GitHub - ComplianceAsCode/oscal: OSCAL SSP content for technologies shipped by Red Hat

At this point of time, this repository contains OSCAL formatted SSPs (System Security Plans) generated automatically out of opencontrol data.

This repository is on periodical refresh.

gocomply_fedramp tool was used to generate files available here.

Commands to install gocomply_fedramp tool:

$ get -u -v github.com/gocomply/fedramp/cli/gocomply_fedramp

Command to re-generate OSCAL files:

$ gocomply_fedramp opencontrol https://github.com/ComplianceAsCode/redhat xml/

It is possible to generate latest FedRAMP SSP document in .docx form using gocomply_fedramp tool.

$ gocomply_fedramp convert ./xml/coreos-4-fedramp-Low.xml  FedRAMP-Low-openshift.docx

To generate all FedRAMP docx guides, one for each oscal file available run: