A plugin for compliance-trestle to provide functionality specifically for FedRAMP.
This plugin provides APIs and commands for validating a FedRAMP compliant SSP (in JSON or YAML format). In future it will also provide utilities for converting various OSCAL models from XML to JSON format and vice-versa.
compliance-trestle-fedramp currently runs on python platforms on Linux and Mac. Windows support is planned to be added soon. It is available on PyPi so it is easily installed via pip. It is under active development and new releases are made available regularly.
A tutorial on how this plugin is created can be found here. Instructions on how to use the CLI are described here.
Compliance trestle fedramp is currently in beta. The expectation is that in ongoing work there may be un-announced changes that are breaking within the trestle-fedramp codebase.
Our project welcomes external contributions. Please refer to the Contributing guide and the Code of Conduct for more information on how to contribute.
If you would like to see the detailed LICENSE click here. Consult contributors for a list of authors and maintainers for the core team.
# Copyright (c) 2020 IBM Corp. All rights reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# https://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.