RubyGems - emasser - Versions diffs - 3.4.0 → 3.4.1 - Mend

emasser 3.4.0 → 3.4.1

Files changed (61) hide show

checksums.yaml +4 -4
data/.dockerignore +8 -8
data/.env-example +12 -12
data/.github/release-drafter.yml +15 -15
data/.github/workflows/codeql-analysis.yml +70 -70
data/.github/workflows/draft-release.yml +15 -15
data/.github/workflows/gh-pages.yml +32 -32
data/.github/workflows/push-to-docker-mail.yml +28 -28
data/.github/workflows/push-to-docker.yml +35 -35
data/.github/workflows/release.yml +42 -42
data/.github/workflows/rubocop.yml +23 -23
data/.github/workflows/test-cli.yml +72 -72
data/.gitignore +19 -19
data/.mergify.yml +25 -25
data/.rubocop.yml +80 -80
data/.rubocop_todo.yml +27 -27
data/CHANGELOG.md +16 -16
data/Dockerfile +44 -44
data/Gemfile +8 -8
data/Gemfile.lock +104 -104
data/LICENSE.md +15 -15
data/README.md +178 -178
data/Rakefile +18 -18
data/_config.yml +1 -1
data/docs/features.md +1436 -1436
data/docs/redoc/index.html +1230 -1230
data/emasser.gemspec +44 -44
data/exe/emasser +5 -5
data/lib/emasser/cli.rb +37 -37
data/lib/emasser/configuration.rb +49 -49
data/lib/emasser/constants.rb +26 -26
data/lib/emasser/delete.rb +148 -148
data/lib/emasser/errors.rb +14 -14
data/lib/emasser/get.rb +949 -949
data/lib/emasser/help/approvalCac_post_mapper.md +20 -20
data/lib/emasser/help/approvalPac_post_mapper.md +20 -20
data/lib/emasser/help/artifacts_del_mapper.md +9 -9
data/lib/emasser/help/artifacts_post_mapper.md +59 -59
data/lib/emasser/help/artifacts_put_mapper.md +34 -34
data/lib/emasser/help/cloudresource_post_mapper.md +62 -62
data/lib/emasser/help/cmmc_get_mapper.md +4 -4
data/lib/emasser/help/container_post_mapper.md +44 -44
data/lib/emasser/help/controls_put_mapper.md +74 -74
data/lib/emasser/help/milestone_del_mapper.md +11 -11
data/lib/emasser/help/milestone_post_mapper.md +14 -14
data/lib/emasser/help/milestone_put_mapper.md +23 -23
data/lib/emasser/help/poam_del_mapper.md +5 -5
data/lib/emasser/help/poam_post_mapper.md +93 -93
data/lib/emasser/help/poam_put_mapper.md +107 -107
data/lib/emasser/help/staticcode_clear_mapper.md +16 -16
data/lib/emasser/help/staticcode_post_mapper.md +21 -21
data/lib/emasser/help/testresults_post_mapper.md +21 -21
data/lib/emasser/help.rb +11 -11
data/lib/emasser/input_converters.rb +21 -21
data/lib/emasser/options_parser.rb +20 -20
data/lib/emasser/output_converters.rb +111 -111
data/lib/emasser/post.rb +830 -802
data/lib/emasser/put.rb +588 -588
data/lib/emasser/version.rb +5 -5
data/lib/emasser.rb +19 -19
metadata +8 -8

data/lib/emasser/put.rb CHANGED Viewed

@@ -1,588 +1,588 @@
-# frozen_string_literal: true
-# Hack class that properly formats the CLI help
-class SubCommandBase < Thor
-  include OutputConverters
-  # We do not control the method declaration for the banner
-  # rubocop:disable Style/OptionalBooleanParameter
-  def self.banner(command, _namespace = nil, subcommand = false)
-    # Use the $thor_runner (declared by the Thor CLI framework)
-    # to properly format the help text of sub-sub-commands.
-    # rubocop:disable Style/GlobalVars
-    if ancestors[0].to_s.include? '::Put'
-      "#{basename} #{command.formatted_usage(self, $thor_runner, subcommand)}"
-    else
-      "#{basename} put #{command.formatted_usage(self, $thor_runner, subcommand)}"
-    end
-    # rubocop:enable Style/GlobalVars
-  end
-  # rubocop:enable Style/OptionalBooleanParameter
-end
-# Override thor's long_desc identation behavior
-class Thor
-  module Shell
-    class Basic
-      def print_wrapped(message, _options = {})
-        message = "\n#{message}\n" unless message[0] == "\n"
-        stdout.puts message
-      end
-    end
-  end
-end
-module Emasser
-  CONTROLS_PUT_HELP_MESSAGE = "\nInvoke \"bundle exec exe/emasser put controls help update\" for additional help"
-  POAMS_PUT_HELP_MESSAGE = "\nInvoke \"bundle exec exe/emasser put poams help add\" for additional help"
-  # Update Security Control information of a system for both the Implementation Plan and Risk Assessment.
-  #
-  # Endpoint:
-  #    /api/systems/{systemId}/controls - Update control information in a system for one or many controls
-  # rubocop:disable Style/WordArray
-  class Controls < SubCommandBase
-    def self.exit_on_failure?
-      true
-    end
-    desc 'update', 'Get control information in a system for one or many controls (acronym)'
-    long_desc Help.text(:controls_put_mapper)
-    # Required parameters/fields
-    option :systemId, type: :numeric, required: true, desc: 'A numeric value representing the system identification'
-    option :acronym,  type: :string,  required: true, desc: 'The system acronym(s) e.g "AC-1, AC-2"'
-    option :responsibleEntities, type: :string, required: true,
-                                 desc: 'Description of the responsible entities for the Security Control'
-    option :controlDesignation, type: :string, required: true,
-                                enum: ['Common', 'System-Specific', 'Hybrid'],
-                                desc: 'The Security Control Designation'
-    option :estimatedCompletionDate, type: :numeric, required: true, desc: 'Estimated completion date, Unix time format'
-    option :implementationNarrative, type: :string, required: true, desc: 'Security control comments'
-    # Conditional parameters/fields
-    option :commonControlProvider,
-           type: :string,
-           required: false,
-           enum: ['DoD', 'Component', 'Enclave'],
-           desc: 'Indicate the type of Common Control Provider for an "Inherited" Security Control'
-    option :naJustification,
-           type: :string, required: false,
-           desc: 'Provide justification for Security Controls deemed Not Applicable to the system'
-    option :slcmCriticality,
-           type: :string, required: false,
-           desc: 'Criticality of Security Control regarding SLCM'
-    option :slcmFrequency,
-           type: :string, required: false,
-           enum: ['Constantly', 'Daily', 'Weekly', 'Monthly', 'Quarterly', 'Semi-Annually',
-                  'Annually', 'Every Two Years', 'Every Three Years', 'Undetermined'],
-           desc: 'The System-Level Continuous Monitoring frequency'
-    option :slcmMethod,
-           type: :string, required: false,
-           enum: ['Automated', 'Semi-Automated', 'Manual', 'Undetermined'],
-           desc: 'The System-Level Continuous Monitoring method'
-    option :slcmReporting,
-           type: :string, required: false,
-           desc: 'The System-Level Continuous Monitoring reporting'
-    option :slcmTracking,
-           type: :string, required: false,
-           desc: 'The System-Level Continuous Monitoring tracking'
-    option :slcmComments,
-           type: :string, required: false,
-           desc: 'Additional comments for Security Control regarding SLCM'
-    # Optional parameters/fields
-    option :implementationStatus,
-           type: :string, required: false,
-           enum: ['Planned', 'Implemented', 'Inherited', 'Not Applicable', 'Manually Inherited'],
-           desc: 'Implementation status of the security control for the information system'
-    option :severity,
-           type: :string, required: false,
-           enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High'],
-           desc: 'The security control severity, required for approved items'
-    option :vulnerabiltySummary, type: :string, required: false, desc: 'The security control vulnerability summary'
-    option :recommendations, type: :string, required: false, desc: 'The security control vulnerability recommendation'
