security-controls-mcp 0.2.0__tar.gz → 0.2.1__tar.gz

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/CHANGELOG.md

@@ -5,6 +5,32 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [0.3.0] - 2026-01-29
+
+### Added
+- **12 new framework mappings** from SCF 2025.4 - expanded global coverage
+  - **APAC:** Australian Essential Eight (37 controls), Australian ISM June 2024 (336 controls), Singapore MAS TRM 2021 (214 controls)
+  - **Financial:** SWIFT Customer Security Framework 2023 (127 controls)
+  - **Privacy:** NIST Privacy Framework 1.0 (187 controls)
+  - **European National:** Netherlands (27 controls), Norway (23 controls), Sweden (25 controls), Germany general (18 controls), Germany BAIT (91 controls), Germany C5:2020 (239 controls)
+  - **Cloud:** CSA Cloud Controls Matrix v4 (334 controls)
+- **Framework Roadmap** section in README documenting:
+  - All 28 available frameworks with control counts
+  - Frameworks not yet available (BIO, KATAKRI, NSM, MSB, CFCS, CCB, ANSSI)
+  - Clear guidance on maintaining data quality via SCF-only mappings
+
+### Changed
+- Total framework coverage: **16 → 28 frameworks** (+75% expansion)
+- Updated all documentation to reflect new framework count
+- Enhanced framework categories in README (added APAC, European National, Financial, Cloud)
+- Updated tests to verify 28 frameworks
+- Updated `scf-extract-starter.py` with 12 new framework column mappings
+
+### Technical
+- Re-extracted data from SCF 2025.4 Excel file with expanded framework coverage
+- Updated `src/security_controls_mcp/data_loader.py` with new framework display names
+- All existing tools automatically support new frameworks (no API changes)
+
 ## [0.2.0] - 2025-01-29
 
 ### Added

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/CLAUDE_CODE_SETUP.md

@@ -183,7 +183,7 @@ Or use a relative path (less reliable):
 User: List all available security frameworks
 
 Claude: [Uses security-controls MCP server]
-**Available Frameworks (16 total)**
+**Available Frameworks (28 total)**
 
 - **nist_800_53_r5**: NIST SP 800-53 Revision 5 (777 controls)
 - **soc_2_tsc**: SOC 2 (TSC 2017:2022) (412 controls)

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/DEPLOYMENT_CHECKLIST.md

@@ -13,7 +13,7 @@
 - [ ] Run `python test_server.py` → All 5 tools work correctly
 - [ ] Data files present: `scf-controls.json` (1.5MB), `framework-to-scf.json` (194KB)
 - [ ] All 1,451 controls loaded
-- [ ] All 16 frameworks mapped correctly
+- [ ] All 28 frameworks mapped correctly
 
