Alvoradozerouno/genesis-quantum-fraud

GENESIS Compliance Engine — v10.1 (Enterprise)

Part of the GENESIS v10.1 Sovereign AI OS — the world's first open-source EU Banking Compliance platform.

Model Description

Rule-based EU regulatory compliance checker covering 9 frameworks with framework-specific logic derived from official EBA, ESMA, and EIOPA guidelines.

Supported Frameworks

Framework	Regulation	Authority	Key Checks
Basel III/IV	CRR/CRD IV	EBA / BIS	CET1 ≥ 8%, LCR ≥ 100%, 10yr retention
DORA	2022/2554/EU	ESAs	ICT incidents, TLPT, 3rd-party risk
GDPR	2016/679/EU	DPAs	Consent, data minimisation, 72h breach
EU AI Act	2024/1689/EU	NMSAs	Risk classification, conformity assessment
AML6	2021/1160/EU	AMLA	KYC/CDD, transaction monitoring, STR
PSD2	2015/2366/EU	EBA	SCA, XS2A API
MiFID II	2014/65/EU	ESMA	Best execution, transaction reporting
Solvency II	2009/138/EC	EIOPA	SCR ≥ 100%, ORSA
EBA Guidelines	Multiple GLs	EBA	CET1 ≥ 4.5%, ICT incidents

Production API (v10.1 Enterprise Features)

Feature	Status
API Key auth (X-API-Key / Bearer)	✅
Rate limiting: 30 writes/60s/IP (sliding window)	✅
Input bounds: all numeric fields ge/le validated	✅
SQLite audit persistence	✅
Multi-tenant API keys (SHA-256 CRUD admin routes)	✅
Prometheus /metrics (7 metrics)	✅
Grafana dashboard (8 panels, import-ready)	✅
Structured JSON logging	✅
94 pytest tests (CI Python 3.12 + 3.13)	✅
Docker + nginx HTTPS	✅

Usage

Start the API

git clone https://github.com/Alvoradozerouno/GENESIS-v10.1.git
cd GENESIS-v10.1
pip install -r requirements.txt
uvicorn genesis_api:app --port 8080
# Default dev key: genesis-dev-key

Run Compliance Check (authenticated)

# DORA compliance check
curl -X POST http://localhost:8080/api/compliance/dora \
  -H "X-API-Key: genesis-dev-key" \
  -H "Content-Type: application/json" \
  -d '{
    "tenant_id": "bank_001",
    "data_residency": "EU",
    "encryption_at_rest": true,
    "encryption_in_transit": true,
    "audit_logging": true,
    "ict_incident_reporting": true,
    "third_party_risk_assessed": true,
    "penetration_testing_done": false,
    "mfa_enabled": true
  }'

List All Frameworks (public)

curl http://localhost:8080/api/compliance/frameworks/all

Output Schema

{
  "framework": "dora",
  "compliance_status": "PARTIALLY_COMPLIANT",
  "compliance_score_pct": 87.5,
  "checks_passed": 7,
  "checks_total": 8,
  "check_details": {
    "penetration_testing_done": false,
    "ict_incident_reporting": true,
    ...
  },
  "remediation_required": ["penetration_testing_done"],
  "audit_ref": "2026-01-14T10:00:00+00:00"
}

Compliance Status Levels

Status	Score
COMPLIANT	100%
PARTIALLY_COMPLIANT	70–99%
NON_COMPLIANT	< 70%

Links

• 🏛️ GitHub: https://github.com/Alvoradozerouno/GENESIS-v10.1
• 📊 Risk Engine: https://huggingface.co/Alvoradozerouno/genesis-risk-ml
• 📖 API Docs: http://localhost:8080/docs (after starting server)