-    option :relevanceOfThreat,
-           type: :string, required: false,
-           enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High'],
-           desc: 'The security control vulnerability of threat'
-    option :likelihood,
-           type: :string, required: false,
-           enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High'],
-           desc: 'The security control likelihood of vulnerability to threats'
-    option :impact,
-           type: :string, required: false,
-           enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High'],
-           desc: 'The security control vulnerability impact'
-    option :impactDescription, type: :string, required: false, desc: 'Description of the security control impact'
-    option :residualRiskLevel,
-           type: :string, required: false,
-           enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High'],
-           desc: 'The security control risk level'
-    option :testMethod,
-           type: :string, required: false,
-           enum: ['Test', 'Interview', 'Examine', 'Test, Interview', 'Test, Examine',
-                  'Interview, Examine', 'Test, Interview, Examine'],
-           desc: 'Assessment method/combination that determines if the security requirements are implemented correctly'
-    # rubocop:disable Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
-    def update
-      # Required fields
-      body = EmassClient::ControlsGet.new
-      body.acronym = options[:acronym]
-      body.responsible_entities = options[:responsibleEntities]
-      body.control_designation = options[:controlDesignation]
-      body.estimated_completion_date = options[:estimatedCompletionDate]
-      body.implementation_narrative = options[:implementationNarrative]
-      process_business_logic(body)
-      # Add optional fields
-      body.severity = options[:severity] if options[:severity]
-      body.vulnerabilty_summary = options[:vulnerabiltySummary] if options[:vulnerabiltySummary]
-      body.recommendations = options[:recommendations] if options[:recommendations]
-      body.relevance_of_threat = options[:relevanceOfThreat] if options[:relevanceOfThreat]
-      body.likelihood = options[:likelihood] if options[:likelihood]
-      body.impact = options[:impact] if options[:impact]
-      body.impact_description = options[:impactDescription] if options[:impactDescription]
-      body.residual_risk_level = options[:residualRiskLevel] if options[:residualRiskLevel]
-      body.test_method = options[:testMethod] if options[:testMethod]
-      body_array = Array.new(1, body)
-      begin
-        result = EmassClient::ControlsApi.new.update_control_by_system_id(options[:systemId], body_array)
-        puts to_output_hash(result).green
-      rescue EmassClient::ApiError => e
-        puts 'Exception when calling ControlsApi->update_control_by_system_id'.red
-        puts to_output_hash(e)
-      end
-    end
-    # rubocop:enable Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
-    # rubocop:disable Style/CaseLikeIf, Style/StringLiterals, Metrics/BlockLength, Metrics/CyclomaticComplexity
-    no_commands do
-      # rubocop:disable Metrics/PerceivedComplexity, Style/GuardClause
-      def process_business_logic(body)
-        # Conditional fields based on implementationStatus content
-        # unless executes code if conditional is false
-        unless options[:implementationStatus].nil?
-          body.implementation_status = options[:implementationStatus]
-          if options[:implementationStatus] == "Planned" || options[:implementationStatus] == "Implemented"
-            if options[:responsibleEntities].nil? || options[:slcmCriticality].nil? ||
-               options[:slcmFrequency].nil? || options[:slcmMethod].nil? ||
-               options[:slcmReporting].nil? || options[:slcmTracking].nil? || options[:slcmComments].nil?
-              puts 'Missing one of these parameters/fields:'.red
-              puts '  responsibleEntities, slcmCriticality, slcmFrequency,'.red
-              puts '  slcmMethod,slcmReporting, slcmTracking, slcmComments'.red
-              puts CONTROLS_PUT_HELP_MESSAGE.yellow
-              exit
-            else
-              body.responsible_entities = options[:responsibleEntities]
-              body.slcm_criticality = options[:slcmCriticality]
-              body.slcm_frequency = options[:slcmFrequency]
-              body.slcm_method = options[:slcmMethod]
-              body.slcm_reporting = options[:slcmReporting]
-              body.slcm_tracking = options[:slcmTracking]
-              body.slcm_comments = options[:slcmComments]
-            end
-          elsif options[:implementationStatus] == 'Not Applicable'
-            if options[:naJustification].nil? || options[:responsibleEntities].nil?
-              puts 'Missing one of these parameters/fields:'.red
-              puts '  naJustification, responsibleEntities'.red
-              puts CONTROLS_PUT_HELP_MESSAGE.yellow
-              exit
-            else
-              body.slcm_reporting = options[:naJustification]
-              body.responsible_entities = options[:responsibleEntities]
-            end
-          elsif options[:implementationStatus] == 'Manually Inherited'
-            if options[:commonControlProvider].nil? || options[:responsibleEntities].nil? ||
-               options[:slcmCriticality].nil? || options[:slcmFrequency].nil? || options[:slcmMethod].nil? ||
-               options[:slcmReporting].nil? || options[:slcmTracking].nil? || options[:slcmComments].nil?
-              puts 'Missing one of these parameters/fields:'.red
-              puts '  commonControlProvider, responsibleEntities, slcmCriticality,'.red
-              puts '  slcmFrequency, slcmMethod, slcmReporting, slcmTracking, slcmComments'.red
-              puts CONTROLS_PUT_HELP_MESSAGE.yellow
-              exit
-            else
-              body.common_control_provider = options[:commonControlProvider]
-              body.responsible_entities = options[:responsibleEntities]
-              body.slcm_criticality = options[:slcmCriticality]
-              body.slcm_frequency = options[:slcmFrequency]
-              body.slcm_method = options[:slcmMethod]
-              body.slcm_reporting = options[:slcmReporting]
-              body.slcm_tracking = options[:slcmTracking]
-              body.slcm_comments = options[:slcmComments]
-            end
-          elsif options[:implementationStatus] == 'Inherited'
-            if options[:commonControlProvider].nil?
-              puts 'When implementationStatus value is "Inherited" only the following fields are updated:'.red
-              puts '    controlDesignation and commonControlProvider'.red
-              puts 'Missing the commonControlProvider field'.red
-              puts CONTROLS_PUT_HELP_MESSAGE.yellow
-              exit
-            else
-              body.common_control_provider = options[:commonControlProvider]
-            end
-          end
-        end
-      end
-      # rubocop:enable Metrics/PerceivedComplexity, Style/GuardClause
-    end
-    # rubocop:enable Style/CaseLikeIf, Style/StringLiterals, Metrics/BlockLength, Metrics/CyclomaticComplexity
-  end
-  # rubocop:enable Style/WordArray
-  # Update Plan of Action (POA&M) items to a system.
-  #
-  # Endpoint:
-  #   /api/systems/{systemId}/poams - Update one or many poa&m items in a system
-  class Poams < SubCommandBase
-    def self.exit_on_failure?
