Documentation
¶
Index ¶
- type Activity
- type Component
- type ComponentIdentifier
- type Evidence
- type InventoryItem
- type Link
- type ObjectiveStatus
- type Origin
- type OriginActor
- type PortRange
- type Property
- type Protocol
- type Remediation
- type RemediationTask
- type RiskTemplate
- type RiskTemplateLabelSchema
- type Step
- type Subject
- type SubjectLink
- type SubjectProp
- type SubjectTemplate
- type SubjectTemplateLabelSchema
- type SubjectTemplateSelectorLabel
- type ThreatRef
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Activity ¶
type Activity struct {
UUID uuid.UUID `json:"uuid,omitempty"`
Title string `json:"title,omitempty"`
Description string `json:"description,omitempty"`
Remarks string `json:"remarks,omitempty"`
Props []Property `json:"props,omitempty"`
Links []Link `json:"links,omitempty"`
Steps []Step `json:"steps,omitempty"`
}
type Component ¶
type Component struct {
// components/common/ssh
// components/common/github-repository
// components/common/github-organisation
// components/common/ubuntu-22
// components/internal/auth-policy
Identifier string `json:"identifier,omitempty"`
// Software
// Service
Type string `json:"type,omitempty"`
Title string `json:"title,omitempty"`
Description string `json:"description,omitempty"`
Remarks string `json:"remarks,omitempty"`
Purpose string `json:"purpose,omitempty"`
Protocols []Protocol `json:"protocols,omitempty"`
Props []Property `json:"props,omitempty"`
Links []Link `json:"links,omitempty"`
}
type ComponentIdentifier ¶
type ComponentIdentifier struct {
Identifier string `json:"identifier,omitempty"`
}
type Evidence ¶
type Evidence struct {
// UUID needs to remain consistent for a piece of evidence being collected periodically.
// It represents the "stream" of the same observation being made over time.
// For the same checks, performed on the same machine, the UUID for each check should remain the same.
// For the same check, performed on two different machines, the UUID should differ.
UUID uuid.UUID `json:"uuid,omitempty"`
Title string `json:"title,omitempty"`
Description string `json:"description,omitempty"`
Remarks *string `json:"remarks,omitempty"`
// Assigning labels to Evidence makes it searchable and easily usable in the UI
Labels map[string]string `json:"labels,omitempty"`
// When did we start collecting the evidence, and when did the process end, and how long is it valid for ?
Start time.Time `json:"start"`
End time.Time `json:"end"`
Expires *time.Time `json:"expires,omitempty"`
Props []Property `json:"props,omitempty"`
Links []Link `json:"links,omitempty"`
// Who or What is generating this evidence
Origins []Origin `json:"origins,omitempty"`
// What steps did we take to create this evidence
Activities []Activity `json:"activities,omitempty"`
InventoryItems []InventoryItem `json:"inventory-items,omitempty"`
// Which components of the subject are being observed. A tool, user, policy etc.
Components []Component `json:"components,omitempty"`
// Who or What are we providing evidence for. What's under test.
Subjects []Subject `json:"subjects,omitempty"`
// Did we satisfy what was being tested for, or did we fail ?
Status ObjectiveStatus `json:"status"`
}
type InventoryItem ¶
type InventoryItem struct {
// user/[email protected]
// operating-system/ubuntu/22.4
// web-server/ec2/i-12345
Identifier string `json:"identifier,omitempty"`
// "operating-system" description="System software that manages computer hardware, software resources, and provides common services for computer programs."
// "database" description="An electronic collection of data, or information, that is specially organized for rapid search and retrieval."
// "web-server" description="A system that delivers content or services to end users over the Internet or an intranet."
// "dns-server" description="A system that resolves domain names to internet protocol (IP) addresses."
// "email-server" description="A computer system that sends and receives electronic mail messages."
// "directory-server" description="A system that stores, organizes and provides access to directory information in order to unify network resources."
// "pbx" description="A private branch exchange (PBX) provides a a private telephone switchboard."
// "firewall" description="A network security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules."
