Quillmark Open Source initiative

Status, support, security, and contribution paths.

The website explains the project for readers. GitHub remains the source of truth for code, releases, issues, pull requests, licenses, and security reporting.

Current status

Compliance Flag is moving from alpha toward beta-quality open-source AI-assisted CLI workflows. The current package is useful for controlled review-support experiments, but it is not yet a stable compliance workflow or API contract.

  • Package version: 0.2.1.
  • Development status: alpha.
  • Runtime: Python 3.10 or later.
  • Model access: Anthropic's Opus model through the user's Anthropic API key.
  • License: Apache-2.0.

What is included now

  • Local file scans for supported HTML, Markdown, and text files.
  • Experimental URL scans for authorized pages.
  • Structured JSON reports validated against a bundled schema.
  • HTML report rendering.
  • Saved raw source files and source metadata beside each report.
  • Bundled prompt, schema, and regulatory source assets.
  • Anthropic's Opus model calls for drafting review findings.

Planned improvement areas

  • Reduce scan token usage with deterministic visible-text extraction.
  • Preserve extraction metadata so reviewers can distinguish raw source from analyzed text.
  • Add tests with realistic HTML fixtures for disclosures, footers, testimonials, and performance-like content.
  • Add mocked provider tests for the full scan pipeline.
  • Add stable report schema versioning and migration notes.
  • Save webpage screenshot artifacts during URL scans.
  • Support more source file types, such as DOCX and PDF, when reliable extraction is available.

Support and contribution paths

Email Use support@complianceflag.com for project questions, implementation help, consulting inquiries, or related development work. Issues Use GitHub issues for reproducible bugs, documentation gaps, feature requests, and scanner or schema discussions. Contributing Keep changes focused, add tests when behavior changes, and preserve review-support language. Security Do not file suspected vulnerabilities in GitHub issues. Use the security reporting instructions in the repository. License Compliance Flag is licensed under Apache-2.0. See the repository license and notice files for details.
Do not include private material in GitHub issues.

Do not post private client content, confidential firm materials, Anthropic API keys, credentials, or confidential regulatory information in GitHub issues, examples, or pull requests.

Compliance Flag and Quillmark LLC are not law firms and do not provide legal, compliance, regulatory, investment, tax, accounting, or financial advice. The project, workflow outputs, articles, and examples are for informational and operational use only. They should be reviewed by qualified personnel before use. Compliance Flag and Quillmark LLC do not determine that any communication meets all applicable requirements and are not affiliated with, endorsed by, or acting on behalf of the SEC or any other regulator. Regulatory and enforcement references are based on source materials and may not reflect later developments.

Compliance Flag is a Quillmark Open Source initiative. Compliance Flag is not endorsed by, sponsored by, or affiliated with OpenAI, Anthropic, or any model provider.