-      true
-    end
-    # Update a POAM -----------------------------------------------------------
-    #
-    # The following fields are required based on the contents of the status field
-    # status          Required Fields
-    # -------------------------------------------------------------------------
-    # Risk Accepted   comments, resources
-    # Ongoing         scheduledCompletionDate, resources, milestones (at least 1)
-    # Completed       scheduledCompletionDate, comments, resources,
-    #                 completionDate, milestones (at least 1)
-    # Not Applicable  POAM can not be created
-    #--------------------------------------------------------------------------
-    #
-    # If a POC email is supplied, the application will attempt to locate a user
-    # already registered within the application and pre-populate any information
-    # not explicitly supplied in the request. If no such user is found, these
-    # fields are required within the request.
-    # pocOrganization, pocFirstName, pocLastName, pocEmail, pocPhoneNumber
-    desc 'update', 'Update one or many POA&M items in a system'
-    long_desc Help.text(:poam_put_mapper)
-    # Required parameters/fields
-    option :systemId, type: :numeric, required: true, desc: 'A numeric value representing the system identification'
-    option :poamId, type: :numeric, required: true, desc: 'A numeric value representing the poam identification'
-    # option :displayPoamId,
-    #        type: :numeric, required: true,
-    #        desc: 'Globally unique identifier for individual POA&M Items, seen on the front-end as "ID"'
-    option :status, type: :string, required: true, enum: ['Ongoing', 'Risk Accepted', 'Completed', 'Not Applicable']
-    option :vulnerabilityDescription, type: :string, required: true, desc: 'POA&M vulnerability description'
-    option :sourceIdentVuln,
-           type: :string, required: true, desc: 'Source that identifies the vulnerability'
-    option :pocOrganization, type: :string, required: true, desc: 'Organization/Office represented'
-    option :resources, type: :string, required: true, desc: 'List of resources used'
-    # Conditional parameters/fields
-    option :milestone,
-           type: :hash, required: false, desc: 'key:values are: milestoneId, description and scheduledCompletionDate'
-    option :pocFirstName, type: :string, required: false, desc: 'First name of POC'
-    option :pocLastName, type: :string, required: false, desc: 'Last name of POC.'
-    option :pocEmail, type: :string, required: false, desc: 'Email address of POC'
-    option :pocPhoneNumber, type: :string, required: false, desc: 'Phone number of POC (area code) ***-**** format'
-    option :severity, type: :string, required: false, enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High']
-    option :scheduledCompletionDate,
-           type: :numeric, required: false, desc: 'The scheduled completion date - Unix time format'
-    option :completionDate,
-           type: :numeric, required: false, desc: 'The schedule completion date - Unix time format'
-    option :comments, type: :string, required: false, desc: 'Comments for completed and risk accepted POA&M items'
-    option :isActive, type: :boolean, required: false, default: false, desc: 'BOOLEAN - true or false.'
-    # Optional parameters/fields
-    option :externalUid, type: :string, required: false, desc: 'External ID associated with the POA&M'
-    option :controlAcronym, type: :string, required: false, desc: 'The system acronym(s) e.g "AC-1, AC-2"'
-    option :cci, type: :string, required: false, desc: 'The system CCIS string numerical value'
-    option :securityChecks, type: :string, required: false, desc: 'Security Checks that are associated with the POA&M'
-    option :rawSeverity, type: :string, required: false, enum: %w[I II III]
-    option :relevanceOfThreat,
-           type: :string, required: false, enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High']
-    option :likelihood, type: :string, required: false, enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High']
-    option :impact, type: :string, required: false, desc: 'Description of Security Control’s impact'
-    option :impactDescription, type: :string, required: false, desc: 'Description of the security control impact'
-    option :residualRiskLevel,
-           type: :string, required: false, enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High']
-    option :recommendations, type: :string, required: false, desc: 'Recomendations'
-    option :mitigation, type: :string, required: false, desc: 'Mitigation explanation'
-    # rubocop:disable Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
-    def update
-      # Required fields
-      body = EmassClient::PoamGet.new
-      body.poam_id = options[:poamId]
-      body.status = options[:status]
-      body.vulnerability_description = options[:vulnerabilityDescription]
-      body.source_ident_vuln = options[:sourceIdentVuln]
-      body.poc_organization = options[:pocOrganization]
-      body.resources = options[:resources]
-      process_business_logic(body)
-      # Add conditional fields
-      body.poc_first_name = options[:pocFirstName] if options[:pocFirstName]
-      body.poc_last_name = options[:pocLastName] if options[:pocLastName]
-      body.poc_email = options[:pocEmail] if options[:pocEmail]
-      body.poc_phone_number = options[:pocPhoneNumber] if options[:pocPhoneNumber]
-      body.severity = options[:severity] if options[:severity]
-      # Add optional fields
-      body.external_uid = options[:externalUid] if options[:externalUid]
-      body.control_acronym = options[:controlAcronym] if options[:controlAcronym]
-      body.cci = options[:cci] if options[:cci]
-      body.security_checks = options[:securityChecks] if options[:securityChecks]
-      body.raw_severity = options[:rawSeverity] if options[:rawSeverity]
-      body.relevance_of_threat = options[:relevanceOfThreat] if options[:relevanceOfThreat]
-      body.likelihood = options[:likelihood] if options[:likelihood]
-      body.impact = options[:impact] if options[:impact]
-      body.impact_description = options[:impactDescription] if options[:impactDescription]
-      body.residual_risk_level = options[:residualRiskLevel] if options[:residualRiskLevel]
-      body.recommendations = options[:recommendations] if options[:recommendations]
-      body.mitigation = options[:mitigation] if options[:mitigation]
-      body_array = Array.new(1, body)
-      begin
-        result = EmassClient::POAMApi.new.update_poam_by_system_id(options[:systemId], body_array)
-        puts to_output_hash(result).green
-      rescue EmassClient::ApiError => e
-        puts 'Exception when calling POAMApi->update_poam_by_system_id'.red
-        puts to_output_hash(e)
-      end
-    end
-    # rubocop:enable Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
-    # rubocop:disable Metrics/AbcSize, Metrics/BlockLength, Metrics/MethodLength, Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
-    no_commands do
-      def process_business_logic(body)
-        #-----------------------------------------------------------------------------
-        # Conditional fields based on the status field values
-        # "Risk Accepted"   comments, resources
-        # "Ongoing"         scheduledCompletionDate, resources, milestones (at least 1)
-        # "Completed"       scheduledCompletionDate, comments, resources,
-        #                   completionDate, milestones (at least 1)
-        # "Not Applicable"  POAM can not be created
-        #-----------------------------------------------------------------------------
-        # rubocop:disable Style/CaseLikeIf, Style/StringLiterals
-        if options[:status] == "Risk Accepted"
-          if options[:comments].nil?
-            puts 'When status = "Risk Accepted" the following parameters/fields are required:'.red
-            puts '    comments'.red
-            puts POAMS_PUT_HELP_MESSAGE.yellow
-            exit
-          elsif !(options[:scheduledCompletionDate].nil? && options[:milestone].nil?)
-            puts 'When status = "Risk Accepted" POA&M Item CAN NOT be saved with the following parameters/fields:'.red
-            puts '    scheduledCompletionDate, or milestone'.red
-            puts POAMS_PUT_HELP_MESSAGE.yellow
-            exit
-          else
-            body.comments = options[:comments]
-          end
-        elsif options[:status] == "Ongoing"
-          if options[:scheduledCompletionDate].nil? || options[:milestone].nil?
