As a FedRAMP reviewer, in order to ensure the assessment team is clearly identified, I want to examine the role, party, and responsible party elements in the SSP and SAP OSCAL.
Acceptance Criteria
[ ] All Schematron assertion messages are declarative statements which affirm the positive test outcome.
[ ] All Schematron assertion diagnostic messages are declarative statements which explain the negative test outcome.
[ ] The Schematron code has no assertion failures when validated using src/validations/styleguides/sch.sch using the basic phase.
[ ] XSpec unit tests for positive and negative Schematron assertion outcomes accompany all Schematron assertions (where feasible).
[x] There is a role/@id with a value of 'assessment-team'.
[x] There is a party/@id of a type='person' (may be more than one)
[x] There is a responsible-party with a @role-id value of 'assessment-team'
[x] #603
[x] #601
[ ] The party/@id that matches the first resposible-party/party-uuid value must contain an email and phone element.
Definition of Done
[ ] Acceptance criteria met
[ ] Unit test coverage of our code > 95%
[ ] Automated code quality checks passed
[ ] Security reviewed and reported
[ ] Reviewed against plain language guidelines
[ ] Code must be self-documenting
[ ] No local tech debt
[ ] Load/performance tests passed – needs to be created/automated
[ ] Documentation updated
[ ] Architectural Decision Record completed as necessary for significant design choices
Extended Description
Acceptance Criteria
src/validations/styleguides/sch.sch
using thebasic
phase.Definition of Done