PyPI - icdev - Versions diffs - 1.0.0__py3-none-any.whl - Mend

icdev 1.0.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (1105) hide show

icdev/__init__.py +18 -0
icdev/_paths.py +85 -0
icdev/_version.py +3 -0
icdev/data/__init__.py +1 -0
icdev/data/args/__init__.py +1 -0
icdev/data/args/agent_authority.yaml +61 -0
icdev/data/args/agent_config.yaml +355 -0
icdev/data/args/agentic_fitness.yaml +31 -0
icdev/data/args/ai_governance_config.yaml +137 -0
icdev/data/args/atlas_critique_config.yaml +66 -0
icdev/data/args/bedrock_models.yaml +63 -0
icdev/data/args/cicd_config.yaml +82 -0
icdev/data/args/classification_config.yaml +232 -0
icdev/data/args/cli_config.yaml +154 -0
icdev/data/args/cloud_config.yaml +63 -0
icdev/data/args/code_pattern_config.yaml +151 -0
icdev/data/args/code_quality_config.yaml +47 -0
icdev/data/args/companion_registry.yaml +202 -0
icdev/data/args/context_config.yaml +82 -0
icdev/data/args/csp_monitor_config.yaml +268 -0
icdev/data/args/cui_markings.yaml +35 -0
icdev/data/args/db_config.yaml +40 -0
icdev/data/args/deployment_profiles.yaml +248 -0
icdev/data/args/dev_profile_config.yaml +144 -0
icdev/data/args/devsecops_config.yaml +286 -0
icdev/data/args/endpoint_security_config.yaml +137 -0
icdev/data/args/extension_config.yaml +79 -0
icdev/data/args/file_access_tiers.yaml +88 -0
icdev/data/args/framework_registry.yaml +415 -0
icdev/data/args/innovation_config.yaml +431 -0
icdev/data/args/installation_manifest.yaml +1087 -0
icdev/data/args/llm_config.yaml +495 -0
icdev/data/args/maintenance_config.yaml +55 -0
icdev/data/args/memory_config.yaml +83 -0
icdev/data/args/monitoring_config.yaml +127 -0
icdev/data/args/mosa_config.yaml +190 -0
icdev/data/args/nlq_config.yaml +35 -0
icdev/data/args/observability_config.yaml +39 -0
icdev/data/args/observability_tracing_config.yaml +170 -0
icdev/data/args/oscal_tools_config.yaml +43 -0
icdev/data/args/owasp_agentic_config.yaml +171 -0
icdev/data/args/phase_registry.yaml +618 -0
icdev/data/args/project_defaults.yaml +235 -0
icdev/data/args/prompt_chains.yaml +163 -0
icdev/data/args/resilience_config.yaml +50 -0
icdev/data/args/ricoas_config.yaml +191 -0
icdev/data/args/role_personas.yaml +362 -0
icdev/data/args/scaling_config.yaml +176 -0
icdev/data/args/security_gates.yaml +685 -0
icdev/data/args/skill_injection_config.yaml +322 -0
icdev/data/args/spec_config.yaml +53 -0
icdev/data/args/supply_chain_config.yaml +76 -0
icdev/data/args/translation_config.yaml +228 -0
icdev/data/args/workflow_templates/ato_acceleration.yaml +54 -0
icdev/data/args/workflow_templates/build_deploy.yaml +63 -0
icdev/data/args/workflow_templates/full_compliance.yaml +43 -0
icdev/data/args/workflow_templates/security_hardening.yaml +55 -0
icdev/data/args/worktree_config.yaml +34 -0
icdev/data/args/zta_config.yaml +247 -0
icdev/data/context/__init__.py +1 -0
icdev/data/context/agent/__init__.py +1 -0
icdev/data/context/agent/response_schemas/__init__.py +1 -0
icdev/data/context/agent/response_schemas/debate_position.json +46 -0
icdev/data/context/agent/response_schemas/fitness_scorecard.json +74 -0
icdev/data/context/agent/response_schemas/review_decision.json +39 -0
icdev/data/context/agent/response_schemas/task_decomposition.json +82 -0
icdev/data/context/agent/response_schemas/veto_decision.json +40 -0
icdev/data/context/agentic/__init__.py +1 -0
icdev/data/context/agentic/architecture_patterns.md +269 -0
icdev/data/context/agentic/capability_registry.yaml +202 -0
icdev/data/context/agentic/csp_mcp_registry.yaml +280 -0
icdev/data/context/agentic/fitness_rubric.md +56 -0
icdev/data/context/agentic/governance_baseline.md +205 -0
icdev/data/context/ci/__init__.py +1 -0
icdev/data/context/ci/worktree_templates.json +44 -0
icdev/data/context/cloud/__init__.py +1 -0
icdev/data/context/cloud/csp_service_registry.json +739 -0
icdev/data/context/compliance/__init__.py +1 -0
icdev/data/context/compliance/atlas_mitigations.json +293 -0
icdev/data/context/compliance/atlas_techniques.json +833 -0
icdev/data/context/compliance/cisa_sbd_requirements.json +432 -0
icdev/data/context/compliance/cjis_security_policy.json +522 -0
icdev/data/context/compliance/cmmc_practices.json +2494 -0
icdev/data/context/compliance/cmmc_report_template.md +142 -0
icdev/data/context/compliance/cnssi_1253_overlay.json +109 -0
icdev/data/context/compliance/control_crosswalk.json +1914 -0
icdev/data/context/compliance/control_families/__init__.py +1 -0
icdev/data/context/compliance/csp_certifications.json +251 -0
icdev/data/context/compliance/cssp_report_template.md +193 -0
icdev/data/context/compliance/cui_templates/__init__.py +1 -0
icdev/data/context/compliance/cui_templates/banner_block.txt +4 -0
icdev/data/context/compliance/cui_templates/code_header.txt +8 -0
icdev/data/context/compliance/cui_templates/document_template.md +35 -0
icdev/data/context/compliance/data_type_framework_map.json +321 -0
icdev/data/context/compliance/data_type_registry.json +147 -0
icdev/data/context/compliance/dod_cssp_8530.json +463 -0
icdev/data/context/compliance/eu_ai_act_annex_iii.json +108 -0
icdev/data/context/compliance/export_templates/__init__.py +1 -0
icdev/data/context/compliance/export_templates/emass_controls.csv.j2 +4 -0
icdev/data/context/compliance/export_templates/evidence_package.md.j2 +39 -0
icdev/data/context/compliance/export_templates/executive_summary.md.j2 +55 -0
icdev/data/context/compliance/export_templates/poam_tracking.csv.j2 +4 -0
icdev/data/context/compliance/fedramp_20x_ksi_schemas.json +133 -0
icdev/data/context/compliance/fedramp_high_baseline.json +4370 -0
icdev/data/context/compliance/fedramp_moderate_baseline.json +2183 -0
icdev/data/context/compliance/fedramp_report_template.md +181 -0
icdev/data/context/compliance/fips_200_areas.json +362 -0
icdev/data/context/compliance/gao_ai_accountability.json +262 -0
icdev/data/context/compliance/hipaa_security_rule.json +720 -0
icdev/data/context/compliance/hitrust_csf_v11.json +930 -0
icdev/data/context/compliance/impact_level_profiles.json +251 -0
icdev/data/context/compliance/incident_response_template.md +1110 -0
icdev/data/context/compliance/iso27001_2022_controls.json +750 -0
icdev/data/context/compliance/iso27001_nist_bridge.json +382 -0
icdev/data/context/compliance/iso42001_controls.json +254 -0
icdev/data/context/compliance/ivv_checklist_template.md +80 -0
icdev/data/context/compliance/ivv_report_template.md +116 -0
icdev/data/context/compliance/ivv_requirements.json +372 -0
icdev/data/context/compliance/mosa_crosswalk.json +327 -0
icdev/data/context/compliance/mosa_framework.json +250 -0
icdev/data/context/compliance/narrative_templates/AC.md.j2 +101 -0
icdev/data/context/compliance/narrative_templates/AU.md.j2 +106 -0
icdev/data/context/compliance/narrative_templates/IA.md.j2 +104 -0
icdev/data/context/compliance/narrative_templates/SC.md.j2 +102 -0
icdev/data/context/compliance/narrative_templates/SI.md.j2 +111 -0
icdev/data/context/compliance/narrative_templates/__init__.py +1 -0
icdev/data/context/compliance/narrative_templates/default.md.j2 +50 -0
icdev/data/context/compliance/narrative_templates/executive_summary.j2 +27 -0
icdev/data/context/compliance/narrative_templates/poam_milestone.j2 +19 -0
icdev/data/context/compliance/narrative_templates/ssp_section.j2 +11 -0
icdev/data/context/compliance/nist_800_171_controls.json +1552 -0
icdev/data/context/compliance/nist_800_207_crosswalk.json +399 -0
icdev/data/context/compliance/nist_800_207_zta.json +258 -0
icdev/data/context/compliance/nist_800_53.json +324 -0
icdev/data/context/compliance/nist_ai_600_1_genai.json +326 -0
icdev/data/context/compliance/nist_ai_rmf.json +206 -0
icdev/data/context/compliance/nist_sp_800_60_types.json +1667 -0
icdev/data/context/compliance/omb_m25_21_high_impact_ai.json +248 -0
icdev/data/context/compliance/omb_m26_04_unbiased_ai.json +262 -0
icdev/data/context/compliance/owasp_agentic_asi.json +133 -0
icdev/data/context/compliance/owasp_agentic_threats.json +285 -0
icdev/data/context/compliance/owasp_llm_top10.json +274 -0
icdev/data/context/compliance/pci_dss_v4.json +510 -0
icdev/data/context/compliance/poam_template.md +117 -0
icdev/data/context/compliance/safeai_controls.json +512 -0
icdev/data/context/compliance/sbd_report_template.md +77 -0
icdev/data/context/compliance/siem_config_templates/__init__.py +1 -0
icdev/data/context/compliance/siem_config_templates/filebeat.yml +213 -0
icdev/data/context/compliance/siem_config_templates/log_sources.json +208 -0
icdev/data/context/compliance/soc2_trust_criteria.json +661 -0
icdev/data/context/compliance/ssp_template.md +432 -0
icdev/data/context/compliance/stig_templates/__init__.py +1 -0
icdev/data/context/compliance/stig_templates/webapp_stig.json +139 -0
icdev/data/context/compliance/xai_requirements.json +108 -0
icdev/data/context/dashboard/__init__.py +1 -0
icdev/data/context/dashboard/nlq_examples.json +50 -0
icdev/data/context/dashboard/schema_descriptions.json +23 -0
icdev/data/context/integration/__init__.py +1 -0
icdev/data/context/integration/approval_workflows.json +32 -0
icdev/data/context/integration/gitlab_field_mappings.json +33 -0
icdev/data/context/integration/jira_field_mappings.json +32 -0
icdev/data/context/integration/reqif_export_schema.json +23 -0
icdev/data/context/integration/servicenow_field_mappings.json +22 -0
icdev/data/context/languages/__init__.py +1 -0
icdev/data/context/languages/framework_patterns.json +205 -0
icdev/data/context/languages/language_registry.json +279 -0
icdev/data/context/llm/__init__.py +1 -0
icdev/data/context/llm/example_provider.py +86 -0
icdev/data/context/mbse/__init__.py +1 -0
icdev/data/context/mbse/des_report_template.md +162 -0
icdev/data/context/mbse/des_requirements.json +411 -0
icdev/data/context/mbse/digital_thread_patterns.json +403 -0
icdev/data/context/mbse/reqif_schema.json +280 -0
icdev/data/context/mbse/sysml_element_types.json +432 -0
icdev/data/context/modernization/__init__.py +1 -0
icdev/data/context/modernization/db_type_mappings.json +148 -0
icdev/data/context/modernization/decomposition_patterns.json +284 -0
icdev/data/context/modernization/framework_migration_patterns.json +359 -0
icdev/data/context/modernization/migration_report_template.md +168 -0
icdev/data/context/modernization/seven_rs_catalog.json +369 -0
icdev/data/context/modernization/version_upgrade_rules.json +279 -0
icdev/data/context/oscal/NIST_SP-800-53_rev5_catalog.json +254987 -0
icdev/data/context/oscal/README.md +43 -0
icdev/data/context/patterns/__init__.py +1 -0
icdev/data/context/profiles/__init__.py +1 -0
icdev/data/context/profiles/dod_baseline_v1.yaml +145 -0
icdev/data/context/profiles/fedramp_baseline_v1.yaml +143 -0
icdev/data/context/profiles/financial_baseline_v1.yaml +142 -0
icdev/data/context/profiles/healthcare_baseline_v1.yaml +135 -0
icdev/data/context/profiles/law_enforcement_v1.yaml +129 -0
icdev/data/context/profiles/startup_v1.yaml +134 -0
icdev/data/context/requirements/__init__.py +1 -0
icdev/data/context/requirements/ambiguity_patterns.json +97 -0
icdev/data/context/requirements/boundary_impact_rules.json +123 -0
icdev/data/context/requirements/default_constitutions.json +67 -0
icdev/data/context/requirements/document_extraction_rules.json +58 -0
icdev/data/context/requirements/gap_patterns.json +108 -0
icdev/data/context/requirements/readiness_rubric.json +78 -0
icdev/data/context/requirements/red_alternative_patterns.json +210 -0
icdev/data/context/requirements/safe_templates.json +72 -0
icdev/data/context/requirements/spec_quality_checklist.json +122 -0
icdev/data/context/simulation/__init__.py +1 -0
icdev/data/context/simulation/architecture_patterns.json +36 -0
icdev/data/context/simulation/coa_templates.json +38 -0
icdev/data/context/simulation/cost_models.json +23 -0
icdev/data/context/simulation/risk_categories.json +46 -0
icdev/data/context/supply_chain/__init__.py +1 -0
icdev/data/context/supply_chain/isa_templates.json +129 -0
icdev/data/context/supply_chain/nist_800_161_controls.json +247 -0
icdev/data/context/supply_chain/scrm_risk_matrix.json +147 -0
icdev/data/context/templates/__init__.py +1 -0
icdev/data/context/templates/ansible/__init__.py +1 -0
icdev/data/context/templates/ansible/playbooks/__init__.py +1 -0
icdev/data/context/templates/ansible/roles/__init__.py +1 -0
icdev/data/context/templates/gitlab_ci/__init__.py +1 -0
icdev/data/context/templates/grafana/__init__.py +1 -0
icdev/data/context/templates/kubernetes/__init__.py +1 -0
icdev/data/context/templates/project/__init__.py +1 -0
icdev/data/context/templates/project/api/__init__.py +1 -0
