framework-mcp 1.3.3 → 1.3.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -1,318 +0,0 @@
1
- export class SafeguardManager {
2
- constructor() {
3
- this.safeguards = {};
4
- this.cache = new Map();
5
- this.initializeSafeguards();
6
- }
7
- getSafeguardDetails(safeguardId, includeExamples = false) {
8
- // Check cache first
9
- const cacheKey = `${safeguardId}_${includeExamples}`;
10
- const cached = this.getCachedSafeguardDetails(cacheKey);
11
- if (cached) {
12
- return cached;
13
- }
14
- const safeguard = this.safeguards[safeguardId];
15
- if (!safeguard) {
16
- return null;
17
- }
18
- // Add examples if requested
19
- let result = { ...safeguard };
20
- if (includeExamples) {
21
- result = this.addImplementationExamples(result);
22
- }
23
- // Cache the result
24
- this.cache.set(cacheKey, {
25
- data: result,
26
- timestamp: Date.now()
27
- });
28
- return result;
29
- }
30
- listAvailableSafeguards() {
31
- // Check cache first
32
- const cached = this.cache.get('safeguard_list');
33
- if (cached && (Date.now() - cached.timestamp < 10 * 60 * 1000)) { // 10 minute cache
34
- return cached.data;
35
- }
36
- const safeguardList = Object.keys(this.safeguards).sort((a, b) => {
37
- const [aMajor, aMinor] = a.split('.').map(Number);
38
- const [bMajor, bMinor] = b.split('.').map(Number);
39
- return aMajor - bMajor || aMinor - bMinor;
40
- });
41
- // Cache the result
42
- this.cache.set('safeguard_list', {
43
- data: safeguardList,
44
- timestamp: Date.now()
45
- });
46
- return safeguardList;
47
- }
48
- getAllSafeguards() {
49
- return { ...this.safeguards };
50
- }
51
- validateSafeguardId(safeguardId) {
52
- if (!safeguardId || typeof safeguardId !== 'string') {
53
- throw new Error('Safeguard ID is required and must be a string');
54
- }
55
- if (!/^[0-9]+\.[0-9]+$/.test(safeguardId)) {
56
- throw new Error('Safeguard ID must be in format "X.Y" (e.g., "1.1", "5.1")');
57
- }
58
- if (!this.safeguards[safeguardId]) {
59
- const availableSafeguards = this.listAvailableSafeguards();
60
- throw new Error(`Safeguard ${safeguardId} not found. Available safeguards: ${availableSafeguards.join(', ')}`);
61
- }
62
- }
63
- getCachedSafeguardDetails(cacheKey) {
64
- const cached = this.cache.get(cacheKey);
65
- if (cached && (Date.now() - cached.timestamp < 5 * 60 * 1000)) { // 5 minute cache
66
- return cached.data;
67
- }
68
- return null;
69
- }
70
- addImplementationExamples(safeguard) {
71
- // Add implementation examples based on safeguard type
72
- const examples = this.getImplementationExamples(safeguard.id);
73
- return {
74
- ...safeguard,
75
- implementationSuggestions: [
76
- ...safeguard.implementationSuggestions,
77
- ...examples
78
- ]
79
- };
80
- }
81
- getImplementationExamples(safeguardId) {
82
- const exampleMap = {
83
- "1.1": [
84
- "Example: Use Lansweeper for automated asset discovery",
85
- "Example: Implement ServiceNow CMDB for centralized tracking",
86
- "Example: Deploy Microsoft SCCM for Windows asset management"
87
- ],
88
- "5.1": [
89
