SPIKE: STIG templates
Research STIG template integration for Compliance Dashboard policy compliance. Identify if there is a value in developing a compliance operator CRD/helm chart for BB.
Good starting point would be to check out https://stigviewer.com/stigs/kubernetes with JSON template.
Additional sources:
- https://public.cyber.mil/stigs/
- https://public.cyber.mil/stigs/scap
- Kubernetes SCAP
- https://github.com/mitre/k8s-cluster-stig-baseline
- https://github.com/ComplianceAsCode/libreSCAP/tree/master
- https://github.com/ComplianceAsCode/compliance-operator
- https://developers.redhat.com/articles/2024/02/08/how-visualize-your-openscap-compliance-reports
Edited by Bulat Khamitov