icdev/data/context/templates/project/cli/__init__.py +1 -0
icdev/data/context/templates/project/data_pipeline/__init__.py +1 -0
icdev/data/context/templates/project/iac/__init__.py +1 -0
icdev/data/context/templates/project/javascript_frontend/__init__.py +1 -0
icdev/data/context/templates/project/javascript_frontend/src/__init__.py +1 -0
icdev/data/context/templates/project/javascript_frontend/tests/__init__.py +1 -0
icdev/data/context/templates/project/microservice/__init__.py +1 -0
icdev/data/context/templates/project/python_backend/__init__.py +1 -0
icdev/data/context/templates/project/python_backend/src/__init__.py +1 -0
icdev/data/context/templates/project/python_backend/tests/__init__.py +1 -0
icdev/data/context/templates/project/python_backend/tests/features/__init__.py +1 -0
icdev/data/context/templates/project/python_backend/tests/steps/__init__.py +1 -0
icdev/data/context/templates/terraform/__init__.py +1 -0
icdev/data/context/templates/terraform/govcloud_base/__init__.py +1 -0
icdev/data/context/templates/terraform/modules/__init__.py +1 -0
icdev/data/context/tone/__init__.py +1 -0
icdev/data/context/translation/dependency_mappings.json +186 -0
icdev/data/context/translation/type_mappings.json +149 -0
icdev/data/docs/README.md +187 -0
icdev/data/docs/__init__.py +1 -0
icdev/data/docs/admin/gateway-guide.md +338 -0
icdev/data/docs/admin/marketplace-guide.md +396 -0
icdev/data/docs/admin/monitoring-guide.md +509 -0
icdev/data/docs/architecture/compliance-framework.md +764 -0
icdev/data/docs/architecture/database-schema.md +689 -0
icdev/data/docs/architecture/gotcha-framework.md +518 -0
icdev/data/docs/architecture/multi-agent-system.md +603 -0
icdev/data/docs/dx/README.md +106 -0
icdev/data/docs/dx/__init__.py +1 -0
icdev/data/docs/dx/ci-cd-integration.md +378 -0
icdev/data/docs/dx/claude-code-guide.md +213 -0
icdev/data/docs/dx/companion-guide.md +232 -0
icdev/data/docs/dx/dev-profiles.md +309 -0
icdev/data/docs/dx/icdev-yaml-spec.md +219 -0
icdev/data/docs/dx/integration-tiers.md +279 -0
icdev/data/docs/dx/llm-routing-guide.md +456 -0
icdev/data/docs/dx/quickstart.md +192 -0
icdev/data/docs/dx/sdk-reference.md +356 -0
icdev/data/docs/dx/unified-mcp-setup.md +525 -0
icdev/data/docs/features/__init__.py +1 -0
icdev/data/docs/features/phase-01-gotcha-framework.md +249 -0
icdev/data/docs/features/phase-02-atlas-build-workflow.md +223 -0
icdev/data/docs/features/phase-03-tdd-bdd-testing.md +261 -0
icdev/data/docs/features/phase-04-nist-compliance.md +255 -0
icdev/data/docs/features/phase-05-security-scanning.md +229 -0
icdev/data/docs/features/phase-06-infrastructure-deployment.md +288 -0
icdev/data/docs/features/phase-07-code-review-gates.md +276 -0
icdev/data/docs/features/phase-08-self-healing.md +223 -0
icdev/data/docs/features/phase-09-monitoring-observability.md +230 -0
icdev/data/docs/features/phase-10-dashboard-web-ui.md +218 -0
icdev/data/docs/features/phase-11-multi-agent-architecture.md +272 -0
icdev/data/docs/features/phase-12-integration-testing.md +228 -0
icdev/data/docs/features/phase-13-cicd-integration.md +257 -0
icdev/data/docs/features/phase-14-secure-by-design-ivv.md +240 -0
icdev/data/docs/features/phase-15-maintenance-audit.md +192 -0
icdev/data/docs/features/phase-16-ato-acceleration.md +228 -0
icdev/data/docs/features/phase-17-multi-framework-compliance.md +223 -0
icdev/data/docs/features/phase-18-mbse-integration.md +242 -0
icdev/data/docs/features/phase-19-agentic-generation.md +202 -0
icdev/data/docs/features/phase-20-fips-security-categorization.md +198 -0
icdev/data/docs/features/phase-21-saas-multi-tenancy.md +273 -0
icdev/data/docs/features/phase-22-federated-gotcha-marketplace.md +242 -0
icdev/data/docs/features/phase-23-universal-compliance-platform.md +238 -0
icdev/data/docs/features/phase-24-devsecops-pipeline-security.md +198 -0
icdev/data/docs/features/phase-25-zero-trust-architecture.md +220 -0
icdev/data/docs/features/phase-26-dod-mosa.md +205 -0
icdev/data/docs/features/phase-27-cli-capabilities.md +222 -0
icdev/data/docs/features/phase-28-remote-command-gateway.md +235 -0
icdev/data/docs/features/phase-29-proactive-monitoring.md +212 -0
icdev/data/docs/features/phase-30-dashboard-auth.md +215 -0
icdev/data/docs/features/phase-31-dashboard-ux-low-impact.md +188 -0
icdev/data/docs/features/phase-32-dashboard-ux-medium-impact.md +223 -0
icdev/data/docs/features/phase-33-modular-installation.md +218 -0
icdev/data/docs/features/phase-34-dev-profiles.md +239 -0
icdev/data/docs/features/phase-35-innovation-engine.md +257 -0
icdev/data/docs/features/phase-36-evolutionary-intelligence.md +351 -0
icdev/data/docs/features/phase-37-mitre-atlas-integration.md +485 -0
icdev/data/docs/features/phase-38-cloud-agnostic-architecture.md +1033 -0
icdev/data/docs/features/phase-39-observability-operations.md +178 -0
icdev/data/docs/features/phase-40-nlq-compliance-queries.md +176 -0
icdev/data/docs/features/phase-41-parallel-cicd.md +169 -0
icdev/data/docs/features/phase-42-framework-planning.md +177 -0
icdev/data/docs/features/phase-43-cross-language-translation.md +225 -0
icdev/data/docs/features/phase-44-innovation-adaptation.md +227 -0
icdev/data/docs/features/phase-45-owasp-agentic-security.md +239 -0
icdev/data/docs/features/phase-46-observability-traceability-xai.md +240 -0
icdev/data/docs/features/phase-47-unified-mcp-gateway.md +257 -0
icdev/data/docs/features/phase-48-ai-transparency.md +203 -0
icdev/data/docs/features/phase-49-ai-accountability.md +243 -0
icdev/data/docs/features/phase-50-ai-governance-intake-chat.md +195 -0
icdev/data/docs/features/phase-51-unified-chat-dashboard.md +240 -0
icdev/data/docs/features/phase-52-code-intelligence.md +244 -0
icdev/data/docs/features/phase-53-fedramp-20x-owasp-asi.md +359 -0
icdev/data/docs/features/phase-54-slsa-swft-orchestration.md +379 -0
icdev/data/docs/features/phase-55-a2a-v03-mcp-oauth.md +322 -0
icdev/data/docs/features/phase-56-evidence-lineage.md +352 -0
icdev/data/docs/features/phase-57-eu-ai-act-iron-bank.md +319 -0
icdev/data/docs/features/phase-58-creative-engine.md +370 -0
icdev/data/docs/features/phase-59-govcon-intelligence.md +535 -0
icdev/data/docs/features/phase-60-cpmp.md +528 -0
icdev/data/docs/features/phase-61-orchestration-improvements.md +534 -0
icdev/data/docs/operations/dashboard-guide.md +354 -0
icdev/data/docs/operations/deployment-guide.md +556 -0
icdev/data/docs/operations/saas-admin-guide.md +439 -0
icdev/data/docs/operations/security-operations-guide.md +733 -0
icdev/data/docs/runbooks/backup-restore.md +412 -0
icdev/data/docs/runbooks/troubleshooting.md +499 -0
icdev/data/features/__init__.py +1 -0
icdev/data/features/cicd_integration.feature +41 -0
icdev/data/features/compliance_gates.feature +46 -0
icdev/data/features/dashboard.feature +72 -0
icdev/data/features/environment.py +25 -0
icdev/data/features/project_management.feature +32 -0
icdev/data/features/requirements_intake.feature +42 -0
icdev/data/features/saas_platform.feature +53 -0
icdev/data/features/security_scanning.feature +36 -0
icdev/data/features/steps/__init__.py +1 -0
icdev/data/features/steps/cicd_steps.py +465 -0
icdev/data/features/steps/compliance_steps.py +308 -0
icdev/data/features/steps/dashboard_steps.py +88 -0
icdev/data/features/steps/project_steps.py +126 -0
icdev/data/features/steps/requirements_intake_steps.py +689 -0
icdev/data/features/steps/saas_platform_steps.py +572 -0
icdev/data/features/steps/security_steps.py +236 -0
icdev/data/features/steps/testing_steps.py +226 -0
icdev/data/features/testing_pipeline.feature +42 -0
icdev/data/goals/__init__.py +1 -0
icdev/data/goals/agent_management.md +144 -0
icdev/data/goals/agentic_generation.md +345 -0
icdev/data/goals/agentic_threat_model.md +309 -0
icdev/data/goals/ai_accountability.md +90 -0
icdev/data/goals/ai_governance_intake.md +132 -0
icdev/data/goals/ai_transparency.md +76 -0
icdev/data/goals/atlas_integration.md +405 -0
icdev/data/goals/ato_acceleration.md +139 -0
icdev/data/goals/boundary_supply_chain.md +206 -0
icdev/data/goals/build_app.md +544 -0
icdev/data/goals/cicd_integration.md +86 -0
icdev/data/goals/claude_dir_maintenance.md +77 -0
icdev/data/goals/cli_capabilities.md +340 -0
icdev/data/goals/cloud_agnostic.md +312 -0
icdev/data/goals/code_intelligence.md +197 -0
icdev/data/goals/code_review.md +94 -0
icdev/data/goals/compliance_workflow.md +858 -0
icdev/data/goals/continuous_harmonization.md +140 -0
icdev/data/goals/cross_language_translation.md +171 -0
icdev/data/goals/dashboard.md +142 -0
icdev/data/goals/deploy_workflow.md +390 -0
icdev/data/goals/devsecops_workflow.md +408 -0
icdev/data/goals/evolutionary_intelligence.md +305 -0
icdev/data/goals/external_integration.md +113 -0
icdev/data/goals/framework_planning.md +63 -0
icdev/data/goals/init_project.md +235 -0
icdev/data/goals/innovation_engine.md +199 -0
icdev/data/goals/integration_testing.md +189 -0
icdev/data/goals/maintenance_audit.md +196 -0
icdev/data/goals/manifest.md +56 -0
icdev/data/goals/mbse_integration.md +504 -0
icdev/data/goals/modernization_workflow.md +618 -0
icdev/data/goals/monitoring.md +126 -0
icdev/data/goals/mosa_workflow.md +463 -0
icdev/data/goals/multi_agent_orchestration.md +68 -0
icdev/data/goals/nlq_compliance.md +63 -0
icdev/data/goals/observability.md +64 -0
icdev/data/goals/observability_traceability_xai.md +154 -0
icdev/data/goals/owasp_agentic_security.md +395 -0
icdev/data/goals/parallel_cicd.md +61 -0
icdev/data/goals/requirements_intake.md +213 -0
icdev/data/goals/sbd_ivv_workflow.md +195 -0
icdev/data/goals/security_categorization.md +133 -0
icdev/data/goals/security_scan.md +381 -0
icdev/data/goals/self_healing.md +120 -0
icdev/data/goals/simulation_engine.md +111 -0
icdev/data/goals/tdd_workflow.md +403 -0
icdev/data/goals/zero_trust_architecture.md +403 -0
icdev/data/hardprompts/__init__.py +1 -0
icdev/data/hardprompts/agent/__init__.py +1 -0
icdev/data/hardprompts/agent/agentic_architect.md +100 -0
icdev/data/hardprompts/agent/debate_prompt.md +32 -0
icdev/data/hardprompts/agent/fitness_evaluation.md +48 -0
icdev/data/hardprompts/agent/governance_review.md +214 -0
icdev/data/hardprompts/agent/reviewer_prompt.md +34 -0
icdev/data/hardprompts/agent/skill_design.md +172 -0
icdev/data/hardprompts/agent/task_decomposition.md +275 -0
icdev/data/hardprompts/agent/veto_check_prompt.md +33 -0
icdev/data/hardprompts/architect/__init__.py +1 -0
icdev/data/hardprompts/architect/api_design.md +283 -0
icdev/data/hardprompts/architect/data_model.md +277 -0
icdev/data/hardprompts/architect/system_design.md +180 -0
icdev/data/hardprompts/builder/__init__.py +1 -0
icdev/data/hardprompts/builder/code_generation.md +59 -0
icdev/data/hardprompts/builder/refactor.md +58 -0
icdev/data/hardprompts/builder/scaffold_project.md +69 -0
icdev/data/hardprompts/builder/test_generation.md +87 -0
icdev/data/hardprompts/ci/__init__.py +1 -0
icdev/data/hardprompts/ci/worktree_setup.md +35 -0
icdev/data/hardprompts/compliance/__init__.py +1 -0
icdev/data/hardprompts/compliance/cmmc_assessment.md +63 -0
icdev/data/hardprompts/compliance/cssp_assessment.md +75 -0
icdev/data/hardprompts/compliance/cui_marking.md +86 -0
icdev/data/hardprompts/compliance/fedramp_assessment.md +55 -0
icdev/data/hardprompts/compliance/ivv_assessment.md +96 -0
icdev/data/hardprompts/compliance/poam_generation.md +57 -0
icdev/data/hardprompts/compliance/sbd_assessment.md +101 -0
icdev/data/hardprompts/compliance/security_categorization.md +74 -0
icdev/data/hardprompts/compliance/ssp_generation.md +56 -0
icdev/data/hardprompts/compliance/stig_evaluation.md +63 -0
icdev/data/hardprompts/dashboard/__init__.py +1 -0
icdev/data/hardprompts/dashboard/nlq_system_prompt.md +26 -0
icdev/data/hardprompts/infra/__init__.py +1 -0
icdev/data/hardprompts/infra/k8s_manifests.md +118 -0
icdev/data/hardprompts/infra/pipeline_generation.md +160 -0
icdev/data/hardprompts/infra/terraform_generation.md +92 -0
icdev/data/hardprompts/integration/__init__.py +1 -0
icdev/data/hardprompts/integration/approval_review.md +17 -0
icdev/data/hardprompts/integration/jira_mapping.md +25 -0
icdev/data/hardprompts/integration/servicenow_mapping.md +14 -0
icdev/data/hardprompts/knowledge/__init__.py +1 -0
icdev/data/hardprompts/knowledge/pattern_detection.md +73 -0
icdev/data/hardprompts/knowledge/recommendation_engine.md +90 -0
icdev/data/hardprompts/knowledge/root_cause_analysis.md +91 -0
icdev/data/hardprompts/maintenance/__init__.py +1 -0
icdev/data/hardprompts/maintenance/maintenance_assessment.md +82 -0
icdev/data/hardprompts/mbse/__init__.py +1 -0
