icdev 0.0.3__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (1214) hide show
  1. args/agent_config.yaml +113 -0
  2. args/audit_regimes/cisa_sbd.json +381 -0
  3. args/audit_regimes/cmmc_l2.json +906 -0
  4. args/audit_regimes/dod_cssp.json +393 -0
  5. args/audit_regimes/dodi_5000_87.json +297 -0
  6. args/audit_regimes/fedramp_moderate.json +650 -0
  7. args/audit_regimes/ieee_1012.json +373 -0
  8. args/audit_regimes/nist_800_171.json +624 -0
  9. args/audit_regimes/nist_800_53.json +907 -0
  10. args/cloudforge_blueprints/aws_commercial.yaml +29 -0
  11. args/cloudforge_blueprints/aws_govcloud_il4.yaml +34 -0
  12. args/cloudforge_blueprints/aws_govcloud_il5.yaml +38 -0
  13. args/cloudforge_blueprints/azure_commercial.yaml +28 -0
  14. args/cloudforge_blueprints/azure_gov_il4.yaml +32 -0
  15. args/cloudforge_blueprints/azure_gov_il5.yaml +36 -0
  16. args/cloudforge_blueprints/gcp_commercial.yaml +28 -0
  17. args/cloudforge_blueprints/oci_commercial.yaml +28 -0
  18. args/cloudforge_config.yaml +231 -0
  19. args/cloudforge_runbook_templates/backup_verify.yaml +98 -0
  20. args/cloudforge_runbook_templates/dr_failover.yaml +107 -0
  21. args/cloudforge_runbook_templates/health_check.yaml +97 -0
  22. args/cloudforge_runbook_templates/incident_response.yaml +101 -0
  23. args/cloudforge_runbook_templates/migration_cutover.yaml +105 -0
  24. args/cloudforge_runbook_templates/patch_rollout.yaml +92 -0
  25. args/cloudforge_runbook_templates/zone_provision.yaml +93 -0
  26. args/code_pattern_config.yaml +151 -0
  27. args/code_quality_config.yaml +47 -0
  28. args/compliance_config.yaml +17 -0
  29. args/control_inheritance.yaml +177 -0
  30. args/csp_mcp_config.yaml +41 -0
  31. args/cui_markings.yaml +35 -0
  32. args/databridge_config.yaml +232 -0
  33. args/db_config.yaml +116 -0
  34. args/decision_tables/agent_trust_decision.yaml +143 -0
  35. args/decision_tables/ato_boundary_impact.yaml +132 -0
  36. args/decision_tables/deployment_approval.yaml +152 -0
  37. args/degradation_matrix.yaml +163 -0
  38. args/devsecops_config.yaml +286 -0
  39. args/endpoint_security_config.yaml +207 -0
  40. args/exit_criteria.yaml +102 -0
  41. args/feature_flags.yaml +235 -0
  42. args/file_access_tiers.yaml +88 -0
  43. args/forge_studio/blueprint_config.yaml +27 -0
  44. args/forge_studio/component_catalog.json +411 -0
  45. args/forge_studio/workflow_templates.yaml +103 -0
  46. args/govcon_config.yaml +41 -0
  47. args/harness_config.yaml +67 -0
  48. args/innovation_config.yaml +321 -0
  49. args/knowledge_graph_config.yaml +113 -0
  50. args/llm_config.yaml +222 -0
  51. args/marketplace_config.yaml +260 -0
  52. args/monitoring_config.yaml +127 -0
  53. args/mosa_config.yaml +190 -0
  54. args/observability_tracing_config.yaml +170 -0
  55. args/owasp_agentic_config.yaml +171 -0
  56. args/pipeline_gates.yaml +197 -0
  57. args/project_defaults.yaml +235 -0
  58. args/prompt_chains.yaml +163 -0
  59. args/rag_config.yaml +167 -0
  60. args/research_config.yaml +89 -0
  61. args/resilience_config.yaml +197 -0
  62. args/ricoas_config.yaml +191 -0
  63. args/security_gates.yaml +763 -0
  64. args/storage_config.yaml +63 -0
  65. args/writeguard_config.yaml +131 -0
  66. args/zta_config.yaml +247 -0
  67. context/__init__.py +6 -0
  68. context/agent/__init__.py +6 -0
  69. context/agent/response_schemas/__init__.py +6 -0
  70. context/agent/response_schemas/debate_position.json +46 -0
  71. context/agent/response_schemas/fitness_scorecard.json +74 -0
  72. context/agent/response_schemas/review_decision.json +39 -0
  73. context/agent/response_schemas/task_decomposition.json +82 -0
  74. context/agent/response_schemas/veto_decision.json +40 -0
  75. context/agentic/__init__.py +6 -0
  76. context/agentic/architecture_patterns.md +269 -0
  77. context/agentic/capability_registry.yaml +223 -0
  78. context/agentic/csp_integration.md +30 -0
  79. context/agentic/csp_mcp_registry.yaml +280 -0
  80. context/agentic/fitness_rubric.md +56 -0
  81. context/agentic/governance_baseline.md +205 -0
  82. context/ci/__init__.py +6 -0
  83. context/ci/worktree_templates.json +44 -0
  84. context/cloud/__init__.py +6 -0
  85. context/cloud/csp_service_registry.json +739 -0
  86. context/compliance/__init__.py +6 -0
  87. context/compliance/ai_rmf_crosswalk.yaml +226 -0
  88. context/compliance/atlas_mitigations.json +293 -0
  89. context/compliance/atlas_techniques.json +833 -0
  90. context/compliance/cisa_sbd_requirements.json +477 -0
  91. context/compliance/cjis_security_policy.json +522 -0
  92. context/compliance/cmmc_practices.json +2494 -0
  93. context/compliance/cmmc_report_template.md +142 -0
  94. context/compliance/cnssi_1253_overlay.json +109 -0
  95. context/compliance/control_crosswalk.json +1914 -0
  96. context/compliance/control_families/__init__.py +6 -0
  97. context/compliance/csp_certifications.json +251 -0
  98. context/compliance/cssp_report_template.md +193 -0
  99. context/compliance/cui_templates/__init__.py +6 -0
  100. context/compliance/cui_templates/banner_block.txt +4 -0
  101. context/compliance/cui_templates/code_header.txt +8 -0
  102. context/compliance/cui_templates/document_template.md +35 -0
  103. context/compliance/data_type_framework_map.json +321 -0
  104. context/compliance/data_type_registry.json +147 -0
  105. context/compliance/dod_cssp_8530.json +463 -0
  106. context/compliance/eu_ai_act_annex_iii.json +108 -0
  107. context/compliance/export_templates/__init__.py +6 -0
  108. context/compliance/export_templates/emass_controls.csv.j2 +4 -0
  109. context/compliance/export_templates/evidence_package.md.j2 +39 -0
  110. context/compliance/export_templates/executive_summary.md.j2 +55 -0
  111. context/compliance/export_templates/poam_tracking.csv.j2 +4 -0
  112. context/compliance/fedramp_20x_ksi_schemas.json +133 -0
  113. context/compliance/fedramp_high_baseline.json +4370 -0
  114. context/compliance/fedramp_moderate_baseline.json +2183 -0
  115. context/compliance/fedramp_report_template.md +181 -0
  116. context/compliance/fips_200_areas.json +362 -0
  117. context/compliance/gao_ai_accountability.json +262 -0
  118. context/compliance/hipaa_security_rule.json +720 -0
  119. context/compliance/hitrust_csf_v11.json +930 -0
  120. context/compliance/impact_level_profiles.json +251 -0
  121. context/compliance/incident_response_template.md +1110 -0
  122. context/compliance/iso27001_2022_controls.json +750 -0
  123. context/compliance/iso27001_nist_bridge.json +382 -0
  124. context/compliance/iso42001_controls.json +254 -0
  125. context/compliance/ivv_checklist_template.md +80 -0
  126. context/compliance/ivv_report_template.md +116 -0
  127. context/compliance/ivv_requirements.json +372 -0
  128. context/compliance/mosa_crosswalk.json +327 -0
  129. context/compliance/mosa_framework.json +250 -0
  130. context/compliance/narrative_templates/AC.md.j2 +101 -0
  131. context/compliance/narrative_templates/AU.md.j2 +106 -0
  132. context/compliance/narrative_templates/IA.md.j2 +104 -0
  133. context/compliance/narrative_templates/SC.md.j2 +102 -0
  134. context/compliance/narrative_templates/SI.md.j2 +111 -0
  135. context/compliance/narrative_templates/__init__.py +6 -0
  136. context/compliance/narrative_templates/default.md.j2 +50 -0
  137. context/compliance/narrative_templates/executive_summary.j2 +27 -0
  138. context/compliance/narrative_templates/poam_milestone.j2 +19 -0
  139. context/compliance/narrative_templates/ssp_section.j2 +11 -0
  140. context/compliance/nist_800_171_controls.json +1552 -0
  141. context/compliance/nist_800_207_crosswalk.json +399 -0
  142. context/compliance/nist_800_207_zta.json +258 -0
  143. context/compliance/nist_800_53.json +324 -0
  144. context/compliance/nist_ai_600_1_genai.json +326 -0
  145. context/compliance/nist_ai_rmf.json +206 -0
  146. context/compliance/nist_sp_800_60_types.json +1667 -0
  147. context/compliance/omb_m25_21_high_impact_ai.json +248 -0
  148. context/compliance/omb_m26_04_unbiased_ai.json +262 -0
  149. context/compliance/owasp_agentic_asi.json +133 -0
  150. context/compliance/owasp_agentic_threats.json +285 -0
  151. context/compliance/owasp_llm_top10.json +274 -0
  152. context/compliance/pci_dss_v4.json +510 -0
  153. context/compliance/poam_template.md +117 -0
  154. context/compliance/safeai_controls.json +512 -0
  155. context/compliance/sbd_report_template.md +77 -0
  156. context/compliance/siem_config_templates/__init__.py +6 -0
  157. context/compliance/siem_config_templates/filebeat.yml +213 -0
  158. context/compliance/siem_config_templates/log_sources.json +208 -0
  159. context/compliance/soc2_trust_criteria.json +661 -0
  160. context/compliance/ssp_template.md +432 -0
  161. context/compliance/stig_templates/__init__.py +6 -0
  162. context/compliance/stig_templates/webapp_stig.json +139 -0
  163. context/compliance/xai_requirements.json +108 -0
  164. context/dashboard/__init__.py +6 -0
  165. context/dashboard/nlq_examples.json +50 -0
  166. context/dashboard/schema_descriptions.json +23 -0
  167. context/icdev_methodology.md +100 -0
  168. context/integration/__init__.py +6 -0
  169. context/integration/approval_workflows.json +32 -0
  170. context/integration/gitlab_field_mappings.json +33 -0
  171. context/integration/jira_field_mappings.json +32 -0
  172. context/integration/reqif_export_schema.json +23 -0
  173. context/integration/servicenow_field_mappings.json +22 -0
  174. context/languages/__init__.py +6 -0
  175. context/languages/framework_patterns.json +205 -0
  176. context/languages/language_registry.json +279 -0
  177. context/llm/__init__.py +6 -0
  178. context/llm/example_provider.py +89 -0
  179. context/marketplace/assets/writeguard-core.yaml +100 -0
  180. context/marketplace/assets/writeguard-govcon.yaml +45 -0
  181. context/marketplace/assets/writeguard-style-guides.yaml +44 -0
  182. context/mbse/__init__.py +6 -0
  183. context/mbse/des_report_template.md +162 -0
  184. context/mbse/des_requirements.json +411 -0
  185. context/mbse/digital_thread_patterns.json +403 -0
  186. context/mbse/reqif_schema.json +280 -0
  187. context/mbse/sysml_element_types.json +432 -0
  188. context/oscal/NIST_SP-800-53_rev5_catalog.json +254987 -0
  189. context/oscal/README.md +43 -0
  190. context/patterns/__init__.py +6 -0
  191. context/profiles/__init__.py +6 -0
  192. context/profiles/dod_baseline_v1.yaml +145 -0
  193. context/profiles/fedramp_baseline_v1.yaml +143 -0
  194. context/profiles/financial_baseline_v1.yaml +142 -0
  195. context/profiles/healthcare_baseline_v1.yaml +135 -0
  196. context/profiles/law_enforcement_v1.yaml +129 -0
  197. context/profiles/startup_v1.yaml +134 -0
  198. context/rag/source_mappings.json +42 -0
  199. context/requirements/__init__.py +6 -0
  200. context/requirements/ambiguity_patterns.json +97 -0
  201. context/requirements/boundary_impact_rules.json +123 -0
  202. context/requirements/default_constitutions.json +67 -0
  203. context/requirements/document_extraction_rules.json +58 -0
  204. context/requirements/gap_patterns.json +108 -0
  205. context/requirements/readiness_rubric.json +78 -0
  206. context/requirements/red_alternative_patterns.json +210 -0
  207. context/requirements/safe_templates.json +72 -0
  208. context/requirements/spec_quality_checklist.json +122 -0
  209. context/research/regulatory_registry.json +114 -0
  210. context/research/verticals/cybersecurity.json +127 -0
  211. context/research/verticals/defense.json +104 -0
  212. context/research/verticals/fintech.json +125 -0
  213. context/research/verticals/healthcare.json +118 -0
  214. context/research/verticals/logistics.json +117 -0
  215. context/research/verticals/trading.json +145 -0
  216. context/simulation/__init__.py +6 -0
  217. context/simulation/architecture_patterns.json +36 -0
  218. context/simulation/coa_templates.json +38 -0
  219. context/simulation/cost_models.json +23 -0
  220. context/simulation/risk_categories.json +46 -0
  221. context/supply_chain/__init__.py +6 -0
  222. context/supply_chain/isa_templates.json +129 -0
  223. context/supply_chain/nist_800_161_controls.json +247 -0
  224. context/supply_chain/scrm_risk_matrix.json +147 -0
  225. context/templates/__init__.py +6 -0
  226. context/templates/ansible/__init__.py +6 -0
  227. context/templates/ansible/playbooks/__init__.py +6 -0
  228. context/templates/ansible/roles/__init__.py +6 -0
  229. context/templates/gitlab_ci/__init__.py +6 -0
  230. context/templates/grafana/__init__.py +6 -0
  231. context/templates/kubernetes/__init__.py +6 -0
  232. context/templates/project/__init__.py +6 -0
  233. context/templates/project/api/__init__.py +6 -0
  234. context/templates/project/cli/__init__.py +6 -0
  235. context/templates/project/data_pipeline/__init__.py +6 -0
  236. context/templates/project/iac/__init__.py +6 -0
  237. context/templates/project/javascript_frontend/__init__.py +6 -0
  238. context/templates/project/javascript_frontend/src/__init__.py +6 -0
  239. context/templates/project/javascript_frontend/tests/__init__.py +6 -0
  240. context/templates/project/microservice/__init__.py +6 -0
  241. context/templates/project/python_backend/__init__.py +6 -0
  242. context/templates/project/python_backend/src/__init__.py +6 -0
  243. context/templates/project/python_backend/tests/__init__.py +6 -0
  244. context/templates/project/python_backend/tests/features/__init__.py +6 -0
  245. context/templates/project/python_backend/tests/steps/__init__.py +6 -0
  246. context/templates/terraform/__init__.py +6 -0
  247. context/templates/terraform/govcloud_base/__init__.py +6 -0
  248. context/templates/terraform/modules/__init__.py +6 -0
  249. context/tone/__init__.py +6 -0
  250. context/writing/grammar_rules/common_errors.json +306 -0
  251. context/writing/grammar_rules/govcon_vocabulary.json +113 -0
  252. context/writing/style_guides/academic.yaml +43 -0
  253. context/writing/style_guides/business.yaml +42 -0
  254. context/writing/style_guides/government.yaml +59 -0
  255. context/writing/style_guides/proposal.yaml +58 -0
  256. context/writing/style_guides/technical.yaml +43 -0
  257. docs/adr/README.md +66 -0
  258. docs/adr/connector-forge-decisions.md +318 -0
  259. docs/adr/core-decisions.md +289 -0
  260. docs/adr/db-decisions.md +94 -0
  261. docs/adr/harness-decisions.md +122 -0
  262. docs/adr/innovation-decisions.md +262 -0
  263. docs/adr/marketplace-decisions.md +109 -0
  264. docs/adr/sbd-decisions.md +109 -0
  265. docs/adr/scale-engine-decisions.md +108 -0
  266. docs/adr/writeguard-decisions.md +136 -0
  267. docs/architecture/bounded-contexts.md +1032 -0
  268. docs/features/phase-65-writeguard.md +139 -0
  269. docs/features/phase-66-marketplace-commerce.md +79 -0
  270. docs/features/phase-67-knowledge-ingestion-rag-autodraft.md +97 -0
  271. docs/features/phase-68-enhanced-autodraft-pipeline.md +109 -0
  272. docs/features/phase-69-proposalai-marketplace-module.md +131 -0
  273. docs/features/phase-70-databridge.md +214 -0
  274. docs/features/phase-71-databridge-messaging.md +102 -0
  275. docs/implementation-plan-architecture-evolution.md +614 -0
  276. docs/marketplace/CONTRIBUTING.md +124 -0
  277. docs/marketplace/module_manifest_schema.yaml +83 -0
  278. docs/research/ai-architecture-patterns-2024-2026.md +1236 -0
  279. docs/research/app-builder-platform-analysis.md +582 -0
  280. docs/research/architecture-patterns-c4-ddd-agentic.md +871 -0
  281. docs/research/flowable-boat-competitive-analysis.md +426 -0
  282. docs/research/modern-dev-practices-2024-2026.md +1615 -0
  283. docs/research/secure-by-design-cloudyrion-adaptation.md +270 -0
  284. goals/agent_management.md +144 -0
  285. goals/ai_accountability.md +90 -0
  286. goals/ai_narratives.md +79 -0
  287. goals/ai_transparency.md +76 -0
  288. goals/ato_simulator.md +78 -0
  289. goals/audit_engine.md +177 -0
  290. goals/bite_sized_plans.md +225 -0
  291. goals/boundary_supply_chain.md +206 -0
  292. goals/brainstorming_gate.md +186 -0
  293. goals/build_app.md +604 -0
  294. goals/cato_live_evidence.md +77 -0
  295. goals/cloudforge.md +106 -0
  296. goals/code_intelligence.md +197 -0
  297. goals/compliance_workflow.md +858 -0
  298. goals/connector_forge.md +133 -0
  299. goals/databridge.md +128 -0
  300. goals/deploy_workflow.md +390 -0
  301. goals/developer_scorecard.md +78 -0
  302. goals/devsecops_workflow.md +408 -0