 **Command:**
 ```bash
@@ -51,7 +51,7 @@ python verify_production_ready.py
 ### ✅ Local Testing
 
 - [ ] Install in your own Claude Desktop (follow QUICK_START.md)
-- [ ] Test query: "List all available security frameworks" → Returns 16 frameworks
+- [ ] Test query: "List all available security frameworks" → Returns 28 frameworks
 - [ ] Test query: "Search for encryption controls" → Returns CRY-* controls
 - [ ] Test query: "Show me GOV-01 details" → Returns full control data
 - [ ] Test query: "Map ISO 27001 5.1 to DORA" → Returns mappings
@@ -94,7 +94,7 @@ First production release of the Security Controls MCP server for Claude.
 **Tools:**
 1. `get_control` - Get details for specific controls
 2. `search_controls` - Search by keyword
-3. `list_frameworks` - List all 16 frameworks
+3. `list_frameworks` - List all 28 frameworks
 4. `get_framework_controls` - Get all controls for a framework
 5. `map_frameworks` - Map between frameworks
 
@@ -121,7 +121,7 @@ python verify_production_ready.py
 
 All tests pass:
 - ✅ 1,451 controls loaded
-- ✅ 16 frameworks mapped
+- ✅ 28 frameworks mapped
 - ✅ 5 tools functional
 - ✅ MCP protocol working
 - ✅ Claude Desktop compatible
@@ -153,7 +153,7 @@ Submit to: https://smithery.ai/submit
 
 **Submission details:**
 - Name: security-controls-mcp
-- Description: "MCP server providing 1,451 security controls across 16 frameworks (NIST, ISO, DORA, PCI DSS, SOC 2) for compliance mapping and gap analysis"
+- Description: "MCP server providing 1,451 security controls across 28 frameworks (NIST, ISO, DORA, PCI DSS, SOC 2) for compliance mapping and gap analysis"
 - Repository: https://github.com/Ansvar-Systems/security-controls-mcp
 - Installation command: See INSTALL.md
 - Category: Security / Compliance
@@ -203,7 +203,7 @@ GitHub: https://github.com/Ansvar-Systems/security-controls-mcp
 I built an MCP server that brings security/compliance framework data directly into Claude conversations.
 
 **What it does:**
-- Access 1,451 security controls from 16 frameworks
+- Access 1,451 security controls from 28 frameworks
 - Search controls by keyword
 - Map between frameworks (ISO ↔ DORA, NIST ↔ SOC 2, etc.)
 - Get control implementation details

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/INSTALL.md

@@ -59,7 +59,7 @@ python test_server.py
 You should see:
 ```
 ✓ Loaded 1451 controls
-✓ Loaded 16 frameworks
+✓ Loaded 28 frameworks
 ✓ All tests passed!
 ```
 

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/PAID_STANDARDS_GUIDE.md

@@ -6,7 +6,7 @@ This guide explains how to add your purchased security standards (ISO 27001, NIS
 
 ## Overview
 
-The Security Controls MCP Server includes **1,451 free SCF controls** that map across 16 frameworks. When you add your **purchased standards**, you get:
+The Security Controls MCP Server includes **1,451 free SCF controls** that map across 28 frameworks. When you add your **purchased standards**, you get:
 
 - ✅ **Official text** from your licensed copies
 - ✅ **Full clauses** with page numbers

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: security-controls-mcp
-Version: 0.2.0
+Version: 0.2.1
 Summary: MCP server for querying security framework controls (SCF) - map between ISO 27001, NIST CSF, DORA, PCI DSS, and more
 Author-email: Ansvar Systems <hello@ansvar.eu>
 License: Apache-2.0
@@ -43,7 +43,7 @@ Dynamic: license-file
 
 **The universal translator for security frameworks.**
 
-The Security Controls MCP Server is an open-source tool that makes 1,451 security controls across 16 frameworks searchable and AI-accessible directly through Claude, Cursor, or any MCP-compatible client.
+The Security Controls MCP Server is an open-source tool that makes 1,451 security controls across 28 frameworks searchable and AI-accessible directly through Claude, Cursor, or any MCP-compatible client.
 
 Built on the [Secure Controls Framework (SCF)](https://securecontrolsframework.com/) by ComplianceForge.
 
@@ -51,7 +51,7 @@ Built on the [Secure Controls Framework (SCF)](https://securecontrolsframework.c
 
 **Coverage:**
 - 1,451 security controls spanning governance, risk, compliance, and technical domains
-- 16 major frameworks including ISO 27001, NIST CSF, DORA, PCI DSS, CMMC, and more
+- 28 major frameworks including ISO 27001, NIST CSF, DORA, PCI DSS, CMMC, Australian Essential Eight, Singapore MAS TRM, SWIFT CSCF, and more
 - Bidirectional mapping between any two frameworks via SCF rosetta stone
 - Optional integration with purchased standards (ISO, NIST 800-53) for official text
 
@@ -229,37 +229,76 @@ Ask Claude these natural language questions:
 
 ---
 
-## Available Frameworks (16 Total)
+## Available Frameworks (28 Total)
 
 When you call `list_frameworks()`, you get:
 
 ```
-Available Frameworks (16 total)
+Available Frameworks (28 total)
 
