Example of GCP Landing Zone for US government agency — FedRAMP, NIST, SOC 2, SOX. Generated by Merlin Studio implements the Compiled AI paradigm: LLMs at build time, deterministic code at runtime.

TenableTrawler (Cloud OR FedCloud) is a Python project that pulls scan results via the Tenable API, laying them into organized, POAM-ready outputs. It supports various scans and exports in formats like CSV, JSON, and YAML.

Comprehensive SOC 2 Type I/II compliance toolkit: trust service criteria checklists, control matrices, risk assessment templates, and audit preparation guides. By Petronella Technology Group.

Reference GCP Landing Zone for US financial-services workloads — banks, payment processors, fintechs. Covers SOC 2, PCI-DSS, NIST 800-53, SOX with multi-region foundation. FAST-compatible. Generated by Merlin Studio implements the Compiled AI paradigm: LLMs at build time, deterministic code at runtime.

Patience - The Chat Bot Testing System

Continuous security compliance automation.

Synthflow — no-code voice AI agents for businesses

Multi-tenant AI SaaS platform for risk, culture, and communication management with LLM integration

Exa — neural search API for AI agents and apps

Daytona — secure development sandboxes for AI

Security assurance and compliance platform (OneTrust).

Pulls scan results using the AWS Inspector API, combines various AWS Inspector scan results, and formats them scan results into an organized output that is POAM-ready.

Compliance automation for SOC 2, ISO 27001, HIPAA, PCI.

Continuous security compliance for cloud-first companies.

SOC 2 Type I and Type II compliance checklist - Trust Services Criteria with control mapping and evidence collection guide

You.com — AI search and chat with developer APIs

Information Security and AI Governance resources covering ISO 27001, ISO 42001, NIST CSF, SOC 2, gap assessments, control mapping, and AI risk classification.

Pre-built templates, frameworks, and policy libraries for meeting regulatory compliance requirements across industries and jurisdictions including GDPR, HIPAA, SOC 2, ISO 27001, PCI DSS, and more.

Tamper-proof audit logger for AI coding agents (Claude Code, Cursor, Codex CLI, Aider, any agent). SHA-256 hash chains, append-only immutability, SIEM-ready JSONL. Framework-mapped: NIST CSF 2.0, ISO 27001:2022, PCI DSS v4.0.1, OWASP ASVS 5.0.