api)
+![PyPI - Implementation](https://img.shields.io/pypi/implementation/ciso-assistant-api)
+
+*Version: 0.1.0*
+
+## Overview
+
+**CISO Assistant** is a production-grade Python API client, Model Context Protocol
+(MCP) server, and A2A agent for [CISO Assistant](https://github.com/intuitem/ciso-assistant-community),
+intuitem's open-source GRC platform for Risk Management, AppSec, Compliance &
+Audit, TPRM, BIA, Privacy, and Reporting.
+
+It provides **100% coverage of the CISO Assistant REST API** — every one of the
+**~1,565 operations** in the drf-spectacular schema is exposed as both a typed
+client method and an action-routed MCP tool. The client, MCP tools, and a
+machine-readable coverage manifest are all **generated from the vendored OpenAPI
+spec** (`ciso_assistant_api/specs/ciso_assistant.json`) by
+`scripts/generate_from_openapi.py`, and a coverage test asserts the three sets
+stay in lock-step.
+
+### Key Features
+
+- **100% Action-Routed MCP Tools** — one consolidated tool per domain (e.g.
+  `ciso_assistant_compliance`, `ciso_assistant_risk_management`,
+  `ciso_assistant_incidents`) takes an `action` plus a `params_json` payload and
+  routes to the underlying API method. 19 domain tools (mirroring the published
+  documentation categories) cover every endpoint without flooding the IDE tool list.
+- **Full CISO Assistant surface** — Analytics & Metrology, Assets, Authentication
+  & Users, Compliance, EBIOS-RM, Evidence & Attachments, Frameworks & Libraries,
+  Governance, Incidents, Integrations, Privacy, Quantitative Risk (CRQ),
+  Resilience, Risk Management, Security Exceptions & Findings, Settings, Tasks &
+  Timeline, and Third-Party Risk Management.
+- **Knox token auth** — a pre-minted Knox token *or* a username/password pair
+  exchanged for a token at `POST /api/iam/login/`, plus OIDC delegation (RFC 8693)
+  via `agent-utilities`.
+- **Resilient** — honours `429` `Retry-After`, retries transient `5xx`, and
+  transparently follows DRF `next` pagination links.
+
+## MCP
+
+### Using as an MCP Server
+
+The MCP Server runs in `stdio` (local) or `streamable-http` (networked) mode.
+Each domain is a tool gated by a `{TAG}TOOL` environment variable (default `True`),
+so you can scope the surface (e.g. set `CHATTOOL=False` to drop the chat domain).
+
+#### Environment Variables
+
+| Variable | Description |
+| --- | --- |
+| `CISO_ASSISTANT_URL` | Backend host URL, e.g. `https://ciso.arpa` or `http://localhost:8000`. |
+| `CISO_ASSISTANT_TOKEN` | Pre-minted Knox token. |
+| `CISO_ASSISTANT_USERNAME` / `CISO_ASSISTANT_PASSWORD` | Credentials exchanged for a token at `POST /api/iam/login/`. |
+| `CISO_ASSISTANT_SSL_VERIFY` | Verify TLS (default `True`). |
+| `<DOMAIN>TOOL` | Toggle a domain tool, e.g. `INCIDENTSTOOL`, `COMPLIANCETOOL`, `RISK_MANAGEMENTTOOL` (default `True`). |
+
+#### Run in stdio mode (default):
+```bash
+export CISO_ASSISTANT_URL="https://ciso.arpa"
+export CISO_ASSISTANT_TOKEN="your_token"
+ciso-assistant-mcp --transport "stdio"
+```
+
+#### Run in HTTP mode:
+```bash
+export CISO_ASSISTANT_URL="https://ciso.arpa"