 - nist_800_53_r5: NIST SP 800-53 Revision 5 (777 controls)
 - soc_2_tsc: SOC 2 (TSC 2017:2022) (412 controls)
 - pci_dss_4.0.1: PCI DSS v4.0.1 (364 controls)
 - fedramp_r5_moderate: FedRAMP Revision 5 (Moderate) (343 controls)
+- australia_ism_2024: Australian ISM (June 2024) (336 controls)
+- csa_ccm_4: CSA Cloud Controls Matrix v4 (334 controls)
 - iso_27002_2022: ISO/IEC 27002:2022 (316 controls)
 - nist_csf_2.0: NIST Cybersecurity Framework 2.0 (253 controls)
+- germany_c5_2020: Germany C5:2020 (Cloud Controls) (239 controls)
 - cis_csc_8.1: CIS Critical Security Controls v8.1 (234 controls)
+- singapore_mas_trm_2021: Singapore MAS TRM 2021 (214 controls)
 - cmmc_2.0_level_2: CMMC 2.0 Level 2 (198 controls)
+- nist_privacy_framework_1_0: NIST Privacy Framework 1.0 (187 controls)
 - hipaa_security_rule: HIPAA Security Rule (136 controls)
+- swift_cscf_2023: SWIFT Customer Security Framework 2023 (127 controls)
 - dora: Digital Operational Resilience Act (DORA) (103 controls)
+- germany_bait: Germany BAIT (Banking IT Requirements) (91 controls)
 - nis2: Network and Information Security Directive (NIS2) (68 controls)
 - ncsc_caf_4.0: NCSC Cyber Assessment Framework 4.0 (67 controls)
 - cmmc_2.0_level_1: CMMC 2.0 Level 1 (52 controls)
 - iso_27001_2022: ISO/IEC 27001:2022 (51 controls)
 - gdpr: General Data Protection Regulation (GDPR) (42 controls)
+- australia_essential_8: Australian Essential Eight (37 controls)
+- netherlands: Netherlands Cybersecurity Regulations (27 controls)
 - uk_cyber_essentials: UK Cyber Essentials (26 controls)
+- sweden: Sweden Cybersecurity Regulations (25 controls)
+- norway: Norway Cybersecurity Regulations (23 controls)
+- germany: Germany Cybersecurity Regulations (18 controls)
 ```
 
 **Framework categories:**
-- **Government:** NIST 800-53, NIST CSF, FedRAMP, CMMC
+- **US Government:** NIST 800-53, NIST CSF, NIST Privacy, FedRAMP, CMMC
 - **International Standards:** ISO 27001, ISO 27002, CIS CSC
-- **Industry:** PCI DSS, SOC 2, HIPAA
-- **EU Regulations:** DORA, NIS2, GDPR
+- **US Industry:** PCI DSS, SOC 2, HIPAA
+- **APAC:** Australia Essential Eight, Australia ISM, Singapore MAS TRM
+- **EU Regulations:** GDPR, DORA, NIS2
 - **UK Standards:** NCSC CAF, Cyber Essentials
+- **European National:** Netherlands, Norway, Sweden, Germany (general/BAIT/C5)
+- **Financial:** SWIFT CSCF
+- **Cloud:** CSA CCM
+
+---
+
+## Framework Roadmap
+
+**Not Yet Available (Waiting for SCF Coverage):**
+
+These security frameworks are not currently included because the Secure Controls Framework (SCF) doesn't provide official mappings. We maintain data quality and compliance consulting credibility by using only ComplianceForge-vetted mappings.
+
+- 🇳🇱 **Netherlands BIO** (Baseline Informatiebeveiliging Overheid) - Dutch government security baseline
+- 🇫🇮 **Finland KATAKRI** - Finnish defense forces security audit criteria
+- 🇳🇴 **Norway NSM** Grunnprinsipper - Norwegian NSA basic security principles
+- 🇸🇪 **Sweden MSB** - Swedish Civil Contingencies Agency cybersecurity frameworks
+- 🇩🇰 **Denmark CFCS** - Center for Cybersikkerhed guidelines
+- 🇧🇪 **Belgium CCB** - Centre for Cybersecurity Belgium frameworks
+- 🇫🇷 **France ANSSI** SecNumCloud - French cybersecurity agency cloud framework
+
+**Note:** The European country frameworks we DO include (Netherlands, Norway, Sweden, Germany) map to national cybersecurity **laws and regulations** (article numbers from GDPR, NIS2, etc.), not the specific security baseline frameworks listed above.
+
+**Want these frameworks?**
+
+1. **For private use:** Fork this repository and use the [paid standards import feature](PAID_STANDARDS_GUIDE.md) to add your purchased frameworks
+2. **For public benefit:** Contribute framework mappings to SCF at https://securecontrolsframework.com/contact/
 
 ---
 
@@ -272,7 +311,7 @@ Get details about a specific SCF control by ID.
 get_control(control_id="GOV-01")
 ```
 
-**Returns:** Full control details including description, domain, weight, PPTDF category, and mappings to all 16 frameworks.
+**Returns:** Full control details including description, domain, weight, PPTDF category, and mappings to all 28 frameworks.
 
