iris-security-cli 0.1.3__tar.gz → 0.1.4__tar.gz
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/PKG-INFO +3 -3
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/assess.py +64 -17
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/evidence.py +8 -6
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/framework_suggest.py +99 -5
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/main.py +16 -2
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/mcp_server.py +1 -1
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_security_cli.egg-info/PKG-INFO +3 -3
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_security_cli.egg-info/requires.txt +2 -2
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/pyproject.toml +3 -3
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/tests/test_framework_suggest.py +1 -1
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/README.md +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/__init__.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/action_plan.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/cedar_parser.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/compiler_config.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/cost.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/dlp_cmd.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/drift.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/explain.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/framework_test.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/policy_cache.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/policy_diff.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/redteam.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/scan_govern.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/scan_report.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/scm.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/status_cmd.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/users.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_cli/watch.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_security_cli.egg-info/SOURCES.txt +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_security_cli.egg-info/dependency_links.txt +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_security_cli.egg-info/entry_points.txt +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_security_cli.egg-info/top_level.txt +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/setup.cfg +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/tests/test_evidence.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/tests/test_framework_test.py +0 -0
- {iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/tests/test_policy_diff.py +0 -0
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
Metadata-Version: 2.4
|
|
2
2
|
Name: iris-security-cli
|
|
3
|
-
Version: 0.1.
|
|
3
|
+
Version: 0.1.4
|
|
4
4
|
Summary: IRIS CLI — iris scan, iris register, iris policy, iris compliance
|
|
5
5
|
License: Apache-2.0
|
|
6
6
|
Project-URL: Homepage, https://github.com/gimartinb/iris-sdk
|
|
@@ -15,8 +15,8 @@ Classifier: Programming Language :: Python :: 3.11
|
|
|
15
15
|
Classifier: Programming Language :: Python :: 3.12
|
|
16
16
|
Requires-Python: >=3.10
|
|
17
17
|
Description-Content-Type: text/markdown
|
|
18
|
-
Requires-Dist: iris-security-core>=0.1.
|
|
19
|
-
Requires-Dist: iris-security-sdk>=0.1.
|
|
18
|
+
Requires-Dist: iris-security-core>=0.1.3
|
|
19
|
+
Requires-Dist: iris-security-sdk>=0.1.4
|
|
20
20
|
Requires-Dist: click>=8.1
|
|
21
21
|
Requires-Dist: rich>=13.0
|
|
22
22
|
Requires-Dist: pyyaml>=6.0
|
|
@@ -27,7 +27,7 @@ console = Console()