+export CISO_ASSISTANT_TOKEN="your_token"
+ciso-assistant-mcp --transport "streamable-http" --host "0.0.0.0" --port "8000"
+```
+
+### Tool Domains
+
+`analytics_metrology`, `assets`, `auth_users`, `chat`, `compliance`, `crq`,
+`ebios_rm`, `evidence`, `frameworks_libraries`, `governance`, `incidents`,
+`integrations`, `privacy`, `resilience`, `risk_management`, `security_findings`,
+`settings`, `tasks_timeline`, `third_party` — plus `custom_api` (a raw REST
+escape hatch).
+
+## A2A Agent
+
+### Run A2A Server
+```bash
+export CISO_ASSISTANT_URL="https://ciso.arpa"
+export CISO_ASSISTANT_TOKEN="your_token"
+ciso-assistant-agent --provider openai --model-id gpt-4o --api-key sk-...
+```
+
+## Docker
+
+### Build
+
+```bash
+docker build -t ciso-assistant-api .
+```
+
+### Run MCP Server
+
+```bash
+docker run -d \
+  --name ciso-assistant-api \
+  -p 8000:8000 \
+  -e TRANSPORT=http \
+  -e CISO_ASSISTANT_URL="https://ciso.arpa" \
+  -e CISO_ASSISTANT_TOKEN="your_token" \
+  knucklessg1/ciso-assistant-api:latest
+```
+
+### Deploy with Docker Compose
+
+```yaml
+services:
+  ciso-assistant-api:
+    image: knucklessg1/ciso-assistant-api:latest
+    environment:
+      - HOST=0.0.0.0
+      - PORT=8000
+      - TRANSPORT=http
+      - CISO_ASSISTANT_URL=https://ciso.arpa
+      - CISO_ASSISTANT_TOKEN=your_token
+    ports:
+      - 8000:8000
+```
+
+#### Configure `mcp.json` for AI Integration (e.g. Claude Desktop)
+
+```json
+{
+  "mcpServers": {
+    "ciso_assistant": {
+      "command": "uv",
+      "args": [
+        "run",
+        "--with",
+        "ciso-assistant-api",
+        "ciso-assistant-mcp"
+      ],
+      "env": {
+        "CISO_ASSISTANT_URL": "https://ciso.arpa",
+        "CISO_ASSISTANT_TOKEN": "your_token"
+      }
+    }
+  }
+}
+```
+
+## Install Python Package
+
+```bash
+python -m pip install ciso-assistant-api
+```
+```bash
+uv pip install ciso-assistant-api
+```
+
+## Documentation
+
+The complete documentation is published as the
+[official documentation site](https://knuckles-team.github.io/ciso-assistant-api/) and is
+the source of truth for installation, usage, and deployment.
+
+| Page | Covers |
+| --- | --- |
+| [Overview](https://knuckles-team.github.io/ciso-assistant-api/overview/) | the action-routed tool surface and architecture |
+| [Installation](https://knuckles-team.github.io/ciso-assistant-api/installation/) | pip, source, extras, prebuilt Docker image |
+| [Usage (API / CLI / MCP)](https://knuckles-team.github.io/ciso-assistant-api/usage/) | the MCP tools, the `Api` client, the CLI |
+| [Deployment](https://knuckles-team.github.io/ciso-assistant-api/deployment/) | run the MCP and agent servers, Compose, env config |
+
+## Repository Owners
+
+<img width="100%" height="180em" src="https://github-readme-stats.vercel.app/api?username=Knucklessg1&show_icons=true&hide_border=true&&count_private=true&include_all_commits=true" />
+
+![GitHub followers](https://img.shields.io/github/followers/Knucklessg1)
+![GitHub User's stars](https://img.shields.io/github/stars/Knucklessg1)

