Open meganwolf0 opened 4 weeks ago
@meganwolf0 Can you elaborate on:
Assessment results model should report on each Finding, or at least document the individual implemented requirement text/information
Is this with respect to a Finding
description only being from one implemented-requirement
?
@meganwolf0 Can you elaborate on:
Assessment results model should report on each Finding, or at least document the individual implemented requirement text/information
Is this with respect to a
Finding
description only being from oneimplemented-requirement
?
Yeah - basically that only the text from one implemented requirement is pulled into findings.description
, so you're losing some info there if there are multiple components implementing the Control
Environment
Device and OS:
App version:
Kubernetes distro:
Kubernetes version:
provider:
Steps to reproduce
lula validate -f <oscal.yaml>
Expected result
Assessment results model should report on each Finding, or at least document the individual implemented requirement text/information
Actual Result
Findings takes only one implemented requirement text/data, which omits information that might be relevant/important from other implemented requirements
Visual Proof (screenshots, videos, text, etc)
Severity/Priority
Medium
Additional Context