Policy Linter Security Audit

This tool performs static analysis and linting of a Base64-encoded policy or schema string against critical security invariants, decoding the policy_payload input to recover the raw policy text and producing a structured risk assessment. It accepts a single required input policy_payload, which is a Base64-encoded string containing the full content of the policy or schema to be audited. The tool uses this payload as authoritative for analysis and must not rely on external context. The output must strictly validate against the system-provided structured output schema, which is auto-produced and not supplied here.