Hello everybody,

We have the pleasure to announce release of SCAP Security Guide 0.1.41.

Although it is named SCAP Security Guide, the project is now under ComplianceAsCode organization (https://github.com/ComplianceAsCode/content). For more on this move, see https://lists.fedorahosted.org/archives/list/scap-security-gu...@lists.fedorahosted.org/thread/TWSI5VHJZ73OSZYZVBI4CD7ZPVYUFNHO/

This release continues with fixes "under the hood", the checks and fixes are now better placed, in the same directory as the rule description. We also feature new Products and new Profiles, test coverage for the rules was significantly improved, along with testing capabilities of SSGTestSuite.


Highlights of this release:

- Improved test scenario coverage of rules
- Improvements regarding content for Kubernetes for opencis-ocp-master Profile
- Introduction of concept of stable Profiles
- Addition of Ubuntu 1804 Product with ANSSI and standard Profiles
- Addition of OSPP 4.2 Profile for Fedora
- Addition of PCI-DSS Profile for Fedora
- Possibility to manually debug test scenarios
- Addition of Example Product
- Support to evaluate test scenarios on container images
- Introduction of SSG unit tests for build system functions
- Reorganization of checks and fixes to be closer to rule description

For a more detailed overview of changes (bug fixes, enhancements) implemented in this release, please have a look at more detailed changelog:
* https://github.com/ComplianceAsCode/content/releases/tag/v0.1.41

Full changelog at:
* https://github.com/ComplianceAsCode/content/issues?q=milestone%3A0.1.41

Zip archives with pre-built benchmarks in DataStream form:
* https://github.com/ComplianceAsCode/content/releases/download/v0.1.41/scap-security-guide-0.1.41.zip
(Zip archive using OVAL-5.11.1 language version)
* https://github.com/ComplianceAsCode/content/releases/download/v0.1.41/scap-security-guide-0.1.41-oval-510.zip
(Zip archive using OVAL-5.10 language version only)

Thank you to everyone who contributed with issues, patches and discussions!

Happy hardening!

--
Watson Sato
Security Technologies | Red Hat, Inc

_______________________________________________
Open-scap-list mailing list
Open-scap-list@redhat.com
https://www.redhat.com/mailman/listinfo/open-scap-list

Reply via email to