Compliance Sweep

Compliance Sweep Skill (Gemini Edition)

Org-wide compliance audit that scans repositories for "imperative" handlers that bypass the ONEX contract system, leveraging Gemini's massive context window for deep architectural analysis.

Workflow

1. Whole-Project Scan: Gemini ingests the entire repository (contracts and handler implementations) to identify undeclared topics, hardcoded transports, or logic-in-node anti-patterns.
2. AST-Based Analysis: Uses Gemini's understanding of Python code structures to differentiate between real violations and false positives (e.g., in comments).
3. Verdict Generation: Classifies handlers as COMPLIANT, IMPERATIVE, HYBRID, or ALLOWLISTED.
4. Remediation: Optionally creates Linear tickets for nodes with significant compliance gaps.

Gemini Advantages

• Deep Contextual Audit: Can cross-reference contract.yaml files against multiple handler files simultaneously to spot missing declarations.