Skip to content
An open source, self-service GRC tool to automate security assessments and compliance.
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitignore v0.8.5 Feb 9, 2019
Jenkinsfile add, fixes #56 Jun 5, 2016
Vagrantfile make executable and remove boilerplate comments from May 18, 2016
requirements.txt update dependencies Feb 9, 2019
requirements_txt_checker_ignoreupdates.txt update requirements.txt for new releases of dependencies Oct 22, 2018

GovReady-Q Compliance Server

The GovReady-Q Compliance Server is an open source GRC platform for highly automated, user-friendly, self-service compliance assessments and documentation. It's perfect for DevSecOps.

GovReady-Q solves the painful compliance bottleneck of needing months to authorize applications that deploy and redeploy in minutes.

Apps map components to security/compliance controls

GovReady-Q software is "Beta" software best suited for early adopters needing faster compliance for DevSecOps.


Visit our Documentation at

Read What You Most Need to Know About GovReady-Q.

Using Hosted GovReady-Q

There's nothing to install. is the hosted, multi-tenant version of GovReady-Q.

  1. Visit
  2. Fill out the form "About your organization" and "About you" to create your account
  3. Don't worry about the Service Levels -- everything's available to everyone during the Beta phase
  4. We'll contact you to help you get started

The hosted version is an excellent solution if have one project/system you are trying to get through NIST SP 800-53 or NIST SP 800-171 compliance, or you are have just trying to pull together a few specific compliance documents like your Privacy Policy or Rules of Behaivor. The hosted service operated by GovReady® PBC, the company behind GovReady-Q Compliance Server.

If you have questions about if hosted version, email

Downloading GovReady-Q

Downloading Where
Current release on Docker
Nightly Build on Docker
Clone the GitHub repo

Installing GovReady-Q

Deployment Guide
Installing on Workstations for Development
Deploying with Docker
Deploying on RHEL 7 / CentOS 7
Deploying on Ubuntu


Join our mailing list and stay informed of developments.


GovReady-Q is open source and incorporates the emerging OpenControl data standard for reusable compliance content.

License / Credits

This repository is licensed under the GNU GPL v3.

You can’t perform that action at this time.