# NIAP to Product Mapping Audit
This notebook automates the reconciliation between Jira initiatives, the NIAP Product Register, and Core Inventory. 

### How it works:
1. **Extraction**: Pulls data from SQL databases.
2. **Phase A**: Calculates baseline metrics for data quality.
3. **Phase B**: Links products using three levels of matching (Direct Link, Fuzzy Register Match, and Direct Jira Match).
4. **Reporting**: Generates summary reports and uploads results to Google Drive.

In [None]:
import pandas as pd
import json
import re
import time
import numpy as np
import os
import traceback
from datetime import datetime
from rapidfuzz import process, fuzz, utils

## 1. Configuration
Update the `TARGET_FOLDER_ID` if you want to upload to a different Google Drive folder.

In [None]:
# Target Google Drive folder ID where artifacts will be uploaded
TARGET_FOLDER_ID = "15xKraT4MhWzBvOjMTJ0x21TBIopqfl4E"
TIMESTAMP = datetime.now().strftime("%Y%m%d_%H%M")

# File names for exported artifacts
CSV_JIRA = f"raw_jira_initiatives_{TIMESTAMP}.csv"
CSV_REG  = f"raw_niap_register_{TIMESTAMP}.csv"
CSV_CORE = f"raw_core_inventory_{TIMESTAMP}.csv"
CSV_MASTER = f"master_reconciliation_table_{TIMESTAMP}.csv"
JSON_METRICS = f"data_overview_metrics_{TIMESTAMP}.json"
JSON_ANALYSIS = f"mapping_metrics_analysis_{TIMESTAMP}.json"
REPORT_MD = f"audit_analysis_report_{TIMESTAMP}.md"
TXT_METADATA = f"audit_provenance_metadata_{TIMESTAMP}.txt"

## 2. Utilities
Helper functions for cleaning data and handling special formats.

In [None]:
class NpEncoder(json.JSONEncoder):
    """Helps save NumPy numbers (from Pandas) into standard JSON format."""
    def default(self, obj):
        if isinstance(obj, np.integer): return int(obj)
        if isinstance(obj, np.floating): return float(obj)
        if isinstance(obj, np.ndarray): return obj.tolist()
        return super(NpEncoder, self).default(obj)

def clean_technical_name(text):
    """
    Simplifies product names for better matching by removing technical noise.
    Example: 'PT_PRODUCT_A_GB' becomes 'product a'.
    """
    if pd.isna(text): return ""
    text = str(text).upper()
    
    # Replace underscores with spaces to help identify individual words
    text = text.replace('_', ' ')
    
    # Remove country codes (GB, US, etc.)
    country_codes = r'GB|EUR|US|AU|NZ|SG|JP|RO|FR|PL|ES|IT|IE'
    text = re.sub(rf'\b({country_codes})\b', ' ', text)
    
    # Remove technical prefixes/suffixes
    identifiers = [r'PT', r'MF', r'ACQ', r'REVX', r'REPRICING', r'PLAN', r'BASE', r'STD', r'PREM', r'METAL', r'STANDARD']
    for pattern in identifiers: 
        text = re.sub(rf'\b{pattern}\b', ' ', text)
    
    # Remove remaining non-alphanumeric characters and extra spaces
    text = re.sub(r'[^A-Z0-9\s]', ' ', text) 
    return " ".join(text.split()).lower()

## 3. Fuzzy Matching Engine
This section handles the 'fuzzy' matching logic, which allows us to find matches even if names aren't exactly the same.

In [None]:
class SmartMatcher:
    """ 
    Finds the closest match for a name in a reference list.
    Uses 'WRatio' which is robust to word re-ordering.
    """
    def __init__(self, source_list):
        # Prepare the list we are matching AGAINST
        self.original_source = [str(x) for x in source_list if pd.notna(x)]
        self.clean_source = [utils.default_process(x) for x in self.original_source]

    def match(self, query_list, threshold=82):
        """Matches a list of queries against the source list."""
        if not query_list: return []
        
        # 1. Pre-process the queries to match the source format
        processed_queries = [utils.default_process(str(q)) for q in query_list]
        