  303. goals/firmware_sbom.md +79 -0
  304. goals/forge_hub.md +78 -0
  305. goals/golden_path.md +77 -0
  306. goals/harness_engineering.md +91 -0
  307. goals/integration_testing.md +189 -0
  308. goals/knowledge_graph.md +128 -0
  309. goals/maintenance_audit.md +196 -0
  310. goals/manifest.md +50 -0
  311. goals/monitoring.md +126 -0
  312. goals/mosa_workflow.md +463 -0
  313. goals/multi_agent_orchestration.md +68 -0
  314. goals/observability_traceability_xai.md +154 -0
  315. goals/owasp_agentic_security.md +395 -0
  316. goals/pr_intelligence.md +78 -0
  317. goals/requirements_intake.md +213 -0
  318. goals/secure_by_design.md +135 -0
  319. goals/security_scan.md +381 -0
  320. goals/self_healing.md +120 -0
  321. goals/simulation_engine.md +111 -0
  322. goals/subagent_review.md +205 -0
  323. goals/systematic_debugging.md +257 -0
  324. goals/tdd_workflow.md +403 -0
  325. goals/template_exchange.md +77 -0
  326. goals/thread_heatmap.md +77 -0
  327. goals/threat_modeler.md +77 -0
  328. goals/verification_iron_law.md +192 -0
  329. goals/vsm_dashboard.md +76 -0
  330. goals/writeguard.md +89 -0
  331. goals/zero_trust_architecture.md +403 -0
  332. hardprompts/__init__.py +6 -0
  333. hardprompts/agent/__init__.py +6 -0
  334. hardprompts/agent/agentic_architect.md +100 -0
  335. hardprompts/agent/debate_prompt.md +32 -0
  336. hardprompts/agent/fitness_evaluation.md +48 -0
  337. hardprompts/agent/governance_review.md +214 -0
  338. hardprompts/agent/reviewer_prompt.md +34 -0
  339. hardprompts/agent/skill_design.md +172 -0
  340. hardprompts/agent/task_decomposition.md +275 -0
  341. hardprompts/agent/veto_check_prompt.md +33 -0
  342. hardprompts/architect/__init__.py +6 -0
  343. hardprompts/architect/api_design.md +283 -0
  344. hardprompts/architect/data_model.md +277 -0
  345. hardprompts/architect/system_design.md +180 -0
  346. hardprompts/builder/__init__.py +6 -0
  347. hardprompts/builder/code_generation.md +59 -0
  348. hardprompts/builder/refactor.md +58 -0
  349. hardprompts/builder/scaffold_project.md +69 -0
  350. hardprompts/builder/test_generation.md +87 -0
  351. hardprompts/ci/__init__.py +6 -0
  352. hardprompts/ci/worktree_setup.md +35 -0
  353. hardprompts/compliance/__init__.py +6 -0
  354. hardprompts/compliance/cmmc_assessment.md +63 -0
  355. hardprompts/compliance/cssp_assessment.md +75 -0
  356. hardprompts/compliance/cui_marking.md +86 -0
  357. hardprompts/compliance/fedramp_assessment.md +55 -0
  358. hardprompts/compliance/ivv_assessment.md +96 -0
  359. hardprompts/compliance/poam_generation.md +57 -0
  360. hardprompts/compliance/sbd_assessment.md +101 -0
  361. hardprompts/compliance/security_categorization.md +74 -0
  362. hardprompts/compliance/ssp_generation.md +56 -0
  363. hardprompts/compliance/stig_evaluation.md +63 -0
  364. hardprompts/dashboard/__init__.py +6 -0
  365. hardprompts/dashboard/nlq_system_prompt.md +26 -0
  366. hardprompts/infra/__init__.py +6 -0
  367. hardprompts/infra/k8s_manifests.md +118 -0
  368. hardprompts/infra/pipeline_generation.md +160 -0
  369. hardprompts/infra/terraform_generation.md +92 -0
  370. hardprompts/integration/__init__.py +6 -0
  371. hardprompts/integration/approval_review.md +17 -0
  372. hardprompts/integration/jira_mapping.md +25 -0
  373. hardprompts/integration/servicenow_mapping.md +14 -0
  374. hardprompts/knowledge/__init__.py +6 -0
  375. hardprompts/knowledge/pattern_detection.md +73 -0
  376. hardprompts/knowledge/recommendation_engine.md +90 -0
  377. hardprompts/knowledge/root_cause_analysis.md +91 -0
  378. hardprompts/maintenance/__init__.py +6 -0
  379. hardprompts/maintenance/maintenance_assessment.md +82 -0
  380. hardprompts/mbse/__init__.py +6 -0
  381. hardprompts/mbse/digital_thread.md +67 -0
  382. hardprompts/mbse/model_import.md +62 -0
  383. hardprompts/mbse/model_to_code.md +65 -0
  384. hardprompts/modernization/__init__.py +6 -0
  385. hardprompts/modernization/legacy_analysis.md +93 -0
  386. hardprompts/modernization/migration_planning.md +150 -0
  387. hardprompts/modernization/seven_r_assessment.md +107 -0
  388. hardprompts/proposal_draft.md +53 -0
  389. hardprompts/rag_citation.md +12 -0
  390. hardprompts/rag_rerank.md +31 -0
  391. hardprompts/requirements/__init__.py +6 -0
  392. hardprompts/requirements/bdd_generation.md +35 -0
  393. hardprompts/requirements/clarification_prioritization.md +29 -0
  394. hardprompts/requirements/decomposition.md +60 -0
  395. hardprompts/requirements/document_extraction.md +45 -0
  396. hardprompts/requirements/gap_detection.md +70 -0
  397. hardprompts/requirements/intake_conversation.md +101 -0
  398. hardprompts/requirements/readiness_assessment.md +39 -0
  399. hardprompts/requirements/spec_quality.md +33 -0
  400. hardprompts/requirements/traceability_analysis.md +23 -0
  401. hardprompts/security/__init__.py +6 -0
  402. hardprompts/security/endpoint_security.md +78 -0
  403. hardprompts/security/threat_model.md +70 -0
  404. hardprompts/security/vulnerability_assessment.md +81 -0
  405. hardprompts/simulation/__init__.py +6 -0
  406. hardprompts/simulation/architecture_impact.md +27 -0
  407. hardprompts/simulation/coa_alternative.md +27 -0
  408. hardprompts/simulation/coa_generation.md +25 -0
  409. hardprompts/simulation/compliance_impact.md +28 -0
  410. hardprompts/simulation/cost_estimation.md +33 -0
  411. hardprompts/simulation/risk_assessment.md +28 -0
  412. hardprompts/translation/code_translation.md +68 -0
  413. hardprompts/translation/dependency_suggestion.md +44 -0
  414. hardprompts/translation/test_translation.md +64 -0
  415. hardprompts/translation/translation_repair.md +59 -0
  416. icdev-0.0.3.dist-info/METADATA +909 -0
  417. icdev-0.0.3.dist-info/RECORD +1214 -0
  418. icdev-0.0.3.dist-info/WHEEL +5 -0
  419. icdev-0.0.3.dist-info/entry_points.txt +9 -0
  420. icdev-0.0.3.dist-info/licenses/LICENSE +201 -0
  421. icdev-0.0.3.dist-info/licenses/NOTICE +11 -0
  422. icdev-0.0.3.dist-info/top_level.txt +7 -0
  423. memory/MEMORY.md +52 -0
  424. memory/logs/2026-02-14.md +17 -0
  425. memory/logs/2026-03-03.md +2 -0
  426. memory/logs/__init__.py +1 -0
  427. tools/a2a/icdev_callback_client.py +210 -0
  428. tools/agent/cards/architect_card.json +29 -0
  429. tools/agent/cards/builder_card.json +34 -0
  430. tools/agent/cards/compliance_card.json +29 -0
  431. tools/agent/cards/connector_forge_card.json +49 -0
  432. tools/agent/cards/devsecops_zta_card.json +24 -0
  433. tools/agent/cards/knowledge_card.json +29 -0
  434. tools/agent/cards/monitor_card.json +29 -0
  435. tools/agent/cards/orchestrator_card.json +29 -0
  436. tools/agent/cards/requirements_analyst_card.json +24 -0
  437. tools/agent/cards/security_card.json +29 -0
  438. tools/agent/cards/simulation_card.json +24 -0
  439. tools/agent/cards/supply_chain_card.json +24 -0
  440. tools/analysis/__init__.py +1 -0
  441. tools/analysis/code_analyzer.py +770 -0
  442. tools/analysis/runtime_feedback.py +379 -0
  443. tools/analytics/__init__.py +2 -0
  444. tools/analytics/scorecard.py +538 -0
  445. tools/analytics/vsm_engine.py +612 -0
  446. tools/architecture/__init__.py +2 -0
  447. tools/architecture/adr_extractor.py +393 -0
  448. tools/audit/__init__.py +1 -0
  449. tools/audit/audit_logger.py +199 -0
  450. tools/audit/audit_query.py +153 -0
  451. tools/audit/decision_recorder.py +73 -0
  452. tools/audit_engine/__init__.py +12 -0
  453. tools/audit_engine/ai_advisor.py +906 -0
  454. tools/audit_engine/cli.py +286 -0
  455. tools/audit_engine/comparator.py +305 -0
  456. tools/audit_engine/eject_scaffolder.py +399 -0
  457. tools/audit_engine/engine.py +614 -0
  458. tools/audit_engine/git_fetcher.py +341 -0
  459. tools/audit_engine/regime_loader.py +200 -0
  460. tools/audit_engine/regime_updater.py +325 -0
  461. tools/audit_engine/report_card.py +289 -0
  462. tools/audit_engine/scanner.py +684 -0
  463. tools/audit_engine/self_heal.py +1042 -0
  464. tools/ci/__init__.py +2 -0
  465. tools/ci/connectors/__init__.py +2 -0
  466. tools/ci/connectors/base_connector.py +80 -0
  467. tools/ci/connectors/connector_registry.py +188 -0
  468. tools/ci/connectors/mattermost_connector.py +159 -0
  469. tools/ci/connectors/slack_connector.py +197 -0
  470. tools/ci/core/__init__.py +2 -0
  471. tools/ci/core/air_gap_detector.py +115 -0
  472. tools/ci/core/comment_handler.py +192 -0
  473. tools/ci/core/conversation_manager.py +480 -0
  474. tools/ci/core/event_envelope.py +500 -0
  475. tools/ci/core/event_router.py +444 -0
  476. tools/ci/core/failure_parser.py +397 -0
  477. tools/ci/core/recovery_engine.py +527 -0
  478. tools/ci/gate_enforcer.py +361 -0
  479. tools/ci/modules/__init__.py +2 -0
  480. tools/ci/modules/agent.py +271 -0
  481. tools/ci/modules/git_ops.py +175 -0
  482. tools/ci/modules/state.py +117 -0
  483. tools/ci/modules/vcs.py +303 -0
  484. tools/ci/modules/workflow_ops.py +295 -0
  485. tools/ci/modules/worktree.py +337 -0
  486. tools/ci/pipeline_config_generator.py +558 -0
  487. tools/ci/pr_intelligence.py +485 -0
  488. tools/ci/triggers/__init__.py +2 -0
  489. tools/ci/triggers/gitlab_task_monitor.py +327 -0
  490. tools/ci/triggers/poll_trigger.py +237 -0
  491. tools/ci/triggers/webhook_server.py +356 -0
  492. tools/ci/workflows/__init__.py +2 -0
  493. tools/ci/workflows/icdev_build.py +140 -0
  494. tools/ci/workflows/icdev_comply.py +284 -0
  495. tools/ci/workflows/icdev_document.py +152 -0
  496. tools/ci/workflows/icdev_e2e.py +188 -0
  497. tools/ci/workflows/icdev_patch.py +186 -0
  498. tools/ci/workflows/icdev_plan.py +202 -0
  499. tools/ci/workflows/icdev_plan_build.py +41 -0
  500. tools/ci/workflows/icdev_plan_build_test.py +46 -0
  501. tools/ci/workflows/icdev_plan_build_test_review.py +47 -0
  502. tools/ci/workflows/icdev_review.py +126 -0
  503. tools/ci/workflows/icdev_sdlc.py +261 -0
  504. tools/ci/workflows/icdev_test.py +240 -0
  505. tools/cli/__init__.py +1 -0
  506. tools/cli/output_formatter.py +756 -0
  507. tools/cloudforge/__init__.py +12 -0
  508. tools/cloudforge/airgap/__init__.py +2 -0
  509. tools/cloudforge/airgap/il_classifier.py +70 -0
  510. tools/cloudforge/airgap/offline_validator.py +42 -0
  511. tools/cloudforge/airgap/shift_emulator.py +155 -0
  512. tools/cloudforge/airgap/sneakernet.py +91 -0
  513. tools/cloudforge/cd_hub/__init__.py +2 -0
  514. tools/cloudforge/cd_hub/canary_deployer.py +88 -0
  515. tools/cloudforge/cd_hub/gitops_renderer.py +123 -0
  516. tools/cloudforge/cd_hub/hub_controller.py +143 -0
  517. tools/cloudforge/cd_hub/pipeline_bridge.py +30 -0
  518. tools/cloudforge/cd_hub/rollback_engine.py +29 -0
  519. tools/cloudforge/cd_hub/spoke_agent.py +51 -0
  520. tools/cloudforge/compliance/__init__.py +2 -0
  521. tools/cloudforge/compliance/ato_accelerator.py +272 -0
  522. tools/cloudforge/compliance/control_inheritor.py +127 -0
  523. tools/cloudforge/compliance/evidence_generator.py +129 -0
  524. tools/cloudforge/compliance/poam_bridge.py +41 -0
  525. tools/cloudforge/compliance/ssp_bridge.py +52 -0
  526. tools/cloudforge/compliance/stig_bridge.py +41 -0
  527. tools/cloudforge/container_forge/__init__.py +2 -0
  528. tools/cloudforge/container_forge/bigbang_renderer.py +85 -0
  529. tools/cloudforge/container_forge/hardener.py +169 -0
  530. tools/cloudforge/container_forge/image_scanner_bridge.py +33 -0
  531. tools/cloudforge/container_forge/runtime_policy.py +87 -0
  532. tools/cloudforge/container_forge/sbom_bridge.py +42 -0
  533. tools/cloudforge/finops/__init__.py +2 -0
  534. tools/cloudforge/finops/anomaly_detector.py +78 -0
  535. tools/cloudforge/finops/budget_tracker.py +96 -0
  536. tools/cloudforge/finops/chargeback.py +69 -0
  537. tools/cloudforge/finops/cost_collector.py +141 -0
  538. tools/cloudforge/finops/optimizer.py +55 -0
  539. tools/cloudforge/hybrid/__init__.py +2 -0
  540. tools/cloudforge/hybrid/connection_manager.py +141 -0
  541. tools/cloudforge/hybrid/dns_federator.py +56 -0
  542. tools/cloudforge/hybrid/health_monitor.py +108 -0
  543. tools/cloudforge/hybrid/identity_federator.py +53 -0
  544. tools/cloudforge/hybrid/network_bridge.py +68 -0
  545. tools/cloudforge/hybrid/topology_manager.py +147 -0
  546. tools/cloudforge/hybrid/workload_abstractor.py +92 -0
  547. tools/cloudforge/iac/__init__.py +2 -0
  548. tools/cloudforge/iac/drift_detector.py +154 -0
  549. tools/cloudforge/iac/module_library.py +265 -0
  550. tools/cloudforge/iac/opentofu_adapter.py +89 -0
  551. tools/cloudforge/iac/pulumi_renderer.py +292 -0
  552. tools/cloudforge/iac/state_backend.py +146 -0
  553. tools/cloudforge/iac/terraform_renderer.py +626 -0
  554. tools/cloudforge/landing_zone/__init__.py +2 -0
  555. tools/cloudforge/landing_zone/blueprint_loader.py +98 -0
  556. tools/cloudforge/landing_zone/blueprint_validator.py +113 -0
  557. tools/cloudforge/landing_zone/zone_provisioner.py +306 -0
  558. tools/cloudforge/landing_zone/zone_state.py +143 -0
  559. tools/cloudforge/mbse_thread/__init__.py +2 -0
  560. tools/cloudforge/mbse_thread/ato_thread_weaver.py +111 -0
  561. tools/cloudforge/mbse_thread/control_tracer.py +68 -0
  562. tools/cloudforge/mbse_thread/system_boundary.py +83 -0
  563. tools/cloudforge/metastore/__init__.py +2 -0
  564. tools/cloudforge/metastore/dependency_graph.py +202 -0
  565. tools/cloudforge/metastore/discovery.py +192 -0
  566. tools/cloudforge/metastore/registry.py +185 -0
  567. tools/cloudforge/metastore/rto_tracker.py +92 -0
  568. tools/cloudforge/metastore/runbook_linker.py +82 -0
  569. tools/cloudforge/migration/__init__.py +2 -0
  570. tools/cloudforge/migration/assessor.py +187 -0
  571. tools/cloudforge/migration/cutover_orchestrator.py +117 -0
  572. tools/cloudforge/migration/databridge_bridge.py +92 -0
  573. tools/cloudforge/migration/planner.py +98 -0
  574. tools/cloudforge/migration/risk_scorer.py +97 -0
  575. tools/cloudforge/migration/validation_runner.py +45 -0
  576. tools/cloudforge/migration/workload_inventory.py +107 -0
  577. tools/cloudforge/provider.py +319 -0
  578. tools/cloudforge/providers/__init__.py +2 -0
  579. tools/cloudforge/providers/aws_commercial.py +92 -0
  580. tools/cloudforge/providers/aws_govcloud.py +229 -0
  581. tools/cloudforge/providers/aws_secret.py +83 -0
  582. tools/cloudforge/providers/azure_commercial.py +80 -0
  583. tools/cloudforge/providers/azure_gov.py +91 -0
  584. tools/cloudforge/providers/azure_secret.py +71 -0
  585. tools/cloudforge/providers/gcp.py +102 -0
  586. tools/cloudforge/providers/oci.py +102 -0
  587. tools/cloudforge/registry.py +140 -0
  588. tools/cloudforge/runbooks/__init__.py +2 -0
  589. tools/cloudforge/runbooks/ai_generator.py +119 -0
  590. tools/cloudforge/runbooks/dag_validator.py +219 -0
  591. tools/cloudforge/runbooks/engine.py +470 -0
  592. tools/cloudforge/runbooks/models.py +99 -0
  593. tools/cloudforge/runbooks/snippet_library.py +158 -0
  594. tools/cloudforge/runbooks/template_loader.py +122 -0
  595. tools/cloudforge/runbooks/visualization.py +108 -0
  596. tools/cloudforge/siem/__init__.py +2 -0
  597. tools/cloudforge/siem/alert_rules.py +86 -0
  598. tools/cloudforge/siem/correlation_engine.py +61 -0
  599. tools/cloudforge/siem/log_aggregator.py +113 -0
  600. tools/cloudforge/siem/siem_dashboard_data.py +28 -0
  601. tools/cloudforge/supply_chain/__init__.py +2 -0
  602. tools/cloudforge/supply_chain/bridge.py +33 -0
  603. tools/cloudforge/supply_chain/iac_dependency_scanner.py +36 -0
  604. tools/cloudforge/supply_chain/provider_trust_scorer.py +54 -0
  605. tools/compat/__init__.py +21 -0
  606. tools/compat/cli_harmonizer.py +251 -0
  607. tools/compat/datetime_utils.py +18 -0
  608. tools/compat/db_utils.py +190 -0
  609. tools/compat/platform_utils.py +123 -0
  610. tools/compliance/__init__.py +1 -0
  611. tools/compliance/accountability_manager.py +391 -0
  612. tools/compliance/ai_accountability_audit.py +287 -0
  613. tools/compliance/ai_impact_assessor.py +267 -0
  614. tools/compliance/ai_incident_response.py +295 -0
  615. tools/compliance/ai_inventory_manager.py +233 -0
  616. tools/compliance/ai_reassessment_scheduler.py +250 -0
  617. tools/compliance/ai_transparency_audit.py +247 -0
  618. tools/compliance/atlas_assessor.py +276 -0
  619. tools/compliance/atlas_report_generator.py +1199 -0
  620. tools/compliance/base_assessor.py +591 -0
  621. tools/compliance/cato_live_engine.py +607 -0
