poam-link constraints #1052
Draft
poam-link constraints #1052
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
wandmagic
force-pushed
the
feature/poam-link-2
branch
2 times, most recently
from
c676d04 to
2030e2e
Compare
|
new version of #1024 |
Gabeblis
previously requested changes
Dec 30, 2024
wandmagic
force-pushed
the
feature/poam-link-2
branch
2 times, most recently
from
c2932e2 to
add4594
Compare
Co-authored-by: Gabeblis <[email protected]>
Co-authored-by: Gabeblis <[email protected]>
14 tasks
aj-stein-gsa
requested changes
Dec 30, 2024
There was a problem hiding this comment.
Some initial feedback on wording.
More generally, and maybe this warrants a discussion, do we need need to be careful with //back-matter/resources across all model instances, and not focusing on SSP? Later on, this could cause over-generalized matches if we incidentally add such POAM linkage over time in other documents in a package (I know we don't do that now, but we should be precise here IMO). I would love feedback from the rest of the team during review and re-review.
src/validations/constraints/fedramp-external-allowed-values.xml
Outdated
Show resolved
Hide resolved
|
That's a good point I'll adjust the targeting |
Co-authored-by: A.J. Stein <[email protected]>
Co-authored-by: A.J. Stein <[email protected]>
Co-authored-by: A.J. Stein <[email protected]>
Co-authored-by: A.J. Stein <[email protected]>
wandmagic
force-pushed
the
feature/poam-link-2
branch
3 times, most recently
from
88cac45 to
6cdd4d5
Compare
aj-stein-gsa
previously requested changes
Dec 31, 2024
|
@brian-ruf please take a look at this solution, we add a fedramp-poam type to the accepted values enumuration under fedramp namespaces this allows us to differentiate between the fedramp poam resource, and other poam resources which may exist. @aj-stein-gsa please take a look at the media-type information inside the valid poam resource, oscal-mode=poam let me know if this is the correct usage of the mime-type parameters you suggested. I filter this by media-type contains('oscal') to determine if the rlink is oscal or not. |
|
Converting to draft until requirements are full defined |
commit 7c6b0f2 Merge: f10ace6 26f4f19 Author: ~ . ~ <[email protected]> Date: Fri Jan 10 11:49:42 2025 -0500 Merge branch 'canary' of https://github.com/wandmagic/fedramp-automation into canary commit f10ace6 Author: ~ . ~ <[email protected]> Date: Wed Jan 8 11:06:00 2025 -0500 use latest server build commit d7af65c Author: ~ . ~ <[email protected]> Date: Tue Jan 7 22:21:48 2025 -0500 hotfix missing expect tag commit ee65d47 Author: ~ . ~ <[email protected]> Date: Tue Jan 7 17:17:54 2025 -0500 use preview versions of oscal tools commit b9ca17a Author: Gabeblis <[email protected]> Date: Tue Jan 7 13:12:47 2025 -0500 Add 'inventory-item-has-software-name' constraint and tests (GSA#1038) commit f556138 Author: Gabeblis <[email protected]> Date: Tue Jan 7 13:11:13 2025 -0500 Add `inventory-item-has-software-version` constraint (GSA#1039) * Add 'inventory-item-has-software-version' constraint and tests * Add 'inventory-item-has-software-version' constraint and tests commit 60ba7f7 Author: wandmagic <[email protected]> Date: Fri Jan 10 11:15:47 2025 -0500 add inventory item constraints (GSA#1063) * add inventory item constraints * update example file Co-Authored-By: A.J. Stein <[email protected]> * improve scan type constraint * massage constraints * improve constraint content * Update src/validations/constraints/fedramp-external-constraints.xml Co-authored-by: Gabeblis <[email protected]> * Update src/validations/constraints/fedramp-external-constraints.xml Co-authored-by: Gabeblis <[email protected]> * Update fedramp-external-constraints.xml * Update fedramp-external-constraints.xml * Squashed commit of the following: commit d7b0623 Author: wandmagic <[email protected]> Date: Tue Jan 7 14:47:44 2025 -0500 fix constraints (GSA#1070) commit fc50a42 Author: wandmagic <[email protected]> Date: Fri Jan 3 14:21:47 2025 -0500 hotfix develop (GSA#1064) * Squashed commit of the following: commit 18a02c9 Author: wandmagic <[email protected]> Date: Wed Jan 8 09:37:15 2025 -0500 Hotfix styles (GSA#1076) * style guide hotfix * Update fedramp-external-constraints.xml commit 60b3c50 Author: DimitriZhurkin <[email protected]> Date: Wed Jan 8 07:14:14 2025 -0700 Add the inter-boundary-component-has-information-type constraint (GSA#1066) * Add the inter-boundary-component-has-information-type constraint * clean up ssp-inter-boundary-component-has-information-type-INVALID.xml commit d7b0623 Author: wandmagic <[email protected]> Date: Tue Jan 7 14:47:44 2025 -0500 fix constraints (GSA#1070) commit fc50a42 Author: wandmagic <[email protected]> Date: Fri Jan 3 14:21:47 2025 -0500 hotfix develop (GSA#1064) * Squashed commit of the following: commit 8c1a343 Author: Gabeblis <[email protected]> Date: Thu Jan 9 11:45:37 2025 -0500 Add new metapath target to 'security-level' constraint (GSA#1079) commit 608080d Author: wandmagic <[email protected]> Date: Thu Jan 9 09:29:17 2025 -0500 add additional sample content (GSA#1081) commit 1f55a73 Author: Gabeblis <[email protected]> Date: Thu Jan 9 09:22:28 2025 -0500 Correct constraint message. (GSA#1085) commit 18a02c9 Author: wandmagic <[email protected]> Date: Wed Jan 8 09:37:15 2025 -0500 Hotfix styles (GSA#1076) * style guide hotfix * Update fedramp-external-constraints.xml commit 60b3c50 Author: DimitriZhurkin <[email protected]> Date: Wed Jan 8 07:14:14 2025 -0700 Add the inter-boundary-component-has-information-type constraint (GSA#1066) * Add the inter-boundary-component-has-information-type constraint * clean up ssp-inter-boundary-component-has-information-type-INVALID.xml commit d7b0623 Author: wandmagic <[email protected]> Date: Tue Jan 7 14:47:44 2025 -0500 fix constraints (GSA#1070) commit fc50a42 Author: wandmagic <[email protected]> Date: Fri Jan 3 14:21:47 2025 -0500 hotfix develop (GSA#1064) --------- Co-authored-by: A.J. Stein <[email protected]> Co-authored-by: Gabeblis <[email protected]> commit 5e3f386 Author: wandmagic <[email protected]> Date: Fri Jan 10 09:25:07 2025 -0500 make build (GSA#1080) commit 8c1a343 Author: Gabeblis <[email protected]> Date: Thu Jan 9 11:45:37 2025 -0500 Add new metapath target to 'security-level' constraint (GSA#1079) commit 608080d Author: wandmagic <[email protected]> Date: Thu Jan 9 09:29:17 2025 -0500 add additional sample content (GSA#1081) commit 1f55a73 Author: Gabeblis <[email protected]> Date: Thu Jan 9 09:22:28 2025 -0500 Correct constraint message. (GSA#1085) commit 26f4f19 Author: ~ . ~ <[email protected]> Date: Wed Jan 8 11:06:00 2025 -0500 use latest server build commit 18a02c9 Author: wandmagic <[email protected]> Date: Wed Jan 8 09:37:15 2025 -0500 Hotfix styles (GSA#1076) * style guide hotfix * Update fedramp-external-constraints.xml commit 60b3c50 Author: DimitriZhurkin <[email protected]> Date: Wed Jan 8 07:14:14 2025 -0700 Add the inter-boundary-component-has-information-type constraint (GSA#1066) * Add the inter-boundary-component-has-information-type constraint * clean up ssp-inter-boundary-component-has-information-type-INVALID.xml commit dd20034 Author: ~ . ~ <[email protected]> Date: Tue Jan 7 22:21:48 2025 -0500 hotfix missing expect tag commit b4d3df5 Author: ~ . ~ <[email protected]> Date: Tue Jan 7 17:17:54 2025 -0500 use preview versions of oscal tools commit d7b0623 Author: wandmagic <[email protected]> Date: Tue Jan 7 14:47:44 2025 -0500 fix constraints (GSA#1070) commit 719cf2c Author: Gabeblis <[email protected]> Date: Tue Jan 7 13:12:47 2025 -0500 Add 'inventory-item-has-software-name' constraint and tests (GSA#1038) commit