-            puts 'When status = "Ongoing" the following parameters/fields are required:'.red
-            puts '    scheduledCompletionDate, milestone'.red
-            print_milestone_help
-            puts POAMS_PUT_HELP_MESSAGE.yellow
-            exit
-          elsif options[:milestone]["description"].nil? || options[:milestone]["scheduledCompletionDate"].nil?
-            puts 'Missing milstone parameters/fields'.red
-            print_milestone_help
-            exit
-          else
-            body.scheduled_completion_date = options[:scheduledCompletionDate]
-            milestone = EmassClient::MilestonesRequiredPut.new
-            milestone.milestone_id = options[:milestone]["milestoneId"] if options[:milestone]["milestoneId"]
-            milestone.description = options[:milestone]["description"]
-            milestone.scheduled_completion_date = options[:milestone]["scheduledCompletionDate"]
-            milestone_array = Array.new(1, milestone)
-            body.milestones = milestone_array
-          end
-        elsif options[:status] == "Completed"
-          if options[:scheduledCompletionDate].nil? || options[:comments].nil? ||
-             options[:completionDate].nil? || options[:milestone].nil?
-            puts 'Missing one of these parameters/fields:'.red
-            puts '    scheduledCompletionDate, comments, completionDate, or milestone'.red
-            print_milestone_help
-            puts POAMS_PUT_HELP_MESSAGE.yellow
-            exit
-          else
-            body.scheduled_completion_date = options[:scheduledCompletionDate]
-            body.comments = options[:comments]
-            body.completion_date = options[:completionDate]
-            milestone = EmassClient::MilestonesRequiredPut.new
-            milestone.milestone_id = options[:milestone]["milestoneId"] if options[:milestone]["milestoneId"]
-            milestone.description = options[:milestone]["description"]
-            milestone.scheduled_completion_date = options[:milestone]["scheduledCompletionDate"]
-            milestone_array = Array.new(1, milestone)
-            body.milestones = milestone_array
-          end
-        end
-        # POC checks: If any poc information is provided all POC fields are required
-        if options[:pocFirstName]
-          if options[:pocLastName].nil? || options[:pocEmail].nil? || options[:pocPhoneNumber].nil?
-            puts 'If a POC first name is given, then all POC information must be entered:'.red
-            puts '    pocLastName, pocEmail, pocPhoneNumber'.red
-            puts POAMS_PUT_HELP_MESSAGE.yellow
-            exit
-          end
-        elsif options[:pocLastName]
-          if options[:pocFirstName].nil? || options[:pocEmail].nil? || options[:pocPhoneNumber].nil?
-            puts 'If a POC last name is given, then all POC information must be entered:'.red
-            puts '    pocFirstName, pocEmail, pocPhoneNumber'.red
-            puts POAMS_PUT_HELP_MESSAGE.yellow
-            exit
-          end
-        elsif options[:pocEmail]
-          if options[:pocFirstName].nil? || options[:pocLastName].nil? || options[:pocPhoneNumber].nil?
-            puts 'If a POC email is given, then all POC information must be entered:'.red
-            puts '    pocFirstName, pocLastName, pocPhoneNumber'.red
-            puts POAMS_PUT_HELP_MESSAGE.yellow
-            exit
-          end
-        elsif options[:pocPhoneNumber]
-          if options[:pocFirstName].nil? || options[:pocLastName].nil? || options[:pocEmail].nil?
-            puts 'If a POC phone number is given, then all POC information must be entered:'.red
-            puts '    pocFirstName, pocLastName, pocEmail'.red
-            puts POAMS_PUT_HELP_MESSAGE.yellow
-            exit
-          end
-        end
-        # rubocop:enable Style/CaseLikeIf, Style/StringLiterals
-      end
-      def print_milestone_help
-        puts 'Milestone format is:'.yellow
-        puts '    --milestone milestoneId:[value] description:"[value]" scheduledCompletionDate:"[value]"'.yellow
-        puts 'The milestoneId:[value] is optional, if not provided a new milestone is created'.yellow
-      end
-    end
-    # rubocop:enable Metrics/AbcSize, Metrics/BlockLength, Metrics/MethodLength, Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
-  end
-  # Update Milestones items to a system.
-  #
-  # Endpoint:
-  #   /api/systems/{systemId}/poams/{poamId}/milestones - Update milestones in one or many poa&m items in a system
-  class Milestones < SubCommandBase
-    def self.exit_on_failure?
-      true
-    end
-    desc 'update', 'Update milestone(s) for given specified system and poam'
-    long_desc Help.text(:milestone_put_mapper)
-    # Required parameters/fields
-    option :systemId, type: :numeric, required: true, desc: 'A numeric value representing the system identification'
-    option :poamId, type: :numeric, required: true, desc: 'A numeric value representing the poam identification'
-    option :milestoneId,
-           type: :numeric, required: true, desc: 'A numeric value representing the milestone identification'
-    option :description, type: :string, required: true, desc: 'The milestone description'
-    option :scheduledCompletionDate,
-           type: :numeric, required: false, desc: 'The scheduled completion date - Unix time format'
-    def update
-      body = EmassClient::MilestonesGet.new
-      body.milestone_id = options[:milestoneId]
-      body.description = options[:description]
-      body.scheduled_completion_date = options[:scheduledCompletionDate]
-      body_array = Array.new(1, body)
-      begin
-        # Get milestones in one or many poa&m items in a system
-        result = EmassClient::MilestonesApi
-                 .new
-                 .update_milestone_by_system_id_and_poam_id(options[:systemId], options[:poamId], body_array)
-        puts to_output_hash(result).green
-      rescue EmassClient::ApiError => e
-        puts 'Exception when calling MilestonesApi->update_milestone_by_system_id_and_poam_id'.red
-        puts to_output_hash(e)
-      end
-    end
-  end
-  # Update one or many artifacts for a system (this implementation only updates one artifact per each execution)
-  #
-  # Endpoint:
-  #    /api/systems/{systemId}/artifacts - Put (update) one or many artifacts for a system
-  class Artifacts < SubCommandBase
-    def self.exit_on_failure?
-      true
-    end
-    desc 'update', 'Updates artifacts for a system with provided entries'
-    long_desc Help.text(:artifacts_put_mapper)
-    # Required parameters/fields
-    option :systemId, type: :numeric, required: true, desc: 'A numeric value representing the system identification'
-    option :filename, type: :string, required: true, desc: 'Artifact file name to be updated'
-    option :type,
-           type: :string, required: true,
-           enum: ['Procedure', 'Diagram', 'Policy', 'Labor', 'Document',
-                  'Image', 'Other', 'Scan Result', 'Auditor Report']
-    option :category, type: :string, required: true, enum: ['Implementation Guidance', 'Evidence']
-    option :isTemplate, type: :boolean, required: false, default: false, desc: 'BOOLEAN - true or false.'
