framework-mcp 2.4.4 → 2.4.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/core/safeguard-manager.d.ts.map +1 -1
- package/dist/core/safeguard-manager.js +21 -55
- package/dist/core/safeguard-manager.js.map +1 -1
- package/dist/interfaces/http/http-server.js +3 -3
- package/dist/interfaces/mcp/mcp-server.js +3 -3
- package/package.json +1 -1
- package/src/core/safeguard-manager.ts +16 -50
- package/src/interfaces/http/http-server.ts +3 -3
- package/src/interfaces/mcp/mcp-server.ts +3 -3
- package/swagger.json +2 -2
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"safeguard-manager.d.ts","sourceRoot":"","sources":["../../src/core/safeguard-manager.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAc,MAAM,oBAAoB,CAAC;AAElE,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,KAAK,CAA+B;IAC5C,OAAO,CAAC,UAAU,CAAwC;IAC1D,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,cAAc,CAAQ;IAC9C,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,sBAAsB,CAAkB;IAChE,OAAO,CAAC,kBAAkB,CAAyB;IACnD,OAAO,CAAC,WAAW,CAAa;;IAQzB,mBAAmB,CAAC,WAAW,EAAE,MAAM,EAAE,eAAe,GAAE,OAAe,GAAG,gBAAgB,GAAG,IAAI;IA4BnG,uBAAuB,IAAI,MAAM,EAAE;IAgBnC,gBAAgB,IAAI,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAAC;IAIpD,mBAAmB,CAAC,WAAW,EAAE,MAAM,GAAG,IAAI;IAerD,OAAO,CAAC,yBAAyB;IAajC,OAAO,CAAC,uBAAuB;IAS/B,OAAO,CAAC,2BAA2B;IAmCnC;;OAEG;IACI,aAAa,IAAI;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,MAAM,CAAA;KAAE;IAO7D;;OAEG;IACI,UAAU,IAAI,IAAI;IAKzB,OAAO,CAAC,yBAAyB;IAajC,OAAO,CAAC,yBAAyB;IA2BjC,OAAO,CAAC,oBAAoB;
|
|
1
|
+
{"version":3,"file":"safeguard-manager.d.ts","sourceRoot":"","sources":["../../src/core/safeguard-manager.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAc,MAAM,oBAAoB,CAAC;AAElE,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,KAAK,CAA+B;IAC5C,OAAO,CAAC,UAAU,CAAwC;IAC1D,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,cAAc,CAAQ;IAC9C,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,sBAAsB,CAAkB;IAChE,OAAO,CAAC,kBAAkB,CAAyB;IACnD,OAAO,CAAC,WAAW,CAAa;;IAQzB,mBAAmB,CAAC,WAAW,EAAE,MAAM,EAAE,eAAe,GAAE,OAAe,GAAG,gBAAgB,GAAG,IAAI;IA4BnG,uBAAuB,IAAI,MAAM,EAAE;IAgBnC,gBAAgB,IAAI,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAAC;IAIpD,mBAAmB,CAAC,WAAW,EAAE,MAAM,GAAG,IAAI;IAerD,OAAO,CAAC,yBAAyB;IAajC,OAAO,CAAC,uBAAuB;IAS/B,OAAO,CAAC,2BAA2B;IAmCnC;;OAEG;IACI,aAAa,IAAI;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,MAAM,CAAA;KAAE;IAO7D;;OAEG;IACI,UAAU,IAAI,IAAI;IAKzB,OAAO,CAAC,yBAAyB;IAajC,OAAO,CAAC,yBAAyB;IA2BjC,OAAO,CAAC,oBAAoB;CA23gB7B"}
|
|
@@ -2820,33 +2820,23 @@ export class SafeguardManager {
|
|
|
2820
2820
|
assetType: ["Users"],
|
|
2821
2821
|
securityFunction: ["Identify"],
|
|
2822
2822
|
governanceElements: [
|
|
2823
|
-
"Establish and maintain
|
|
2824
|
-
"
|
|
2825
|
-
"At a minimum, should contain the person's name, username, start/stop dates, and department",
|
|
2823
|
+
"Establish and maintain",
|
|
2824
|
+
"Must include",
|
|
2826
2825
|
"Validate that all active accounts are authorized, on a recurring schedule at a minimum quarterly, or more frequently"
|
|
2827
2826
|
],
|
|
2828
2827
|
coreRequirements: [
|
|
2829
2828
|
"Inventory of Accounts"
|
|
2830
2829
|
],
|
|
2831
2830
|
