Update content to use OSCAL v1.1.1 models #204
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
7 tasks
|
@aj-stein-nist Is the title of the PR wrong? It lists OSCAL 1.0.0 |
aj-stein-nist
changed the title
Woops, fixed. :-) |
aj-stein-nist
added a commit
to usnistgov/OSCAL
that referenced
this pull request
Aug 6, 2023
Add this back as part of sprint work to build new Makefile(s) and recreate profile resolution tooling for local and GHA CI/CD for usnistgov/oscal-content#204.
aj-stein-nist
added a commit
to usnistgov/OSCAL
that referenced
this pull request
Aug 6, 2023
This was removed in site migration work and did not appear to be relocated, as determined during the course of usnistgov/oscal-content#204. We can rely on the metaschema-xslt project, but given OSCAL has the profile resolver tool committed in its repo tree, it stands to reason to rely on its own independent Maven POM file, even if now redundant, as they may diverge in the future.
6 tasks
aj-stein-nist
added a commit
to usnistgov/OSCAL
that referenced
this pull request
Aug 7, 2023
* Correct relative path to previous Maven POM dep file Add this back as part of sprint work to build new Makefile(s) and recreate profile resolution tooling for local and GHA CI/CD for usnistgov/oscal-content#204. * Add back pom.xml for Maven deps This was removed in site migration work and did not appear to be relocated, as determined during the course of usnistgov/oscal-content#204. We can rely on the metaschema-xslt project, but given OSCAL has the profile resolver tool committed in its repo tree, it stands to reason to rely on its own independent Maven POM file, even if now redundant, as they may diverge in the future.
aj-stein-nist
added a commit
to usnistgov/OSCAL
that referenced
this pull request
Aug 7, 2023
This script is being added to facilitate running XSLT stylesheets, such as the XML/JSON JSON/XML conversion utilities that will be used in our oscal-content and related pipelines. This script will be committed to coincide with testing and review of the Makefile in usnistgov/oscal-content#204.
6 tasks
aj-stein-nist
added a commit
to usnistgov/OSCAL
that referenced
this pull request
Aug 8, 2023
This script is being added to facilitate running XSLT stylesheets, such as the XML/JSON JSON/XML conversion utilities that will be used in our oscal-content and related pipelines. This script will be committed to coincide with testing and review of the Makefile in usnistgov/oscal-content#204.
|
This is important and still needs to be finished. I will continue work on this in the first half of Sprint 74 and intend to finish it as it is an important prerequisite for many upcoming changes given the tentative roadmap in usnistgov/OSCAL#1867. |
This was referenced Aug 14, 2023
6 tasks
aj-stein-nist
force-pushed
the
chore-submodule-v1.1.0-release
branch
2 times, most recently
from
65c7bc2 to
56a8e5e
Compare
aj-stein-nist
added a commit
to usnistgov/OSCAL
that referenced
this pull request
Sep 12, 2023
* Correct relative path to previous Maven POM dep file Add this back as part of sprint work to build new Makefile(s) and recreate profile resolution tooling for local and GHA CI/CD for usnistgov/oscal-content#204. * Add back pom.xml for Maven deps This was removed in site migration work and did not appear to be relocated, as determined during the course of usnistgov/oscal-content#204. We can rely on the metaschema-xslt project, but given OSCAL has the profile resolver tool committed in its repo tree, it stands to reason to rely on its own independent Maven POM file, even if now redundant, as they may diverge in the future.
aj-stein-nist
added a commit
to usnistgov/OSCAL
that referenced
this pull request
Sep 12, 2023
This script is being added to facilitate running XSLT stylesheets, such as the XML/JSON JSON/XML conversion utilities that will be used in our oscal-content and related pipelines. This script will be committed to coincide with testing and review of the Makefile in usnistgov/oscal-content#204.
Arminta-Jenkins-NIST
pushed a commit
to usnistgov/OSCAL
that referenced
this pull request
Sep 12, 2023
* Correct relative path to previous Maven POM dep file Add this back as part of sprint work to build new Makefile(s) and recreate profile resolution tooling for local and GHA CI/CD for usnistgov/oscal-content#204. * Add back pom.xml for Maven deps This was removed in site migration work and did not appear to be relocated, as determined during the course of usnistgov/oscal-content#204. We can rely on the metaschema-xslt project, but given OSCAL has the profile resolver tool committed in its repo tree, it stands to reason to rely on its own independent Maven POM file, even if now redundant, as they may diverge in the future.
Arminta-Jenkins-NIST
pushed a commit
to usnistgov/OSCAL
that referenced
this pull request
Sep 12, 2023
This script is being added to facilitate running XSLT stylesheets, such as the XML/JSON JSON/XML conversion utilities that will be used in our oscal-content and related pipelines. This script will be committed to coincide with testing and review of the Makefile in usnistgov/oscal-content#204.
aj-stein-nist
force-pushed
the
chore-submodule-v1.1.0-release
branch
4 times, most recently
from
3b14a16 to
74c7398
Compare
aj-stein-nist
changed the title
As picked up in review with Nikita, we are converting the source XML files to JSON and YAML, but not all. We need to adjust the make vars that collect the source files for conversion to minified JSON to Include the resolved catalogs from profiles from the previous step. Reviewing the auto-committed test content confirm these files were being missed in conversion to JSON and YAML and we obviously need those.
Per discussion with Nikita during PR review and pairing, we should try to adjust the jq and yq dep install and management approach to be a little more ergonomic. As for xmllint, it was requested we align that to work like the dep mgmt in the usnistgov/OSCAL repo, since that is a compiled dep that is not offered statically and is best handled as a concern by the developer in their operating system, or by a dedicated install step in GHA workflows. Additionally, for these reasons, the clean wrapper target will not include deleting it as a default, but can be added later by a developer by explicitly requesting it.