-    # NOTE: compress is a required parameter, however Thor does not allow a boolean type to be required because it
-    # automatically creates a --no-isTemplate option for isTemplate=false
-    # Optional fields
-    option :description, type: :string, required: false, desc: 'Artifact description'
-    option :refPageNumber, type: :string, required: false, desc: 'Artifact reference page number'
-    option :ccis, type: :string, required: false, desc: 'The system CCIs string numerical value'
-    option :controls,
-           type: :string, required: false,
-           desc: 'Control acronym associated with the artifact. NIST SP 800-53 Revision 4 defined'
-    option :artifactExpirationDate,
-           type: :numeric, required: false, desc: 'Date Artifact expires and requires review - Unix time format'
-    option :lastReviewedDate,
-           type: :numeric, required: false, desc: 'Date Artifact was last reviewed - Unix time format'
-    # rubocop:disable Metrics/CyclomaticComplexity
-    def update
-      body = EmassClient::ArtifactsGet.new
-      body.filename = options[:filename]
-      body.type = options[:type]
-      body.category = options[:category]
-      body.is_template = options[:isTemplate]
-      # Optional fields
-      body.description = options[:description] if options[:description]
-      body.ref_page_number = options[:refPageNumber] if options[:refPageNumber]
-      body.ccis = options[:ccis] if options[:ccis]
-      body.controls = options[:controls] if options[:controls]
-      body.artifact_expiration_date = options[:artifactExpirationDate] if options[:artifactExpirationDate]
-      body.last_reviewed_date = options[:lastReviewedDate] if options[:lastReviewedDate]
-      body_array = Array.new(1, body)
-      begin
-        result = EmassClient::ArtifactsApi.new.update_artifact_by_system_id(options[:systemId], body_array)
-        puts to_output_hash(result).green
-      rescue EmassClient::ApiError => e
-        puts 'Exception when calling ArtifactsApi->update_artifact_by_system_id'.red
-        puts to_output_hash(e)
-      end
-    end
-    # rubocop:enable Metrics/CyclomaticComplexity
-  end
-  class Put < SubCommandBase
-    desc 'controls', 'Update system Controls'
-    subcommand 'controls', Controls
-    desc 'poams', 'Update Plan of Action (POA&M) items for a system'
-    subcommand 'poams', Poams
-    desc 'milestones', 'Update Milestones items for a system'
-    subcommand 'milestones', Milestones
-    desc 'artifacts', 'Put system Artifacts'
-    subcommand 'artifacts', Artifacts
-  end
-end
+# frozen_string_literal: true
+# Hack class that properly formats the CLI help
+class SubCommandBase < Thor
+  include OutputConverters
+  # We do not control the method declaration for the banner
+  # rubocop:disable Style/OptionalBooleanParameter
+  def self.banner(command, _namespace = nil, subcommand = false)
+    # Use the $thor_runner (declared by the Thor CLI framework)
+    # to properly format the help text of sub-sub-commands.
+    # rubocop:disable Style/GlobalVars
+    if ancestors[0].to_s.include? '::Put'
+      "#{basename} #{command.formatted_usage(self, $thor_runner, subcommand)}"
+    else
+      "#{basename} put #{command.formatted_usage(self, $thor_runner, subcommand)}"
+    end
+    # rubocop:enable Style/GlobalVars
+  end
+  # rubocop:enable Style/OptionalBooleanParameter
+end
+# Override thor's long_desc identation behavior
+class Thor
+  module Shell
+    class Basic
+      def print_wrapped(message, _options = {})
+        message = "\n#{message}\n" unless message[0] == "\n"
+        stdout.puts message
+      end
+    end
+  end
+end
+module Emasser
+  CONTROLS_PUT_HELP_MESSAGE = "\nInvoke \"bundle exec exe/emasser put controls help update\" for additional help"
+  POAMS_PUT_HELP_MESSAGE = "\nInvoke \"bundle exec exe/emasser put poams help add\" for additional help"
+  # Update Security Control information of a system for both the Implementation Plan and Risk Assessment.
+  #
+  # Endpoint:
+  #    /api/systems/{systemId}/controls - Update control information in a system for one or many controls
+  # rubocop:disable Style/WordArray
+  class Controls < SubCommandBase
+    def self.exit_on_failure?
+      true
+    end
+    desc 'update', 'Get control information in a system for one or many controls (acronym)'
+    long_desc Help.text(:controls_put_mapper)
+    # Required parameters/fields
+    option :systemId, type: :numeric, required: true, desc: 'A numeric value representing the system identification'
+    option :acronym,  type: :string,  required: true, desc: 'The system acronym(s) e.g "AC-1, AC-2"'
+    option :responsibleEntities, type: :string, required: true,
+                                 desc: 'Description of the responsible entities for the Security Control'
+    option :controlDesignation, type: :string, required: true,
+                                enum: ['Common', 'System-Specific', 'Hybrid'],
+                                desc: 'The Security Control Designation'
+    option :estimatedCompletionDate, type: :numeric, required: true, desc: 'Estimated completion date, Unix time format'
+    option :implementationNarrative, type: :string, required: true, desc: 'Security control comments'
+    # Conditional parameters/fields
+    option :commonControlProvider,
+           type: :string,
+           required: false,
+           enum: ['DoD', 'Component', 'Enclave'],
+           desc: 'Indicate the type of Common Control Provider for an "Inherited" Security Control'
+    option :naJustification,
+           type: :string, required: false,
+           desc: 'Provide justification for Security Controls deemed Not Applicable to the system'
+    option :slcmCriticality,
+           type: :string, required: false,
+           desc: 'Criticality of Security Control regarding SLCM'
+    option :slcmFrequency,
+           type: :string, required: false,
+           enum: ['Constantly', 'Daily', 'Weekly', 'Monthly', 'Quarterly', 'Semi-Annually',
+                  'Annually', 'Every Two Years', 'Every Three Years', 'Undetermined'],
+           desc: 'The System-Level Continuous Monitoring frequency'
+    option :slcmMethod,
+           type: :string, required: false,
+           enum: ['Automated', 'Semi-Automated', 'Manual', 'Undetermined'],
+           desc: 'The System-Level Continuous Monitoring method'
+    option :slcmReporting,
+           type: :string, required: false,
+           desc: 'The System-Level Continuous Monitoring reporting'
+    option :slcmTracking,
+           type: :string, required: false,
+           desc: 'The System-Level Continuous Monitoring tracking'
+    option :slcmComments,
+           type: :string, required: false,
+           desc: 'Additional comments for Security Control regarding SLCM'
+    # Optional parameters/fields
+    option :implementationStatus,
+           type: :string, required: false,
+           enum: ['Planned', 'Implemented', 'Inherited', 'Not Applicable', 'Manually Inherited'],
+           desc: 'Implementation status of the security control for the information system'
+    option :severity,
+           type: :string, required: false,
+           enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High'],
+           desc: 'The security control severity, required for approved items'
+    option :vulnerabiltySummary, type: :string, required: false, desc: 'The security control vulnerability summary'
+    option :recommendations, type: :string, required: false, desc: 'The security control vulnerability recommendation'
+    option :relevanceOfThreat,
+           type: :string, required: false,
+           enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High'],
+           desc: 'The security control vulnerability of threat'
+    option :likelihood,
+           type: :string, required: false,
+           enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High'],
+           desc: 'The security control likelihood of vulnerability to threats'
+    option :impact,
+           type: :string, required: false,
+           enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High'],
+           desc: 'The security control vulnerability impact'
+    option :impactDescription, type: :string, required: false, desc: 'Description of the security control impact'
+    option :residualRiskLevel,
+           type: :string, required: false,
+           enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High'],
+           desc: 'The security control risk level'
+    option :testMethod,
+           type: :string, required: false,
+           enum: ['Test', 'Interview', 'Examine', 'Test, Interview', 'Test, Examine',
+                  'Interview, Examine', 'Test, Interview, Examine'],
+           desc: 'Assessment method/combination that determines if the security requirements are implemented correctly'
+    # rubocop:disable Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
+    def update
+      # Required fields
+      body = EmassClient::ControlsGet.new
+      body.acronym = options[:acronym]
+      body.responsible_entities = options[:responsibleEntities]
+      body.control_designation = options[:controlDesignation]
+      body.estimated_completion_date = options[:estimatedCompletionDate]
+      body.implementation_narrative = options[:implementationNarrative]
+      process_business_logic(body)
+      # Add optional fields
+      body.severity = options[:severity] if options[:severity]
+      body.vulnerabilty_summary = options[:vulnerabiltySummary] if options[:vulnerabiltySummary]
+      body.recommendations = options[:recommendations] if options[:recommendations]
+      body.relevance_of_threat = options[:relevanceOfThreat] if options[:relevanceOfThreat]
+      body.likelihood = options[:likelihood] if options[:likelihood]
+      body.impact = options[:impact] if options[:impact]
+      body.impact_description = options[:impactDescription] if options[:impactDescription]
+      body.residual_risk_level = options[:residualRiskLevel] if options[:residualRiskLevel]
+      body.test_method = options[:testMethod] if options[:testMethod]
+      body_array = Array.new(1, body)
+      begin
+        result = EmassClient::ControlsApi.new.update_control_by_system_id(options[:systemId], body_array)
+        puts to_output_hash(result).green
+      rescue EmassClient::ApiError => e
+        puts 'Exception when calling ControlsApi->update_control_by_system_id'.red
+        puts to_output_hash(e)
+      end
+    end
+    # rubocop:enable Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
+    # rubocop:disable Style/CaseLikeIf, Style/StringLiterals, Metrics/BlockLength, Metrics/CyclomaticComplexity
+    no_commands do
+      # rubocop:disable Metrics/PerceivedComplexity, Style/GuardClause
+      def process_business_logic(body)
+        # Conditional fields based on implementationStatus content
+        # unless executes code if conditional is false
+        unless options[:implementationStatus].nil?