subTaxonomicalElements: [
|
|
2832
|
-
"Establish",
|
|
2833
|
-
"Maintain",
|
|
2834
|
-
"Validate that all active accounts are authorized",
|
|
2835
|
-
"Recurring schedule",
|
|
2836
|
-
"Must Include",
|
|
2837
|
-
"At a minimum",
|
|
2838
|
-
"Minimum Quarterly",
|
|
2839
|
-
"More Frequently",
|
|
2840
2831
|
"User Accounts",
|
|
2841
2832
|
"Administrator Accounts",
|
|
2833
|
+
"Service Accounts",
|
|
2842
2834
|
"Name",
|
|
2843
2835
|
"Username",
|
|
2844
2836
|
"Start Stop Dates",
|
|
2845
2837
|
"Department"
|
|
2846
2838
|
],
|
|
2847
|
-
implementationSuggestions: [
|
|
2848
|
-
"Account and Access Control Management",
|
|
2849
|
-
"Identity and Access Management Tool"
|
|
2839
|
+
implementationSuggestions: [ // Gray - Implementation suggestions
|
|
2850
2840
|
],
|
|
2851
2841
|
relatedSafeguards: ["1.1", "2.1", "5.2", "5.3", "5.4", "5.5", "5.6", "6.1", "6.2", "6.7", "12.8"],
|
|
2852
2842
|
systemPromptFull: {
|
|
@@ -2903,22 +2893,16 @@ export class SafeguardManager {
|
|
|
2903
2893
|
assetType: ["Users"],
|
|
2904
2894
|
securityFunction: ["Protect"],
|
|
2905
2895
|
governanceElements: [
|
|
2906
|
-
"Use
|
|
2907
|
-
"
|
|
2896
|
+
"Use",
|
|
2897
|
+
"At a minimum, an 8-character password for accounts using Multi-Factor Authentication (MFA) and a 14-character password for accounts not using MFA"
|
|
2908
2898
|
],
|
|
2909
2899
|
coreRequirements: [
|
|
2910
2900
|
"Unique Passwords"
|
|
2911
2901
|
],
|
|
2912
2902
|
subTaxonomicalElements: [
|
|
2913
|
-
"
|
|
2914
|
-
"At a minimum",
|
|
2915
|
-
"All Enterprise Assets",
|
|
2916
|
-
"8-character password for accounts using MFA",
|
|
2917
|
-
"14-character password for accounts not using MFA"
|
|
2903
|
+
"All Enterprise Assets"
|
|
2918
2904
|
],
|
|
2919
|
-
implementationSuggestions: [
|
|
2920
|
-
"Account and Access Control Management",
|
|
2921
|
-
"Password Management Tool"
|
|
2905
|
+
implementationSuggestions: [ // Gray - Implementation suggestions
|
|
2922
2906
|
],
|
|
2923
2907
|
relatedSafeguards: ["5.1"],
|
|
2924
2908
|
systemPromptFull: {
|
|
@@ -2975,7 +2959,8 @@ export class SafeguardManager {
|
|
|
2975
2959
|
assetType: ["Users"],
|
|
2976
2960
|
securityFunction: ["Protect"],
|
|
2977
2961
|
governanceElements: [
|
|
2978
|
-
"
|
|
2962
|
+
"after a period of 45 days of inactivity",
|
|
2963
|
+
"where supported"
|
|
2979
2964
|
],
|
|
2980
2965
|
coreRequirements: [
|
|
2981
2966
|
"Dormant Accounts"
|
|
@@ -2986,9 +2971,7 @@ export class SafeguardManager {
|
|
|
2986
2971
|
"Period of 45 days of inactivity",
|
|
2987
2972
|
"Where Supported"
|
|
2988
2973
|
],
|
|
2989
|
-
implementationSuggestions: [
|
|
2990
|
-
"Account and Access Control Management",
|
|
2991
|
-
"Identity and Access Management Tool"
|
|
2974
|
+
implementationSuggestions: [ // Gray - Implementation suggestions
|
|
2992
2975
|
],
|
|
2993
2976
|
relatedSafeguards: ["5.1"],
|
|
2994
2977
|
systemPromptFull: {
|
|
@@ -3045,22 +3028,18 @@ export class SafeguardManager {
|
|
|
3045
3028
|
assetType: ["Users"],
|
|
3046
3029
|
securityFunction: ["Protect"],
|
|
3047
3030
|
governanceElements: [
|
|
3048
|
-
"Restrict
|
|
3049
|
-