  622. tools/compliance/cato_monitor.py +1371 -0
  623. tools/compliance/cato_scheduler.py +698 -0
  624. tools/compliance/cjis_assessor.py +76 -0
  625. tools/compliance/classification_manager.py +1340 -0
  626. tools/compliance/cmmc_assessor.py +1478 -0
  627. tools/compliance/cmmc_report_generator.py +1087 -0
  628. tools/compliance/compliance_detector.py +452 -0
  629. tools/compliance/compliance_exporter.py +418 -0
  630. tools/compliance/compliance_status.py +810 -0
  631. tools/compliance/control_mapper.py +488 -0
  632. tools/compliance/crosswalk_engine.py +1208 -0
  633. tools/compliance/cssp_assessor.py +1032 -0
  634. tools/compliance/cssp_evidence_collector.py +716 -0
  635. tools/compliance/cssp_report_generator.py +1103 -0
  636. tools/compliance/cui_marker.py +387 -0
  637. tools/compliance/diagram_validator.py +599 -0
  638. tools/compliance/emass/__init__.py +2 -0
  639. tools/compliance/emass/emass_client.py +822 -0
  640. tools/compliance/emass/emass_export.py +758 -0
  641. tools/compliance/emass/emass_sync.py +807 -0
  642. tools/compliance/eu_ai_act_classifier.py +193 -0
  643. tools/compliance/evidence_collector.py +459 -0
  644. tools/compliance/fairness_assessor.py +310 -0
  645. tools/compliance/fedramp_20x_ksi_emitter.py +692 -0
  646. tools/compliance/fedramp_assessor.py +1795 -0
  647. tools/compliance/fedramp_authorization_packager.py +137 -0
  648. tools/compliance/fedramp_ksi_generator.py +349 -0
  649. tools/compliance/fedramp_report_generator.py +1115 -0
  650. tools/compliance/fips199_categorizer.py +869 -0
  651. tools/compliance/fips200_validator.py +304 -0
  652. tools/compliance/firmware_sbom.py +646 -0
  653. tools/compliance/gao_ai_assessor.py +228 -0
  654. tools/compliance/gao_evidence_builder.py +302 -0
  655. tools/compliance/hipaa_assessor.py +78 -0
  656. tools/compliance/hitrust_assessor.py +49 -0
  657. tools/compliance/incident_response_plan.py +705 -0
  658. tools/compliance/inheritance_engine.py +693 -0
  659. tools/compliance/iso27001_assessor.py +92 -0
  660. tools/compliance/iso42001_assessor.py +114 -0
  661. tools/compliance/ivv_assessor.py +2314 -0
  662. tools/compliance/ivv_report_generator.py +1649 -0
  663. tools/compliance/model_card_generator.py +291 -0
  664. tools/compliance/mosa_assessor.py +117 -0
  665. tools/compliance/multi_regime_assessor.py +441 -0
  666. tools/compliance/narrative_generator.py +1012 -0
  667. tools/compliance/narrative_quality_gate.py +701 -0
  668. tools/compliance/narrative_workflow.py +814 -0
  669. tools/compliance/nist_800_207_assessor.py +191 -0
  670. tools/compliance/nist_ai_600_1_assessor.py +185 -0
  671. tools/compliance/nist_ai_rmf_assessor.py +110 -0
  672. tools/compliance/nist_lookup.py +244 -0
  673. tools/compliance/omb_m25_21_assessor.py +225 -0
  674. tools/compliance/omb_m26_04_assessor.py +185 -0
  675. tools/compliance/oscal_catalog_adapter.py +395 -0
  676. tools/compliance/oscal_generator.py +2157 -0
  677. tools/compliance/oscal_tools.py +1182 -0
  678. tools/compliance/oscal_validator.py +692 -0
  679. tools/compliance/owasp_agentic_assessor.py +227 -0
  680. tools/compliance/owasp_asi_assessor.py +197 -0
  681. tools/compliance/owasp_llm_assessor.py +245 -0
  682. tools/compliance/pci_dss_assessor.py +80 -0
  683. tools/compliance/pi_compliance_tracker.py +1447 -0
  684. tools/compliance/poam_generator.py +388 -0
  685. tools/compliance/resolve_marking.py +272 -0
  686. tools/compliance/sbd_assessor.py +2070 -0
  687. tools/compliance/sbd_report_generator.py +1223 -0
  688. tools/compliance/sbom_generator.py +993 -0
  689. tools/compliance/siem_config_generator.py +661 -0
  690. tools/compliance/slsa_attestation_generator.py +479 -0
  691. tools/compliance/soc2_assessor.py +77 -0
  692. tools/compliance/ssp_generator.py +556 -0
  693. tools/compliance/stig_checker.py +712 -0
  694. tools/compliance/swft_evidence_bundler.py +326 -0
  695. tools/compliance/system_card_generator.py +303 -0
  696. tools/compliance/template_exchange.py +513 -0
  697. tools/compliance/traceability_matrix.py +1268 -0
  698. tools/compliance/universal_classification_manager.py +1159 -0
  699. tools/compliance/xacta/__init__.py +2 -0
  700. tools/compliance/xacta/xacta_client.py +438 -0
  701. tools/compliance/xacta/xacta_export.py +546 -0
  702. tools/compliance/xacta/xacta_sync.py +322 -0
  703. tools/compliance/xai_assessor.py +231 -0
  704. tools/core/__init__.py +2 -0
  705. tools/core/circuit_breaker.py +353 -0
  706. tools/core/compliance_sidecar.py +344 -0
  707. tools/core/container.py +110 -0
  708. tools/core/errors.py +256 -0
  709. tools/core/feature_flags.py +311 -0
  710. tools/core/task_dlq.py +350 -0
  711. tools/dashboard/__init__.py +2 -0
  712. tools/dashboard/app.py +6288 -0
  713. tools/dashboard/templates/agent_evolution.html +287 -0
  714. tools/dashboard/templates/agents/list.html +71 -0
  715. tools/dashboard/templates/agents.html +132 -0
  716. tools/dashboard/templates/architecture.html +289 -0
  717. tools/dashboard/templates/ato_simulator.html +170 -0
  718. tools/dashboard/templates/audit_engine.html +844 -0
  719. tools/dashboard/templates/base.html +236 -0
  720. tools/dashboard/templates/cato_live.html +116 -0
  721. tools/dashboard/templates/cloudforge.html +195 -0
  722. tools/dashboard/templates/cloudforge_finops.html +111 -0
  723. tools/dashboard/templates/cloudforge_hybrid.html +122 -0
  724. tools/dashboard/templates/cloudforge_metastore.html +234 -0
  725. tools/dashboard/templates/cloudforge_migration.html +87 -0
  726. tools/dashboard/templates/cloudforge_runbooks.html +201 -0
  727. tools/dashboard/templates/cloudforge_siem.html +94 -0
  728. tools/dashboard/templates/compliance_accel.html +292 -0
  729. tools/dashboard/templates/crashes.html +122 -0
  730. tools/dashboard/templates/databridge.html +305 -0
  731. tools/dashboard/templates/databridge_analytics.html +195 -0
  732. tools/dashboard/templates/databridge_mapping.html +345 -0
  733. tools/dashboard/templates/databridge_messaging.html +321 -0
  734. tools/dashboard/templates/decisions.html +258 -0
  735. tools/dashboard/templates/devices.html +151 -0
  736. tools/dashboard/templates/devsecops_maturity.html +278 -0
  737. tools/dashboard/templates/edge_ai.html +128 -0
  738. tools/dashboard/templates/firmware.html +120 -0
  739. tools/dashboard/templates/firmware_sbom.html +193 -0
  740. tools/dashboard/templates/forge_hub.html +196 -0
  741. tools/dashboard/templates/forge_studio.html +379 -0
  742. tools/dashboard/templates/forge_studio_analytics.html +360 -0
  743. tools/dashboard/templates/forge_studio_builder.html +1637 -0
  744. tools/dashboard/templates/forge_studio_compliance.html +310 -0
  745. tools/dashboard/templates/forge_studio_deploy.html +573 -0
  746. tools/dashboard/templates/forge_studio_enterprise.html +888 -0
  747. tools/dashboard/templates/forge_studio_marketplace.html +502 -0
  748. tools/dashboard/templates/forge_studio_workflow.html +696 -0
  749. tools/dashboard/templates/golden_path.html +175 -0
  750. tools/dashboard/templates/govcon.html +280 -0
  751. tools/dashboard/templates/harness.html +148 -0
  752. tools/dashboard/templates/index.html +207 -0
  753. tools/dashboard/templates/intelligence.html +336 -0
  754. tools/dashboard/templates/knowledge/index.html +190 -0
  755. tools/dashboard/templates/knowledge_graph.html +739 -0
  756. tools/dashboard/templates/login.html +51 -0
  757. tools/dashboard/templates/marketplace.html +336 -0
  758. tools/dashboard/templates/marketplace_admin.html +247 -0
  759. tools/dashboard/templates/missions.html +403 -0
  760. tools/dashboard/templates/narratives.html +154 -0
  761. tools/dashboard/templates/pr_intelligence.html +151 -0
  762. tools/dashboard/templates/proposals/detail.html +300 -0
  763. tools/dashboard/templates/proposals/list.html +52 -0
  764. tools/dashboard/templates/proposals/sam_detail.html +132 -0
  765. tools/dashboard/templates/proposals/section_detail.html +375 -0
  766. tools/dashboard/templates/research.html +222 -0
  767. tools/dashboard/templates/resilience.html +300 -0
  768. tools/dashboard/templates/scorecard.html +162 -0
  769. tools/dashboard/templates/simulator.html +131 -0
  770. tools/dashboard/templates/template_exchange.html +147 -0
  771. tools/dashboard/templates/thread_heatmap.html +151 -0
  772. tools/dashboard/templates/threat_model.html +195 -0
  773. tools/dashboard/templates/vsm.html +141 -0
  774. tools/dashboard/templates/writeguard.html +277 -0
  775. tools/databridge/__init__.py +5 -0
  776. tools/databridge/agent/__init__.py +2 -0
  777. tools/databridge/agent/daemon.py +227 -0
  778. tools/databridge/agent/tunnel.py +101 -0
  779. tools/databridge/agent/ws_relay.py +91 -0
  780. tools/databridge/analytics.py +167 -0
  781. tools/databridge/arrow_pipeline.py +327 -0
  782. tools/databridge/connection_manager.py +424 -0
  783. tools/databridge/connector.py +331 -0
  784. tools/databridge/connectors/__init__.py +2 -0
  785. tools/databridge/connectors/argocd_connector.py +160 -0
  786. tools/databridge/connectors/avro_connector.py +203 -0
  787. tools/databridge/connectors/azure_blob.py +63 -0
  788. tools/databridge/connectors/cdc_connector.py +205 -0
  789. tools/databridge/connectors/csv_connector.py +172 -0
  790. tools/databridge/connectors/datadog_connector.py +153 -0
  791. tools/databridge/connectors/discord_messaging.py +215 -0
  792. tools/databridge/connectors/dynamics365.py +151 -0
  793. tools/databridge/connectors/elasticsearch_connector.py +145 -0
  794. tools/databridge/connectors/email_base.py +114 -0
  795. tools/databridge/connectors/excel_connector.py +175 -0
  796. tools/databridge/connectors/fsspec_base.py +300 -0
  797. tools/databridge/connectors/gcs.py +53 -0
  798. tools/databridge/connectors/github_connector.py +138 -0
  799. tools/databridge/connectors/gitlab_connector.py +132 -0
  800. tools/databridge/connectors/gmail_connector.py +182 -0
  801. tools/databridge/connectors/hdfs.py +57 -0
  802. tools/databridge/connectors/health_base.py +401 -0
  803. tools/databridge/connectors/hubspot.py +124 -0
  804. tools/databridge/connectors/imap_connector.py +171 -0
  805. tools/databridge/connectors/jenkins_connector.py +138 -0
  806. tools/databridge/connectors/jira_connector.py +86 -0
  807. tools/databridge/connectors/json_connector.py +184 -0
  808. tools/databridge/connectors/kafka_connector.py +246 -0
  809. tools/databridge/connectors/kinesis_connector.py +238 -0
  810. tools/databridge/connectors/local_fs.py +30 -0
  811. tools/databridge/connectors/matrix.py +197 -0
  812. tools/databridge/connectors/mattermost_messaging.py +184 -0
  813. tools/databridge/connectors/messaging_base.py +172 -0
  814. tools/databridge/connectors/mssql.py +63 -0
  815. tools/databridge/connectors/mysql.py +57 -0
  816. tools/databridge/connectors/netsuite.py +170 -0
  817. tools/databridge/connectors/o365_mail.py +196 -0
  818. tools/databridge/connectors/oracle.py +65 -0
  819. tools/databridge/connectors/pagerduty_connector.py +162 -0
  820. tools/databridge/connectors/parquet_connector.py +131 -0
  821. tools/databridge/connectors/postgresql.py +58 -0
  822. tools/databridge/connectors/s3.py +65 -0
  823. tools/databridge/connectors/saas_base.py +198 -0
  824. tools/databridge/connectors/salesforce.py +126 -0
  825. tools/databridge/connectors/sap.py +89 -0
  826. tools/databridge/connectors/servicenow.py +60 -0
  827. tools/databridge/connectors/signal_messaging.py +150 -0
  828. tools/databridge/connectors/slack_messaging.py +203 -0
  829. tools/databridge/connectors/smtp_connector.py +126 -0
  830. tools/databridge/connectors/soap_base.py +258 -0
  831. tools/databridge/connectors/splunk_connector.py +171 -0
  832. tools/databridge/connectors/sql_base.py +310 -0
  833. tools/databridge/connectors/sqlite_connector.py +76 -0
  834. tools/databridge/connectors/teams.py +148 -0
  835. tools/databridge/connectors/telegram.py +192 -0
  836. tools/databridge/connectors/whatsapp.py +137 -0
  837. tools/databridge/data_profiler.py +99 -0
  838. tools/databridge/forge/__init__.py +6 -0
  839. tools/databridge/forge/base_selector.py +150 -0
  840. tools/databridge/forge/code_generator.py +206 -0
  841. tools/databridge/forge/community_hub.py +539 -0
  842. tools/databridge/forge/forge_agent.py +306 -0
  843. tools/databridge/forge/import_handler.py +133 -0
  844. tools/databridge/forge/integration_tester.py +127 -0
  845. tools/databridge/forge/marketplace_publisher.py +164 -0
  846. tools/databridge/forge/promoter.py +159 -0
  847. tools/databridge/forge/sandbox_manager.py +257 -0
  848. tools/databridge/forge/spec_parser.py +358 -0
  849. tools/databridge/forge/static_validator.py +363 -0
  850. tools/databridge/forge/templates/__init__.py +591 -0
  851. tools/databridge/format_converter.py +188 -0
  852. tools/databridge/mapping_engine.py +348 -0
  853. tools/databridge/messaging/__init__.py +5 -0
  854. tools/databridge/messaging/agent_bridge.py +254 -0
  855. tools/databridge/messaging/message_envelope.py +111 -0
  856. tools/databridge/messaging/message_logger.py +204 -0
  857. tools/databridge/messaging/messaging_daemon.py +326 -0
  858. tools/databridge/messaging/oauth2_manager.py +411 -0
  859. tools/databridge/pii_detector.py +221 -0
  860. tools/databridge/registry.py +352 -0
  861. tools/databridge/relay_server.py +105 -0
  862. tools/databridge/scale/__init__.py +16 -0
  863. tools/databridge/scale/backpressure.py +134 -0
  864. tools/databridge/scale/chunked_pipeline.py +169 -0
  865. tools/databridge/scale/connection_pool.py +293 -0
  866. tools/databridge/scale/engine.py +492 -0
  867. tools/databridge/scale/worker_pool.py +140 -0
  868. tools/databridge/scale/write_batcher.py +250 -0
  869. tools/databridge/schema_engine.py +324 -0
  870. tools/databridge/stream_manager.py +225 -0
  871. tools/databridge/sync_engine.py +411 -0
  872. tools/databridge/transforms.py +302 -0
  873. tools/db/__init__.py +1 -0
  874. tools/db/backup.py +312 -0
  875. tools/db/backup_manager.py +832 -0
  876. tools/db/init_icdev_db.py +7753 -0
  877. tools/db/init_sparkpilot_db.py +431 -0
  878. tools/db/migrate.py +177 -0
  879. tools/db/migrate_innovation_audit.py +165 -0
  880. tools/db/migration_runner.py +548 -0
  881. tools/db/migrations/001_baseline/meta.json +9 -0
  882. tools/db/migrations/001_baseline/up.py +67 -0
  883. tools/db/migrations/002_memory_enhancements/down.sql +8 -0
  884. tools/db/migrations/002_memory_enhancements/meta.json +9 -0
  885. tools/db/migrations/002_memory_enhancements/up.py +119 -0
  886. tools/db/migrations/003_dev_profiles/meta.json +8 -0
  887. tools/db/migrations/003_dev_profiles/up.py +93 -0
  888. tools/db/migrations/004_innovation_engine/down.py +19 -0
  889. tools/db/migrations/004_innovation_engine/up.py +227 -0
  890. tools/db/migrations/005_phase_37_ai_security/down.py +19 -0
  891. tools/db/migrations/005_phase_37_ai_security/up.py +257 -0
  892. tools/db/migrations/006_phase_36_evolution/down.py +21 -0
  893. tools/db/migrations/006_phase_36_evolution/up.py +323 -0
  894. tools/db/migrations/007_phase_38_cloud/down.py +14 -0
  895. tools/db/migrations/007_phase_38_cloud/up.py +110 -0
  896. tools/db/migrations/008_phase36_37_integration/up.py +55 -0
  897. tools/db/migrations/__init__.py +2 -0
  898. tools/db/pg_migrate.py +642 -0
  899. tools/db/storage.py +1080 -0
  900. tools/decisions/__init__.py +2 -0
  901. tools/decisions/dmn_engine.py +695 -0
  902. tools/devsecops/__init__.py +2 -0
  903. tools/devsecops/attestation_manager.py +449 -0
  904. tools/devsecops/network_segmentation_generator.py +604 -0
  905. tools/devsecops/pdp_config_generator.py +1246 -0
  906. tools/devsecops/pipeline_security_generator.py +475 -0
  907. tools/devsecops/policy_generator.py +644 -0
  908. tools/devsecops/profile_manager.py +374 -0
  909. tools/devsecops/service_mesh_generator.py +1063 -0
  910. tools/devsecops/zta_maturity_scorer.py +355 -0
  911. tools/devsecops/zta_terraform_generator.py +1301 -0
  912. tools/edge_ai/__init__.py +2 -0
  913. tools/edge_ai/model_manager.py +200 -0
  914. tools/embedded/__init__.py +2 -0
  915. tools/embedded/cmake_generator.py +318 -0
  916. tools/embedded/crash_analyzer.py +191 -0
  917. tools/embedded/nl_to_firmware.py +277 -0
  918. tools/events/__init__.py +1 -0
  919. tools/events/event_bus.py +199 -0
  920. tools/finetune/pair_generator.py +832 -0
