Skip to content

feat: support OSCAL 1.2.2#2216

Open
degenaro wants to merge 13 commits into
developfrom
oscal-1.2.2
Open

feat: support OSCAL 1.2.2#2216
degenaro wants to merge 13 commits into
developfrom
oscal-1.2.2

Conversation

@degenaro

@degenaro degenaro commented May 4, 2026

Copy link
Copy Markdown
Collaborator

Types of changes

  • Hot fix (emergency fix and release)
  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Documentation (change which affects the documentation site)
  • Breaking change (fix or feature that would cause existing functionality to change)
  • Release (develop -> main)

Quality assurance (all should be covered).

  • My code follows the code style of this project.
  • Documentation for my change is up to date?
  • My PR meets testing requirements.
  • All new and existing tests passed.
  • All commits are signed-off.

Summary

Key links:

Before you merge

  • Ensure it is a 'squash commit' if not a release.
  • Ensure CI is currently passing
  • Check sonar. If you are working for a fork a maintainer will reach out, if required.

Signed-off-by: degenaro <lou.degenaro@gmail.com>
@degenaro degenaro requested a review from a team as a code owner May 4, 2026 11:45

@vikas-agarwal76 vikas-agarwal76 left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

allanilya and others added 2 commits June 18, 2026 15:17
* feat: add xlsx-to-oscal-poam task for OSCAL POAM generation

Adds XlsxToOscalPoam task that transforms FedRAMP POAM Excel spreadsheets
into OSCAL POAM JSON format, with supporting tests, test fixtures, and tutorial.

Signed-off-by: allanilya <allanilyasov@gmail.com>

* refactor: format dictionary unpacking for improved readability in xlsx_to_oscal_poam

Signed-off-by: allanilya <allanilyasov@gmail.com>

* fix: use AssociatedRisk and apply ruff formatting

Signed-off-by: allanilya <allanilyasov@gmail.com>

* fix: update risk status assertion and improve validation checks in xlsx_to_oscal_poam

Signed-off-by: allanilya <allanilyasov@gmail.com>

* fix: header & improve code quality

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: header & improve test coverage

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: add xlsx format info to -i info

Signed-off-by: degenaro <lou.degenaro@gmail.com>

---------

Signed-off-by: allanilya <allanilyasov@gmail.com>
Signed-off-by: degenaro <lou.degenaro@gmail.com>
Co-authored-by: Lou DeGenaro <lou.degenaro@gmail.com>
degenaro and others added 8 commits June 19, 2026 08:30
Signed-off-by: degenaro <lou.degenaro@gmail.com>
* fix: sonar

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint regular expression

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: code-format

Signed-off-by: degenaro <lou.degenaro@gmail.com>

---------

Signed-off-by: degenaro <lou.degenaro@gmail.com>
Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.3 to 7.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@df4cb1c...9c091bb)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* fix: update nist-content submodule pointer to track latest main branch

Signed-off-by: Simon Essien <champbreed1@gmail.com>

* feat: add xlsx-to-oscal-poam task (#2219)

* feat: add xlsx-to-oscal-poam task for OSCAL POAM generation

Adds XlsxToOscalPoam task that transforms FedRAMP POAM Excel spreadsheets
into OSCAL POAM JSON format, with supporting tests, test fixtures, and tutorial.

Signed-off-by: allanilya <allanilyasov@gmail.com>

* refactor: format dictionary unpacking for improved readability in xlsx_to_oscal_poam

Signed-off-by: allanilya <allanilyasov@gmail.com>

* fix: use AssociatedRisk and apply ruff formatting

Signed-off-by: allanilya <allanilyasov@gmail.com>

* fix: update risk status assertion and improve validation checks in xlsx_to_oscal_poam

Signed-off-by: allanilya <allanilyasov@gmail.com>

* fix: header & improve code quality

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: header & improve test coverage

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: add xlsx format info to -i info

Signed-off-by: degenaro <lou.degenaro@gmail.com>

---------

Signed-off-by: allanilya <allanilyasov@gmail.com>
Signed-off-by: degenaro <lou.degenaro@gmail.com>
Co-authored-by: Lou DeGenaro <lou.degenaro@gmail.com>

* fix: snyk unrestricted, now compatible with pip (#2263)

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar (#2264)

* fix: sonar

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: sonar complaint regular expression

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: code-format

Signed-off-by: degenaro <lou.degenaro@gmail.com>

---------

Signed-off-by: degenaro <lou.degenaro@gmail.com>

* fix: update test assertions to match nist-content v1.5.0

Signed-off-by: Simon Essien <champbreed1@gmail.com>

* fix: DCO sign-off for previous merge commits

Signed-off-by: Simon Essien <champbreed1@gmail.com>

---------

Signed-off-by: Simon Essien <champbreed1@gmail.com>
Signed-off-by: allanilya <allanilyasov@gmail.com>
Signed-off-by: degenaro <lou.degenaro@gmail.com>
Co-authored-by: Lou DeGenaro <lou.degenaro@gmail.com>
Co-authored-by: Allan <132115536+allanilya@users.noreply.github.com>
Signed-off-by: degenaro <lou.degenaro@gmail.com>
Signed-off-by: degenaro <lou.degenaro@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

4 participants