ciso_assistant_api-0.1.0/README.md

@@ -0,0 +1,193 @@
+# CISO Assistant - A2A | AG-UI | MCP
+
+![PyPI - Version](https://img.shields.io/pypi/v/ciso-assistant-api)
+![MCP Server](https://badge.mcpx.dev?type=server 'MCP Server')
+![PyPI - Downloads](https://img.shields.io/pypi/dd/ciso-assistant-api)
+![GitHub Repo stars](https://img.shields.io/github/stars/Knuckles-Team/ciso-assistant-api)
+![GitHub forks](https://img.shields.io/github/forks/Knuckles-Team/ciso-assistant-api)
+![GitHub contributors](https://img.shields.io/github/contributors/Knuckles-Team/ciso-assistant-api)
+![PyPI - License](https://img.shields.io/pypi/l/ciso-assistant-api)
+![GitHub](https://img.shields.io/github/license/Knuckles-Team/ciso-assistant-api)
+
+![GitHub last commit (by committer)](https://img.shields.io/github/last-commit/Knuckles-Team/ciso-assistant-api)
+![GitHub pull requests](https://img.shields.io/github/issues-pr/Knuckles-Team/ciso-assistant-api)
+![GitHub closed pull requests](https://img.shields.io/github/issues-pr-closed/Knuckles-Team/ciso-assistant-api)
+![GitHub issues](https://img.shields.io/github/issues/Knuckles-Team/ciso-assistant-api)
+
+![GitHub top language](https://img.shields.io/github/languages/top/Knuckles-Team/ciso-assistant-api)
+![GitHub language count](https://img.shields.io/github/languages/count/Knuckles-Team/ciso-assistant-api)
+![GitHub repo size](https://img.shields.io/github/repo-size/Knuckles-Team/ciso-assistant-api)
+![GitHub repo file count (file type)](https://img.shields.io/github/directory-file-count/Knuckles-Team/ciso-assistant-api)
+![PyPI - Wheel](https://img.shields.io/pypi/wheel/ciso-assistant-api)
+![PyPI - Implementation](https://img.shields.io/pypi/implementation/ciso-assistant-api)
+
+*Version: 0.1.0*
+
+## Overview
+
+**CISO Assistant** is a production-grade Python API client, Model Context Protocol
+(MCP) server, and A2A agent for [CISO Assistant](https://github.com/intuitem/ciso-assistant-community),
+intuitem's open-source GRC platform for Risk Management, AppSec, Compliance &
+Audit, TPRM, BIA, Privacy, and Reporting.
+
+It provides **100% coverage of the CISO Assistant REST API** — every one of the
+**~1,565 operations** in the drf-spectacular schema is exposed as both a typed
+client method and an action-routed MCP tool. The client, MCP tools, and a
+machine-readable coverage manifest are all **generated from the vendored OpenAPI
+spec** (`ciso_assistant_api/specs/ciso_assistant.json`) by
+`scripts/generate_from_openapi.py`, and a coverage test asserts the three sets
+stay in lock-step.
+
+### Key Features
+
+- **100% Action-Routed MCP Tools** — one consolidated tool per domain (e.g.
+  `ciso_assistant_compliance`, `ciso_assistant_risk_management`,
+  `ciso_assistant_incidents`) takes an `action` plus a `params_json` payload and
+  routes to the underlying API method. 19 domain tools (mirroring the published
+  documentation categories) cover every endpoint without flooding the IDE tool list.
+- **Full CISO Assistant surface** — Analytics & Metrology, Assets, Authentication
+  & Users, Compliance, EBIOS-RM, Evidence & Attachments, Frameworks & Libraries,
+  Governance, Incidents, Integrations, Privacy, Quantitative Risk (CRQ),
+  Resilience, Risk Management, Security Exceptions & Findings, Settings, Tasks &
+  Timeline, and Third-Party Risk Management.
+- **Knox token auth** — a pre-minted Knox token *or* a username/password pair
+  exchanged for a token at `POST /api/iam/login/`, plus OIDC delegation (RFC 8693)
+  via `agent-utilities`.
+- **Resilient** — honours `429` `Retry-After`, retries transient `5xx`, and
+  transparently follows DRF `next` pagination links.
+
+## MCP
+
+### Using as an MCP Server
+
+The MCP Server runs in `stdio` (local) or `streamable-http` (networked) mode.
+Each domain is a tool gated by a `{TAG}TOOL` environment variable (default `True`),
