kube-oscal-cd

Kube OSCAL component definition

overview

This repo comprises the Kubernetes & Kyverno component definition specified as a compliance-trestle standard component-definition-kube.csv file.

To create the OSCAL component-definition.json file from the component-definition-kube.csv file, download this repo then run make. See console shown below.

The resolved profile used is NIST_SP-800-53_rev5_HIGH.

console

make
echo "=> venv"
=> venv
if [ ! -d /tmp/venv.kube-cd ]; then \
	echo "=> create python virtual environment"; \
	python -m venv /tmp/venv.kube-cd; \
	source /tmp/venv.kube-cd/bin/activate; \
	echo "=> install prereqs"; \
	python -m pip install -q --upgrade pip setuptools; \
	python -m pip install -q git+https://github.com/IBM/compliance-trestle.git@develop; \
fi
=> create python virtual environment
=> install prereqs
echo "=> trestle-init"
=> trestle-init
source /tmp/venv.kube-cd/bin/activate; \
trestle init
Initialized trestle project successfully in /home/degenaro/git/X
echo "=> kube-cd"
=> kube-cd
source /tmp/venv.kube-cd/bin/activate; \
trestle task csv-to-oscal-cd -c data/csv-to-oscal-cd.config
input: data/component-definition-kube.csv
output: component-definitions/kube/component-definition.json
Task: csv-to-oscal-cd executed successfully.

Name		Name	Last commit message	Last commit date
Latest commit History 6 Commits
.trestle		.trestle
assessment-plans		assessment-plans
assessment-results		assessment-results
catalogs		catalogs
component-definitions		component-definitions
data		data
md_components		md_components
plan-of-action-and-milestones		plan-of-action-and-milestones
system-security-plans		system-security-plans
.gitignore		.gitignore
.project		.project
CODEOWNERS		CODEOWNERS
Makefile		Makefile
README.md		README.md
setup.cfg		setup.cfg

ComplianceAsCode/kube-oscal-cd

Folders and files

Latest commit

History

Repository files navigation

kube-oscal-cd

overview

console

About

Resources

Stars

Watchers

Forks

Languages