-
Here is a list of inconsistencies I found:
1. The table under "Defaults" has a table row that is green/transparent to the background component, but the other table rows are opaque and light gray. Url…
-
https://mitre.github.io/saf-training/courses/beginner/02.html#tooling-and-reporting
Heimdall results is from an outdated version. Profile used in example is also an old nginx profile. Recommend usi…
-
**What would you like to be added**:
A formal schema for the Grype output format.
**Why is this needed**:
The MITRE Security Automation Framework (https://saf.mitre.org) has made an integrati…
-
This library is getting installed when I npm install @mitre/saf and npm reports there are vulnerabilities to check. When I run npm audit, it reports the following for this lib's fast-xml-parser depend…
-
**What would you like to be added**:
Converter from Grype to MITRE's [Heimdall Data Format](https://saf.mitre.org/#/normalize) (HDF). [MITRE Security Automation Framework](https://saf.mitre.org/#/) (…
-
Issue:
Output file contain additional characters
**Expected: hdf-results.json
Actual: hdf-results-.json**
How to reproduce:
I have attached sample workflow for github action to re…
-
This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.
## Open
These updates have all …
-
Running into an issue where using containerized saf-cli will not recognize the input fvdl file:
```
docker run --rm -v $(pwd):/share -t mitre/saf convert fortify2hdf -i /share/audit.fvdl -o /share/a…
-
In order to be used on Federal systems, software needs to be mapped to 800-53.
A mapping in OSCAL would be ideal.
-
will be rolled up under a new project for all mitre/ baselines under https://github.com/mitre/mitre-saf/projects
reference model: https://github.com/ejaronne/cms-ars-3.1-manual-controls-baseline