oscal-content
NIST SP 800-53 content and other OSCAL content examples (by usnistgov)
fedramp-automation
FedRAMP Automation (by GSA)
Our great sponsors
oscal-content | fedramp-automation | |
---|---|---|
2 | 3 | |
266 | 246 | |
3.8% | 4.1% | |
8.4 | 0.0 | |
5 days ago | 13 days ago | |
XSLT | TypeScript | |
GNU General Public License v3.0 or later | GNU General Public License v3.0 or later |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
oscal-content
Posts with mentions or reviews of oscal-content.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-12-21.
fedramp-automation
Posts with mentions or reviews of fedramp-automation.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-12-21.
-
Using the FedRAMP Automation (OSCAL) GitHub Release
I've been reading this guide to learn more about the XML and JSON files included in the FedRAMP Automation release, but I'm having a hard time making sense of it (I'm not a software developer).
-
FedRAMP NIST 800-53 Rev 5 SSP Templates
I've been checking in on this github pull request-- I think the rev 5 baselines will be official when this is approved/merged https://github.com/GSA/fedramp-automation/pull/389
- What's the biggest limitation to the use of OSCAL?
What are some alternatives?
When comparing oscal-content and fedramp-automation you can also consider the following projects:
OSCAL - Open Security Controls Assessment Language (OSCAL)
compliance-trestle - An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
cli - Get a programmable email address. Automate what happens when you receive emails. It's like Zapier for devs who hate emails.
oscal-rest - An initial OpenAPI definition of an OSCAL REST API.
OPA (Open Policy Agent) - Open Policy Agent (OPA) is an open source, general-purpose policy engine.