  921. tools/fleet/__init__.py +2 -0
  922. tools/fleet/device_registry.py +148 -0
  923. tools/fleet/ota_manager.py +153 -0
  924. tools/forge_studio/__init__.py +13 -0
  925. tools/forge_studio/analytics/__init__.py +0 -0
  926. tools/forge_studio/analytics/process_miner.py +383 -0
  927. tools/forge_studio/audit.py +183 -0
  928. tools/forge_studio/blueprint/__init__.py +2 -0
  929. tools/forge_studio/blueprint/build_tracker.py +317 -0
  930. tools/forge_studio/blueprint/export_engine.py +441 -0
  931. tools/forge_studio/blueprint/parent_client.py +335 -0
  932. tools/forge_studio/catalog/__init__.py +2 -0
  933. tools/forge_studio/catalog/component_registry.py +176 -0
  934. tools/forge_studio/catalog/schema_validator.py +193 -0
  935. tools/forge_studio/compliance/__init__.py +1 -0
  936. tools/forge_studio/compliance/compliance_wiring.py +554 -0
  937. tools/forge_studio/deploy/__init__.py +1 -0
  938. tools/forge_studio/deploy/airgap_packager.py +466 -0
  939. tools/forge_studio/deploy/deploy_engine.py +1792 -0
  940. tools/forge_studio/deploy/env_manager.py +431 -0
  941. tools/forge_studio/eject/__init__.py +2 -0
  942. tools/forge_studio/eject/docker_compose_generator.py +237 -0
  943. tools/forge_studio/eject/eject_engine.py +230 -0
  944. tools/forge_studio/eject/expo_scaffolder.py +303 -0
  945. tools/forge_studio/eject/nextjs_scaffolder.py +338 -0
  946. tools/forge_studio/enterprise/__init__.py +0 -0
  947. tools/forge_studio/enterprise/custom_frameworks.py +826 -0
  948. tools/forge_studio/enterprise/hardening_engine.py +1530 -0
  949. tools/forge_studio/enterprise/sso_manager.py +718 -0
  950. tools/forge_studio/enterprise/whitelabel_engine.py +887 -0
  951. tools/forge_studio/formula/__init__.py +0 -0
  952. tools/forge_studio/formula/expression_engine.py +562 -0
  953. tools/forge_studio/formula/formula_registry.py +265 -0
  954. tools/forge_studio/generator/__init__.py +2 -0
  955. tools/forge_studio/generator/app_generator.py +584 -0
  956. tools/forge_studio/generator/complexity_detector.py +368 -0
  957. tools/forge_studio/generator/prompt_templates.py +104 -0
  958. tools/forge_studio/generator/spec_builder.py +192 -0
  959. tools/forge_studio/intake_bridge.py +898 -0
  960. tools/forge_studio/marketplace/__init__.py +0 -0
  961. tools/forge_studio/marketplace/component_hub.py +428 -0
  962. tools/forge_studio/models.py +369 -0
  963. tools/forge_studio/renderer/__init__.py +2 -0
  964. tools/forge_studio/renderer/json_render_engine.py +623 -0
  965. tools/forge_studio/renderer/layout_engine.py +214 -0
  966. tools/forge_studio/renderer/rn_component_map.py +182 -0
  967. tools/forge_studio/supabase/__init__.py +2 -0
  968. tools/forge_studio/supabase/auth_generator.py +283 -0
  969. tools/forge_studio/supabase/migration_generator.py +93 -0
  970. tools/forge_studio/supabase/schema_generator.py +281 -0
  971. tools/forge_studio/tenant_manager.py +387 -0
  972. tools/forge_studio/workflow/__init__.py +2 -0
  973. tools/forge_studio/workflow/bpmn_adapter.py +489 -0
  974. tools/govcon/draft_orchestrator.py +1151 -0
  975. tools/govcon/engine_enrichment.py +373 -0
  976. tools/govcon/knowledge_base.py +487 -0
  977. tools/govcon/knowledge_ingestion.py +510 -0
  978. tools/govcon/sam_scanner.py +754 -0
  979. tools/harness/__init__.py +6 -0
  980. tools/harness/exit_criteria_evaluator.py +231 -0
  981. tools/harness/maturity_assessor.py +347 -0
  982. tools/harness/scaffold_harness.py +416 -0
  983. tools/harness/trace_analyzer.py +281 -0
  984. tools/infra/__init__.py +1 -0
  985. tools/infra/ansible_generator.py +867 -0
  986. tools/infra/dockerfile_generator.py +359 -0
  987. tools/infra/infra_status.py +384 -0
  988. tools/infra/ironbank_metadata_generator.py +403 -0
  989. tools/infra/k8s_generator.py +1000 -0
  990. tools/infra/pipeline_generator.py +830 -0
  991. tools/infra/rollback.py +389 -0
  992. tools/infra/terraform_generator.py +1140 -0
  993. tools/infra/terraform_generator_azure.py +1252 -0
  994. tools/infra/terraform_generator_gcp.py +951 -0
  995. tools/infra/terraform_generator_ibm.py +359 -0
  996. tools/infra/terraform_generator_oci.py +918 -0
  997. tools/infra/terraform_generator_onprem.py +318 -0
  998. tools/knowledge/__init__.py +1 -0
  999. tools/knowledge/knowledge_ingest.py +281 -0
  1000. tools/knowledge/pattern_detector.py +681 -0
  1001. tools/knowledge/recommendation_engine.py +449 -0
  1002. tools/knowledge/self_heal_analyzer.py +492 -0
  1003. tools/knowledge_graph/__init__.py +2 -0
  1004. tools/knowledge_graph/graph_rag.py +498 -0
  1005. tools/knowledge_graph/ingester.py +406 -0
  1006. tools/knowledge_graph/insight_generator.py +369 -0
  1007. tools/knowledge_graph/text_network.py +832 -0
  1008. tools/llm/__init__.py +72 -0
  1009. tools/llm/anthropic_provider.py +170 -0
  1010. tools/llm/azure_openai_provider.py +338 -0
  1011. tools/llm/bedrock_provider.py +315 -0
  1012. tools/llm/embedding_provider.py +438 -0
  1013. tools/llm/gemini_provider.py +381 -0
  1014. tools/llm/ibm_watsonx_provider.py +231 -0
  1015. tools/llm/oci_genai_provider.py +462 -0
  1016. tools/llm/ollama_provider.py +350 -0
  1017. tools/llm/openai_provider.py +225 -0
  1018. tools/llm/prompt_registry.py +447 -0
  1019. tools/llm/provider.py +355 -0
  1020. tools/llm/provider_sdk.py +175 -0
  1021. tools/llm/router.py +1124 -0
  1022. tools/llm/semantic_cache.py +394 -0
  1023. tools/llm/vertex_ai_provider.py +374 -0
  1024. tools/maintenance/__init__.py +2 -0
  1025. tools/maintenance/dependency_scanner.py +1016 -0
  1026. tools/maintenance/maintenance_auditor.py +804 -0
  1027. tools/maintenance/remediation_engine.py +957 -0
  1028. tools/maintenance/vulnerability_checker.py +978 -0
  1029. tools/manifest.md +1066 -0
  1030. tools/marketplace/asset_installer.py +639 -0
  1031. tools/marketplace/feedback_validator.py +359 -0
  1032. tools/marketplace/license_client.py +458 -0
  1033. tools/marketplace/module_crypto.py +544 -0
  1034. tools/marketplace/module_runtime.py +236 -0
  1035. tools/marketplace/token_store.py +264 -0
  1036. tools/mbse/__init__.py +3 -0
  1037. tools/mbse/des_assessor.py +1173 -0
  1038. tools/mbse/des_report_generator.py +787 -0
  1039. tools/mbse/diagram_extractor.py +792 -0
  1040. tools/mbse/digital_thread.py +1650 -0
  1041. tools/mbse/model_code_generator.py +1115 -0
  1042. tools/mbse/model_control_mapper.py +410 -0
  1043. tools/mbse/pi_model_tracker.py +1079 -0
  1044. tools/mbse/reqif_parser.py +1468 -0
  1045. tools/mbse/sync_engine.py +1789 -0
  1046. tools/mbse/thread_heatmap.py +445 -0
  1047. tools/mbse/xmi_parser.py +1558 -0
  1048. tools/mcp/builder_server.py +64 -0
  1049. tools/mcp/compliance_server.py +64 -0
  1050. tools/mcp/connector_forge_server.py +155 -0
  1051. tools/mcp/core_server.py +64 -0
  1052. tools/mcp/devsecops_server.py +11 -0
  1053. tools/mcp/devsecops_zta_server.py +64 -0
  1054. tools/mcp/knowledge_server.py +64 -0
  1055. tools/mcp/monitor_server.py +64 -0
  1056. tools/mcp/ops_server.py +300 -0
  1057. tools/mcp/requirements_analyst_server.py +64 -0
  1058. tools/mcp/requirements_server.py +11 -0
  1059. tools/mcp/security_server.py +64 -0
  1060. tools/mcp/simulation_server.py +64 -0
  1061. tools/mcp/supply_chain_server.py +64 -0
  1062. tools/mcp/tool_registry.py +299 -0
  1063. tools/memory/__init__.py +2 -0
  1064. tools/memory/auto_capture.py +346 -0
  1065. tools/memory/embed_memory.py +157 -0
  1066. tools/memory/history_compressor.py +334 -0
  1067. tools/memory/hybrid_search.py +235 -0
  1068. tools/memory/maintenance_cron.py +288 -0
  1069. tools/memory/memory_consolidation.py +439 -0
  1070. tools/memory/memory_db.py +132 -0
  1071. tools/memory/memory_read.py +101 -0
  1072. tools/memory/memory_write.py +221 -0
  1073. tools/memory/semantic_search.py +138 -0
  1074. tools/memory/time_decay.py +434 -0
  1075. tools/missions/__init__.py +2 -0
  1076. tools/missions/mission_engine.py +459 -0
  1077. tools/monitor/__init__.py +1 -0
  1078. tools/monitor/alert_correlator.py +486 -0
  1079. tools/monitor/auto_resolver.py +603 -0
  1080. tools/monitor/health_checker.py +507 -0
  1081. tools/monitor/heartbeat_daemon.py +779 -0
  1082. tools/monitor/log_analyzer.py +507 -0
  1083. tools/monitor/metric_collector.py +484 -0
  1084. tools/mosa/__init__.py +10 -0
  1085. tools/mosa/icd_generator.py +358 -0
  1086. tools/mosa/modular_design_analyzer.py +682 -0
  1087. tools/mosa/mosa_code_enforcer.py +348 -0
  1088. tools/mosa/tsp_generator.py +265 -0
  1089. tools/observability/__init__.py +100 -0
  1090. tools/observability/genai_attributes.py +88 -0
  1091. tools/observability/instrumentation.py +140 -0
  1092. tools/observability/mlflow_exporter.py +193 -0
  1093. tools/observability/otel_tracer.py +168 -0
  1094. tools/observability/provenance/__init__.py +3 -0
  1095. tools/observability/provenance/prov_recorder.py +322 -0
  1096. tools/observability/shap/__init__.py +3 -0
  1097. tools/observability/shap/agent_shap.py +274 -0
  1098. tools/observability/sqlite_tracer.py +360 -0
  1099. tools/observability/trace_context.py +205 -0
  1100. tools/observability/tracer.py +230 -0
  1101. tools/orchestration/__init__.py +1 -0
  1102. tools/orchestration/peer_channels.py +254 -0
  1103. tools/orchestration/saga_coordinator.py +390 -0
  1104. tools/project/__init__.py +1 -0
  1105. tools/project/manifest_loader.py +418 -0
  1106. tools/project/project_create.py +350 -0
  1107. tools/project/project_list.py +171 -0
  1108. tools/project/project_scaffold.py +1715 -0
  1109. tools/project/project_status.py +478 -0
  1110. tools/project/session_context_builder.py +752 -0
  1111. tools/project/validate_manifest.py +54 -0
  1112. tools/rag/corrective_rag.py +582 -0
  1113. tools/rag/source_registry.py +482 -0
  1114. tools/requirements/__init__.py +1 -0
  1115. tools/requirements/ai_governance_scorer.py +207 -0
  1116. tools/requirements/boundary_analyzer.py +1281 -0
  1117. tools/requirements/clarification_engine.py +605 -0
  1118. tools/requirements/complexity_scorer.py +369 -0
  1119. tools/requirements/consistency_analyzer.py +789 -0
  1120. tools/requirements/constitution_manager.py +592 -0
  1121. tools/requirements/decomposition_engine.py +764 -0
  1122. tools/requirements/document_extractor.py +1002 -0
  1123. tools/requirements/elicitation_techniques.py +508 -0
  1124. tools/requirements/gap_detector.py +260 -0
  1125. tools/requirements/intake_engine.py +2175 -0
  1126. tools/requirements/prd_generator.py +839 -0
  1127. tools/requirements/prd_validator.py +584 -0
  1128. tools/requirements/readiness_scorer.py +302 -0
  1129. tools/requirements/spec_organizer.py +1015 -0
  1130. tools/requirements/spec_quality_checker.py +1083 -0
  1131. tools/requirements/traceability_builder.py +566 -0
  1132. tools/research/__init__.py +3 -0
  1133. tools/research/academic_scanner.py +130 -0
  1134. tools/research/build_buy_analyzer.py +229 -0
  1135. tools/research/challenge_scorer.py +280 -0
  1136. tools/research/community_scanner.py +174 -0
  1137. tools/research/cross_engine_bridge.py +124 -0
  1138. tools/research/dossier_generator.py +305 -0
  1139. tools/research/landscape_scanner.py +315 -0
  1140. tools/research/regulatory_scanner.py +248 -0
  1141. tools/research/research_manager.py +469 -0
  1142. tools/research/source_scanner.py +150 -0
  1143. tools/research/vertical_loader.py +118 -0
  1144. tools/saas/__init__.py +0 -0
  1145. tools/saas/licensing/__init__.py +0 -0
  1146. tools/saas/licensing/license_validator.py +345 -0
  1147. tools/scaffold/__init__.py +2 -0
  1148. tools/scaffold/golden_path.py +504 -0
  1149. tools/security/__init__.py +1 -0
  1150. tools/security/agent_output_validator.py +330 -0
  1151. tools/security/agent_trust_scorer.py +652 -0
  1152. tools/security/ai_bom_generator.py +718 -0
  1153. tools/security/ai_telemetry_logger.py +469 -0
  1154. tools/security/atlas_red_team.py +541 -0
  1155. tools/security/code_pattern_scanner.py +382 -0
  1156. tools/security/confabulation_detector.py +265 -0
  1157. tools/security/container_scanner.py +489 -0
  1158. tools/security/dependency_auditor.py +942 -0
  1159. tools/security/endpoint_security_scanner.py +626 -0
  1160. tools/security/mcp_tool_authorizer.py +242 -0
  1161. tools/security/output_verifier.py +427 -0
  1162. tools/security/prompt_injection_detector.py +737 -0
  1163. tools/security/sast_runner.py +946 -0
  1164. tools/security/secret_detector.py +376 -0
  1165. tools/security/threat_modeler.py +678 -0
  1166. tools/security/tool_chain_validator.py +357 -0
  1167. tools/security/vuln_scanner.py +536 -0
  1168. tools/simulation/__init__.py +2 -0
  1169. tools/simulation/ato_simulator.py +517 -0
  1170. tools/simulation/coa_generator.py +1539 -0
  1171. tools/simulation/monte_carlo.py +745 -0
  1172. tools/simulation/scenario_manager.py +1060 -0
  1173. tools/simulation/simulation_engine.py +1091 -0
  1174. tools/simulator/__init__.py +2 -0
  1175. tools/simulator/sim_runner.py +272 -0
  1176. tools/supply_chain/__init__.py +2 -0
  1177. tools/supply_chain/cve_triager.py +690 -0
  1178. tools/supply_chain/dependency_graph.py +630 -0
  1179. tools/supply_chain/isa_manager.py +526 -0
  1180. tools/supply_chain/scrm_assessor.py +531 -0
  1181. tools/supply_chain/slsa_verifier.py +473 -0
  1182. tools/testing/__init__.py +2 -0
  1183. tools/testing/acceptance_validator.py +411 -0
  1184. tools/testing/api_surface_extractor.py +749 -0
  1185. tools/testing/claude_dir_validator.py +831 -0
  1186. tools/testing/data_types.py +199 -0
  1187. tools/testing/e2e_runner.py +715 -0
  1188. tools/testing/fuzz_cli.py +306 -0
  1189. tools/testing/health_check.py +483 -0
  1190. tools/testing/platform_check.py +143 -0
  1191. tools/testing/production_audit.py +1836 -0
  1192. tools/testing/production_remediate.py +803 -0
  1193. tools/testing/screenshot_validator.py +538 -0
  1194. tools/testing/smoke_test.py +283 -0
  1195. tools/testing/test_agent_models.py +117 -0
  1196. tools/testing/test_orchestrator.py +957 -0
  1197. tools/testing/utils.py +229 -0
  1198. tools/writeguard/__init__.py +1 -0
  1199. tools/writeguard/main.py +1 -0
  1200. tools/writing/__init__.py +7 -0
  1201. tools/writing/ai_content_detector.py +316 -0
  1202. tools/writing/analysis_engine.py +454 -0
  1203. tools/writing/batch_analyzer.py +276 -0
  1204. tools/writing/coherence_analyzer.py +221 -0
  1205. tools/writing/govcon_bridge.py +509 -0
  1206. tools/writing/grammar_checker.py +270 -0
  1207. tools/writing/plagiarism_detector.py +106 -0
  1208. tools/writing/readability_scorer.py +201 -0
  1209. tools/writing/rewriter.py +96 -0
  1210. tools/writing/signal_registrar.py +167 -0
  1211. tools/writing/snippet_manager.py +276 -0
  1212. tools/writing/style_enforcer.py +220 -0
  1213. tools/writing/style_guide_manager.py +438 -0
  1214. tools/writing/tone_profiler.py +168 -0
context/compliance/control_crosswalk.json ADDED
@@ -0,0 +1,1914 @@
1
+ {
2
+ "metadata": {
3
+ "title": "Unified Control Framework Crosswalk",
4
+ "source": "NIST SP 800-53 Rev 5, FedRAMP Rev 5, NIST SP 800-171 Rev 2, CMMC v2.0, DISA STIGs",
5
+ "classification": "CUI // SP-CTI",
6
+ "version": "1.0",
7
+ "last_updated": "2026-02-15",
8
+ "description": "Cross-framework control mapping enabling single implementation to satisfy multiple compliance requirements"
9
+ },
10
+ "frameworks_mapped": [
11
+ "nist_800_53",
12
+ "fedramp_moderate",
13
+ "fedramp_high",
14
+ "nist_800_171",
15
+ "cmmc_level_2",
16
+ "cmmc_level_3"
17
+ ],
18
+ "families": [
19
+ {"code": "AC", "name": "Access Control"},
20
+ {"code": "AT", "name": "Awareness and Training"},
21
+ {"code": "AU", "name": "Audit and Accountability"},
22
+ {"code": "CA", "name": "Assessment, Authorization, and Monitoring"},
23
+ {"code": "CM", "name": "Configuration Management"},
24
+ {"code": "CP", "name": "Contingency Planning"},
25
+ {"code": "IA", "name": "Identification and Authentication"},
26
+ {"code": "IR", "name": "Incident Response"},
27
+ {"code": "MA", "name": "Maintenance"},
28
+ {"code": "MP", "name": "Media Protection"},
29
+ {"code": "PE", "name": "Physical and Environmental Protection"},
30
+ {"code": "PL", "name": "Planning"},
31
+ {"code": "PM", "name": "Program Management"},
32
+ {"code": "PS", "name": "Personnel Security"},
33
+ {"code": "PT", "name": "PII Processing and Transparency"},
34
+ {"code": "RA", "name": "Risk Assessment"},