+          body.implementation_status = options[:implementationStatus]
+          if options[:implementationStatus] == "Planned" || options[:implementationStatus] == "Implemented"
+            if options[:responsibleEntities].nil? || options[:slcmCriticality].nil? ||
+               options[:slcmFrequency].nil? || options[:slcmMethod].nil? ||
+               options[:slcmReporting].nil? || options[:slcmTracking].nil? || options[:slcmComments].nil?
+              puts 'Missing one of these parameters/fields:'.red
+              puts '  responsibleEntities, slcmCriticality, slcmFrequency,'.red
+              puts '  slcmMethod,slcmReporting, slcmTracking, slcmComments'.red
+              puts CONTROLS_PUT_HELP_MESSAGE.yellow
+              exit
+            else
+              body.responsible_entities = options[:responsibleEntities]
+              body.slcm_criticality = options[:slcmCriticality]
+              body.slcm_frequency = options[:slcmFrequency]
+              body.slcm_method = options[:slcmMethod]
+              body.slcm_reporting = options[:slcmReporting]
+              body.slcm_tracking = options[:slcmTracking]
+              body.slcm_comments = options[:slcmComments]
+            end
+          elsif options[:implementationStatus] == 'Not Applicable'
+            if options[:naJustification].nil? || options[:responsibleEntities].nil?
+              puts 'Missing one of these parameters/fields:'.red
+              puts '  naJustification, responsibleEntities'.red
+              puts CONTROLS_PUT_HELP_MESSAGE.yellow
+              exit
+            else
+              body.slcm_reporting = options[:naJustification]
+              body.responsible_entities = options[:responsibleEntities]
+            end
+          elsif options[:implementationStatus] == 'Manually Inherited'
+            if options[:commonControlProvider].nil? || options[:responsibleEntities].nil? ||
+               options[:slcmCriticality].nil? || options[:slcmFrequency].nil? || options[:slcmMethod].nil? ||
+               options[:slcmReporting].nil? || options[:slcmTracking].nil? || options[:slcmComments].nil?
+              puts 'Missing one of these parameters/fields:'.red
+              puts '  commonControlProvider, responsibleEntities, slcmCriticality,'.red
+              puts '  slcmFrequency, slcmMethod, slcmReporting, slcmTracking, slcmComments'.red
+              puts CONTROLS_PUT_HELP_MESSAGE.yellow
+              exit
+            else
+              body.common_control_provider = options[:commonControlProvider]
+              body.responsible_entities = options[:responsibleEntities]
+              body.slcm_criticality = options[:slcmCriticality]
+              body.slcm_frequency = options[:slcmFrequency]
+              body.slcm_method = options[:slcmMethod]
+              body.slcm_reporting = options[:slcmReporting]
+              body.slcm_tracking = options[:slcmTracking]
+              body.slcm_comments = options[:slcmComments]
+            end
+          elsif options[:implementationStatus] == 'Inherited'
+            if options[:commonControlProvider].nil?
+              puts 'When implementationStatus value is "Inherited" only the following fields are updated:'.red
+              puts '    controlDesignation and commonControlProvider'.red
+              puts 'Missing the commonControlProvider field'.red
+              puts CONTROLS_PUT_HELP_MESSAGE.yellow
+              exit
+            else
+              body.common_control_provider = options[:commonControlProvider]
+            end
+          end
+        end
+      end
+      # rubocop:enable Metrics/PerceivedComplexity, Style/GuardClause
+    end
+    # rubocop:enable Style/CaseLikeIf, Style/StringLiterals, Metrics/BlockLength, Metrics/CyclomaticComplexity
+  end
+  # rubocop:enable Style/WordArray
+  # Update Plan of Action (POA&M) items to a system.
+  #
+  # Endpoint:
+  #   /api/systems/{systemId}/poams - Update one or many poa&m items in a system
+  class Poams < SubCommandBase
+    def self.exit_on_failure?
+      true
+    end
+    # Update a POAM -----------------------------------------------------------
+    #
+    # The following fields are required based on the contents of the status field
+    # status          Required Fields
+    # -------------------------------------------------------------------------
+    # Risk Accepted   comments, resources
+    # Ongoing         scheduledCompletionDate, resources, milestones (at least 1)
+    # Completed       scheduledCompletionDate, comments, resources,
+    #                 completionDate, milestones (at least 1)
+    # Not Applicable  POAM can not be created
+    #--------------------------------------------------------------------------
+    #
+    # If a POC email is supplied, the application will attempt to locate a user
+    # already registered within the application and pre-populate any information
+    # not explicitly supplied in the request. If no such user is found, these
+    # fields are required within the request.
+    # pocOrganization, pocFirstName, pocLastName, pocEmail, pocPhoneNumber
+    desc 'update', 'Update one or many POA&M items in a system'
+    long_desc Help.text(:poam_put_mapper)
+    # Required parameters/fields
+    option :systemId, type: :numeric, required: true, desc: 'A numeric value representing the system identification'
+    option :poamId, type: :numeric, required: true, desc: 'A numeric value representing the poam identification'
+    # option :displayPoamId,
+    #        type: :numeric, required: true,
+    #        desc: 'Globally unique identifier for individual POA&M Items, seen on the front-end as "ID"'
+    option :status, type: :string, required: true, enum: ['Ongoing', 'Risk Accepted', 'Completed', 'Not Applicable']
+    option :vulnerabilityDescription, type: :string, required: true, desc: 'POA&M vulnerability description'
+    option :sourceIdentVuln,
+           type: :string, required: true, desc: 'Source that identifies the vulnerability'
+    option :pocOrganization, type: :string, required: true, desc: 'Organization/Office represented'
+    option :resources, type: :string, required: true, desc: 'List of resources used'
+    # Conditional parameters/fields
+    option :milestone,
+           type: :hash, required: false, desc: 'key:values are: milestoneId, description and scheduledCompletionDate'
+    option :pocFirstName, type: :string, required: false, desc: 'First name of POC'
+    option :pocLastName, type: :string, required: false, desc: 'Last name of POC.'
