Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Discontinued Policy Markdown Creation #1089

Merged
merged 22 commits into from
May 6, 2024
Merged

Discontinued Policy Markdown Creation #1089

merged 22 commits into from
May 6, 2024

Conversation

ahuynhMITRE
Copy link
Collaborator

@ahuynhMITRE ahuynhMITRE commented May 6, 2024
edited
Loading

🗣 Description

This PR is to create the standard discontinued policy markdowns that will be utilized across M365 and GWS to track policies that have been discontinued, the date of discontinuation, and rationale behind discontinuation.

💭 Motivation and context

This change is required as a direct result of the conversations surrounding the continuous baseline update process to have a central markdown of removed/discontinued policies. This will remove any clutter in the baselines and assessment results.

closes #1016

🧪 Testing

ensure added markdown does not break current repository

✅ Pre-approval checklist

  • This PR has an informative and human-readable title.
  • PR targets the correct parent branch (e.g., main or release-name) for merge.
  • Changes are limited to a single goal - eschew scope creep!
  • Changes are sized such that they do not touch excessive number of files.
  • All future TODOs are captured in issues, which are referenced in code comments.
  • These code changes follow the ScubaGear content style guide.
  • Related issues these changes resolve are linked preferably via closing keywords.
  • All relevant type-of-change labels added.
  • All relevant project fields are set.
  • All relevant repo and/or project documentation updated to reflect these changes.
  • Unit tests added/updated to cover PowerShell and Rego changes.
  • Functional tests added/updated to cover PowerShell and Rego changes.
  • All relevant functional tests passed.
  • All automated checks (e.g., linting, static analysis, unit/smoke tests) passed.

✅ Pre-merge checklist

  • PR passed smoke test check.

  • Feature branch has been rebased against changes from parent branch, as needed

    Use Rebase branch button below or use this reference to rebase from the command line.

  • Resolved all merge conflicts on branch

  • Notified merge coordinator that PR is ready for merge via comment mention

✅ Post-merge checklist

  • Feature branch deleted after merge to clean up repository.
  • Verified that all checks pass on parent branch (e.g., main or release-name) after merge.

dagarwal-mitre and others added 22 commits March 21, 2024 12:21
@dagarwal-mitre
(New) Add Licensing Information to AAD Report (#1011)
40d1d99 
* Copied Changes form broken branch for new PR

* removed trailing whitespace

* Removed more trailing white space

* updated licensing table to have unique id and added case in smoke test for licensing table

* remove white space

* added check for licensing information to functional tests

* added smoke test for licensing
@buidav
Add a UTC timestamp to the Provider JSON (#1009)
e570864 
* add a quick timestamp

* add milliseconds

* timestamp_zulu

* add timestampzulu to metadata in mergejson

* fix unit tests

* fix bug found in previous PR
@james-garriss
Add config file for GitHub Pages (#1001)
3b224f6 
* add YML for theme

* add config for pages

* lint

* put regal yaml back
@buidav
Create a workflow for bumping the ScubaGear module version (#989)
e8cc3fb 
* create workflow for automated version bumping

* clean up whitespace

* bump checkout version

* fix variable substitution and regex match output

* remove testing variable
@tkol2022 @dagarwal-mitre
Fix the Handful of AAD unit tests that are broken (#1019)
6215f24 
* fixed unit tests :)

* Resolved Linter Warnings

---------

Co-authored-by: Devesh Agarwal <[email protected]>
@schrolla
Remove default vars from test configs (#996)
51215f6
@ahuynhMITRE
minor edits to aad.5.3v1 and aad5.4v1 instructions (#1028)
a97d991
@buidav
uncenter the text (#1031)
8bed58c
@amart241
Add option to generate a config file template (#984)
9128a12 
* config file generation

* Adding defender

* Final generate config file

* Ready for pull request

* moved to support module

* added to manifest file

* pascal case and whitespace

* linter hacks

* linter test

* "unused" variables

* linter hacks part II

* linter hacks part III

* Unit Test added

* added default value for unit testing

various syntax fixes as well

* fixed unit test, mock converting to yaml

* fixed unit tests?

* fixed?

* more debugging

* debugging

* Update README.md for generating config
@github-actions @actions-user
Update ScubaGear version to 1.2.0 (#1029)
3343bfb 
Co-authored-by: GitHub Action <[email protected]>
@tkol2022
Fix bug with msaad52v1 only admins consent to apps (#1043)
4527eed 
* uploading for Cassey debugging session

* modified Rego policy 5.2 and unit tests to account for Microsoft updates to tenant output data

* modified 5.2 functional tests based on Microsoft changes to JSON output
@schrolla
Update sample reports to latest version output examples (#1058)
8c185c8
@james-garriss
Fix publish package errors (#1042)
44e0184 
* inject write-error

