-
Notifications
You must be signed in to change notification settings - Fork 734
Insights: ComplianceAsCode/content
Overview
-
- 34 Merged pull requests
- 8 Open pull requests
- 0 Closed issues
- 4 New issues
34 Pull requests merged by 16 people
-
[template] Fix ansible for file_(group)owner and file_permission
#13257 merged
Apr 3, 2025 -
Remove
sysctl_user_max_user_namespacesfrom RHEL 10 STIG#13243 merged
Apr 3, 2025 -
CMP-3277: Use consistent YAML formatting in OCP assertion files
#13263 merged
Apr 2, 2025 -
OCPBUGS-54486: Use platform instead of platforms
#13270 merged
Apr 2, 2025 -
OCPBUGS-53041: Fix multi-platform support for OVS rules
#13201 merged
Apr 2, 2025 -
rsyslog_remote_loghost: support Rainer Script in OVAL
#13274 merged
Apr 2, 2025 -
OPENSCAP-4926 - Use template in audit_rules_mac_modification_usr_share
#13273 merged
Apr 2, 2025 -
Update audit policy STIG Content
#13268 merged
Apr 2, 2025 -
Fix SLE15 CIS Ensure AppArmor is installed
#13264 merged
Apr 2, 2025 -
OCPBUGS-54212: Update kubelet tls cipher rule to support new ciphers
#13232 merged
Apr 2, 2025 -
OCPBUGS-42350: Update instruction for rule ocp4-etcd-unique-ca
#13235 merged
Apr 1, 2025 -
OCPBUGS-54486: Ensure platform is set appropriately when filtering rules
#13266 merged
Apr 1, 2025 -
Fix nist_ocp4.yml profile whitespace
#13261 merged
Apr 1, 2025 -
Fix Docs Build
#13260 merged
Apr 1, 2025 -
Fix file_groupowner_etc_chrony_keys OVAL check
#13248 merged
Apr 1, 2025 -
Remove unnecessary Jinja2 macros in control files
#13180 merged
Mar 31, 2025 -
Update OL9 hipaa profile
#13253 merged
Mar 31, 2025 -
OPENSCAP-4815: Remove grub2_uefi_password from ANSSI intermediary in RHEL10
#13256 merged
Mar 31, 2025 -
OPENSCAP-4952: Use template in audit_rules_time_watch_localtime
#13244 merged
Mar 31, 2025 -
remove scapval test from gating
#13250 merged
Mar 31, 2025 -
Update dependency compliance-trestle to v3.8.1
#13254 merged
Mar 31, 2025 -
Add /sbin/audisp-syslog to audit binary rules
#13251 merged
Mar 31, 2025 -
Bump mikepenz/release-changelog-builder-action from 5.2.0 to 5.3.0
#13255 merged
Mar 31, 2025 -
Fix
variables=forchronyd_configure_pool_and_servertests#13252 merged
Mar 28, 2025 -
OPENSCAP-4951: Support modern watches in audit_rules_sysadmin_actions
#13242 merged
Mar 28, 2025 -
Remove from OL8 STIG not STIG related rules
#13246 merged
Mar 28, 2025 -
OPENSCAP-4949, OPENSCAP-4950 - Change audit watches in rule audit_rules_sudoers and audit_rules_sudoers_d
#13218 merged
Mar 28, 2025 -
Remove Napoleon as is no longer needed
#13247 merged
Mar 28, 2025 -
Update regex to support RainerScript in rsyslog_cron_logging
#13172 merged
Mar 27, 2025 -
Change checks for rexec and rlogin to use xinetd configuration
#13185 merged
Mar 27, 2025 -
OPENSCAP-4921, OPENSCAP-4922, OPENSCAP-4923, OPENSCAP-4924: Change audit watches for ARLE
#13194 merged
Mar 27, 2025 -
Fix typo
#13241 merged
Mar 27, 2025
8 Pull requests opened by 6 people
-
OCP: Add interactive script to update ocp rule assertions
#13245 opened
Mar 27, 2025 -
Update k8s remediation for ARPC
#13258 opened
Mar 31, 2025 -
OCPBUGS-38312: Add auto-remediation for rule service_systemd-coredump_disabled
#13259 opened
Mar 31, 2025 -
OPENSCAP-4948 - Use modern audit watches in audit_rules_session_events
#13262 opened
Apr 1, 2025 -
Update Logic and Data for IA Control on SRG Export
#13269 opened
Apr 1, 2025 -
OPENSCAP-5455: Add GitHub codespaces development environment configurations + workshop env
#13275 opened
Apr 2, 2025 -
CMP-3264: Update TLS assertions in moderate, high, pci-dss
#13276 opened
Apr 2, 2025 -
OCPBUGS-53041: Add missing assertions for OVS rules
#13277 opened
Apr 3, 2025
4 Issues opened by 2 people
-
Wrong ssh cipher/kex/macs rules used on RHEL8 CIS
#13278 opened
Apr 3, 2025 -
Rules `audit_rules_*` misaligned with DISA content
#13272 opened
Apr 2, 2025 -
Ansible playbook fails on `Read signatures in GPG key`
#13267 opened
Apr 1, 2025 -
Rule audit_rules_mac_modification_etc_selinux missing PCI-DSS identifier (URL)
#13265 opened
Apr 1, 2025
15 Unresolved conversations
Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.
-
Add multiple owner support to file_owner template
#13192 commented on
Apr 2, 2025 • 39 new comments -
Add multiple group support to file_groupowner template
#13177 commented on
Apr 3, 2025 • 7 new comments -
Update audit rules assertions for aarch64
#13227 commented on
Apr 3, 2025 • 5 new comments -
OCPBUGS-52885: Exclude FIO notification check on ARM64
#13165 commented on
Apr 3, 2025 • 2 new comments -
xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_gshadow
#13203 commented on
Mar 27, 2025 • 0 new comments -
RHEL 8 UEFI Bootloader check
#13211 commented on
Mar 27, 2025 • 0 new comments -
rule dir_perms_world_writable_sticky_bits fails in container environments
#13214 commented on
Mar 27, 2025 • 0 new comments -
Rule networkmanager_dns_mode is misaligned with DISA
#13236 commented on
Mar 27, 2025 • 0 new comments -
Remove DoD specific verbiage from rule.yml files
#8709 commented on
Mar 29, 2025 • 0 new comments -
grub2 argument rules are misaligned with DISA
#13034 commented on
Apr 3, 2025 • 0 new comments -
Retire old TLS Cipher Checks and homogenize the active ones
#12749 commented on
Apr 1, 2025 • 0 new comments -
Update Konflux references
#12811 commented on
Mar 29, 2025 • 0 new comments -
CMP-2859: Resolve failing Image-stream-sets-schedule
#12895 commented on
Apr 3, 2025 • 0 new comments -
Add rhcos4 Profile for BSI Grundschutz
#13121 commented on
Mar 31, 2025 • 0 new comments -
[template] file_(group)owner file_permission improvement
#13188 commented on
Mar 31, 2025 • 0 new comments