 ---
 
@@ -296,7 +335,7 @@ List all available frameworks with metadata.
 list_frameworks()
 ```
 
-**Returns:** All 16 frameworks with display names and control counts.
+**Returns:** All 28 frameworks with display names and control counts.
 
 ---
 
@@ -395,7 +434,7 @@ SCF JSON → In-memory index → MCP tools → AI response
 Based on **SCF 2025.4** released December 29, 2025.
 
 - **1,451 controls** across all domains
-- **180+ framework mappings** (16 frameworks × 0-777 controls each)
+- **580+ framework mappings** (28 frameworks × 18-777 controls each)
 - Licensed under **Creative Commons** (data)
 - Source: [ComplianceForge SCF](https://securecontrolsframework.com/)
 

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/QUICK_START.md

@@ -63,7 +63,7 @@ List all available security frameworks
 
 You should see output like:
 ```
-**Available Frameworks (16 total)**
+**Available Frameworks (28 total)**
 
 - **nist_800_53_r5**: NIST SP 800-53 Revision 5 (777 controls)
 - **soc_2_tsc**: SOC 2 (TSC 2017:2022) (412 controls)

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/README.md

@@ -9,7 +9,7 @@
 
 **The universal translator for security frameworks.**
 
-The Security Controls MCP Server is an open-source tool that makes 1,451 security controls across 16 frameworks searchable and AI-accessible directly through Claude, Cursor, or any MCP-compatible client.
+The Security Controls MCP Server is an open-source tool that makes 1,451 security controls across 28 frameworks searchable and AI-accessible directly through Claude, Cursor, or any MCP-compatible client.
 
 Built on the [Secure Controls Framework (SCF)](https://securecontrolsframework.com/) by ComplianceForge.
 
@@ -17,7 +17,7 @@ Built on the [Secure Controls Framework (SCF)](https://securecontrolsframework.c
 
 **Coverage:**
 - 1,451 security controls spanning governance, risk, compliance, and technical domains
-- 16 major frameworks including ISO 27001, NIST CSF, DORA, PCI DSS, CMMC, and more
+- 28 major frameworks including ISO 27001, NIST CSF, DORA, PCI DSS, CMMC, Australian Essential Eight, Singapore MAS TRM, SWIFT CSCF, and more
 - Bidirectional mapping between any two frameworks via SCF rosetta stone
 - Optional integration with purchased standards (ISO, NIST 800-53) for official text
 
@@ -195,37 +195,76 @@ Ask Claude these natural language questions:
 
 ---
 
-## Available Frameworks (16 Total)
+## Available Frameworks (28 Total)
 
