onetrust-api 0.1.0__tar.gz

onetrust_api-0.1.0/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Audel Rouhi
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

onetrust_api-0.1.0/MANIFEST.in

@@ -0,0 +1,4 @@
+include LICENSE
+include README.md
+include requirements.txt
+recursive-include onetrust_api *.md *.json *.yaml *.yml *.py

onetrust_api-0.1.0/PKG-INFO

@@ -0,0 +1,227 @@
+Metadata-Version: 2.4
+Name: onetrust-api
+Version: 0.1.0
+Summary: OneTrust API + MCP Server + A2A Agent — 100% API coverage
+Author-email: Audel Rouhi <knucklessg1@gmail.com>
+License: MIT
+Classifier: Development Status :: 4 - Beta
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Environment :: Console
+Classifier: Operating System :: POSIX :: Linux
+Classifier: Programming Language :: Python :: 3
+Requires-Python: <3.15,>=3.11
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: agent-utilities>=0.49.0
+Requires-Dist: python-dotenv>=1.0.0
+Requires-Dist: requests>=2.32.0
+Provides-Extra: mcp
+Requires-Dist: agent-utilities[mcp]>=0.49.0; extra == "mcp"
+Provides-Extra: agent
+Requires-Dist: agent-utilities[agent,logfire]>=0.49.0; extra == "agent"
+Provides-Extra: all
+Requires-Dist: onetrust-api[agent,mcp]>=0.1.0; extra == "all"
+Provides-Extra: test
+Requires-Dist: pytest-xdist>=3.6.0; extra == "test"
+Requires-Dist: pytest; extra == "test"
+Requires-Dist: pytest-asyncio; extra == "test"
+Requires-Dist: pytest-cov; extra == "test"
+Dynamic: license-file
+
+# OneTrust Api - A2A | AG-UI | MCP
+
+![PyPI - Version](https://img.shields.io/pypi/v/onetrust-api)
+![MCP Server](https://badge.mcpx.dev?type=server 'MCP Server')
+![PyPI - Downloads](https://img.shields.io/pypi/dd/onetrust-api)
+![GitHub Repo stars](https://img.shields.io/github/stars/Knuckles-Team/onetrust-api)
+![GitHub forks](https://img.shields.io/github/forks/Knuckles-Team/onetrust-api)
+![GitHub contributors](https://img.shields.io/github/contributors/Knuckles-Team/onetrust-api)
+![PyPI - License](https://img.shields.io/pypi/l/onetrust-api)
+![GitHub](https://img.shields.io/github/license/Knuckles-Team/onetrust-api)
+
+![GitHub last commit (by committer)](https://img.shields.io/github/last-commit/Knuckles-Team/onetrust-api)
+![GitHub pull requests](https://img.shields.io/github/issues-pr/Knuckles-Team/onetrust-api)
+![GitHub closed pull requests](https://img.shields.io/github/issues-pr-closed/Knuckles-Team/onetrust-api)
+![GitHub issues](https://img.shields.io/github/issues/Knuckles-Team/onetrust-api)
+
+![GitHub top language](https://img.shields.io/github/languages/top/Knuckles-Team/onetrust-api)
+![GitHub language count](https://img.shields.io/github/languages/count/Knuckles-Team/onetrust-api)
+![GitHub repo size](https://img.shields.io/github/repo-size/Knuckles-Team/onetrust-api)
+![GitHub repo file count (file type)](https://img.shields.io/github/directory-file-count/Knuckles-Team/onetrust-api)
+![PyPI - Wheel](https://img.shields.io/pypi/wheel/onetrust-api)
+![PyPI - Implementation](https://img.shields.io/pypi/implementation/onetrust-api)
+
+*Version: 0.1.0*
+
+## Overview
+
+**OneTrust Api** is a production-grade Python API client, Model Context Protocol
