From d1c5307a350953f861ce7c5e9733707eca653e78 Mon Sep 17 00:00:00 2001 From: Tim Smith Date: Tue, 5 Mar 2024 18:53:54 -0800 Subject: [PATCH] Add compliance frameworks to spellcheck We get both of these wrong a lot Signed-off-by: Tim Smith --- .github/actions/spelling/line_forbidden.patterns | 16 ++++++++++++++-- docs/mql/resources/aws-pack/aws.config.md | 4 ++-- .../resources/aws-pack/aws.config.recorder.md | 4 ++-- docs/mql/resources/aws-pack/aws.config.rule.md | 4 ++-- docs/platform/start/organize/spaces.md | 2 +- releases/2022-07-19-mondoo-6.7-is-out.md | 2 +- releases/2022-09-27-mondoo-6.17-is-out.md | 2 +- releases/2023-09-19-mondoo-8.28-is-out.md | 2 +- releases/2023-10-24-mondoo-9.3-is-out.md | 2 +- releases/2023-11-07-mondoo-9.6-is-out.md | 2 +- releases/2023-11-21-mondoo-9.8-is-out.md | 2 +- 11 files changed, 27 insertions(+), 15 deletions(-) diff --git a/.github/actions/spelling/line_forbidden.patterns b/.github/actions/spelling/line_forbidden.patterns index 2ac05140..450a15ef 100644 --- a/.github/actions/spelling/line_forbidden.patterns +++ b/.github/actions/spelling/line_forbidden.patterns @@ -1,12 +1,11 @@ # Detect common combinations of valid words that are in fact invalid. # Useful for brand capitalizations - # # Catch placeholder text # -\b[Lo]orem [Ii]psum\ +\b[Ll]orem [Ii]psum\b # PR links left in the release notes \bhttps:\/\/github.com\/mondoohq\/.*\/pull\/\d* @@ -41,6 +40,16 @@ # s.b. Compliance Hub \s[Cc]ompliance hub\b +# +# Compliance Terms +# + +# s.b. SOC 2 +\bSOC2\b + +# s.b. ISO 270001 +\bISO270001\b + # # Industry Terms # @@ -336,6 +345,9 @@ # s.b. CodeStar \bCodestar\b +# s.b. AWS Config +\bAWS config\b + # s.b. Copilot \bCoPilot\b diff --git a/docs/mql/resources/aws-pack/aws.config.md b/docs/mql/resources/aws-pack/aws.config.md index 0f87544d..e096c3a0 100644 --- a/docs/mql/resources/aws-pack/aws.config.md +++ b/docs/mql/resources/aws-pack/aws.config.md @@ -3,7 +3,7 @@ title: aws.config id: aws.config sidebar_label: aws.config displayed_sidebar: MQL -description: AWS config +description: AWS Config --- # aws.config @@ -14,7 +14,7 @@ description: AWS config **Description** -AWS config +AWS Config Use the `aws.config` resource to assess the configuration of the AWS Config service. The resource provides the `.recorders` field, which returns a list of `aws.config.recorder` resources representing all AWS Config recorders configured across all enabled regions, as well as the `.rules` field, which returns a list of `aws.config.rule` resources representing all AWS Config rules configured across all enabled regions in the account. diff --git a/docs/mql/resources/aws-pack/aws.config.recorder.md b/docs/mql/resources/aws-pack/aws.config.recorder.md index 353682c8..c18df317 100644 --- a/docs/mql/resources/aws-pack/aws.config.recorder.md +++ b/docs/mql/resources/aws-pack/aws.config.recorder.md @@ -3,7 +3,7 @@ title: aws.config.recorder id: aws.config.recorder sidebar_label: aws.config.recorder displayed_sidebar: MQL -description: AWS config recorder +description: AWS Config recorder --- # aws.config.recorder @@ -14,7 +14,7 @@ description: AWS config recorder **Description** -AWS config recorder +AWS Config recorder The `aws.config.recorder` resource provides fields representing an individual AWS Config recorder configured within an account. For usage, read the `aws.config` resource documentation. diff --git a/docs/mql/resources/aws-pack/aws.config.rule.md b/docs/mql/resources/aws-pack/aws.config.rule.md index a6b89628..f76a8385 100644 --- a/docs/mql/resources/aws-pack/aws.config.rule.md +++ b/docs/mql/resources/aws-pack/aws.config.rule.md @@ -3,7 +3,7 @@ title: aws.config.rule id: aws.config.rule sidebar_label: aws.config.rule displayed_sidebar: MQL -description: AWS config rule +description: AWS Config rule --- # aws.config.rule @@ -14,7 +14,7 @@ description: AWS config rule **Description** -AWS config rule +AWS Config rule The `aws.config.rule` resource provides fields representing an individual AWS Config rule configured within an account. For usage, read the `aws.config` resource documentation. diff --git a/docs/platform/start/organize/spaces.md b/docs/platform/start/organize/spaces.md index 9b49b282..f5514a47 100644 --- a/docs/platform/start/organize/spaces.md +++ b/docs/platform/start/organize/spaces.md @@ -12,7 +12,7 @@ A space is a collection of assets, policies, and reports that you manage togethe Spaces allow for a great degree of flexibility in managing shared resources. For example, teams may organize their deployments in spaces, setting their own policies and quickly gaining insights for everything they manage. -Furthermore, users may decide to configure separate spaces for development, staging, and production environments, or specific compliance requirements such as HIPAA or SOC2. +Furthermore, users may decide to configure separate spaces for development, staging, and production environments, or specific compliance requirements such as HIPAA or SOC 2. ## Manage spaces diff --git a/releases/2022-07-19-mondoo-6.7-is-out.md b/releases/2022-07-19-mondoo-6.7-is-out.md index d9e0d980..29aeb32c 100644 --- a/releases/2022-07-19-mondoo-6.7-is-out.md +++ b/releases/2022-07-19-mondoo-6.7-is-out.md @@ -41,7 +41,7 @@ Get this release: [Installation Docs](/cnspec/) | [Package Downloads](https://re **Problem:** You want to secure your Debian- and Red Hat-based Linux systems according to the Federal Office for Information Security (BSI) and pass a BSI audit. -**Solution:** Mondoo now includes a new `BSI SYS.1.3 Linux and Unix Servers by Mondoo` policy. BSI is a German standard for IT security, similar to SOC2 in the US. We are releasing this first policy with support for Debian- and Red Hat-based Linux to ensure that systems are correctly hardened according to the BSI requirements. This is especially helpful for users in the DACH region overall and Germany in particular. +**Solution:** Mondoo now includes a new `BSI SYS.1.3 Linux and Unix Servers by Mondoo` policy. BSI is a German standard for IT security, similar to SOC 2 in the US. We are releasing this first policy with support for Debian- and Red Hat-based Linux to ensure that systems are correctly hardened according to the BSI requirements. This is especially helpful for users in the DACH region overall and Germany in particular. ### macOS Ventura (13) support diff --git a/releases/2022-09-27-mondoo-6.17-is-out.md b/releases/2022-09-27-mondoo-6.17-is-out.md index 05e03b7f..eb1af05b 100644 --- a/releases/2022-09-27-mondoo-6.17-is-out.md +++ b/releases/2022-09-27-mondoo-6.17-is-out.md @@ -29,7 +29,7 @@ Get this release: [Installation Docs](/cnspec/) | [Package Downloads](https://re **Problem:** You want to secure your Windows systems according to the Federal Office for Information Security (BSI) and pass a BSI audit. -**Solution:** Mondoo now includes a new `BSI SYS.1.2 Windows Server 2016/2019/2022` policy. BSI is a German standard for IT security, similar to SOC2 in the US. This new policy complements our existing `BSI SYS.1.3 Linux and Unix Servers` policy for Debian- and Red Hat-based Linux systems. These policies are especially helpful for