35
+ {"code": "SA", "name": "System and Services Acquisition"},
36
+ {"code": "SC", "name": "System and Communications Protection"},
37
+ {"code": "SI", "name": "System and Information Integrity"},
38
+ {"code": "SR", "name": "Supply Chain Risk Management"}
39
+ ],
40
+ "crosswalk": [
41
+ {
42
+ "nist_800_53": "AC-1",
43
+ "title": "Policy and Procedures",
44
+ "family": "AC",
45
+ "priority": "P1",
46
+ "description": "Develop, document, and disseminate access control policy and procedures.",
47
+ "fedramp_moderate": true,
48
+ "fedramp_high": true,
49
+ "nist_800_171": null,
50
+ "cmmc_level_2": null,
51
+ "cmmc_level_3": null,
52
+ "stig_rules": ["SV-86473r1_rule", "SV-86475r1_rule"],
53
+ "il4_required": true,
54
+ "il5_required": true,
55
+ "il6_required": true
56
+ },
57
+ {
58
+ "nist_800_53": "AC-2",
59
+ "title": "Account Management",
60
+ "family": "AC",
61
+ "priority": "P1",
62
+ "description": "Manage system accounts including establishing, activating, modifying, reviewing, disabling, and removing accounts.",
63
+ "fedramp_moderate": true,
64
+ "fedramp_high": true,
65
+ "nist_800_171": "171-3.1.1",
66
+ "cmmc_level_2": "AC.L2-3.1.1",
67
+ "cmmc_level_3": "AC.L2-3.1.1",
68
+ "stig_rules": ["SV-86477r1_rule", "SV-86479r1_rule", "SV-86481r1_rule"],
69
+ "il4_required": true,
70
+ "il5_required": true,
71
+ "il6_required": true
72
+ },
73
+ {
74
+ "nist_800_53": "AC-3",
75
+ "title": "Access Enforcement",
76
+ "family": "AC",
77
+ "priority": "P1",
78
+ "description": "Enforce approved authorizations for logical access to information and system resources.",
79
+ "fedramp_moderate": true,
80
+ "fedramp_high": true,
81
+ "nist_800_171": "171-3.1.2",
82
+ "cmmc_level_2": "AC.L2-3.1.2",
83
+ "cmmc_level_3": "AC.L2-3.1.2",
84
+ "stig_rules": ["SV-86483r1_rule", "SV-86485r1_rule"],
85
+ "il4_required": true,
86
+ "il5_required": true,
87
+ "il6_required": true
88
+ },
89
+ {
90
+ "nist_800_53": "AC-4",
91
+ "title": "Information Flow Enforcement",
92
+ "family": "AC",
93
+ "priority": "P1",
94
+ "description": "Enforce approved authorizations for controlling the flow of information within the system and between systems.",
95
+ "fedramp_moderate": true,
96
+ "fedramp_high": true,
97
+ "nist_800_171": "171-3.1.3",
98
+ "cmmc_level_2": "AC.L2-3.1.3",
99
+ "cmmc_level_3": "AC.L3-3.1.3e",
100
+ "stig_rules": ["SV-86487r1_rule", "SV-86489r1_rule"],
101
+ "il4_required": true,
102
+ "il5_required": true,
103
+ "il6_required": true
104
+ },
105
+ {
106
+ "nist_800_53": "AC-5",
107
+ "title": "Separation of Duties",
108
+ "family": "AC",
109
+ "priority": "P1",
110
+ "description": "Separate duties of individuals to reduce the risk of malevolent activity.",
111
+ "fedramp_moderate": true,
112
+ "fedramp_high": true,
113
+ "nist_800_171": "171-3.1.4",
114
+ "cmmc_level_2": "AC.L2-3.1.4",
115
+ "cmmc_level_3": "AC.L2-3.1.4",
116
+ "stig_rules": ["SV-86491r1_rule"],
117
+ "il4_required": true,
118
+ "il5_required": true,
119
+ "il6_required": true
120
+ },
121
+ {
122
+ "nist_800_53": "AC-6",
123
+ "title": "Least Privilege",
124
+ "family": "AC",
125
+ "priority": "P1",
126
+ "description": "Employ the principle of least privilege, allowing only authorized accesses necessary to accomplish assigned tasks.",
127
+ "fedramp_moderate": true,
128
+ "fedramp_high": true,
129
+ "nist_800_171": "171-3.1.5",
130
+ "cmmc_level_2": "AC.L2-3.1.5",
131
+ "cmmc_level_3": "AC.L3-3.1.5e",
132
+ "stig_rules": ["SV-86493r1_rule", "SV-86495r1_rule", "SV-86497r1_rule"],
133
+ "il4_required": true,
134
+ "il5_required": true,
135
+ "il6_required": true
136
+ },
137
+ {
138
+ "nist_800_53": "AC-7",
139
+ "title": "Unsuccessful Logon Attempts",
140
+ "family": "AC",
141
+ "priority": "P1",
142
+ "description": "Enforce a limit of consecutive invalid logon attempts within a time period and automatically lock the account.",
143
+ "fedramp_moderate": true,
144
+ "fedramp_high": true,
145
+ "nist_800_171": "171-3.1.8",
146
+ "cmmc_level_2": "AC.L2-3.1.8",
147
+ "cmmc_level_3": "AC.L2-3.1.8",
148
+ "stig_rules": ["SV-86499r1_rule", "SV-86501r1_rule"],
149
+ "il4_required": true,
150
+ "il5_required": true,
151
+ "il6_required": true
152
+ },
153
+ {
154
+ "nist_800_53": "AC-8",
155
+ "title": "System Use Notification",
156
+ "family": "AC",
157
+ "priority": "P1",
158
+ "description": "Display system use notification message or banner before granting access.",
159
+ "fedramp_moderate": true,
160
+ "fedramp_high": true,
161
+ "nist_800_171": "171-3.1.9",
162
+ "cmmc_level_2": "AC.L2-3.1.9",
163
+ "cmmc_level_3": "AC.L2-3.1.9",
164
+ "stig_rules": ["SV-86503r1_rule", "SV-86505r1_rule"],
165
+ "il4_required": true,
166
+ "il5_required": true,
167
+ "il6_required": true
168
+ },
169
+ {
170
+ "nist_800_53": "AC-11",
171
+ "title": "Device Lock",
172
+ "family": "AC",
173
+ "priority": "P3",
174
+ "description": "Prevent further access to the system by initiating a device lock after a period of inactivity.",
175
+ "fedramp_moderate": true,
176
+ "fedramp_high": true,
177
+ "nist_800_171": "171-3.1.10",
178
+ "cmmc_level_2": "AC.L2-3.1.10",
179
+ "cmmc_level_3": "AC.L2-3.1.10",
180
+ "stig_rules": ["SV-86507r1_rule"],
181
+ "il4_required": true,
182
+ "il5_required": true,
183
+ "il6_required": true
184
+ },
185
+ {
186
+ "nist_800_53": "AC-12",
187
+ "title": "Session Termination",
188
+ "family": "AC",
189
+ "priority": "P2",
190
+ "description": "Automatically terminate a user session after organization-defined conditions or trigger events.",
191
+ "fedramp_moderate": true,
192
+ "fedramp_high": true,
193
+ "nist_800_171": "171-3.1.11",
194
+ "cmmc_level_2": "AC.L2-3.1.11",
195
+ "cmmc_level_3": "AC.L2-3.1.11",
196
+ "stig_rules": ["SV-86509r1_rule"],
197
+ "il4_required": true,
198
+ "il5_required": true,
199
+ "il6_required": true
200
+ },
201
+ {
202
+ "nist_800_53": "AC-17",
203
+ "title": "Remote Access",
204
+ "family": "AC",
205
+ "priority": "P1",
206
+ "description": "Establish and document usage restrictions, configuration/connection requirements, and implementation guidance for remote access.",
207
+ "fedramp_moderate": true,
208
+ "fedramp_high": true,
209
+ "nist_800_171": "171-3.1.12",
210
+ "cmmc_level_2": "AC.L2-3.1.12",
211
+ "cmmc_level_3": "AC.L2-3.1.12",
212
+ "stig_rules": ["SV-86511r1_rule", "SV-86513r1_rule", "SV-86515r1_rule"],
213
+ "il4_required": true,
214
+ "il5_required": true,
215
+ "il6_required": true
216
+ },
217
+ {
218
+ "nist_800_53": "AC-18",
219
+ "title": "Wireless Access",
220
+ "family": "AC",
221
+ "priority": "P1",
222
+ "description": "Establish configuration requirements, connection requirements, and implementation guidance for wireless access.",
223
+ "fedramp_moderate": true,
224
+ "fedramp_high": true,
225
+ "nist_800_171": "171-3.1.16",
226
+ "cmmc_level_2": "AC.L2-3.1.16",
227
+ "cmmc_level_3": "AC.L2-3.1.16",
228
+ "stig_rules": ["SV-86517r1_rule", "SV-86519r1_rule"],
229
+ "il4_required": true,
230
+ "il5_required": true,
231
+ "il6_required": true
232
+ },
233
+ {
234
+ "nist_800_53": "AC-19",
235
+ "title": "Access Control for Mobile Devices",
236
+ "family": "AC",
237
+ "priority": "P1",
238
+ "description": "Establish configuration requirements, connection requirements, and implementation guidance for mobile devices.",
239
+ "fedramp_moderate": true,
240
+ "fedramp_high": true,
241
+ "nist_800_171": "171-3.1.18",
242
+ "cmmc_level_2": "AC.L2-3.1.18",
243
+ "cmmc_level_3": "AC.L2-3.1.18",
244
+ "stig_rules": ["SV-86521r1_rule"],
245
+ "il4_required": true,
246
+ "il5_required": true,
247
+ "il6_required": true
248
+ },
249
+ {
250
+ "nist_800_53": "AC-20",
251
+ "title": "Use of External Systems",
252
+ "family": "AC",
253
+ "priority": "P1",
254
+ "description": "Establish terms and conditions for authorized individuals to access the system from external systems.",
255
+ "fedramp_moderate": true,
256
+ "fedramp_high": true,
257
+ "nist_800_171": "171-3.1.20",
258
+ "cmmc_level_2": "AC.L2-3.1.20",
259
+ "cmmc_level_3": "AC.L2-3.1.20",
260
+ "stig_rules": ["SV-86523r1_rule"],
261
+ "il4_required": true,
262
+ "il5_required": true,
263
+ "il6_required": true
264
+ },
265
+ {
266
+ "nist_800_53": "AC-22",
267
+ "title": "Publicly Accessible Content",
268
+ "family": "AC",
269
+ "priority": "P3",
270
+ "description": "Designate individuals authorized to post information onto a publicly accessible system and review content for nonpublic information.",
271
+ "fedramp_moderate": true,
272
+ "fedramp_high": true,
273
+ "nist_800_171": "171-3.1.22",
274
+ "cmmc_level_2": "AC.L2-3.1.22",
275
+ "cmmc_level_3": "AC.L2-3.1.22",
276
+ "stig_rules": ["SV-86525r1_rule"],
277
+ "il4_required": true,
278
+ "il5_required": true,
279
+ "il6_required": true
280
+ },
281
+ {
282
+ "nist_800_53": "AT-2",
283
+ "title": "Literacy Training and Awareness",
284
+ "family": "AT",
285
+ "priority": "P1",
286
+ "description": "Provide security and privacy literacy training to system users including insider threat awareness.",
287
+ "fedramp_moderate": true,
288
+ "fedramp_high": true,
289
+ "nist_800_171": "171-3.2.1",
290
+ "cmmc_level_2": "AT.L2-3.2.1",
291
+ "cmmc_level_3": "AT.L2-3.2.1",
292
+ "stig_rules": ["SV-86527r1_rule"],
293
+ "il4_required": true,
294
+ "il5_required": true,
295
+ "il6_required": true
296
+ },
297
+ {
298
+ "nist_800_53": "AT-3",
299
+ "title": "Role-Based Training",
300
+ "family": "AT",
301
+ "priority": "P1",
302
+ "description": "Provide role-based security and privacy training to personnel with assigned security roles and responsibilities.",
303
+ "fedramp_moderate": true,
304
+ "fedramp_high": true,
305
+ "nist_800_171": "171-3.2.2",
306
+ "cmmc_level_2": "AT.L2-3.2.2",
307
+ "cmmc_level_3": "AT.L2-3.2.2",
308
+ "stig_rules": ["SV-86529r1_rule"],
309
+ "il4_required": true,
310
+ "il5_required": true,
311
+ "il6_required": true
312
+ },
313
+ {
314
+ "nist_800_53": "AT-4",
315
+ "title": "Training Records",
316
+ "family": "AT",
317
+ "priority": "P3",
318
+ "description": "Document and monitor individual training activities including security and privacy training.",
319
+ "fedramp_moderate": true,
320
+ "fedramp_high": true,
321
+ "nist_800_171": null,
322
+ "cmmc_level_2": null,
323
+ "cmmc_level_3": null,
324
+ "stig_rules": ["SV-86531r1_rule"],
325
+ "il4_required": true,
326
+ "il5_required": true,
327
+ "il6_required": true
328
+ },
329
+ {
330
+ "nist_800_53": "AU-2",
331
+ "title": "Event Logging",
332
+ "family": "AU",
333
+ "priority": "P1",
334
+ "description": "Identify the types of events that the system is capable of logging in support of the audit function.",
335
+ "fedramp_moderate": true,
336
+ "fedramp_high": true,
337
+ "nist_800_171": "171-3.3.1",
338
+ "cmmc_level_2": "AU.L2-3.3.1",
339
+ "cmmc_level_3": "AU.L2-3.3.1",
340
+ "stig_rules": ["SV-86533r1_rule", "SV-86535r1_rule"],
341
+ "il4_required": true,
342
+ "il5_required": true,
343
+ "il6_required": true
344
+ },
345
+ {
346
+ "nist_800_53": "AU-3",
347
+ "title": "Content of Audit Records",
348
+ "family": "AU",
349
+ "priority": "P1",
350
+ "description": "Ensure audit records contain information establishing what, when, where, source, outcome, and identity of event.",
351
+ "fedramp_moderate": true,
352
+ "fedramp_high": true,
353
+ "nist_800_171": "171-3.3.1",
354
+ "cmmc_level_2": "AU.L2-3.3.1",
355
+ "cmmc_level_3": "AU.L2-3.3.1",
356
+ "stig_rules": ["SV-86537r1_rule", "SV-86539r1_rule"],
357
+ "il4_required": true,
358
+ "il5_required": true,
359
+ "il6_required": true
360
+ },
361
+ {
362
+ "nist_800_53": "AU-4",
363
+ "title": "Audit Log Storage Capacity",
364
+ "family": "AU",
365
+ "priority": "P1",
366
+ "description": "Allocate audit log storage capacity to accommodate anticipated audit log volume.",
367
+ "fedramp_moderate": true,
368
+ "fedramp_high": true,
369
+ "nist_800_171": null,
370
+ "cmmc_level_2": null,
371
+ "cmmc_level_3": null,
372
+ "stig_rules": ["SV-86541r1_rule"],
373
+ "il4_required": true,
374
+ "il5_required": true,
375
+ "il6_required": true
376
+ },
377
+ {
378
+ "nist_800_53": "AU-5",
379
+ "title": "Response to Audit Logging Process Failures",
380
+ "family": "AU",
381
+ "priority": "P1",
382
+ "description": "Alert designated personnel in the event of an audit logging process failure and take additional defined actions.",
383
+ "fedramp_moderate": true,
384
+ "fedramp_high": true,
385
+ "nist_800_171": "171-3.3.4",
386
+ "cmmc_level_2": "AU.L2-3.3.4",
387
+ "cmmc_level_3": "AU.L2-3.3.4",
388
+ "stig_rules": ["SV-86543r1_rule", "SV-86545r1_rule"],
389
+ "il4_required": true,
390
+ "il5_required": true,
391
+ "il6_required": true
392
+ },
393
+ {
394
+ "nist_800_53": "AU-6",
395
+ "title": "Audit Record Review, Analysis, and Reporting",
396
+ "family": "AU",
397
+ "priority": "P1",
398
+ "description": "Review and analyze system audit records for indications of inappropriate or unusual activity.",
399
+ "fedramp_moderate": true,
400
+ "fedramp_high": true,
401
+ "nist_800_171": "171-3.3.5",
402
+ "cmmc_level_2": "AU.L2-3.3.5",
403
+ "cmmc_level_3": "AU.L2-3.3.5",
404
+ "stig_rules": ["SV-86547r1_rule", "SV-86549r1_rule"],
405
+ "il4_required": true,
406
+ "il5_required": true,
407
+ "il6_required": true
408
+ },
409
+ {
410
+ "nist_800_53": "AU-7",
411
+ "title": "Audit Record Reduction and Report Generation",
412
+ "family": "AU",
413
+ "priority": "P3",
414
+ "description": "Provide and implement an audit record reduction and report generation capability.",
415
+ "fedramp_moderate": true,
416
+ "fedramp_high": true,
417
+ "nist_800_171": "171-3.3.6",
418
+ "cmmc_level_2": "AU.L2-3.3.6",
419
+ "cmmc_level_3": "AU.L2-3.3.6",
420
+ "stig_rules": ["SV-86551r1_rule"],
421
+ "il4_required": true,
422
+ "il5_required": true,
423
+ "il6_required": true
424
+ },
425
+ {
426
+ "nist_800_53": "AU-8",
427
+ "title": "Time Stamps",
428
+ "family": "AU",
429
+ "priority": "P1",
430
+ "description": "Use internal system clocks to generate time stamps for audit records and synchronize with authoritative time source.",
431
+ "fedramp_moderate": true,
432
+ "fedramp_high": true,
433
+ "nist_800_171": "171-3.3.7",
434
+ "cmmc_level_2": "AU.L2-3.3.7",
435
+ "cmmc_level_3": "AU.L2-3.3.7",
436
+ "stig_rules": ["SV-86553r1_rule", "SV-86555r1_rule"],
437
+ "il4_required": true,
438
+ "il5_required": true,
439
+ "il6_required": true
440
+ },
441
+ {
442
+ "nist_800_53": "AU-9",
443
+ "title": "Protection of Audit Information",
444
+ "family": "AU",
445
+ "priority": "P1",
446
+ "description": "Protect audit information and audit logging tools from unauthorized access, modification, and deletion.",
447
+ "fedramp_moderate": true,
448
+ "fedramp_high": true,
449
+ "nist_800_171": "171-3.3.8",
450
+ "cmmc_level_2": "AU.L2-3.3.8",
451
+ "cmmc_level_3": "AU.L3-3.3.3e",
452
+ "stig_rules": ["SV-86557r1_rule", "SV-86559r1_rule"],
453
+ "il4_required": true,
454
+ "il5_required": true,
455
+ "il6_required": true
456
+ },
457
+ {
458
+ "nist_800_53": "AU-11",
459
+ "title": "Audit Record Retention",
460
+ "family": "AU",
461
+ "priority": "P3",
462
+ "description": "Retain audit records for an organization-defined time period to support after-the-fact investigations.",
463
+ "fedramp_moderate": true,
464
+ "fedramp_high": true,
465
+ "nist_800_171": null,
466
+ "cmmc_level_2": null,
467
+ "cmmc_level_3": null,
468
+ "stig_rules": ["SV-86561r1_rule"],
469
+ "il4_required": true,
470
+ "il5_required": true,
471
+ "il6_required": true
472
+ },
473
+ {
474
+ "nist_800_53": "AU-12",
475
+ "title": "Audit Record Generation",
476
+ "family": "AU",
477
+ "priority": "P1",
478
+ "description": "Provide audit record generation capability for the events identified in AU-2 at system components.",
479
+ "fedramp_moderate": true,
480
+ "fedramp_high": true,
481
+ "nist_800_171": "171-3.3.2",
482
+ "cmmc_level_2": "AU.L2-3.3.2",
483
+ "cmmc_level_3": "AU.L2-3.3.2",
484
+ "stig_rules": ["SV-86563r1_rule", "SV-86565r1_rule"],
485
+ "il4_required": true,
486
+ "il5_required": true,
487
+ "il6_required": true
488
+ },
489
+ {
490
+ "nist_800_53": "CA-2",
491
+ "title": "Control Assessments",
492
+ "family": "CA",
493
+ "priority": "P2",
494
+ "description": "Assess security and privacy controls to determine effectiveness in application.",
495
+ "fedramp_moderate": true,
496
+ "fedramp_high": true,
497
+ "nist_800_171": "171-3.12.1",
498
+ "cmmc_level_2": "CA.L2-3.12.1",
499
+ "cmmc_level_3": "CA.L2-3.12.1",
500
+ "stig_rules": ["SV-86567r1_rule"],