+(MCP) server, and A2A agent for the [OneTrust](https://www.onetrust.com/) privacy,
+consent, data-governance, and risk platform.
+
+It provides **100% coverage of the OneTrust public API** — every operation across
+all **35 OpenAPI specifications** (~600 operations, 7 product areas) is exposed as
+both a typed client method and an action-routed MCP tool. The client, MCP tools,
+and a machine-readable coverage manifest are all **generated from the vendored
+OpenAPI specs** (`onetrust_api/specs/*.json`) by `scripts/generate_from_openapi.py`,
+and a coverage test asserts the three sets stay in lock-step.
+
+### Key Features
+
+- **100% Action-Routed MCP Tools** — one consolidated tool per domain (e.g.
+  `onetrust_incidents`, `onetrust_dsar`, `onetrust_assessments`) takes an `action`
+  plus a `params_json` payload and routes to the underlying API method. 36 tools
+  cover every endpoint without flooding the IDE tool list.
+- **Full OneTrust surface** — AI Governance, Consent & Preference Management,
+  Data Use Governance, Privacy Automation (DSAR, Assessments, Data Mapping,
+  Incidents), Tech Risk & Compliance, Third-Party Management, ESG, and Platform.
+- **Flexible auth** — a pre-minted OAuth2 bearer token *or* the OAuth2
+  client-credentials flow (auto-exchanged and refreshed), plus OIDC delegation
+  (RFC 8693) via `agent-utilities`.
+- **Multi-region / multi-service aware** — regional tenant pods, the consent
+  privacy-portal host, and on-prem worker nodes are resolved per-operation.
+- **Resilient** — honours `429` `Retry-After`, retries transient `5xx`, and
+  handles both OneTrust pagination styles (offset and cursor).
+
+## MCP
+
+### Using as an MCP Server
+
+The MCP Server runs in `stdio` (local) or `streamable-http` (networked) mode.
+Each domain is a tool gated by a `{TAG}TOOL` environment variable (default `True`),
+so you can scope the surface (e.g. set `ESGTOOL=False` to drop ESG).
+
+#### Environment Variables
+
+| Variable | Description |
+| --- | --- |
+| `ONETRUST_URL` | Tenant host URL, e.g. `https://acme.my.onetrust.com` (overrides region). |
+| `ONETRUST_REGION` | Shared pod when no URL is set: `us`, `eu`, `de`, `uk`, `au`, `ca`, `fr`, `in`, `jp`, `trial`, `uat`, … (default `us`). |
+| `ONETRUST_TOKEN` | Pre-minted OAuth2 bearer token. |
+| `ONETRUST_CLIENT_ID` / `ONETRUST_CLIENT_SECRET` | OAuth2 client-credentials (exchanged at `/api/access/v1/oauth/token`). |
+| `ONETRUST_CONSENT_URL` | Optional host for consent-transaction APIs (privacy portal). |
+| `ONETRUST_WORKER_URL` | Optional on-prem Data Discovery worker-node host. |
+| `ONETRUST_SSL_VERIFY` | Verify TLS (default `True`). |
+| `<DOMAIN>TOOL` | Toggle a domain tool, e.g. `INCIDENTSTOOL`, `DSARTOOL`, `CONSENT_RECEIPTSTOOL` (default `True`). |
+
+#### Run in stdio mode (default):
+```bash
+export ONETRUST_URL="https://acme.my.onetrust.com"
+export ONETRUST_TOKEN="your_token"
+onetrust-mcp --transport "stdio"
+```
+
+#### Run in HTTP mode:
+```bash
+export ONETRUST_URL="https://acme.my.onetrust.com"
+export ONETRUST_TOKEN="your_token"
+onetrust-mcp --transport "streamable-http" --host "0.0.0.0" --port "8000"
+```
+
+### Tool Domains
+
+`access_management`, `ai_governance`, `assessments`, `audit_management`,
+`bulk_export`, `cmp`, `compliance_automation`, `consent_interfaces`,
+`consent_receipts`, `cookie_consent`, `cookie_consent_legacy`,
+`cookie_domain_data`, `cross_device_consent`, `data_catalog`, `data_discovery`,
+`data_discovery_worker`, `data_mapping`, `data_mapping_legacy`, `documents`,
+`dsar`, `esg`, `incidents`, `integrations`, `inventory`, `issues_management`,
+`it_risk_management`, `mobile_app_consent`, `object_manager`, `policy_management`,
+`privacy_notices`, `task_management`, `tprm`, `training`, `universal_consent`,
+`user_provisioning` — plus `custom_api` (a raw REST escape hatch).
+
+## A2A Agent
+
+### Run A2A Server
+```bash
+export ONETRUST_URL="https://acme.my.onetrust.com"
+export ONETRUST_TOKEN="your_token"
+onetrust-agent --provider openai --model-id gpt-4o --api-key sk-...
+```
+
+## Docker
+
+### Build
+
+```bash
+docker build -t onetrust-api .
+```
+
+### Run MCP Server
+
+```bash
+docker run -d \
+  --name onetrust-api \
+  -p 8000:8000 \
+  -e TRANSPORT=http \
+  -e ONETRUST_URL="http://your-service:8080" \
+  -e ONETRUST_TOKEN="your_token" \
+  knucklessg1/onetrust-api:latest
+```
+
+### Deploy with Docker Compose
+
+```yaml
+services:
+  onetrust-api:
+    image: knucklessg1/onetrust-api:latest
+    environment:
+      - HOST=0.0.0.0
+      - PORT=8000
+      - TRANSPORT=http
+      - ONETRUST_URL=http://your-service:8080
+      - ONETRUST_TOKEN=your_token
+    ports:
+      - 8000:8000
+```
+
+#### Configure `mcp.json` for AI Integration (e.g. Claude Desktop)
+
+```json
+{
+  "mcpServers": {
+    "onetrust": {
+      "command": "uv",
+      "args": [
+        "run",
+        "--with",
+        "onetrust-api",
+        "onetrust-mcp"
+      ],
+      "env": {
+        "ONETRUST_URL": "http://your-service:8080",
+        "ONETRUST_TOKEN": "your_token"
+      }
+    }
+  }
+}
+```
+
+## Install Python Package
+
+```bash
+python -m pip install onetrust-api
+```
+```bash
+uv pip install onetrust-api
+```
+
+## Documentation
+
+The complete documentation is published as the
+[official documentation site](https://knuckles-team.github.io/onetrust-api/) and is
+the source of truth for installation, usage, and deployment.
+
+| Page | Covers |
+| --- | --- |
+| [Overview](https://knuckles-team.github.io/onetrust-api/overview/) | the action-routed tool surface and architecture |
+| [Installation](https://knuckles-team.github.io/onetrust-api/installation/) | pip, source, extras, prebuilt Docker image |
+| [Usage (API / CLI / MCP)](https://knuckles-team.github.io/onetrust-api/usage/) | the MCP tools, the `Api` client, the CLI |
+| [Deployment](https://knuckles-team.github.io/onetrust-api/deployment/) | run the MCP and agent servers, Compose, env config |
+
+## Repository Owners
+
+<img width="100%" height="180em" src="https://github-readme-stats.vercel.app/api?username=Knucklessg1&show_icons=true&hide_border=true&&count_private=true&include_all_commits=true" />
+
+![GitHub followers](https://img.shields.io/github/followers/Knucklessg1)
+![GitHub User's stars](https://img.shields.io/github/stars/Knucklessg1)

