NERC CIP and IEC 62443 compliance gap mapping for a CVE or threat actor. Pass ?cve_id=CVE-2023-38802 or ?actor=SANDWORM&framework=nerc_cip. Returns triggered controls by framework (CIP-007-6 R2, SR 5.1, etc.), status (NON_COMPLIANT_IF_UNMITIGATED / REVIEW_REQUIRED), required action, and compensating controls. Designed for automated compliance reporting agents running on cron: call when a new advisory drops, generate gap report, route to compliance team.