oscal-compass / compliance-trestleLinks
An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
☆208Updated this week
Alternatives and similar repositories for compliance-trestle
Users that are interested in compliance-trestle are comparing it to the libraries listed below
Sorting:
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆184Updated 3 months ago
- FedRAMP Automation☆343Updated 6 months ago
- A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…☆61Updated last year
- Various deployments of the OSCAL editor☆46Updated last year
- A simple open source command line tool to support common operations over OSCAL content.☆54Updated 2 months ago
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆55Updated 6 months ago
- An initial OpenAPI definition of an OSCAL REST API.☆39Updated last year
- NIST SP 800-53 content and other OSCAL content examples☆383Updated 2 weeks ago
- Open source tool for processing OSCAL based FedRAMP SSPs☆43Updated 11 months ago
- Demo setup for compliance-trestle☆35Updated last month
- Tools for the OSCAL project☆36Updated 2 years ago
- Open Security Controls Assessment Language (OSCAL)☆789Updated last week
- The Compliance Validator☆184Updated last month
- A workflow automation tool for compliance content authoring☆19Updated last week
- Automatically generated diagrams for OSCAL models☆20Updated 3 years ago
- Scripts to import OSCAL example content into the Neo4J graph database☆29Updated 2 years ago
- Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.☆237Updated this week
- An open source, self-service GRC tool to automate security assessments and compliance.☆194Updated 10 months ago
- The Auditree framework tool to run compliance control checks as unit tests.☆71Updated last year
- Automate the creation of a System Security Plan (SSP)☆41Updated 3 months ago
- ☆110Updated last week
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆204Updated 5 months ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆44Updated 5 years ago
- A case study for ACSAC 2022 utilizing OSCAL with a custom GitHub action to automate assessments.☆23Updated 2 years ago
- The community area and documents about Code of Conduct.☆18Updated 4 years ago
- A Java library to support processing OSCAL content☆34Updated this week
- This repository is a collection of resources to help facilitate compliance innovation utilizing Cloud, DevSecOps and Software Factory tec…☆74Updated last year
- ☆16Updated last year
- Technical Advisory Council☆131Updated last week
- Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …☆189Updated last year