Identify tool or process for document schema validation #10
Comments
brandtkeller
added
documentation
|
Moving to post-POC for DD objectives |
|
Currently no validation around the oscal files being ingested. Implementation might look like a separate command that is utilized to help document developers target problems (line/object etc) and resolve them. |
|
https://github.com/GoComply/oscalkit does provide this validation logic. The validation looks to occur by supplying a schema to validate a given document against. Investigation needs to happen around how we might handle multiple versions of documents being used with a single version of the tool and what schemas we have within the compiled binary. |
|
Clarifying context around this issue should be separated into two categories:
|
|
Tested OSCAL-CLI github action. Seems to be solid. Pros: Cons: |
|
The GitHub Action, oscal-cli-action, is maintained by the OSCAL Club community not NIST, but the core CLI is from NIST though. Let us know how we can help (I am the maintainer of that action). |
|
@xee5ch thanks for the call out, I updated my Pros/Cons to reflect that! Still in the early phases of testing but everything seems to be straight forward. Thanks for the hard work on it! |
|
No worries, thanks for testing it, we have not got much feedback on it yet. You did remind me to release the updated copy defaulting to v1.0.2 of the CLI out of the oven, so hopefully it keeps delivering value. :-) |
|
Found issue with OSCAL-CLI validation command not being able to find json schema file: usnistgov/oscal-cli#200 Fix should be in next release. |
|
document schema validation implemented in #136 |
Knowing early what is or is-not valid OSCAL schema will be important for extending the OSCAL component files.
Provide documentation or automation for validating OSCAL schema.
The text was updated successfully, but these errors were encountered: