Skip to content

Using OSCAL with custom GitHub actions to automate assessments

License

Notifications You must be signed in to change notification settings

OpenATO/oscal-pipeline-demo

 
 

Repository files navigation

Case Study: Shifting Left the Right Way with OSCAL

This repository was created to demonstrate an automated assessment workflow using GitHub Actions. It utilizes a minimal application to trace a single control through the OSCAL models.

Detailed information about the use and structure of this repository can be found in the docs/ folder.

Through this project, we intend to help take the first steps with OSCAL and integrate these concepts into a development project. This will facilitate security, privacy and compliance activities as a part of an application development project from the start.

Contacts:

[email protected]

National Institute of Standards and Technology

Information Technology Lab, Computer Security Division

More Information

About

Using OSCAL with custom GitHub actions to automate assessments

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages

  • HTML 41.7%
  • Python 35.5%
  • JavaScript 20.3%
  • Shell 2.5%