mapresto
commented
5 years ago To facilitate archived scan data, we will keep XCCDF data in the database to build CKL's from previous data. We need to ensure there is a consistent way to update the database with the current set of XCCDF's as new versions come out.
Is your feature request related to a problem? Please describe. In order to hold a single source of truth, maintaining the STIG information in the Database based on the PowerSTIG xmls, we would be able to generate the eventual CKL files with the same data used to run the test, removing the chance of a mixture of data across the scan
Describe the solution you'd like New table that can track STIG rules information per STIG type (IE, Member Server, Domain Controller, etc.) that can be updated when a change is noticed in the PowerSTIG StigData folder.
Describe alternatives you've considered Currently prestaging the empty ckl files prior to release. This can lead to inconsistent results vs written requirements if the CKL versions are not matched to PowerSTIG.