onetrust_api-0.1.0/README.md

@@ -0,0 +1,197 @@
+# OneTrust Api - A2A | AG-UI | MCP
+
+![PyPI - Version](https://img.shields.io/pypi/v/onetrust-api)
+![MCP Server](https://badge.mcpx.dev?type=server 'MCP Server')
+![PyPI - Downloads](https://img.shields.io/pypi/dd/onetrust-api)
+![GitHub Repo stars](https://img.shields.io/github/stars/Knuckles-Team/onetrust-api)
+![GitHub forks](https://img.shields.io/github/forks/Knuckles-Team/onetrust-api)
+![GitHub contributors](https://img.shields.io/github/contributors/Knuckles-Team/onetrust-api)
+![PyPI - License](https://img.shields.io/pypi/l/onetrust-api)
+![GitHub](https://img.shields.io/github/license/Knuckles-Team/onetrust-api)
+
+![GitHub last commit (by committer)](https://img.shields.io/github/last-commit/Knuckles-Team/onetrust-api)
+![GitHub pull requests](https://img.shields.io/github/issues-pr/Knuckles-Team/onetrust-api)
+![GitHub closed pull requests](https://img.shields.io/github/issues-pr-closed/Knuckles-Team/onetrust-api)
+![GitHub issues](https://img.shields.io/github/issues/Knuckles-Team/onetrust-api)
+
+![GitHub top language](https://img.shields.io/github/languages/top/Knuckles-Team/onetrust-api)
+![GitHub language count](https://img.shields.io/github/languages/count/Knuckles-Team/onetrust-api)
+![GitHub repo size](https://img.shields.io/github/repo-size/Knuckles-Team/onetrust-api)
+![GitHub repo file count (file type)](https://img.shields.io/github/directory-file-count/Knuckles-Team/onetrust-api)
+![PyPI - Wheel](https://img.shields.io/pypi/wheel/onetrust-api)
+![PyPI - Implementation](https://img.shields.io/pypi/implementation/onetrust-api)
+
+*Version: 0.1.0*
+
+## Overview
+
+**OneTrust Api** is a production-grade Python API client, Model Context Protocol
+(MCP) server, and A2A agent for the [OneTrust](https://www.onetrust.com/) privacy,
+consent, data-governance, and risk platform.
+
+It provides **100% coverage of the OneTrust public API** — every operation across
+all **35 OpenAPI specifications** (~600 operations, 7 product areas) is exposed as
+both a typed client method and an action-routed MCP tool. The client, MCP tools,
+and a machine-readable coverage manifest are all **generated from the vendored
+OpenAPI specs** (`onetrust_api/specs/*.json`) by `scripts/generate_from_openapi.py`,
+and a coverage test asserts the three sets stay in lock-step.
+
+### Key Features
+
+- **100% Action-Routed MCP Tools** — one consolidated tool per domain (e.g.
+  `onetrust_incidents`, `onetrust_dsar`, `onetrust_assessments`) takes an `action`
+  plus a `params_json` payload and routes to the underlying API method. 36 tools
+  cover every endpoint without flooding the IDE tool list.
+- **Full OneTrust surface** — AI Governance, Consent & Preference Management,
+  Data Use Governance, Privacy Automation (DSAR, Assessments, Data Mapping,
+  Incidents), Tech Risk & Compliance, Third-Party Management, ESG, and Platform.
+- **Flexible auth** — a pre-minted OAuth2 bearer token *or* the OAuth2
+  client-credentials flow (auto-exchanged and refreshed), plus OIDC delegation
+  (RFC 8693) via `agent-utilities`.
+- **Multi-region / multi-service aware** — regional tenant pods, the consent
+  privacy-portal host, and on-prem worker nodes are resolved per-operation.
+- **Resilient** — honours `429` `Retry-After`, retries transient `5xx`, and
+  handles both OneTrust pagination styles (offset and cursor).
+
+## MCP
+
+### Using as an MCP Server
+
+The MCP Server runs in `stdio` (local) or `streamable-http` (networked) mode.
+Each domain is a tool gated by a `{TAG}TOOL` environment variable (default `True`),
+so you can scope the surface (e.g. set `ESGTOOL=False` to drop ESG).
+
+#### Environment Variables
+
+| Variable | Description |
+| --- | --- |
+| `ONETRUST_URL` | Tenant host URL, e.g. `https://acme.my.onetrust.com` (overrides region). |
+| `ONETRUST_REGION` | Shared pod when no URL is set: `us`, `eu`, `de`, `uk`, `au`, `ca`, `fr`, `in`, `jp`, `trial`, `uat`, … (default `us`). |
+| `ONETRUST_TOKEN` | Pre-minted OAuth2 bearer token. |
+| `ONETRUST_CLIENT_ID` / `ONETRUST_CLIENT_SECRET` | OAuth2 client-credentials (exchanged at `/api/access/v1/oauth/token`). |
+| `ONETRUST_CONSENT_URL` | Optional host for consent-transaction APIs (privacy portal). |
+| `ONETRUST_WORKER_URL` | Optional on-prem Data Discovery worker-node host. |
+| `ONETRUST_SSL_VERIFY` | Verify TLS (default `True`). |
+| `<DOMAIN>TOOL` | Toggle a domain tool, e.g. `INCIDENTSTOOL`, `DSARTOOL`, `CONSENT_RECEIPTSTOOL` (default `True`). |
+
+#### Run in stdio mode (default):
+```bash
+export ONETRUST_URL="https://acme.my.onetrust.com"
+export ONETRUST_TOKEN="your_token"
+onetrust-mcp --transport "stdio"
+```
+
+#### Run in HTTP mode:
+```bash
+export ONETRUST_URL="https://acme.my.onetrust.com"
+export ONETRUST_TOKEN="your_token"
+onetrust-mcp --transport "streamable-http" --host "0.0.0.0" --port "8000"
+```
+
+### Tool Domains
+
+`access_management`, `ai_governance`, `assessments`, `audit_management`,
+`bulk_export`, `cmp`, `compliance_automation`, `consent_interfaces`,
+`consent_receipts`, `cookie_consent`, `cookie_consent_legacy`,
+`cookie_domain_data`, `cross_device_consent`, `data_catalog`, `data_discovery`,
+`data_discovery_worker`, `data_mapping`, `data_mapping_legacy`, `documents`,
+`dsar`, `esg`, `incidents`, `integrations`, `inventory`, `issues_management`,
+`it_risk_management`, `mobile_app_consent`, `object_manager`, `policy_management`,
+`privacy_notices`, `task_management`, `tprm`, `training`, `universal_consent`,
+`user_provisioning` — plus `custom_api` (a raw REST escape hatch).
+
+## A2A Agent
+
+### Run A2A Server
+```bash
+export ONETRUST_URL="https://acme.my.onetrust.com"
+export ONETRUST_TOKEN="your_token"
+onetrust-agent --provider openai --model-id gpt-4o --api-key sk-...
+```
+
+## Docker
+
+### Build
+
+```bash
+docker build -t onetrust-api .
+```
+
+### Run MCP Server
+
+```bash
+docker run -d \
+  --name onetrust-api \
+  -p 8000:8000 \
+  -e TRANSPORT=http \
+  -e ONETRUST_URL="http://your-service:8080" \
+  -e ONETRUST_TOKEN="your_token" \
+  knucklessg1/onetrust-api:latest
+```
+
+### Deploy with Docker Compose
+
+```yaml
+services:
+  onetrust-api:
+    image: knucklessg1/onetrust-api:latest
+    environment:
+      - HOST=0.0.0.0
+      - PORT=8000
+      - TRANSPORT=http
+      - ONETRUST_URL=http://your-service:8080
+      - ONETRUST_TOKEN=your_token
+    ports:
+      - 8000:8000
+```
+
+#### Configure `mcp.json` for AI Integration (e.g. Claude Desktop)
+
+```json
+{
+  "mcpServers": {
+    "onetrust": {
+      "command": "uv",
+      "args": [
+        "run",
+        "--with",
+        "onetrust-api",
+        "onetrust-mcp"
+      ],
+      "env": {
+        "ONETRUST_URL": "http://your-service:8080",
+        "ONETRUST_TOKEN": "your_token"
+      }
+    }
+  }
+}
+```
+
+## Install Python Package
+
+```bash
+python -m pip install onetrust-api
+```
+```bash
+uv pip install onetrust-api
+```
+
+## Documentation
+
+The complete documentation is published as the
+[official documentation site](https://knuckles-team.github.io/onetrust-api/) and is
+the source of truth for installation, usage, and deployment.
+
+| Page | Covers |
+| --- | --- |
+| [Overview](https://knuckles-team.github.io/onetrust-api/overview/) | the action-routed tool surface and architecture |
+| [Installation](https://knuckles-team.github.io/onetrust-api/installation/) | pip, source, extras, prebuilt Docker image |
+| [Usage (API / CLI / MCP)](https://knuckles-team.github.io/onetrust-api/usage/) | the MCP tools, the `Api` client, the CLI |
+| [Deployment](https://knuckles-team.github.io/onetrust-api/deployment/) | run the MCP and agent servers, Compose, env config |
+
+## Repository Owners
+
+<img width="100%" height="180em" src="https://github-readme-stats.vercel.app/api?username=Knucklessg1&show_icons=true&hide_border=true&&count_private=true&include_all_commits=true" />
+
+![GitHub followers](https://img.shields.io/github/followers/Knucklessg1)
+![GitHub User's stars](https://img.shields.io/github/stars/Knucklessg1)

