Platform Reference v1.5
REAEGIS Documentation
The authoritative public reference for the REAEGIS compliance execution platform. Every regulatory reference links to its official source document.
Where to start
Getting Started
What is REAEGIS?
Platform overview, architecture, and how REAEGIS sits between DevSecOps pipelines and federal authorization systems.
Platform Engine
RAMPART Evaluation Engine
9 compliance gates that run on every repository push. Gate decisions, NIST control mappings, and cryptographic signing.
Platform Engine
ARE — Autonomous Remediation
11-step pipeline from finding to Change Request: 7 scanners, AI analysis with claude-opus-4-8, build verification, dual-PR routing.
Framework Guide
CMMC 2.0
Three levels, enforcement timeline, SPRS requirements, subcontractor flow-down, and REAEGIS scoping tools for DoD contractors.
Framework Guide
FedRAMP
Impact levels, FedRAMP 20x modernization, RFC-0024 OSCAL mandate, KSI validation, and continuous authorization requirements.
Framework Guide
NIST SP 800-171
110 CUI security requirements across 14 practice families. SPRS scoring, Rev 2 vs Rev 3 transition, and CMMC Level 2 alignment.
Framework guides at a glance
| Framework | Who needs it | REAEGIS supports |
|---|---|---|
| CMMC Level 1 | All DoD contractors handling FCI | 17 practices, self-attestation wizard |
| CMMC Level 2 | Contractors handling CUI | 110 practices, SPRS score, subcontractor portal |
| CMMC Level 3 | DoD highest-priority programs | NIST 800-172 delta gap analysis |
| FedRAMP Moderate | Cloud systems processing federal non-national-security data | 325+ controls, OSCAL SSP, ConMon |
| FedRAMP High | Law enforcement, financial, and emergency-services systems | 420+ controls, full KSI dashboard |
| NIST 800-171 Rev 2 | CUI-handling nonfederal organizations | 110 requirements, live SPRS calculator |
| NIST 800-171 Rev 3 | Rev 2 organizations transitioning to Rev 3 | 98 active requirements, delta engine, ODP editor |
Platform engines
| Engine | What it does |
|---|---|
| RAMPART | Runs 9 compliance gates on every push; returns PASS/FAIL/WARN/BLOCK per gate |
| ARE | Autonomously remediates findings via AI-generated patches and dual-PR routing |
| AXIOM | Maps gate results to NIST 800-53 / 800-171 controls; updates control posture |
| ADVERSARIUS | AI-driven root-cause analysis and cross-finding intelligence |
| PHAROS | Continuous monitoring engine; runs scheduled sweeps and generates ConMon packages |
| CHRONICLE | Cryptographic audit log; Cosign signs every event and anchors to Rekor |
Recently updated
| Page | Updated | Change |
|---|---|---|
| CMMC | 2026-06-14 | Added 14-domain practice breakdown, False Claims Act exposure section, and scoping wizard reference |
| FedRAMP | 2026-06-14 | RFC-0024 September 2026 deadline, FedRAMP 20x Phase 2 KSI requirements |
| NIST 800-171 Rev 3 | 2026-06-14 | New page covering 98 active requirements, ODPs, and REAEGIS transition tooling |
| ARE Engine | 2026-06-14 | 11-step pipeline detail, fix strategy types, build system support matrix |
| GitHub Integration | 2026-06-14 | Dual-PR routing, compliance vault PR, troubleshooting guide |
Every regulatory reference on this site links to the official source document. REAEGIS does not make claims that cannot be verified against published guidance. To report an error, email [email protected].