|
|
|
27
27
|
|
|
28
28
|
|
|
29
29
|
# ── Colorado AI Act impact assessment questionnaire ───────────────────────────
|
|
30
|
-
# Each question maps to a specific obligation under SB
|
|
30
|
+
# Each question maps to a specific obligation under SB 26-189.
|
|
31
31
|
# The answers drive the risk level and the generated assessment document.
|
|
32
32
|
|
|
33
33
|
QUESTIONNAIRE = [
|
|
@@ -44,7 +44,7 @@ QUESTIONNAIRE = [
|
|
|
44
44
|
"insurance",
|
|
45
45
|
"legal services",
|
|
46
46
|
"government",
|
|
47
|
-
"other (not
|
|
47
|
+
"other (not covered ADMT)",
|
|
48
48
|
],
|
|
49
49
|
"type": "choice",
|
|
50
50
|
"high_risk_values": [
|
|
@@ -58,6 +58,27 @@ QUESTIONNAIRE = [
|
|
|
58
58
|
"government",
|
|
59
59
|
],
|
|
60
60
|
},
|
|
61
|
+
{
|
|
62
|
+
"id": "impact_assessment",
|
|
63
|
+
"rule": "CO-002",
|
|
64
|
+
"severity": "MEDIUM",
|
|
65
|
+
"question": (
|
|
66
|
+
"Has an impact assessment been completed for this agent? "
|
|
67
|
+
"(Not legally required under SB 26-189 but recommended as "
|
|
68
|
+
"best practice for NIST AI RMF alignment)"
|
|
69
|
+
),
|
|
70
|
+
"type": "confirm",
|
|
71
|
+
},
|
|
72
|
+
{
|
|
73
|
+
"id": "record_retention",
|
|
74
|
+
"rule": "CO-RR-001",
|
|
75
|
+
"severity": "HIGH",
|
|
76
|
+
"question": (
|
|
77
|
+
"Do you have a plan for retaining AI usage records for 3 years? "
|
|
78
|
+
"(Required under SB 26-189 for covered ADMT systems)"
|
|
79
|
+
),
|
|
80
|
+
"type": "confirm",
|
|
81
|
+
},
|
|
61
82
|
{
|
|
62
83
|
"id": "consequential",
|
|
63
84
|
"rule": "CO-004",
|
|
@@ -137,7 +158,8 @@ def run_questionnaire() -> dict:
|
|
|
137
158
|
console.print("\n[bold]Colorado AI Act Impact Assessment[/bold]")
|
|
138
159
|
console.print(
|
|
139
160
|
"[dim]Answer each question honestly. IRIS uses your answers to generate "
|
|
140
|
-
"
|
|
161
|
+
"an impact assessment under SB 26-189 (replaces SB 24-205, effective "
|
|
162
|
+
"Jan. 1, 2027).[/dim]\n"
|
|
141
163
|
)
|
|
142
164
|
|
|
143
165
|
for i, q in enumerate(QUESTIONNAIRE, 1):
|
|
@@ -204,7 +226,28 @@ def calculate_risk_level(answers: dict) -> tuple:
|
|
|
204
226
|
if domain in high_risk_domains:
|
|
205
227
|
risk_score += 3
|
|
206
228
|
findings.append(
|
|
207
|
-
f"Agent operates in '{domain}' — a
|
|
229
|
+
f"Agent operates in '{domain}' — a covered ADMT domain under SB 26-189."
|
|
230
|
+
)
|
|
231
|
+
|
|
232
|
+
if not answers.get("impact_assessment"):
|
|
233
|
+
risk_score += 1
|
|
234
|
+
findings.append(
|
|
235
|
+
"No impact assessment on file (best practice under SB 26-189, "
|
|
236
|
+
"not legally required)."
|
|
237
|
+
)
|
|
238
|
+
recommendations.append(
|
|
239
|
+
"Complete an impact assessment via iris compliance assess to align "
|
|
240
|
+
"with NIST AI RMF MAP-1.5."
|
|
241
|
+
)
|
|
242
|
+
|
|
243
|
+
if not answers.get("record_retention"):
|
|
244
|
+
risk_score += 2
|
|
245
|
+
findings.append(
|
|
246
|
+
"No 3-year record retention plan documented for ADMT usage records."
|
|
247
|
+
)
|
|
248
|
+
recommendations.append(
|
|
249
|
+
"Configure Evidence Vault Pro for 3-year retention (CO-RR-001). "
|
|
250
|
+
"Run: iris license activate <your-key>"
|
|
208
251
|
)
|
|
209
252
|
|
|
210
253
|
if answers.get("consequential"):
|
|
@@ -297,7 +340,8 @@ def generate_assessment_markdown(
|
|
|
297
340
|
> **Assessment ID**: `{assessment_id}`
|
|
298
341
|
> **Assessed by**: {assessed_by}
|
|
299
342
|
> **Date**: {now}
|
|
300
|
-
> **Framework**: Colorado AI Act (SB
|
|
343
|
+
> **Framework**: Colorado AI Act (SB 26-189), effective January 1, 2027
|
|
344
|
+
> **Note**: Replaces SB 24-205, signed May 14, 2026
|
|
301
345
|