+    option :pocEmail, type: :string, required: false, desc: 'Email address of POC'
+    option :pocPhoneNumber, type: :string, required: false, desc: 'Phone number of POC (area code) ***-**** format'
+    option :severity, type: :string, required: false, enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High']
+    option :scheduledCompletionDate,
+           type: :numeric, required: false, desc: 'The scheduled completion date - Unix time format'
+    option :completionDate,
+           type: :numeric, required: false, desc: 'The schedule completion date - Unix time format'
+    option :comments, type: :string, required: false, desc: 'Comments for completed and risk accepted POA&M items'
+    option :isActive, type: :boolean, required: false, default: false, desc: 'BOOLEAN - true or false.'
+    # Optional parameters/fields
+    option :externalUid, type: :string, required: false, desc: 'External ID associated with the POA&M'
+    option :controlAcronym, type: :string, required: false, desc: 'The system acronym(s) e.g "AC-1, AC-2"'
+    option :cci, type: :string, required: false, desc: 'The system CCIS string numerical value'
+    option :securityChecks, type: :string, required: false, desc: 'Security Checks that are associated with the POA&M'
+    option :rawSeverity, type: :string, required: false, enum: %w[I II III]
+    option :relevanceOfThreat,
+           type: :string, required: false, enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High']
+    option :likelihood, type: :string, required: false, enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High']
+    option :impact, type: :string, required: false, desc: 'Description of Security Control’s impact'
+    option :impactDescription, type: :string, required: false, desc: 'Description of the security control impact'
+    option :residualRiskLevel,
+           type: :string, required: false, enum: ['Very Low', 'Low', 'Moderate', 'High', 'Very High']
+    option :recommendations, type: :string, required: false, desc: 'Recomendations'
+    option :mitigation, type: :string, required: false, desc: 'Mitigation explanation'
+    # rubocop:disable Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
+    def update
+      # Required fields
+      body = EmassClient::PoamGet.new
+      body.poam_id = options[:poamId]
+      body.status = options[:status]
+      body.vulnerability_description = options[:vulnerabilityDescription]
+      body.source_ident_vuln = options[:sourceIdentVuln]
+      body.poc_organization = options[:pocOrganization]
+      body.resources = options[:resources]
+      process_business_logic(body)
+      # Add conditional fields
+      body.poc_first_name = options[:pocFirstName] if options[:pocFirstName]
+      body.poc_last_name = options[:pocLastName] if options[:pocLastName]
+      body.poc_email = options[:pocEmail] if options[:pocEmail]
+      body.poc_phone_number = options[:pocPhoneNumber] if options[:pocPhoneNumber]
+      body.severity = options[:severity] if options[:severity]
+      # Add optional fields
+      body.external_uid = options[:externalUid] if options[:externalUid]
+      body.control_acronym = options[:controlAcronym] if options[:controlAcronym]
+      body.cci = options[:cci] if options[:cci]
+      body.security_checks = options[:securityChecks] if options[:securityChecks]
+      body.raw_severity = options[:rawSeverity] if options[:rawSeverity]
+      body.relevance_of_threat = options[:relevanceOfThreat] if options[:relevanceOfThreat]
+      body.likelihood = options[:likelihood] if options[:likelihood]
+      body.impact = options[:impact] if options[:impact]
+      body.impact_description = options[:impactDescription] if options[:impactDescription]
+      body.residual_risk_level = options[:residualRiskLevel] if options[:residualRiskLevel]
+      body.recommendations = options[:recommendations] if options[:recommendations]
+      body.mitigation = options[:mitigation] if options[:mitigation]
+      body_array = Array.new(1, body)
+      begin
+        result = EmassClient::POAMApi.new.update_poam_by_system_id(options[:systemId], body_array)
+        puts to_output_hash(result).green
+      rescue EmassClient::ApiError => e
+        puts 'Exception when calling POAMApi->update_poam_by_system_id'.red
+        puts to_output_hash(e)
+      end
+    end
+    # rubocop:enable Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
+    # rubocop:disable Metrics/AbcSize, Metrics/BlockLength, Metrics/MethodLength, Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
+    no_commands do
+      def process_business_logic(body)
+        #-----------------------------------------------------------------------------
+        # Conditional fields based on the status field values
+        # "Risk Accepted"   comments, resources
+        # "Ongoing"         scheduledCompletionDate, resources, milestones (at least 1)
+        # "Completed"       scheduledCompletionDate, comments, resources,
+        #                   completionDate, milestones (at least 1)
+        # "Not Applicable"  POAM can not be created
+        #-----------------------------------------------------------------------------
+        # rubocop:disable Style/CaseLikeIf, Style/StringLiterals
+        if options[:status] == "Risk Accepted"
+          if options[:comments].nil?
+            puts 'When status = "Risk Accepted" the following parameters/fields are required:'.red
+            puts '    comments'.red
+            puts POAMS_PUT_HELP_MESSAGE.yellow
+            exit
+          elsif !(options[:scheduledCompletionDate].nil? && options[:milestone].nil?)
+            puts 'When status = "Risk Accepted" POA&M Item CAN NOT be saved with the following parameters/fields:'.red
+            puts '    scheduledCompletionDate, or milestone'.red
+            puts POAMS_PUT_HELP_MESSAGE.yellow
+            exit
+          else
+            body.comments = options[:comments]
+          end
+        elsif options[:status] == "Ongoing"
+          if options[:scheduledCompletionDate].nil? || options[:milestone].nil?
+            puts 'When status = "Ongoing" the following parameters/fields are required:'.red
+            puts '    scheduledCompletionDate, milestone'.red
+            print_milestone_help
+            puts POAMS_PUT_HELP_MESSAGE.yellow
+            exit
+          elsif options[:milestone]["description"].nil? || options[:milestone]["scheduledCompletionDate"].nil?
+            puts 'Missing milstone parameters/fields'.red
+            print_milestone_help
+            exit
+          else
+            body.scheduled_completion_date = options[:scheduledCompletionDate]
+            milestone = EmassClient::MilestonesRequiredPut.new
+            milestone.milestone_id = options[:milestone]["milestoneId"] if options[:milestone]["milestoneId"]
+            milestone.description = options[:milestone]["description"]
+            milestone.scheduled_completion_date = options[:milestone]["scheduledCompletionDate"]
+            milestone_array = Array.new(1, milestone)
+            body.milestones = milestone_array
+          end
+        elsif options[:status] == "Completed"
+          if options[:scheduledCompletionDate].nil? || options[:comments].nil? ||
+             options[:completionDate].nil? || options[:milestone].nil?
+            puts 'Missing one of these parameters/fields:'.red
+            puts '    scheduledCompletionDate, comments, completionDate, or milestone'.red
+            print_milestone_help
+            puts POAMS_PUT_HELP_MESSAGE.yellow
+            exit
+          else
+            body.scheduled_completion_date = options[:scheduledCompletionDate]
+            body.comments = options[:comments]
+            body.completion_date = options[:completionDate]
+            milestone = EmassClient::MilestonesRequiredPut.new
+            milestone.milestone_id = options[:milestone]["milestoneId"] if options[:milestone]["milestoneId"]
+            milestone.description = options[:milestone]["description"]
+            milestone.scheduled_completion_date = options[:milestone]["scheduledCompletionDate"]
+            milestone_array = Array.new(1, milestone)
+            body.milestones = milestone_array
+          end
+        end
+        # POC checks: If any poc information is provided all POC fields are required
+        if options[:pocFirstName]
+          if options[:pocLastName].nil? || options[:pocEmail].nil? || options[:pocPhoneNumber].nil?
