v0.13.0

0.13.0 (2025-05-22)

Features

• [CPLYTM-627] get mapping of profile and available control (44828b5)
• Add comment to corresponding control when find missing rule (4aef7f0)
• add the function to get mapping of profile and available control (7130541)
• CPLYTM-656 CPLYTM-655 Create non-exist variables value in cac side when sync OSCAL CD (34345f9)
• CPLYTM-661, CPLYTM-662 sync OSCAL control status to cac control status (8ae7701)
• CPLYTM-663 add cmd for sync OSCAL profile information to cac content (006fba1)
• CPLYTM-665 CPLYTM-664 Implementation for sync-oscal-content profile command (095b9a1)
• CPLYTM-711 CPLYTM-712 Sync OSCAL component definition statements to CaC notes (9e662f9)
• CPLYTM-753 Introduce catalog subcommand for sync-oscal-content (70e0a24)
• Implemented validate and sync rule function for sync-oscal-content command (cb7ffa0)
• profile path resolved from cac profile name (6b826ce)
• updating debug logs for path reference (685683f)

Bug Fixes

• add more specific assertions (610c2e2)
• check main binary in is_complytime_installed (434ca80)
• comment typofix (ed9838c)
• correcting unit test path reference (94feff0)
• CPLYTM-563: profile path resolved from cac profile name (71b4066)
• CPLYTM-710 updating logger statements (778b529)
• disable irrelevant semgrep finding (ad698cc)
• If OSCAL set-parameters filed is None, set to empty list (eb75ae9)
• introducing oscal-profile specific compdef directories (12bfa32)
• remove dead code (e3898f7)
• rstrip strips characters, not strings (58a8832)
• terminal output suggestion (9d206e7)
• tests updated to resolve cac profile (65890ad)
• updates logic to get release information (#437) (93b910e)
• updates sync_cac_content_catalog task to set empty values to None (5de9ac6)
• updating if statement to extracting all controls (50eadc1)
• updating reference to profile in tutorial (59118f6)
• updating reference to profile in tutorial (da69b8e)
• updating the tutorial for compdefs (215244b)
• use description from cac profile as prose (#488) (d1db03f)
• wrap kwargs (0abb078)
• yaml format error when sync OSCAL cd to CaC (c50040e)

Maintenance

• add assert specificity (5e2571c)
• add detail to error message (25f766d)
• add get-github-release.sh script (951c320)
• add integration mark (b300549)
• add integration test stub (a8e3da7)
• add test cases (1fba546)
• CPLYTM-686 Remove duplicate catalog cmd (37d4b7d)
• CPLYTM-687 rename --policy-id by --cac-policy-id to make it more intuitive (04e079f)
• disambiguate test-integration (6960242)
• extract function (abc5297)
• format (92d7608)
• get profiles and controls are impacted by a rule (4804092)
• get profiles and controls are impacted by a rule (4f62857)
• lint line length (5074d84)
• port shell script to python (c89d9c2)
• remove dead code (0c59ac5)
• remove dead code (b297591)
• remove the ignored SRG controls (3515d92)
• remove unused comments (d8d5b1e)
• simplify pull request template (93fcf7c)
• simplify pull request template (df081ad)
• simplify return expression (9e0dfff)
• update docs (88dcbd4)
• update integration test paths (846697e)
• update trestle version to 3.8.1 (fixes jinja vulns) (#510) (d6653e5)
• use renamed cac-policy-id arg (d3a3c34)

v0.12.0

0.12.0 (2025-03-07)

Features

• 295 monorepo directory structure design proposal (#389) (0314389)
• add a framework property to capture the CaC profile id (#442) (0ceeb01)
• add cac content rules transformation (caaa44d)
• add control implmentations and implemented requirements (3fe61d6)
• add parameter transformation (ce7b0d4)
• add sync catalog command (d571394)
• add unit test for validation component (59016fb)
• bot: change for configuring trestle-bot PR body update (#363) (812ae9a)
• CPLYTM-421 create validation component from rules (e598832)
• CPLYTM-455 populate cac control status to implementation (71db968)
• initialize command for cac to oscal transformation (6bc5073)
• populate cac content product name as component title (2ae3bb7)
• populate control notes into implemented requirement (7e514e1)
• produces OSCAL Profiles by level (#419) (dcbfa97)
• remove legacy entrypoints (d2f41ad)
• update poetry.lock and add jinja macros (65cc1c5)
• update rule description value with rule title (dd59a84)

