ComplianceAsCode
ComplianceAsCode is largest and the most vibrant community that builds open source compliance policies for other open source products. It produces policies in the form of SCAP - Security Content Automation Protocol, Ansible and remediation scripts. As well as reports for policy authors, auditors and compliance managers.
A stated purpose of the project is to create security policy content for various platforms — Red Hat Enterprise Linux, Fedora, Ubuntu, Debian, SUSE Linux Enterprise Server (SLES),... — as well as products — Firefox, Chromium, ... The aim to make it as easy as possible to write new and maintain existing security content in all the commonly used formats.
Alberto Explains
ComplianceAsCode was previously known as SSG - SCAP Security Guide. Although legend says that the acronym refers to the group of friends who were key contributors in the early days of the project; Simon, Shawn, and Gabe.
Key Online Resources
- ComplianceAsCode, Github Repository [Online, 2024-04-03]
- ComplianceAsCode/content, Developer Documentation [Online, 2024-04-03]
- Planet, Blog Syndication [Online, 2024-04-03]
- SCAP Security Guide, Mailing List [Online, 2024-04-03]
- ComplianceAsCode Policies, Catalog of policy proses and other build artifacts [Online, 2024-04-03]
info alert: This article is a stub.
Last modification was made over 1 year ago.