AI Explain domain

[Tuntii]

This pull request introduces major enhancements to OpenAuditKit, focusing on the integration of AI-powered analysis, improved documentation, and a strong emphasis on privacy and ethics. The changes add new modules for AI functionality, update documentation to reflect AI features and usage, and introduce mechanisms for user consent and data redaction. Additionally, new YAML rule sets for secrets and configuration scanning are provided, and installation/test instructions are clarified.

AI Integration & Privacy/Ethics

• Added new AI modules: openaudit/ai/engine.py, openaudit/ai/models.py, openaudit/ai/ethics.py, and updated openaudit/ai/__init__.py to provide AI analysis capabilities, prompt context modeling, and a redaction utility to mask secrets before sending code to LLMs. Also included a consent manager to ensure explicit user opt-in for AI features. [1] [2] [3] [4]
• Introduced an AI Ethics & Privacy policy in AI_ETHICS.md, detailing opt-in requirements, data redaction, advisory nature of AI findings, support for local/external LLMs, and transparency of AI prompts.

Documentation & Usage Improvements

• Updated README.md and openaudit.egg-info/PKG-INFO to document AI-powered features, usage demos, agent descriptions, and revised installation/testing instructions to use pip install openaudit, openaudit scan, and modern test commands. [1] [2] [3] [4] [5] [6] [7] [8] [9] [10]

Rule Sets

• Added YAML rule files for secrets (build/lib/openaudit/rules/secrets.yaml) and configuration/infrastructure scanning (build/lib/openaudit/rules/config.yaml), improving detection of common security issues and misconfigurations. [1] [2]

CLI & Packaging Updates

• Introduced versioning in __init__.py and updated CLI entry points with openaudit/__main__.py and build/lib/openaudit/main.py, ensuring proper invocation and debugging support. [1] [2] [3] [4]
• Updated dependencies to include openai for AI features in openaudit.egg-info/requires.txt and PKG-INFO. [1] [2]

These changes collectively provide robust AI-powered analysis while maintaining a strong commitment to user privacy and transparency.

[Copilot]

Pull request overview

This pull request introduces comprehensive AI-powered analysis capabilities to OpenAuditKit with a strong focus on privacy and ethics. The changes add optional AI agents for architecture review, threat modeling, data flow analysis, secret validation, and code explanation, while maintaining the tool's offline-first philosophy through opt-in consent mechanisms and data redaction.

Key Changes:

• Adds AI integration modules with ethics controls, consent management, and secret redaction
• Introduces five specialized AI agents for different security analysis tasks
• Updates CLI with new commands for AI configuration and code explanation
• Enhances documentation with AI usage guidelines and ethics policy

Reviewed changes

Copilot reviewed 38 out of 42 changed files in this pull request and generated 6 comments.

Show a summary per file

File	Description
openaudit/ai/*.py	Core AI infrastructure including engine, models, protocol, and ethics/redaction utilities
openaudit/features/*/agent.py	Specialized AI agents for architecture, dataflow, threat modeling, secrets, and code explanation
openaudit/features/*/scanner.py	Scanners for architecture and dataflow analysis
openaudit/interface/cli/commands.py	Added AI flag to scan command and new explain command
openaudit/interface/cli/app.py	Registered new commands and config subcommands
openaudit/core/config.py	Configuration manager for API key storage
openaudit/core/domain.py	Added is_ai_generated field to Finding model
pyproject.toml	Added openai dependency and repository URLs
README.md	Updated with AI features, usage examples, and corrected installation instructions
AI_ETHICS.md	New document outlining AI privacy and ethics policies
.gitignore	Expanded to include consent files and standard Python patterns

Critical Issues Found:

• Undefined engine variable in SecretConfidenceAgent causing runtime error
• Debug print statements left in production code
• Typo in README documentation path

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Incorrect path reference in documentation. The path 'openopenaudit/rules/README.md' contains a typo with doubled 'open'. Should be 'openaudit/rules/README.md'.

Suggested change

	- **Customizable**: Add your own rules! See [Rule Documentation](openopenaudit/rules/README.md).
	- **Customizable**: Add your own rules! See [Rule Documentation](openaudit/rules/README.md).

[Copilot]

Missing initialization of the AIEngine instance before calling is_available(). The 'engine' variable is used on line 14 but never declared in the run() method.

[Copilot]

Debug print statement should be removed before merging to production. This line prints sys.argv on every execution which is not needed in production code.

[Copilot]

Debug print statement should be removed before merging to production. This outputs internal app details on every run.

[Copilot]

The variable 'engine' is undefined. It should be 'AIEngine()' initialized first, similar to other agent files.

[Copilot]

Duplicate import statement on consecutive lines. Line 20 imports SecretConfidenceAgent which is already imported on line 19.