bmarsh9/gapps

⭐ 654 stars | License: Commons Clause | Recommendation: MEDIUM

What it is

Full security compliance platform (Python/Flask + TailwindCSS). Supports SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF. Most starred repo in this collection.

Key files

• Full web app: 63 HTML templates, 35 Python files
• Docker + docker-compose
• Multi-framework support

How it could be used

• Self-hosted GRC platform covering CMMC alongside other frameworks
• More complex than cmmc-tracker but covers more frameworks
• Could be used by IT consulting clients needing multi-framework compliance

Caveats

• "Commons Clause" license = cannot sell as a service
• No CMMC-specific templates (xlsx/docx/pdf) included

Notes

High stars but general-purpose GRC. Better for multi-framework needs. Commons Clause is more restrictive.