> **Generated by**: IRIS Compliance Platform v0.1.0
|
|
302
346
|
|
|
303
347
|
---
|
|
@@ -316,6 +360,8 @@ def generate_assessment_markdown(
|
|
|
316
360
|
| Owner | {owner} |
|
|
317
361
|
| Operating domain | {answers.get('domain', 'not specified')} |
|
|
318
362
|
| Makes consequential decisions | {'Yes' if answers.get('consequential') else 'No'} |
|
|
363
|
+
| Impact assessment completed | {'Yes' if answers.get('impact_assessment') else 'No (best practice)'} |
|
|
364
|
+
| 3-year record retention plan | {'Yes' if answers.get('record_retention') else 'No'} |
|
|
319
365
|
| Human review available | {'Yes' if answers.get('human_review') else 'No'} |
|
|
320
366
|
| Consumer opt-out available | {'Yes' if answers.get('opt_out') else 'No'} |
|
|
321
367
|
| Discrimination review completed | {'Yes' if answers.get('discrimination_review') else 'No'} |
|
|
@@ -356,12 +402,12 @@ def generate_assessment_markdown(
|
|
|
356
402
|
|
|
357
403
|
| Rule | Obligation | Status |
|
|
358
404
|
|---|---|---|
|
|
359
|
-
| CO-001 |
|
|
360
|
-
| CO-002 | Impact assessment | ✅ Satisfied
|
|
361
|
-
| CO-003 |
|
|
362
|
-
| CO-004 |
|
|
363
|
-
| CO-
|
|
364
|
-
| CO-
|
|
405
|
+
| CO-001 | ADMT inventory | ✅ Satisfied — agent registered in IRIS |
|
|
406
|
+
| CO-002 | Impact assessment (best practice) | {'✅ Satisfied' if answers.get('impact_assessment') else '⚠️ Recommended'} |
|
|
407
|
+
| CO-003 | Consumer notice / transparency | ✅ Satisfied — policy-intent.md |
|
|
408
|
+
| CO-004 | Post-adverse-action notice | {'✅ Satisfied' if answers.get('opt_out') else '⚠️ Requires action'} |
|
|
409
|
+
| CO-RR-001 | 3-year record retention | {'✅ Satisfied' if answers.get('record_retention') else '⚠️ Requires action'} |
|
|
410
|
+
| CO-DEV-001 | Developer documentation | ✅ Satisfied — policy-intent.md + passport.yaml |
|
|
365
411
|
|
|
366
412
|
---
|
|
367
413
|
|
|
@@ -374,9 +420,10 @@ def generate_assessment_markdown(
|
|
|
374
420
|
|
|
375
421
|
---
|
|
376
422
|
|
|
377
|
-
*This document was generated by IRIS and constitutes
|
|
378
|
-
under Colorado AI Act SB
|
|
379
|
-
the agent's capabilities, data access, or
|
|
423
|
+
*This document was generated by IRIS and constitutes an impact assessment
|
|
424
|
+
under Colorado AI Act SB 26-189 (replaces SB 24-205, effective Jan. 1, 2027).
|
|
425
|
+
It should be reviewed whenever the agent's capabilities, data access, or
|
|
426
|
+
decision scope changes.*
|
|
380
427
|
"""
|
|
381
428
|
|
|
382
429
|
|
|
@@ -428,8 +475,8 @@ def compliance_assess(agent, assessor, governance_dir, yes, answers):
|
|
|
428
475
|
console.print(Panel(
|
|
429
476
|
f"[bold]IRIS Impact Assessment[/bold]\n"
|
|
430
477
|
f"Agent: [cyan]{agent}[/cyan]\n"
|
|
431
|
-
f"Framework: Colorado AI Act (SB
|
|
432
|
-
f"Effective:
|
|
478
|
+
f"Framework: Colorado AI Act (SB 26-189)\n"
|
|
479
|
+
f"Effective: January 1, 2027 (replaces SB 24-205)",
|
|
433
480
|
style="blue"
|
|
434
481
|
))
|
|
435
482
|
|
|
@@ -500,7 +547,7 @@ def compliance_assess(agent, assessor, governance_dir, yes, answers):
|
|
|
500
547
|
f"Files updated:\n"
|
|
501
548
|
f" [dim]{assessment_file}[/dim]\n"
|
|
502
549
|
f" [dim]{passport_file}[/dim]\n\n"
|
|
503
|
-
f"CO-002
|
|
550
|
+
f"CO-002 best practice: [bold green]{'SATISFIED' if questionnaire_answers.get('impact_assessment') else 'RECOMMENDED'}[/bold green]\n\n"
|
|
504
551
|
f"Next step: [bold]iris compliance check --framework colorado-ai-act[/bold]",
|
|
505
552
|
style="green"
|
|
506
553
|
))
|
|
@@ -57,23 +57,25 @@ def _compliance_status(passport: AgentPassport) -> List[dict]:
|
|
|
57
57
|
statuses: List[dict] = []
|
|
58
58
|
|
|
59
59
|
checks = {
|
|
60
|
-
"CO-001": passport.
