From 05307ecbba643c629482bc5141be77170cbc388d Mon Sep 17 00:00:00 2001
From: Dan Brodjieski <brodjieski@gmail.com>
Date: Mon, 7 Mar 2022 12:06:52 -0500
Subject: [PATCH] Fix for 5.1.7, 5.1.8

---
 baselines/cis_lvl1.yaml                                  | 1 -
 baselines/cis_lvl2.yaml                                  | 3 ++-
 rules/os/os_world_writable_library_folder_configure.yaml | 3 +--
 rules/os/os_world_writable_system_folder_configure.yaml  | 1 +
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/baselines/cis_lvl1.yaml b/baselines/cis_lvl1.yaml
index a79bc57f..69211bb1 100644
--- a/baselines/cis_lvl1.yaml
+++ b/baselines/cis_lvl1.yaml
@@ -53,7 +53,6 @@ profile:
       - os_terminal_secure_keyboard_enable
       - os_time_offset_limit_configure
       - os_unlock_active_user_session_disable
-      - os_world_writable_library_folder_configure
       - os_world_writable_system_folder_configure
   - section: "passwordpolicy"
     rules:
diff --git a/baselines/cis_lvl2.yaml b/baselines/cis_lvl2.yaml
index d1750252..6d522da8 100644
--- a/baselines/cis_lvl2.yaml
+++ b/baselines/cis_lvl2.yaml
@@ -56,6 +56,7 @@ profile:
       - os_time_offset_limit_configure
       - os_unlock_active_user_session_disable
       - os_world_writable_library_folder_configure
+      - os_world_writable_system_folder_configure
   - section: "passwordpolicy"
     rules:
       - pwpolicy_account_lockout_enforce_five
@@ -121,4 +122,4 @@ profile:
       - supplemental_filevault
       - supplemental_firewall_pf
       - supplemental_password_policy
-      - supplemental_smartcard
+      - supplemental_smartcard
\ No newline at end of file
diff --git a/rules/os/os_world_writable_library_folder_configure.yaml b/rules/os/os_world_writable_library_folder_configure.yaml
index 267155c3..263ea910 100644
--- a/rules/os/os_world_writable_library_folder_configure.yaml
+++ b/rules/os/os_world_writable_library_folder_configure.yaml
@@ -33,13 +33,12 @@ references:
     - N/A
   cis:
     benchmark:
-      - 5.1.8 (level 1)
+      - 5.1.8 (level 2)
     controls v8:
       - 3.3
 macOS:
   - "12.0"
 tags:
-  - cis_lvl1
   - cis_lvl2
   - cisv8
 mobileconfig: false
diff --git a/rules/os/os_world_writable_system_folder_configure.yaml b/rules/os/os_world_writable_system_folder_configure.yaml
index 2353e494..4ad69345 100644
--- a/rules/os/os_world_writable_system_folder_configure.yaml
+++ b/rules/os/os_world_writable_system_folder_configure.yaml
@@ -38,6 +38,7 @@ macOS:
   - "12.0"
 tags:
   - cis_lvl1
+  - cis_lvl2
   - cisv8
 mobileconfig: false
 mobileconfig_info:
\ No newline at end of file