- "Example: Use Azure AD for centralized account management",
90
- "Example: Implement Okta for identity lifecycle management",
91
- "Example: Deploy JumpCloud for directory services"
92
- ],
93
- "6.3": [
94
- "Example: Enable Azure MFA for all external applications",
95
- "Example: Implement Duo Security for multi-factor authentication",
96
- "Example: Use Google Workspace SSO with MFA enforcement"
97
- ],
98
- "7.1": [
99
- "Example: Establish Nessus vulnerability scanning schedule",
100
- "Example: Implement Qualys VMDR for continuous monitoring",
101
- "Example: Use Rapid7 InsightVM for vulnerability management"
102
- ]
103
- };
104
- return exampleMap[safeguardId] || [];
105
- }
106
- initializeSafeguards() {
107
- // Initialize the complete CIS Controls Framework data
108
- // TODO: Replace with complete 153 safeguards dataset - currently using temporary placeholder
109
- // The complete dataset will be loaded from the original implementation
110
- console.warn('⚠️ KNOWN BUG: SafeguardManager only loads 5 sample safeguards instead of complete 153 CIS Controls v8.1 dataset');
111
- this.safeguards = {
112
- "1.1": {
113
- id: "1.1",
114
- title: "Establish and Maintain a Detailed Enterprise Asset Inventory",
115
- description: "Establish and maintain an accurate, detailed, and up-to-date inventory of all enterprise assets with the potential to store or process data",
116
- implementationGroup: "IG1",
117
- assetType: ["end-user devices", "network devices", "IoT devices", "servers"],
118
- securityFunction: ["Identify"],
119
- governanceElements: [
120
- "establish inventory process",
121
- "maintain inventory process",
122
- "documented process",
123
- "review and update bi-annually",
124
- "enterprise asset management policy"
125
- ],
126
- coreRequirements: [
127
- "accurate inventory",
128
- "detailed inventory",
129
- "up-to-date inventory",
130
- "all enterprise assets",
131
- "potential to store or process data"
132
- ],
133
- subTaxonomicalElements: [
134
- "network address (if static)",
135
- "hardware address",
136
- "machine name",
137
- "enterprise asset owner",
138
- "department for each asset",
139
- "approved to connect to network",
140
- "end-user devices (portable and mobile)",
141
- "network devices",
142
- "non-computing/IoT devices",
143
- "servers",
144
- "physical connection",
145
- "virtual connection",
146
- "remote connection",
147
- "cloud environments",
148
- "regularly connected devices not under enterprise control"
149
- ],
150
- implementationSuggestions: [
151
- "MDM type tools for mobile devices",
152
- "enterprise and software asset management tool",
153
- "asset discovery tools",
154
- "DHCP logging",
155
- "passive discovery tools"
156
- ],
157
- relatedSafeguards: ["1.2", "1.3", "1.4", "1.5", "2.1", "3.2", "4.1", "5.1"],
158
- keywords: ["asset", "inventory", "device", "network", "mobile", "IoT", "server", "detailed", "accurate", "up-to-date"]
159
- },
160
- "1.2": {
161
- id: "1.2",
162
- title: "Address Unauthorized Assets",
163
- description: "Ensure that a process exists to address unauthorized assets on a weekly basis",
