opengovern
diff --git a/‎compliance/frameworks/aws/aws_acsc_essential_eight.yaml‎
Lines changed: 492 additions & 512 deletions b/‎compliance/frameworks/aws/aws_acsc_essential_eight.yaml‎
Lines changed: 492 additions & 512 deletions
diff --git a/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight.yaml‎
Lines changed: 4 additions & 6 deletions b/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight.yaml‎
Lines changed: 4 additions & 6 deletions
diff --git a/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1.yaml‎
Lines changed: 4 additions & 6 deletions b/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1.yaml‎
Lines changed: 4 additions & 6 deletions
diff --git a/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_2.yaml‎
Lines changed: 4 additions & 6 deletions b/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_2.yaml‎
Lines changed: 4 additions & 6 deletions
diff --git a/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_2_5.yaml‎
Lines changed: 4 additions & 6 deletions b/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_2_5.yaml‎
Lines changed: 4 additions & 6 deletions
diff --git a/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_5.yaml‎
Lines changed: 4 additions & 6 deletions b/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_5.yaml‎
Lines changed: 4 additions & 6 deletions
diff --git a/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_5_2.yaml‎
Lines changed: 4 additions & 6 deletions b/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_5_2.yaml‎
Lines changed: 4 additions & 6 deletions
diff --git a/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_5_3.yaml‎
Lines changed: 4 additions & 6 deletions b/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_5_3.yaml‎
Lines changed: 4 additions & 6 deletions
diff --git a/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_5_4.yaml‎
Lines changed: 4 additions & 6 deletions b/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_5_4.yaml‎
Lines changed: 4 additions & 6 deletions
diff --git a/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_5_5.yaml‎
Lines changed: 4 additions & 6 deletions b/‎compliance/frameworks/aws/aws_acsc_essential_eight/aws_acsc_essential_eight_ml_1_5_5.yaml‎
Lines changed: 4 additions & 6 deletions
@@ -3,12 +3,10 @@ framework:
   title: Australian Cyber Security Center (ACSC) Essential Eight
   description: The Australian Cyber Security Center (ACSC) Essential Eight is a set of baseline security strategies designed to mitigate cyber security incidents. The Essential Eight is a prioritized list of mitigation strategies that organizations can implement to protect their systems against a range of adversaries. The Essential Eight is based on the Australian Signals Directorate (ASD) Strategies to Mitigate Cyber Security Incidents.
   section-code: aws_acsc_essential_eight
-  metadata:
-    defaults:
-      auto-assign: false
-      enabled: false
-      tracks-drift-events: false
-    tags: {}
+  defaults:
+    auto-assign: false
+    enabled: false
+    tracks-drift-events: false
   control-group:
   - id: aws_acsc_essential_eight_ml_1
   - id: aws_acsc_essential_eight_ml_2
 
@@ -3,12 +3,10 @@ control-group:
   title: ACSC Essential Eight Maturity Level 1
   description: The availability category refers to the accessibility of information used by the entity’s systems, as well as the products or services provided to its customers.
   section-code: ml_1
-  metadata:
-    defaults:
-      auto-assign: null
-      enabled: false
-      tracks-drift-events: false
-    tags: {}
+  defaults:
+    auto-assign: null
+    enabled: false
+    tracks-drift-events: false
   control-group:
   - id: aws_acsc_essential_eight_ml_1_2
   - id: aws_acsc_essential_eight_ml_1_5
 
@@ -3,11 +3,9 @@ control-group:
   title: "ACSC-EE-ML1-2: Patch applications ML1"
   description: A vulnerability scanner with an up-to-date vulnerability database is used for vulnerability scanning activities.
   section-code: "2"
-  metadata:
-    defaults:
-      auto-assign: null
-      enabled: false
-      tracks-drift-events: false
-    tags: {}
+  defaults:
+    auto-assign: null
+    enabled: false
+    tracks-drift-events: false
   control-group:
   - id: aws_acsc_essential_eight_ml_1_2_5
@@ -3,12 +3,10 @@ control-group:
   title: "ACSC-EE-ML1-2.5: Patch applications ML1"
   description: Patches, updates or vendor mitigations for security vulnerabilities in internet-facing services are applied within two weeks of release, or within 48 hours if an exploit exists.
   section-code: "5"
-  metadata:
-    defaults:
-      auto-assign: null
-      enabled: false
-      tracks-drift-events: false
-    tags: {}
+  defaults:
+    auto-assign: null
+    enabled: false
+    tracks-drift-events: false
   controls:
   - aws_ecs_service_fargate_using_latest_platform_version
   - aws_eks_cluster_with_latest_kubernetes_version
 
@@ -3,12 +3,10 @@ control-group:
   title: "ACSC-EE-ML1-5: Restrict administrative privileges ML1"
   description: The restriction of administrative privileges is the practice of limiting the number of privileged accounts and the extent of their access to systems and data.
   section-code: "5"
-  metadata:
-    defaults:
-      auto-assign: null
-      enabled: false
-      tracks-drift-events: false
-    tags: {}
+  defaults:
+    auto-assign: null
+    enabled: false
+    tracks-drift-events: false
   control-group:
   - id: aws_acsc_essential_eight_ml_1_5_2
   - id: aws_acsc_essential_eight_ml_1_5_3
 
@@ -3,12 +3,10 @@ control-group:
   title: "ACSC-EE-ML1-5.2: Restrict administrative privileges ML1"
   description: Privileged accounts (excluding privileged service accounts) are prevented from accessing the internet, email and web services.
   section-code: "2"
-  metadata:
-    defaults:
-      auto-assign: null
-      enabled: false
-      tracks-drift-events: false
-    tags: {}
+  defaults:
+    auto-assign: null
+    enabled: false
+    tracks-drift-events: false
   controls:
   - aws_codebuild_project_environment_privileged_mode_disabled
   - aws_ecs_task_definition_container_non_privileged
 
@@ -3,12 +3,10 @@ control-group:
   title: "ACSC-EE-ML1-5.3: Restrict administrative privileges ML1"
   description: Privileged users use separate privileged and unprivileged operating environments.
   section-code: "3"
-  metadata:
-    defaults:
-      auto-assign: null
-      enabled: false
-      tracks-drift-events: false
-    tags: {}
+  defaults:
+    auto-assign: null
+    enabled: false
+    tracks-drift-events: false
   controls:
   - aws_codebuild_project_environment_privileged_mode_disabled
   - aws_codebuild_project_source_repo_oauth_configured
 
@@ -3,12 +3,10 @@ control-group:
   title: "ACSC-EE-ML1-5.4: Restrict administrative privileges ML1"
   description: Unprivileged accounts cannot logon to privileged operating environments.
   section-code: "4"
-  metadata:
-    defaults:
-      auto-assign: null
-      enabled: false
-      tracks-drift-events: false
-    tags: {}
+  defaults:
+    auto-assign: null
+    enabled: false
+    tracks-drift-events: false
   controls:
   - aws_codebuild_project_source_repo_oauth_configured
   - aws_ec2_instance_iam_profile_attached
 
@@ -3,12 +3,10 @@ control-group:
   title: "ACSC-EE-ML1-5.5: Restrict administrative privileges ML1"
   description: Privileged accounts (excluding local administrator accounts) cannot logon to unprivileged operating environments.
   section-code: "5"
-  metadata:
-    defaults:
-      auto-assign: null
-      enabled: false
-      tracks-drift-events: false
-    tags: {}
+  defaults:
+    auto-assign: null
+    enabled: false
+    tracks-drift-events: false
   controls:
   - aws_codebuild_project_environment_privileged_mode_disabled
   - aws_codebuild_project_source_repo_oauth_configured