Per PR review and consultation from Nikita, add in additional wrapper targets for artifacts and checks for better organization and to make a cleaner hierarchy for the make all target.
As discussed in the branch under review in #204, we now have absolute paths in the resolved catalogs based on the full paths to the profile, which is less than idea for published catalogs. Comment with explanation: #204 (comment) Example: https://github.com/aj-stein-nist/oscal-content/blob/dc5500ed9371b485fc21cb095d2fb9db6e2a1fd3/nist.gov/SP800-53/rev5/xml/NIST_SP-800-53_rev5_LOW-baseline-resolved-profile_catalog.xml#L11 To work around this for the time being, we are using sed in the Makefile to clean up once profile resolution is done and before the XML source is converted to the target JSON and YAML.
After debugging with @nikitawootten-nist, we determined during pairing that the SECONDEXPANSION calls, that are necessary to avoid some more hacky kludges with macros and functions. As it stands, when running with concurrent jobs (`-jN` with N>=2) it fails. We determined the cause of the failures for `convert-min-json-content` and `convert-yaml-content` targets are because those target prerequisites are flawed. This change will be greedy and presume all respective XML files for JSON targets and all JSON files for YAML targets. This will limit the upper bound of concurrent jobs for these targets, but makes it correct and safe.
aj-stein-nist
force-pushed
the
chore-submodule-v1.1.0-release
branch
from
99669b4 to
bbdcac7
Compare
|
Doing some more testing but the concurrency fix as I committed is still not working perfectly. https://github.com/aj-stein-nist/oscal-content/actions/runs/6592140253/job/17912204423 Catching up on Makefile docs and tutorials while debugging locally and GHA to figure out if I did it in the wrong target location or this is not sufficient as discussed during pairing. 😭 |
aj-stein-nist
force-pushed
the
chore-submodule-v1.1.0-release
branch
from
65292a1 to
5a07896
Compare
|
It seems with c881404 we are very close (thanks to @nikitawootten-nist for #219) but I still see a regression in the |
* Rearranged targets, fixed build race conditions * Added a check for MacOS/Linux semantics
aj-stein-nist
force-pushed
the
chore-submodule-v1.1.0-release
branch
2 times, most recently
from
f95c749 to
e96e2b5
Compare
|
I removed the testing commit to change the HOME_REPO, but this is ready for final review. Sample from my fork simiulating the merge to /cc @usnistgov/itl-oscal |
nikitawootten-nist
approved these changes
Oct 24, 2023
aj-stein-nist
added a commit
that referenced
this pull request
Oct 24, 2023
As discussed in the branch under review in #204, we now have absolute paths in the resolved catalogs based on the full paths to the profile, which is less than idea for published catalogs. Comment with explanation: #204 (comment) Example: https://github.com/aj-stein-nist/oscal-content/blob/dc5500ed9371b485fc21cb095d2fb9db6e2a1fd3/nist.gov/SP800-53/rev5/xml/NIST_SP-800-53_rev5_LOW-baseline-resolved-profile_catalog.xml#L11 To work around this for the time being, we are using sed in the Makefile to clean up once profile resolution is done and before the XML source is converted to the target JSON and YAML.
This was referenced Oct 24, 2023
aj-stein-nist
added a commit
to aj-stein-nist/oscal-content-forked
that referenced
this pull request
Oct 27, 2023
As discussed in the branch under review in usnistgov#204, we now have absolute paths in the resolved catalogs based on the full paths to the profile, which is less than idea for published catalogs. Comment with explanation: usnistgov#204 (comment) Example: https://github.com/aj-stein-nist/oscal-content/blob/dc5500ed9371b485fc21cb095d2fb9db6e2a1fd3/nist.gov/SP800-53/rev5/xml/NIST_SP-800-53_rev5_LOW-baseline-resolved-profile_catalog.xml#L11 To work around this for the time being, we are using sed in the Makefile to clean up once profile resolution is done and before the XML source is converted to the target JSON and YAML.
aj-stein-nist
added a commit
to aj-stein-nist/oscal-content-forked
that referenced
this pull request
Oct 27, 2023
As discussed in the branch under review in usnistgov#204, we now have absolute paths in the resolved catalogs based on the full paths to the profile, which is less than idea for published catalogs. Comment with explanation: usnistgov#204 (comment) Example: https://github.com/aj-stein-nist/oscal-content/blob/dc5500ed9371b485fc21cb095d2fb9db6e2a1fd3/nist.gov/SP800-53/rev5/xml/NIST_SP-800-53_rev5_LOW-baseline-resolved-profile_catalog.xml#L11 To work around this for the time being, we are using sed in the Makefile to clean up once profile resolution is done and before the XML source is converted to the target JSON and YAML.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Committer Notes
This updates oscal-content
make-based orchestration and touches up catalogs for #116. Guidance on these changes, future development, and future governance are further detailed in usnistgov/OSCAL#1947.Example content with the updated tooling work and simulating this branch being merged can be found on my work (the last commit changing the
HOME_REPOvariable to work on this branch has been dropped, but was used to complete this final testing).aj-stein-nist/oscal-content@c8a5374#diff-ecf37eddbbe732cfc8cb391c407ae4ad8f00500d1590cc65bb08569c80697ff2
All Submissions:
Have you squashed any non-relevant commits and commit messages? [instructions] (NOTE: Will do after review to aid review process and properly document many changes, big and small, potentially will not squash.)In this case, I believe it to be important that we keep all the commits for team understanding of significant changes in the repo. I will not squash these.Changes to Core Features:
Have you added an explanation of what your changes do and why you'd like us to include them?Have you written new tests for your core changes, as applicable?Have you included examples of how to use your new feature(s)?