Skip to content

Adds TAG SC artifacts for Cloud Native Security Controls Catalog#221

Open
jpower432 wants to merge 6 commits intocncf:mainfrom
jpower432:feat/add-controls-catalog
Open

Adds TAG SC artifacts for Cloud Native Security Controls Catalog#221
jpower432 wants to merge 6 commits intocncf:mainfrom
jpower432:feat/add-controls-catalog

Conversation

@jpower432
Copy link
Copy Markdown

@jpower432 jpower432 commented Feb 27, 2026

  • I have read and followed the Contributing page.
  • This PR has content that I did not fully write myself.
  • I have the experience and knowledge necessary to understand, review, and validate all content in this PR.1

This PR adds artifacts created in support of the TAG Security and Compliance Cloud Native Security Controls Catalogs Initiative - cncf/toc#1910.

What's Included

  1. A new folder in tags/security-and-compliance/publications called control-catalog to house the artifacts and tooling
  2. Lightweight tooling (Go to leveraged the go-gemara SDK) to validate the artifact schemas and convert to the index.md which is rendered
  3. Structured Gemara-based YAML files that contain the security control content based on the original CSV
  4. A README to explain how to update the index.md

Snippet

Screenshot From 2026-02-27 14-26-37

Footnotes

  1. Yes, I can answer maintainer questions about the content of this PR, without using AI.

@netlify
Copy link
Copy Markdown

netlify bot commented Feb 27, 2026
edited
Loading

Deploy Preview for contribute-cncf-io ready!

Name Link
🔨 Latest commit 71f02d7
🔍 Latest deploy log https://app.netlify.com/projects/contribute-cncf-io/deploys/69ceff054f73cf00082dd478
😎 Deploy Preview https://deploy-preview-221--contribute-cncf-io.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@jpower432 jpower432 force-pushed the feat/add-controls-catalog branch from f029367 to 4d021a8 Compare March 13, 2026 19:38
@jpower432 jpower432 mentioned this pull request Mar 18, 2026
Open
jpower432 and others added 5 commits April 1, 2026 11:12
@jpower432 @hbraswelrh
feat: add controls catalog for CNSCC initiative
8e7243d 
* 29a4246 feat: WIP commit to add controls catalog to tag-sc publications (Jennifer Power)
* a5dd1b9 feat: control catalog refinement for CNSCC initiative (#1) (Hannah Braswell)
* e8f4e93 feat: updates the conversion utility to new gemara module location (Jennifer Power)
* 24d6d58 docs(tag-sc): adds README.md with contributing information security controls (Jennifer Power)
* 3b237de docs(tag-sc): updates README.md structure and tools list (Jennifer Power)
* 5e9fc8f docs: updates the controls catalog markdown generation and template (Jennifer Power)
* 38e26be fix: add updates to control catalogs for storage family (#3) (Hannah Braswell)
* 861cd2a feat: adds controls from CNSWP 2.0 (Jennifer Power)
* a8cf748 chore: updates go dependencies for controls catalog (Jennifer Power)

Co-authored-by: Hannah Braswell <hbraswel@redhat.com>
Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
@jpower432
docs(controls-catalog): remove duplicates and refine template
d4058c2 
Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
@jpower432
docs: add minor fixes to controls catalog templates
8c8f898 
Missing space and broken link

Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
@hbraswelrh @jpower432
fix: removes duplicate controls
9ed4a41 
Signed-off-by: Hannah Braswell <hbraswel@redhat.com>

feat: adds linkage between CNSC 15, 16, and 19

Signed-off-by: Hannah Braswell <hbraswel@redhat.com>

fix: adds template rendering of see-also

Signed-off-by: Hannah Braswell <hbraswel@redhat.com>
Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
@hbraswelrh @jpower432
feat(controls-catalog): NIST mapping page and Gemara groups migration
1e5e940 
Add cnsc-nist-800-53-mapping.yaml (Gemara MappingDocument) and generate the
NIST SP 800-53 crosswalk markdown. Replace families.yaml with groups.yaml and
align the converter with Gemara v1.0.0-rc.1.

Made-with: Cursor
Signed-off-by: Hannah Braswell <hbraswel@redhat.com>
Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
@jpower432 jpower432 force-pushed the feat/add-controls-catalog branch from 4d021a8 to 1e5e940 Compare April 1, 2026 22:04
@jpower432
feat(controls-catalog): add per-target rationales to NIST mapping and…
71f02d7 
… catalog cross-references

Made-with: Cursor
Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
eddie-knight
eddie-knight approved these changes Apr 3, 2026
View reviewed changes
Copy link
Copy Markdown

@eddie-knight eddie-knight left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is structurally sound, and visually impactful. I especially like the way that this gives credit to the source document (v1 / v2) and organizes mapping relationships in a standalone artifact with active links from the main catalog view.

@jpower432 jpower432 marked this pull request as ready for review April 3, 2026 14:41
@jpower432 jpower432 requested review from a team as code owners April 3, 2026 14:41
@jpower432 jpower432 changed the title [WIP] Adds TAG SC artifacts for Cloud Native Security Controls Catalog Adds TAG SC artifacts for Cloud Native Security Controls Catalog Apr 3, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@eddie-knight eddie-knight eddie-knight approved these changes

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@jpower432 @eddie-knight @hbraswelrh