501
+ "il4_required": true,
502
+ "il5_required": true,
503
+ "il6_required": true
504
+ },
505
+ {
506
+ "nist_800_53": "CA-3",
507
+ "title": "Information Exchange",
508
+ "family": "CA",
509
+ "priority": "P1",
510
+ "description": "Approve and manage the exchange of information between the system and other systems using ISAs, MOUs, or similar agreements.",
511
+ "fedramp_moderate": true,
512
+ "fedramp_high": true,
513
+ "nist_800_171": null,
514
+ "cmmc_level_2": null,
515
+ "cmmc_level_3": null,
516
+ "stig_rules": ["SV-86569r1_rule"],
517
+ "il4_required": true,
518
+ "il5_required": true,
519
+ "il6_required": true
520
+ },
521
+ {
522
+ "nist_800_53": "CA-5",
523
+ "title": "Plan of Action and Milestones",
524
+ "family": "CA",
525
+ "priority": "P3",
526
+ "description": "Develop a plan of action and milestones for the system to document planned remedial actions.",
527
+ "fedramp_moderate": true,
528
+ "fedramp_high": true,
529
+ "nist_800_171": "171-3.12.2",
530
+ "cmmc_level_2": "CA.L2-3.12.2",
531
+ "cmmc_level_3": "CA.L2-3.12.2",
532
+ "stig_rules": ["SV-86571r1_rule"],
533
+ "il4_required": true,
534
+ "il5_required": true,
535
+ "il6_required": true
536
+ },
537
+ {
538
+ "nist_800_53": "CA-6",
539
+ "title": "Authorization",
540
+ "family": "CA",
541
+ "priority": "P1",
542
+ "description": "Assign a senior official as the authorizing official for the system and ensure authorization before operations.",
543
+ "fedramp_moderate": true,
544
+ "fedramp_high": true,
545
+ "nist_800_171": null,
546
+ "cmmc_level_2": null,
547
+ "cmmc_level_3": null,
548
+ "stig_rules": ["SV-86573r1_rule"],
549
+ "il4_required": true,
550
+ "il5_required": true,
551
+ "il6_required": true
552
+ },
553
+ {
554
+ "nist_800_53": "CA-7",
555
+ "title": "Continuous Monitoring",
556
+ "family": "CA",
557
+ "priority": "P2",
558
+ "description": "Develop a system-level continuous monitoring strategy and implement continuous monitoring program.",
559
+ "fedramp_moderate": true,
560
+ "fedramp_high": true,
561
+ "nist_800_171": "171-3.12.3",
562
+ "cmmc_level_2": "CA.L2-3.12.3",
563
+ "cmmc_level_3": "CA.L2-3.12.3",
564
+ "stig_rules": ["SV-86575r1_rule"],
565
+ "il4_required": true,
566
+ "il5_required": true,
567
+ "il6_required": true
568
+ },
569
+ {
570
+ "nist_800_53": "CA-8",
571
+ "title": "Penetration Testing",
572
+ "family": "CA",
573
+ "priority": "P2",
574
+ "description": "Conduct penetration testing at organization-defined frequency on organization-defined systems.",
575
+ "fedramp_moderate": false,
576
+ "fedramp_high": true,
577
+ "nist_800_171": null,
578
+ "cmmc_level_2": null,
579
+ "cmmc_level_3": "CA.L3-3.12.1e",
580
+ "stig_rules": ["SV-86577r1_rule"],
581
+ "il4_required": false,
582
+ "il5_required": true,
583
+ "il6_required": true
584
+ },
585
+ {
586
+ "nist_800_53": "CM-2",
587
+ "title": "Baseline Configuration",
588
+ "family": "CM",
589
+ "priority": "P1",
590
+ "description": "Develop, document, and maintain a current baseline configuration of the system.",
591
+ "fedramp_moderate": true,
592
+ "fedramp_high": true,
593
+ "nist_800_171": "171-3.4.1",
594
+ "cmmc_level_2": "CM.L2-3.4.1",
595
+ "cmmc_level_3": "CM.L2-3.4.1",
596
+ "stig_rules": ["SV-86579r1_rule", "SV-86581r1_rule"],
597
+ "il4_required": true,
598
+ "il5_required": true,
599
+ "il6_required": true
600
+ },
601
+ {
602
+ "nist_800_53": "CM-3",
603
+ "title": "Configuration Change Control",
604
+ "family": "CM",
605
+ "priority": "P1",
606
+ "description": "Determine and document the types of changes to the system that are configuration-controlled.",
607
+ "fedramp_moderate": true,
608
+ "fedramp_high": true,
609
+ "nist_800_171": "171-3.4.3",
610
+ "cmmc_level_2": "CM.L2-3.4.3",
611
+ "cmmc_level_3": "CM.L3-3.4.1e",
612
+ "stig_rules": ["SV-86583r1_rule", "SV-86585r1_rule"],
613
+ "il4_required": true,
614
+ "il5_required": true,
615
+ "il6_required": true
616
+ },
617
+ {
618
+ "nist_800_53": "CM-4",
619
+ "title": "Impact Analyses",
620
+ "family": "CM",
621
+ "priority": "P2",
622
+ "description": "Analyze changes to the system to determine potential security and privacy impacts prior to change implementation.",
623
+ "fedramp_moderate": true,
624
+ "fedramp_high": true,
625
+ "nist_800_171": "171-3.4.4",
626
+ "cmmc_level_2": "CM.L2-3.4.4",
627
+ "cmmc_level_3": "CM.L2-3.4.4",
628
+ "stig_rules": ["SV-86587r1_rule"],
629
+ "il4_required": true,
630
+ "il5_required": true,
631
+ "il6_required": true
632
+ },
633
+ {
634
+ "nist_800_53": "CM-5",
635
+ "title": "Access Restrictions for Change",
636
+ "family": "CM",
637
+ "priority": "P1",
638
+ "description": "Define, document, approve, and enforce physical and logical access restrictions associated with changes.",
639
+ "fedramp_moderate": true,
640
+ "fedramp_high": true,
641
+ "nist_800_171": "171-3.4.5",
642
+ "cmmc_level_2": "CM.L2-3.4.5",
643
+ "cmmc_level_3": "CM.L2-3.4.5",
644
+ "stig_rules": ["SV-86589r1_rule", "SV-86591r1_rule"],
645
+ "il4_required": true,
646
+ "il5_required": true,
647
+ "il6_required": true
648
+ },
649
+ {
650
+ "nist_800_53": "CM-6",
651
+ "title": "Configuration Settings",
652
+ "family": "CM",
653
+ "priority": "P1",
654
+ "description": "Establish and document configuration settings for components reflecting the most restrictive mode consistent with requirements.",
655
+ "fedramp_moderate": true,
656
+ "fedramp_high": true,
657
+ "nist_800_171": "171-3.4.2",
658
+ "cmmc_level_2": "CM.L2-3.4.2",
659
+ "cmmc_level_3": "CM.L2-3.4.2",
660
+ "stig_rules": ["SV-86593r1_rule", "SV-86595r1_rule", "SV-86597r1_rule"],
661
+ "il4_required": true,
662
+ "il5_required": true,
663
+ "il6_required": true
664
+ },
665
+ {
666
+ "nist_800_53": "CM-7",
667
+ "title": "Least Functionality",
668
+ "family": "CM",
669
+ "priority": "P1",
670
+ "description": "Configure the system to provide only mission-essential capabilities, restricting use of nonessential functions, ports, protocols, and services.",
671
+ "fedramp_moderate": true,
672
+ "fedramp_high": true,
673
+ "nist_800_171": "171-3.4.6",
674
+ "cmmc_level_2": "CM.L2-3.4.6",
675
+ "cmmc_level_3": "CM.L2-3.4.6",
676
+ "stig_rules": ["SV-86599r1_rule", "SV-86601r1_rule"],
677
+ "il4_required": true,
678
+ "il5_required": true,
679
+ "il6_required": true
680
+ },
681
+ {
682
+ "nist_800_53": "CM-8",
683
+ "title": "System Component Inventory",
684
+ "family": "CM",
685
+ "priority": "P1",
686
+ "description": "Develop and document an inventory of system components that accurately reflects the system.",
687
+ "fedramp_moderate": true,
688
+ "fedramp_high": true,
689
+ "nist_800_171": "171-3.4.1",
690
+ "cmmc_level_2": "CM.L2-3.4.1",
691
+ "cmmc_level_3": "CM.L3-3.4.2e",
692
+ "stig_rules": ["SV-86603r1_rule", "SV-86605r1_rule"],
693
+ "il4_required": true,
694
+ "il5_required": true,
695
+ "il6_required": true
696
+ },
697
+ {
698
+ "nist_800_53": "CM-11",
699
+ "title": "User-Installed Software",
700
+ "family": "CM",
701
+ "priority": "P1",
702
+ "description": "Establish and enforce a policy governing the installation of software by users.",
703
+ "fedramp_moderate": true,
704
+ "fedramp_high": true,
705
+ "nist_800_171": "171-3.4.9",
706
+ "cmmc_level_2": "CM.L2-3.4.9",
707
+ "cmmc_level_3": "CM.L2-3.4.9",
708
+ "stig_rules": ["SV-86607r1_rule"],
709
+ "il4_required": true,
710
+ "il5_required": true,
711
+ "il6_required": true
712
+ },
713
+ {
714
+ "nist_800_53": "CP-1",
715
+ "title": "Policy and Procedures",
716
+ "family": "CP",
717
+ "priority": "P1",
718
+ "description": "Develop, document, and disseminate a contingency planning policy and procedures.",
719
+ "fedramp_moderate": true,
720
+ "fedramp_high": true,
721
+ "nist_800_171": null,
722
+ "cmmc_level_2": null,
723
+ "cmmc_level_3": null,
724
+ "stig_rules": ["SV-86609r1_rule"],
725
+ "il4_required": true,
726
+ "il5_required": true,
727
+ "il6_required": true
728
+ },
729
+ {
730
+ "nist_800_53": "CP-2",
731
+ "title": "Contingency Plan",
732
+ "family": "CP",
733
+ "priority": "P1",
734
+ "description": "Develop a contingency plan identifying essential missions, business functions, and associated contingency requirements.",
735
+ "fedramp_moderate": true,
736
+ "fedramp_high": true,
737
+ "nist_800_171": null,
738
+ "cmmc_level_2": null,
739
+ "cmmc_level_3": null,
740
+ "stig_rules": ["SV-86611r1_rule", "SV-86613r1_rule"],
741
+ "il4_required": true,
742
+ "il5_required": true,
743
+ "il6_required": true
744
+ },
745
+ {
746
+ "nist_800_53": "CP-4",
747
+ "title": "Contingency Plan Testing",
748
+ "family": "CP",
749
+ "priority": "P2",
750
+ "description": "Test the contingency plan using organization-defined tests to determine effectiveness and organizational readiness.",
751
+ "fedramp_moderate": true,
752
+ "fedramp_high": true,
753
+ "nist_800_171": null,
754
+ "cmmc_level_2": null,
755
+ "cmmc_level_3": null,
756
+ "stig_rules": ["SV-86614r1_rule"],
757
+ "il4_required": true,
758
+ "il5_required": true,
759
+ "il6_required": true
760
+ },
761
+ {
762
+ "nist_800_53": "CP-9",
763
+ "title": "System Backup",
764
+ "family": "CP",
765
+ "priority": "P1",
766
+ "description": "Conduct backups of user-level, system-level, and system documentation information.",
767
+ "fedramp_moderate": true,
768
+ "fedramp_high": true,
769
+ "nist_800_171": "171-3.8.9",
770
+ "cmmc_level_2": "MP.L2-3.8.9",
771
+ "cmmc_level_3": "MP.L2-3.8.9",
772
+ "stig_rules": ["SV-86615r1_rule", "SV-86617r1_rule"],
773
+ "il4_required": true,
774
+ "il5_required": true,
775
+ "il6_required": true
776
+ },
777
+ {
778
+ "nist_800_53": "CP-10",
779
+ "title": "System Recovery and Reconstitution",
780
+ "family": "CP",
781
+ "priority": "P1",
782
+ "description": "Provide for the recovery and reconstitution of the system to a known state within defined time period.",
783
+ "fedramp_moderate": true,
784
+ "fedramp_high": true,
785
+ "nist_800_171": null,
786
+ "cmmc_level_2": null,
787
+ "cmmc_level_3": null,
788
+ "stig_rules": ["SV-86619r1_rule"],
789
+ "il4_required": true,
790
+ "il5_required": true,
791
+ "il6_required": true
792
+ },
793
+ {
794
+ "nist_800_53": "IA-2",
795
+ "title": "Identification and Authentication (Organizational Users)",
796
+ "family": "IA",
797
+ "priority": "P1",
798
+ "description": "Uniquely identify and authenticate organizational users and associate that identification with processes acting on their behalf.",
799
+ "fedramp_moderate": true,
800
+ "fedramp_high": true,
801
+ "nist_800_171": "171-3.5.1",
802
+ "cmmc_level_2": "IA.L2-3.5.1",
803
+ "cmmc_level_3": "IA.L3-3.5.1e",
804
+ "stig_rules": ["SV-86621r1_rule", "SV-86623r1_rule", "SV-86625r1_rule"],
805
+ "il4_required": true,
806
+ "il5_required": true,
807
+ "il6_required": true
808
+ },
809
+ {
810
+ "nist_800_53": "IA-4",
811
+ "title": "Identifier Management",
812
+ "family": "IA",
813
+ "priority": "P1",
814
+ "description": "Manage system identifiers by receiving authorization, selecting, assigning, and preventing reuse.",
815
+ "fedramp_moderate": true,
816
+ "fedramp_high": true,
817
+ "nist_800_171": "171-3.5.5",
818
+ "cmmc_level_2": "IA.L2-3.5.5",
819
+ "cmmc_level_3": "IA.L2-3.5.5",
820
+ "stig_rules": ["SV-86627r1_rule", "SV-86629r1_rule"],
821
+ "il4_required": true,
822
+ "il5_required": true,
823
+ "il6_required": true
824
+ },
825
+ {
826
+ "nist_800_53": "IA-5",
827
+ "title": "Authenticator Management",
828
+ "family": "IA",
829
+ "priority": "P1",
830
+ "description": "Manage system authenticators by verifying identity, establishing initial authenticator content, and ensuring administrative procedures are in place.",
831
+ "fedramp_moderate": true,
832
+ "fedramp_high": true,
833
+ "nist_800_171": "171-3.5.2",
834
+ "cmmc_level_2": "IA.L2-3.5.2",
835
+ "cmmc_level_3": "IA.L3-3.5.3e",
836
+ "stig_rules": ["SV-86631r1_rule", "SV-86633r1_rule", "SV-86635r1_rule"],
837
+ "il4_required": true,
838
+ "il5_required": true,
839
+ "il6_required": true
840
+ },
841
+ {
842
+ "nist_800_53": "IA-6",
843
+ "title": "Authentication Feedback",
844
+ "family": "IA",
845
+ "priority": "P2",
846
+ "description": "Obscure feedback of authentication information during the authentication process.",
847
+ "fedramp_moderate": true,
848
+ "fedramp_high": true,
849
+ "nist_800_171": "171-3.5.11",
850
+ "cmmc_level_2": "IA.L2-3.5.11",
851
+ "cmmc_level_3": "IA.L2-3.5.11",
852
+ "stig_rules": ["SV-86637r1_rule"],
853
+ "il4_required": true,
854
+ "il5_required": true,
855
+ "il6_required": true
856
+ },
857
+ {
858
+ "nist_800_53": "IA-8",
859
+ "title": "Identification and Authentication (Non-Organizational Users)",
860
+ "family": "IA",
861
+ "priority": "P1",
862
+ "description": "Uniquely identify and authenticate non-organizational users or processes acting on behalf of non-organizational users.",
863
+ "fedramp_moderate": true,
864
+ "fedramp_high": true,
865
+ "nist_800_171": null,
866
+ "cmmc_level_2": null,
867
+ "cmmc_level_3": null,
868
+ "stig_rules": ["SV-86639r1_rule", "SV-86641r1_rule"],
869
+ "il4_required": true,
870
+ "il5_required": true,
871
+ "il6_required": true
872
+ },
873
+ {
874
+ "nist_800_53": "IR-1",
875
+ "title": "Policy and Procedures",
876
+ "family": "IR",
877
+ "priority": "P1",
878
+ "description": "Develop, document, and disseminate an incident response policy and procedures.",
879
+ "fedramp_moderate": true,
880
+ "fedramp_high": true,
881
+ "nist_800_171": null,
882
+ "cmmc_level_2": null,
883
+ "cmmc_level_3": null,
884
+ "stig_rules": ["SV-86643r1_rule"],
885
+ "il4_required": true,
886
+ "il5_required": true,
887
+ "il6_required": true
888
+ },
889
+ {
890
+ "nist_800_53": "IR-2",
891
+ "title": "Incident Response Training",
892
+ "family": "IR",
893
+ "priority": "P2",
894
+ "description": "Provide incident response training to system users consistent with assigned roles and responsibilities.",
895
+ "fedramp_moderate": true,
896
+ "fedramp_high": true,
897
+ "nist_800_171": "171-3.6.1",
898
+ "cmmc_level_2": "IR.L2-3.6.1",
899
+ "cmmc_level_3": "IR.L2-3.6.1",
900
+ "stig_rules": ["SV-86645r1_rule"],
901
+ "il4_required": true,
902
+ "il5_required": true,
903
+ "il6_required": true
904
+ },
905
+ {
906
+ "nist_800_53": "IR-3",
907
+ "title": "Incident Response Testing",
908
+ "family": "IR",
909
+ "priority": "P2",
910
+ "description": "Test the effectiveness of the incident response capability.",
911
+ "fedramp_moderate": true,
912
+ "fedramp_high": true,
913
+ "nist_800_171": "171-3.6.3",
914
+ "cmmc_level_2": "IR.L2-3.6.3",
915
+ "cmmc_level_3": "IR.L2-3.6.3",
916
+ "stig_rules": ["SV-86647r1_rule"],
917
+ "il4_required": true,
918
+ "il5_required": true,
919
+ "il6_required": true
920
+ },
921
+ {
922
+ "nist_800_53": "IR-4",
923
+ "title": "Incident Handling",
924
+ "family": "IR",
925
+ "priority": "P1",
926
+ "description": "Implement an incident handling capability including preparation, detection, analysis, containment, eradication, and recovery.",
927
+ "fedramp_moderate": true,
928
+ "fedramp_high": true,
929
+ "nist_800_171": "171-3.6.1",
930
+ "cmmc_level_2": "IR.L2-3.6.1",
931
+ "cmmc_level_3": "IR.L3-3.6.1e",
932
+ "stig_rules": ["SV-86649r1_rule", "SV-86651r1_rule"],
933
+ "il4_required": true,
934
+ "il5_required": true,
935
+ "il6_required": true
936
+ },
937
+ {
938
+ "nist_800_53": "IR-5",
939
+ "title": "Incident Monitoring",
940
+ "family": "IR",
941
+ "priority": "P1",
942
+ "description": "Track and document incidents on an ongoing basis.",
943
+ "fedramp_moderate": true,
944
+ "fedramp_high": true,
945
+ "nist_800_171": "171-3.6.1",
946
+ "cmmc_level_2": "IR.L2-3.6.1",
947
+ "cmmc_level_3": "IR.L2-3.6.1",
948
+ "stig_rules": ["SV-86653r1_rule"],
949
+ "il4_required": true,
950
+ "il5_required": true,
951
+ "il6_required": true
952
+ },
953
+ {
954
+ "nist_800_53": "IR-6",
955
+ "title": "Incident Reporting",
956
+ "family": "IR",
957
+ "priority": "P1",
958
+ "description": "Require personnel to report suspected incidents to the organizational incident response capability.",
959
+ "fedramp_moderate": true,
960
+ "fedramp_high": true,
961
+ "nist_800_171": "171-3.6.2",
962
+ "cmmc_level_2": "IR.L2-3.6.2",
963
+ "cmmc_level_3": "IR.L2-3.6.2",
964
+ "stig_rules": ["SV-86655r1_rule"],
965
+ "il4_required": true,
966
+ "il5_required": true,
967
+ "il6_required": true
968
+ },
969
+ {
970
+ "nist_800_53": "IR-7",
971
+ "title": "Incident Response Assistance",
972
+ "family": "IR",
973
+ "priority": "P2",
974