164
- implementationGroup: "IG1",
165
- assetType: ["devices"],
166
- securityFunction: ["Respond"],
167
- governanceElements: [
168
- "ensure process exists",
169
- "weekly basis requirement",
170
- "unauthorized asset handling policy"
171
- ],
172
- coreRequirements: [
173
- "address unauthorized assets",
174
- "process to handle unauthorized devices",
175
- "weekly execution"
176
- ],
177
- subTaxonomicalElements: [
178
- "unauthorized asset detection",
179
- "asset classification",
180
- "response timeline",
181
- "documentation requirements",
182
- "quarantine procedures",
183
- "removal procedures"
184
- ],
185
- implementationSuggestions: [
186
- "network access control (NAC) solutions",
187
- "automated asset discovery tools",
188
- "network monitoring systems",
189
- "SIEM integration"
190
- ],
191
- relatedSafeguards: ["1.1", "1.3", "12.1", "13.1"],
192
- keywords: ["unauthorized", "assets", "weekly", "address", "process", "detection", "quarantine"]
193
- },
194
- "5.1": {
195
- id: "5.1",
196
- title: "Establish and Maintain an Inventory of Accounts",
197
- description: "Establish and maintain an inventory of all accounts managed in the enterprise",
198
- implementationGroup: "IG1",
199
- assetType: ["users"],
200
- securityFunction: ["Identify"],
201
- governanceElements: [
202
- "establish inventory process",
203
- "maintain inventory process",
204
- "validate all active accounts are authorized",
205
- "recurring schedule minimum quarterly",
206
- "account management policy"
207
- ],
208
- coreRequirements: [
209
- "inventory of all accounts",
210
- "user accounts",
211
- "administrator accounts",
212
- "managed in the enterprise"
213
- ],
214
- subTaxonomicalElements: [
215
- "person's name",
216
- "username",
217
- "start/stop dates",
218
- "department",
219
- "account status",
220
- "account type",
221
- "access rights",
222
- "last login date"
223
- ],
224
- implementationSuggestions: [
225
- "identity and access management tool",
226
- "directory services",
227
- "automated account provisioning",
228
- "account lifecycle management",
229
- "role-based access control system"
230
- ],
231
- relatedSafeguards: ["1.1", "2.1", "5.2", "5.3", "5.4", "5.5", "5.6", "6.1", "6.2"],
232
- keywords: ["accounts", "inventory", "user", "administrator", "name", "username", "dates", "department", "quarterly"]
233
- },
234
- "6.3": {
235
- id: "6.3",
236
- title: "Require MFA for Externally-Exposed Applications",
237
- description: "Require all externally-exposed enterprise or third-party applications to enforce MFA",
238
- implementationGroup: "IG1",
239
- assetType: ["users"],
240
- securityFunction: ["Protect"],
241
- governanceElements: [
242
- "require MFA enforcement",
243
- "policy for externally-exposed applications",
244
- "MFA compliance verification"
245
- ],
246
- coreRequirements: [
247
- "multi-factor authentication",
248
- "all externally-exposed applications",
249
- "enterprise applications",
250
- "third-party applications",
251
