npm - ccs-digitalmarketplace-frameworks - Versions diffs - 5.1.21 → 5.1.23 - Mend

ccs-digitalmarketplace-frameworks 5.1.21 → 5.1.23

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/frameworks/g-cloud-15/questions/services/configurationAndChangeManagementType.yml CHANGED Viewed

@@ -8,11 +8,13 @@ question_advice: >
 depends:
   - "on": lot
     being:
+      - iaas-and-paas
+      - isaas
       - saas
 type: radios
 options:
-  - label: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
+  - label: Complies with a recognised standard, for example CSA CCM v4.0 or SSAE-18 / ISAE 3402
     value: recognised_standard
   - label: Supplier-defined controls
     value: supplier_defined

package/frameworks/g-cloud-15/questions/services/incidentManagementType.yml CHANGED Viewed

@@ -8,11 +8,13 @@ question_advice: >
 depends:
   - "on": lot
     being:
+      - iaas-and-paas
+      - isaas
       - saas
 type: radios
 options:
-  - label: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
+  - label: Complies with a recognised standard, for example, CSA CCM v4.0 or ISO/IEC 27035:2011 or SSAE-18 / ISAE 3402
     value: recognised_standard
   - label: Supplier-defined controls
     value: supplier_defined

package/frameworks/g-cloud-15/questions/services/multiqSecurityGovernance.yml CHANGED Viewed

@@ -11,6 +11,7 @@ depends:
 type: multiquestion
 questions:
+  - securityCodeOfPractice
   - securityGovernanceAccreditation
   - securityGovernanceStandards
   - securityGovernanceStandardsOther

package/frameworks/g-cloud-15/questions/services/protectiveMonitoringType.yml CHANGED Viewed

@@ -8,11 +8,14 @@ question_advice: >
 depends:
   - "on": lot
     being:
+      - iaas-and-paas
+      - isaas
       - saas
 type: radios
 options:
-  - label: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
+  - label: Complies with a recognised standard, for example CSA CCM v4.0 or SSAE-18 / ISAE 3402
     value: recognised_standard
   - label: Supplier-defined controls
     value: supplier_defined

package/frameworks/g-cloud-15/questions/services/securityCodeOfPractice.yml ADDED Viewed

@@ -0,0 +1,18 @@
+name: Software Security Code of Practice
+question: Does your organisation comply with the recommendations in the Software Security Code of Practice
+question_advice: >
+  Read about the <a
+  href="https://www.gov.uk/government/publications/software-security-code-of-practice/software-security-code-of-practice" target="_blank"
+  rel="noopener noreferrer">Software Security Code of Practice (link opens in a new tab)</a>.
+depends:
+  - "on": lot
+    being:
+      - isaas
+      - saas
+type: boolean
+validations:
+  - name: answer_required
+    message: Please select Yes or No to continue.

package/frameworks/g-cloud-15/questions/services/vulnerabilityManagementType.yml CHANGED Viewed

@@ -8,11 +8,13 @@ question_advice: >
 depends:
   - "on": lot
     being:
+      - iaas-and-paas
+      - isaas
       - saas
 type: radios
 options:
-  - label: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
+  - label: Complies with a recognised standard, for example CSA CCM v4.0 or SSAE-18 / ISAE 3402
     value: recognised_standard
   - label: Supplier-defined controls
     value: supplier_defined

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "ccs-digitalmarketplace-frameworks",
-  "version": "5.1.21",
+  "version": "5.1.23",
   "description": "Data files for Digital Marketplace’s procurement frameworks",
   "repository": {
     "type": "git",