        # 2. Performance Optimization: Use batch processing (cdist) for large datasets (100k+ rows)
        # This runs on all CPU cores and is much faster than a standard loop.
        if len(query_list) > 100:
            # Calculate all scores at once using multi-threading
            scores = process.cdist(processed_queries, self.clean_source, scorer=fuzz.WRatio, workers=-1)
            results = []
            for i in range(len(query_list)):
                if not query_list[i] or str(query_list[i]).strip() == "":
                    results.append({"best_match": None, "score": 0})
                    continue
                best_idx = np.argmax(scores[i])
                best_score = scores[i][best_idx]
                if best_score >= threshold:
                    results.append({"best_match": self.original_source[best_idx], "score": round(float(best_score), 2)})
                else:
                    results.append({"best_match": None, "score": 0})
            return results
        else:
            # Standard matching for smaller lists
            results = []
            for q in processed_queries:
                if not q:
                    results.append({"best_match": None, "score": 0})
                    continue
                match = process.extractOne(q, self.clean_source, scorer=fuzz.WRatio, processor=None)
                if match and match[1] >= threshold:
                    results.append({"best_match": self.original_source[match[2]], "score": round(match[1], 2)})
                else:
                    results.append({"best_match": None, "score": 0})
            return results

## 4. Reporting & Drive Logic
Functions to summarize results and save them.

In [None]:
def generate_audit_manifest(exec_time, sql_map):
    """Saves the exact SQL queries used for audit traceability."""
    content = f"""NIAP AUDIT: FORENSIC METADATA MANIFEST
================================================================================
EXECUTION TIMESTAMP: {exec_time}
ALGORITHM: RapidFuzz (WRatio) | THRESHOLD: 82%
NORMALIZATION: Stripping country codes and technical identifiers.

DATA PROVENANCE (EXACT SQL EXECUTION):
--------------------------------------------------------------------------------
1. JIRA SOURCE:
   {sql_map['jira']}

2. REGISTER SOURCE:
   {sql_map['reg']}

3. CORE INVENTORY SOURCE:
   {sql_map['core']}

LOGIC HIERARCHY:
--------------------------------------------------------------------------------
1. B1 (Reg->Jira): Match Register Name to Jira Summary. Priority: Direct NIAP ID > Fuzzy Match.
2. B2 (Core->Reg): Match Cleaned Core Name to Register Name. If found, inherit Jira Ticket.
3. B3 (Core->Jira): Match Cleaned Core Name to Jira Summary. Only runs if B2 fails.
"""
    with open(TXT_METADATA, 'w') as f: f.write(content)

def generate_deep_dive_report(metrics_a, metrics_b):
    """Generates a Markdown report summarizing the audit findings."""
    # 1. Jira Status Table
    jira_table = "| Status | Total Tickets | Linked to Reg | Coverage % |\n|---|---|---|---|\n"
    for status, data in metrics_a['a1_jira_governance']['linkage_analysis'].items():
        jira_table += f"| {status} | {data['total_tickets']} | {data['tickets_with_link']} | {data['coverage_pct']}% |\n"

    # 2. Register Health Table
    reg_table = "| Product Status | Total Records | Populated NIAP IDs |\n|---|---|---|\n"
    for status, data in metrics_a['a2_register_health']['id_health_by_status'].items():
        reg_table += f"| {status} | {data['total_records']} | {data['populated_ids']} |\n"

    # 3. Core Inventory Breakdown
    core_table = "| Product Type | Active Configurations |\n|---|---|\n"
    sorted_core = dict(sorted(metrics_a['a3_core_summary']['breakdown_by_type'].items(), key=lambda item: item[1], reverse=True))
    for p_type, count in sorted_core.items():
        core_table += f"| {p_type} | {count} |\n"

    # 4. Gap Analysis Table
    gap_table = "| Product Type | Risk Volume (Unmapped) |\n|---|---|\n"
    gap_data = metrics_b['master_summary']['gap_risk_volume_by_type']
    for p_type, vol in gap_data.items():
        gap_table += f"| {p_type} | {vol} |\n"

    md = f"""# NIAP Audit: Deep Dive Analysis Report
**Timestamp:** {datetime.now().strftime('%Y-%m-%d %H:%M')}

## 1. Executive Summary
| Metric | Value |
|---|---|
| **Total Product Families** | {metrics_b['master_summary']['total_families']} |
| **Compliant Families** | {metrics_b['master_summary']['compliant']} |
| **Gap Families** | {metrics_b['master_summary']['gaps']} |
| **Total Risk Volume** | {metrics_a['a3_core_summary']['total_configs']} |

