PyPI - regscale-cli - Versions diffs - 6.16.0.0__py3-none-any.whl - Mend

regscale-cli 6.16.0.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of regscale-cli might be problematic. Click here for more details.

Files changed (481) hide show

regscale/__init__.py +1 -0
regscale/airflow/__init__.py +9 -0
regscale/airflow/azure/__init__.py +9 -0
regscale/airflow/azure/cli.py +89 -0
regscale/airflow/azure/upload_dags.py +116 -0
regscale/airflow/click_dags.py +127 -0
regscale/airflow/click_mixins.py +82 -0
regscale/airflow/config.py +25 -0
regscale/airflow/factories/__init__.py +0 -0
regscale/airflow/factories/connections.py +58 -0
regscale/airflow/factories/workflows.py +78 -0
regscale/airflow/hierarchy.py +88 -0
regscale/airflow/operators/__init__.py +0 -0
regscale/airflow/operators/click.py +36 -0
regscale/airflow/sensors/__init__.py +0 -0
regscale/airflow/sensors/sql.py +107 -0
regscale/airflow/sessions/__init__.py +0 -0
regscale/airflow/sessions/sql/__init__.py +3 -0
regscale/airflow/sessions/sql/queries.py +64 -0
regscale/airflow/sessions/sql/sql_server_queries.py +248 -0
regscale/airflow/tasks/__init__.py +0 -0
regscale/airflow/tasks/branches.py +22 -0
regscale/airflow/tasks/cli.py +116 -0
regscale/airflow/tasks/click.py +73 -0
regscale/airflow/tasks/debugging.py +9 -0
regscale/airflow/tasks/groups.py +116 -0
regscale/airflow/tasks/init.py +60 -0
regscale/airflow/tasks/states.py +47 -0
regscale/airflow/tasks/workflows.py +36 -0
regscale/ansible/__init__.py +9 -0
regscale/core/__init__.py +0 -0
regscale/core/app/__init__.py +3 -0
regscale/core/app/api.py +571 -0
regscale/core/app/application.py +665 -0
regscale/core/app/internal/__init__.py +136 -0
regscale/core/app/internal/admin_actions.py +230 -0
regscale/core/app/internal/assessments_editor.py +873 -0
regscale/core/app/internal/catalog.py +316 -0
regscale/core/app/internal/comparison.py +459 -0
regscale/core/app/internal/control_editor.py +571 -0
regscale/core/app/internal/encrypt.py +79 -0
regscale/core/app/internal/evidence.py +1240 -0
regscale/core/app/internal/file_uploads.py +151 -0
regscale/core/app/internal/healthcheck.py +66 -0
regscale/core/app/internal/login.py +305 -0
regscale/core/app/internal/migrations.py +240 -0
regscale/core/app/internal/model_editor.py +1701 -0
regscale/core/app/internal/poam_editor.py +632 -0
regscale/core/app/internal/workflow.py +105 -0
regscale/core/app/logz.py +74 -0
regscale/core/app/utils/XMLIR.py +258 -0
regscale/core/app/utils/__init__.py +0 -0
regscale/core/app/utils/api_handler.py +358 -0
regscale/core/app/utils/app_utils.py +1110 -0
regscale/core/app/utils/catalog_utils/__init__.py +0 -0
regscale/core/app/utils/catalog_utils/common.py +91 -0
regscale/core/app/utils/catalog_utils/compare_catalog.py +193 -0
regscale/core/app/utils/catalog_utils/diagnostic_catalog.py +97 -0
regscale/core/app/utils/catalog_utils/download_catalog.py +103 -0
regscale/core/app/utils/catalog_utils/update_catalog.py +718 -0
regscale/core/app/utils/catalog_utils/update_catalog_v2.py +1378 -0
regscale/core/app/utils/catalog_utils/update_catalog_v3.py +1272 -0
regscale/core/app/utils/catalog_utils/update_plans.py +334 -0
regscale/core/app/utils/file_utils.py +238 -0
regscale/core/app/utils/parser_utils.py +81 -0
regscale/core/app/utils/pickle_file_handler.py +57 -0
regscale/core/app/utils/regscale_utils.py +319 -0
regscale/core/app/utils/report_utils.py +119 -0
regscale/core/app/utils/variables.py +226 -0
regscale/core/decorators.py +31 -0
regscale/core/lazy_group.py +65 -0
regscale/core/login.py +63 -0
regscale/core/server/__init__.py +0 -0
regscale/core/server/flask_api.py +473 -0
regscale/core/server/helpers.py +373 -0
regscale/core/server/rest.py +64 -0
regscale/core/server/static/css/bootstrap.css +6030 -0
regscale/core/server/static/css/bootstrap.min.css +6 -0
regscale/core/server/static/css/main.css +176 -0
regscale/core/server/static/images/regscale-cli.svg +49 -0
regscale/core/server/static/images/regscale.svg +38 -0
regscale/core/server/templates/base.html +74 -0
regscale/core/server/templates/index.html +43 -0
regscale/core/server/templates/login.html +28 -0
regscale/core/server/templates/make_base64.html +22 -0
regscale/core/server/templates/upload_STIG.html +109 -0
regscale/core/server/templates/upload_STIG_result.html +26 -0
regscale/core/server/templates/upload_ssp.html +144 -0
regscale/core/server/templates/upload_ssp_result.html +128 -0
regscale/core/static/__init__.py +0 -0
regscale/core/static/regex.py +14 -0
regscale/core/utils/__init__.py +117 -0
regscale/core/utils/click_utils.py +13 -0
regscale/core/utils/date.py +238 -0
regscale/core/utils/graphql.py +254 -0
regscale/core/utils/urls.py +23 -0
regscale/dev/__init__.py +6 -0
regscale/dev/analysis.py +454 -0
regscale/dev/cli.py +235 -0
regscale/dev/code_gen.py +492 -0
regscale/dev/dirs.py +69 -0
regscale/dev/docs.py +384 -0
regscale/dev/monitoring.py +26 -0
regscale/dev/profiling.py +216 -0
regscale/exceptions/__init__.py +4 -0
regscale/exceptions/license_exception.py +7 -0
regscale/exceptions/validation_exception.py +9 -0
regscale/integrations/__init__.py +1 -0
regscale/integrations/commercial/__init__.py +486 -0
regscale/integrations/commercial/ad.py +433 -0
regscale/integrations/commercial/amazon/__init__.py +0 -0
regscale/integrations/commercial/amazon/common.py +106 -0
regscale/integrations/commercial/aqua/__init__.py +0 -0
regscale/integrations/commercial/aqua/aqua.py +91 -0
regscale/integrations/commercial/aws/__init__.py +6 -0
regscale/integrations/commercial/aws/cli.py +322 -0
regscale/integrations/commercial/aws/inventory/__init__.py +110 -0
regscale/integrations/commercial/aws/inventory/base.py +64 -0
regscale/integrations/commercial/aws/inventory/resources/__init__.py +19 -0
regscale/integrations/commercial/aws/inventory/resources/compute.py +234 -0
regscale/integrations/commercial/aws/inventory/resources/containers.py +113 -0
regscale/integrations/commercial/aws/inventory/resources/database.py +101 -0
regscale/integrations/commercial/aws/inventory/resources/integration.py +237 -0
regscale/integrations/commercial/aws/inventory/resources/networking.py +253 -0
regscale/integrations/commercial/aws/inventory/resources/security.py +240 -0
regscale/integrations/commercial/aws/inventory/resources/storage.py +91 -0
regscale/integrations/commercial/aws/scanner.py +823 -0
regscale/integrations/commercial/azure/__init__.py +0 -0
regscale/integrations/commercial/azure/common.py +32 -0
regscale/integrations/commercial/azure/intune.py +488 -0
regscale/integrations/commercial/azure/scanner.py +49 -0
regscale/integrations/commercial/burp.py +78 -0
regscale/integrations/commercial/cpe.py +144 -0
regscale/integrations/commercial/crowdstrike.py +1117 -0
regscale/integrations/commercial/defender.py +1511 -0
regscale/integrations/commercial/dependabot.py +210 -0
regscale/integrations/commercial/durosuite/__init__.py +0 -0
regscale/integrations/commercial/durosuite/api.py +1546 -0
regscale/integrations/commercial/durosuite/process_devices.py +101 -0