onetrust_api-0.1.0/onetrust_api/__init__.py

@@ -0,0 +1,61 @@
+#!/usr/bin/env python
+
+import importlib
+import inspect
+import warnings
+
+# Suppress RequestsDependencyWarning due to chardet 6.x / requests 2.32.x mismatch
+# Centralized here to ensure it runs before any sub-package imports
+warnings.filterwarnings("ignore", message=".*urllib3.*or chardet.*")
+
+__all__: list[str] = []
+
+CORE_MODULES = [
+    "onetrust_api.api_client",
+]
+
+OPTIONAL_MODULES = {
+    "onetrust_api.agent_server": "agent",
+    "onetrust_api.mcp_server": "mcp",
+}
+
+
+def _import_module_safely(module_name: str):
+    """Try to import a module and return it, or None if not available."""
+    try:
+        return importlib.import_module(module_name)
+    except ImportError:
+        return None
+
+
+def _expose_members(module):
+    """Expose public classes and functions from a module into globals and __all__."""
+    for name, obj in inspect.getmembers(module):
+        if (inspect.isclass(obj) or inspect.isfunction(obj)) and not name.startswith(
+            "_"
+        ):
+            globals()[name] = obj
+            __all__.append(name)
+
+
+for module_name in CORE_MODULES:
+    try:
+        module = importlib.import_module(module_name)
+        _expose_members(module)
+    except ImportError:
+        pass
+
+for module_name, extra_name in OPTIONAL_MODULES.items():
+    module = _import_module_safely(module_name)
+    globals()[f"_{extra_name.upper()}_AVAILABLE"] = module is not None
+    if module is not None:
+        _expose_members(module)
+
+__all__.extend(["_MCP_AVAILABLE", "_AGENT_AVAILABLE"])
+
+
+"""
+onetrust-api
+
+Python OneTrust API client + MCP server + A2A agent with 100% API coverage
+"""

onetrust_api-0.1.0/onetrust_api/__main__.py

@@ -0,0 +1,5 @@
+#!/usr/bin/python
+from onetrust_api.agent_server import agent_server
+
+if __name__ == "__main__":
+    agent_server()

onetrust_api-0.1.0/onetrust_api/agent/AGENTS.md

@@ -0,0 +1,12 @@
+# AGENTS.md - Known A2A Peer Agents
+Last updated: 2026-06-15
+
+This file is the local registry of other A2A agents this agent can discover and call.
+
+## Registered A2A Peers
+
+| Name            | Endpoint URL                    | Description                          | Capabilities                     | Auth      | Notes / Last Connected |
+|-----------------|---------------------------------|--------------------------------------|----------------------------------|-----------|------------------------|
+| SearchMaster    | http://search-agent:9000/a2a    | Advanced web researcher              | web_search, summarize, browse    | none      | 2026-06-15             |
+
+*Add new rows manually or let the agent call `register_a2a_peer(...)`.*

onetrust_api-0.1.0/onetrust_api/agent/CRON.md

@@ -0,0 +1,12 @@
+# CRON.md - Persistent Scheduled Tasks
+Last updated: 2026-06-15
+
+## Active Tasks
+
+| ID          | Name              | Interval (min) | Prompt                              | Last run          | Next approx |
+|-------------|-------------------|----------------|-------------------------------------|-------------------|-------------|
+| heartbeat   | Heartbeat         | 30             | @HEARTBEAT.md                       | —                 | —           |
+| log-cleanup | Log Cleanup       | 720            | __internal:cleanup_cron_log         | —                 | —           |
+
+*Edit this table to add/remove tasks. The agent reloads it periodically.*
+*Use `@filename.md` in the Prompt column to load a multi-line prompt from a workspace file.*

