# ComplyForm — Terraform Compliance Automation CLI
# https://complyform.dev

## What it does
ComplyForm scans Terraform state files against 53 regulatory compliance frameworks
(SOC 2, ISO 27001, HIPAA, GDPR, NIS2, PCI DSS, NIST 800-53, and more) across
GCP, AWS, and Azure.

It generates deterministic Terraform patches to fix compliance
gaps and validates fixes with Checkov.

## Install
uv tool install complyform
brew install complyform/tap/complyform

## Quick start
complyform scan --state=terraform.tfstate --frameworks=soc2
complyform assess --frameworks=soc2
complyform remediate --frameworks=soc2
complyform validate

## Key capabilities
- Assess all 53 frameworks free (no account, no network, no telemetry)
- Generate Terraform patches (not console fixes)
- Validate with Checkov
- Export evidence to Vanta, Drata, Secureframe, AWS Audit Manager, GCP SCC, Purview
- CI/CD integration (GitHub Action)
- Compliance drift monitoring

## Pricing
Community (free): 4 frameworks remediation, unlimited assessment
Pro ($599/yr): 11 frameworks
Team ($1,999/yr): 24 frameworks + hosted dashboard
Agency ($4,999/yr): 36 frameworks + multi-project + branded PDF
Enterprise ($24,999/yr): all 53 + SSO + custom SLA

## Documentation
https://docs.complyform.dev

## License
Apache 2.0 (CLI and free-tier profiles)