## 2. Phase A: Source Data Health

### 2.1 Jira Governance Linkage (By Status)
{jira_table}

### 2.2 Product Registry Health (By Status)
{reg_table}

### 2.3 Core Inventory Composition (Risk Profile)
{core_table}

## 3. Phase B: Mapping & Gap Analysis

### 3.1 Unmapped Risk Volumes (Gaps)
{gap_table}
"""
    with open(REPORT_MD, 'w') as f: f.write(md)

def upload_to_drive(file_path, mime_type):
    """Uploads the result files to Google Drive with retries."""
    max_retries = 3
    print(f" -> Uploading {file_path}...")
    for attempt in range(max_retries):
        try:
            # Note: upload_file_to_gdrive must be available in the environment
            upload_file_to_gdrive(file=file_path, name=file_path, mime_type=mime_type, folder_id=TARGET_FOLDER_ID)
            return # Success
        except NameError:
            print("    [WARN] upload_file_to_gdrive not found. Skipping upload (Local Mode).")
            return
        except Exception as e:
            print(f"    [WARN] Attempt {attempt+1}/{max_retries} failed: {str(e)}")
            if attempt < max_retries - 1: 
                time.sleep(5) 
            else:
                print(f"    [ERROR] Failed to upload {file_path} after {max_retries} attempts.")

## 5. Data Extraction
Connect to the database and fetch the Jira, Register, and Inventory data.

In [None]:
queries = {
    "jira": "SELECT issue_id, summary, issue_status, product_register_link FROM global_entity_operations.jira_niap_initiatives",
    "reg": "SELECT name, niap, product_status FROM global_entity_operations.niap_product_register",
    "core": "SELECT product_type, name, COUNT(*) as configuration_count FROM core.products WHERE (decommission_date IS NULL OR decommission_date > CURRENT_DATE) GROUP BY 1, 2"
}

print(f"[{datetime.now()}] Phase A: Extraction...")
try:
    # Note: zeus() and execute_sql() must be available in the environment
    with zeus() as cur:
        df_jira = execute_sql(cur, queries["jira"], None)
        df_reg  = execute_sql(cur, queries["reg"], None)
        df_core = execute_sql(cur, queries["core"], None)
    print("Successfully loaded data from SQL.")
except NameError:
    print("    [ERROR] SQL functions (zeus/execute_sql) not found. Please run in the correct environment.")
except Exception as e:
    print(f"Extraction failed: {e}.")
    traceback.print_exc()

## 6. Phase A: Source Health
Calculate metrics about how much data is already linked or populated.

In [None]:
# Calculate Jira stats
df_jira['has_reg_link'] = df_jira['product_register_link'].notna() & (df_jira['product_register_link'].astype(str) != 'None')
jira_stats = df_jira.groupby('issue_status').agg(total_tickets=('issue_id', 'count'), tickets_with_link=('has_reg_link', 'sum'))
jira_stats['coverage_pct'] = (jira_stats['tickets_with_link'] / jira_stats['total_tickets'] * 100).round(2)

# Calculate Register stats
df_reg['niap_populated'] = df_reg['niap'].notna() & (~df_reg['niap'].astype(str).isin(['None', 'nan', '']))
df_reg['product_status'] = df_reg['product_status'].fillna('Unknown')
reg_health = df_reg.groupby('product_status').agg(total_records=('name', 'count'), populated_ids=('niap_populated', 'sum'))

metrics_a = {
    "a1_jira_governance": {"total_initiatives": len(df_jira), "linkage_analysis": jira_stats.to_dict('index')},
    "a2_register_health": {"total": len(df_reg), "id_health_by_status": reg_health.to_dict('index')},
    "a3_core_summary": {
        "total_configs": int(df_core['configuration_count'].sum()),
        "breakdown_by_type": df_core.groupby('product_type')['configuration_count'].sum().to_dict()
    }
}