regscale/integrations/commercial/durosuite/scanner.py +637 -0
regscale/integrations/commercial/durosuite/variables.py +21 -0
regscale/integrations/commercial/ecr.py +90 -0
regscale/integrations/commercial/gcp/__init__.py +237 -0
regscale/integrations/commercial/gcp/auth.py +96 -0
regscale/integrations/commercial/gcp/control_tests.py +238 -0
regscale/integrations/commercial/gcp/variables.py +18 -0
regscale/integrations/commercial/gitlab.py +332 -0
regscale/integrations/commercial/grype.py +165 -0
regscale/integrations/commercial/ibm.py +90 -0
regscale/integrations/commercial/import_all/__init__.py +0 -0
regscale/integrations/commercial/import_all/import_all_cmd.py +467 -0
regscale/integrations/commercial/import_all/scan_file_fingerprints.json +27 -0
regscale/integrations/commercial/jira.py +1046 -0
regscale/integrations/commercial/mappings/__init__.py +0 -0
regscale/integrations/commercial/mappings/csf_controls.json +713 -0
regscale/integrations/commercial/mappings/nist_800_53_r5_controls.json +1516 -0
regscale/integrations/commercial/nessus/__init__.py +0 -0
regscale/integrations/commercial/nessus/nessus_utils.py +429 -0
regscale/integrations/commercial/nessus/scanner.py +416 -0
regscale/integrations/commercial/nexpose.py +90 -0
regscale/integrations/commercial/okta.py +798 -0
regscale/integrations/commercial/opentext/__init__.py +0 -0
regscale/integrations/commercial/opentext/click.py +99 -0
regscale/integrations/commercial/opentext/scanner.py +143 -0
regscale/integrations/commercial/prisma.py +91 -0
regscale/integrations/commercial/qualys.py +1462 -0
regscale/integrations/commercial/salesforce.py +980 -0
regscale/integrations/commercial/sap/__init__.py +0 -0
regscale/integrations/commercial/sap/click.py +31 -0
regscale/integrations/commercial/sap/sysdig/__init__.py +0 -0
regscale/integrations/commercial/sap/sysdig/click.py +57 -0
regscale/integrations/commercial/sap/sysdig/sysdig_scanner.py +190 -0
regscale/integrations/commercial/sap/tenable/__init__.py +0 -0
regscale/integrations/commercial/sap/tenable/click.py +49 -0
regscale/integrations/commercial/sap/tenable/scanner.py +196 -0
regscale/integrations/commercial/servicenow.py +1756 -0
regscale/integrations/commercial/sicura/__init__.py +0 -0
regscale/integrations/commercial/sicura/api.py +855 -0
regscale/integrations/commercial/sicura/commands.py +73 -0
regscale/integrations/commercial/sicura/scanner.py +481 -0
regscale/integrations/commercial/sicura/variables.py +16 -0
regscale/integrations/commercial/snyk.py +90 -0
regscale/integrations/commercial/sonarcloud.py +260 -0
regscale/integrations/commercial/sqlserver.py +369 -0
regscale/integrations/commercial/stig_mapper_integration/__init__.py +0 -0
regscale/integrations/commercial/stig_mapper_integration/click_commands.py +38 -0
regscale/integrations/commercial/stig_mapper_integration/mapping_engine.py +353 -0
regscale/integrations/commercial/stigv2/__init__.py +0 -0
regscale/integrations/commercial/stigv2/ckl_parser.py +349 -0
regscale/integrations/commercial/stigv2/click_commands.py +95 -0
regscale/integrations/commercial/stigv2/stig_integration.py +202 -0
regscale/integrations/commercial/synqly/__init__.py +0 -0
regscale/integrations/commercial/synqly/assets.py +46 -0
regscale/integrations/commercial/synqly/ticketing.py +132 -0
regscale/integrations/commercial/synqly/vulnerabilities.py +223 -0
regscale/integrations/commercial/synqly_jira.py +840 -0
regscale/integrations/commercial/tenablev2/__init__.py +0 -0
regscale/integrations/commercial/tenablev2/authenticate.py +31 -0
regscale/integrations/commercial/tenablev2/click.py +1584 -0
regscale/integrations/commercial/tenablev2/scanner.py +504 -0
regscale/integrations/commercial/tenablev2/stig_parsers.py +140 -0
regscale/integrations/commercial/tenablev2/utils.py +78 -0
regscale/integrations/commercial/tenablev2/variables.py +17 -0
regscale/integrations/commercial/trivy.py +162 -0
regscale/integrations/commercial/veracode.py +96 -0
regscale/integrations/commercial/wizv2/WizDataMixin.py +97 -0
regscale/integrations/commercial/wizv2/__init__.py +0 -0
regscale/integrations/commercial/wizv2/click.py +429 -0
regscale/integrations/commercial/wizv2/constants.py +1001 -0
regscale/integrations/commercial/wizv2/issue.py +361 -0
regscale/integrations/commercial/wizv2/models.py +112 -0
regscale/integrations/commercial/wizv2/parsers.py +339 -0
regscale/integrations/commercial/wizv2/sbom.py +115 -0
regscale/integrations/commercial/wizv2/scanner.py +416 -0
regscale/integrations/commercial/wizv2/utils.py +796 -0
regscale/integrations/commercial/wizv2/variables.py +39 -0
regscale/integrations/commercial/wizv2/wiz_auth.py +159 -0
regscale/integrations/commercial/xray.py +91 -0
regscale/integrations/integration/__init__.py +2 -0
regscale/integrations/integration/integration.py +26 -0
regscale/integrations/integration/inventory.py +17 -0
regscale/integrations/integration/issue.py +100 -0
regscale/integrations/integration_override.py +149 -0
regscale/integrations/public/__init__.py +103 -0
regscale/integrations/public/cisa.py +641 -0
regscale/integrations/public/criticality_updater.py +70 -0
regscale/integrations/public/emass.py +411 -0
regscale/integrations/public/emass_slcm_import.py +697 -0
regscale/integrations/public/fedramp/__init__.py +0 -0
regscale/integrations/public/fedramp/appendix_parser.py +548 -0
regscale/integrations/public/fedramp/click.py +479 -0
regscale/integrations/public/fedramp/components.py +714 -0
regscale/integrations/public/fedramp/docx_parser.py +259 -0
regscale/integrations/public/fedramp/fedramp_cis_crm.py +1124 -0
regscale/integrations/public/fedramp/fedramp_common.py +3181 -0
regscale/integrations/public/fedramp/fedramp_docx.py +388 -0
regscale/integrations/public/fedramp/fedramp_five.py +2343 -0
regscale/integrations/public/fedramp/fedramp_traversal.py +138 -0
regscale/integrations/public/fedramp/import_fedramp_r4_ssp.py +279 -0
regscale/integrations/public/fedramp/import_workbook.py +495 -0
regscale/integrations/public/fedramp/inventory_items.py +244 -0
regscale/integrations/public/fedramp/mappings/__init__.py +0 -0
regscale/integrations/public/fedramp/mappings/fedramp_r4_parts.json +7388 -0
regscale/integrations/public/fedramp/mappings/fedramp_r5_params.json +8636 -0
regscale/integrations/public/fedramp/mappings/fedramp_r5_parts.json +9605 -0
regscale/integrations/public/fedramp/mappings/system_roles.py +34 -0
regscale/integrations/public/fedramp/mappings/user.py +175 -0
regscale/integrations/public/fedramp/mappings/values.py +141 -0
regscale/integrations/public/fedramp/markdown_parser.py +150 -0
regscale/integrations/public/fedramp/metadata.py +689 -0
regscale/integrations/public/fedramp/models/__init__.py +59 -0
regscale/integrations/public/fedramp/models/leveraged_auth_new.py +168 -0
regscale/integrations/public/fedramp/models/poam_importer.py +522 -0
regscale/integrations/public/fedramp/parts_mapper.py +107 -0
regscale/integrations/public/fedramp/poam/__init__.py +0 -0
regscale/integrations/public/fedramp/poam/scanner.py +851 -0
regscale/integrations/public/fedramp/properties.py +201 -0
regscale/integrations/public/fedramp/reporting.py +84 -0
regscale/integrations/public/fedramp/resources.py +496 -0
regscale/integrations/public/fedramp/rosetta.py +110 -0
regscale/integrations/public/fedramp/ssp_logger.py +87 -0
regscale/integrations/public/fedramp/system_characteristics.py +922 -0
regscale/integrations/public/fedramp/system_control_implementations.py +582 -0
regscale/integrations/public/fedramp/system_implementation.py +190 -0
regscale/integrations/public/fedramp/xml_utils.py +87 -0
regscale/integrations/public/nist_catalog.py +275 -0
regscale/integrations/public/oscal.py +1946 -0
regscale/integrations/public/otx.py +169 -0
regscale/integrations/scanner_integration.py +2692 -0
regscale/integrations/variables.py +25 -0
regscale/models/__init__.py +7 -0
regscale/models/app_models/__init__.py +5 -0
regscale/models/app_models/catalog_compare.py +213 -0
regscale/models/app_models/click.py +252 -0
regscale/models/app_models/datetime_encoder.py +21 -0
regscale/models/app_models/import_validater.py +321 -0
regscale/models/app_models/mapping.py +260 -0
regscale/models/app_models/pipeline.py +37 -0
regscale/models/click_models.py +413 -0
regscale/models/config.py +154 -0
regscale/models/email_style.css +67 -0
regscale/models/hierarchy.py +8 -0
regscale/models/inspect_models.py +79 -0
regscale/models/integration_models/__init__.py +0 -0
regscale/models/integration_models/amazon_models/__init__.py +0 -0
regscale/models/integration_models/amazon_models/inspector.py +262 -0
regscale/models/integration_models/amazon_models/inspector_scan.py +206 -0
regscale/models/integration_models/aqua.py +247 -0
regscale/models/integration_models/azure_alerts.py +255 -0
regscale/models/integration_models/base64.py +23 -0
regscale/models/integration_models/burp.py +433 -0
regscale/models/integration_models/burp_models.py +128 -0
regscale/models/integration_models/cisa_kev_data.json +19333 -0
regscale/models/integration_models/defender_data.py +93 -0
regscale/models/integration_models/defenderimport.py +143 -0
regscale/models/integration_models/drf.py +443 -0
regscale/models/integration_models/ecr_models/__init__.py +0 -0
regscale/models/integration_models/ecr_models/data.py +69 -0
regscale/models/integration_models/ecr_models/ecr.py +239 -0
regscale/models/integration_models/flat_file_importer.py +1079 -0
regscale/models/integration_models/grype_import.py +247 -0
regscale/models/integration_models/ibm.py +126 -0
regscale/models/integration_models/implementation_results.py +85 -0
regscale/models/integration_models/nexpose.py +140 -0
regscale/models/integration_models/prisma.py +202 -0
regscale/models/integration_models/qualys.py +720 -0
regscale/models/integration_models/qualys_scanner.py +160 -0
regscale/models/integration_models/sbom/__init__.py +0 -0
regscale/models/integration_models/sbom/cyclone_dx.py +139 -0
regscale/models/integration_models/send_reminders.py +620 -0
regscale/models/integration_models/snyk.py +155 -0
regscale/models/integration_models/synqly_models/__init__.py +0 -0
regscale/models/integration_models/synqly_models/capabilities.json +1 -0
regscale/models/integration_models/synqly_models/connector_types.py +22 -0
regscale/models/integration_models/synqly_models/connectors/__init__.py +7 -0
regscale/models/integration_models/synqly_models/connectors/assets.py +97 -0
regscale/models/integration_models/synqly_models/connectors/ticketing.py +583 -0
regscale/models/integration_models/synqly_models/connectors/vulnerabilities.py +169 -0
regscale/models/integration_models/synqly_models/ocsf_mapper.py +331 -0
regscale/models/integration_models/synqly_models/param.py +72 -0
regscale/models/integration_models/synqly_models/synqly_model.py +733 -0
regscale/models/integration_models/synqly_models/tenants.py +39 -0
regscale/models/integration_models/tenable_models/__init__.py +0 -0
regscale/models/integration_models/tenable_models/integration.py +187 -0
regscale/models/integration_models/tenable_models/models.py +513 -0
regscale/models/integration_models/trivy_import.py +231 -0
regscale/models/integration_models/veracode.py +217 -0
regscale/models/integration_models/xray.py +135 -0
regscale/models/locking.py +100 -0
regscale/models/platform.py +110 -0
regscale/models/regscale_models/__init__.py +67 -0
regscale/models/regscale_models/assessment.py +570 -0
regscale/models/regscale_models/assessment_plan.py +52 -0
regscale/models/regscale_models/asset.py +567 -0
regscale/models/regscale_models/asset_mapping.py +190 -0
regscale/models/regscale_models/case.py +42 -0
regscale/models/regscale_models/catalog.py +261 -0
regscale/models/regscale_models/cci.py +46 -0
regscale/models/regscale_models/change.py +167 -0
regscale/models/regscale_models/checklist.py +372 -0
regscale/models/regscale_models/comment.py +49 -0
regscale/models/regscale_models/compliance_settings.py +112 -0
regscale/models/regscale_models/component.py +412 -0
regscale/models/regscale_models/component_mapping.py +65 -0
regscale/models/regscale_models/control.py +38 -0
regscale/models/regscale_models/control_implementation.py +1128 -0
regscale/models/regscale_models/control_objective.py +261 -0
regscale/models/regscale_models/control_parameter.py +100 -0
regscale/models/regscale_models/control_test.py +34 -0
regscale/models/regscale_models/control_test_plan.py +75 -0
regscale/models/regscale_models/control_test_result.py +52 -0
regscale/models/regscale_models/custom_field.py +245 -0
regscale/models/regscale_models/data.py +109 -0
regscale/models/regscale_models/data_center.py +40 -0
regscale/models/regscale_models/deviation.py +203 -0
regscale/models/regscale_models/email.py +97 -0
regscale/models/regscale_models/evidence.py +47 -0
regscale/models/regscale_models/evidence_mapping.py +40 -0
regscale/models/regscale_models/facility.py +59 -0
regscale/models/regscale_models/file.py +382 -0
regscale/models/regscale_models/filetag.py +37 -0
regscale/models/regscale_models/form_field_value.py +94 -0
regscale/models/regscale_models/group.py +169 -0
regscale/models/regscale_models/implementation_objective.py +335 -0
regscale/models/regscale_models/implementation_option.py +275 -0
regscale/models/regscale_models/implementation_role.py +33 -0
regscale/models/regscale_models/incident.py +177 -0
regscale/models/regscale_models/interconnection.py +43 -0
regscale/models/regscale_models/issue.py +1176 -0
regscale/models/regscale_models/leveraged_authorization.py +125 -0
regscale/models/regscale_models/line_of_inquiry.py +52 -0
regscale/models/regscale_models/link.py +205 -0
regscale/models/regscale_models/meta_data.py +64 -0
regscale/models/regscale_models/mixins/__init__.py +0 -0
regscale/models/regscale_models/mixins/parent_cache.py +124 -0
regscale/models/regscale_models/module.py +224 -0
regscale/models/regscale_models/modules.py +191 -0
regscale/models/regscale_models/objective.py +14 -0
regscale/models/regscale_models/parameter.py +87 -0
regscale/models/regscale_models/ports_protocol.py +81 -0
regscale/models/regscale_models/privacy.py +89 -0
