ssg.controls module
- class ssg.controls.Control[source]
Bases:
SelectionHandler
,XCCDFEntity
- KEYS = {'artifact_description': <class 'str'>, 'automated': <class 'str'>, 'check': <class 'str'>, 'controls': <class 'list'>, 'description': <class 'str'>, 'fixtext': <class 'str'>, 'id': <class 'str'>, 'levels': <class 'list'>, 'mitigation': <class 'str'>, 'notes': <class 'str'>, 'original_title': <class 'str'>, 'rationale': <class 'str'>, 'related_rules': <class 'list'>, 'rules': <class 'list'>, 'status': None, 'status_justification': <class 'str'>, 'tickets': <class 'list'>, 'title': <class 'str'>}
- MANDATORY_KEYS = {'title'}
- class ssg.controls.ControlsManager(controls_dir, env_yaml=None, existing_rules=None)[source]
Bases:
object
- class ssg.controls.Level[source]
Bases:
XCCDFEntity
- KEYS = {'id': <function Level.<lambda>>, 'inherits_from': <function Level.<lambda>>}
- class ssg.controls.Policy(filepath, env_yaml=None)[source]
Bases:
XCCDFEntity
- check_levels_validity()[source]
This function goes through all controls in the policy and checks if all levels defined for individual controls are valid for the policy. If the policy has no levels defined, then all controls should have the “default” level defined (this is defined implicitly).
- property default_level
- class ssg.controls.Status(status)[source]
Bases:
object
- AUTOMATED = 'automated'
- DOCUMENTATION = 'documentation'
- DOES_NOT_MEET = 'does not meet'
- INHERENTLY_MET = 'inherently met'
- MANUAL = 'manual'
- NOT_APPLICABLE = 'not applicable'
- PARTIAL = 'partial'
- PENDING = 'pending'
- PLANNED = 'planned'
- SUPPORTED = 'supported'