|
|
60
|
+
"CO-001": bool(passport.agent_id) and bool(passport.owner),
|
|
61
61
|
"CO-002": bool(passport.evidence_vault_id),
|
|
62
62
|
"CO-003": bool(passport.intent_ref),
|
|
63
63
|
"CO-004": bool(passport.intent_ref),
|
|
64
|
-
"CO-
|
|
65
|
-
"CO-
|
|
64
|
+
"CO-RR-001": None,
|
|
65
|
+
"CO-DEV-001": bool(passport.intent_ref) and bool(passport.description),
|
|
66
66
|
}
|
|
67
67
|
|
|
68
68
|
for rule in rules:
|
|
69
69
|
rule_id = rule["rule_id"]
|
|
70
|
-
if rule.get("
|
|
70
|
+
if rule.get("status") == "BEST_PRACTICE":
|
|
71
|
+
passed = checks.get(rule_id)
|
|
72
|
+
status = "PASS" if passed else "RECOMMENDED"
|
|
71
73
|
statuses.append(
|
|
72
74
|
{
|
|
73
75
|
"rule_id": rule_id,
|
|
74
76
|
"name": rule["name"],
|
|
75
|
-
"status":
|
|
76
|
-
"detail": "
|
|
77
|
+
"status": status,
|
|
78
|
+
"detail": "Best practice (not legally required under SB 26-189)",
|
|
77
79
|
}
|
|
78
80
|
)
|
|
79
81
|
continue
|
|
@@ -17,7 +17,32 @@ from rich.table import Table
|
|
|
17
17
|
console = Console()
|
|
18
18
|
|
|
19
19
|
MAJOR_CLOUDS = {"Google Cloud (GCP)", "AWS", "Microsoft Azure", "Multiple clouds"}
|
|
20
|
-
FREE_FRAMEWORKS = {
|
|
20
|
+
FREE_FRAMEWORKS = {
|
|
21
|
+
"colorado-ai-act",
|
|
22
|
+
"colorado-chatbot",
|
|
23
|
+
"colorado-health-ai",
|
|
24
|
+
"colorado-mental-health-ai",
|
|
25
|
+
}
|
|
26
|
+
|
|
27
|
+
COLORADO_AI_ACT_NOTE = (
|
|
28
|
+
"Note: Colorado SB 26-189 replaced the original Colorado AI Act on May 14, 2026. "
|
|
29
|
+
"Key changes: impact assessments are no longer legally required (retained as best "
|
|
30
|
+
"practice). Record retention for 3 years is now required. Effective January 1, 2027."
|
|
31
|
+
)
|
|
32
|
+
|
|
33
|
+
MENTAL_HEALTH_KEYWORDS = (
|
|
34
|
+
"therapy",
|
|
35
|
+
"counseling",
|
|
36
|
+
"mental health",
|
|
37
|
+
"psychotherapy",
|
|
38
|
+
"clinician",
|
|
39
|
+
)
|
|
40
|
+
|
|
41
|
+
CONVERSATIONAL_KEYWORDS = (
|
|
42
|
+
"conversational ai",
|
|
43
|
+
"chatbot",
|
|
44
|
+
"chat bot",
|
|
45
|
+
)
|
|
21
46
|
|
|
22
47
|
Q1_CHOICES = [
|
|
23
48
|
"Makes decisions that affect individual people (hiring, loans, medical, etc.)",
|
|
@@ -119,6 +144,10 @@ def _prefill_answers(passport: dict[str, Any] | None) -> dict[str, Any]:
|
|
|
119
144
|
prefill["q6"] = True
|
|
120
145
|
prefill["q2"] = Q2_CHOICES[0]
|
|
121
146
|
|
|
147
|
+
description = str(spec.get("description", "")).strip()
|
|
148
|
+
if description:
|
|
149
|
+
prefill["agent_description"] = description
|
|
150
|
+
|
|
122
151
|
return prefill
|
|
123
152
|
|
|
124
153
|
|
|
@@ -205,11 +234,30 @@ def build_recommendations(answers: dict[str, Any]) -> list[Recommendation]:
|
|
|
205
234
|
q6 = bool(answers.get("q6"))
|
|
206
235
|
q7 = set(answers.get("q7", []))