+ "description": "Provide an incident response support resource integral to the organizational incident response capability.",
975
+ "fedramp_moderate": true,
976
+ "fedramp_high": true,
977
+ "nist_800_171": "171-3.6.1",
978
+ "cmmc_level_2": "IR.L2-3.6.1",
979
+ "cmmc_level_3": "IR.L3-3.6.2e",
980
+ "stig_rules": ["SV-86657r1_rule"],
981
+ "il4_required": true,
982
+ "il5_required": true,
983
+ "il6_required": true
984
+ },
985
+ {
986
+ "nist_800_53": "MA-2",
987
+ "title": "Controlled Maintenance",
988
+ "family": "MA",
989
+ "priority": "P2",
990
+ "description": "Schedule, document, and review records of maintenance, repair, and replacement on system components.",
991
+ "fedramp_moderate": true,
992
+ "fedramp_high": true,
993
+ "nist_800_171": "171-3.7.1",
994
+ "cmmc_level_2": "MA.L2-3.7.1",
995
+ "cmmc_level_3": "MA.L2-3.7.1",
996
+ "stig_rules": ["SV-86659r1_rule"],
997
+ "il4_required": true,
998
+ "il5_required": true,
999
+ "il6_required": true
1000
+ },
1001
+ {
1002
+ "nist_800_53": "MA-3",
1003
+ "title": "Maintenance Tools",
1004
+ "family": "MA",
1005
+ "priority": "P3",
1006
+ "description": "Approve, control, and monitor the use of system maintenance tools.",
1007
+ "fedramp_moderate": true,
1008
+ "fedramp_high": true,
1009
+ "nist_800_171": "171-3.7.2",
1010
+ "cmmc_level_2": "MA.L2-3.7.2",
1011
+ "cmmc_level_3": "MA.L2-3.7.2",
1012
+ "stig_rules": ["SV-86661r1_rule"],
1013
+ "il4_required": true,
1014
+ "il5_required": true,
1015
+ "il6_required": true
1016
+ },
1017
+ {
1018
+ "nist_800_53": "MA-4",
1019
+ "title": "Nonlocal Maintenance",
1020
+ "family": "MA",
1021
+ "priority": "P2",
1022
+ "description": "Approve and monitor nonlocal maintenance and diagnostic activities.",
1023
+ "fedramp_moderate": true,
1024
+ "fedramp_high": true,
1025
+ "nist_800_171": "171-3.7.5",
1026
+ "cmmc_level_2": "MA.L2-3.7.5",
1027
+ "cmmc_level_3": "MA.L2-3.7.5",
1028
+ "stig_rules": ["SV-86663r1_rule"],
1029
+ "il4_required": true,
1030
+ "il5_required": true,
1031
+ "il6_required": true
1032
+ },
1033
+ {
1034
+ "nist_800_53": "MA-5",
1035
+ "title": "Maintenance Personnel",
1036
+ "family": "MA",
1037
+ "priority": "P2",
1038
+ "description": "Establish a process for maintenance personnel authorization and maintain a list of authorized personnel.",
1039
+ "fedramp_moderate": true,
1040
+ "fedramp_high": true,
1041
+ "nist_800_171": "171-3.7.6",
1042
+ "cmmc_level_2": "MA.L2-3.7.6",
1043
+ "cmmc_level_3": "MA.L2-3.7.6",
1044
+ "stig_rules": ["SV-86665r1_rule"],
1045
+ "il4_required": true,
1046
+ "il5_required": true,
1047
+ "il6_required": true
1048
+ },
1049
+ {
1050
+ "nist_800_53": "MA-6",
1051
+ "title": "Timely Maintenance",
1052
+ "family": "MA",
1053
+ "priority": "P2",
1054
+ "description": "Obtain maintenance support and spare parts for system components within defined time period of failure.",
1055
+ "fedramp_moderate": false,
1056
+ "fedramp_high": true,
1057
+ "nist_800_171": null,
1058
+ "cmmc_level_2": null,
1059
+ "cmmc_level_3": "MA.L3-3.7.1e",
1060
+ "stig_rules": ["SV-86667r1_rule"],
1061
+ "il4_required": false,
1062
+ "il5_required": true,
1063
+ "il6_required": true
1064
+ },
1065
+ {
1066
+ "nist_800_53": "MP-2",
1067
+ "title": "Media Access",
1068
+ "family": "MP",
1069
+ "priority": "P1",
1070
+ "description": "Restrict access to digital and non-digital media to organization-defined types of individuals.",
1071
+ "fedramp_moderate": true,
1072
+ "fedramp_high": true,
1073
+ "nist_800_171": "171-3.8.2",
1074
+ "cmmc_level_2": "MP.L2-3.8.2",
1075
+ "cmmc_level_3": "MP.L2-3.8.2",
1076
+ "stig_rules": ["SV-86669r1_rule"],
1077
+ "il4_required": true,
1078
+ "il5_required": true,
1079
+ "il6_required": true
1080
+ },
1081
+ {
1082
+ "nist_800_53": "MP-3",
1083
+ "title": "Media Marking",
1084
+ "family": "MP",
1085
+ "priority": "P2",
1086
+ "description": "Mark system media indicating distribution limitations, handling caveats, and applicable security markings.",
1087
+ "fedramp_moderate": true,
1088
+ "fedramp_high": true,
1089
+ "nist_800_171": "171-3.8.4",
1090
+ "cmmc_level_2": "MP.L2-3.8.4",
1091
+ "cmmc_level_3": "MP.L2-3.8.4",
1092
+ "stig_rules": ["SV-86671r1_rule"],
1093
+ "il4_required": true,
1094
+ "il5_required": true,
1095
+ "il6_required": true
1096
+ },
1097
+ {
1098
+ "nist_800_53": "MP-4",
1099
+ "title": "Media Storage",
1100
+ "family": "MP",
1101
+ "priority": "P1",
1102
+ "description": "Physically control and securely store digital and non-digital media within controlled areas.",
1103
+ "fedramp_moderate": true,
1104
+ "fedramp_high": true,
1105
+ "nist_800_171": "171-3.8.1",
1106
+ "cmmc_level_2": "MP.L2-3.8.1",
1107
+ "cmmc_level_3": "MP.L2-3.8.1",
1108
+ "stig_rules": ["SV-86673r1_rule"],
1109
+ "il4_required": true,
1110
+ "il5_required": true,
1111
+ "il6_required": true
1112
+ },
1113
+ {
1114
+ "nist_800_53": "MP-5",
1115
+ "title": "Media Transport",
1116
+ "family": "MP",
1117
+ "priority": "P1",
1118
+ "description": "Protect and control digital and non-digital media during transport outside of controlled areas.",
1119
+ "fedramp_moderate": true,
1120
+ "fedramp_high": true,
1121
+ "nist_800_171": "171-3.8.5",
1122
+ "cmmc_level_2": "MP.L2-3.8.5",
1123
+ "cmmc_level_3": "MP.L2-3.8.5",
1124
+ "stig_rules": ["SV-86675r1_rule"],
1125
+ "il4_required": true,
1126
+ "il5_required": true,
1127
+ "il6_required": true
1128
+ },
1129
+ {
1130
+ "nist_800_53": "MP-6",
1131
+ "title": "Media Sanitization",
1132
+ "family": "MP",
1133
+ "priority": "P1",
1134
+ "description": "Sanitize system media prior to disposal, release out of organizational control, or release for reuse.",
1135
+ "fedramp_moderate": true,
1136
+ "fedramp_high": true,
1137
+ "nist_800_171": "171-3.8.3",
1138
+ "cmmc_level_2": "MP.L2-3.8.3",
1139
+ "cmmc_level_3": "MP.L3-3.8.1e",
1140
+ "stig_rules": ["SV-86677r1_rule", "SV-86679r1_rule"],
1141
+ "il4_required": true,
1142
+ "il5_required": true,
1143
+ "il6_required": true
1144
+ },
1145
+ {
1146
+ "nist_800_53": "MP-7",
1147
+ "title": "Media Use",
1148
+ "family": "MP",
1149
+ "priority": "P1",
1150
+ "description": "Restrict the use of certain types of media on system components.",
1151
+ "fedramp_moderate": true,
1152
+ "fedramp_high": true,
1153
+ "nist_800_171": "171-3.8.7",
1154
+ "cmmc_level_2": "MP.L2-3.8.7",
1155
+ "cmmc_level_3": "MP.L2-3.8.7",
1156
+ "stig_rules": ["SV-86681r1_rule"],
1157
+ "il4_required": true,
1158
+ "il5_required": true,
1159
+ "il6_required": true
1160
+ },
1161
+ {
1162
+ "nist_800_53": "PE-2",
1163
+ "title": "Physical Access Authorizations",
1164
+ "family": "PE",
1165
+ "priority": "P1",
1166
+ "description": "Develop, approve, and maintain a list of individuals with authorized access to the facility.",
1167
+ "fedramp_moderate": true,
1168
+ "fedramp_high": true,
1169
+ "nist_800_171": "171-3.10.1",
1170
+ "cmmc_level_2": "PE.L2-3.10.1",
1171
+ "cmmc_level_3": "PE.L2-3.10.1",
1172
+ "stig_rules": ["SV-86683r1_rule"],
1173
+ "il4_required": true,
1174
+ "il5_required": true,
1175
+ "il6_required": true
1176
+ },
1177
+ {
1178
+ "nist_800_53": "PE-3",
1179
+ "title": "Physical Access Control",
1180
+ "family": "PE",
1181
+ "priority": "P1",
1182
+ "description": "Enforce physical access authorizations at entry/exit points using physical access control systems.",
1183
+ "fedramp_moderate": true,
1184
+ "fedramp_high": true,
1185
+ "nist_800_171": "171-3.10.1",
1186
+ "cmmc_level_2": "PE.L2-3.10.1",
1187
+ "cmmc_level_3": "PE.L3-3.10.1e",
1188
+ "stig_rules": ["SV-86685r1_rule", "SV-86687r1_rule"],
1189
+ "il4_required": true,
1190
+ "il5_required": true,
1191
+ "il6_required": true
1192
+ },
1193
+ {
1194
+ "nist_800_53": "PE-6",
1195
+ "title": "Monitoring Physical Access",
1196
+ "family": "PE",
1197
+ "priority": "P1",
1198
+ "description": "Monitor physical access to the facility to detect and respond to physical security incidents.",
1199
+ "fedramp_moderate": true,
1200
+ "fedramp_high": true,
1201
+ "nist_800_171": "171-3.10.2",
1202
+ "cmmc_level_2": "PE.L2-3.10.2",
1203
+ "cmmc_level_3": "PE.L2-3.10.2",
1204
+ "stig_rules": ["SV-86689r1_rule"],
1205
+ "il4_required": true,
1206
+ "il5_required": true,
1207
+ "il6_required": true
1208
+ },
1209
+ {
1210
+ "nist_800_53": "PE-17",
1211
+ "title": "Alternate Work Site",
1212
+ "family": "PE",
1213
+ "priority": "P2",
1214
+ "description": "Employ management, operational, and technical controls at alternate work sites.",
1215
+ "fedramp_moderate": true,
1216
+ "fedramp_high": true,
1217
+ "nist_800_171": "171-3.10.6",
1218
+ "cmmc_level_2": "PE.L2-3.10.6",
1219
+ "cmmc_level_3": "PE.L2-3.10.6",
1220
+ "stig_rules": ["SV-86691r1_rule"],
1221
+ "il4_required": true,
1222
+ "il5_required": true,
1223
+ "il6_required": true
1224
+ },
1225
+ {
1226
+ "nist_800_53": "PL-1",
1227
+ "title": "Policy and Procedures",
1228
+ "family": "PL",
1229
+ "priority": "P1",
1230
+ "description": "Develop, document, and disseminate a planning policy and procedures.",
1231
+ "fedramp_moderate": true,
1232
+ "fedramp_high": true,
1233
+ "nist_800_171": null,
1234
+ "cmmc_level_2": null,
1235
+ "cmmc_level_3": null,
1236
+ "stig_rules": ["SV-86693r1_rule"],
1237
+ "il4_required": true,
1238
+ "il5_required": true,
1239
+ "il6_required": true
1240
+ },
1241
+ {
1242
+ "nist_800_53": "PL-2",
1243
+ "title": "System Security and Privacy Plans",
1244
+ "family": "PL",
1245
+ "priority": "P1",
1246
+ "description": "Develop security and privacy plans for the system consistent with the enterprise architecture.",
1247
+ "fedramp_moderate": true,
1248
+ "fedramp_high": true,
1249
+ "nist_800_171": "171-3.12.4",
1250
+ "cmmc_level_2": "CA.L2-3.12.4",
1251
+ "cmmc_level_3": "CA.L2-3.12.4",
1252
+ "stig_rules": ["SV-86695r1_rule"],
1253
+ "il4_required": true,
1254
+ "il5_required": true,
1255
+ "il6_required": true
1256
+ },
1257
+ {
1258
+ "nist_800_53": "PL-4",
1259
+ "title": "Rules of Behavior",
1260
+ "family": "PL",
1261
+ "priority": "P2",
1262
+ "description": "Establish and provide rules describing responsibilities and expected behavior for system access.",
1263
+ "fedramp_moderate": true,
1264
+ "fedramp_high": true,
1265
+ "nist_800_171": null,
1266
+ "cmmc_level_2": null,
1267
+ "cmmc_level_3": null,
1268
+ "stig_rules": ["SV-86697r1_rule"],
1269
+ "il4_required": true,
1270
+ "il5_required": true,
1271
+ "il6_required": true
1272
+ },
1273
+ {
1274
+ "nist_800_53": "PM-1",
1275
+ "title": "Information Security Program Plan",
1276
+ "family": "PM",
1277
+ "priority": "P1",
1278
+ "description": "Develop and disseminate an organization-wide information security program plan.",
1279
+ "fedramp_moderate": true,
1280
+ "fedramp_high": true,
1281
+ "nist_800_171": null,
1282
+ "cmmc_level_2": null,
1283
+ "cmmc_level_3": null,
1284
+ "stig_rules": [],
1285
+ "il4_required": true,
1286
+ "il5_required": true,
1287
+ "il6_required": true
1288
+ },
1289
+ {
1290
+ "nist_800_53": "PM-9",
1291
+ "title": "Risk Management Strategy",
1292
+ "family": "PM",
1293
+ "priority": "P1",
1294
+ "description": "Develop a comprehensive strategy to manage risk to organizational operations, assets, and individuals.",
1295
+ "fedramp_moderate": true,
1296
+ "fedramp_high": true,
1297
+ "nist_800_171": null,
1298
+ "cmmc_level_2": null,
1299
+ "cmmc_level_3": null,
1300
+ "stig_rules": [],
1301
+ "il4_required": true,
1302
+ "il5_required": true,
1303
+ "il6_required": true
1304
+ },
1305
+ {
1306
+ "nist_800_53": "PM-16",
1307
+ "title": "Threat Awareness Program",
1308
+ "family": "PM",
1309
+ "priority": "P1",
1310
+ "description": "Implement a threat awareness program with cross-organization information-sharing capability.",
1311
+ "fedramp_moderate": true,
1312
+ "fedramp_high": true,
1313
+ "nist_800_171": null,
1314
+ "cmmc_level_2": null,
1315
+ "cmmc_level_3": "RA.L3-3.11.2e",
1316
+ "stig_rules": [],
1317
+ "il4_required": true,
1318
+ "il5_required": true,
1319
+ "il6_required": true
1320
+ },
1321
+ {
1322
+ "nist_800_53": "PS-3",
1323
+ "title": "Personnel Screening",
1324
+ "family": "PS",
1325
+ "priority": "P1",
1326
+ "description": "Screen individuals prior to authorizing access to the system.",
1327
+ "fedramp_moderate": true,
1328
+ "fedramp_high": true,
1329
+ "nist_800_171": "171-3.9.1",
1330
+ "cmmc_level_2": "PS.L2-3.9.1",
1331
+ "cmmc_level_3": "PS.L2-3.9.1",
1332
+ "stig_rules": ["SV-86699r1_rule"],
1333
+ "il4_required": true,
1334
+ "il5_required": true,
1335
+ "il6_required": true
1336
+ },
1337
+ {
1338
+ "nist_800_53": "PS-4",
1339
+ "title": "Personnel Termination",
1340
+ "family": "PS",
1341
+ "priority": "P1",
1342
+ "description": "Upon termination, disable system access, terminate authenticators, conduct exit interviews, and retrieve property.",
1343
+ "fedramp_moderate": true,
1344
+ "fedramp_high": true,
1345
+ "nist_800_171": "171-3.9.2",
1346
+ "cmmc_level_2": "PS.L2-3.9.2",
1347
+ "cmmc_level_3": "PS.L2-3.9.2",
1348
+ "stig_rules": ["SV-86701r1_rule"],
1349
+ "il4_required": true,
1350
+ "il5_required": true,
1351
+ "il6_required": true
1352
+ },
1353
+ {
1354
+ "nist_800_53": "PS-5",
1355
+ "title": "Personnel Transfer",
1356
+ "family": "PS",
1357
+ "priority": "P2",
1358
+ "description": "Review and confirm ongoing operational need for access authorizations when individuals are reassigned or transferred.",
1359
+ "fedramp_moderate": true,
1360
+ "fedramp_high": true,
1361
+ "nist_800_171": "171-3.9.2",
1362
+ "cmmc_level_2": "PS.L2-3.9.2",
1363
+ "cmmc_level_3": "PS.L2-3.9.2",
1364
+ "stig_rules": ["SV-86703r1_rule"],
1365
+ "il4_required": true,
1366
+ "il5_required": true,
1367
+ "il6_required": true
1368
+ },
1369
+ {
1370
+ "nist_800_53": "PT-1",
1371
+ "title": "Policy and Procedures",
1372
+ "family": "PT",
1373
+ "priority": "P1",
1374
+ "description": "Develop, document, and disseminate PII processing and transparency policy and procedures.",
1375
+ "fedramp_moderate": true,
1376
+ "fedramp_high": true,
1377
+ "nist_800_171": null,
1378
+ "cmmc_level_2": null,
1379
+ "cmmc_level_3": null,
1380
+ "stig_rules": [],
1381
+ "il4_required": true,
1382
+ "il5_required": true,
1383
+ "il6_required": true
1384
+ },
1385
+ {
1386
+ "nist_800_53": "PT-2",
1387
+ "title": "Authority to Process PII",
1388
+ "family": "PT",
1389
+ "priority": "P1",
1390
+ "description": "Determine and document the legal authority that permits collection, use, maintenance, and sharing of PII.",
1391
+ "fedramp_moderate": true,
1392
+ "fedramp_high": true,
1393
+ "nist_800_171": null,
1394
+ "cmmc_level_2": null,
1395
+ "cmmc_level_3": null,
1396
+ "stig_rules": [],
1397
+ "il4_required": true,
1398
+ "il5_required": true,
1399
+ "il6_required": true
1400
+ },
1401
+ {
1402
+ "nist_800_53": "RA-3",
1403
+ "title": "Risk Assessment",
1404
+ "family": "RA",
1405
+ "priority": "P1",
1406
+ "description": "Conduct a risk assessment identifying threats, vulnerabilities, and potential impacts to organizational operations.",
1407
+ "fedramp_moderate": true,
1408
+ "fedramp_high": true,
1409
+ "nist_800_171": "171-3.11.1",
1410
+ "cmmc_level_2": "RA.L2-3.11.1",
1411
+ "cmmc_level_3": "RA.L2-3.11.1",
1412
+ "stig_rules": ["SV-86705r1_rule"],
1413
+ "il4_required": true,
1414
+ "il5_required": true,
1415
+ "il6_required": true
1416
+ },
1417
+ {
1418
+ "nist_800_53": "RA-5",
1419
+ "title": "Vulnerability Monitoring and Scanning",
1420
+ "family": "RA",
1421
+ "priority": "P1",
1422
+ "description": "Monitor and scan for vulnerabilities in the system and hosted applications and remediate discovered vulnerabilities.",
1423
+ "fedramp_moderate": true,
1424
+ "fedramp_high": true,
1425
+ "nist_800_171": "171-3.11.2",
1426
+ "cmmc_level_2": "RA.L2-3.11.2",
1427
+ "cmmc_level_3": "RA.L2-3.11.2",
1428
+ "stig_rules": ["SV-86707r1_rule", "SV-86709r1_rule", "SV-86711r1_rule"],
1429
+ "il4_required": true,
1430
+ "il5_required": true,
1431
+ "il6_required": true
1432
+ },
1433
+ {
1434
+ "nist_800_53": "RA-7",
1435
+ "title": "Risk Response",
1436
+ "family": "RA",
1437
+ "priority": "P1",
1438
+ "description": "Respond to findings from security assessments, monitoring, and audits in accordance with risk tolerance.",
1439
+ "fedramp_moderate": true,
1440
+ "fedramp_high": true,
1441
+ "nist_800_171": "171-3.11.3",
1442
+ "cmmc_level_2": "RA.L2-3.11.3",
1443
+ "cmmc_level_3": "RA.L2-3.11.3",
1444
+ "stig_rules": ["SV-86713r1_rule"],
1445
+ "il4_required": true,
1446
+ "il5_required": true,
1447
+ "il6_required": true
1448
+ },
1449
+ {
1450
+ "nist_800_53": "SA-2",
