ComplianceAsCode
diff --git a/‎.github/workflows/sync-comp.yml‎
Lines changed: 62 additions & 0 deletions b/‎.github/workflows/sync-comp.yml‎
Lines changed: 62 additions & 0 deletions
diff --git a/‎.github/workflows/sync-controls.yml‎
Lines changed: 64 additions & 0 deletions b/‎.github/workflows/sync-controls.yml‎
Lines changed: 64 additions & 0 deletions
diff --git a/‎.gitignore‎
Lines changed: 2 additions & 0 deletions b/‎.gitignore‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎.trestle/.keep‎ b/‎.trestle/.keep‎
diff --git a/‎.trestlebot/config.yml‎
Lines changed: 5 additions & 0 deletions b/‎.trestlebot/config.yml‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎assessment-plans/.keep‎ b/‎assessment-plans/.keep‎
diff --git a/‎assessment-results/.keep‎ b/‎assessment-results/.keep‎
diff --git a/‎catalogs/.keep‎ b/‎catalogs/.keep‎
diff --git a/‎component-definitions/.keep‎ b/‎component-definitions/.keep‎
diff --git a/‎plan-of-action-and-milestones/.keep‎ b/‎plan-of-action-and-milestones/.keep‎
@@ -0,0 +1,62 @@
+name: CaC to OSCAL Component Definition
+on:
+  workflow_dispatch:
+   inputs:
+      cac-reference:
+        description: 'ComplianceAsCode git reference'
+        required: true
+        default: 'master'
+      oscal-profile:
+        required: true
+        description: Name of profile in trestle workspace to be imported into the component definition
+      product:
+        required: true
+        description: Name of the product in CaC content to process
+      cac-profile-id:
+        required: true
+        description: Profile ID under product in CaC content to process
+      component-type:
+        required: false
+        default: "software"
+        description: Type of component definition (defaults to "software")
+
+permissions: read-all
+
+jobs:
+  update-component:
+    name: Create component definition
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+    container:
+      image: quay.io/continuouscompliance/trestle-bot:dev-main-0ceeb01
+    steps:
+      - name: Clone
+        uses: actions/checkout@v4
+        with:
+          path: complytime-content
+      - name: Checkout CaC repo
+        uses: actions/checkout@v4
+        with:
+          repository: ComplianceAsCode/content
+          ref: ${{ github.event.inputs.cac-reference }}
+          path: content
+      - name: Update component definition
+        working-directory: ./complytime-content
+        env: 
+          OSCAL_PROFILE: ${{ github.event.inputs.oscal-profile }}
+          PRODUCT:  ${{ github.event.inputs.product}}
+          CAC_PROFILE: ${{ github.event.inputs.cac-profile-id }}
+          TYPE: ${{ github.event.inputs.component-type }}
+          CAC_CONTENT_ROOT: ${{ github.workspace }}/content
+          ACTOR: ${{ github.actor }}
+        run: |
+          trestlebot sync-cac-content component-definition \
+          --cac-content-root "$CAC_CONTENT_ROOT" \
+          --cac-profile "$CAC_CONTENT_ROOT/products/$PRODUCT/profiles/$CAC_PROFILE.profile" \
+          --oscal-profile $OSCAL_PROFILE \
+          --product "$PRODUCT" \
+          --component-definition-type "$TYPE" \
+          --author-name="$ACTOR" \
+          --author-email="[email protected]" \
+          --file-patterns="component-definitions/*"
@@ -0,0 +1,64 @@
+name: CaC to OSCAL Control Models
+on:
+  workflow_dispatch:
+   inputs:
+      cac-reference:
+        description: ComplianceAsCode git reference
+        required: true
+        default: 'master'
+      policy-id:
+        required: true
+        description: Name of CaC control policy to process
+      product:
+        required: true
+        description: Name of CaC product to process
+
+permissions: read-all
+
+jobs:
+  update-controls:
+    name: Update control data
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+    container:
+      image: quay.io/continuouscompliance/trestle-bot:dev-main-0ceeb01
+    steps:
+      - name: Clone
+        uses: actions/checkout@v4
+        with:
+          path: complytime-content
+      - name: Checkout CaC repo
+        uses: actions/checkout@v4
+        with:
+          repository: ComplianceAsCode/content
+          ref: ${{ github.event.inputs.cac-reference }}
+          path: content
+      - name: Update catalog
+        working-directory: ./complytime-content
+        env:
+          POLICY: ${{ github.event.inputs.policy-id }}
+          ACTOR: ${{ github.actor }}
+        run: |
+          trestlebot sync-cac-content catalog \
+          --cac-content-root "$GITHUB_WORKSPACE/content" \
+          --policy-id "$POLICY" \
+          --oscal-catalog "$POLICY" \
+          --author-name="$ACTOR" \
+          --author-email="[email protected]" \
+          --file-patterns="catalogs/*"
+      - name: Update profile
+        working-directory: ./complytime-content
+        env:
+          POLICY: ${{ github.event.inputs.policy-id }}
+          PRODUCT:  ${{ github.event.inputs.product}}
+          ACTOR: ${{ github.actor }}
+        run: |
+          trestlebot sync-cac-content profile \
+          --cac-content-root "$GITHUB_WORKSPACE/content" \
+          --policy-id "$POLICY" \
+          --oscal-catalog "$POLICY" \
+          --product "$PRODUCT" \
+          --author-name="$ACTOR" \
+          --author-email="[email protected]" \
+          --file-patterns="profiles/*"
@@ -0,0 +1,2 @@
+.idea
+.trestle/cache
@@ -0,0 +1,5 @@
+branch: develop
+commit_message: Automatic updates from trestlebot!
+committer_email: 41898282+github-actions[bot]@users.noreply.github.com
+committer_name: github-actions[bot]
+markdown_dir: markdown/