Trait Control 

pub trait Control: Send + Sync {
    // Required methods
    fn id(&self) -> ControlId;
    fn evaluate(&self, evidence: &EvidenceBundle) -> Vec<ControlFinding>;

    // Provided methods
    fn description(&self) -> &'static str { ... }
    fn tsc_criteria(&self) -> &'static [&'static str] { ... }
    fn remediation_hint(&self) -> Option<&'static str> { ... }
}

A verifiable SDLC control that produces findings from evidence.

Required Methods

fn id(&self) -> ControlId

Returns the unique identifier for this control.

fn evaluate(&self, evidence: &EvidenceBundle) -> Vec<ControlFinding>

Evaluates the evidence bundle and returns one finding per subject.

Provided Methods

fn description(&self) -> &'static str

Human-readable description for SARIF rule output.

fn tsc_criteria(&self) -> &'static [&'static str]

SOC2 Trust Services Criteria this control maps to (e.g., &[“CC6.1”, “CC8.1”]). Returns empty slice for controls not mapped to SOC2.

fn remediation_hint(&self) -> Option<&'static str>

Actionable remediation hint shown when the control fails or needs review.

Implementors

impl Control for AgentSpecConformanceControl

impl Control for BehavioralRegressionControl

impl Control for BranchHistoryIntegrityControl

impl Control for BranchProtectionEnforcementControl

impl Control for BuildIsolationControl

impl Control for BuildProvenanceControl

impl Control for ChangeRequestSizeControl

impl Control for CodeScanningAlertsResolvedControl

impl Control for CodeownersCoverageControl

impl Control for ContainerProvenanceControl

impl Control for ContainerSignatureControl

impl Control for ConventionalTitleControl

impl Control for CoverageThresholdControl

impl Control for DependencyCompletenessControl

impl Control for DependencyProvenanceControl

impl Control for DependencySignatureControl

impl Control for DependencySignerVerifiedControl

impl Control for DeploymentHealthControl

impl Control for DescriptionQualityControl

impl Control for HarnessGateControl

impl Control for HostedBuildPlatformControl

impl Control for IssueLinkageControl

impl Control for LicenseComplianceControl

impl Control for McpScopeCheckControl

impl Control for MergeCommitPolicyControl

impl Control for NetworkEgressAuditControl

impl Control for PrivilegedOperationAuditControl

impl Control for PrivilegedWorkflowDetectionControl

impl Control for ProvenanceAuthenticityControl

impl Control for ReleaseAssetAttestationControl

impl Control for ReleaseTraceabilityControl

impl Control for RequiredStatusChecksControl

impl Control for ReviewIndependenceControl

impl Control for SbomCompletenessControl

impl Control for ScopedChangeControl

impl Control for SecretScanningControl

impl Control for SecurityFileChangeControl

impl Control for SecurityPolicyControl

impl Control for SecurityTestInCiControl

impl Control for SourceAuthenticityControl

impl Control for StaleReviewControl

impl Control for TestCoverageControl

impl Control for TwoPartyReviewControl

impl Control for VulnerabilityScanningControl