+            puts 'If a POC first name is given, then all POC information must be entered:'.red
+            puts '    pocLastName, pocEmail, pocPhoneNumber'.red
+            puts POAMS_PUT_HELP_MESSAGE.yellow
+            exit
+          end
+        elsif options[:pocLastName]
+          if options[:pocFirstName].nil? || options[:pocEmail].nil? || options[:pocPhoneNumber].nil?
+            puts 'If a POC last name is given, then all POC information must be entered:'.red
+            puts '    pocFirstName, pocEmail, pocPhoneNumber'.red
+            puts POAMS_PUT_HELP_MESSAGE.yellow
+            exit
+          end
+        elsif options[:pocEmail]
+          if options[:pocFirstName].nil? || options[:pocLastName].nil? || options[:pocPhoneNumber].nil?
+            puts 'If a POC email is given, then all POC information must be entered:'.red
+            puts '    pocFirstName, pocLastName, pocPhoneNumber'.red
+            puts POAMS_PUT_HELP_MESSAGE.yellow
+            exit
+          end
+        elsif options[:pocPhoneNumber]
+          if options[:pocFirstName].nil? || options[:pocLastName].nil? || options[:pocEmail].nil?
+            puts 'If a POC phone number is given, then all POC information must be entered:'.red
+            puts '    pocFirstName, pocLastName, pocEmail'.red
+            puts POAMS_PUT_HELP_MESSAGE.yellow
+            exit
+          end
+        end
+        # rubocop:enable Style/CaseLikeIf, Style/StringLiterals
+      end
+      def print_milestone_help
+        puts 'Milestone format is:'.yellow
+        puts '    --milestone milestoneId:[value] description:"[value]" scheduledCompletionDate:"[value]"'.yellow
+        puts 'The milestoneId:[value] is optional, if not provided a new milestone is created'.yellow
+      end
+    end
+    # rubocop:enable Metrics/AbcSize, Metrics/BlockLength, Metrics/MethodLength, Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
+  end
+  # Update Milestones items to a system.
+  #
+  # Endpoint:
+  #   /api/systems/{systemId}/poams/{poamId}/milestones - Update milestones in one or many poa&m items in a system
+  class Milestones < SubCommandBase
+    def self.exit_on_failure?
+      true
+    end
+    desc 'update', 'Update milestone(s) for given specified system and poam'
+    long_desc Help.text(:milestone_put_mapper)
+    # Required parameters/fields
+    option :systemId, type: :numeric, required: true, desc: 'A numeric value representing the system identification'
+    option :poamId, type: :numeric, required: true, desc: 'A numeric value representing the poam identification'
+    option :milestoneId,
+           type: :numeric, required: true, desc: 'A numeric value representing the milestone identification'
+    option :description, type: :string, required: true, desc: 'The milestone description'
+    option :scheduledCompletionDate,
+           type: :numeric, required: false, desc: 'The scheduled completion date - Unix time format'
+    def update
+      body = EmassClient::MilestonesGet.new
+      body.milestone_id = options[:milestoneId]
+      body.description = options[:description]
+      body.scheduled_completion_date = options[:scheduledCompletionDate]
+      body_array = Array.new(1, body)
+      begin
+        # Get milestones in one or many poa&m items in a system
+        result = EmassClient::MilestonesApi
+                 .new
+                 .update_milestone_by_system_id_and_poam_id(options[:systemId], options[:poamId], body_array)
+        puts to_output_hash(result).green
+      rescue EmassClient::ApiError => e
+        puts 'Exception when calling MilestonesApi->update_milestone_by_system_id_and_poam_id'.red
+        puts to_output_hash(e)
+      end
+    end
+  end
+  # Update one or many artifacts for a system (this implementation only updates one artifact per each execution)
+  #
+  # Endpoint:
+  #    /api/systems/{systemId}/artifacts - Put (update) one or many artifacts for a system
+  class Artifacts < SubCommandBase
+    def self.exit_on_failure?
+      true
+    end
+    desc 'update', 'Updates artifacts for a system with provided entries'
+    long_desc Help.text(:artifacts_put_mapper)
+    # Required parameters/fields
+    option :systemId, type: :numeric, required: true, desc: 'A numeric value representing the system identification'
+    option :filename, type: :string, required: true, desc: 'Artifact file name to be updated'
+    option :type,
+           type: :string, required: true,
+           enum: ['Procedure', 'Diagram', 'Policy', 'Labor', 'Document',
+                  'Image', 'Other', 'Scan Result', 'Auditor Report']
+    option :category, type: :string, required: true, enum: ['Implementation Guidance', 'Evidence']
+    option :isTemplate, type: :boolean, required: false, default: false, desc: 'BOOLEAN - true or false.'
+    # NOTE: compress is a required parameter, however Thor does not allow a boolean type to be required because it
+    # automatically creates a --no-isTemplate option for isTemplate=false
+    # Optional fields
+    option :description, type: :string, required: false, desc: 'Artifact description'
+    option :refPageNumber, type: :string, required: false, desc: 'Artifact reference page number'
+    option :ccis, type: :string, required: false, desc: 'The system CCIs string numerical value'
+    option :controls,
+           type: :string, required: false,
+           desc: 'Control acronym associated with the artifact. NIST SP 800-53 Revision 4 defined'
+    option :artifactExpirationDate,
+           type: :numeric, required: false, desc: 'Date Artifact expires and requires review - Unix time format'
+    option :lastReviewedDate,
+           type: :numeric, required: false, desc: 'Date Artifact was last reviewed - Unix time format'
+    # rubocop:disable Metrics/CyclomaticComplexity
+    def update
+      body = EmassClient::ArtifactsGet.new
+      body.filename = options[:filename]
+      body.type = options[:type]
+      body.category = options[:category]
+      body.is_template = options[:isTemplate]
+      # Optional fields
+      body.description = options[:description] if options[:description]
+      body.ref_page_number = options[:refPageNumber] if options[:refPageNumber]
+      body.ccis = options[:ccis] if options[:ccis]
+      body.controls = options[:controls] if options[:controls]
+      body.artifact_expiration_date = options[:artifactExpirationDate] if options[:artifactExpirationDate]
+      body.last_reviewed_date = options[:lastReviewedDate] if options[:lastReviewedDate]
+      body_array = Array.new(1, body)
+      begin
+        result = EmassClient::ArtifactsApi.new.update_artifact_by_system_id(options[:systemId], body_array)
+        puts to_output_hash(result).green
+      rescue EmassClient::ApiError => e
+        puts 'Exception when calling ArtifactsApi->update_artifact_by_system_id'.red
+        puts to_output_hash(e)
+      end
+    end
+    # rubocop:enable Metrics/CyclomaticComplexity
+  end
+  class Put < SubCommandBase
+    desc 'controls', 'Update system Controls'
+    subcommand 'controls', Controls
+    desc 'poams', 'Update Plan of Action (POA&M) items for a system'
+    subcommand 'poams', Poams
+    desc 'milestones', 'Update Milestones items for a system'
+    subcommand 'milestones', Milestones
+    desc 'artifacts', 'Put system Artifacts'
+    subcommand 'artifacts', Artifacts
+  end
+end