+so you can scope the surface (e.g. set `CHATTOOL=False` to drop the chat domain).
+
+#### Environment Variables
+
+| Variable | Description |
+| --- | --- |
+| `CISO_ASSISTANT_URL` | Backend host URL, e.g. `https://ciso.arpa` or `http://localhost:8000`. |
+| `CISO_ASSISTANT_TOKEN` | Pre-minted Knox token. |
+| `CISO_ASSISTANT_USERNAME` / `CISO_ASSISTANT_PASSWORD` | Credentials exchanged for a token at `POST /api/iam/login/`. |
+| `CISO_ASSISTANT_SSL_VERIFY` | Verify TLS (default `True`). |
+| `<DOMAIN>TOOL` | Toggle a domain tool, e.g. `INCIDENTSTOOL`, `COMPLIANCETOOL`, `RISK_MANAGEMENTTOOL` (default `True`). |
+
+#### Run in stdio mode (default):
+```bash
+export CISO_ASSISTANT_URL="https://ciso.arpa"
+export CISO_ASSISTANT_TOKEN="your_token"
+ciso-assistant-mcp --transport "stdio"
+```
+
+#### Run in HTTP mode:
+```bash
+export CISO_ASSISTANT_URL="https://ciso.arpa"
+export CISO_ASSISTANT_TOKEN="your_token"
+ciso-assistant-mcp --transport "streamable-http" --host "0.0.0.0" --port "8000"
+```
+
+### Tool Domains
+
+`analytics_metrology`, `assets`, `auth_users`, `chat`, `compliance`, `crq`,
+`ebios_rm`, `evidence`, `frameworks_libraries`, `governance`, `incidents`,
+`integrations`, `privacy`, `resilience`, `risk_management`, `security_findings`,
+`settings`, `tasks_timeline`, `third_party` — plus `custom_api` (a raw REST
+escape hatch).
+
+## A2A Agent
+
+### Run A2A Server
+```bash
+export CISO_ASSISTANT_URL="https://ciso.arpa"
+export CISO_ASSISTANT_TOKEN="your_token"
+ciso-assistant-agent --provider openai --model-id gpt-4o --api-key sk-...
+```
+
+## Docker
+
+### Build
+
+```bash
+docker build -t ciso-assistant-api .
+```
+
+### Run MCP Server
+
+```bash
+docker run -d \
+  --name ciso-assistant-api \
+  -p 8000:8000 \
+  -e TRANSPORT=http \
+  -e CISO_ASSISTANT_URL="https://ciso.arpa" \
+  -e CISO_ASSISTANT_TOKEN="your_token" \
+  knucklessg1/ciso-assistant-api:latest
+```
+
+### Deploy with Docker Compose
+
+```yaml
+services:
+  ciso-assistant-api:
+    image: knucklessg1/ciso-assistant-api:latest
+    environment:
+      - HOST=0.0.0.0
+      - PORT=8000
+      - TRANSPORT=http
+      - CISO_ASSISTANT_URL=https://ciso.arpa
+      - CISO_ASSISTANT_TOKEN=your_token
+    ports:
+      - 8000:8000
+```
+
+#### Configure `mcp.json` for AI Integration (e.g. Claude Desktop)
+
+```json
+{
+  "mcpServers": {
+    "ciso_assistant": {
+      "command": "uv",
+      "args": [
+        "run",
+        "--with",
+        "ciso-assistant-api",
+        "ciso-assistant-mcp"
+      ],
+      "env": {
+        "CISO_ASSISTANT_URL": "https://ciso.arpa",
+        "CISO_ASSISTANT_TOKEN": "your_token"
+      }
+    }
+  }
+}
+```
+
+## Install Python Package
+
+```bash
+python -m pip install ciso-assistant-api
+```
+```bash
+uv pip install ciso-assistant-api
+```
+
+## Documentation
+
+The complete documentation is published as the
+[official documentation site](https://knuckles-team.github.io/ciso-assistant-api/) and is
+the source of truth for installation, usage, and deployment.
+
+| Page | Covers |
+| --- | --- |
+| [Overview](https://knuckles-team.github.io/ciso-assistant-api/overview/) | the action-routed tool surface and architecture |
+| [Installation](https://knuckles-team.github.io/ciso-assistant-api/installation/) | pip, source, extras, prebuilt Docker image |
+| [Usage (API / CLI / MCP)](https://knuckles-team.github.io/ciso-assistant-api/usage/) | the MCP tools, the `Api` client, the CLI |
+| [Deployment](https://knuckles-team.github.io/ciso-assistant-api/deployment/) | run the MCP and agent servers, Compose, env config |
+
+## Repository Owners
+
+<img width="100%" height="180em" src="https://github-readme-stats.vercel.app/api?username=Knucklessg1&show_icons=true&hide_border=true&&count_private=true&include_all_commits=true" />
+
+![GitHub followers](https://img.shields.io/github/followers/Knucklessg1)
+![GitHub User's stars](https://img.shields.io/github/stars/Knucklessg1)