icdev/data/hardprompts/mbse/digital_thread.md +67 -0
icdev/data/hardprompts/mbse/model_import.md +62 -0
icdev/data/hardprompts/mbse/model_to_code.md +65 -0
icdev/data/hardprompts/modernization/__init__.py +1 -0
icdev/data/hardprompts/modernization/legacy_analysis.md +93 -0
icdev/data/hardprompts/modernization/migration_planning.md +150 -0
icdev/data/hardprompts/modernization/seven_r_assessment.md +107 -0
icdev/data/hardprompts/requirements/__init__.py +1 -0
icdev/data/hardprompts/requirements/bdd_generation.md +35 -0
icdev/data/hardprompts/requirements/clarification_prioritization.md +29 -0
icdev/data/hardprompts/requirements/decomposition.md +60 -0
icdev/data/hardprompts/requirements/document_extraction.md +45 -0
icdev/data/hardprompts/requirements/gap_detection.md +70 -0
icdev/data/hardprompts/requirements/intake_conversation.md +101 -0
icdev/data/hardprompts/requirements/readiness_assessment.md +39 -0
icdev/data/hardprompts/requirements/spec_quality.md +33 -0
icdev/data/hardprompts/requirements/traceability_analysis.md +23 -0
icdev/data/hardprompts/security/__init__.py +1 -0
icdev/data/hardprompts/security/endpoint_security.md +78 -0
icdev/data/hardprompts/security/threat_model.md +70 -0
icdev/data/hardprompts/security/vulnerability_assessment.md +81 -0
icdev/data/hardprompts/simulation/__init__.py +1 -0
icdev/data/hardprompts/simulation/architecture_impact.md +27 -0
icdev/data/hardprompts/simulation/coa_alternative.md +27 -0
icdev/data/hardprompts/simulation/coa_generation.md +25 -0
icdev/data/hardprompts/simulation/compliance_impact.md +28 -0
icdev/data/hardprompts/simulation/cost_estimation.md +33 -0
icdev/data/hardprompts/simulation/risk_assessment.md +28 -0
icdev/data/hardprompts/translation/code_translation.md +68 -0
icdev/data/hardprompts/translation/dependency_suggestion.md +44 -0
icdev/data/hardprompts/translation/test_translation.md +64 -0
icdev/data/hardprompts/translation/translation_repair.md +59 -0
icdev/py.typed +0 -0
icdev/tools/__init__.py +1 -0
icdev/tools/_gen_formatter.py +12 -0
icdev/tools/a2a/__init__.py +1 -0
icdev/tools/a2a/agent_cards/architect.json +43 -0
icdev/tools/a2a/agent_cards/builder.json +50 -0
icdev/tools/a2a/agent_cards/compliance.json +57 -0
icdev/tools/a2a/agent_cards/devsecops.json +71 -0
icdev/tools/a2a/agent_cards/infra.json +57 -0
icdev/tools/a2a/agent_cards/integration.json +57 -0
icdev/tools/a2a/agent_cards/knowledge.json +43 -0
icdev/tools/a2a/agent_cards/mbse.json +57 -0
icdev/tools/a2a/agent_cards/modernization.json +50 -0
icdev/tools/a2a/agent_cards/monitor.json +43 -0
icdev/tools/a2a/agent_cards/orchestrator.json +36 -0
icdev/tools/a2a/agent_cards/requirements_analyst.json +64 -0
icdev/tools/a2a/agent_cards/security.json +50 -0
icdev/tools/a2a/agent_cards/simulation.json +57 -0
icdev/tools/a2a/agent_cards/supply_chain.json +50 -0
icdev/tools/a2a/agent_client.py +349 -0
icdev/tools/a2a/agent_registry.py +412 -0
icdev/tools/a2a/agent_server.py +579 -0
icdev/tools/a2a/task.py +200 -0
icdev/tools/agent/__init__.py +2 -0
icdev/tools/agent/a2a_agent_card_generator.py +285 -0
icdev/tools/agent/a2a_discovery_server.py +250 -0
icdev/tools/agent/agent_executor.py +529 -0
icdev/tools/agent/agent_memory.py +557 -0
icdev/tools/agent/agent_models.py +51 -0
icdev/tools/agent/atlas_critique.py +908 -0
icdev/tools/agent/authority.py +443 -0
icdev/tools/agent/bedrock_client.py +1075 -0
icdev/tools/agent/collaboration.py +871 -0
icdev/tools/agent/dispatcher_mode.py +665 -0
icdev/tools/agent/mailbox.py +575 -0
icdev/tools/agent/prompt_chain_executor.py +1064 -0
icdev/tools/agent/session_purpose.py +350 -0
icdev/tools/agent/skill_router.py +638 -0
icdev/tools/agent/skill_selector.py +486 -0
icdev/tools/agent/team_orchestrator.py +1108 -0
icdev/tools/agent/token_tracker.py +290 -0
icdev/tools/analysis/__init__.py +1 -0
icdev/tools/analysis/code_analyzer.py +780 -0
icdev/tools/analysis/runtime_feedback.py +389 -0
icdev/tools/audit/__init__.py +1 -0
icdev/tools/audit/audit_logger.py +196 -0
icdev/tools/audit/audit_query.py +157 -0
icdev/tools/audit/decision_recorder.py +72 -0
icdev/tools/builder/__init__.py +1 -0
icdev/tools/builder/agentic_fitness.py +534 -0
icdev/tools/builder/agentic_test_templates/test_a2a_callback.py +117 -0
icdev/tools/builder/agentic_test_templates/test_a2a_lifecycle.feature +52 -0
icdev/tools/builder/agentic_test_templates/test_agent_card.feature +37 -0
icdev/tools/builder/agentic_test_templates/test_agent_health.py +128 -0
icdev/tools/builder/agentic_test_templates/test_memory_system.feature +50 -0
icdev/tools/builder/agentic_test_templates/test_skill_execution.feature +40 -0
icdev/tools/builder/app_blueprint.py +1583 -0
icdev/tools/builder/child_app_generator.py +2852 -0
icdev/tools/builder/claude_md_generator.py +1734 -0
icdev/tools/builder/code_generator.py +3703 -0
icdev/tools/builder/db_init_generator.py +1709 -0
icdev/tools/builder/dev_profile_manager.py +954 -0
icdev/tools/builder/formatter.py +768 -0
icdev/tools/builder/goal_adapter.py +592 -0
icdev/tools/builder/gotcha_validator.py +812 -0
icdev/tools/builder/language_support.py +441 -0
icdev/tools/builder/linter.py +976 -0
icdev/tools/builder/profile_detector.py +657 -0
icdev/tools/builder/profile_md_generator.py +723 -0
icdev/tools/builder/scaffolder.py +1590 -0
icdev/tools/builder/scaffolder_extended.py +1771 -0
icdev/tools/builder/test_writer.py +950 -0
icdev/tools/ci/__init__.py +2 -0
icdev/tools/ci/connectors/__init__.py +2 -0
icdev/tools/ci/connectors/base_connector.py +80 -0
icdev/tools/ci/connectors/connector_registry.py +188 -0
icdev/tools/ci/connectors/mattermost_connector.py +159 -0
icdev/tools/ci/connectors/slack_connector.py +197 -0
icdev/tools/ci/core/__init__.py +2 -0
icdev/tools/ci/core/air_gap_detector.py +115 -0
icdev/tools/ci/core/comment_handler.py +192 -0
icdev/tools/ci/core/conversation_manager.py +479 -0
icdev/tools/ci/core/event_envelope.py +500 -0
icdev/tools/ci/core/event_router.py +443 -0
icdev/tools/ci/core/failure_parser.py +397 -0
icdev/tools/ci/core/recovery_engine.py +527 -0
icdev/tools/ci/modules/__init__.py +2 -0
icdev/tools/ci/modules/agent.py +271 -0
icdev/tools/ci/modules/git_ops.py +175 -0
icdev/tools/ci/modules/state.py +117 -0
icdev/tools/ci/modules/vcs.py +303 -0
icdev/tools/ci/modules/workflow_ops.py +295 -0
icdev/tools/ci/modules/worktree.py +340 -0
icdev/tools/ci/pipeline_config_generator.py +558 -0
icdev/tools/ci/triggers/__init__.py +2 -0
icdev/tools/ci/triggers/gitlab_task_monitor.py +330 -0
icdev/tools/ci/triggers/poll_trigger.py +237 -0
icdev/tools/ci/triggers/webhook_server.py +356 -0
icdev/tools/ci/workflows/__init__.py +2 -0
icdev/tools/ci/workflows/icdev_build.py +140 -0
icdev/tools/ci/workflows/icdev_comply.py +284 -0
icdev/tools/ci/workflows/icdev_document.py +152 -0
icdev/tools/ci/workflows/icdev_e2e.py +188 -0
icdev/tools/ci/workflows/icdev_patch.py +186 -0
icdev/tools/ci/workflows/icdev_plan.py +202 -0
icdev/tools/ci/workflows/icdev_plan_build.py +41 -0
icdev/tools/ci/workflows/icdev_plan_build_test.py +46 -0
icdev/tools/ci/workflows/icdev_plan_build_test_review.py +47 -0
icdev/tools/ci/workflows/icdev_review.py +126 -0
icdev/tools/ci/workflows/icdev_sdlc.py +261 -0
icdev/tools/ci/workflows/icdev_test.py +240 -0
icdev/tools/cli/__init__.py +1 -0
icdev/tools/cli/output_formatter.py +756 -0
icdev/tools/cli_formatter.py +42 -0
icdev/tools/cloud/__init__.py +11 -0
icdev/tools/cloud/cloud_mode_manager.py +364 -0
icdev/tools/cloud/csp_changelog.py +383 -0
icdev/tools/cloud/csp_health_checker.py +268 -0
icdev/tools/cloud/csp_monitor.py +951 -0
icdev/tools/cloud/iam_provider.py +593 -0
icdev/tools/cloud/kms_provider.py +346 -0
icdev/tools/cloud/monitoring_provider.py +628 -0
icdev/tools/cloud/provider_factory.py +376 -0
icdev/tools/cloud/region_validator.py +345 -0
icdev/tools/cloud/registry_provider.py +563 -0
icdev/tools/cloud/secrets_provider.py +486 -0
icdev/tools/cloud/storage_provider.py +446 -0
icdev/tools/compat/__init__.py +21 -0
icdev/tools/compat/cli_harmonizer.py +251 -0
icdev/tools/compat/datetime_utils.py +18 -0
icdev/tools/compat/db_utils.py +160 -0
icdev/tools/compat/platform_utils.py +123 -0
icdev/tools/compliance/__init__.py +1 -0
icdev/tools/compliance/accountability_manager.py +397 -0
icdev/tools/compliance/ai_accountability_audit.py +294 -0
icdev/tools/compliance/ai_impact_assessor.py +273 -0
icdev/tools/compliance/ai_incident_response.py +301 -0
icdev/tools/compliance/ai_inventory_manager.py +239 -0
icdev/tools/compliance/ai_reassessment_scheduler.py +256 -0
icdev/tools/compliance/ai_transparency_audit.py +248 -0
icdev/tools/compliance/atlas_assessor.py +278 -0
icdev/tools/compliance/atlas_report_generator.py +1211 -0
icdev/tools/compliance/base_assessor.py +597 -0
icdev/tools/compliance/cato_monitor.py +1385 -0
icdev/tools/compliance/cato_scheduler.py +699 -0
icdev/tools/compliance/cjis_assessor.py +76 -0
icdev/tools/compliance/classification_manager.py +1353 -0
icdev/tools/compliance/cmmc_assessor.py +1491 -0
icdev/tools/compliance/cmmc_report_generator.py +1100 -0
icdev/tools/compliance/compliance_detector.py +463 -0
icdev/tools/compliance/compliance_exporter.py +427 -0
icdev/tools/compliance/compliance_status.py +825 -0
icdev/tools/compliance/control_mapper.py +505 -0
icdev/tools/compliance/crosswalk_engine.py +1203 -0
icdev/tools/compliance/cssp_assessor.py +1045 -0
icdev/tools/compliance/cssp_evidence_collector.py +729 -0
icdev/tools/compliance/cssp_report_generator.py +1116 -0
icdev/tools/compliance/cui_marker.py +388 -0
icdev/tools/compliance/diagram_validator.py +600 -0
icdev/tools/compliance/emass/__init__.py +2 -0
icdev/tools/compliance/emass/emass_client.py +840 -0
icdev/tools/compliance/emass/emass_export.py +777 -0
icdev/tools/compliance/emass/emass_sync.py +826 -0
icdev/tools/compliance/eu_ai_act_classifier.py +194 -0
icdev/tools/compliance/evidence_collector.py +468 -0
icdev/tools/compliance/fairness_assessor.py +316 -0
icdev/tools/compliance/fedramp_assessor.py +1808 -0
icdev/tools/compliance/fedramp_authorization_packager.py +137 -0
icdev/tools/compliance/fedramp_ksi_generator.py +355 -0
icdev/tools/compliance/fedramp_report_generator.py +1128 -0
icdev/tools/compliance/fips199_categorizer.py +881 -0
icdev/tools/compliance/fips200_validator.py +315 -0
icdev/tools/compliance/gao_ai_assessor.py +231 -0
icdev/tools/compliance/gao_evidence_builder.py +308 -0
icdev/tools/compliance/hipaa_assessor.py +78 -0
icdev/tools/compliance/hitrust_assessor.py +49 -0
icdev/tools/compliance/incident_response_plan.py +718 -0
icdev/tools/compliance/iso27001_assessor.py +92 -0
icdev/tools/compliance/iso42001_assessor.py +114 -0
icdev/tools/compliance/ivv_assessor.py +2327 -0
icdev/tools/compliance/ivv_report_generator.py +1662 -0
icdev/tools/compliance/model_card_generator.py +297 -0
icdev/tools/compliance/mosa_assessor.py +117 -0
icdev/tools/compliance/multi_regime_assessor.py +451 -0
icdev/tools/compliance/narrative_generator.py +1013 -0
icdev/tools/compliance/nist_800_207_assessor.py +191 -0
icdev/tools/compliance/nist_ai_600_1_assessor.py +188 -0
icdev/tools/compliance/nist_ai_rmf_assessor.py +110 -0
icdev/tools/compliance/nist_lookup.py +245 -0
icdev/tools/compliance/omb_m25_21_assessor.py +228 -0
icdev/tools/compliance/omb_m26_04_assessor.py +188 -0
icdev/tools/compliance/oscal_catalog_adapter.py +395 -0
icdev/tools/compliance/oscal_generator.py +2170 -0
icdev/tools/compliance/oscal_tools.py +1182 -0
icdev/tools/compliance/owasp_agentic_assessor.py +226 -0
icdev/tools/compliance/owasp_asi_assessor.py +200 -0
icdev/tools/compliance/owasp_llm_assessor.py +244 -0
icdev/tools/compliance/pci_dss_assessor.py +80 -0
icdev/tools/compliance/pi_compliance_tracker.py +1461 -0
icdev/tools/compliance/poam_generator.py +405 -0
icdev/tools/compliance/resolve_marking.py +283 -0
icdev/tools/compliance/sbd_assessor.py +2068 -0
icdev/tools/compliance/sbd_report_generator.py +1236 -0
icdev/tools/compliance/sbom_generator.py +1008 -0
icdev/tools/compliance/siem_config_generator.py +674 -0
icdev/tools/compliance/slsa_attestation_generator.py +490 -0
icdev/tools/compliance/soc2_assessor.py +77 -0
icdev/tools/compliance/ssp_generator.py +573 -0
icdev/tools/compliance/stig_checker.py +727 -0
icdev/tools/compliance/swft_evidence_bundler.py +337 -0
icdev/tools/compliance/system_card_generator.py +309 -0
icdev/tools/compliance/traceability_matrix.py +1281 -0
icdev/tools/compliance/universal_classification_manager.py +1172 -0
icdev/tools/compliance/xacta/__init__.py +2 -0
icdev/tools/compliance/xacta/xacta_client.py +449 -0
icdev/tools/compliance/xacta/xacta_export.py +557 -0