regscale/models/regscale_models/profile.py +50 -0
regscale/models/regscale_models/profile_link.py +68 -0
regscale/models/regscale_models/profile_mapping.py +124 -0
regscale/models/regscale_models/project.py +63 -0
regscale/models/regscale_models/property.py +278 -0
regscale/models/regscale_models/question.py +85 -0
regscale/models/regscale_models/questionnaire.py +87 -0
regscale/models/regscale_models/questionnaire_instance.py +177 -0
regscale/models/regscale_models/rbac.py +132 -0
regscale/models/regscale_models/reference.py +86 -0
regscale/models/regscale_models/regscale_model.py +1643 -0
regscale/models/regscale_models/requirement.py +29 -0
regscale/models/regscale_models/risk.py +274 -0
regscale/models/regscale_models/sbom.py +54 -0
regscale/models/regscale_models/scan_history.py +436 -0
regscale/models/regscale_models/search.py +53 -0
regscale/models/regscale_models/security_control.py +132 -0
regscale/models/regscale_models/security_plan.py +204 -0
regscale/models/regscale_models/software_inventory.py +159 -0
regscale/models/regscale_models/stake_holder.py +64 -0
regscale/models/regscale_models/stig.py +647 -0
regscale/models/regscale_models/supply_chain.py +152 -0
regscale/models/regscale_models/system_role.py +188 -0
regscale/models/regscale_models/system_role_external_assignment.py +40 -0
regscale/models/regscale_models/tag.py +37 -0
regscale/models/regscale_models/tag_mapping.py +19 -0
regscale/models/regscale_models/task.py +133 -0
regscale/models/regscale_models/threat.py +196 -0
regscale/models/regscale_models/user.py +175 -0
regscale/models/regscale_models/user_group.py +55 -0
regscale/models/regscale_models/vulnerability.py +242 -0
regscale/models/regscale_models/vulnerability_mapping.py +162 -0
regscale/models/regscale_models/workflow.py +55 -0
regscale/models/regscale_models/workflow_action.py +34 -0
regscale/models/regscale_models/workflow_instance.py +269 -0
regscale/models/regscale_models/workflow_instance_step.py +114 -0
regscale/models/regscale_models/workflow_template.py +58 -0
regscale/models/regscale_models/workflow_template_step.py +45 -0
regscale/regscale.py +815 -0
regscale/utils/__init__.py +7 -0
regscale/utils/b64conversion.py +14 -0
regscale/utils/click_utils.py +118 -0
regscale/utils/decorators.py +48 -0
regscale/utils/dict_utils.py +59 -0
regscale/utils/files.py +79 -0
regscale/utils/fxns.py +30 -0
regscale/utils/graphql_client.py +113 -0
regscale/utils/lists.py +16 -0
regscale/utils/numbers.py +12 -0
regscale/utils/shell.py +148 -0
regscale/utils/string.py +121 -0
regscale/utils/synqly_utils.py +165 -0
regscale/utils/threading/__init__.py +8 -0
regscale/utils/threading/threadhandler.py +131 -0
regscale/utils/threading/threadsafe_counter.py +47 -0
regscale/utils/threading/threadsafe_dict.py +242 -0
regscale/utils/threading/threadsafe_list.py +83 -0
regscale/utils/version.py +104 -0
regscale/validation/__init__.py +0 -0
regscale/validation/address.py +37 -0
regscale/validation/record.py +48 -0
regscale/visualization/__init__.py +5 -0
regscale/visualization/click.py +34 -0
regscale_cli-6.16.0.0.dist-info/LICENSE +21 -0
regscale_cli-6.16.0.0.dist-info/METADATA +659 -0
regscale_cli-6.16.0.0.dist-info/RECORD +481 -0
regscale_cli-6.16.0.0.dist-info/WHEEL +5 -0
regscale_cli-6.16.0.0.dist-info/entry_points.txt +6 -0
regscale_cli-6.16.0.0.dist-info/top_level.txt +2 -0
tests/fixtures/__init__.py +2 -0
tests/fixtures/api.py +87 -0
tests/fixtures/models.py +91 -0
tests/fixtures/test_fixture.py +144 -0
tests/mocks/__init__.py +0 -0
tests/mocks/objects.py +3 -0
tests/mocks/response.py +32 -0
tests/mocks/xml.py +13 -0
tests/regscale/__init__.py +0 -0
tests/regscale/core/__init__.py +0 -0
tests/regscale/core/test_api.py +232 -0
tests/regscale/core/test_app.py +406 -0
tests/regscale/core/test_login.py +37 -0
tests/regscale/core/test_logz.py +66 -0
tests/regscale/core/test_sbom_generator.py +87 -0
tests/regscale/core/test_validation_utils.py +163 -0
tests/regscale/core/test_version.py +78 -0
tests/regscale/models/__init__.py +0 -0
tests/regscale/models/test_asset.py +71 -0
tests/regscale/models/test_config.py +26 -0
tests/regscale/models/test_control_implementation.py +27 -0
tests/regscale/models/test_import.py +97 -0
tests/regscale/models/test_issue.py +36 -0
tests/regscale/models/test_mapping.py +52 -0
tests/regscale/models/test_platform.py +31 -0
tests/regscale/models/test_regscale_model.py +346 -0
tests/regscale/models/test_report.py +32 -0
tests/regscale/models/test_tenable_integrations.py +118 -0
tests/regscale/models/test_user_model.py +121 -0
tests/regscale/test_about.py +19 -0
tests/regscale/test_authorization.py +65 -0

regscale/integrations/public/fedramp/system_characteristics.py ADDED Viewed

@@ -0,0 +1,922 @@
+"""
+System Characteristics are a Model Layer in the OSCAL SSP implementation model. The
+model is documented at https://pages.nist.gov/OSCAL/concepts/layer/implementation/ssp/
+Note that the RegScale SSP Data model collapses several NIST OSCAL model layers together
+including Metadata, System Characteristics, and System Implementation.
+"""
+import json
+from json import JSONDecodeError
+from typing import List, Optional, Union
+from lxml.etree import Element
+from pydantic import ValidationError
+from regscale.core.app.api import Api
+from regscale.core.app.application import Application
+from regscale.core.app.logz import create_logger
+from regscale.integrations.public.fedramp.reporting import log_error, log_event
+from regscale.integrations.public.fedramp.resources import parse_backmatter
+from regscale.integrations.public.fedramp.xml_utils import update_ssp
+# flake8: noqa: C901
+from regscale.models import SecurityPlan
+logger = create_logger()
+SYSTEM_CHARS = "System Characteristics"
+SYSTEM_INFO = "System Information"
+CAT_MAPPING = [
+    ("fips-199-low", "Low"),
+    ("fips-199-moderate", "Moderate"),
+    ("fips-199-high", "High"),
+]
+LEVEL_MAPPING = [
+    ("1", "Low"),
+    ("2", "Moderate"),
+    ("3", "High"),
+]
+FR_AUTH_MAPPING = [
+    ("fedramp-jab", "Joint Authorization Board (JAB)"),
+    ("fedramp-agency", "Agency Authorization"),
+    ("fedramp-li-saas", "Low Impact SaaS"),
+]
+STATUS_MAPPING = [
+    ("operational", "Operational"),
+    ("under-development", "Under Development"),
+    ("under-major-modification", "Undergoing a Major Modification"),
+]
+def get_compliance_settings_id() -> int:
+    # TODO: Move to REG-13149
+    """
+    Return the Compliance Settings ID for FedRAMP
+    :return: Compliance Setting ID
+    :rtype: int
+    """
+    from regscale.models.regscale_models.compliance_settings import ComplianceSettings
+    try:
+        fedramp_comp = next(
+            comp.id for comp in ComplianceSettings.get_by_current_tenant() if comp.title == "FedRAMP Compliance Setting"
+        )
+    except (StopIteration, JSONDecodeError):
+        # Handle the case where the Compliance Setting ID is not found or the RegScale version is not compatible
+        logger.warning("Unable to find Compliance Setting ID, defaulting to 1.")