onetrust_api-0.1.0/onetrust_api/agent/CRON_LOG.md

@@ -0,0 +1,5 @@
+# CRON_LOG.md - Scheduled Task History
+Last updated: 2026-06-15
+
+| Timestamp | Task ID | Status | Message |
+|-----------|---------|--------|---------|

onetrust_api-0.1.0/onetrust_api/agent/HEARTBEAT.md

@@ -0,0 +1,28 @@
+# Heartbeat — Periodic Self-Check
+
+You are running a scheduled heartbeat. Perform these checks and report results concisely.
+
+## Checks
+
+1. **Tool Availability** — Call `list_tools` or equivalent to verify your MCP tools are reachable. Report any connection failures.
+2. **Memory Review** — Query the **Knowledge Graph** for any pending follow-up tasks, architectural decisions, or action items.
+3. **Cron Log** — Read `CRON_LOG.md` and check for recent errors (❌). Summarize any failures from the last 24 hours.
+4. **Peer Agents** — Read `AGENTS.md` and note if any registered peers need attention.
+5. **Domain-Specific Checks**:
+   - **Service Health**: Check service health status and scan recent logs for critical errors using available tools.
+6. **Self-Diagnostics** — Report your current model, available tool count, and any anomalies.
+
+## Response Format
+
+If everything is healthy:
+```
+HEARTBEAT_OK — All systems nominal. [tool_count] tools available. No pending actions.
+```
+
+If issues found:
+```
+HEARTBEAT_ALERT — [summary of issues found]
+- Issue 1: ...
+- Issue 2: ...
+- Action needed: ...
+```

onetrust_api-0.1.0/onetrust_api/agent/IDENTITY.md

@@ -0,0 +1,15 @@
+# IDENTITY.md - OneTrust Api Agent Identity
+
+## [default]
+ * **Name:** OneTrust Api Agent
+ * **Role:** Python OneTrust API client + MCP server + A2A agent with 100% API coverage
+ * **Emoji:** 🤖
+
+ ### System Prompt
+ You are the OneTrust Api Agent.
+ You must always first run `list_skills` to show all skills.
+ Then, use the `mcp-client` universal skill and check the reference documentation for `onetrust-api.md` to discover the exact tags and tools available for your capabilities.
+
+ ### Capabilities
+ - **MCP Operations**: Leverage the `mcp-client` skill to interact with the target MCP server. Refer to `onetrust-api.md` for specific tool capabilities.
+ - **Custom Agent**: Handle custom tasks or general tasks.

onetrust_api-0.1.0/onetrust_api/agent/MCP_AGENTS.md

@@ -0,0 +1,13 @@
+# MCP_AGENTS.md - Dynamic Agent Registry
+
+This file tracks the generated agents from MCP servers. You can manually modify the 'Tools' list to customize agent expertise.
+
+## Agent Mapping Table
+
+| Name | Description | System Prompt | Tools | Tag | Source MCP |
+|------|-------------|---------------|-------|-----|------------|
+
+## Tool Inventory Table
+
+| Tool Name | Description | Tag | Source |
+|-----------|-------------|-----|--------|

onetrust_api-0.1.0/onetrust_api/agent/USER.md

@@ -0,0 +1,7 @@
+# USER.md - About the Human
+
+* **Name:** User
+* **Preferred name:** User
+* **Timezone:** America/Chicago
+* **Location:** Chicago, Illinois
+* **Style:** Technical, concise, no fluff

onetrust_api-0.1.0/onetrust_api/agent/mcp_config.json

@@ -0,0 +1,11 @@
+{
+  "mcpServers": {
+    "onetrust": {
+      "command": "onetrust-mcp",
+      "env": {
+        "ONETRUST_URL": "${ONETRUST_URL:-http://localhost:8080}",
+        "ONETRUST_TOKEN": "${ONETRUST_TOKEN}"
+      }
+    }
+  }
+}