icdev/tools/compliance/xacta/xacta_sync.py +333 -0
icdev/tools/compliance/xai_assessor.py +231 -0
icdev/tools/dashboard/__init__.py +1 -0
icdev/tools/dashboard/api/__init__.py +1 -0
icdev/tools/dashboard/api/_pipeline_state.py +17 -0
icdev/tools/dashboard/api/activity.py +206 -0
icdev/tools/dashboard/api/admin.py +176 -0
icdev/tools/dashboard/api/agents.py +53 -0
icdev/tools/dashboard/api/ai_accountability.py +163 -0
icdev/tools/dashboard/api/ai_transparency.py +198 -0
icdev/tools/dashboard/api/audit.py +58 -0
icdev/tools/dashboard/api/batch.py +666 -0
icdev/tools/dashboard/api/chat.py +241 -0
icdev/tools/dashboard/api/cicd.py +219 -0
icdev/tools/dashboard/api/code_quality.py +223 -0
icdev/tools/dashboard/api/compliance.py +171 -0
icdev/tools/dashboard/api/cpmp.py +915 -0
icdev/tools/dashboard/api/diagrams.py +65 -0
icdev/tools/dashboard/api/events.py +250 -0
icdev/tools/dashboard/api/evidence.py +99 -0
icdev/tools/dashboard/api/fedramp_20x.py +77 -0
icdev/tools/dashboard/api/govcon.py +1095 -0
icdev/tools/dashboard/api/intake.py +1171 -0
icdev/tools/dashboard/api/lineage.py +163 -0
icdev/tools/dashboard/api/metrics.py +155 -0
icdev/tools/dashboard/api/nlq.py +72 -0
icdev/tools/dashboard/api/orchestration.py +472 -0
icdev/tools/dashboard/api/oscal.py +183 -0
icdev/tools/dashboard/api/prod_audit.py +183 -0
icdev/tools/dashboard/api/projects.py +191 -0
icdev/tools/dashboard/api/proposals.py +1084 -0
icdev/tools/dashboard/api/traces.py +363 -0
icdev/tools/dashboard/api/usage.py +234 -0
icdev/tools/dashboard/app.py +1986 -0
icdev/tools/dashboard/auth.py +500 -0
icdev/tools/dashboard/byok.py +245 -0
icdev/tools/dashboard/chat_manager.py +675 -0
icdev/tools/dashboard/config.py +116 -0
icdev/tools/dashboard/diagram_definitions.py +642 -0
icdev/tools/dashboard/nlq_processor.py +323 -0
icdev/tools/dashboard/phase_loader.py +136 -0
icdev/tools/dashboard/sse_manager.py +89 -0
icdev/tools/dashboard/state_tracker.py +267 -0
icdev/tools/dashboard/static/css/style.css +706 -0
icdev/tools/dashboard/static/css/ux.css +2047 -0
icdev/tools/dashboard/static/js/activity.js +322 -0
icdev/tools/dashboard/static/js/api.js +161 -0
icdev/tools/dashboard/static/js/batch.js +814 -0
icdev/tools/dashboard/static/js/charts.js +618 -0
icdev/tools/dashboard/static/js/chat.js +1514 -0
icdev/tools/dashboard/static/js/kanban.js +113 -0
icdev/tools/dashboard/static/js/live.js +569 -0
icdev/tools/dashboard/static/js/mermaid-icdev.js +332 -0
icdev/tools/dashboard/static/js/proposals.js +588 -0
icdev/tools/dashboard/static/js/shortcuts.js +544 -0
icdev/tools/dashboard/static/js/tables.js +652 -0
icdev/tools/dashboard/static/js/tour.js +524 -0
icdev/tools/dashboard/static/js/ux.js +942 -0
icdev/tools/dashboard/templates/404.html +10 -0
icdev/tools/dashboard/templates/activity.html +80 -0
icdev/tools/dashboard/templates/admin/users.html +144 -0
icdev/tools/dashboard/templates/ai_accountability.html +235 -0
icdev/tools/dashboard/templates/ai_transparency.html +263 -0
icdev/tools/dashboard/templates/base.html +104 -0
icdev/tools/dashboard/templates/batch.html +23 -0
icdev/tools/dashboard/templates/chat.html +332 -0
icdev/tools/dashboard/templates/children.html +149 -0
icdev/tools/dashboard/templates/cicd.html +253 -0
icdev/tools/dashboard/templates/code_quality.html +214 -0
icdev/tools/dashboard/templates/cpmp/cor_detail.html +220 -0
icdev/tools/dashboard/templates/cpmp/cor_portal.html +91 -0
icdev/tools/dashboard/templates/cpmp/deliverable_detail.html +197 -0
icdev/tools/dashboard/templates/cpmp/detail.html +578 -0
icdev/tools/dashboard/templates/cpmp/portfolio.html +202 -0
icdev/tools/dashboard/templates/dev_profiles.html +304 -0
icdev/tools/dashboard/templates/diagrams.html +224 -0
icdev/tools/dashboard/templates/events/timeline.html +232 -0
icdev/tools/dashboard/templates/evidence.html +134 -0
icdev/tools/dashboard/templates/fedramp_20x.html +207 -0
icdev/tools/dashboard/templates/gateway.html +244 -0
icdev/tools/dashboard/templates/govcon/capabilities.html +135 -0
icdev/tools/dashboard/templates/govcon/pipeline.html +214 -0
icdev/tools/dashboard/templates/govcon/requirements.html +120 -0
icdev/tools/dashboard/templates/index.html +254 -0
icdev/tools/dashboard/templates/lineage.html +141 -0
icdev/tools/dashboard/templates/login.html +51 -0
icdev/tools/dashboard/templates/monitoring/overview.html +193 -0
icdev/tools/dashboard/templates/orchestration/dashboard.html +545 -0
icdev/tools/dashboard/templates/oscal.html +263 -0
icdev/tools/dashboard/templates/phases.html +150 -0
icdev/tools/dashboard/templates/prod_audit.html +280 -0
icdev/tools/dashboard/templates/profile.html +183 -0
icdev/tools/dashboard/templates/projects/detail.html +583 -0
icdev/tools/dashboard/templates/projects/list.html +47 -0
icdev/tools/dashboard/templates/proposals/detail.html +1253 -0
icdev/tools/dashboard/templates/proposals/list.html +179 -0
icdev/tools/dashboard/templates/proposals/section_detail.html +193 -0
icdev/tools/dashboard/templates/provenance.html +181 -0
icdev/tools/dashboard/templates/query/nlq.html +234 -0
icdev/tools/dashboard/templates/quick_paths.html +69 -0
icdev/tools/dashboard/templates/traces.html +155 -0
icdev/tools/dashboard/templates/translation_detail.html +199 -0
icdev/tools/dashboard/templates/translations.html +162 -0
icdev/tools/dashboard/templates/usage.html +225 -0
icdev/tools/dashboard/templates/wizard.html +539 -0
icdev/tools/dashboard/templates/xai.html +208 -0
icdev/tools/dashboard/ux_helpers.py +962 -0
icdev/tools/dashboard/websocket.py +81 -0
icdev/tools/db/__init__.py +1 -0
icdev/tools/db/backup.py +312 -0
icdev/tools/db/backup_manager.py +832 -0
icdev/tools/db/init_icdev_db.py +5900 -0
icdev/tools/db/migrate.py +178 -0
icdev/tools/db/migration_runner.py +549 -0
icdev/tools/db/migrations/001_baseline/meta.json +9 -0
icdev/tools/db/migrations/001_baseline/up.py +68 -0
icdev/tools/db/migrations/002_memory_enhancements/down.sql +8 -0
icdev/tools/db/migrations/002_memory_enhancements/meta.json +9 -0
icdev/tools/db/migrations/002_memory_enhancements/up.py +118 -0
icdev/tools/db/migrations/003_dev_profiles/meta.json +8 -0
icdev/tools/db/migrations/003_dev_profiles/up.py +93 -0
icdev/tools/db/migrations/004_innovation_engine/down.py +19 -0
icdev/tools/db/migrations/004_innovation_engine/up.py +227 -0
icdev/tools/db/migrations/005_phase_37_ai_security/down.py +19 -0
icdev/tools/db/migrations/005_phase_37_ai_security/up.py +258 -0
icdev/tools/db/migrations/006_phase_36_evolution/down.py +21 -0
icdev/tools/db/migrations/006_phase_36_evolution/up.py +323 -0
icdev/tools/db/migrations/007_phase_38_cloud/down.py +14 -0
icdev/tools/db/migrations/007_phase_38_cloud/up.py +110 -0
icdev/tools/db/migrations/008_phase36_37_integration/up.py +55 -0
icdev/tools/db/migrations/__init__.py +2 -0
icdev/tools/devsecops/__init__.py +2 -0
icdev/tools/devsecops/attestation_manager.py +458 -0
icdev/tools/devsecops/network_segmentation_generator.py +614 -0
icdev/tools/devsecops/pdp_config_generator.py +1256 -0
icdev/tools/devsecops/pipeline_security_generator.py +484 -0
icdev/tools/devsecops/policy_generator.py +653 -0
icdev/tools/devsecops/profile_manager.py +388 -0
icdev/tools/devsecops/service_mesh_generator.py +1073 -0
icdev/tools/devsecops/zta_maturity_scorer.py +368 -0
icdev/tools/devsecops/zta_terraform_generator.py +1303 -0
icdev/tools/dx/__init__.py +3 -0
icdev/tools/dx/companion.py +266 -0
icdev/tools/dx/instruction_generator.py +753 -0
icdev/tools/dx/mcp_config_generator.py +282 -0
icdev/tools/dx/skill_translator.py +425 -0
icdev/tools/dx/tool_detector.py +144 -0
icdev/tools/extensions/__init__.py +21 -0
icdev/tools/extensions/builtins/010_ai_governance_chat.py +277 -0
icdev/tools/extensions/builtins/__init__.py +2 -0
icdev/tools/extensions/extension_manager.py +455 -0
icdev/tools/infra/__init__.py +1 -0
icdev/tools/infra/ansible_generator.py +869 -0
icdev/tools/infra/dockerfile_generator.py +361 -0
icdev/tools/infra/infra_status.py +393 -0
icdev/tools/infra/ironbank_metadata_generator.py +411 -0
icdev/tools/infra/k8s_generator.py +1002 -0
icdev/tools/infra/pipeline_generator.py +832 -0
icdev/tools/infra/rollback.py +400 -0
icdev/tools/infra/terraform_generator.py +1142 -0
icdev/tools/infra/terraform_generator_azure.py +1254 -0
icdev/tools/infra/terraform_generator_gcp.py +953 -0
icdev/tools/infra/terraform_generator_ibm.py +360 -0
icdev/tools/infra/terraform_generator_oci.py +919 -0
icdev/tools/infra/terraform_generator_onprem.py +319 -0
icdev/tools/innovation/__init__.py +8 -0
icdev/tools/innovation/competitive_intel.py +492 -0
icdev/tools/innovation/innovation_manager.py +681 -0
icdev/tools/innovation/introspective_analyzer.py +774 -0
icdev/tools/innovation/register_external_patterns.py +440 -0
icdev/tools/innovation/signal_ranker.py +1038 -0
icdev/tools/innovation/solution_generator.py +697 -0
icdev/tools/innovation/standards_monitor.py +466 -0
icdev/tools/innovation/trend_detector.py +1046 -0
icdev/tools/innovation/triage_engine.py +1149 -0
icdev/tools/innovation/web_scanner.py +894 -0
icdev/tools/installer/__init__.py +1 -0
icdev/tools/installer/compliance_configurator.py +637 -0
icdev/tools/installer/installer.py +1711 -0
icdev/tools/installer/module_registry.py +805 -0
icdev/tools/installer/platform_setup.py +961 -0
icdev/tools/integration/__init__.py +2 -0
icdev/tools/integration/approval_manager.py +561 -0
icdev/tools/integration/doors_exporter.py +627 -0
icdev/tools/integration/gitlab_connector.py +784 -0
icdev/tools/integration/jira_connector.py +774 -0
icdev/tools/integration/servicenow_connector.py +693 -0
icdev/tools/knowledge/__init__.py +1 -0
icdev/tools/knowledge/knowledge_ingest.py +293 -0
icdev/tools/knowledge/pattern_detector.py +693 -0
icdev/tools/knowledge/recommendation_engine.py +461 -0
icdev/tools/knowledge/self_heal_analyzer.py +504 -0
icdev/tools/llm/__init__.py +72 -0
icdev/tools/llm/anthropic_provider.py +170 -0
icdev/tools/llm/azure_openai_provider.py +338 -0
icdev/tools/llm/bedrock_provider.py +315 -0
icdev/tools/llm/embedding_provider.py +438 -0
icdev/tools/llm/gemini_provider.py +381 -0
icdev/tools/llm/ibm_watsonx_provider.py +232 -0
icdev/tools/llm/oci_genai_provider.py +462 -0
icdev/tools/llm/ollama_provider.py +340 -0
icdev/tools/llm/openai_provider.py +225 -0
icdev/tools/llm/provider.py +355 -0
icdev/tools/llm/provider_sdk.py +175 -0
icdev/tools/llm/router.py +780 -0
icdev/tools/llm/vertex_ai_provider.py +374 -0
icdev/tools/maintenance/__init__.py +2 -0
icdev/tools/maintenance/dependency_scanner.py +1030 -0
icdev/tools/maintenance/maintenance_auditor.py +815 -0
icdev/tools/maintenance/remediation_engine.py +966 -0
icdev/tools/maintenance/vulnerability_checker.py +987 -0
icdev/tools/mbse/__init__.py +3 -0
icdev/tools/mbse/des_assessor.py +1186 -0
icdev/tools/mbse/des_report_generator.py +800 -0
icdev/tools/mbse/diagram_extractor.py +811 -0
icdev/tools/mbse/digital_thread.py +1665 -0
icdev/tools/mbse/model_code_generator.py +1122 -0
icdev/tools/mbse/model_control_mapper.py +420 -0
icdev/tools/mbse/pi_model_tracker.py +1093 -0
icdev/tools/mbse/reqif_parser.py +1483 -0
icdev/tools/mbse/sync_engine.py +1805 -0
icdev/tools/mbse/xmi_parser.py +1573 -0
icdev/tools/mcp/__init__.py +1 -0
icdev/tools/mcp/base_server.py +535 -0
icdev/tools/mcp/builder_server.py +725 -0
icdev/tools/mcp/compliance_server.py +1407 -0
icdev/tools/mcp/context_indexer.py +199 -0
icdev/tools/mcp/context_server.py +305 -0
icdev/tools/mcp/core_server.py +679 -0
icdev/tools/mcp/devsecops_server.py +432 -0
icdev/tools/mcp/gap_handlers.py +1079 -0
icdev/tools/mcp/gateway_server.py +339 -0
icdev/tools/mcp/generate_registry.py +623 -0
icdev/tools/mcp/infra_server.py +264 -0
icdev/tools/mcp/innovation_server.py +316 -0
icdev/tools/mcp/integration_server.py +527 -0
icdev/tools/mcp/knowledge_server.py +429 -0
icdev/tools/mcp/maintenance_server.py +248 -0
icdev/tools/mcp/marketplace_server.py +499 -0
icdev/tools/mcp/mbse_server.py +398 -0
icdev/tools/mcp/modernization_server.py +496 -0
icdev/tools/mcp/observability_server.py +354 -0
icdev/tools/mcp/requirements_server.py +415 -0
icdev/tools/mcp/simulation_server.py +468 -0
icdev/tools/mcp/standalone/__init__.py +2 -0
icdev/tools/mcp/standalone/builder.py +59 -0
icdev/tools/mcp/standalone/compliance.py +59 -0
icdev/tools/mcp/standalone/core.py +59 -0
icdev/tools/mcp/standalone/knowledge.py +59 -0
icdev/tools/mcp/standalone/maintenance.py +59 -0
icdev/tools/mcp/supply_chain_server.py +476 -0
icdev/tools/mcp/tool_registry.py +2008 -0
icdev/tools/mcp/unified_server.py +158 -0
icdev/tools/memory/__init__.py +2 -0
icdev/tools/memory/auto_capture.py +347 -0
