usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-02-03 05:53:24 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity
1,709 Commits 26 Branches 61 Tags
main
Commit Graph

1709 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Dan Brodjieski
db771c11ad chore: move cspell files to main 2025-09-15 14:48:44 -04:00
Dan Brodjieski
59d84969a4 chore: add cspell components to main 2025-09-15 14:47:26 -04:00
Dan Brodjieski
69177679ec chore(workflows): sort dictionaries 2025-09-15 14:45:26 -04:00
Dan Brodjieski
fa270e269c chore(workflow): fix ignorePath 2025-09-15 14:39:23 -04:00
Dan Brodjieski
f42a40a383 chore(workflows): update spelling setup 2025-09-15 14:38:02 -04:00
Dan Brodjieski
3da31e5733 chore(workflows): more spell check tweaks 2025-09-15 14:13:28 -04:00
Dan Brodjieski
e83cded332 chore(workflows): update spell check 2025-09-15 14:10:44 -04:00
Dan Brodjieski
a44bdc208e chore(workflows): spell check tweaks 2025-09-15 14:04:20 -04:00
Dan Brodjieski
a2ab77daa3 chore(workflows): clean up spell check output 2025-09-15 13:52:11 -04:00
Dan Brodjieski
4b9f51f5e4 chore(workflows): update spell check 2025-09-15 13:48:55 -04:00
Dan Brodjieski
b17f06315e chore(workflows): update node-version 2025-09-15 13:45:26 -04:00
Dan Brodjieski
9a35060126 chore(workflow): remove cache keyword 2025-09-15 13:44:21 -04:00
Dan Brodjieski
97ae2dbe0f chore(workflows): introduce spell checking 2025-09-15 13:42:21 -04:00
Dan Brodjieski
cd46135352 refactor: fix typos and spelling 2025-09-15 10:52:37 -04:00
Dan Brodjieski
dbea3ddcc7 refactor: sync with main 2025-09-15 10:44:51 -04:00
Bob Gendler
c3b3a3518f Merge pull request #565 from homebysix/no-eval 
Close compliance bypass caused by exploiting eval
 2025-09-15 10:41:37 -04:00
Elliot Jordan
d501cabff2 Use zsh's (z) parameter expansion flag instead of eval 2025-09-12 20:42:14 -07:00
Dan Brodjieski
76c33f3188 refactor[script]: remove ssh hostkey generation 
The ssh hostkey generation was needed for older versions of openSSH.  No longer need this to evaluate ssh configuraitons.
 2025-09-12 13:21:20 -04:00
Dan Brodjieski
9d6ba54b13 fix[rule]: correct typo in fix text 2025-09-12 10:42:30 -04:00
Bob Gendler
0529bdd7d4 Update README.md 2025-09-11 15:44:45 -04:00
Bob Gendler
86e91e57e1 Update README.md 2025-09-11 15:44:11 -04:00
Bob Gendler
94afaef2b3 Merge branch 'tahoe' 
macOS Tahoe Guidance Release
 2025-09-11 15:41:55 -04:00
Bob Gendler
19b7bfbb21 Update README.md tahoe_rev1 2025-09-11 15:27:16 -04:00
Bob Gendler
af08f7ce5a Fixed sequoia to tahoe 2025-09-11 15:18:15 -04:00
Bob Gendler
a1ce3ac0e6 Updated baseline files 2025-09-11 11:54:04 -04:00
Bob Gendler
300dbc3ceb Fixed check 2025-09-11 11:07:23 -04:00
Bob Gendler
ab9bdbdefb Fixed check 2025-09-11 11:06:16 -04:00
Bob Gendler
d2229dfcb6 Added CCE 2025-09-11 10:44:47 -04:00
Dan Brodjieski
57ede4b3cb chore: update for tahoe release 2025-09-11 10:31:11 -04:00
Dan Brodjieski
c78425c5b0 refactor[rules]: update checks for SkipSetupItems 
add[rules]: add skip Apple Intelligence during setup assistant
 2025-09-11 10:22:28 -04:00
Dan Brodjieski
280ef89f71 refactor: update deprecated keys 
migrate to new SkipSetupItems key in com.apple.SetupAssistant.managed in favor of deprecated keys

Issue #516
 2025-09-10 18:04:50 -04:00
Bob Gendler
c3dfee2f7e Updated baseline files 2025-09-10 10:38:14 -04:00
Allen Golbig
3400e0431b updated changelog 2025-09-09 22:38:02 -04:00
Allen Golbig
a3a30ca246 updated changelog 2025-09-09 20:51:54 -04:00
Bob Gendler
faab04ccbc Updated generate scap, scap 1.4, oval 5.12.1 2025-09-09 15:25:26 -04:00
Bob Gendler
d1ccb1fafb refactor[rules]CCEs added 
Added missing CCEs
 2025-09-09 12:34:27 -04:00
Dan Brodjieski
52afeab4db docs: update STIG references to V1R4 2025-09-09 11:37:16 -04:00
Dan Brodjieski
ba56857b10 feature[script]: add shell check to compliance script 
Compliance script will exit if not being run in a zsh
 2025-09-09 11:19:59 -04:00
Dan Brodjieski
3cfa06d631 fix[rules]: update macOS tags to 26.0 2025-09-09 11:05:39 -04:00
Allen Golbig
0771c4f600 Merge pull request #551 from mgajdar/tahoe_findings_fix 
Tahoe findings fix
 2025-09-09 08:46:13 -04:00
Michal Gajdar
2a14539f60 refactor[rules] Update moduleName to Tahoe for os_screensaver_loginwindow_enforce 2025-09-09 14:17:04 +02:00
Michal Gajdar
7ee012d67b refactor[rules] Update results 2025-09-09 14:15:49 +02:00
Dan Brodjieski
7fb95480c5 fix: removed duplicate code 2025-09-08 13:53:46 -04:00
Dan Brodjieski
a71f9d0576 Merge branch 'sequoia' into dev_tahoe 2025-09-08 13:46:16 -04:00
Allen Golbig
88529d4973 added rules folder to custom 2025-09-08 13:43:06 -04:00
Dan Brodjieski
05ea54961f fix{rule]: add note about FileVault implementation 
Issue #540
 2025-09-08 12:12:13 -04:00
Dan Brodjieski
1a6a8dfed5 fix[rule]: update check for time machine encryption 
changing to CIS method

Issue #538
 2025-09-08 12:02:07 -04:00
Bob Gendler
36ff6a2343 refactor[rules] Added missing CNSSI tags 
Updated 4 rules with missing tags
 2025-09-08 11:40:53 -04:00
Bob Gendler
f928e40f33 refactor[rules] FIPS 
Updated info on FIPS validation.
 2025-09-04 15:03:16 -04:00
Dan Brodjieski
84b3feb6bd add[rule]: new settings for Safari 
allowSafariHistoryClearing
allowSafariPrivateBrowsing
 2025-09-03 16:01:11 -04:00