"Conduct general computing activities, such as internet browsing, email, and productivity suite use, from the user's primary, non-privileged account"
|
|
3031
|
+
"Restrict"
|
|
3050
3032
|
],
|
|
3051
3033
|
coreRequirements: [
|
|
3052
3034
|
"Administrator Privileges",
|
|
3053
3035
|
"Dedicated Admin Accounts"
|
|
3054
3036
|
],
|
|
3055
3037
|
subTaxonomicalElements: [
|
|
3056
|
-
"Restrict",
|
|
3057
3038
|
"Enterprise assets",
|
|
3058
3039
|
"User's primary, non-privileged account",
|
|
3059
3040
|
"General Computing Activities"
|
|
3060
3041
|
],
|
|
3061
3042
|
implementationSuggestions: [
|
|
3062
|
-
"Account and Access Control Management",
|
|
3063
|
-
"Identity and Access Management Tool",
|
|
3064
3043
|
"Such as",
|
|
3065
3044
|
"Internet browsing",
|
|
3066
3045
|
"Email",
|
|
@@ -3121,29 +3100,20 @@ export class SafeguardManager {
|
|
|
3121
3100
|
assetType: ["Users"],
|
|
3122
3101
|
securityFunction: ["Identify"],
|
|
3123
3102
|
governanceElements: [
|
|
3124
|
-
"Establish and maintain
|
|
3125
|
-
"
|
|
3126
|
-
"Perform service account reviews to validate that all active accounts are authorized,
|
|
3103
|
+
"Establish and maintain",
|
|
3104
|
+
"at a minimum, must contain",
|
|
3105
|
+
"Perform service account reviews to validate that all active accounts are authorized",
|
|
3106
|
+
"recurring schedule at a minimum quarterly, or more frequently"
|
|
3127
3107
|
],
|
|
3128
3108
|
coreRequirements: [
|
|
3129
3109
|
"Inventory of Service Accounts"
|
|
3130
3110
|
],
|
|
3131
3111
|
subTaxonomicalElements: [
|
|
3132
|
-
"Establish",
|
|
3133
|
-
"Maintain",
|
|
3134
|
-
"At a Minimum Must Contain",
|
|
3135
|
-
"Perform service account reviews to validate that all active accounts are authorized",
|
|
3136
|
-
"On a recurring schedule",
|
|
3137
3112
|
"Department Owner",
|
|
3138
3113
|
"Review date",
|
|
3139
|
-
"Purpose"
|
|
3140
|
-
"At a minimum quarterly",
|
|
3141
|
-
"More frequently",
|
|
3142
|
-
"Or"
|
|
3114
|
+
"Purpose"
|
|
3143
3115
|
],
|
|
3144
|
-
implementationSuggestions: [
|
|
3145
|
-
"Account and Access Control Management",
|
|
3146
|
-
"Identity and Access Management Tool"
|
|
3116
|
+
implementationSuggestions: [ // Gray - Implementation suggestions
|
|
3147
3117
|
],
|
|
3148
3118
|
relatedSafeguards: ["5.1"],
|
|
3149
3119
|
systemPromptFull: {
|
|
@@ -3200,20 +3170,16 @@ export class SafeguardManager {
|
|
|
3200
3170
|
assetType: ["Users"],
|
|
3201
3171
|
securityFunction: ["Govern"],
|
|
3202
3172
|
governanceElements: [
|
|
3203
|
-
"Centralize
|
|
3173
|
+
"Centralize"
|
|
3204
3174
|
],
|
|
3205
3175
|
coreRequirements: [
|
|
3206
3176
|
"Account Management"
|
|
3207
3177
|
],
|
|
3208
3178
|
subTaxonomicalElements: [
|
|
3209
|
-
"Centralize",
|
|
3210
3179
|
"Directory Service",
|
|
3211
|
-
"Identity Service"
|
|
3212
|
-
"Or"
|
|
3180
|
+
"Identity Service"
|
|
3213
3181
|
],
|
|
3214
|
-
implementationSuggestions: [
|
|
3215
|
-
"Account and Access Control Management",
|
|
3216
|
-
"Identity and Access Management Tool"
|
|
3182
|
+
implementationSuggestions: [ // Gray - Implementation suggestions
|
|
3217
3183
|
],
|
|
3218
3184
|
relatedSafeguards: ["5.1", "6.6", "6.7", "12.5"],
|
|
3219
3185
|
systemPromptFull: {
|