+        fedramp_comp = 1
+    return fedramp_comp
+def parse_minimum_ssp(
+    api: Api,
+    root: Element,
+    events_list: Optional[list] = None,
+    new_ssp: Optional[dict] = None,
+    ns: Optional[dict] = None,
+) -> Union[str, int]:
+    """The objective of this function is to parse the elements needed for an initial POST to create and return a new
+    SSP ID. The SSP ID can then be later used to update the SSP with additional information in a PUT operation, or to
+    provide the necessary ParentID for database records that require the SSP ID as a foreign key.
+    :param Api api: RegScale API object
+    :param Element root: lxml root Element from SSP
+    :param Optional[list] events_list: list to be populated with parsed data
+    :param Optional[dict] new_ssp: dict to be populated with parsed data
+    :param Optional[dict] ns: namespace dict
+    :return: SSP ID
+    :rtype: Union[str, int]
+    """
+    app = Application()
+    properties_list = []  # track any properties collected during this time
+    fedrampId = root.xpath(
+        '/*/ns1:system-characteristics/ns1:system-id[@identifier-type="https://fedramp.gov"]',
+        namespaces=ns,
+    )
+    if len(fedrampId) == 0:
+        events_list.append(
+            log_error(
+                record_type="FedRAMP ID",
+                missing_element="FedRAMP ID",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["fedrampId"] = fedrampId[0].text
+        events_list.append(
+            log_event(
+                record_type="FedRAMP ID",
+                model_layer=SYSTEM_CHARS,
+                event_msg=f'Found FedRAMP-assigned identifier: {new_ssp["fedrampId"]}',
+            )
+        )
+    #
+    xpath_query = "/*/ns1:system-characteristics/ns1:system-id"
+    additional_identifiers = root.xpath(xpath_query, namespaces=ns)
+    for additional_identifier in additional_identifiers:
+        try:
+            if additional_identifier.attrib["identifier-type"] != "https://fedramp.gov":
+                property_ = {
+                    "key": "identifier-type=" + additional_identifier.attrib["identifier-type"],
+                    "value": additional_identifier.text,
+                    "label": "Other System ID",
+                    "otherAttributes": xpath_query.replace("ns1:", "{http://csrc.nist.gov/ns/oscal/1.0}"),
+                }
+                properties_list.append(property_)
+                events_list.append(
+                    log_event(
+                        record_type="System Identifier",
+                        model_layer=SYSTEM_CHARS,
+                        event_msg=f'Additional System ID detected & recorded as Property: {property_["value"]}',
+                    )
+                )
+        except Exception as e:
+            logger.error(e)
+            events_list.append(
+                log_error(
+                    missing_element=additional_identifier.tag,
+                    record_type="Property",
+                    model_layer=SYSTEM_CHARS,
+                    event_msg=f"Problem importing Additional System ID {additional_identifier.text}",
+                )
+            )
+    #
+    other_identifier = root.xpath("/*/ns1:system-characteristics/ns1:system-name-short", namespaces=ns)
+    if len(other_identifier) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="System Short Name",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["otherIdentifier"] = other_identifier[0].text
+        events_list.append(
+            log_event(
+                record_type="System Short Name",
+                event_msg=f'System Short Name identified as {new_ssp["otherIdentifier"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    description = root.xpath("/*/ns1:system-characteristics/ns1:description", namespaces=ns)
+    if len(description) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="System Description",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        # TODO: This needs the text collapsing function that Joshua is working on.
+        # new_ssp["description"] = extract_markup_content(description[0])
+        new_ssp["description"] = ""
+        for p in description[0].findall("ns1:p", namespaces=ns):
+            new_ssp["description"] = new_ssp["description"] + p.text + " "
+        events_list.append(
+            log_event(
+                record_type=SYSTEM_INFO,
+                event_msg=f'System description recorded:  {new_ssp["description"][:30]}... ',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    fedrampAuthorizationType = root.xpath(
+        '/*/ns1:system-characteristics/ns1:prop[@name="authorization-type"][@ns="https://fedramp.gov/ns/oscal"]',
+        namespaces=ns,
+    )
+    if len(fedrampAuthorizationType) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="FedRAMP Authorization Type",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["fedrampAuthorizationType"] = apply_mapping(
+            FR_AUTH_MAPPING, fedrampAuthorizationType[0].attrib["value"]
+        )
+        events_list.append(
+            log_event(
+                record_type=SYSTEM_INFO,
+                event_msg=f'FedRAMP Authorization Type: {new_ssp["fedrampAuthorizationType"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    authenticationLevel = root.xpath(
+        '/*/ns1:system-characteristics/ns1:prop[@name="security-eauth-level"][@class="security-eauth"]',
+        namespaces=ns,
+    )
+    if len(authenticationLevel) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="FedRAMP Authentication Level",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["authenticationLevel"] = apply_mapping(LEVEL_MAPPING, authenticationLevel[0].attrib["value"])
+        events_list.append(
+            log_event(
+                record_type=SYSTEM_INFO,
+                event_msg=f'FedRAMP Authentication Level: {new_ssp["authenticationLevel"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    identityAssuranceLevel = root.xpath(
+        '/*/ns1:system-characteristics/ns1:prop[@name="identity-assurance-level"]/@value',
+        namespaces=ns,
+    )
+    if len(identityAssuranceLevel) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="FedRAMP Identity Assurance Level",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["identityAssuranceLevel"] = apply_mapping(LEVEL_MAPPING, identityAssuranceLevel[0])
+        events_list.append(
+            log_event(
+                record_type=SYSTEM_INFO,
+                event_msg=f'FedRAMP Identity Assurance Level: {new_ssp["identityAssuranceLevel"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    authenticatorAssuranceLevel = root.xpath(
+        '/*/ns1:system-characteristics/ns1:prop[@name="authenticator-assurance-level"]/@value',
+        namespaces=ns,
+    )
+    if len(authenticatorAssuranceLevel) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="FedRAMP Authenticator Assurance Level",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["authenticatorAssuranceLevel"] = apply_mapping(LEVEL_MAPPING, identityAssuranceLevel[0])
+        events_list.append(
+            log_event(
+                record_type=SYSTEM_INFO,
+                event_msg=f'FedRAMP Authenticator Assurance Level: {new_ssp["authenticatorAssuranceLevel"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    federationAssuranceLevel = root.xpath(
+        '/*/ns1:system-characteristics/ns1:prop[@name="federation-assurance-level"]/@value',
+        namespaces=ns,
+    )
+    if len(federationAssuranceLevel) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="FedRAMP Federation Assurance Level",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["federationAssuranceLevel"] = apply_mapping(LEVEL_MAPPING, federationAssuranceLevel[0])
+        events_list.append(
+            log_event(
+                record_type=SYSTEM_INFO,