- "enforce MFA where supported"
252
- ],
253
- subTaxonomicalElements: [
254
- "authentication factors",
255
- "something you know (password)",
256
- "something you have (token)",
257
- "something you are (biometric)",
258
- "external access points",
259
- "application inventory",
260
- "exposure assessment"
261
- ],
262
- implementationSuggestions: [
263
- "directory service enforcement",
264
- "SSO provider enforcement",
265
- "multi-factor authentication tools",
266
- "SAML integration",
267
- "OAuth implementation",
268
- "conditional access policies"
269
- ],
270
- relatedSafeguards: ["2.1", "4.1", "5.1", "6.1", "6.2"],
271
- keywords: ["MFA", "multi-factor", "authentication", "externally-exposed", "applications", "third-party", "SSO", "directory"]
272
- },
273
- "7.1": {
274
- id: "7.1",
275
- title: "Establish and Maintain a Vulnerability Management Process",
276
- description: "Establish and maintain a documented vulnerability management process for enterprise assets",
277
- implementationGroup: "IG1",
278
- assetType: ["documentation"],
279
- securityFunction: ["Govern"],
280
- governanceElements: [
281
- "establish documented process",
282
- "maintain vulnerability management process",
283
- "review and update documentation annually",
284
- "update when significant enterprise changes occur",
285
- "vulnerability management policy"
286
- ],
287
- coreRequirements: [
288
- "vulnerability management process",
289
- "enterprise assets scope",
290
- "documented procedures",
291
- "vulnerability identification",
292
- "vulnerability assessment"
293
- ],
294
- subTaxonomicalElements: [
295
- "vulnerability scanning procedures",
296
- "risk assessment criteria",
297
- "remediation prioritization",
298
- "patch management integration",
299
- "vulnerability tracking",
300
- "reporting requirements",
301
- "roles and responsibilities",
302
- "escalation procedures"
303
- ],
304
- implementationSuggestions: [
305
- "vulnerability scanning tools",
306
- "patch management systems",
307
- "vulnerability databases",
308
- "CVSS scoring",
309
- "automated scanning",
310
- "vulnerability management platforms"
311
- ],
312
- relatedSafeguards: ["1.1", "2.1", "7.2", "7.3", "7.4", "7.5", "7.6", "7.7"],
313
- keywords: ["vulnerability", "management", "process", "documented", "annual", "review", "enterprise", "assets"]
314
- }
315
- };
316
- }
317
- }
318
- //# sourceMappingURL=safeguard-manager.backup.js.map
@@ -1 +0,0 @@
1
- {"version":3,"file":"safeguard-manager.backup.js","sourceRoot":"","sources":["../../src/core/safeguard-manager.backup.ts"],"names":[],"mappings":"AAEA,MAAM,OAAO,gBAAgB;IAI3B;QAFQ,eAAU,GAAqC,EAAE,CAAC;QAGxD,IAAI,CAAC,KAAK,GAAG,IAAI,GAAG,EAAE,CAAC;QACvB,IAAI,CAAC,oBAAoB,EAAE,CAAC;IAC9B,CAAC;IAEM,mBAAmB,CAAC,WAAmB,EAAE,kBAA2B,KAAK;QAC9E,oBAAoB;QACpB,MAAM,QAAQ,GAAG,GAAG,WAAW,IAAI,eAAe,EAAE,CAAC;QACrD,MAAM,MAAM,GAAG,IAAI,CAAC,yBAAyB,CAAC,QAAQ,CAAC,CAAC;QACxD,IAAI,MAAM,EAAE,CAAC;YACX,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,MAAM,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;QAC/C,