Update for syntax changes introduced in #348 (#390)

funnelfiasco · web-flow · commit df1a8adbe859 · 2025-09-16T15:51:25.000-04:00
Signed-off-by: Ben Cotton &lt;ben@kusari.dev&gt;
diff --git a/baseline/OSPS-BR.yaml b/baseline/OSPS-BR.yaml
@@ -472,17 +472,17 @@ controls:
       Ensure that sensitive data is not disclosed, compromised or misused leading to security vulnerabilities or supply chain compromise.
     guideline-mappings:
       - reference-id: BPB
-        identifiers:
-          - S-B-5 # TODO: is this the right numbering for https://www.bestpractices.dev/en/criteria#0.no_leaked_credentials
+        entries:
+          - reference-id: S-B-5 # TODO: is this the right numbering for https://www.bestpractices.dev/en/criteria#0.no_leaked_credentials
       - reference-id: SSDF
-        identifiers:
-          - PO.1.1
-          - P0.3.1
-          - P0.4.2
-          - PO.5.1
-          - PW.1.2
-          - PW.1.3
-          - PW.5.1
+        entries:
+          - reference-id: PO.1.1
+          - reference-id: P0.3.1
+          - reference-id: P0.4.2
+          - reference-id: PO.5.1
+          - reference-id: PW.1.2
+          - reference-id: PW.1.3
+          - reference-id: PW.5.1
     assessment-requirements:
       - id: OSPS-BR-07.01
         text: |