ciso_assistant_api-0.1.0/ciso_assistant_api/__init__.py

@@ -0,0 +1,63 @@
+#!/usr/bin/env python
+
+import importlib
+import inspect
+import warnings
+
+# Suppress RequestsDependencyWarning due to chardet 6.x / requests 2.32.x mismatch
+# Centralized here to ensure it runs before any sub-package imports
+warnings.filterwarnings("ignore", message=".*urllib3.*or chardet.*")
+
+__all__: list[str] = []
+
+CORE_MODULES = [
+    "ciso_assistant_api.api_client",
+]
+
+OPTIONAL_MODULES = {
+    "ciso_assistant_api.agent_server": "agent",
+    "ciso_assistant_api.mcp_server": "mcp",
+}
+
+
+def _import_module_safely(module_name: str):
+    """Try to import a module and return it, or None if not available."""
+    try:
+        return importlib.import_module(module_name)
+    except ImportError:
+        return None
+
+
+def _expose_members(module):
+    """Expose public classes and functions from a module into globals and __all__."""
+    for name, obj in inspect.getmembers(module):
+        if (inspect.isclass(obj) or inspect.isfunction(obj)) and not name.startswith(
+            "_"
+        ):
+            globals()[name] = obj
+            __all__.append(name)
+
+
+for module_name in CORE_MODULES:
+    try:
+        module = importlib.import_module(module_name)
+        _expose_members(module)
+    except ImportError:
+        pass
+
+for module_name, extra_name in OPTIONAL_MODULES.items():
+    module = _import_module_safely(module_name)
+    globals()[f"_{extra_name.upper()}_AVAILABLE"] = module is not None
+    if module is not None:
+        _expose_members(module)
+
+__all__.extend(["_MCP_AVAILABLE", "_AGENT_AVAILABLE"])
+
+
+"""
+ciso-assistant-api
+
+Python CISO Assistant API client + MCP server + A2A agent with 100% API coverage
+
+CONCEPT:CISO-001 — CISO Assistant GRC connector (api-client + MCP + A2A).
+"""

ciso_assistant_api-0.1.0/ciso_assistant_api/__main__.py

@@ -0,0 +1,5 @@
+#!/usr/bin/python
+from ciso_assistant_api.agent_server import agent_server
+
+if __name__ == "__main__":
+    agent_server()

ciso_assistant_api-0.1.0/ciso_assistant_api/agent/AGENTS.md

@@ -0,0 +1,12 @@
+# AGENTS.md - Known A2A Peer Agents
+Last updated: 2026-06-15
+
+This file is the local registry of other A2A agents this agent can discover and call.
+
+## Registered A2A Peers
+
+| Name            | Endpoint URL                    | Description                          | Capabilities                     | Auth      | Notes / Last Connected |
+|-----------------|---------------------------------|--------------------------------------|----------------------------------|-----------|------------------------|
+| SearchMaster    | http://search-agent:9000/a2a    | Advanced web researcher              | web_search, summarize, browse    | none      | 2026-06-15             |
+
+*Add new rows manually or let the agent call `register_a2a_peer(...)`.*

ciso_assistant_api-0.1.0/ciso_assistant_api/agent/CRON.md

@@ -0,0 +1,12 @@
+# CRON.md - Persistent Scheduled Tasks
+Last updated: 2026-06-15
+
+## Active Tasks
+
+| ID          | Name              | Interval (min) | Prompt                              | Last run          | Next approx |
+|-------------|-------------------|----------------|-------------------------------------|-------------------|-------------|
+| heartbeat   | Heartbeat         | 30             | @HEARTBEAT.md                       | —                 | —           |
+| log-cleanup | Log Cleanup       | 720            | __internal:cleanup_cron_log         | —                 | —           |
+
+*Edit this table to add/remove tasks. The agent reloads it periodically.*
+*Use `@filename.md` in the Prompt column to load a multi-line prompt from a workspace file.*

ciso_assistant_api-0.1.0/ciso_assistant_api/agent/CRON_LOG.md

@@ -0,0 +1,5 @@
+# CRON_LOG.md - Scheduled Task History
+Last updated: 2026-06-15
+
+| Timestamp | Task ID | Status | Message |
+|-----------|---------|--------|---------|

ciso_assistant_api-0.1.0/ciso_assistant_api/agent/HEARTBEAT.md

@@ -0,0 +1,28 @@
+# Heartbeat — Periodic Self-Check
+
+You are running a scheduled heartbeat. Perform these checks and report results concisely.
+
+## Checks
+
+1. **Tool Availability** — Call `list_tools` or equivalent to verify your MCP tools are reachable. Report any connection failures.
+2. **Memory Review** — Query the **Knowledge Graph** for any pending follow-up tasks, architectural decisions, or action items.
+3. **Cron Log** — Read `CRON_LOG.md` and check for recent errors (❌). Summarize any failures from the last 24 hours.
+4. **Peer Agents** — Read `AGENTS.md` and note if any registered peers need attention.
+5. **Domain-Specific Checks**:
+   - **Service Health**: Check service health status and scan recent logs for critical errors using available tools.
+6. **Self-Diagnostics** — Report your current model, available tool count, and any anomalies.
+
+## Response Format
+
+If everything is healthy:
+```
+HEARTBEAT_OK — All systems nominal. [tool_count] tools available. No pending actions.
+```
+
+If issues found:
+```
+HEARTBEAT_ALERT — [summary of issues found]
+- Issue 1: ...
+- Issue 2: ...
+- Action needed: ...
+```