icdev/tools/memory/embed_memory.py +158 -0
icdev/tools/memory/history_compressor.py +334 -0
icdev/tools/memory/hybrid_search.py +236 -0
icdev/tools/memory/maintenance_cron.py +289 -0
icdev/tools/memory/memory_consolidation.py +444 -0
icdev/tools/memory/memory_db.py +133 -0
icdev/tools/memory/memory_read.py +102 -0
icdev/tools/memory/memory_write.py +222 -0
icdev/tools/memory/semantic_search.py +139 -0
icdev/tools/memory/time_decay.py +435 -0
icdev/tools/modernization/__init__.py +3 -0
icdev/tools/modernization/architecture_extractor.py +734 -0
icdev/tools/modernization/compliance_bridge.py +1499 -0
icdev/tools/modernization/db_migration_planner.py +1385 -0
icdev/tools/modernization/doc_generator.py +1428 -0
icdev/tools/modernization/framework_migrator.py +1525 -0
icdev/tools/modernization/legacy_analyzer.py +1948 -0
icdev/tools/modernization/migration_code_generator.py +1639 -0
icdev/tools/modernization/migration_report_generator.py +1653 -0
icdev/tools/modernization/migration_tracker.py +1726 -0
icdev/tools/modernization/monolith_decomposer.py +1508 -0
icdev/tools/modernization/seven_r_assessor.py +1658 -0
icdev/tools/modernization/strangler_fig_manager.py +1705 -0
icdev/tools/modernization/ui_analyzer.py +771 -0
icdev/tools/modernization/version_migrator.py +1392 -0
icdev/tools/monitor/__init__.py +1 -0
icdev/tools/monitor/alert_correlator.py +495 -0
icdev/tools/monitor/auto_resolver.py +612 -0
icdev/tools/monitor/health_checker.py +509 -0
icdev/tools/monitor/heartbeat_daemon.py +792 -0
icdev/tools/monitor/log_analyzer.py +516 -0
icdev/tools/monitor/metric_collector.py +496 -0
icdev/tools/mosa/__init__.py +10 -0
icdev/tools/mosa/icd_generator.py +370 -0
icdev/tools/mosa/modular_design_analyzer.py +683 -0
icdev/tools/mosa/mosa_code_enforcer.py +349 -0
icdev/tools/mosa/tsp_generator.py +265 -0
icdev/tools/observability/__init__.py +100 -0
icdev/tools/observability/genai_attributes.py +88 -0
icdev/tools/observability/instrumentation.py +140 -0
icdev/tools/observability/mlflow_exporter.py +194 -0
icdev/tools/observability/otel_tracer.py +168 -0
icdev/tools/observability/provenance/__init__.py +3 -0
icdev/tools/observability/provenance/prov_recorder.py +324 -0
icdev/tools/observability/shap/__init__.py +3 -0
icdev/tools/observability/shap/agent_shap.py +275 -0
icdev/tools/observability/sqlite_tracer.py +361 -0
icdev/tools/observability/trace_context.py +205 -0
icdev/tools/observability/tracer.py +230 -0
icdev/tools/orchestration/__init__.py +2 -0
icdev/tools/orchestration/workflow_composer.py +361 -0
icdev/tools/project/__init__.py +1 -0
icdev/tools/project/manifest_loader.py +418 -0
icdev/tools/project/project_create.py +350 -0
icdev/tools/project/project_list.py +174 -0
icdev/tools/project/project_scaffold.py +1715 -0
icdev/tools/project/project_status.py +479 -0
icdev/tools/project/session_context_builder.py +757 -0
icdev/tools/project/validate_manifest.py +55 -0
icdev/tools/registry/__init__.py +10 -0
icdev/tools/registry/absorption_engine.py +832 -0
icdev/tools/registry/capability_evaluator.py +668 -0
icdev/tools/registry/child_registry.py +617 -0
icdev/tools/registry/cross_pollinator.py +1065 -0
icdev/tools/registry/genome_manager.py +671 -0
icdev/tools/registry/learning_collector.py +912 -0
icdev/tools/registry/propagation_manager.py +942 -0
icdev/tools/registry/staging_manager.py +742 -0
icdev/tools/registry/telemetry_collector.py +423 -0
icdev/tools/requirements/__init__.py +1 -0
icdev/tools/requirements/ai_governance_scorer.py +208 -0
icdev/tools/requirements/boundary_analyzer.py +1293 -0
icdev/tools/requirements/clarification_engine.py +618 -0
icdev/tools/requirements/complexity_scorer.py +387 -0
icdev/tools/requirements/consistency_analyzer.py +803 -0
icdev/tools/requirements/constitution_manager.py +605 -0
icdev/tools/requirements/decomposition_engine.py +778 -0
icdev/tools/requirements/document_extractor.py +1016 -0
icdev/tools/requirements/elicitation_techniques.py +519 -0
icdev/tools/requirements/gap_detector.py +271 -0
icdev/tools/requirements/intake_engine.py +2188 -0
icdev/tools/requirements/prd_generator.py +847 -0
icdev/tools/requirements/prd_validator.py +595 -0
icdev/tools/requirements/readiness_scorer.py +313 -0
icdev/tools/requirements/spec_organizer.py +1029 -0
icdev/tools/requirements/spec_quality_checker.py +1097 -0
icdev/tools/requirements/traceability_builder.py +579 -0
icdev/tools/resilience/__init__.py +34 -0
icdev/tools/resilience/circuit_breaker.py +340 -0
icdev/tools/resilience/correlation.py +150 -0
icdev/tools/resilience/errors.py +81 -0
icdev/tools/resilience/retry.py +95 -0
icdev/tools/schemas/__init__.py +27 -0
icdev/tools/schemas/chat.py +61 -0
icdev/tools/schemas/compliance.py +56 -0
icdev/tools/schemas/core.py +85 -0
icdev/tools/schemas/innovation.py +37 -0
icdev/tools/schemas/validation.py +109 -0
icdev/tools/sdk/__init__.py +3 -0
icdev/tools/sdk/icdev_client.py +218 -0
icdev/tools/security/__init__.py +1 -0
icdev/tools/security/agent_output_validator.py +330 -0
icdev/tools/security/agent_trust_scorer.py +466 -0
icdev/tools/security/ai_bom_generator.py +725 -0
icdev/tools/security/ai_telemetry_logger.py +469 -0
icdev/tools/security/atlas_red_team.py +543 -0
icdev/tools/security/code_pattern_scanner.py +378 -0
icdev/tools/security/confabulation_detector.py +271 -0
icdev/tools/security/container_scanner.py +491 -0
icdev/tools/security/dependency_auditor.py +944 -0
icdev/tools/security/endpoint_security_scanner.py +579 -0
icdev/tools/security/mcp_tool_authorizer.py +243 -0
icdev/tools/security/prompt_injection_detector.py +737 -0
icdev/tools/security/sast_runner.py +948 -0
icdev/tools/security/secret_detector.py +378 -0
icdev/tools/security/tool_chain_validator.py +357 -0
icdev/tools/security/vuln_scanner.py +539 -0
icdev/tools/simulation/__init__.py +2 -0
icdev/tools/simulation/coa_generator.py +1552 -0
icdev/tools/simulation/monte_carlo.py +758 -0
icdev/tools/simulation/scenario_manager.py +1073 -0
icdev/tools/simulation/simulation_engine.py +1104 -0
icdev/tools/supply_chain/__init__.py +2 -0
icdev/tools/supply_chain/cve_triager.py +705 -0
icdev/tools/supply_chain/dependency_graph.py +645 -0
icdev/tools/supply_chain/isa_manager.py +540 -0
icdev/tools/supply_chain/scrm_assessor.py +546 -0
icdev/tools/testing/__init__.py +2 -0
icdev/tools/testing/acceptance_validator.py +411 -0
icdev/tools/testing/claude_dir_validator.py +831 -0
icdev/tools/testing/data_types.py +199 -0
icdev/tools/testing/e2e_runner.py +715 -0
icdev/tools/testing/fuzz_cli.py +306 -0
icdev/tools/testing/health_check.py +483 -0
icdev/tools/testing/platform_check.py +143 -0
icdev/tools/testing/production_audit.py +1862 -0
icdev/tools/testing/production_remediate.py +804 -0
icdev/tools/testing/screenshot_validator.py +539 -0
icdev/tools/testing/smoke_test.py +283 -0
icdev/tools/testing/test_agent_models.py +117 -0
icdev/tools/testing/test_orchestrator.py +957 -0
icdev/tools/testing/utils.py +229 -0
icdev/tools/translation/__init__.py +17 -0
icdev/tools/translation/code_translator.py +550 -0
icdev/tools/translation/dependency_mapper.py +277 -0
icdev/tools/translation/feature_map.py +395 -0
icdev/tools/translation/project_assembler.py +439 -0
icdev/tools/translation/source_extractor.py +609 -0
icdev/tools/translation/test_translator.py +333 -0
icdev/tools/translation/translation_manager.py +582 -0
icdev/tools/translation/translation_validator.py +662 -0
icdev/tools/translation/type_checker.py +371 -0
icdev-1.0.0.dist-info/METADATA +868 -0
icdev-1.0.0.dist-info/RECORD +1105 -0
icdev-1.0.0.dist-info/WHEEL +5 -0
icdev-1.0.0.dist-info/entry_points.txt +9 -0
icdev-1.0.0.dist-info/licenses/LICENSE +254 -0
icdev-1.0.0.dist-info/licenses/NOTICE +268 -0
icdev-1.0.0.dist-info/top_level.txt +1 -0

icdev/tools/modernization/db_migration_planner.py ADDED Viewed

@@ -0,0 +1,1385 @@
+#!/usr/bin/env python3
+# CUI // SP-CTI
+"""Database Migration Planning Tool for ICDEV DoD Modernization.
+Generates DDL scripts, data migration SQL, stored procedure translations, and
+validation queries for migrating legacy databases to modern targets (PostgreSQL,
+MySQL, Aurora). All output is generated as SQL files for DBA review — nothing
+is executed directly (air-gap safe).
+Reads legacy schema metadata from icdev.db (legacy_applications, legacy_db_schemas)
+and type/function/syntax mappings from context/modernization/db_type_mappings.json.
+All generated artifacts include CUI // SP-CTI banners as required for Controlled
+Unclassified Information handling.
+Usage:
+    python tools/modernization/db_migration_planner.py --app-id APP-001 --output-dir .tmp/migration --type all
+    python tools/modernization/db_migration_planner.py --app-id APP-001 --output-dir .tmp/migration --type schema
+    python tools/modernization/db_migration_planner.py --app-id APP-001 --output-dir .tmp/migration --type data
+    python tools/modernization/db_migration_planner.py --app-id APP-001 --output-dir .tmp/migration --type procedures --source-path /opt/legacy/sql
+    python tools/modernization/db_migration_planner.py --app-id APP-001 --output-dir .tmp/migration --type validation
+    python tools/modernization/db_migration_planner.py --app-id APP-001 --output-dir .tmp/migration --type all --json
+"""
+import argparse
+import json
+import os
+import re
+import sqlite3
+import sys
+import textwrap
+from collections import OrderedDict
+from datetime import datetime
+from pathlib import Path
+from icdev._paths import get_project_root
+# ---------------------------------------------------------------------------
+# Constants
+# ---------------------------------------------------------------------------
+BASE_DIR = get_project_root()
+DB_PATH = BASE_DIR / "data" / "icdev.db"
+TYPE_MAPPINGS_PATH = BASE_DIR / "context" / "modernization" / "db_type_mappings.json"
+CUI_BANNER = "CUI // SP-CTI"
+SQL_CUI_HEADER = (
+    f"-- {'=' * 68}\n"
+    f"-- {CUI_BANNER}\n"
+    f"-- {'=' * 68}\n"
+)
+SQL_CUI_FOOTER = (
+    f"\n-- {'=' * 68}\n"
+    f"-- {CUI_BANNER}\n"
+    f"-- {'=' * 68}\n"
+)
+MD_CUI_HEADER = f"<!-- {CUI_BANNER} -->"
+MD_CUI_FOOTER = f"<!-- {CUI_BANNER} -->"
+# Estimated byte sizes per data type for volume estimation
+TYPE_SIZE_ESTIMATES = {
+    "VARCHAR": 50,
+    "CHAR": 10,
+    "TEXT": 500,
+    "INTEGER": 8,
+    "INT": 8,
+    "SMALLINT": 4,
+    "BIGINT": 8,
+    "NUMERIC": 16,
+    "DECIMAL": 16,
+    "REAL": 4,
+    "FLOAT": 8,
+    "DOUBLE PRECISION": 8,
+    "BOOLEAN": 1,
+    "DATE": 4,
+    "TIMESTAMP": 8,
+    "TIMESTAMPTZ": 8,
+    "TIME": 8,
+    "BYTEA": 256,
+    "UUID": 16,
+    "JSON": 200,
+    "JSONB": 200,
+    "XML": 500,
+    "BLOB": 1024,
+    "CLOB": 1024,
+    "IMAGE": 1024,
+}
+# Normalised lookup key for migration path resolution
+_PATH_ALIASES = {
+    "oracle": "oracle",
+    "mssql": "mssql",
+    "sqlserver": "mssql",
+    "sql server": "mssql",
+    "microsoft sql server": "mssql",
+    "db2": "db2",
+    "ibm db2": "db2",
+    "sybase": "sybase",
+    "sap sybase": "sybase",
+    "sap sybase ase": "sybase",
+    "mysql": "mysql",
+    "postgresql": "postgresql",
+    "postgres": "postgresql",
+    "aurora": "postgresql",
+}
+# ---------------------------------------------------------------------------
+# Database helpers
+# ---------------------------------------------------------------------------
+def _get_db() -> sqlite3.Connection:
+    """Return a sqlite3 connection with Row factory for dict-style access."""
+    if not DB_PATH.exists():
+        print(f"ERROR: Database not found at {DB_PATH}", file=sys.stderr)
+        print("Run 'python tools/db/init_icdev_db.py' first.", file=sys.stderr)
+        sys.exit(1)
+    conn = sqlite3.connect(str(DB_PATH))
+    conn.row_factory = sqlite3.Row
+    return conn
+def _normalise_db_name(name: str) -> str:
+    """Normalise a database system name to a canonical key."""
+    return _PATH_ALIASES.get(name.lower().strip(), name.lower().strip())
+# ---------------------------------------------------------------------------
+# Type mapping loader
+# ---------------------------------------------------------------------------
+def load_type_mappings(source_db: str, target_db: str) -> dict:
+    """Load type, function, and syntax mappings for a specific migration path.
+    Reads context/modernization/db_type_mappings.json and locates the matching
+    migration path entry (e.g., oracle_to_postgresql).
+    Returns a dict with keys: data_type_mappings, function_mappings,
+    syntax_mappings. Each value is a list of mapping dicts from the JSON.
+    Returns empty lists if no matching path is found.
