posture

/posture

Show a quick compliance posture summary. Read-only — does not spawn subagents.

Instructions

Do NOT use the Agent tool. Handle this directly.

1. Read All Findings

Use Glob to find all .compliance/findings/FINDING-*.json files, then Read each one.

If no findings exist, report:

No findings found. Run /scan first to assess your AWS account.

2. Compute Statistics

Count findings by:

• Status: open, in_progress, remediated, verified, skipped
• Severity: critical, high, medium, low
• Service: group by source.service
• Framework: group by compliance[].framework

Calculate compliance percentage:

compliance% = (verified + skipped) / total * 100

3. Display Summary

# Compliance Posture

Last scan: {most recent scanId from findings}
Total findings: {n}

## By Status
| Status | Count |
|--------|-------|
| Open | {n} |
| In Progress | {n} |
| Remediated | {n} |
| Verified | {n} |
| Skipped | {n} |

## By Severity
| Severity | Open | Fixed | Total |
|----------|------|-------|-------|
| Critical | {n} | {n} | {n} |
| High | {n} | {n} | {n} |
| Medium | {n} | {n} | {n} |
| Low | {n} | {n} | {n} |

## By Framework
| Framework | Controls Hit | Findings | Verified | Score |
|-----------|-------------|----------|----------|-------|
| SOC 2 | {n unique controls} | {n} | {n} | {%} |
| HIPAA | {n unique controls} | {n} | {n} | {%} |

## By Service
| Service | Open | Fixed | Total |
|---------|------|-------|-------|
| s3 | {n} | {n} | {n} |
| iam | {n} | {n} | {n} |
| ... | ... | ... | ... |

## Top Open Issues
{List top 5 open findings by severity, with finding ID, check title, and resource}

4. Framework Filter

If $ARGUMENTS contains --framework soc2 or --framework hipaa:

• Only show findings mapped to that framework
• Adjust all counts accordingly