Bug Fixes

• a typo in autosync command (d701aab)
• add sync-cac-catalog note (42fb832)
• broken link (a90c9cd)
• do not include unselected rules (47559a4)
• fix a typo in cli root (b7b511e)
• fix github doc and templates (c9333b6)
• fix test failure in validation component (f6f8d19)
• format (fdef810)
• improve the validation components with parameters (27b0733)
• lint (5f1adcb)
• lint errors (86b7f87)
• list index out of range error (a62c247)
• mangled doc update (85840bb)
• massage cac data into oscal format (ba94097)
• run the paths-filter step in its own job (#370) (cb42cfe)
• specify click path_type (6a911f5)
• support older Python versions (9b5282a)
• sys.exit with errorcode when exceptions (2c2df3d)
• trim whitespace (2082079)
• try to work around conflicting CI rules (e5d4431)
• unit tests in pycharm (42f3b96)
• update create command for e2e testing (abcd7eb)
• update e2e test to use new commands (6e70243)
• use ControlsManager to load policy (71e040d)
• use original CaC id on label (9a99c7e)

Maintenance

• add notice regarding repo org move (#413) (c17fbee)
• add openssf scorecard workflow (#359) (63ed23c)
• allow lower case in PR subject (#406) (73351bc)
• create a minimalist macro file for unit tests (edb82f0)
• load CaC Policy by id without ControlsManager (4e71cc7)
• make trestlebot/cli/root.py executable (0f74955)
• merge control resolvers from different modules (b3c77f4)
• move sync-cac-catalog to sync-cac-content (8a1af94)
• remove macros not relevant for current tests (fe819c8)
• rename rule-transform to rules-transform (226a0d2)
• split create or update component definition function (84529b3)
• start local e2e testing docs (424dd55)
• transformation performance improvement (debfd95)
• update actions for debug and config options (1f16ca3)
• update actions with new cli design (487d1d4)
• update checking on component data (3a2ea5d)
• update command list (c18c55f)
• update docs for sync-cac-content catalog (aba8001)
• update pyproject.toml entrypoints to cli root command (64adaf5)
• update SyncCacContentTask (1506fee)
• update testing for sync_cac_content (76d7f9b)
• use trestle API to get catalog path (e923009)
• wording improvement (2f6ed28)

v0.11.0

0.11.0 (2024-09-25)

⚠ BREAKING CHANGES

• default module entrypoint is now the init command
• Modifies the existing behavior of the rules transform entrypoint

Features

• adding init command to entrypoints (#326) (868c1fa)
• adds markdown generation to the rules transform entrypoint (#282) (84dec70)
• removes provider from init and moves CI templates (#344) (21b4043)
• tutorial for GitHub and init command (#333) (6334c1f)
• update module default to use init entrypoint (#329) (d1490cb)
• updates SSP generation to include all parts (#348) (18c6600)

Bug Fixes

• add markdown-include package to workflow and poetry (#339) (c7a05ee)
• updates dependabot prefix for conventional commits (#308) (ee86f5c)
• updates e2e tests checkout ref during image publishing (#334) (5439b91)

Maintenance

• change dependabot frequency to weekly (#290) (3da37f7)
• deps: adds compliance-trestle-fedramp dependency (#349) (aeb6e0c), closes #318
• deps: bump trestle to version v3.3.0 (#269) (a2a2db6)

v0.10.1

What's Changed

• ⬆️ bump actions/setup-python from 4 to 5 in /.github/actions/setup-poetry by @dependabot in #224
• ⬆️ bump sigstore/cosign-installer from 3.4.0 to 3.5.0 by @dependabot in #227
• ⬆️ bump authlib from 1.3.0 to 1.3.1 by @dependabot in #252
• ⬆️ bump urllib3 from 2.2.1 to 2.2.2 by @dependabot in #253
• ci: pins all reference GitHub actions to a hash value by @jpower432 in #242
• fix: updates GitHub Actions runner image and restart policy by @jpower432 in #255