+                event_msg=f'FedRAMP Federation Assurance Level: {new_ssp["federationAssuranceLevel"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    system_name = root.xpath("/*/ns1:system-characteristics/ns1:system-name", namespaces=ns)
+    if len(system_name) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="System Name",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+        new_ssp["systemName"] = "Cloud Service Provider System"  # FAILSAFE W/ DUMMY DATA FOR REQUIRED VALUES
+    else:
+        new_ssp["systemName"] = system_name[0].text
+        events_list.append(
+            log_event(
+                record_type="System Name",
+                event_msg=f'System Name identified as {new_ssp["systemName"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    new_ssp["confidentiality"] = "Low"  # default value
+    confidentiality = root.xpath(
+        "/*/ns1:system-characteristics/ns1:security-impact-level/ns1:security-objective-confidentiality",
+        namespaces=ns,
+    )
+    if len(confidentiality) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="Security Objective (Confidentiality) ",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["confidentiality"] = apply_mapping(CAT_MAPPING, confidentiality[0].text)
+        events_list.append(
+            log_event(
+                record_type=SYSTEM_INFO,
+                event_msg=f'Recorded System Security Confidentiality: {new_ssp["confidentiality"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    new_ssp["integrity"] = "Low"  # default value
+    integrity = root.xpath(
+        "/*/ns1:system-characteristics/ns1:security-impact-level/ns1:security-objective-integrity",
+        namespaces=ns,
+    )
+    if len(integrity) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="Security Objective (Integrity) ",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["integrity"] = apply_mapping(CAT_MAPPING, integrity[0].text)
+        events_list.append(
+            log_event(
+                record_type=SYSTEM_INFO,
+                event_msg=f'Recorded System Security Integrity: {new_ssp["integrity"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    new_ssp["availability"] = "Low"  # default value
+    availability = root.xpath(
+        "/*/ns1:system-characteristics/ns1:security-impact-level/ns1:security-objective-availability",
+        namespaces=ns,
+    )
+    if len(availability) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="Security Objective (Availability) ",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["availability"] = apply_mapping(CAT_MAPPING, availability[0].text)
+        events_list.append(
+            log_event(
+                record_type=SYSTEM_INFO,
+                event_msg=f'Recorded System Security Availability: {new_ssp["availability"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    new_ssp["overallCategorization"] = "Low"  # default value
+    overall_categorization = root.xpath("/*/ns1:system-characteristics/ns1:security-sensitivity-level", namespaces=ns)
+    if len(overall_categorization) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="Security Objective (Overall Categorization) ",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["overallCategorization"] = apply_mapping(CAT_MAPPING, overall_categorization[0].text)
+        events_list.append(
+            log_event(
+                record_type=SYSTEM_INFO,
+                event_msg=f'Recorded System Security Overall Categorization: {new_ssp["overallCategorization"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    #
+    new_ssp["status"] = "Operational"  # default value
+    status = root.xpath("/*/ns1:system-characteristics/ns1:status", namespaces=ns)
+    if len(status) == 0:
+        events_list.append(
+            log_error(
+                record_type=SYSTEM_INFO,
+                missing_element="System Operating Status",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        new_ssp["status"] = apply_mapping(STATUS_MAPPING, status[0].attrib["state"])
+        events_list.append(
+            log_event(
+                record_type=SYSTEM_INFO,
+                event_msg=f'System Operating status detected: {new_ssp["status"]}',
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+        status_remarks = root.xpath("/*/ns1:system-characteristics/ns1:status/ns1:remarks", namespaces=ns)
+        if len(status_remarks) > 0:
+            new_ssp["explanationForNonOperational"] = ""
+            for p in status_remarks[0].findall("ns1:p", namespaces=ns):
+                new_ssp["explanationForNonOperational"] = new_ssp["explanationForNonOperational"] + p.text + " "
+    #
+    # CLOUD SERVICE MODELS
+    new_ssp["bModelSaaS"] = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:prop[@name='cloud-service-model'][@value='saas']",
+        namespaces=ns,
+    )
+    if len(new_ssp["bModelSaaS"]) == 0:
+        new_ssp["bModelSaaS"] = False
+    else:
+        new_ssp["bModelSaaS"] = True
+    #
+    new_ssp["bModelPaaS"] = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:prop[@name='cloud-service-model'][@value='paas']",
+        namespaces=ns,
+    )
+    if len(new_ssp["bModelPaaS"]) == 0:
+        new_ssp["bModelPaaS"] = False
+    else:
+        new_ssp["bModelPaaS"] = True
+    #
+    new_ssp["bModelIaaS"] = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:prop[@name='cloud-service-model'][@value='iaas']",
+        namespaces=ns,
+    )
+    if len(new_ssp["bModelIaaS"]) == 0:
+        new_ssp["bModelIaaS"] = False
+    else:
+        new_ssp["bModelIaaS"] = True
+    #
+    new_ssp["bModelOther"] = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:prop[@name='cloud-service-model'][@value='other']",
+        namespaces=ns,
+    )
+    if len(new_ssp["bModelOther"]) == 0:
+        new_ssp["bModelOther"] = False
+    else:
+        new_ssp["bModelOther"] = True
+    #
+    remarks = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:prop[@name='cloud-service-model'][@value='other']/ns1:remarks",
+        namespaces=ns,
+    )
+    if len(remarks) == 0:
+        pass
+    else:
+        new_ssp["OtherModelRemarks"] = ""
+        for p in remarks[0].findall("ns1:p", namespaces=ns):
+            new_ssp["OtherModelRemarks"] = new_ssp["OtherModelRemarks"] + p.text + " "
+    # CLOUD DEPLOYMENTS
+    new_ssp["bDeployPublic"] = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:prop[@name='cloud-deployment-model'][@value='public-cloud']",
+        namespaces=ns,
+    )
+    if len(new_ssp["bDeployPublic"]) == 0:
+        new_ssp["bDeployPublic"] = False
+    else:
+        new_ssp["bDeployPublic"] = True
+    #
+    new_ssp["bDeployPrivate"] = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:prop[@name='cloud-deployment-model'][@value='private-cloud']",
+        namespaces=ns,
+    )
+    if len(new_ssp["bDeployPrivate"]) == 0:
+        new_ssp["bDeployPrivate"] = False
+    else:
+        new_ssp["bDeployPrivate"] = True
+    #
+    new_ssp["bDeployGov"] = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:prop[@name='cloud-deployment-model'][@value='government-only-cloud']",
+        namespaces=ns,
+    )
+    if len(new_ssp["bDeployGov"]) == 0:
+        new_ssp["bDeployGov"] = False
+    else:
+        new_ssp["bDeployGov"] = True
+    #
+    new_ssp["bDeployHybrid"] = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:prop[@name='cloud-deployment-model'][@value='hybrid-cloud']",
+        namespaces=ns,
+    )
+    if len(new_ssp["bDeployHybrid"]) == 0:
+        new_ssp["bDeployHybrid"] = False
+    else:
+        new_ssp["bDeployHybrid"] = True
+    #
+    new_ssp["bDeployOther"] = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:prop[@name='cloud-deployment-model'][@value='other-cloud']",
+        namespaces=ns,
+    )
+    if len(new_ssp["bDeployOther"]) == 0:
+        new_ssp["bDeployOther"] = False
+    else:
+        new_ssp["bDeployOther"] = True
+    #
+    remarks = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:prop[@name='cloud-service-model'][@value='other']/ns1:remarks",
