**Tagline**: Automating CMMI compliance by bridging the gap between business requirements and development artifacts.
-
**Team**: Fusion
+
**Team**: Fusion
**Project Status**: Planning
**Overview**
-
This project aims to develop a custom AI solution, AuditMatic, that automates the CMMI compliance auditing process. For many development teams, ensuring that engineering work aligns with business requirements is a manual, time-consuming, and error-prone task. This system solves that problem by serving as an intelligent bridge between business documents and development tools like Jira and GitLab.
+
AuditMatic is an AI-powered system designed to automate the CMMI compliance auditing process. For many development teams, manually ensuring engineering work aligns with business requirements is slow, error-prone, and resource-intensive. AuditMatic solves this problem by intelligently bridging the gap between business documents and development tools such as Jira and GitLab.
+
+
The system ingests unstructured business requirement documents, uses NLP to extract key identifiers like ticket numbers and commit hashes, and cross-validates this data with live project data. This automated approach produces detailed compliance reports in minutes, saving time and reducing human error.
-
The core of our solution is an AI-powered pipeline that ingests unstructured business requirements documents, uses Natural Language Processing (NLP) to extract key identifiers (like ticket numbers and commit hashes), and then pulls live data from development tools via their APIs. By programmatically cross-validating this information against a set of CMMI rules, the system can generate an instant, detailed compliance report, flagging discrepancies that would otherwise require hours of manual auditing.
+
By combining off-the-shelf NLP models with a custom rule-based expert system, AuditMatic transforms a manual, high-effort audit process into a fast, reliable, and AI-driven pipeline.
-
**The Problem**
+
**The Problem
+
**
-
CMMI compliance auditing is a critical but highly inefficient process for software development organizations. It requires auditors to manually read through complex business requirements documents and then painstakingly cross-reference every stated requirement with tickets in Jira and commits in GitLab. This manual process is not only slow and costly but also susceptible to human error, potentially leading to failed audits and non-compliance.
+
CMMI compliance auditing requires auditors to read through complex business documents and manually verify alignment with tickets in Jira and commits in GitLab. This process is slow, costly, and prone to human error, which can result in failed audits and non-compliance.
**Our AI Solution
**
What does it do?
-
AuditMatic is a web application that ingests business requirements documents and automatically checks for CMMI compliance by cross-validating them against live data from Jira and GitLab.
+
AuditMatic is a web application that automatically checks CMMI compliance by cross-validating uploaded business requirement documents against live data from Jira and GitLab.
How does it work?
-
The architecture consists of three main components.
+
The architecture has three main components:
-
A React web app provides the user interface for document upload.
+
React Web App: User interface for uploading documents.
-
An Express.js backend acts as an API gateway, receiving the file and orchestrating the AI process.
+
Express.js Backend: Receives the file and triggers the AI pipeline.
-
A Python AI core is triggered by the backend. It uses libraries like PyMuPDF to extract text, spaCy for NLP to identify Jira IDs and commit hashes, and then connects to the Jira and GitLab APIs to fetch corresponding data. Finally, its rule-based "expert system" runs compliance checks (Traceability, Accountability, Completeness) and returns a JSON report to the web app.
+
Python AI Core:
-
What makes it innovative?
-
It replaces a manual, human-driven audit process with an automated, AI-driven pipeline. It is a practical application of AI engineering, combining off-the-shelf NLP models with a custom rule-based expert system to solve a specific, high-value business problem efficiently.
+
Uses PyMuPDF to extract text from documents.
-
**Technology Stack**
+
Uses spaCy for NLP to detect Jira IDs and commit hashes.
-
AI/ML Models: spaCy (for NLP/NER), Custom Rule-Based Expert System
Runs compliance checks (Traceability, Accountability, Completeness) via a rule-based expert system.
-
Backend: Express.js (Node.js), Python
+
Returns a structured JSON report to the web app for display.
-
Frontend: React
+
What makes it innovative?