+    """
+    if not TYPE_MAPPINGS_PATH.exists():
+        print(f"WARNING: Type mappings file not found at {TYPE_MAPPINGS_PATH}",
+              file=sys.stderr)
+        return {
+            "data_type_mappings": [],
+            "function_mappings": [],
+            "syntax_mappings": [],
+        }
+    with open(TYPE_MAPPINGS_PATH, "r", encoding="utf-8") as fh:
+        data = json.load(fh)
+    src_key = _normalise_db_name(source_db)
+    tgt_key = _normalise_db_name(target_db)
+    migration_paths = data.get("migration_paths", {})
+    # Try exact path key first (e.g., "oracle_to_postgresql")
+    path_key = f"{src_key}_to_{tgt_key}"
+    if path_key in migration_paths:
+        entry = migration_paths[path_key]
+        return {
+            "data_type_mappings": entry.get("data_type_mappings", []),
+            "function_mappings": entry.get("function_mappings", []),
+            "syntax_mappings": entry.get("syntax_mappings", []),
+        }
+    # Fallback: iterate and match by source/target field values
+    for _key, entry in migration_paths.items():
+        entry_src = _normalise_db_name(entry.get("source", ""))
+        entry_tgt = _normalise_db_name(entry.get("target", ""))
+        if entry_src == src_key and entry_tgt == tgt_key:
+            return {
+                "data_type_mappings": entry.get("data_type_mappings", []),
+                "function_mappings": entry.get("function_mappings", []),
+                "syntax_mappings": entry.get("syntax_mappings", []),
+            }
+    print(f"WARNING: No migration path found for {source_db} -> {target_db}",
+          file=sys.stderr)
+    return {
+        "data_type_mappings": [],
+        "function_mappings": [],
+        "syntax_mappings": [],
+    }
+# ---------------------------------------------------------------------------
+# Data type conversion
+# ---------------------------------------------------------------------------
+def _map_data_type(source_type: str, source_db: str, target_db: str,
+                   mappings: dict) -> str:
+    """Convert a single data type from source to target using mappings.
+    Handles parametric types such as NUMBER(10,2) -> NUMERIC(10,2) and
+    VARCHAR2(100) -> VARCHAR(100). If no mapping is found the source type
+    is returned with a -- TODO comment appended.
+    """
+    raw = source_type.strip()
+    # Extract base type and optional parameters — e.g. "NUMBER(10,2)" -> ("NUMBER", "(10,2)")
+    param_match = re.match(r'^([A-Za-z_][A-Za-z0-9_ ]*)\s*(\(.*\))?$', raw)
+    if param_match:
+        base_type = param_match.group(1).strip().upper()
+        params = param_match.group(2) or ""
+    else:
+        base_type = raw.upper()
+        params = ""
+    # Build a quick lookup from the data_type_mappings list
+    type_map = {}
+    for m in mappings.get("data_type_mappings", []):
+        src = m.get("source_type", "").upper().strip()
+        tgt = m.get("target_type", "").strip()
+        type_map[src] = tgt
+    if base_type in type_map:
+        target_base = type_map[base_type]
+        # If target already contains params (e.g. NUMERIC(19,4)), use as-is
+        if "(" in target_base:
+            return target_base
+        return f"{target_base}{params}" if params else target_base
+    # Try full type string match (e.g. "TINYINT(1)")
+    full_upper = raw.upper()
+    if full_upper in type_map:
+        return type_map[full_upper]
+    # No mapping found — return source with TODO
+    return f"{raw}  -- TODO: unmapped type from {source_db}, review manually"
+# ---------------------------------------------------------------------------
+# Function translation
+# ---------------------------------------------------------------------------
+def translate_functions(app_id: str, target_db: str, content: str) -> str:
+    """Translate built-in function calls within SQL content.
+    Applies regex-based replacements for common function conversions from
+    Oracle and MSSQL to PostgreSQL (or other target). Uses the function_mappings
+    from the context JSON where possible, supplemented by hard-coded patterns
+    for complex transforms that require regex.
+    """
+    if not content:
+        return content
+    _normalise_db_name(target_db)
+    result = content
+    # ------- Oracle -> PostgreSQL translations -------
+    # NVL2(a, b, c) -> CASE WHEN a IS NOT NULL THEN b ELSE c END
+    result = re.sub(
+        r'\bNVL2\s*\(\s*([^,]+?)\s*,\s*([^,]+?)\s*,\s*([^)]+?)\s*\)',
+        r'CASE WHEN \1 IS NOT NULL THEN \2 ELSE \3 END',
+        result, flags=re.IGNORECASE
+    )
+    # NVL(a, b) -> COALESCE(a, b)
+    result = re.sub(
+        r'\bNVL\s*\(\s*([^,]+?)\s*,\s*([^)]+?)\s*\)',
+        r'COALESCE(\1, \2)',
+        result, flags=re.IGNORECASE
+    )
+    # DECODE(a, b, c, d) -> CASE WHEN a=b THEN c ELSE d END
+    result = re.sub(
+        r'\bDECODE\s*\(\s*([^,]+?)\s*,\s*([^,]+?)\s*,\s*([^,]+?)\s*,\s*([^)]+?)\s*\)',
+        r'CASE WHEN \1 = \2 THEN \3 ELSE \4 END',
+        result, flags=re.IGNORECASE
+    )
+    # TO_DATE(s, 'fmt') -> TO_TIMESTAMP(s, 'fmt')
+    result = re.sub(
+        r'\bTO_DATE\s*\(',
+        'TO_TIMESTAMP(',
+        result, flags=re.IGNORECASE
+    )
+    # SYSDATE -> CURRENT_TIMESTAMP
+    result = re.sub(
+        r'\bSYSDATE\b',
+        'CURRENT_TIMESTAMP',
+        result, flags=re.IGNORECASE
+    )
+    # SUBSTR(s, p, l) -> SUBSTRING(s FROM p FOR l)
+    result = re.sub(
+        r'\bSUBSTR\s*\(\s*([^,]+?)\s*,\s*([^,]+?)\s*,\s*([^)]+?)\s*\)',
+        r'SUBSTRING(\1 FROM \2 FOR \3)',
+        result, flags=re.IGNORECASE
+    )
+    # INSTR(s, sub) -> POSITION(sub IN s)
+    result = re.sub(
+        r'\bINSTR\s*\(\s*([^,]+?)\s*,\s*([^)]+?)\s*\)',
+        r'POSITION(\2 IN \1)',
+        result, flags=re.IGNORECASE
+    )
+    # ------- MSSQL -> PostgreSQL translations -------
+    # GETDATE() -> CURRENT_TIMESTAMP
+    result = re.sub(
+        r'\bGETDATE\s*\(\s*\)',
+        'CURRENT_TIMESTAMP',
+        result, flags=re.IGNORECASE
+    )
+    # ISNULL(a, b) -> COALESCE(a, b)
+    result = re.sub(
+        r'\bISNULL\s*\(\s*([^,]+?)\s*,\s*([^)]+?)\s*\)',
+        r'COALESCE(\1, \2)',
+        result, flags=re.IGNORECASE
+    )
+    # LEN(s) -> LENGTH(s)
+    result = re.sub(
+        r'\bLEN\s*\(',
+        'LENGTH(',
+        result, flags=re.IGNORECASE
+    )
+    # CHARINDEX(sub, s) -> POSITION(sub IN s)
+    result = re.sub(
+        r'\bCHARINDEX\s*\(\s*([^,]+?)\s*,\s*([^)]+?)\s*\)',
+        r'POSITION(\1 IN \2)',
+        result, flags=re.IGNORECASE
+    )
+    # DATEADD(day, n, d) -> d + INTERVAL 'n days'
+    result = re.sub(
+        r'\bDATEADD\s*\(\s*(\w+)\s*,\s*([^,]+?)\s*,\s*([^)]+?)\s*\)',
+        r"\3 + INTERVAL '\2 \1s'",
+        result, flags=re.IGNORECASE
+    )
+    # DATEDIFF(day, a, b) -> EXTRACT(DAY FROM b - a)
+    result = re.sub(
+        r'\bDATEDIFF\s*\(\s*(\w+)\s*,\s*([^,]+?)\s*,\s*([^)]+?)\s*\)',
+        r'EXTRACT(\1 FROM \3 - \2)',
+        result, flags=re.IGNORECASE
+    )
+    # CONVERT(type, val) -> CAST(val AS type)
+    result = re.sub(
+        r'\bCONVERT\s*\(\s*([^,]+?)\s*,\s*([^)]+?)\s*\)',
+        r'CAST(\2 AS \1)',
+        result, flags=re.IGNORECASE
+    )
+    return result
+# ---------------------------------------------------------------------------
+# Schema DDL generation
+# ---------------------------------------------------------------------------
+def generate_schema_ddl(app_id: str, target_db: str, output_dir: str) -> str:
+    """Generate CREATE TABLE DDL for the target database.
+    Reads all legacy_db_schemas rows for the given app_id, groups by table,
+    maps data types, and produces a complete DDL script with primary key
+    constraints, NOT NULL, DEFAULT values, and foreign key constraints.
+    Also generates CREATE INDEX for foreign key columns.
+    Returns the path to the generated SQL file.
+    """
+    conn = _get_db()
+    try:
+        rows = conn.execute(
+            """SELECT lds.*, la.primary_language
+               FROM legacy_db_schemas lds
+               JOIN legacy_applications la ON la.id = lds.legacy_app_id
+               WHERE lds.legacy_app_id = ?
+               ORDER BY lds.schema_name, lds.table_name, lds.column_name""",
+            (app_id,)
+        ).fetchall()
+    finally:
+        conn.close()
+    if not rows:
+        print(f"WARNING: No schema data found for app_id={app_id}", file=sys.stderr)
+        return ""
+    # Determine source DB type from first row
+    source_db = rows[0]["db_type"]
+    mappings = load_type_mappings(source_db, target_db)
+    # Group rows by (schema_name, table_name)
+    tables = OrderedDict()
+    for row in rows:
+        key = (row["schema_name"] or "public", row["table_name"])
+        if key not in tables:
+            tables[key] = []
+        tables[key].append(dict(row))
+    lines = []
+    lines.append(SQL_CUI_HEADER)
+    lines.append("-- DDL Migration Script")
+    lines.append(f"-- Source: {source_db} -> Target: {target_db}")
+    lines.append(f"-- Application ID: {app_id}")
+    lines.append(f"-- Generated: {datetime.now().strftime('%Y-%m-%d %H:%M:%S')}")
+    lines.append("-- WARNING: Review before execution. Do NOT run unreviewed.")
+    lines.append(f"-- {'=' * 68}")
+    lines.append("")
+    index_statements = []
+    for (schema, table), columns in tables.items():
+        qualified = f"{schema}.{table}" if schema and schema != "public" else table
+        lines.append(f"-- Table: {qualified}")
+        lines.append(f"CREATE TABLE IF NOT EXISTS {qualified} (")
+        col_defs = []
+        pk_columns = []
+        fk_constraints = []
+        for col in columns:
+            mapped_type = _map_data_type(
+                col["data_type"], source_db, target_db, mappings
+            )
+            parts = [f"    {col['column_name']}", mapped_type]
+            # NOT NULL
+            if not col["is_nullable"]:
+                parts.append("NOT NULL")
+            # DEFAULT
+            if col["default_value"]:
+                default_val = _translate_default(col["default_value"], source_db, target_db)
+                parts.append(f"DEFAULT {default_val}")
+            col_defs.append(" ".join(parts))
+            # Collect primary key columns
+            if col["is_primary_key"]:
+                pk_columns.append(col["column_name"])
+            # Collect foreign keys
+            if col["is_foreign_key"] and col["foreign_table"]:
+                fk_name = f"fk_{table}_{col['column_name']}"
+                fk_constraints.append(
+                    f"    CONSTRAINT {fk_name} FOREIGN KEY ({col['column_name']}) "
+                    f"REFERENCES {col['foreign_table']}({col['foreign_column'] or 'id'})"
+                )
+                # Index for FK column
+                idx_name = f"idx_{table}_{col['column_name']}"
+                index_statements.append(
+                    f"CREATE INDEX IF NOT EXISTS {idx_name} ON {qualified}({col['column_name']});"
+                )
+        # Add primary key constraint
+        if pk_columns:
+            pk_name = f"pk_{table}"
+            col_defs.append(
+                f"    CONSTRAINT {pk_name} PRIMARY KEY ({', '.join(pk_columns)})"
+            )
+        # Add foreign key constraints
+        col_defs.extend(fk_constraints)
+        lines.append(",\n".join(col_defs))
+        lines.append(");")
+        lines.append("")
+    # Index statements
+    if index_statements:
+        lines.append("-- Foreign key indexes")
+        lines.extend(index_statements)
+        lines.append("")
+    lines.append(SQL_CUI_FOOTER)
+    # Write output
+    out_path = Path(output_dir)
+    out_path.mkdir(parents=True, exist_ok=True)
+    file_path = out_path / "schema_ddl.sql"
+    file_path.write_text("\n".join(lines), encoding="utf-8")
+    print(f"Schema DDL written to {file_path}")
+    return str(file_path)
+def _translate_default(default_value: str, source_db: str, target_db: str) -> str:
+    """Translate default value expressions from source to target dialect."""
+    val = default_value.strip()
+    src = _normalise_db_name(source_db)
+    # Oracle-specific defaults
+    if src == "oracle":
+        if val.upper() == "SYSDATE":
+            return "CURRENT_TIMESTAMP"
+        if val.upper() == "SYS_GUID()":
+            return "gen_random_uuid()"
+        # sequence.NEXTVAL -> nextval('sequence')
+        nextval_match = re.match(r"(\w+)\.NEXTVAL", val, re.IGNORECASE)
+        if nextval_match:
+            return f"nextval('{nextval_match.group(1)}')"
+    # MSSQL-specific defaults
+    if src == "mssql":
+        if val.upper() in ("GETDATE()", "(GETDATE())"):
+            return "CURRENT_TIMESTAMP"
+        if val.upper() in ("NEWID()", "(NEWID())"):
+            return "gen_random_uuid()"
+        # Strip outer parentheses common in MSSQL defaults
+        stripped = re.sub(r'^\((.+)\)$', r'\1', val)
+        if stripped != val:
+            return stripped
+    return val
+# ---------------------------------------------------------------------------
+# Data migration script generation
+# ---------------------------------------------------------------------------
+def generate_data_migration_scripts(app_id: str, target_db: str,
+                                    output_dir: str) -> str:
+    """Generate INSERT/SELECT migration SQL for each table.
+    For each table produces:
+    - INSERT INTO target_table SELECT ... FROM source_table
+    - Type casts where data types changed
+    - Function translations (NVL->COALESCE, etc.)
+    - Row count validation queries
+    Returns the path to the generated SQL file.
+    """
+    conn = _get_db()
+    try:
+        rows = conn.execute(
+            """SELECT lds.*, la.primary_language
+               FROM legacy_db_schemas lds
+               JOIN legacy_applications la ON la.id = lds.legacy_app_id
+               WHERE lds.legacy_app_id = ?
+               ORDER BY lds.schema_name, lds.table_name, lds.column_name""",
+            (app_id,)
+        ).fetchall()
+    finally:
+        conn.close()
+    if not rows:
+        print(f"WARNING: No schema data found for app_id={app_id}", file=sys.stderr)
+        return ""
+    source_db = rows[0]["db_type"]
+    mappings = load_type_mappings(source_db, target_db)
+    # Group by table
+    tables = OrderedDict()
+    for row in rows:
+        key = (row["schema_name"] or "public", row["table_name"])
+        if key not in tables:
+            tables[key] = []
+        tables[key].append(dict(row))
+    lines = []
+    lines.append(SQL_CUI_HEADER)
+    lines.append("-- Data Migration Script")
+    lines.append(f"-- Source: {source_db} -> Target: {target_db}")
+    lines.append(f"-- Application ID: {app_id}")
+    lines.append(f"-- Generated: {datetime.now().strftime('%Y-%m-%d %H:%M:%S')}")
+    lines.append("-- WARNING: Review before execution. Do NOT run unreviewed.")