users in the DACH region and Germany in particular. +**Solution:** Mondoo now includes a new `BSI SYS.1.2 Windows Server 2016/2019/2022` policy. BSI is a German standard for IT security, similar to SOC 2 in the US. This new policy complements our existing `BSI SYS.1.3 Linux and Unix Servers` policy for Debian- and Red Hat-based Linux systems. These policies are especially helpful for users in the DACH region and Germany in particular. ![BSI Windows Policy](/img/releases/2022-09-27-mondoo-6.17-is-out/bsi.png) diff --git a/releases/2023-09-19-mondoo-8.28-is-out.md b/releases/2023-09-19-mondoo-8.28-is-out.md index 61b68266..ba3e4f91 100644 --- a/releases/2023-09-19-mondoo-8.28-is-out.md +++ b/releases/2023-09-19-mondoo-8.28-is-out.md @@ -43,7 +43,7 @@ The `aws.lambda.function` MQL resource now includes a new `runtime` field that d ## 🐛 BUG FIXES AND UPDATES - Fix a panic viewing some asset data in the asset resources tab. -- Add more user-friendly control titles to the SOC2 compliance framework. +- Add more user-friendly control titles to the SOC 2 compliance framework. - Show 0% check completion instead of “Unknown” when appropriate in compliance controls. - Automatically close the search box when results display. - Fix hardware systems incorrectly identifying as Azure VMs in asset configuration data. diff --git a/releases/2023-10-24-mondoo-9.3-is-out.md b/releases/2023-10-24-mondoo-9.3-is-out.md index 259e2c0c..9178af1f 100644 --- a/releases/2023-10-24-mondoo-9.3-is-out.md +++ b/releases/2023-10-24-mondoo-9.3-is-out.md @@ -93,5 +93,5 @@ Resources and Fields used: - Don't include the vulnerabilities section on the CLI for unsupported platforms. - Update the policy generated by the `cnspec bundle init` command to be cnspec 9.x compatible. - Improve the query results in the Mondoo Kubernetes Cluster and Workload Security policy and remove unnecessary data queries. -- Improve SOC2 policy check mappings for CIS policies. +- Improve SOC 2 policy check mappings for CIS policies. - Add support for macOS systems in the Platform End of Life policy. diff --git a/releases/2023-11-07-mondoo-9.6-is-out.md b/releases/2023-11-07-mondoo-9.6-is-out.md index 1489c2f6..ec5ebb37 100644 --- a/releases/2023-11-07-mondoo-9.6-is-out.md +++ b/releases/2023-11-07-mondoo-9.6-is-out.md @@ -108,7 +108,7 @@ Running `cnspec status` now prints the version number of the latest available re - Fix a failure when scanning AWS EBS volumes. - Fix incorrect runtime information being reported for AWS assets. - Fix service checks to work on masked systemd services and services that end in `.service` -- Expand SOC2 policy coverage +- Expand SOC 2 policy coverage - Improve data returned from the Azure Inventory Query Pack. - Improve the reliability of queries in the CIS AKS Benchmarks policies. - Wrap instead of cutting off long property values in the registry. diff --git a/releases/2023-11-21-mondoo-9.8-is-out.md b/releases/2023-11-21-mondoo-9.8-is-out.md index e276aeb7..3cb9ec79 100644 --- a/releases/2023-11-21-mondoo-9.8-is-out.md +++ b/releases/2023-11-21-mondoo-9.8-is-out.md @@ -123,7 +123,7 @@ Mondoo includes the latest EOL dates for distributions so you can ensure your sy ## 🐛 BUG FIXES AND UPDATES - Fix the coloring of code blocks in print mode. -- Rename SOC2 to SOC 2 in policies and frameworks. +- Rename SOC 2 to SOC 2 in policies and frameworks. - Improved reliability in Windows CIS security checks. - Improve SOC 2 security check mapping. - Fix select all checkbox behavior in compliance frameworks to only select the visible controls on the page.