|
|
207
236
|
q8 = set(answers.get("q8", []))
|
|
237
|
+
agent_description = str(answers.get("agent_description", "")).lower()
|
|
208
238
|
|
|
209
239
|
colorado = (
|
|
210
240
|
(q5 and "Colorado" in q8)
|
|
211
241
|
or (q1 == Q1_CHOICES[0] and "Colorado" in q8)
|
|
212
242
|
)
|
|
243
|
+
conversational = (
|
|
244
|
+
any(kw in q1.lower() for kw in CONVERSATIONAL_KEYWORDS)
|
|
245
|
+
or any(kw in agent_description for kw in CONVERSATIONAL_KEYWORDS)
|
|
246
|
+
or q1 == Q1_CHOICES[3]
|
|
247
|
+
)
|
|
248
|
+
consumer_facing = q2 in {Q2_CHOICES[4], Q2_CHOICES[2]} or "minor" in agent_description
|
|
249
|
+
chatbot = conversational and consumer_facing and "Colorado" in q8
|
|
250
|
+
|
|
251
|
+
health_data = q4 == Q4_CHOICES[0] or "health" in str(q4).lower() or "medical" in str(q4).lower()
|
|
252
|
+
health_insurance = (
|
|
253
|
+
"HIPAA (healthcare)" in q7
|
|
254
|
+
or q2 == Q2_CHOICES[3]
|
|
255
|
+
or "health insurance" in agent_description
|
|
256
|
+
)
|
|
257
|
+
health_ai = (health_data or health_insurance) and "Colorado" in q8
|
|
258
|
+
|
|
259
|
+
mental_health = any(kw in agent_description for kw in MENTAL_HEALTH_KEYWORDS)
|
|
260
|
+
|
|
213
261
|
nist = q6 or "FedRAMP (federal government contracts)" in q7 or q2 == Q2_CHOICES[0]
|
|
214
262
|
fedramp = (
|
|
215
263
|
(q6 or "FedRAMP (federal government contracts)" in q7 or q2 in {Q2_CHOICES[0], Q2_CHOICES[1]})
|
|
@@ -219,17 +267,61 @@ def build_recommendations(answers: dict[str, Any]) -> list[Recommendation]:
|
|
|
219
267
|
soc2 = q2 == Q2_CHOICES[5] or "SOC 2 (SaaS / enterprise)" in q7
|
|
220
268
|
gdpr = "Outside the US" in q8 or "Other / multiple states" in q8
|
|
221
269
|
|
|
270
|
+
colorado_reason = (
|
|
271
|
+
"Your agent makes consequential decisions for Colorado users. "
|
|
272
|
+
"SB 26-189 applies (replaces SB 24-205, effective Jan. 1, 2027). "
|
|
273
|
+
f"{COLORADO_AI_ACT_NOTE}"
|
|
274
|
+
if colorado
|
|
275
|
+
else "No Colorado consequential decision scope detected."
|
|
276
|
+
)
|
|
277
|
+
|
|
222
278
|
recommendations = [
|
|
223
279
|
Recommendation(
|
|
224
280
|
framework="colorado-ai-act",
|
|
225
281
|
tier="FREE",
|
|
226
282
|
status="REQUIRED" if colorado else "NOT APPLICABLE",
|
|
283
|
+
reason=colorado_reason,
|
|
284
|
+
command="iris compliance check --framework colorado-ai-act" if colorado else None,
|
|
285
|
+
),
|
|
286
|
+
Recommendation(
|
|
287
|
+
framework="colorado-chatbot",
|
|
288
|
+
tier="FREE",
|
|
289
|
+
status="REQUIRED" if chatbot else "NOT APPLICABLE",
|
|
227
290
|
reason=(
|
|
228
|
-
"
|
|
229
|
-
|
|
230
|
-
|
|
291
|
+
"Conversational AI serving Colorado consumers requires HB 26-1263 "
|
|
292
|
+
"chatbot safety controls (effective Jan. 1, 2027)."