ec7affc Author: Gabeblis <[email protected]> Date: Tue Jan 7 13:11:13 2025 -0500 Add `inventory-item-has-software-version` constraint (GSA#1039) * Add 'inventory-item-has-software-version' constraint and tests * Add 'inventory-item-has-software-version' constraint and tests commit fc50a42 Author: wandmagic <[email protected]> Date: Fri Jan 3 14:21:47 2025 -0500 hotfix develop (GSA#1064) commit d8a9ec9 Author: DimitriZhurkin <[email protected]> Date: Fri Jan 3 11:20:23 2025 -0700 Add connection-security constraint (issue GSA#961) (GSA#1021) * Add connection-security constraint (issue GSA#961) * change fedramp ns to http * Add help-url commit 1648871 Author: Kylie Hunter <[email protected]> Date: Fri Jan 3 13:02:59 2025 -0500 Image has checksum (GSA#1053) * test scaffolds added * initial attempt at writing pass and fail content * feature file * revised target to appropriate place * removed old target * added in proper ns * Update src/validations/constraints/fedramp-external-constraints.xml Co-authored-by: A.J. Stein <[email protected]> * AJ suggestion for more complete example * added comments --------- Co-authored-by: A.J. Stein <[email protected]> commit 962a9c0 Author: Gabeblis <[email protected]> Date: Fri Jan 3 12:31:04 2025 -0500 Add 'inventory-item-or-component-has-asset-id' constraint and tests (GSA#1056) commit 836b224 Author: Rene Tshiteya <[email protected]> Date: Fri Jan 3 12:25:35 2025 -0500 Fix implemented-component component-uuid references (GSA#1059) Fix component issues commit 7018c20 Author: Gabeblis <[email protected]> Date: Fri Jan 3 12:24:47 2025 -0500 Add 'inventory-item-has-valid-mac-address' constraint and tests (GSA#1057)
commit 719cf2c Author: Gabeblis <[email protected]> Date: Tue Jan 7 13:12:47 2025 -0500 Add 'inventory-item-has-software-name' constraint and tests (GSA#1038) commit ec7affc Author: Gabeblis <[email protected]> Date: Tue Jan 7 13:11:13 2025 -0500 Add `inventory-item-has-software-version` constraint (GSA#1039) * Add 'inventory-item-has-software-version' constraint and tests * Add 'inventory-item-has-software-version' constraint and tests commit fc50a42 Author: wandmagic <[email protected]> Date: Fri Jan 3 14:21:47 2025 -0500 hotfix develop (GSA#1064) commit d8a9ec9 Author: DimitriZhurkin <[email protected]> Date: Fri Jan 3 11:20:23 2025 -0700 Add connection-security constraint (issue GSA#961) (GSA#1021) * Add connection-security constraint (issue GSA#961) * change fedramp ns to http * Add help-url commit 1648871 Author: Kylie Hunter <[email protected]> Date: Fri Jan 3 13:02:59 2025 -0500 Image has checksum (GSA#1053) * test scaffolds added * initial attempt at writing pass and fail content * feature file * revised target to appropriate place * removed old target * added in proper ns * Update src/validations/constraints/fedramp-external-constraints.xml Co-authored-by: A.J. Stein <[email protected]> * AJ suggestion for more complete example * added comments --------- Co-authored-by: A.J. Stein <[email protected]> commit 962a9c0 Author: Gabeblis <[email protected]> Date: Fri Jan 3 12:31:04 2025 -0500 Add 'inventory-item-or-component-has-asset-id' constraint and tests (GSA#1056) commit 836b224 Author: Rene Tshiteya <[email protected]> Date: Fri Jan 3 12:25:35 2025 -0500 Fix implemented-component component-uuid references (GSA#1059) Fix component issues commit 7018c20 Author: Gabeblis <[email protected]> Date: Fri Jan 3 12:24:47 2025 -0500 Add 'inventory-item-has-valid-mac-address' constraint and tests (GSA#1057)
Co-Authored-By: A.J. Stein <[email protected]> Co-Authored-By: Gabeblis <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Committer Notes
adding constraints for poam item linkage
All Submissions:
By submitting a pull request, you are agreeing to provide this contribution under the CC0 1.0 Universal public domain dedication.