 When you call `list_frameworks()`, you get:
 
 ```
-Available Frameworks (16 total)
+Available Frameworks (28 total)
 
 - nist_800_53_r5: NIST SP 800-53 Revision 5 (777 controls)
 - soc_2_tsc: SOC 2 (TSC 2017:2022) (412 controls)
 - pci_dss_4.0.1: PCI DSS v4.0.1 (364 controls)
 - fedramp_r5_moderate: FedRAMP Revision 5 (Moderate) (343 controls)
+- australia_ism_2024: Australian ISM (June 2024) (336 controls)
+- csa_ccm_4: CSA Cloud Controls Matrix v4 (334 controls)
 - iso_27002_2022: ISO/IEC 27002:2022 (316 controls)
 - nist_csf_2.0: NIST Cybersecurity Framework 2.0 (253 controls)
+- germany_c5_2020: Germany C5:2020 (Cloud Controls) (239 controls)
 - cis_csc_8.1: CIS Critical Security Controls v8.1 (234 controls)
+- singapore_mas_trm_2021: Singapore MAS TRM 2021 (214 controls)
 - cmmc_2.0_level_2: CMMC 2.0 Level 2 (198 controls)
+- nist_privacy_framework_1_0: NIST Privacy Framework 1.0 (187 controls)
 - hipaa_security_rule: HIPAA Security Rule (136 controls)
+- swift_cscf_2023: SWIFT Customer Security Framework 2023 (127 controls)
 - dora: Digital Operational Resilience Act (DORA) (103 controls)
+- germany_bait: Germany BAIT (Banking IT Requirements) (91 controls)
 - nis2: Network and Information Security Directive (NIS2) (68 controls)
 - ncsc_caf_4.0: NCSC Cyber Assessment Framework 4.0 (67 controls)
 - cmmc_2.0_level_1: CMMC 2.0 Level 1 (52 controls)
 - iso_27001_2022: ISO/IEC 27001:2022 (51 controls)
 - gdpr: General Data Protection Regulation (GDPR) (42 controls)
+- australia_essential_8: Australian Essential Eight (37 controls)
+- netherlands: Netherlands Cybersecurity Regulations (27 controls)
 - uk_cyber_essentials: UK Cyber Essentials (26 controls)
+- sweden: Sweden Cybersecurity Regulations (25 controls)
+- norway: Norway Cybersecurity Regulations (23 controls)
+- germany: Germany Cybersecurity Regulations (18 controls)
 ```
 
 **Framework categories:**
-- **Government:** NIST 800-53, NIST CSF, FedRAMP, CMMC
+- **US Government:** NIST 800-53, NIST CSF, NIST Privacy, FedRAMP, CMMC
 - **International Standards:** ISO 27001, ISO 27002, CIS CSC
-- **Industry:** PCI DSS, SOC 2, HIPAA
-- **EU Regulations:** DORA, NIS2, GDPR
+- **US Industry:** PCI DSS, SOC 2, HIPAA
+- **APAC:** Australia Essential Eight, Australia ISM, Singapore MAS TRM
+- **EU Regulations:** GDPR, DORA, NIS2
 - **UK Standards:** NCSC CAF, Cyber Essentials
+- **European National:** Netherlands, Norway, Sweden, Germany (general/BAIT/C5)
+- **Financial:** SWIFT CSCF
+- **Cloud:** CSA CCM
+
+---
+
+## Framework Roadmap
+
+**Not Yet Available (Waiting for SCF Coverage):**
+
+These security frameworks are not currently included because the Secure Controls Framework (SCF) doesn't provide official mappings. We maintain data quality and compliance consulting credibility by using only ComplianceForge-vetted mappings.
+
+- 🇳🇱 **Netherlands BIO** (Baseline Informatiebeveiliging Overheid) - Dutch government security baseline
+- 🇫🇮 **Finland KATAKRI** - Finnish defense forces security audit criteria
+- 🇳🇴 **Norway NSM** Grunnprinsipper - Norwegian NSA basic security principles
+- 🇸🇪 **Sweden MSB** - Swedish Civil Contingencies Agency cybersecurity frameworks
+- 🇩🇰 **Denmark CFCS** - Center for Cybersikkerhed guidelines
+- 🇧🇪 **Belgium CCB** - Centre for Cybersecurity Belgium frameworks
+- 🇫🇷 **France ANSSI** SecNumCloud - French cybersecurity agency cloud framework
+
+**Note:** The European country frameworks we DO include (Netherlands, Norway, Sweden, Germany) map to national cybersecurity **laws and regulations** (article numbers from GDPR, NIS2, etc.), not the specific security baseline frameworks listed above.
+
+**Want these frameworks?**
+
+1. **For private use:** Fork this repository and use the [paid standards import feature](PAID_STANDARDS_GUIDE.md) to add your purchased frameworks
+2. **For public benefit:** Contribute framework mappings to SCF at https://securecontrolsframework.com/contact/
 
 ---
 
@@ -238,7 +277,7 @@ Get details about a specific SCF control by ID.
 get_control(control_id="GOV-01")
 ```
 
-**Returns:** Full control details including description, domain, weight, PPTDF category, and mappings to all 16 frameworks.
+**Returns:** Full control details including description, domain, weight, PPTDF category, and mappings to all 28 frameworks.
 
 ---
 
@@ -262,7 +301,7 @@ List all available frameworks with metadata.
 list_frameworks()
 ```
 
-**Returns:** All 16 frameworks with display names and control counts.
+**Returns:** All 28 frameworks with display names and control counts.
 
