mesh-audit

mesh-audit: Compliance and regulatory audit layer for the Mesh Protocol

Reliability & Ops

Usage

mesh mesh-audit

Commands

scan, report, policy, check, violations, history, fix

Commons Entry

# mesh-audit — Compliance Scanning & Policy Enforcement

**Tool:** `tools/mesh-audit/audit.sh`
**CLI:** `mesh audit|aud <command>`
**Layer:** L5 (Governance)
**Built:** 2026-02-20
**Author:** abernath37

## Purpose
Automated compliance scanning across all mesh tools. Enforces policies (ledger integrity, identity, commons coverage, test coverage). Tracks violations with IDs and resolution status.

## Commands
| Command | Description |
|---------|-------------|
| `mesh audit scan` | Run all policy checks against active tools |
| `mesh audit violations` | List open violations |
| `mesh audit resolve <id>` | Mark violation as resolved |
| `mesh audit policy list` | Show built-in + custom policies |
| `mesh audit policy add <name> <desc>` | Add custom policy |
| `mesh audit report` | Summary compliance report |

## Built-in Policies
- **ledger-integrity** — Tools must use standardized ledger-write.sh
- **identity-required** — Ledger writes must include agent identity
- **commons-coverage** — All active tools must have commons entries
- **test-coverage** — All tools must pass test harness

## Data
- Violations: `memory/audit/audit.jsonl`
- Custom policies: `tools/mesh-audit/policies/`