|
|
293
|
+
if chatbot
|
|
294
|
+
else "No conversational AI + consumer audience trigger detected."
|
|
295
|
+
),
|
|
296
|
+
command="iris compliance check --framework colorado-chatbot" if chatbot else None,
|
|
297
|
+
),
|
|
298
|
+
Recommendation(
|
|
299
|
+
framework="colorado-health-ai",
|
|
300
|
+
tier="FREE",
|
|
301
|
+
status="REQUIRED" if health_ai else "NOT APPLICABLE",
|
|
302
|
+
reason=(
|
|
303
|
+
"Health or insurance data handling in Colorado requires HB 26-1139 "
|
|
304
|
+
"AI in health insurance controls (effective Jan. 1, 2027)."
|
|
305
|
+
if health_ai
|
|
306
|
+
else "No Colorado health insurance AI trigger detected."
|
|
307
|
+
),
|
|
308
|
+
command="iris compliance check --framework colorado-health-ai" if health_ai else None,
|
|
309
|
+
),
|
|
310
|
+
Recommendation(
|
|
311
|
+
framework="colorado-mental-health-ai",
|
|
312
|
+
tier="FREE",
|
|
313
|
+
status="REQUIRED" if mental_health else "NOT APPLICABLE",
|
|
314
|
+
reason=(
|
|
315
|
+
"Mental health services agent detected. HB 26-1195 applies "
|
|
316
|
+
"(effective Aug. 12, 2026 — two months from now)."
|
|
317
|
+
if mental_health
|
|
318
|
+
else "No mental health services scope detected."
|
|
319
|
+
),
|
|
320
|
+
command=(
|
|
321
|
+
"iris compliance check --framework colorado-mental-health-ai"
|
|
322
|
+
if mental_health
|
|
323
|
+
else None
|
|
231
324
|
),
|
|
232
|
-
command="iris compliance check --framework colorado-ai-act" if colorado else None,
|
|
233
325
|
),
|
|
234
326
|
Recommendation(
|
|
235
327
|
framework="nist-ai-rmf",
|
|
@@ -396,6 +488,8 @@ def framework_suggest(agent: str | None, output_format: str) -> None:
|
|
|
396
488
|
|
|
397
489
|
prefill = _prefill_answers(passport)
|
|
398
490
|
answers = run_questionnaire(prefill)
|
|
491
|
+
if prefill.get("agent_description"):
|
|
492
|
+
answers["agent_description"] = prefill["agent_description"]
|
|
399
493
|
recommendations = build_recommendations(answers)
|
|
400
494
|
save_path = _save_recommendations(agent, answers, recommendations)
|
|
401
495
|
|
|
@@ -25,7 +25,7 @@ console = Console()
|
|
|
25
25
|
|
|
26
26
|
|
|
27
27
|
@click.group()
|
|
28
|
-
@click.version_option(version="0.1.
|
|
28
|
+
@click.version_option(version="0.1.4", prog_name="iris")
|
|
29
29
|
def cli():
|
|
30
30
|
"""
|
|
31
31
|
IRIS — AI Agent Governance Platform
|
|
@@ -35,7 +35,9 @@ def cli():
|
|
|
35
35
|
|
|
36
36
|
Docs: https://docs.iris.ai
|
|
37
37
|
"""
|
|
38
|
-
|
|
38
|
+
from iris._telemetry import maybe_fire_first_run
|
|
39
|
+
|
|
40
|
+
maybe_fire_first_run()
|
|
39
41
|
|
|
40
42
|
|
|
41
43
|
# ── iris scan ─────────────────────────────────────────────────────────────────
|
|
@@ -559,6 +561,18 @@ from iris_cli.cost import cost
|
|
|
559
561
|
cli.add_command(cost)
|
|
560
562
|
|
|
561
563
|
|
|
564
|
+
@cli.command("ping", hidden=True)
|
|
565
|
+
def ping():
|
|
566
|
+
"""Internal telemetry verification (hidden)."""