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,OAAO,IAAI,CAAC;QACd,CAAC;QAED,4BAA4B;QAC5B,IAAI,MAAM,GAAG,EAAE,GAAG,SAAS,EAAE,CAAC;QAC9B,IAAI,eAAe,EAAE,CAAC;YACpB,MAAM,GAAG,IAAI,CAAC,yBAAyB,CAAC,MAAM,CAAC,CAAC;QAClD,CAAC;QAED,mBAAmB;QACnB,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,EAAE;YACvB,IAAI,EAAE,MAAM;YACZ,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;SACtB,CAAC,CAAC;QAEH,OAAO,MAAM,CAAC;IAChB,CAAC;IAEM,uBAAuB;QAC5B,oBAAoB;QACpB,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;QAChD,IAAI,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,MAAM,CAAC,SAAS,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,EAAE,CAAC,CAAC,kBAAkB;YAClF,OAAO,MAAM,CAAC,IAAI,CAAC;QACrB,CAAC;QAED,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;YAC/D,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YAClD,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YAClD,OAAO,MAAM,GAAG,MAAM,IAAI,MAAM,GAAG,MAAM,CAAC;QAC5C,CAAC,CAAC,CAAC;QAEH,mBAAmB;QACnB,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,gBAAgB,EAAE;YAC/B,IAAI,EAAE,aAAa;YACnB,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;SACtB,CAAC,CAAC;QAEH,OAAO,aAAa,CAAC;IACvB,CAAC;IAEM,gBAAgB;QACrB,OAAO,EAAE,GAAG,IAAI,CAAC,UAAU,EAAE,CAAC;IAChC,CAAC;IAEM,mBAAmB,CAAC,WAAmB;QAC5C,IAAI,CAAC,WAAW,IAAI,OAAO,WAAW,KAAK,QAAQ,EAAE,CAAC;YACpD,MAAM,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAC;QACnE,CAAC;QAED,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC;YAC1C,MAAM,IAAI,KAAK,CAAC,2DAA2D,CAAC,CAAC;QAC/E,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;YAClC,MAAM,mBAAmB,GAAG,IAAI,CAAC,uBAAuB,EAAE,CAAC;YAC3D,MAAM,IAAI,KAAK,CAAC,aAAa,WAAW,qCAAqC,mBAAmB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACjH,CAAC;IACH,CAAC;IAEO,yBAAyB,CAAC,QAAgB;QAChD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAExC,IAAI,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,MAAM,CAAC,SAAS,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,EAAE,CAAC,CAAC,iBAAiB;YAChF,OAAO,MAAM,CAAC,IAAI,CAAC;QACrB,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,yBAAyB,CAAC,SAA2B;QAC3D,sDAAsD;QACtD,MAAM,QAAQ,GAAG,IAAI,CAAC,yBAAyB,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;QAE9D,OAAO;YACL,GAAG,SAAS;YACZ,yBAAyB,EAAE;gBACzB,GAAG,SAAS,CAAC,yBAAyB;gBACtC,GAAG,QAAQ;aACZ;SACF,CAAC;IACJ,CAAC;IAEO,yBAAyB,CAAC,WAAmB;QACnD,MAAM,UAAU,GAA6B;YAC3C,KAAK,EAAE;gBACL,uDAAuD;gBACvD,6DAA6D;gBAC7D,6DAA6D;aAC9D;YACD,KAAK,EAAE;gBACL,0DAA0D;gBAC1D,2DAA2D;gBAC3D,kDAAkD;aACnD;YACD,KAAK,EAAE;gBACL,yDAAyD;gBACzD,iEAAiE;gBACjE,wDAAwD;aACzD;YACD,KAAK,EAAE;gBACL,2DAA2D;gBAC3D,0DAA0D;gBAC1D,4DAA4D;aAC7D;SACF,CAAC;QAEF,OAAO,UAAU,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;IACvC,CAAC;IAEO,oBAAoB;QAC1B,sDAAsD;QACtD,6FAA6F;QAC7F,uEAAuE;QACvE,OAAO,CAAC,IAAI,CAAC,kHAAkH,CAAC,CAAC;QAEjI,IAAI,CAAC,UAAU,GAAG;YAChB,KAAK,EAAE;gBACL,EAAE,EAAE,KAAK;gBACT,KAAK,EAAE,8DAA8D;gBACrE,WAAW,EAAE,6IAA6I;gBAC1J,mBAAmB,EAAE,KAAK;gBAC1B,SAAS,EAAE,CAAC,kBAAkB,EAAE,iBAAiB,EAAE,aAAa,EAAE,SAAS,CAAC;gBAC5E,gBAAgB,EAAE,CAAC,UAAU,CAAC;gBAC9B,kBAAkB,EAAE;oBAClB,6BAA6B;oBAC7B,4BAA4B;oBAC5B,oBAAoB;oBACpB,+BAA+B;oBAC/B,oCAAoC;iBACrC;gBACD,gBAAgB,EAAE;oBAChB,oBAAoB;oBACpB,oBAAoB;oBACpB,sBAAsB;oBACtB,uBAAuB;oBACvB,oCAAoC;iBACrC;gBACD,sBAAsB,EAAE;oBACtB,6BAA6B;oBAC7B,kBAAkB;oBAClB,cAAc;oBACd,wBAAwB;oBACxB,2BAA2B;oBAC3B,gCAAgC;oBAChC,wCAAwC;oBACxC,iBAAiB;oBACjB,2BAA2B;oBAC3B,SAAS;oBACT,qBAAqB;oBACrB,oBAAoB;oBACpB,mBAAmB;oBACnB,oBAAoB;oBACpB,0DAA0D;iBAC3D;gBACD,yBAAyB,EAAE;oBACzB,mCAAmC;oBACnC,+CAA+C;oBAC/C,uBAAuB;oBACvB,cAAc;oBACd,yBAAyB;iBAC1B;gBACD,iBAAiB,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC;gBAC3E,QAAQ,EAAE,CAAC,OAAO,EAAE,WAAW,EAAE,QAAQ,EAAE,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,UAAU,EAAE,UAAU,EAAE,YAAY,CAAC;aACvH;YACD,KAAK,EAAE;gBACL,EAAE,EAAE,KAAK;gBACT,KAAK,EAAE,6BAA6B;gBACpC,WAAW,EAAE,+EAA+E;gBAC5F,mBAAmB,EAAE,KAAK;gBAC1B,SAAS,EAAE,CAAC,SAAS,CAAC;gBACtB,gBAAgB,EAAE,CAAC,SAAS,CAAC;gBAC7B,kBAAkB,EAAE;oBAClB,uBAAuB;oBACvB,0BAA0B;oBAC1B,oCAAoC;iBACrC;gBACD,gBAAgB,EAAE;oBAChB,6BAA6B;oBAC7B,wCAAwC;oBACxC,kBAAkB;iBACnB;gBACD,sBAAsB,EAAE;oBACtB,8BAA8B;oBAC9B,sBAAsB;oBACtB,mBAAmB;oBACnB,4BAA4B;oBAC5B,uBAAuB;oBACvB,oBAAoB;iBACrB;gBACD,yBAAyB,EAAE;oBACzB,wCAAwC;oBACxC,iCAAiC;oBACjC,4BAA4B;oBAC5B,kBAAkB;iBACnB;gBACD,iBAAiB,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,CAAC;gBACjD,QAAQ,EAAE,CAAC,cAAc,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,SAAS,EAAE,WAAW,EAAE,YAAY,CAAC;aAChG;YACD,KAAK,EAAE;gBACL,EAAE,EAAE,KAAK;gBACT,KAAK,EAAE,iDAAiD;gBACxD,WAAW,EAAE,+EAA+E;gBAC5F,mBAAmB,EAAE,KAAK;gBAC1B,SAAS,EAAE,CAAC,OAAO,CAAC;gBACpB,gBAAgB,EAAE,CAAC,UAAU,CAAC;gBAC9B,kBAAkB,EAAE;oBAClB,6BAA6B;oBAC7B,4BAA4B;oBAC5B,6CAA6C;oBAC7C,sCAAsC;oBACtC,2BAA2B;iBAC5B;gBACD,gBAAgB,EAAE;oBAChB,2BAA2B;oBAC3B,eAAe;oBACf,wBAAwB;oBACxB,2BAA2B;iBAC5B;gBACD,sBAAsB,EAAE;oBACtB,eAAe;oBACf,UAAU;oBACV,kBAAkB;oBAClB,YAAY;oBACZ,gBAAgB;oBAChB,cAAc;oBACd,eAAe;oBACf,iBAAiB;iBAClB;gBACD,yBAAyB,EAAE;oBACzB,qCAAqC;oBACrC,oBAAoB;oBACpB,gCAAgC;oBAChC,8BAA8B;oBAC9B,kCAAkC;iBACnC;gBACD,iBAAiB,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC;gBAClF,QAAQ,EAAE,CAAC,UAAU,EAAE,WAAW,EAAE,MAAM,EAAE,eAAe,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,YAAY,EAAE,WAAW,CAAC;aACrH;YACD,KAAK,EAAE;gBACL,EAAE,EAAE,KAAK;gBACT,KAAK,EAAE,iDAAiD;gBACxD,WAAW,EAAE,sFAAsF;gBACnG,mBAAmB,EAAE,KAAK;gBAC1B,SAAS,EAAE,CAAC,OAAO,CAAC;gBACpB,gBAAgB,EAAE,CAAC,SAAS,CAAC;gBAC7B,kBAAkB,EAAE;oBAClB,yBAAyB;oBACzB,4CAA4C;oBAC5C,6BAA6B;iBAC9B;gBACD,gBAAgB,EAAE;oBAChB,6BAA6B;oBAC7B,qCAAqC;oBACrC,yBAAyB;oBACzB,0BAA0B;oBAC1B,6BAA6B;iBAC9B;gBACD,sBAAsB,EAAE;oBACtB,wBAAwB;oBACxB,+BAA+B;oBAC/B,4BAA4B;oBAC5B,+BAA+B;oBAC/B,wBAAwB;oBACxB,uBAAuB;oBACvB,qBAAqB;iBACtB;gBACD,yBAAyB,EAAE;oBACzB,+BAA+B;oBAC/B,0BAA0B;oBAC1B,mCAAmC;oBACnC,kBAAkB;oBAClB,sBAAsB;oBACtB,6BAA6B;iBAC9B;gBACD,iBAAiB,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC;gBACtD,QAAQ,EAAE,CAAC,KAAK,EAAE,cAAc,EAAE,gBAAgB,EAAE,oBAAoB,EAAE,cAAc,EAAE,aAAa,EAAE,KAAK,EAAE,WAAW,CAAC;aAC7H;YACD,KAAK,EAAE;gBACL,EAAE,EAAE,KAAK;gBACT,KAAK,EAAE,2DAA2D;gBAClE,WAAW,EAAE,4FAA4F;gBACzG,mBAAmB,EAAE,KAAK;gBAC1B,SAAS,EAAE,CAAC,eAAe,CAAC;gBAC5B,gBAAgB,EAAE,CAAC,QAAQ,CAAC;gBAC5B,kBAAkB,EAAE;oBAClB,8BAA8B;oBAC9B,2CAA2C;oBAC3C,0CAA0C;oBAC1C,kDAAkD;oBAClD,iCAAiC;iBAClC;gBACD,gBAAgB,EAAE;oBAChB,kCAAkC;oBAClC,yBAAyB;oBACzB,uBAAuB;oBACvB,8BAA8B;oBAC9B,0BAA0B;iBAC3B;gBACD,sBAAsB,EAAE;oBACtB,mCAAmC;oBACnC,0BAA0B;oBAC1B,4BAA4B;oBAC5B,8BAA8B;oBAC9B,wBAAwB;oBACxB,wBAAwB;oBACxB,4BAA4B;oBAC5B,uBAAuB;iBACxB;gBACD,yBAAyB,EAAE;oBACzB,8BAA8B;oBAC9B,0BAA0B;oBAC1B,yBAAyB;oBACzB,cAAc;oBACd,oBAAoB;oBACpB,oCAAoC;iBACrC;gBACD,iBAAiB,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC;gBAC3E,QAAQ,EAAE,CAAC,eAAe,EAAE,YAAY,EAAE,SAAS,EAAE,YAAY,EAAE,QAAQ,EAAE,QAAQ,EAAE,YAAY,EAAE,QAAQ,CAAC;aAC/G;SACF,CAAC;IACJ,CAAC;CACF"}
@@ -1,66 +0,0 @@
1
- # CIS Safeguards Migration Files
2
-
3
- This directory contains the complete CIS Controls v8.1 dataset ready for integration into SafeguardManager.
4
-
5
- ## Files
6
-
7
- ### `integration-ready-safeguards.ts`
8
- - **Purpose**: Complete 153 CIS safeguards ready for SafeguardManager integration
9
- - **Source**: Extracted from git commit b2d22c4 (original implementation)
10
- - **Validation**: All tests passed ✅
11
- - **Size**: 153 safeguards across 18 CIS Controls
12
- - **Format**: Ready to replace `initializeSafeguards()` method content
13
-
14
- ### Integration Instructions
15
-
16
- 1. **Backup Current State**: ✅ Already done (`backups/safeguard-manager-5-safeguards.ts`)
17
-
18
- 2. **Replace SafeguardManager Content**:
19
- ```bash
20
- # The formatted data is ready to replace the current initializeSafeguards() method
21
- # in src/core/safeguard-manager.ts
22
- ```
23
-
24
- 3. **Remove Sample Data Warnings**:
25
- - Remove `console.warn()` about incomplete dataset
26
- - Update TODO comments to reflect completion
27
-
28
- 4. **Test Integration**:
29
- - Build project: `npm run build`
30
- - Test HTTP API: `curl http://localhost:8081/api/safeguards`
31
- - Test MCP interface: Verify `list_available_safeguards` returns 153
32
-
33
- ## Validation Results
34
-
35
- All validation tests passed:
36
- - ✅ Count: 153 safeguards (expected)
37
- - ✅ No duplicates
38
- - ✅ Valid ID format (X.Y pattern)
39
- - ✅ Valid JavaScript syntax
40
- - ✅ All required fields present
41
- - ✅ Complete control coverage (1-18)
42
-
43
- ## Sprint 1 Completion
44
-
45
- **Sprint 1 Status: ✅ COMPLETED**
46
-
47
- ### Day 1 Results:
48
- - ✅ Extracted complete CIS_SAFEGUARDS from git history
49
- - ✅ Analyzed data structure compatibility (perfect match)
50
- - ✅ Validated 153 safeguard count
51
- - ✅ Created backup of current SafeguardManager
52
-
53
- ### Day 2 Results:
54
- - ✅ Cleaned and formatted data for integration
55
- - ✅ Validated all safeguard IDs (no duplicates, valid format)
56
- - ✅ Created comprehensive validation script
57
- - ✅ Prepared integration-ready data file
58
-
59
- ## Next Steps (Sprint 2)
60
-
61
- Ready to proceed with **Sprint 2: SafeguardManager Integration**
62
- - Day 3: Replace sample data with complete dataset
63
- - Day 4: Performance optimization and memory management
64
-
65
- ---
66
- *CIS Safeguards Migration - Framework MCP v1.3.2*