+
AuditMatic replaces a manual audit process with an automated AI-driven pipeline. It combines NLP, API integration, and rule-based logic to solve a high-value business problem efficiently.
-
Databases: N/A for the pilot phase
+
**Technology Stack
+
**
+
AI/ML Models: spaCy (NLP/NER), Custom Rule-Based Expert System
The system follows a three-tier architecture where the frontend, backend, and AI core work in sequence to process a request.
-
-
Code snippet
+
**Project Architecture
+
**
graph TD
-
A[React Web App in Browser] -->|1. Upload Document| B[Express.js Backend];
-
B -->|2. Trigger Python Script| C[Python AI Core];
-
C -->|3. Extract Text from File| D[business-requirements.docx];
-
C -->|4. Run NLP (spaCy) to find IDs/Hashes| C;
-
C -->|5. Fetch Ticket Data| E[Jira API];
-
C -->|6. Fetch Commit Data| F[GitLab API];
-
C -->|7. Run CMMI Compliance Logic| C;
-
C -->|8. Return JSON Report| B;
-
B -->|9. Forward JSON Report| A;
-
A -->|10. Display Formatted Report| G[User];
-
+
A[React Web App in Browser] -->|1. Upload Document| B[Express.js Backend]
+
B -->|2. Trigger Python Script| C[Python AI Core]
+
C -->|3. Extract Text from File| D[business-requirements.docx]
+
C -->|4. Run NLP (spaCy) to find IDs/Hashes| C
+
C -->|5. Fetch Ticket Data| E[Jira API]
+
C -->|6. Fetch Commit Data| F[GitLab API]
+
C -->|7. Run CMMI Compliance Logic| C
+
C -->|8. Return JSON Report| B
+
B -->|9. Forward JSON Report| A
+
A -->|10. Display Formatted Report| G[User]
+
**Challenges & Learnings
**
-
Anticipated Challenges: The primary challenges will be creating robust NLP patterns to handle variations in document formats and ensuring seamless orchestration between the three different technology stacks (React, Node.js, Python). Handling API rate limits and errors from Jira and GitLab will also be critical.
+
**Challenges**:
-
Anticipated Learnings: This project will provide significant learnings in practical AI engineering, specifically in combining pre-built NLP models with custom rule-based systems. The team will gain experience in building polyglot microservices and the importance of clean data extraction from unstructured sources.
+
Creating robust NLP patterns to handle document variations.
-
**Future Roadmap
+
Ensuring smooth orchestration between React, Node.js, and Python.
+
+
Handling API rate limits and error management for Jira and GitLab.
+
+
**Learnings:
**
+
Integrating NLP with rule-based expert systems.
+
+
Handling unstructured data efficiently.
-
Short-term Goal: Successfully build the pilot with the core compliance checks (Traceability, Accountability, Completeness) using regex-based entity recognition.
+
Building a polyglot microservice architecture.
-
Medium-term Goal: Train a custom NLP model using spaCy to recognize more complex or non-standard internal project identifiers, improving the system's accuracy and flexibility.
+
**Future Roadmap
+
**
-
Long-term Goal: Expand the system by training a machine learning classifier to automatically categorize different types of requirement documents (e.g., "Test Plan," "Risk Plan," "Functional Spec") to apply different rule sets.
Medium-term Goal: Train a custom NLP model with spaCy to recognize non-standard internal project identifiers for better accuracy.
+
Long-term Goal: Use machine learning to automatically categorize different types of requirement documents (e.g., Test Plan, Risk Plan, Functional Spec) and apply different rule sets.
**Repository & Live Demo
**
-
**GitHub Repository**: [Link to your code repo here]
+
GitHub Repository: [Link to your code repo here]
+
Live Demo: [Link to live demo or video walkthrough here]
-
**Live Demo**: [Link to your live demo or video walkthrough here]
+
Screenshots / Demo Video
-
**Screenshots / Demo Video
-
**
-
(Embed screenshots or a video of the working web application here)