An open source, self-service GRC tool to automate security assessments and compliance.
gregelin Merge pull request #548 from GovReady/jt_primary
use xxhash instead of pyhash library, fixes #549
Latest commit ab225f8 Sep 4, 2018
Permalink
Failed to load latest commit information.
.circleci drop dependency software license checks which break with pip 10 Apr 15, 2018
compliance try to make a test pass about greg being in a devel list Aug 26, 2016
deployment docker: echo filesystem information at container start so one can see… Jun 28, 2018
discussion fix hard-coded test password '1234' in discussion tests which are now… Aug 30, 2018
docs allow module output documents to be stored in separate files by listi… Aug 6, 2018
fixtures remove the external-function question type and calling Python functio… Feb 20, 2018
guidedmodules update to commonmark 0.8.0 which changed the package name from Common… Sep 3, 2018
modules/system Typo fixes to account_settings.yaml (#303) Nov 3, 2017
siteapp use xxhash instead of pyhash library, fixes #549 Sep 3, 2018
templates Invite Colleauge on the home page now always shows up if the user has… Aug 10, 2018
.gitignore reorganize and migrate docs to ReadTheDocs.org Apr 22, 2018
CHANGELOG.md bring CHANGELOG up to date Aug 30, 2018
Dockerfile docker: add some outputs to verify the Q version and the container us… Jun 28, 2018
Jenkinsfile change port and network in Jenkinsfile Nov 17, 2017
LICENSE.md add LICENSE.md, fixes #56 Jun 5, 2016
README.md Fix word typo in docs Apr 28, 2018
Vagrantfile vagrantfile: fix permissions on database directory Jun 20, 2018
fetch-vendor-resources.sh fetch-vendor-resources: tweak the directory the emojione assets are s… May 11, 2018
manage.py make manage.py executable and remove boilerplate comments from wsgi.py May 18, 2016
requirements.in update to commonmark 0.8.0 which changed the package name from Common… Sep 3, 2018
requirements.txt update to commonmark 0.8.0 which changed the package name from Common… Sep 3, 2018
requirements_txt_checker.sh back to main line release of django-notifications-hq at 1.4 Jun 19, 2018
requirements_txt_checker_ignoreupdates.txt whitelist Django 2.1.1 that we're not ready for yet Sep 3, 2018
requirements_txt_updater.sh back to main line release of django-notifications-hq at 1.4 Jun 19, 2018

README.md

GovReady-Q Compliance Server

The GovReady-Q Compliance Server is an open source GRC platform for highly automated, user-friendly, self-service compliance assessments and documentation. It's perfect for DevSecOps.

GovReady-Q solves the painful compliance bottleneck of needing months to authorize applications that deploy and redeploy in minutes.

Apps map components to security/compliance controls

ATTENTION!
GovReady-Q software is "Beta" software best suited for early adopters needing faster compliance for DevSecOps.

Documentation

Visit our Documentation at govready-q.readthedocs.io.

Read What You Most Need to Know About GovReady-Q.

Using Hosted GovReady-Q

There's nothing to install. Q.GovReady.com is the hosted, multi-tenant version of GovReady-Q.

  1. Visit Q.GovReady.com
  2. Fill out the form "About your organization" and "About you" to create your account
  3. Don't worry about the Service Levels -- everything's available to everyone during the Beta phase
  4. We'll contact you to help you get started

The hosted version is an excellent solution if have one project/system you are trying to get through NIST SP 800-53 or NIST SP 800-171 compliance, or you are have just trying to pull together a few specific compliance documents like your Privacy Policy or Rules of Behaivor. The hosted service operated by GovReady® PBC, the company behind GovReady-Q Compliance Server.

If you have questions about if hosted version, email info@govready.com.

Downloading GovReady-Q

Downloading Where
Current release on Docker https://hub.docker.com/r/govready/govready-q/
Nightly Build on Docker https://hub.docker.com/r/govready/govready-q-nightly/
Clone the GitHub repo https://github.com/govready/govready-q

Installing GovReady-Q

Deployment Guide
Installing on Workstations for Development
Deploying with Docker
Deploying on RHEL 7 / CentOS 7
Deploying on Ubuntu

Support

Join our mailing list and stay informed of developments.

Noteworthy

GovReady-Q is open source and incorporates the emerging OpenControl data standard for reusable compliance content.

License / Credits

This repository is licensed under the GNU GPL v3.