## 7. Phase B: Mapping Logic
This is the core logic that connects the three datasets.

In [None]:
print(f"[{datetime.now()}] Phase B1: Register to Jira Mapping...")
j_matcher = SmartMatcher(df_jira['summary'].tolist())
j_id_map = dict(zip(df_jira['summary'], df_jira['issue_id']))
j_status_map = dict(zip(df_jira['issue_id'], df_jira['issue_status']))

b1_results = {}
b1_matches = j_matcher.match(df_reg['name'].tolist())

for i, row in df_reg.iterrows():
    name = str(row['name'])
    # Priority 1: Use direct NIAP link if available
    key = str(row['niap']) if pd.notna(row['niap']) else "nan"
    match = b1_matches[i]
    
    if key in j_status_map:
        res = {"ticket": key, "method": "Direct Link", "conf": 100}
    elif match['best_match']:
        res = {"ticket": j_id_map.get(match['best_match']), "method": "Fuzzy (WRatio)", "conf": match['score']}
    else:
        res = {"ticket": "-", "method": "GAP", "conf": 0}
    b1_results[name.lower()] = res

In [None]:
print(f"[{datetime.now()}] Phase B2/B3: Core Inventory Mapping...")
# Group inventory by name to reduce the number of matches we need to perform
core_families = df_core.groupby(['product_type', 'name'])['configuration_count'].sum().reset_index()
core_families['clean_name'] = core_families['name'].apply(clean_technical_name)

r_matcher = SmartMatcher(df_reg['name'].tolist())
b2_matches = r_matcher.match(core_families['clean_name'].tolist(), threshold=85)
b3_matches = j_matcher.match(core_families['clean_name'].tolist(), threshold=85)

master_results = []
for i, c_row in core_families.iterrows():
    ticket, path, best_reg = "-", "GAP", "-"
    
    # Priority 2: Match Core Inventory -> Register -> Jira
    if b2_matches[i]['best_match']:
        best_reg = b2_matches[i]['best_match']
        link = b1_results.get(best_reg.lower())
        if link and link['ticket'] != "-": 
            ticket, path = link['ticket'], f"Inherited via Register ({link['method']})"
    
    # Priority 3: Match Core Inventory -> Direct Jira (if Register match failed)
    if ticket == "-" and b3_matches[i]['best_match']:
         found_id = j_id_map.get(b3_matches[i]['best_match'])
         if found_id: 
             ticket, path = found_id, "Direct Match to Jira"

    master_results.append({
        "product_family": c_row['name'], 
        "product_type": c_row['product_type'], 
        "risk_volume": int(c_row['configuration_count']), 
        "mapped_reg_entry": best_reg, 
        "evidence_ticket": ticket, 
        "status": j_status_map.get(ticket, "N/A"), 
        "traceability_path": path
    })

## 8. Export & Finalize
Save the data and upload it to the drive.

In [None]:
try:
    df_master = pd.DataFrame(master_results)
    df_master.to_csv(CSV_MASTER, index=False)

    gap_data = df_master[df_master['evidence_ticket'] == "-"]
    metrics_b = {
        "b1_registry_health": b1_results,
        "master_summary": {
            "total_families": len(df_master), 
            "compliant": len(df_master) - len(gap_data), 
            "gaps": len(gap_data),
            "gap_risk_volume_by_type": gap_data.groupby('product_type')['risk_volume'].sum().sort_values(ascending=False).to_dict()
        }
    }

    with open(JSON_METRICS, 'w') as f: json.dump(metrics_a, f, indent=4, cls=NpEncoder)
    with open(JSON_ANALYSIS, 'w') as f: json.dump(metrics_b, f, indent=4, cls=NpEncoder)
    
    generate_audit_manifest(str(datetime.now()), queries)
    generate_deep_dive_report(metrics_a, metrics_b)

    df_jira.to_csv(CSV_JIRA, index=False) 
    df_reg.to_csv(CSV_REG, index=False)
    df_core.to_csv(CSV_CORE, index=False)

    print("Artifacts generated locally. Starting upload...")

    artifacts = [
        (CSV_MASTER, "text/csv"), (JSON_METRICS, "application/json"), 
        (JSON_ANALYSIS, "application/json"), (TXT_METADATA, "text/plain"), 
        (REPORT_MD, "text/markdown"), (CSV_JIRA, "text/csv"), 
        (CSV_REG, "text/csv"), (CSV_CORE, "text/csv")
    ]
    for f_path, f_mime in artifacts:
        if os.path.exists(f_path):
            upload_to_drive(f_path, f_mime)

    print(f"\n✅ DEEP DIVE AUDIT COMPLETE. Report: {REPORT_MD}")
except Exception as e:
    print(f"\n❌ EXECUTION FAILED: {str(e)}")
    traceback.print_exc()