|
|
567
|
+
from iris._telemetry import send_ping, telemetry_enabled
|
|
568
|
+
|
|
569
|
+
if not telemetry_enabled():
|
|
570
|
+
return
|
|
571
|
+
|
|
572
|
+
send_ping()
|
|
573
|
+
click.echo("Telemetry ping sent. Opt-out status: enabled")
|
|
574
|
+
|
|
575
|
+
|
|
562
576
|
@compliance.command("check")
|
|
563
577
|
@click.option("--agent", default=None, help="Specific agent to check (or all)")
|
|
564
578
|
@click.option("--framework", "-f", default="colorado-ai-act")
|
|
@@ -335,7 +335,7 @@ def handle_suggest_policy(params: dict) -> dict:
|
|
|
335
335
|
- Call any API not listed above
|
|
336
336
|
|
|
337
337
|
## Compliance notes
|
|
338
|
-
This agent operates under the Colorado AI Act (SB
|
|
338
|
+
This agent operates under the Colorado AI Act (SB 26-189, effective Jan. 1, 2027).
|
|
339
339
|
User consent must be logged before any consequential decision.
|
|
340
340
|
"""
|
|
341
341
|
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
Metadata-Version: 2.4
|
|
2
2
|
Name: iris-security-cli
|
|
3
|
-
Version: 0.1.
|
|
3
|
+
Version: 0.1.4
|
|
4
4
|
Summary: IRIS CLI — iris scan, iris register, iris policy, iris compliance
|
|
5
5
|
License: Apache-2.0
|
|
6
6
|
Project-URL: Homepage, https://github.com/gimartinb/iris-sdk
|
|
@@ -15,8 +15,8 @@ Classifier: Programming Language :: Python :: 3.11
|
|
|
15
15
|
Classifier: Programming Language :: Python :: 3.12
|
|
16
16
|
Requires-Python: >=3.10
|
|
17
17
|
Description-Content-Type: text/markdown
|
|
18
|
-
Requires-Dist: iris-security-core>=0.1.
|
|
19
|
-
Requires-Dist: iris-security-sdk>=0.1.
|
|
18
|
+
Requires-Dist: iris-security-core>=0.1.3
|
|
19
|
+
Requires-Dist: iris-security-sdk>=0.1.4
|
|
20
20
|
Requires-Dist: click>=8.1
|
|
21
21
|
Requires-Dist: rich>=13.0
|
|
22
22
|
Requires-Dist: pyyaml>=6.0
|
|
@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
|
|
|
4
4
|
|
|
5
5
|
[project]
|
|
6
6
|
name = "iris-security-cli"
|
|
7
|
-
version = "0.1.
|
|
7
|
+
version = "0.1.4"
|
|
8
8
|
description = "IRIS CLI — iris scan, iris register, iris policy, iris compliance"
|
|
9
9
|
readme = "README.md"
|
|
10
10
|
license = { text = "Apache-2.0" }
|
|
@@ -20,8 +20,8 @@ classifiers = [
|
|
|
20
20
|
"Programming Language :: Python :: 3.12",
|
|
21
21
|
]
|
|
22
22
|
dependencies = [
|
|
23
|
-
"iris-security-core>=0.1.
|
|
24
|
-
"iris-security-sdk>=0.1.
|
|
23
|
+
"iris-security-core>=0.1.3",
|
|
24
|
+
"iris-security-sdk>=0.1.4",
|
|
25
25
|
"click>=8.1",
|
|
26
26
|
"rich>=13.0",
|
|
27
27
|
"pyyaml>=6.0",
|
|
@@ -41,7 +41,7 @@ def test_colorado_consequential_gets_colorado_act(tmp_path):
|
|
|
41
41
|
)
|
|
42
42
|
assert result.exit_code == 0, result.output
|
|
43
43
|
assert "colorado-ai-act" in result.output
|
|
44
|
-
assert "SB
|
|
44
|
+
assert "SB 26-189" in result.output
|
|
45
45
|
|
|
46
46
|
|
|
47
47
|
def test_hipaa_trigger_on_health_data(tmp_path):
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
{iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_security_cli.egg-info/dependency_links.txt
RENAMED
|
File without changes
|
{iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_security_cli.egg-info/entry_points.txt
RENAMED
|
File without changes
|
{iris_security_cli-0.1.3 → iris_security_cli-0.1.4}/iris_security_cli.egg-info/top_level.txt
RENAMED
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|