1451
+ "title": "Allocation of Resources",
1452
+ "family": "SA",
1453
+ "priority": "P1",
1454
+ "description": "Determine high-level information security and privacy requirements for the system in mission/business process planning.",
1455
+ "fedramp_moderate": true,
1456
+ "fedramp_high": true,
1457
+ "nist_800_171": null,
1458
+ "cmmc_level_2": null,
1459
+ "cmmc_level_3": null,
1460
+ "stig_rules": ["SV-86715r1_rule"],
1461
+ "il4_required": true,
1462
+ "il5_required": true,
1463
+ "il6_required": true
1464
+ },
1465
+ {
1466
+ "nist_800_53": "SA-4",
1467
+ "title": "Acquisition Process",
1468
+ "family": "SA",
1469
+ "priority": "P1",
1470
+ "description": "Include security and privacy requirements in acquisition contracts for system development and services.",
1471
+ "fedramp_moderate": true,
1472
+ "fedramp_high": true,
1473
+ "nist_800_171": null,
1474
+ "cmmc_level_2": null,
1475
+ "cmmc_level_3": null,
1476
+ "stig_rules": ["SV-86717r1_rule", "SV-86719r1_rule"],
1477
+ "il4_required": true,
1478
+ "il5_required": true,
1479
+ "il6_required": true
1480
+ },
1481
+ {
1482
+ "nist_800_53": "SA-8",
1483
+ "title": "Security and Privacy Engineering Principles",
1484
+ "family": "SA",
1485
+ "priority": "P1",
1486
+ "description": "Apply systems security and privacy engineering principles in specification, design, development, implementation, and modification.",
1487
+ "fedramp_moderate": true,
1488
+ "fedramp_high": true,
1489
+ "nist_800_171": "171-3.13.2",
1490
+ "cmmc_level_2": "SC.L2-3.13.2",
1491
+ "cmmc_level_3": "SC.L2-3.13.2",
1492
+ "stig_rules": ["SV-86721r1_rule"],
1493
+ "il4_required": true,
1494
+ "il5_required": true,
1495
+ "il6_required": true
1496
+ },
1497
+ {
1498
+ "nist_800_53": "SA-9",
1499
+ "title": "External System Services",
1500
+ "family": "SA",
1501
+ "priority": "P1",
1502
+ "description": "Require providers of external system services to comply with organizational security and privacy requirements.",
1503
+ "fedramp_moderate": true,
1504
+ "fedramp_high": true,
1505
+ "nist_800_171": null,
1506
+ "cmmc_level_2": null,
1507
+ "cmmc_level_3": null,
1508
+ "stig_rules": ["SV-86723r1_rule"],
1509
+ "il4_required": true,
1510
+ "il5_required": true,
1511
+ "il6_required": true
1512
+ },
1513
+ {
1514
+ "nist_800_53": "SA-11",
1515
+ "title": "Developer Testing and Evaluation",
1516
+ "family": "SA",
1517
+ "priority": "P1",
1518
+ "description": "Require the developer to create and implement a security and privacy assessment plan.",
1519
+ "fedramp_moderate": true,
1520
+ "fedramp_high": true,
1521
+ "nist_800_171": null,
1522
+ "cmmc_level_2": null,
1523
+ "cmmc_level_3": null,
1524
+ "stig_rules": ["SV-86725r1_rule"],
1525
+ "il4_required": true,
1526
+ "il5_required": true,
1527
+ "il6_required": true
1528
+ },
1529
+ {
1530
+ "nist_800_53": "SC-2",
1531
+ "title": "Separation of System and User Functionality",
1532
+ "family": "SC",
1533
+ "priority": "P1",
1534
+ "description": "Separate user functionality including user interface services from system management functionality.",
1535
+ "fedramp_moderate": true,
1536
+ "fedramp_high": true,
1537
+ "nist_800_171": "171-3.13.3",
1538
+ "cmmc_level_2": "SC.L2-3.13.3",
1539
+ "cmmc_level_3": "SC.L2-3.13.3",
1540
+ "stig_rules": ["SV-86727r1_rule"],
1541
+ "il4_required": true,
1542
+ "il5_required": true,
1543
+ "il6_required": true
1544
+ },
1545
+ {
1546
+ "nist_800_53": "SC-4",
1547
+ "title": "Information in Shared System Resources",
1548
+ "family": "SC",
1549
+ "priority": "P1",
1550
+ "description": "Prevent unauthorized and unintended information transfer via shared system resources.",
1551
+ "fedramp_moderate": true,
1552
+ "fedramp_high": true,
1553
+ "nist_800_171": "171-3.13.4",
1554
+ "cmmc_level_2": "SC.L2-3.13.4",
1555
+ "cmmc_level_3": "SC.L2-3.13.4",
1556
+ "stig_rules": ["SV-86729r1_rule"],
1557
+ "il4_required": true,
1558
+ "il5_required": true,
1559
+ "il6_required": true
1560
+ },
1561
+ {
1562
+ "nist_800_53": "SC-7",
1563
+ "title": "Boundary Protection",
1564
+ "family": "SC",
1565
+ "priority": "P1",
1566
+ "description": "Monitor and control communications at the external managed interfaces and at key internal managed interfaces.",
1567
+ "fedramp_moderate": true,
1568
+ "fedramp_high": true,
1569
+ "nist_800_171": "171-3.13.1",
1570
+ "cmmc_level_2": "SC.L2-3.13.1",
1571
+ "cmmc_level_3": "SC.L3-3.13.1e",
1572
+ "stig_rules": ["SV-86731r1_rule", "SV-86733r1_rule", "SV-86735r1_rule", "SV-86737r1_rule"],
1573
+ "il4_required": true,
1574
+ "il5_required": true,
1575
+ "il6_required": true
1576
+ },
1577
+ {
1578
+ "nist_800_53": "SC-8",
1579
+ "title": "Transmission Confidentiality and Integrity",
1580
+ "family": "SC",
1581
+ "priority": "P1",
1582
+ "description": "Protect the confidentiality and integrity of transmitted information.",
1583
+ "fedramp_moderate": true,
1584
+ "fedramp_high": true,
1585
+ "nist_800_171": "171-3.13.8",
1586
+ "cmmc_level_2": "SC.L2-3.13.8",
1587
+ "cmmc_level_3": "SC.L2-3.13.8",
1588
+ "stig_rules": ["SV-86739r1_rule", "SV-86741r1_rule"],
1589
+ "il4_required": true,
1590
+ "il5_required": true,
1591
+ "il6_required": true
1592
+ },
1593
+ {
1594
+ "nist_800_53": "SC-10",
1595
+ "title": "Network Disconnect",
1596
+ "family": "SC",
1597
+ "priority": "P2",
1598
+ "description": "Terminate the network connection at the end of the session or after a defined period of inactivity.",
1599
+ "fedramp_moderate": true,
1600
+ "fedramp_high": true,
1601
+ "nist_800_171": "171-3.13.9",
1602
+ "cmmc_level_2": "SC.L2-3.13.9",
1603
+ "cmmc_level_3": "SC.L2-3.13.9",
1604
+ "stig_rules": ["SV-86743r1_rule"],
1605
+ "il4_required": true,
1606
+ "il5_required": true,
1607
+ "il6_required": true
1608
+ },
1609
+ {
1610
+ "nist_800_53": "SC-12",
1611
+ "title": "Cryptographic Key Establishment and Management",
1612
+ "family": "SC",
1613
+ "priority": "P1",
1614
+ "description": "Establish and manage cryptographic keys when cryptography is employed within the system.",
1615
+ "fedramp_moderate": true,
1616
+ "fedramp_high": true,
1617
+ "nist_800_171": "171-3.13.10",
1618
+ "cmmc_level_2": "SC.L2-3.13.10",
1619
+ "cmmc_level_3": "SC.L2-3.13.10",
1620
+ "stig_rules": ["SV-86745r1_rule"],
1621
+ "il4_required": true,
1622
+ "il5_required": true,
1623
+ "il6_required": true
1624
+ },
1625
+ {
1626
+ "nist_800_53": "SC-13",
1627
+ "title": "Cryptographic Protection",
1628
+ "family": "SC",
1629
+ "priority": "P1",
1630
+ "description": "Implement organization-defined types of cryptography required for each specified cryptographic use.",
1631
+ "fedramp_moderate": true,
1632
+ "fedramp_high": true,
1633
+ "nist_800_171": "171-3.13.11",
1634
+ "cmmc_level_2": "SC.L2-3.13.11",
1635
+ "cmmc_level_3": "SC.L2-3.13.11",
1636
+ "stig_rules": ["SV-86747r1_rule", "SV-86749r1_rule"],
1637
+ "il4_required": true,
1638
+ "il5_required": true,
1639
+ "il6_required": true
1640
+ },
1641
+ {
1642
+ "nist_800_53": "SC-15",
1643
+ "title": "Collaborative Computing Devices and Applications",
1644
+ "family": "SC",
1645
+ "priority": "P1",
1646
+ "description": "Prohibit remote activation of collaborative computing devices and applications with defined exceptions.",
1647
+ "fedramp_moderate": true,
1648
+ "fedramp_high": true,
1649
+ "nist_800_171": "171-3.13.12",
1650
+ "cmmc_level_2": "SC.L2-3.13.12",
1651
+ "cmmc_level_3": "SC.L2-3.13.12",
1652
+ "stig_rules": ["SV-86751r1_rule"],
1653
+ "il4_required": true,
1654
+ "il5_required": true,
1655
+ "il6_required": true
1656
+ },
1657
+ {
1658
+ "nist_800_53": "SC-18",
1659
+ "title": "Mobile Code",
1660
+ "family": "SC",
1661
+ "priority": "P2",
1662
+ "description": "Define acceptable and unacceptable mobile code and technologies and establish usage restrictions.",
1663
+ "fedramp_moderate": true,
1664
+ "fedramp_high": true,
1665
+ "nist_800_171": "171-3.13.13",
1666
+ "cmmc_level_2": "SC.L2-3.13.13",
1667
+ "cmmc_level_3": "SC.L2-3.13.13",
1668
+ "stig_rules": ["SV-86753r1_rule"],
1669
+ "il4_required": true,
1670
+ "il5_required": true,
1671
+ "il6_required": true
1672
+ },
1673
+ {
1674
+ "nist_800_53": "SC-23",
1675
+ "title": "Session Authenticity",
1676
+ "family": "SC",
1677
+ "priority": "P1",
1678
+ "description": "Protect the authenticity of communications sessions.",
1679
+ "fedramp_moderate": true,
1680
+ "fedramp_high": true,
1681
+ "nist_800_171": "171-3.13.15",
1682
+ "cmmc_level_2": "SC.L2-3.13.15",
1683
+ "cmmc_level_3": "SC.L2-3.13.15",
1684
+ "stig_rules": ["SV-86755r1_rule"],
1685
+ "il4_required": true,
1686
+ "il5_required": true,
1687
+ "il6_required": true
1688
+ },
1689
+ {
1690
+ "nist_800_53": "SC-28",
1691
+ "title": "Protection of Information at Rest",
1692
+ "family": "SC",
1693
+ "priority": "P1",
1694
+ "description": "Protect the confidentiality and integrity of organization-defined information at rest.",
1695
+ "fedramp_moderate": true,
1696
+ "fedramp_high": true,
1697
+ "nist_800_171": "171-3.13.16",
1698
+ "cmmc_level_2": "SC.L2-3.13.16",
1699
+ "cmmc_level_3": "SC.L3-3.13.4e",
1700
+ "stig_rules": ["SV-86757r1_rule", "SV-86759r1_rule"],
1701
+ "il4_required": true,
1702
+ "il5_required": true,
1703
+ "il6_required": true
1704
+ },
1705
+ {
1706
+ "nist_800_53": "SC-39",
1707
+ "title": "Process Isolation",
1708
+ "family": "SC",
1709
+ "priority": "P1",
1710
+ "description": "Maintain a separate execution domain for each executing system process.",
1711
+ "fedramp_moderate": true,
1712
+ "fedramp_high": true,
1713
+ "nist_800_171": null,
1714
+ "cmmc_level_2": null,
1715
+ "cmmc_level_3": "SC.L3-3.13.4e",
1716
+ "stig_rules": ["SV-86761r1_rule"],
1717
+ "il4_required": true,
1718
+ "il5_required": true,
1719
+ "il6_required": true
1720
+ },
1721
+ {
1722
+ "nist_800_53": "SI-2",
1723
+ "title": "Flaw Remediation",
1724
+ "family": "SI",
1725
+ "priority": "P1",
1726
+ "description": "Identify, report, and correct system flaws; test updates for effectiveness and side effects before installation.",
1727
+ "fedramp_moderate": true,
1728
+ "fedramp_high": true,
1729
+ "nist_800_171": "171-3.14.1",
1730
+ "cmmc_level_2": "SI.L2-3.14.1",
1731
+ "cmmc_level_3": "SI.L2-3.14.1",
1732
+ "stig_rules": ["SV-86763r1_rule", "SV-86765r1_rule", "SV-86767r1_rule"],
1733
+ "il4_required": true,
1734
+ "il5_required": true,
1735
+ "il6_required": true
1736
+ },
1737
+ {
1738
+ "nist_800_53": "SI-3",
1739
+ "title": "Malicious Code Protection",
1740
+ "family": "SI",
1741
+ "priority": "P1",
1742
+ "description": "Implement malicious code protection mechanisms at system entry and exit points.",
1743
+ "fedramp_moderate": true,
1744
+ "fedramp_high": true,
1745
+ "nist_800_171": "171-3.14.2",
1746
+ "cmmc_level_2": "SI.L2-3.14.2",
1747
+ "cmmc_level_3": "SI.L2-3.14.2",
1748
+ "stig_rules": ["SV-86769r1_rule", "SV-86771r1_rule"],
1749
+ "il4_required": true,
1750
+ "il5_required": true,
1751
+ "il6_required": true
1752
+ },
1753
+ {
1754
+ "nist_800_53": "SI-4",
1755
+ "title": "System Monitoring",
1756
+ "family": "SI",
1757
+ "priority": "P1",
1758
+ "description": "Monitor the system to detect attacks, indicators of potential attacks, and unauthorized connections.",
1759
+ "fedramp_moderate": true,
1760
+ "fedramp_high": true,
1761
+ "nist_800_171": "171-3.14.6",
1762
+ "cmmc_level_2": "SI.L2-3.14.6",
1763
+ "cmmc_level_3": "SI.L3-3.14.1e",
1764
+ "stig_rules": ["SV-86773r1_rule", "SV-86775r1_rule", "SV-86777r1_rule"],
1765
+ "il4_required": true,
1766
+ "il5_required": true,
1767
+ "il6_required": true
1768
+ },
1769
+ {
1770
+ "nist_800_53": "SI-5",
1771
+ "title": "Security Alerts, Advisories, and Directives",
1772
+ "family": "SI",
1773
+ "priority": "P1",
1774
+ "description": "Receive system security alerts, advisories, and directives from external organizations on an ongoing basis.",
1775
+ "fedramp_moderate": true,
1776
+ "fedramp_high": true,
1777
+ "nist_800_171": "171-3.14.3",
1778
+ "cmmc_level_2": "SI.L2-3.14.3",
1779
+ "cmmc_level_3": "SI.L2-3.14.3",
1780
+ "stig_rules": ["SV-86779r1_rule"],
1781
+ "il4_required": true,
1782
+ "il5_required": true,
1783
+ "il6_required": true
1784
+ },
1785
+ {
1786
+ "nist_800_53": "SI-7",
1787
+ "title": "Software, Firmware, and Information Integrity",
1788
+ "family": "SI",
1789
+ "priority": "P1",
1790
+ "description": "Employ integrity verification tools to detect unauthorized changes to software, firmware, and information.",
1791
+ "fedramp_moderate": true,
1792
+ "fedramp_high": true,
1793
+ "nist_800_171": null,
1794
+ "cmmc_level_2": null,
1795
+ "cmmc_level_3": null,
1796
+ "stig_rules": ["SV-86781r1_rule", "SV-86783r1_rule"],
1797
+ "il4_required": true,
1798
+ "il5_required": true,
1799
+ "il6_required": true
1800
+ },
1801
+ {
1802
+ "nist_800_53": "SI-10",
1803
+ "title": "Information Input Validation",
1804
+ "family": "SI",
1805
+ "priority": "P1",
1806
+ "description": "Check the validity of organization-defined information inputs.",
1807
+ "fedramp_moderate": true,
1808
+ "fedramp_high": true,
1809
+ "nist_800_171": null,
1810
+ "cmmc_level_2": null,
1811
+ "cmmc_level_3": null,
1812
+ "stig_rules": ["SV-86785r1_rule"],
1813
+ "il4_required": true,
1814
+ "il5_required": true,
1815
+ "il6_required": true
1816
+ },
1817
+ {
1818
+ "nist_800_53": "SI-12",
1819
+ "title": "Information Management and Retention",
1820
+ "family": "SI",
1821
+ "priority": "P2",
1822
+ "description": "Manage and retain information within the system in accordance with applicable laws, regulations, and standards.",
1823
+ "fedramp_moderate": true,
1824
+ "fedramp_high": true,
1825
+ "nist_800_171": null,
1826
+ "cmmc_level_2": null,
1827
+ "cmmc_level_3": null,
1828
+ "stig_rules": ["SV-86787r1_rule"],
1829
+ "il4_required": true,
1830
+ "il5_required": true,
1831
+ "il6_required": true
1832
+ },
1833
+ {
1834
+ "nist_800_53": "SI-16",
1835
+ "title": "Memory Protection",
1836
+ "family": "SI",
1837
+ "priority": "P1",
1838
+ "description": "Implement controls to protect the system memory from unauthorized code execution.",
1839
+ "fedramp_moderate": true,
1840
+ "fedramp_high": true,
1841
+ "nist_800_171": null,
1842
+ "cmmc_level_2": null,
1843
+ "cmmc_level_3": null,
1844
+ "stig_rules": ["SV-86789r1_rule"],
1845
+ "il4_required": true,
1846
+ "il5_required": true,
1847
+ "il6_required": true
1848
+ },
1849
+ {
1850
+ "nist_800_53": "SR-1",
1851
+ "title": "Policy and Procedures",
1852
+ "family": "SR",
1853
+ "priority": "P1",
1854
+ "description": "Develop, document, and disseminate a supply chain risk management policy and procedures.",
1855
+ "fedramp_moderate": true,
1856
+ "fedramp_high": true,
1857
+ "nist_800_171": null,
1858
+ "cmmc_level_2": null,
1859
+ "cmmc_level_3": null,
1860
+ "stig_rules": [],
1861
+ "il4_required": true,
1862
+ "il5_required": true,
1863
+ "il6_required": true
1864
+ },
1865
+ {
1866
+ "nist_800_53": "SR-3",
1867
+ "title": "Supply Chain Controls and Processes",
1868
+ "family": "SR",
1869
+ "priority": "P1",
1870
+ "description": "Establish a process for identifying and addressing weaknesses or deficiencies in supply chain elements.",
1871
+ "fedramp_moderate": true,
1872
+ "fedramp_high": true,
1873
+ "nist_800_171": null,
1874
+ "cmmc_level_2": null,
1875
+ "cmmc_level_3": null,
1876
+ "stig_rules": [],
1877
+ "il4_required": true,
1878
+ "il5_required": true,
1879
+ "il6_required": true
1880
+ },
1881
+ {
1882
+ "nist_800_53": "SR-5",
1883
+ "title": "Acquisition Strategies, Tools, and Methods",
1884
+ "family": "SR",
1885
+ "priority": "P1",
1886
+ "description": "Employ acquisition strategies and procurement methods to protect against and mitigate supply chain risks.",
1887
+ "fedramp_moderate": true,
1888
+ "fedramp_high": true,
1889
+ "nist_800_171": null,
1890
+ "cmmc_level_2": null,
1891
+ "cmmc_level_3": null,
1892
+ "stig_rules": [],
1893
+ "il4_required": true,
1894
+ "il5_required": true,
1895
+ "il6_required": true
1896
+ },
1897
+ {
1898
+ "nist_800_53": "SR-11",
1899
+ "title": "Component Authenticity",
1900
+ "family": "SR",
1901
+ "priority": "P2",
1902
+ "description": "Develop and implement anti-counterfeit policy and procedures to detect and prevent counterfeit components.",
1903
+ "fedramp_moderate": false,
1904
+ "fedramp_high": true,
1905
+ "nist_800_171": null,
1906
+ "cmmc_level_2": null,
1907
+ "cmmc_level_3": null,
1908
+ "stig_rules": [],
1909
+ "il4_required": false,
1910
+ "il5_required": true,
1911
+ "il6_required": true
1912
+ }
1913
+ ]
1914
+ }