* comment out publish

* show manifest error

* remove fail silently

* debug path version

* fix id typo

* fixed list

* fix needs

* fix release prep again

* write prereleasetag

* get types

* fix typo

* fix typos

* set tags as array

* reset tags

* debug w string

* remove array

* gc manifest

* get childitem

* write module path

* Debug manifest

* debug more

* typecast to string

* debug string concat

* display hashtable

* more debug details

* tweak debugging

* update install w prerelease

* commenting

* install required version

* add debug

* add debug

* add version

* use 1 if

* hard code

* install only

* force it

* remove install

* add debug statements

* see params

* fix parameter set

* fix comment typo

* use binding

* add comments

* fix @

* remove cmdlet

* uncomm param set

* remove param sets

* split into 2

* fix push paths

* add env back

* clean debug statement

* fix pipeline issues

* add output test

* use write-output

* clean up minor

* back to previous version

* use output

* more output

* use debug

* more output

* fix ps lint

* test returning false

* return to old error

* hardcode params

* fix step name

* improve debug statements

* back to write host

* debug prerelease

* changed info to host

* switch tag version

* write manifest out

* update version

* fix temp print

* bump to 8

* add import back

* require version

* bump to 10

* bump vers

* without tag

* bump tag

* use find mod

* fix unit test

* bump tag

* trivial change to trigger tests

* hide error

* v 03

* fix pipeline

* return false

* add write error

* remove details

* be silent

* be false

* cleanup

* unhardcode

* Exclude Write-Host locally

* commented out push trigger

* comment out push trigger

* update description
@buidav @schrolla
Add a Workflow to check for OPA version updates (#1004)
5b6923e 
* add parseable language

* add OPA Update workflow

* remove white space

* grammar

* Update Pull Request Description

Co-authored-by: Addam Schroll <[email protected]>

---------

Co-authored-by: Addam Schroll <[email protected]>
@schrolla
Defender functional test plan fixes (#1057)
b89ab31 
* Remove IsNotChecked flag from G3 3.1 Non-compliant - No defender license test

* Move impersonation protection tests from standard to g5 variant
@james-garriss
Fix Markdown in readme (#1068)
47c2871 
* fix table

* fix links

* minor changes
@buidav
Add Policy Group Names to ScubaResults.json (#1041)
65f333c 
* package Report Results by control group

* finish comment

* upgrade the ScubaGear ScubaResults metadata with even more context

* make comment clearer

* make another comment clearer
@github-actions @actions-user @buidav
Bump OPA version from v0.61.0 to v0.63.0 (#1070)
fced5af 
* Bump OPA version from v0.61.0 to  v0.63.0

* also add support for 0.62.1

* add omit comments

* add back in the space

* add back in the link

---------

Co-authored-by: GitHub Action <[email protected]>
Co-authored-by: buidav <[email protected]>
@james-garriss
Add GitLeaks to CI/CD Pipeline (#1066)
65ee0a1 
* add if

* update pipeline

* remove push

* set permissions
@ssatyapal123 @tkol2022 @Sloane4
Enhance AAD Provider and Rego Code to automate checks for policy MS.A…
b6d3bbc 
…AD.3.3v1 (#1014)

* Update provider json for  auth method config

* Added new json for MS auth feature settings

* Combined authentication method calls into one json object

* Updates to JSON for aad 3.4 and 3.5

* updates to aad 3.3 rego

* Include all auth method configs in json export

* Updates to aad 3.3 to check msauth settings

* Updates to unit tests for aad 3.4

* Update AADConfig.rego 3.3v1 status check

* fix N/A criticality for 3.5 and adjust unit and functional tests for new JSON structure

* changed JSON structure for 3.4, 3.5 because it had redundant objects and updated all tests

* fix run unit test

* revised 3.3 unit tests

* update 3.3 code & added unit tests

* refactored names and added comments to 3.3 policy

* refactored 3.4 to reduce redundant code and bad variable naming

* streamlined code for 3.5 to reduce redundancy and returned ActualValue which was missing

* renamed MFAPolicies to PhishingResistantMFAPolicies for accuracy

* initial version 3.3 functional test wip

* added functional test cases

* removed NotCheckedDetails import since linter complained

* made AuthenticationPolicyMigrationIsComplete shorter due to linter complaints

* changed AuthenticationPolicyMigrationIsComplete from boolean assignment to if due to linter

* removed redundant call to Get-MgBetaPolicyAuthenticationMethodPolicy which was left by mistake

---------

Co-authored-by: Ted Kolovos <[email protected]>
Co-authored-by: Sloane4 <[email protected]>
@github-actions @actions-user
Bump OPA version from v0.63.0 to v0.64.1 (#1079)
242dc0e 
Co-authored-by: GitHub Action <[email protected]>
@tkol2022
fixed functional test for 5.3 so that it only produces a single Enabl…
7118084 
…eAdminConsentRequests field (#1081)
@ahuynhMITRE ahuynhMITRE added the baseline-document Issues relating to the text in the baseline documents themselves label May 6, 2024
@ahuynhMITRE ahuynhMITRE added this to the Halibut milestone May 6, 2024
@ahuynhMITRE ahuynhMITRE self-assigned this May 6, 2024
@ahuynhMITRE ahuynhMITRE merged commit 0f353ee into 1016-create-template-markdown-for-discontinued-policy-ids-for-m365-gws May 6, 2024
32 of 47 checks passed
ahuynhMITRE added a commit that referenced this pull request May 6, 2024
@ahuynhMITRE
Revert "Discontinued Policy Markdown Creation (#1089)"
3bc54b2 
This reverts commit 0f353ee.
@ahuynhMITRE ahuynhMITRE removed the request for review from adhilto May 6, 2024 20:37
@ahuynhMITRE ahuynhMITRE removed the request for review from mitchelbaker-cisa May 6, 2024 20:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@ahuynhMITRE ahuynhMITRE

Labels
baseline-document Issues relating to the text in the baseline documents themselves
Projects
None yet
Milestone
Halibut
Development

Successfully merging this pull request may close these issues.

None yet
9 participants
@ahuynhMITRE @nanda-katikaneni @dagarwal-mitre @buidav @james-garriss @tkol2022 @schrolla @amart241 @ssatyapal123