+        namespaces=ns,
+    )
+    if len(remarks) == 0:
+        pass
+    else:
+        new_ssp["DeployOtherRemarks"] = ""
+        for p in remarks[0].findall("ns1:p", namespaces=ns):
+            new_ssp["DeployOtherRemarks"] = new_ssp["DeployOtherRemarks"] + p.text + " "
+    # TODO: This RegScale value doesn't seem to have a FedRAMP counterpart. Confirm w/ Travis or Dale
+    new_ssp["systemType"] = "Major Application"
+    new_ssp["systemOwnerId"] = app.config["userId"]
+    from regscale.utils.version import RegscaleVersion
+    from packaging.version import Version
+    regscale_version = RegscaleVersion.get_platform_version()
+    if len(regscale_version) >= 10 or Version(regscale_version) >= Version("6.13.0.0"):
+        new_ssp["complianceSettingsId"] = get_compliance_settings_id()
+    ssp_id = post_SSP(api, new_ssp)
+    return ssp_id
+def parse_system_characteristics(
+    ssp_id: Union[int, str], root: Element, events_list: Optional[list] = None, ns: Optional[dict] = None
+):
+    """Parse system characteristics from OSCAL SSP XML to RegScale SSP JSON
+    :param Union[int, str] ssp_id: The ID of the SSP to be updated
+    :param Element root: lxml root Element from SSP
+    :param Optional[list] events_list: list to be populated with parsed data, defaults to None
+    :param Optional[dict] ns: namespace dict, defaults to None
+    """
+    ssp_updates = {}  # store any key value pairs to update SSP with
+    # Information / Classification Types
+    information_types = root.xpath(
+        "/*/ns1:system-characteristics/ns1:system-information/ns1:information-type",
+        namespaces=ns,
+    )
+    if len(information_types) == 0:
+        events_list.append(
+            log_error(
+                record_type="Information Types",
+                missing_element="At least one Information Type",
+                model_layer=SYSTEM_CHARS,
+            )
+        )
+    else:
+        parse_classificationType(information_types, ns, events_list, ssp_id)
+    # Privacy Impact Assessment
+    # TODO: Doesn't seem to be a RegScale counterpart for <prop name="privacy-sensitive" value="yes"/>  - confirm w/ SME
+    parse_privacy(root=root, ns=ns, events_list=events_list, ssp_id=ssp_id)
+    # SYSTEM DESCRIPTION
+    authorizationBoundary = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:authorization-boundary/ns1:description",
+        namespaces=ns,
+    )
+    if len(authorizationBoundary) > 0:
+        ssp_updates["authorizationBoundary"] = ""
+        for p in authorizationBoundary[0].findall("ns1:p", namespaces=ns):
+            if p.text:
+                ssp_updates["authorizationBoundary"] = ssp_updates["authorizationBoundary"] + p.text + " "
+        events_list.append(
+            log_event(
+                model_layer=SYSTEM_CHARS,
+                record_type=SYSTEM_INFO,
+                event_msg="Authorization Boundary recorded.",
+            )
+        )
+    else:
+        events_list.append(
+            log_error(
+                model_layer=SYSTEM_CHARS,
+                record_type=SYSTEM_INFO,
+                missing_element="Auth. Boundary Description",
+            )
+        )
+    # check if there is back-matter
+    if back_matter := root.find(".//ns1:back-matter", namespaces=ns):
+        # get the resources
+        resources = back_matter.findall(".//ns1:resource", namespaces=ns)
+        results = parse_backmatter(
+            resource_elem=resources,
+            back_matter=back_matter,
+            root=root,
+            ns=ns,
+            ssp_id=ssp_id,
+            events_list=events_list,
+        )
+        event_msg = (
+            f"Created {results['linksCreated']} new link(s), created "
+            f"{results['referencesCreated']} reference(s), and uploaded "
+            f"{results['filesUploaded']} file(s) in RegScale."
+        )
+        events_list.append(
+            log_event(
+                record_type="Back Matter",
+                event_msg=event_msg,
+                model_layer="Back Matter",
+            )
+        )
+    else:
+        events_list.append(
+            log_error(
+                model_layer=SYSTEM_CHARS,
+                record_type=SYSTEM_INFO,
+                missing_element="back-matter",
+            )
+        )
+    network_architecture = (
+        root.xpath(
+            "/ns1:system-security-plan/ns1:system-characteristics/ns1:network-architecture/ns1:description",
+            namespaces=ns,
+        )
+        or []
+    )
+    if len(network_architecture) > 0:
+        ssp_updates["networkArchitecture"] = ""
+        for p in network_architecture[0].findall("ns1:p", namespaces=ns):
+            if p.text:
+                ssp_updates["networkArchitecture"] = ssp_updates["networkArchitecture"] + p.text + " "
+        events_list.append(
+            log_event(
+                model_layer=SYSTEM_CHARS,
+                record_type=SYSTEM_INFO,
+                event_msg="Network Architecture description recorded.",
+            )
+        )
+    else:
+        events_list.append(
+            log_error(
+                model_layer=SYSTEM_CHARS,
+                record_type=SYSTEM_INFO,
+                missing_element="Network Architecture",
+            )
+        )
+    #
+    dataFlow = root.xpath(
+        "/ns1:system-security-plan/ns1:system-characteristics/ns1:data-flow/ns1:description",
+        namespaces=ns,
+    )
+    if len(dataFlow) > 0:
+        ssp_updates["dataFlow"] = ""
+        for p in dataFlow[0].findall("ns1:p", namespaces=ns):
+            if p.text:
+                ssp_updates["dataFlow"] = ssp_updates["dataFlow"] + p.text + " "
+        events_list.append(
+            log_event(
+                model_layer=SYSTEM_CHARS,
+                record_type=SYSTEM_INFO,
+                event_msg="Data Flow description recorded.",
+            )
+        )
+    else:
+        events_list.append(
+            log_error(
+                model_layer=SYSTEM_CHARS,
+                record_type=SYSTEM_INFO,
+                missing_element="Data Flow",
+            )
+        )
+    update_ssp(ssp_updates, ssp_id)
+    # properties such as authorization type will be mapped to regscale counterparts, where applicable, but will also be
+    # stored as properties for consistency in export.
+    # if Export team needs these NOT to be recorded in properties. that can be arranged. Export could just choose
+    # to check if a property already exists before adding it, however, which would avoid potential for duplication on export
+    """
+        else:  # if none of these other condit`ions are met, store as a custom property
+            ancestry = ''
+            for parent in prop.parents:
+                ancestry = ancestry + '/' + parent.name
+            property_ = {}
+            property_['key'] = prop.attrs['name']
+            property_['value'] = prop.attrs['value']
+            property_['label'] = 'Custom Property'
+            property_['otherAttributes'] = ancestry + str(prop)
+            properties_list.append(property_)
+    """
+def apply_mapping(mapping: List[tuple], value: str) -> str:
+    """
+    Apply a mapping to a value
+    :param List[tuple] mapping: List of mapping pair tuples - (original,new)
+    :param str value: Thing to be mapped to a new value
+    :return: New value
+    :rtype: str
+    """
+    for original, new in mapping:
+        if value == original:
+            value = new
+            break
+    return value
+def post_SSP(api: Api, new_ssp: dict):
+    """Create the initial SSP"""
+    app = Application()
+    headers_json = {
+        "accept": "*/*",
+        "Content-Type": "application/json-patch+json",
+        "Authorization": app.config["token"],
+    }
+    # If data is incomplete This fails w/ 500 error ( which means the json string being received by the server is either malformed or missing something
+    logger.info("Uploading SSP to RegScale...")
