Examples of SSPs with constraints

[wendellpiez]

Committer Notes

The PR contains test files useful for tracing effectiveness of constraints validation.

See https://github.com/usnistgov/OSCAL/pull/2024 for related PR in OSCAL.

But these files are not intended to test or validate this issue specifically, but rather to augment the test set with real examples.

More work on such augmentation is probably called for.

All Submissions:

• [x] Follow Contributing guidelines
• [x] Make no changes duplicating or conflicting with other open Pull Requests
• [x] Have been squashed to keep only relevant interim commits, if any [instructions]
• [x] Have been tested manually
• [x] Pass all CI/CD checks

Changes to Core Features:

• [x] The Issue history, discussions and new documentation provide context for new features -- everything is reasonably self-explanatory
• [x] New tests are included
• [x] New examples are included
• [x] Everything in readme and TESTING documents has been updated

[wendellpiez]

@iMichaela can we discuss this PR? It is intended to capture work for future (re)use, but its files could probably be masked or obfuscated (etc.) and be just as useful.

That is, there are a couple of data governance policy questions to be discussed, with possible changes made, before merging.

Since this repository is devoted to OSCAL, it doesn't seem amiss to use it for the purpose of assembling use cases for validation.

(And follow-on work could deploy an OSCAL Inspector XSLT to test the same constraints.)