Full Changelog: v0.10.0...v0.10.1

v0.10.0

What's Changed

• PSCE-408 refactor: replaces regex with urllib for repo URL parsing by @jpower432 in #215
• PSCE-408 feat: adds flags to set git provider information when interacting with the API by @jpower432 in #217
• ci: updates publish.yml image releasing process by @jpower432 in #220
• PSCE-420: ci: updates e2e testing workflow to test before image publishing by @jpower432 in #221
• ⬆️ Bump python-dateutil from 2.8.2 to 2.9.0.post0 by @dependabot in #188
• ⬆️ Bump pydantic from 1.10.14 to 1.10.15 by @dependabot in #209
• [Issue-230] Set default values to None instead of empty strings by @gvauter in #233
• ⬆️ bump requests from 2.31.0 to 2.32.2 by @dependabot in #232
• docs: add release process to contributing doc by @jpower432 in #229
• docs: updates table of contents with release process by @jpower432 in #236

New Contributors

• @gvauter made their first contribution in #233

Full Changelog: v0.9.0...v0.10.0

v0.9.0

Maintainer Notes

These release has a breaking change. Updating to this version will require code changes - see #195 more more information.

Migration Notes

If you were using the check_only input in the autosync action, please see the example below on how to achieve this with the dry_run input:

   steps:
      - uses: actions/checkout@v3
      - name: Run trestlebot
        id: check
        uses: RedHatProductSecurity/trestle-bot/actions/[email protected]
        with:
          markdown_path: "markdown/profiles"
          oscal_model: "profile"
          dry_run: true
      # Optional - Set the action to failed if changes are detected.
      - name: Fail for changes
        if: ${{ steps.check.outputs.changes == 'true' }}
        uses: actions/github-script@v7
        with:
          script: |
              core.setFailed('Changes detected. Manual intervention required.')

What's Changed

• ⬆️ Bump idna from 3.6 to 3.7 by @dependabot in #210
• ⬆️ Bump safety from 3.0.1 to 3.1.0 by @dependabot in #203
• feat: replaces 'check_only' with 'dry_run' option by @jpower432 in #195
• ⬆️ Bump email-validator from 2.1.0.post1 to 2.1.1 by @dependabot in #180
• refactor: migrates rule validation to pydantic by @jpower432 in #207

Full Changelog: v0.8.1...v0.9.0

v0.8.1

What's Changed

• fix: removes default version in GitHub action by @jpower432 in #194
• chore: update logging format by @jpower432 in #196
• docs: update README under actions directory by @jpower432 in #192
• fix: prevent extra log messages in stdout by @jpower432 in #199
• refactor: improves readability of the SSP end to end tests by @jpower432 in #198
• ⬆️ Bump black from 23.12.1 to 24.3.0 by @dependabot in #202
• ⬆️ Bump aquasecurity/trivy-action from 0.18.0 to 0.19.0 by @dependabot in #201
• ⬆️ Bump responses from 0.24.1 to 0.25.0 by @dependabot in #174

Full Changelog: v0.8.0...v0.8.1

v0.8.0

What's Changed

• refactor: adds a E2ETestRunner for E2E tests by @jpower432 in #177
• ⬆️ Bump flake8 from 6.1.0 to 7.0.0 by @dependabot in #146
• chore: updates descriptions on actions inputs to be more precise by @jpower432 in #184
• chore: removes input repository from the safe workspace by @jpower432 in #185
• feat: adds version flag to autosync command for assembly task by @jpower432 in #187
• fix: adds OSCAL validated component definition types to create-cd by @jpower432 in #191

Full Changelog: v0.7.2...v0.8.0

v0.7.2

What's Changed

• ⬆️ Bump orjson from 3.9.14 to 3.9.15 by @dependabot in #176
• docs: adds README updates for compliance-trestle org move by @jpower432 in #175
• ⬆️ Bump aquasecurity/trivy-action from 0.17.0 to 0.18.0 by @dependabot in #178
• ⬆️ Bump pydantic from 1.10.13 to 1.10.14 by @dependabot in #161
• feat: adds main_comp_only to create_new_with_filter in ssp.py by @jpower432 in #179
• fix: updates CSVTransformer to separate controls with spaces instead of commas by @jpower432 in #183

Note: The feature added is for an internal method only which is why this is a patch version bump

Full Changelog: v0.7.1...v0.7.2

v0.7.1

What's Changed

• chore: updates CSVBuilder to handle updates to the compliance-trestle CSVColumns class by @jpower432 in #172

Full Changelog: v0.7.0...v0.7.1