 ---
 
@@ -361,7 +400,7 @@ SCF JSON → In-memory index → MCP tools → AI response
 Based on **SCF 2025.4** released December 29, 2025.
 
 - **1,451 controls** across all domains
-- **180+ framework mappings** (16 frameworks × 0-777 controls each)
+- **580+ framework mappings** (28 frameworks × 18-777 controls each)
 - Licensed under **Creative Commons** (data)
 - Source: [ComplianceForge SCF](https://securecontrolsframework.com/)
 

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/TESTING.md

@@ -20,7 +20,7 @@ python test_mcp_integration.py
 Expected output:
 - ✅ All tests passed!
 - No errors or tracebacks
-- Data loads correctly (1,451 controls, 16 frameworks)
+- Data loads correctly (1,451 controls, 28 frameworks)
 
 ---
 
@@ -57,7 +57,7 @@ Once configured in Claude Desktop, try these queries:
 **Query:** "List available frameworks"
 
 **Expected Response:**
-- 16 frameworks total
+- 28 frameworks total
 - NIST SP 800-53 R5: 777 controls
 - SOC 2: 412 controls
 - PCI DSS v4.0.1: 364 controls

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/pyproject.toml

@@ -1,6 +1,6 @@
 [project]
 name = "security-controls-mcp"
-version = "0.2.0"
+version = "0.2.1"
 description = "MCP server for querying security framework controls (SCF) - map between ISO 27001, NIST CSF, DORA, PCI DSS, and more"
 readme = "README.md"
 requires-python = ">=3.10"

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/scf-extract-starter.py

@@ -32,6 +32,7 @@ def extract_scf_controls(excel_path: Path) -> dict:
 
     # Define framework columns to extract
     framework_columns = {
+        # Original 16 frameworks
         "nist_csf_2.0": "NIST\nCSF\n2.0",
         "nist_800_53_r5": "NIST\n800-53\nR5",
         "iso_27001_2022": "ISO\n27001\n2022",
@@ -48,6 +49,22 @@ def extract_scf_controls(excel_path: Path) -> dict:
         "uk_cyber_essentials": "EMEA\nUK\nCyber Essentials",
         "fedramp_r5_moderate": "US\nFedRAMP R5\n(moderate)",
         "hipaa_security_rule": "US\nHIPAA\nSecurity Rule / NIST SP 800-66 R2",
+        # Tier 1: APAC (3 frameworks)
+        "australia_essential_8": "APAC\nAustralia\nEssential 8",
+        "australia_ism_2024": "APAC\nAustralia\nISM\nJune 2024",
+        "singapore_mas_trm_2021": "APAC\nSingapore MAS\nTRM 2021",
+        # Tier 1: Industry/Privacy (2 frameworks)
+        "swift_cscf_2023": "SWIFT\nCSF\n2023",
+        "nist_privacy_framework_1_0": "NIST Privacy Framework\n1.0",
+        # Tier 2: European National (6 frameworks)
+        "netherlands": "EMEA\nNetherlands",
+        "norway": "EMEA\nNorway",
+        "sweden": "EMEA\nSweden",
+        "germany": "EMEA\nGermany",
+        "germany_bait": "EMEA\nGermany\nBanking Supervisory Requirements for IT (BAIT)",
+        "germany_c5_2020": "EMEA\nGermany\nC5\n2020",
+        # Tier 3: Cloud (1 framework)
+        "csa_ccm_4": "CSA\nCCM\n4",
     }
 
     # Build column index map

{security_controls_mcp-0.2.0 → security_controls_mcp-0.2.1}/src/security_controls_mcp/__init__.py

@@ -1,3 +1,3 @@
 """Security Controls MCP Server - Query security framework controls and mappings."""
 
-__version__ = "0.2.0"
+__version__ = "0.3.0"