+    lines.append(f"-- {'=' * 68}")
+    lines.append("")
+    validation_lines = []
+    for (schema, table), columns in tables.items():
+        qualified = f"{schema}.{table}" if schema and schema != "public" else table
+        source_qualified = f"{schema}.{table}" if schema and schema != "public" else table
+        lines.append(f"-- Migrate data: {qualified}")
+        lines.append(f"-- Source table: {source_qualified}")
+        lines.append("")
+        # Build SELECT column list with casts where types changed
+        select_parts = []
+        col_names = []
+        for col in columns:
+            col_name = col["column_name"]
+            col_names.append(col_name)
+            source_type = col["data_type"].strip().upper()
+            mapped_type = _map_data_type(col["data_type"], source_db, target_db, mappings)
+            # Strip TODO comments for comparison
+            clean_mapped = mapped_type.split("--")[0].strip().upper()
+            # Extract base type from mapped for comparison
+            source_base = re.match(r'^([A-Za-z_][A-Za-z0-9_ ]*)', source_type)
+            target_base = re.match(r'^([A-Za-z_][A-Za-z0-9_ ]*)', clean_mapped)
+            source_base_str = source_base.group(1).strip() if source_base else source_type
+            target_base_str = target_base.group(1).strip() if target_base else clean_mapped
+            if source_base_str != target_base_str and "TODO" not in mapped_type:
+                # Type changed — add explicit CAST
+                select_parts.append(f"CAST({col_name} AS {clean_mapped}) AS {col_name}")
+            else:
+                select_parts.append(col_name)
+        # Apply function translations to the SELECT list
+        select_str = ",\n        ".join(select_parts)
+        select_str = translate_functions(app_id, target_db, select_str)
+        target_cols = ", ".join(col_names)
+        lines.append(f"INSERT INTO {qualified} ({target_cols})")
+        lines.append("    SELECT")
+        lines.append(f"        {select_str}")
+        lines.append(f"    FROM {source_qualified};")
+        lines.append("")
+        # Row count validation
+        validation_lines.append(f"-- Validate row counts: {qualified}")
+        validation_lines.append(
+            f"SELECT 'source' AS side, COUNT(*) AS row_count FROM {source_qualified};"
+        )
+        validation_lines.append(
+            f"SELECT 'target' AS side, COUNT(*) AS row_count FROM {qualified};"
+        )
+        validation_lines.append("")
+    # Append validation section
+    lines.append(f"-- {'=' * 68}")
+    lines.append("-- ROW COUNT VALIDATION")
+    lines.append(f"-- {'=' * 68}")
+    lines.append("")
+    lines.extend(validation_lines)
+    lines.append(SQL_CUI_FOOTER)
+    out_path = Path(output_dir)
+    out_path.mkdir(parents=True, exist_ok=True)
+    file_path = out_path / "data_migration.sql"
+    file_path.write_text("\n".join(lines), encoding="utf-8")
+    print(f"Data migration script written to {file_path}")
+    return str(file_path)
+# ---------------------------------------------------------------------------
+# Stored procedure translation
+# ---------------------------------------------------------------------------
+def translate_stored_procedures(app_id: str, target_db: str,
+                                source_path: str, output_dir: str) -> tuple:
+    """Translate stored procedure and function SQL files to target dialect.
+    Scans source_path for .sql files containing CREATE PROCEDURE/FUNCTION,
+    applies syntax mappings (PL/SQL -> PL/pgSQL, T-SQL -> PL/pgSQL), and
+    writes translated output.
+    Returns (file_path, untranslatable_constructs) where
+    untranslatable_constructs is a list of strings describing items needing
+    manual review.
+    """
+    src_dir = Path(source_path)
+    if not src_dir.exists():
+        print(f"WARNING: Source path does not exist: {source_path}", file=sys.stderr)
+        return ("", [])
+    # Collect .sql files that contain procedure/function definitions
+    sql_files = []
+    if src_dir.is_file() and src_dir.suffix.lower() == ".sql":
+        sql_files.append(src_dir)
+    elif src_dir.is_dir():
+        for root, _dirs, files in os.walk(str(src_dir)):
+            for fname in sorted(files):
+                if fname.lower().endswith(".sql"):
+                    sql_files.append(Path(root) / fname)
+    if not sql_files:
+        print(f"WARNING: No .sql files found in {source_path}", file=sys.stderr)
+        return ("", [])
+    # Determine source DB from the app record
+    conn = _get_db()
+    try:
+        conn.execute(
+            "SELECT * FROM legacy_applications WHERE id = ?", (app_id,)
+        ).fetchone()
+        schema_row = conn.execute(
+            "SELECT db_type FROM legacy_db_schemas WHERE legacy_app_id = ? LIMIT 1",
+            (app_id,)
+        ).fetchone()
+    finally:
+        conn.close()
+    source_db = schema_row["db_type"] if schema_row else "oracle"
+    src_key = _normalise_db_name(source_db)
+    load_type_mappings(source_db, target_db)
+    untranslatable = []
+    translated_blocks = []
+    translated_blocks.append(SQL_CUI_HEADER)
+    translated_blocks.append("-- Stored Procedure Translation")
+    translated_blocks.append(f"-- Source: {source_db} -> Target: {target_db}")
+    translated_blocks.append(f"-- Application ID: {app_id}")
+    translated_blocks.append(f"-- Generated: {datetime.now().strftime('%Y-%m-%d %H:%M:%S')}")
+    translated_blocks.append("-- WARNING: Review before execution. Manual review required.")
+    translated_blocks.append(f"-- {'=' * 68}")
+    translated_blocks.append("")
+    proc_pattern = re.compile(
+        r'\bCREATE\s+(OR\s+REPLACE\s+)?(PROCEDURE|FUNCTION)\b',
+        re.IGNORECASE
+    )
+    for sql_file in sql_files:
+        content = sql_file.read_text(encoding="utf-8", errors="replace")
+        # Only process files containing procedure/function definitions
+        if not proc_pattern.search(content):
+            continue
+        translated_blocks.append(f"-- Source file: {sql_file.name}")
+        translated_blocks.append(f"-- {'=' * 50}")
+        translated_content = content
+        # Apply Oracle PL/SQL -> PL/pgSQL conversions
+        if src_key == "oracle":
+            # IS -> AS (in procedure/function declarations)
+            translated_content = re.sub(
+                r'\b(CREATE\s+(?:OR\s+REPLACE\s+)?(?:PROCEDURE|FUNCTION)\s+\w+[^;]*?)\bIS\b',
+                r'\1AS',
+                translated_content, flags=re.IGNORECASE
+            )
+            # VARCHAR2 -> VARCHAR
+            translated_content = re.sub(
+                r'\bVARCHAR2\b', 'VARCHAR',
+                translated_content, flags=re.IGNORECASE
+            )
+            # NUMBER -> NUMERIC
+            translated_content = re.sub(
+                r'\bNUMBER\b', 'NUMERIC',
+                translated_content, flags=re.IGNORECASE
+            )
+            # DBMS_OUTPUT.PUT_LINE -> RAISE NOTICE
+            translated_content = re.sub(
+                r"\bDBMS_OUTPUT\.PUT_LINE\s*\(\s*'([^']*)'\s*\)",
+                r"RAISE NOTICE '\1'",
+                translated_content, flags=re.IGNORECASE
+            )
+            translated_content = re.sub(
+                r"\bDBMS_OUTPUT\.PUT_LINE\s*\(\s*([^)]+)\s*\)",
+                r"RAISE NOTICE '%', \1",
+                translated_content, flags=re.IGNORECASE
+            )
+            # sequence.NEXTVAL -> nextval('sequence')
+            translated_content = re.sub(
+                r'\b(\w+)\.NEXTVAL\b',
+                r"nextval('\1')",
+                translated_content, flags=re.IGNORECASE
+            )
+            # sequence.CURRVAL -> currval('sequence')
+            translated_content = re.sub(
+                r'\b(\w+)\.CURRVAL\b',
+                r"currval('\1')",
+                translated_content, flags=re.IGNORECASE
+            )
+            # Detect untranslatable constructs
+            if re.search(r'\bCONNECT\s+BY\b', translated_content, re.IGNORECASE):
+                untranslatable.append(
+                    f"{sql_file.name}: CONNECT BY (hierarchical query) -> use WITH RECURSIVE CTE"
+                )
+                translated_content = re.sub(
+                    r'\bCONNECT\s+BY\b',
+                    '-- TODO: CONNECT BY requires manual rewrite to WITH RECURSIVE CTE\n-- CONNECT BY',
+                    translated_content, flags=re.IGNORECASE
+                )
+            if re.search(r'\bCREATE\s+(OR\s+REPLACE\s+)?PACKAGE\b', translated_content, re.IGNORECASE):
+                untranslatable.append(
+                    f"{sql_file.name}: PACKAGE -> split into schema + individual functions"
+                )
+                translated_content = re.sub(
+                    r'\bCREATE\s+(OR\s+REPLACE\s+)?PACKAGE\b',
+                    '-- TODO: PACKAGEs have no PostgreSQL equivalent; split into schema + functions\n-- CREATE PACKAGE',
+                    translated_content, flags=re.IGNORECASE
+                )
+            if re.search(r'\bPRAGMA\b', translated_content, re.IGNORECASE):
+                untranslatable.append(
+                    f"{sql_file.name}: PRAGMA directives have no PostgreSQL equivalent"
+                )
+        # Apply MSSQL T-SQL -> PL/pgSQL conversions
+        if src_key == "mssql":
+            # Remove SET NOCOUNT ON
+            translated_content = re.sub(
+                r'\bSET\s+NOCOUNT\s+ON\s*;?',
+                '-- SET NOCOUNT ON removed (not needed in PostgreSQL)',
+                translated_content, flags=re.IGNORECASE
+            )
+            # GO -> ; (statement separator)
+            translated_content = re.sub(
+                r'^\s*GO\s*$',
+                ';',
+                translated_content, flags=re.MULTILINE | re.IGNORECASE
+            )
+            # DECLARE @var TYPE = value -> DECLARE var TYPE := value
+            translated_content = re.sub(
+                r'\bDECLARE\s+@(\w+)\s+(\w+(?:\([^)]*\))?)\s*=\s*',
+                r'DECLARE \1 \2 := ',
+                translated_content, flags=re.IGNORECASE
+            )
+            # DECLARE @var TYPE (without initial value)
+            translated_content = re.sub(
+                r'\bDECLARE\s+@(\w+)\s+',
+                r'DECLARE \1 ',
+                translated_content, flags=re.IGNORECASE
+            )
+            # @variable -> variable (remove @ prefix)
+            translated_content = re.sub(
+                r'@(\w+)',
+                r'\1',
+                translated_content
+            )
+            # PRINT 'message' -> RAISE NOTICE 'message'
+            translated_content = re.sub(
+                r'\bPRINT\s+',
+                'RAISE NOTICE ',
+                translated_content, flags=re.IGNORECASE
+            )
+            # TOP N -> needs rewrite to LIMIT
+            top_matches = re.findall(r'\bSELECT\s+TOP\s+(\d+)\b', translated_content, re.IGNORECASE)
+            if top_matches:
+                for n in top_matches:
+                    translated_content = re.sub(
+                        r'\bSELECT\s+TOP\s+' + n + r'\b',
+                        f'SELECT /* TODO: add LIMIT {n} at end of query */',
+                        translated_content, flags=re.IGNORECASE, count=1
+                    )
+                untranslatable.append(
+                    f"{sql_file.name}: SELECT TOP N -> requires LIMIT at end of query (manual placement)"
+                )
+            # Detect untranslatable constructs
+            if re.search(r'\bEXEC(?:UTE)?\s+sp_', translated_content, re.IGNORECASE):
+                untranslatable.append(
+                    f"{sql_file.name}: System stored procedures (sp_*) need PostgreSQL equivalents"
+                )
+            if re.search(r'\bOPENJSON\b', translated_content, re.IGNORECASE):
+                untranslatable.append(
+                    f"{sql_file.name}: OPENJSON -> use json_to_recordset or json_array_elements"
+                )
+        # Apply generic function translations
+        translated_content = translate_functions(app_id, target_db, translated_content)
+        translated_blocks.append(translated_content)
+        translated_blocks.append("")
+    translated_blocks.append(SQL_CUI_FOOTER)
+    out_path = Path(output_dir)
+    out_path.mkdir(parents=True, exist_ok=True)
+    file_path = out_path / "stored_procedures.sql"
+    file_path.write_text("\n".join(translated_blocks), encoding="utf-8")
+    print(f"Stored procedure translation written to {file_path}")
+    if untranslatable:
+        print(f"  {len(untranslatable)} construct(s) need manual review:")
+        for item in untranslatable:
+            print(f"    - {item}")
+    return (str(file_path), untranslatable)
+# ---------------------------------------------------------------------------
+# Migration validation queries
+# ---------------------------------------------------------------------------
+def generate_migration_validation(app_id: str, output_dir: str) -> str:
+    """Generate comprehensive validation queries for post-migration checks.
+    For each table produces:
+    - Row count comparison between source and target
+    - Checksum (hash of primary key columns) comparison
+    - NULL count comparison per nullable column
+    - MIN/MAX value checks for numeric and date columns
+    Returns the path to the generated SQL file.
+    """
+    conn = _get_db()
+    try:
+        rows = conn.execute(
+            """SELECT * FROM legacy_db_schemas
+               WHERE legacy_app_id = ?
+               ORDER BY schema_name, table_name, column_name""",
+            (app_id,)
+        ).fetchall()
+    finally:
+        conn.close()
+    if not rows:
+        print(f"WARNING: No schema data found for app_id={app_id}", file=sys.stderr)
+        return ""
+    # Group by table
+    tables = OrderedDict()
+    for row in rows:
+        key = (row["schema_name"] or "public", row["table_name"])
+        if key not in tables:
+            tables[key] = []
+        tables[key].append(dict(row))
+    lines = []
+    lines.append(SQL_CUI_HEADER)
+    lines.append("-- Migration Validation Queries")
+    lines.append(f"-- Application ID: {app_id}")
+    lines.append(f"-- Generated: {datetime.now().strftime('%Y-%m-%d %H:%M:%S')}")
+    lines.append("-- Run these queries against BOTH source and target databases")
+    lines.append("-- and compare results to verify migration correctness.")
