Comments (6)
aaronlippold
commented on June 9, 2024
I actually want a couple things out of that PR for both Heimdall and Heimdall-Lite and Vulcan and the _tools.
( please create an issues on each project for this - and create a PR or PRs to cover the 6 elements )
- That we update the parsing to allow for either a tag fix and check or a desc, fix and check.
- That we allow for allow for three new types: desc, justification, caveat, discussion
a. Thatcaveatand orjustificationare appended to the 'Finding Details'
b. We actually search for/*caveat*/and/*justification*/- such thatmyorg-/_caveatis discovered.
b. thatdiscussionor/*discussion*/be appended to the bottom of the general description - such thatvulnerability_discussionwould be discovered. - That we support both text based impacts and numeric based impacts
a. that our default is the text based impact
b. that we 'display' the text based impact but put the numeric in if it was usedhigh (0.7) - That we update
inspec_toolsandheimdall_toolsto use the new sub-sections and text based impacts - That
CAT I / CAT II / CAT IIIbe replaced byHigh / Medium / Low - That our tools do not create code that uses
"where'are the correct style
from vulcan.
rbclark
commented on June 9, 2024
Is there an InSpec profile created somewhere that already uses all these elements that I can use for reference to make sure the output generated by Vulcan looks correct?
from vulcan.
aaronlippold
commented on June 9, 2024
Windows 10 on the mitre GitHub.
…On Wed, Mar 25, 2020, 8:37 AM Robert Clark ***@***.***> wrote:
Is there an InSpec profile created somewhere that already uses all these
elements that I can use for reference to make sure the output generated by
Vulcan looks correct?
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
<#39 (comment)>, or
unsubscribe
<https://github.com/notifications/unsubscribe-auth/AALK42HG4UNMXF2BI6S6EF3RJH3IXANCNFSM4GFWKJFQ>
.
from vulcan.
github-actions
commented on June 9, 2024
Stale issue message
from vulcan.
Bialogs
commented on June 9, 2024
I think this is more applicable for inspec_tools
from vulcan.
aaronlippold
commented on June 9, 2024
just want to make sure we use our style guide when we generate profiles
…--------
Aaron Lippold
***@***.***
260-255-4779
twitter/aim/yahoo,etc.
'aaronlippold'
On Tue, Sep 28, 2021 at 1:31 PM Kyle ***@***.***> wrote:
Closed #39 <#39>.
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
<#39 (comment)>, or
unsubscribe
<https://github.com/notifications/unsubscribe-auth/AALK42HM266WINGHEPJCGBTUEH3XPANCNFSM4GFWKJFQ>
.
from vulcan.
Related Issues (20)
- Update Find and Replace to add case sensitive and non-sensitive
- Update Find and Replace to search all fields HOT 1
- Move user button in Find and Replace to top of the modal
- Artifact Description is required and should only be visible in Status - Applicable - Inherently Meets
- The Mitigation field must be populated if the requirement Status is 'Applicable - Does Not Meet' HOT 2
- Bug: Vulcan project metadata update triggers project_rename slack notification
- Import From a SpreadSheet does not work as expected when contains a rule that is satisfied by more than one other rules
- Add constraint to satisfies workflow for configurable only requirements.
- Enhancements to the Vulcan Notification System
- Give admins the ability to mark a project as 'open'
- Enable users (admins) to provide the Slack channel they want to use for each project or component. This can be provided on project/component creation or edited in the project/component metadata.
- Enable users to provide their own Slack user ID if they would like to receive Slack DMs (e.g. when added/removed from a project, role changes, review requests, etc).
- Extend email notifications to alert users when their role changes.
- Update inspec after copying or duplicate a component
- Vulcan container crashes when exporting to excel
- Add fixref to XCCDF generation to be compatible with STIG Viewer 3.x HOT 1
- Update image to not run as root
- Modifying a Project or Component Member with Admin Role Results in Unsolicited Change to a Component PoC
- I didn't know where to report this
- The README needs picture of the tool
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from vulcan.