ciso_assistant_api-0.1.0/ciso_assistant_api/agent/IDENTITY.md

@@ -0,0 +1,15 @@
+# IDENTITY.md - CISO Assistant Agent Identity
+
+## [default]
+ * **Name:** CISO Assistant Agent
+ * **Role:** Python CISO Assistant API client + MCP server + A2A agent with 100% API coverage
+ * **Emoji:** 🤖
+
+ ### System Prompt
+ You are the CISO Assistant Agent.
+ You must always first run `list_skills` to show all skills.
+ Then, use the `mcp-client` universal skill and check the reference documentation for `ciso-assistant-api.md` to discover the exact tags and tools available for your capabilities.
+
+ ### Capabilities
+ - **MCP Operations**: Leverage the `mcp-client` skill to interact with the target MCP server. Refer to `ciso-assistant-api.md` for specific tool capabilities.
+ - **Custom Agent**: Handle custom tasks or general tasks.

ciso_assistant_api-0.1.0/ciso_assistant_api/agent/MCP_AGENTS.md

@@ -0,0 +1,13 @@
+# MCP_AGENTS.md - Dynamic Agent Registry
+
+This file tracks the generated agents from MCP servers. You can manually modify the 'Tools' list to customize agent expertise.
+
+## Agent Mapping Table
+
+| Name | Description | System Prompt | Tools | Tag | Source MCP |
+|------|-------------|---------------|-------|-----|------------|
+
+## Tool Inventory Table
+
+| Tool Name | Description | Tag | Source |
+|-----------|-------------|-----|--------|

ciso_assistant_api-0.1.0/ciso_assistant_api/agent/USER.md

@@ -0,0 +1,7 @@
+# USER.md - About the Human
+
+* **Name:** User
+* **Preferred name:** User
+* **Timezone:** America/Chicago
+* **Location:** Chicago, Illinois
+* **Style:** Technical, concise, no fluff

ciso_assistant_api-0.1.0/ciso_assistant_api/agent/mcp_config.json

@@ -0,0 +1,39 @@
+{
+  "mcpServers": {
+    "ciso-assistant-api": {
+      "command": "uv",
+      "args": [
+        "run",
+        "ciso-assistant-mcp"
+      ],
+      "env": {
+        "FASTMCP_LOG_LEVEL": "<YOUR_FASTMCP_LOG_LEVEL>",
+        "CISO_ASSISTANT_URL": "<YOUR_CISO_ASSISTANT_URL>",
+        "CISO_ASSISTANT_TOKEN": "<YOUR_CISO_ASSISTANT_TOKEN>",
+        "CISO_ASSISTANT_USERNAME": "<YOUR_CISO_ASSISTANT_USERNAME>",
+        "CISO_ASSISTANT_PASSWORD": "<YOUR_CISO_ASSISTANT_PASSWORD>",
+        "CISO_ASSISTANT_SSL_VERIFY": "True",
+        "ANALYTICS_METROLOGYTOOL": "True",
+        "ASSETSTOOL": "True",
+        "AUTH_USERSTOOL": "True",
+        "CHATTOOL": "True",
+        "COMPLIANCETOOL": "True",
+        "CRQTOOL": "True",
+        "EBIOS_RMTOOL": "True",
+        "EVIDENCETOOL": "True",
+        "FRAMEWORKS_LIBRARIESTOOL": "True",
+        "GOVERNANCETOOL": "True",
+        "INCIDENTSTOOL": "True",
+        "INTEGRATIONSTOOL": "True",
+        "PRIVACYTOOL": "True",
+        "RESILIENCETOOL": "True",
+        "RISK_MANAGEMENTTOOL": "True",
+        "SECURITY_FINDINGSTOOL": "True",
+        "SETTINGSTOOL": "True",
+        "TASKS_TIMELINETOOL": "True",
+        "THIRD_PARTYTOOL": "True",
+        "CUSTOM_APITOOL": "True"
+      }
+    }
+  }
+}