// "router" description="A physical or virtual networking device that forwards data packets between computer networks."
// "switch" description="A physical or virtual networking device that connects devices within a computer network by using packet switching to receive and forward data to the destination device."
// "storage-array" description="A consolidated, block-level data storage capability."
// "appliance" description="A physical or virtual machine that centralizes hardware, software, or services for a specific purpose."
Type string `json:"type,omitempty"`
Title string `json:"title,omitempty"`
Description string `json:"description,omitempty"`
Remarks string `json:"remarks,omitempty"`
Props []Property `json:"props,omitempty"`
Links []Link `json:"links,omitempty"`
ImplementedComponents []ComponentIdentifier `json:"implemented-components,omitempty"`
}
type Link ¶
type Link oscalTypes_1_1_3.Link
type ObjectiveStatus ¶
type Origin ¶
type Origin struct {
Actors []OriginActor `json:"actors" yaml:"actors"`
}
type OriginActor ¶
type OriginActor struct {
UUID uuid.UUID `json:"uuid" yaml:"uuid"`
Type string `json:"type" yaml:"type"`
Title string `json:"title,omitempty" yaml:"title,omitempty"`
RoleId string `json:"role-id,omitempty" yaml:"role-id,omitempty"`
Links *[]Link `json:"links,omitempty" yaml:"links,omitempty"`
Props *[]Property `json:"props,omitempty" yaml:"props,omitempty"`
}
type Property ¶
type Property oscalTypes_1_1_3.Property
type Remediation ¶ added in v0.13.0
type Remediation struct {
Title string `json:"title"`
Description *string `json:"description,omitempty"`
Tasks []RemediationTask `json:"tasks"`
}
type RemediationTask ¶ added in v0.13.0
type RiskTemplate ¶ added in v0.13.0
type RiskTemplate struct {
ID string `json:"id"`
Name string `json:"name"`
Title string `json:"title"`
Statement string `json:"statement"`
LikelihoodHint *string `json:"likelihood-hint,omitempty"`
ImpactHint *string `json:"impact-hint,omitempty"`
DedupeLabelKeys []string `json:"dedupe-label-keys,omitempty"`
LabelSchema []RiskTemplateLabelSchema `json:"label-schema,omitempty"`
ViolationIds []string `json:"violation-ids"`
ThreatRefs []ThreatRef `json:"threat-ids"`
Remediation *Remediation `json:"remediation-template"`
IsActive *bool `json:"is-active,omitempty"`
}
type RiskTemplateLabelSchema ¶ added in v0.14.0
type Subject ¶
type Subject struct {
Identifier string `json:"identifier,omitempty"`
// InventoryItem
// Component
Type string `json:"type,omitempty"`
Description string `json:"description,omitempty"`
Remarks string `json:"remarks,omitempty"`
Props []Property `json:"props,omitempty"`
Links []Link `json:"links,omitempty"`
}
type SubjectLink ¶ added in v0.13.0
type SubjectLink = Link
type SubjectProp ¶ added in v0.13.0
type SubjectProp = Property
type SubjectTemplate ¶ added in v0.13.0
type SubjectTemplate struct {
ID string `json:"id"`
Name string `json:"name"`
Type string `json:"type"`
TitleTemplate *string `json:"title-template,omitempty"`
DescriptionTemplate *string `json:"description-template,omitempty"`
PurposeTemplate *string `json:"purpose-template,omitempty"`
RemarksTemplate *string `json:"remarks-template,omitempty"`
IdentityLabelKeys []string `json:"identity-label-keys"`
Props []SubjectProp `json:"props"`
Links []SubjectLink `json:"links"`
SourceMode string `json:"source-mode"`
SelectorLabels []SubjectTemplateSelectorLabel `json:"selector-labels"`
LabelSchema []SubjectTemplateLabelSchema `json:"label-schema"`
}
type SubjectTemplateLabelSchema ¶ added in v0.13.0
type SubjectTemplateSelectorLabel ¶ added in v0.13.0
Source Files
Click to show internal directories.
Click to hide internal directories.