+    lines.append(f"-- {'=' * 68}")
+    lines.append("")
+    for (schema, table), columns in tables.items():
+        qualified = f"{schema}.{table}" if schema and schema != "public" else table
+        lines.append(f"-- {'=' * 50}")
+        lines.append(f"-- Validation: {qualified}")
+        lines.append(f"-- {'=' * 50}")
+        lines.append("")
+        # 1. Row count comparison
+        lines.append("-- Row count")
+        lines.append(f"SELECT '{qualified}' AS table_name, COUNT(*) AS row_count FROM {qualified};")
+        lines.append("")
+        # 2. Checksum on primary key columns
+        pk_cols = [c for c in columns if c["is_primary_key"]]
+        if pk_cols:
+            ", ".join(c["column_name"] for c in pk_cols)
+            pk_concat = " || '|' || ".join(
+                f"COALESCE(CAST({c['column_name']} AS TEXT), 'NULL')" for c in pk_cols
+            )
+            lines.append("-- Primary key checksum")
+            lines.append(
+                f"SELECT '{qualified}' AS table_name, "
+                f"COUNT(DISTINCT ({pk_concat})) AS distinct_pk_count "
+                f"FROM {qualified};"
+            )
+            lines.append("")
+        # 3. NULL count comparison per nullable column
+        nullable_cols = [c for c in columns if c["is_nullable"]]
+        if nullable_cols:
+            lines.append("-- NULL counts per column")
+            null_selects = []
+            for col in nullable_cols:
+                null_selects.append(
+                    f"SUM(CASE WHEN {col['column_name']} IS NULL THEN 1 ELSE 0 END) "
+                    f"AS {col['column_name']}_nulls"
+                )
+            lines.append(
+                f"SELECT '{qualified}' AS table_name,\n"
+                f"    {(',{}'.format(chr(10)) + '    ').join(null_selects)}\n"
+                f"FROM {qualified};"
+            )
+            lines.append("")
+        # 4. MIN/MAX checks for numeric and date columns
+        numeric_types = {
+            "NUMBER", "NUMERIC", "DECIMAL", "INTEGER", "INT", "BIGINT",
+            "SMALLINT", "FLOAT", "REAL", "DOUBLE", "MONEY", "TINYINT",
+            "BINARY_FLOAT", "BINARY_DOUBLE",
+        }
+        date_types = {"DATE", "TIMESTAMP", "DATETIME", "TIMESTAMPTZ", "TIME"}
+        minmax_cols = []
+        for col in columns:
+            base = re.match(r'^([A-Za-z_]+)', col["data_type"].upper())
+            base_type = base.group(1) if base else col["data_type"].upper()
+            if base_type in numeric_types or base_type in date_types:
+                minmax_cols.append(col)
+        if minmax_cols:
+            lines.append("-- MIN/MAX value checks")
+            mm_selects = []
+            for col in minmax_cols:
+                mm_selects.append(f"MIN({col['column_name']}) AS {col['column_name']}_min")
+                mm_selects.append(f"MAX({col['column_name']}) AS {col['column_name']}_max")
+            lines.append(
+                f"SELECT '{qualified}' AS table_name,\n"
+                f"    {(',{}'.format(chr(10)) + '    ').join(mm_selects)}\n"
+                f"FROM {qualified};"
+            )
+            lines.append("")
+    lines.append(SQL_CUI_FOOTER)
+    out_path = Path(output_dir)
+    out_path.mkdir(parents=True, exist_ok=True)
+    file_path = out_path / "validation_queries.sql"
+    file_path.write_text("\n".join(lines), encoding="utf-8")
+    print(f"Validation queries written to {file_path}")
+    return str(file_path)
+# ---------------------------------------------------------------------------
+# Data volume estimation
+# ---------------------------------------------------------------------------
+def estimate_data_volume(app_id: str) -> dict:
+    """Estimate data volume based on schema column types.
+    For each table estimates a per-row byte size based on column types and
+    returns a summary dict. This is a schema-based estimate only — actual row
+    counts are not known at planning time.
+    Returns:
+        {
+            "app_id": str,
+            "tables": [
+                {"name": str, "schema": str, "estimated_row_bytes": int,
+                 "column_count": int}
+            ],
+            "total_estimated_bytes_per_row": int,
+            "table_count": int
+        }
+    """
+    conn = _get_db()
+    try:
+        rows = conn.execute(
+            """SELECT * FROM legacy_db_schemas
+               WHERE legacy_app_id = ?
+               ORDER BY schema_name, table_name, column_name""",
+            (app_id,)
+        ).fetchall()
+    finally:
+        conn.close()
+    if not rows:
+        return {
+            "app_id": app_id,
+            "tables": [],
+            "total_estimated_bytes_per_row": 0,
+            "table_count": 0,
+        }
+    # Group by table
+    tables_map = OrderedDict()
+    for row in rows:
+        key = (row["schema_name"] or "public", row["table_name"])
+        if key not in tables_map:
+            tables_map[key] = []
+        tables_map[key].append(dict(row))
+    table_estimates = []
+    total_bytes = 0
+    for (schema, table), columns in tables_map.items():
+        row_bytes = 0
+        for col in columns:
+            dtype_upper = col["data_type"].upper().strip()
+            # Extract base type
+            base_match = re.match(r'^([A-Za-z_][A-Za-z0-9_ ]*)', dtype_upper)
+            base_type = base_match.group(1).strip() if base_match else dtype_upper
+            # Check for parametric length — e.g. VARCHAR(255) -> use 255
+            param_match = re.match(r'.*\(\s*(\d+)', dtype_upper)
+            if param_match and base_type in ("VARCHAR", "VARCHAR2", "NVARCHAR",
+                                              "NVARCHAR2", "CHAR", "NCHAR"):
+                # Use declared length as average estimate (halved for VARCHAR)
+                declared = int(param_match.group(1))
+                row_bytes += max(declared // 2, 10)
+            elif base_type in TYPE_SIZE_ESTIMATES:
+                row_bytes += TYPE_SIZE_ESTIMATES[base_type]
+            else:
+                # Unknown type — assume 50 bytes
+                row_bytes += 50
+        # Add row overhead (tuple header, alignment)
+        row_bytes += 24
+        table_estimates.append({
+            "name": table,
+            "schema": schema,
+            "estimated_row_bytes": row_bytes,
+            "column_count": len(columns),
+        })
+        total_bytes += row_bytes
+    return {
+        "app_id": app_id,
+        "tables": table_estimates,
+        "total_estimated_bytes_per_row": total_bytes,
+        "table_count": len(table_estimates),
+    }
+# ---------------------------------------------------------------------------
+# Full migration orchestration
+# ---------------------------------------------------------------------------
+def generate_full_migration(app_id: str, target_db: str,
+                            source_path: str, output_dir: str) -> dict:
+    """Orchestrate all migration artifact generation.
+    Creates an output subdirectory and calls each generation function:
+    - generate_schema_ddl
+    - generate_data_migration_scripts
+    - translate_stored_procedures (if source_path has .sql files)
+    - generate_migration_validation
+    - estimate_data_volume
+    - Generates a migration_index.md linking all files
+    Returns a summary dict.
+    """
+    migration_dir = Path(output_dir) / "db_migration"
+    migration_dir.mkdir(parents=True, exist_ok=True)
+    summary = {
+        "app_id": app_id,
+        "target_db": target_db,
+        "output_dir": str(migration_dir),
+        "generated_at": datetime.now().strftime("%Y-%m-%d %H:%M:%S"),
+        "artifacts": {},
+        "untranslatable_constructs": [],
+    }
+    # Schema DDL
+    ddl_path = generate_schema_ddl(app_id, target_db, str(migration_dir))
+    if ddl_path:
+        summary["artifacts"]["schema_ddl"] = ddl_path
+    # Data migration
+    data_path = generate_data_migration_scripts(app_id, target_db, str(migration_dir))
+    if data_path:
+        summary["artifacts"]["data_migration"] = data_path
+    # Stored procedures
+    proc_path = ""
+    untranslatable = []
+    if source_path:
+        src = Path(source_path)
+        has_sql = False
+        if src.is_file() and src.suffix.lower() == ".sql":
+            has_sql = True
+        elif src.is_dir():
+            for _root, _dirs, files in os.walk(str(src)):
+                if any(f.lower().endswith(".sql") for f in files):
+                    has_sql = True
+                    break
+        if has_sql:
+            proc_path, untranslatable = translate_stored_procedures(
+                app_id, target_db, source_path, str(migration_dir)
+            )
+    if proc_path:
+        summary["artifacts"]["stored_procedures"] = proc_path
+    if untranslatable:
+        summary["untranslatable_constructs"] = untranslatable
+    # Validation
+    val_path = generate_migration_validation(app_id, str(migration_dir))
+    if val_path:
+        summary["artifacts"]["validation_queries"] = val_path
+    # Volume estimation
+    volume = estimate_data_volume(app_id)
+    summary["volume_estimate"] = volume
+    # Generate index document
+    index_path = _generate_migration_index(summary, str(migration_dir))
+    summary["artifacts"]["migration_index"] = index_path
+    return summary
+def _generate_migration_index(summary: dict, output_dir: str) -> str:
+    """Generate a Markdown index document linking all migration artifacts."""
+    lines = []
+    lines.append(MD_CUI_HEADER)
+    lines.append("")
+    lines.append("# Database Migration Plan")
+    lines.append("")
+    lines.append(f"**Application ID:** {summary['app_id']}")
+    lines.append(f"**Target Database:** {summary['target_db']}")
+    lines.append(f"**Generated:** {summary['generated_at']}")
+    lines.append("")
+    lines.append("## Generated Artifacts")
+    lines.append("")
+    lines.append("| Artifact | File | Description |")
+    lines.append("|----------|------|-------------|")
+    artifact_desc = {
+        "schema_ddl": "CREATE TABLE DDL statements for target database",
+        "data_migration": "INSERT/SELECT migration SQL with type casts and function translations",
+        "stored_procedures": "Translated stored procedures and functions",
+        "validation_queries": "Post-migration validation queries (row counts, checksums, MIN/MAX)",
+        "migration_index": "This index document",
+    }
+    for key, path in summary.get("artifacts", {}).items():
+        if key == "migration_index":
+            continue
+        desc = artifact_desc.get(key, key)
+        filename = Path(path).name
+        lines.append(f"| {key} | `{filename}` | {desc} |")
+    lines.append("")
+    # Volume estimates
+    volume = summary.get("volume_estimate", {})
+    if volume and volume.get("tables"):
+        lines.append("## Data Volume Estimates (per row)")
+        lines.append("")
+        lines.append("| Table | Schema | Columns | Est. Row Size (bytes) |")
+        lines.append("|-------|--------|---------|----------------------|")
+        for t in volume["tables"]:
+            lines.append(
+                f"| {t['name']} | {t['schema']} | {t['column_count']} | "
+                f"{t['estimated_row_bytes']:,} |"
+            )
+        lines.append("")
+        lines.append(
+            f"**Total tables:** {volume['table_count']}  "
+        )
+        lines.append(
+            f"**Combined est. row bytes:** {volume['total_estimated_bytes_per_row']:,}"
+        )
+        lines.append("")
+    # Untranslatable constructs
+    constructs = summary.get("untranslatable_constructs", [])
+    if constructs:
+        lines.append("## Items Requiring Manual Review")
+        lines.append("")
+        for item in constructs:
+            lines.append(f"- {item}")
+        lines.append("")
+    lines.append("## DBA Review Checklist")
+    lines.append("")
+    lines.append("- [ ] Review schema_ddl.sql for correct data type mappings")
+    lines.append("- [ ] Verify PRIMARY KEY and FOREIGN KEY constraints")
+    lines.append("- [ ] Review data_migration.sql for correct type casts")
+    lines.append("- [ ] Check stored_procedures.sql for TODO comments")
+    lines.append("- [ ] Run validation_queries.sql after migration")
+    lines.append("- [ ] Verify row counts match between source and target")
+    lines.append("- [ ] Test application functionality against migrated database")
+    lines.append("- [ ] Verify CUI markings on all generated artifacts")
+    lines.append("")
+    lines.append(MD_CUI_FOOTER)
+    out_path = Path(output_dir)
+    file_path = out_path / "migration_index.md"
+    file_path.write_text("\n".join(lines), encoding="utf-8")
+    print(f"Migration index written to {file_path}")
+    return str(file_path)
+# ---------------------------------------------------------------------------
+# CLI
+# ---------------------------------------------------------------------------
+def main():
+    """CLI entry point for database migration planning."""
+    parser = argparse.ArgumentParser(
+        description="Database Migration Planner — generate DDL, data migration SQL, "
+                    "stored procedure translations, and validation queries for "
+                    "legacy database modernization.",
+        formatter_class=argparse.RawDescriptionHelpFormatter,
+        epilog=textwrap.dedent("""\
+            Examples:
+              # Generate all migration artifacts
+              python tools/modernization/db_migration_planner.py \\
+                  --app-id APP-001 --output-dir .tmp/migration --type all
+              # Generate only schema DDL
+              python tools/modernization/db_migration_planner.py \\
+                  --app-id APP-001 --output-dir .tmp/migration --type schema
+              # Translate stored procedures
+              python tools/modernization/db_migration_planner.py \\
+                  --app-id APP-001 --output-dir .tmp/migration \\
+                  --type procedures --source-path /opt/legacy/sql
+              # JSON output for pipeline integration
+              python tools/modernization/db_migration_planner.py \\
+                  --app-id APP-001 --output-dir .tmp/migration --type all --json
+        """),
+    )
+    parser.add_argument(
+        "--app-id", required=True,
+        help="Legacy application ID from legacy_applications table"
+    )
+    parser.add_argument(
+        "--target", default="postgresql",
+        choices=["postgresql", "mysql", "aurora"],
+        help="Target database platform (default: postgresql)"
+    )
+    parser.add_argument(
+        "--source-path", default=None,
+        help="Path to directory containing stored procedure .sql files"
+    )
+    parser.add_argument(
+        "--output-dir", required=True,
+        help="Directory to write generated migration artifacts"
+    )
+    parser.add_argument(
+        "--type", default="all", dest="gen_type",
+        choices=["schema", "data", "procedures", "validation", "all"],
+        help="Type of artifacts to generate (default: all)"
+    )
+    parser.add_argument(
+        "--json", action="store_true", dest="json_output",
+        help="Output results as JSON to stdout"
+    )
+    args = parser.parse_args()
+    # Validate app exists
+    conn = _get_db()
+    try:
+        app = conn.execute(
+            "SELECT * FROM legacy_applications WHERE id = ?", (args.app_id,)
+        ).fetchone()
+        if not app:
+            print(f"ERROR: Application '{args.app_id}' not found in legacy_applications.",
+                  file=sys.stderr)
+            sys.exit(1)
+    finally:
+        conn.close()
+    # Map aurora -> postgresql for type mappings
+    target_db = "postgresql" if args.target == "aurora" else args.target
+    result = {}
+    if args.gen_type == "all":
+        result = generate_full_migration(
+            app_id=args.app_id,
+            target_db=target_db,
+            source_path=args.source_path or "",
+            output_dir=args.output_dir,
+        )
+    elif args.gen_type == "schema":
+        path = generate_schema_ddl(args.app_id, target_db, args.output_dir)
+        result = {"artifact": "schema_ddl", "path": path}
+    elif args.gen_type == "data":
+        path = generate_data_migration_scripts(args.app_id, target_db, args.output_dir)
+        result = {"artifact": "data_migration", "path": path}
+    elif args.gen_type == "procedures":
+        if not args.source_path:
+            print("ERROR: --source-path is required for --type procedures",
+                  file=sys.stderr)
+            sys.exit(1)
+        path, untranslatable = translate_stored_procedures(
+            args.app_id, target_db, args.source_path, args.output_dir
+        )
+        result = {
+            "artifact": "stored_procedures",
+            "path": path,
+            "untranslatable_constructs": untranslatable,
+        }
+    elif args.gen_type == "validation":
+        path = generate_migration_validation(args.app_id, args.output_dir)
+        result = {"artifact": "validation_queries", "path": path}
+    # Output
+    if args.json_output:
+        print(json.dumps(result, indent=2, default=str))
+    else:
+        if args.gen_type == "all":
+            print("\nMigration plan generated successfully.")
+            print(f"  Application: {args.app_id}")
+            print(f"  Target DB:   {target_db}")
+            print(f"  Output:      {result.get('output_dir', args.output_dir)}")
+            print(f"  Artifacts:   {len(result.get('artifacts', {}))}")
+            vol = result.get("volume_estimate", {})
+            if vol and vol.get("table_count"):
+                print(f"  Tables:      {vol['table_count']}")
+            constructs = result.get("untranslatable_constructs", [])
+            if constructs:
+                print(f"  Manual review items: {len(constructs)}")
+        else:
+            path = result.get("path", "")
+            if path:
+                print(f"\nArtifact generated: {path}")
+            else:
+                print("\nNo output generated — check warnings above.")
+if __name__ == "__main__":
+    main()
+# [TEMPLATE: CUI // SP-CTI]