+    try:
+        ssp = SecurityPlan(**new_ssp)
+    except ValidationError as exc:
+        logger.error(f"Failed to validate: {exc}")
+        return "artifacts/import-results.csv", {
+            "status": "failed",
+        }
+    if new_ssp := ssp.create():
+        new_ssp_id = new_ssp.id
+    else:
+        new_ssp_id = None
+    logger.debug(new_ssp_id)
+    if not new_ssp_id:
+        # This generally succeeds if the ssp failed to pass pydantic check for required values in securityplans module
+        logger.warning("Some required data may have failed to be imported. Trying to upload SSP with incomplete data ")
+        import json
+        dat = {}
+        response = api.post(
+            url=app.config["domain"] + "/api/securityplans",
+            json=new_ssp,
+        )
+        logger.debug(response.status_code)
+        if not response.raise_for_status():
+            dat = response.json()
+        if "id" in dat:
+            new_ssp_id = dat["id"]
+    return new_ssp_id
+def parse_classificationType(information_types, ns, events_list, ssp_id):
+    """Information Types in FedRAMP language correspond to Classification Types in RegScale, and are stored in the
+    ClassificationTypes table. . Classification/Information Types are created in the 'Setup' portion of the RegScale app
+    & at the Tenant level. Classification/Information types are then associated with an individual SSP through the
+    'Subsystems' menu. The mapping between a Classification/Information type and the SSP is stored in the
+    ClassifiedRecords database table."""
+    # TODO: There currently isn't capability to track the base vs selected & adjustment reason, or categ. system
+    for information_type in information_types:
+        classificationType_dict = {}
+        classificationType_dict["uuid"] = information_type.attrib["uuid"]
+        # start with default values to avoid breaking on import
+        classificationType_dict["title"] = "Name of Information Type"
+        classificationType_dict["description"] = ""
+        classificationType_dict["confidentiality"] = "Low"
+        classificationType_dict["integrity"] = "Low"
+        classificationType_dict["availability"] = "Low"
+        if information_type.find("ns1:title", namespaces=ns) is not None:
+            classificationType_dict["title"] = information_type.find("ns1:title", namespaces=ns).text
+        if information_type.find("ns1:description", namespaces=ns) is not None:
+            for p in information_type.find("ns1:description", namespaces=ns).findall("ns1:p", namespaces=ns):
+                classificationType_dict["description"] = classificationType_dict["description"] + p.text + " "
+        if information_type.find("ns1:confidentiality-impact/ns1:selected", namespaces=ns) is not None:
+            classificationType_dict["confidentiality"] = apply_mapping(
+                CAT_MAPPING,
+                information_type.find("ns1:confidentiality-impact/ns1:selected", namespaces=ns).text,
+            )
+        if information_type.find("ns1:integrity-impact/ns1:selected", namespaces=ns) is not None:
+            classificationType_dict["integrity"] = apply_mapping(
+                CAT_MAPPING,
+                information_type.find("ns1:integrity-impact/ns1:selected", namespaces=ns).text,
+            )
+        if information_type.find("ns1:availability-impact/ns1:selected", namespaces=ns) is not None:
+            classificationType_dict["availability"] = apply_mapping(
+                CAT_MAPPING,
+                information_type.find("ns1:availability-impact/ns1:selected", namespaces=ns).text,
+            )
+        classification_type_id = upload_classificationType(classificationType_dict, ssp_id)
+        if classification_type_id:
+            events_list.append(
+                log_event(
+                    record_type="Information Type",
+                    model_layer=SYSTEM_CHARS,
+                    event_msg=f'Recorded Information Type for: {classificationType_dict["title"]}',
+                )
+            )
+        else:
+            events_list.append(
+                log_error(
+                    record_type="Information Type",
+                    model_layer=SYSTEM_CHARS,
+                    missing_element="Information Type",
+                    event_msg='Failed to post Information Type for {classificationType_dict["title"]}.',
+                )
+            )
+def upload_classificationType(classificationType_dict, ssp_id):
+    app = Application()
+    api = Api()
+    headers_json = {
+        "accept": "*/*",
+        "Content-Type": "application/json-patch+json",
+        "Authorization": app.config["token"],
+    }
+    ssp_classification = json.dumps(classificationType_dict)
+    response = api.post(
+        url=app.config["domain"] + "/api/classificationTypes",
+        data=ssp_classification,
+        headers=headers_json,
+    )
+    if response.status_code == 200:  # If successfully upload classification type, then add mapping to SSP
+        classifiedRecords_entry = {}
+        classifiedRecords_entry["classificationTypeId"] = json.loads(response.content)["id"]
+        classifiedRecords_entry["parentRecordId"] = ssp_id
+        classifiedRecords_entry["parentModule"] = "securityplans"
+        classifiedRecord_json = json.dumps(classifiedRecords_entry)
+        response = api.post(
+            url=app.config["domain"] + "/api/classifiedRecords",
+            data=classifiedRecord_json,
+            headers=headers_json,
+        )
+        if response.status_code == 200:
+            return "Success"
+        else:
+            return None
+    else:
+        return None
+def parse_privacy(root, events_list, ns, ssp_id):
+    "Privacy Impact Assessment pertains to the Privacy tab of RegScale Application and the Privacy database table."
+    try:
+        privacyImpactAssessment = {}
+        privacyImpactAssessment["piiCollection"] = root.xpath(
+            '/*/ns1:system-characteristics/ns1:system-information/ns1:prop[@name="pta-1"][@ns="https://fedramp.gov/ns/oscal"]/@value',
+            namespaces=ns,
+        )[0].capitalize()
+        privacyImpactAssessment["piiPublicCollection"] = root.xpath(
+            '/*/ns1:system-characteristics/ns1:system-information/ns1:prop[@name="pta-2"][@ns="https://fedramp.gov/ns/oscal"]/@value',
+            namespaces=ns,
+        )[0].capitalize()
+        privacyImpactAssessment["piaConducted"] = root.xpath(
+            '/*/ns1:system-characteristics/ns1:system-information/ns1:prop[@name="pta-3"][@ns="https://fedramp.gov/ns/oscal"]/@value',
+            namespaces=ns,
+        )[0].capitalize()
+        privacyImpactAssessment["privacyActSystem"] = root.xpath(
+            '/*/ns1:system-characteristics/ns1:system-information/ns1:prop[@name="pta-4"][@ns="https://fedramp.gov/ns/oscal"]/@value',
+            namespaces=ns,
+        )[0].capitalize()
+        privacyImpactAssessment["sornExists"] = root.xpath(
+            '/*/ns1:system-characteristics/ns1:system-information/ns1:prop[@name="pta-4"][@ns="https://fedramp.gov/ns/oscal"]/@value',
+            namespaces=ns,
+        )[0].capitalize()
+        privacyImpactAssessment["sornId"] = root.xpath(
+            '/*/ns1:system-characteristics/ns1:system-information/ns1:prop[@name="sorn-id"][@ns="https://fedramp.gov/ns/oscal"]/@value',
+            namespaces=ns,
+        )[0].capitalize()
+        privacyImpactAssessment["SecurityPlanId"] = ssp_id
+        privacyImpactAssessment["isPublic"] = True
+        # Will have to come back to this. Requires linking to the Privacy officer / information officer contacts per
+        # application layer logic, if any of the privacy questions are "yes".
+        """
+        response_id = post_privacy(privacyImpactAssessment)
+        if response_id:
+            events_list.append(log_event(model_layer='System Characteristics', record_type='Privacy Impact Assessment',
+                                         event_msg='Successfully imported PTA/PIA data.'))
+        else:
+            events_list.append(log_error(model_layer='System Characteristics', record_type='Privacy Assessment',
+                                         missing_element='Privacy Assessment',
+                                         event_msg='Problem extracting or uploading PTA/PIA data.'))
+        """
+    except Exception as e:
+        logger.warning(e)
+        events_list.append(
+            log_error(
+                model_layer=SYSTEM_CHARS,
+                record_type="Privacy Assessment",
+                missing_element="Privacy Assessment",
+                event_msg="Problem extracting PTA/PIA data.",
+            )
+        )