-
Epic
-
Resolution: Unresolved
-
Normal
-
None
-
None
-
remove-deprecated-cis-and-stig-profiles-co-1.8.0
-
Quality / Stability / Reliability
-
False
-
-
False
-
Not Selected
-
In Progress
-
CMP-3286 - Remove CIS 1.4.0, CIS 1.5.0, DISA STIG V1R1, and DISA STIG V2R1 profiles
-
14% To Do, 14% In Progress, 71% Done
Epic Goal
- Remove the deprecated profiles from the Compliance Operator so users move to the most recent versions of the CIS and DISA STIG profiles.
Why is this important?
- Signals that customers should be using the latest version of CIS and DISA STIG. Using the older versions is not recommended.
- Reduces support and maintenance cost by simplifying profiles
Acceptance Criteria
- The Compliance Operator no longer ships the CIS 1.4.0 profiles (ocp4-cis-1-4 and ocp4-cis-node-1-4) by default
- The Compliance Operator no longer ships the CIS 1.5.0 profiles (ocp4-cis-1-5 and ocp4-cis-node-1-5) by default
- The Compliance Operator no longer ships the DISA STIG V1R1 (ocp4-stig-v1r1, ocp4-stig-node-v1r1, and rhcos-stig-v1r1) by default
- The Compliance Operator no longer ships the DISA STIG V2R1 (ocp4-stig-v2r1, ocp4-stig-node-v2r1, and rhcos-stig-v2r1) by default
Dependencies (internal and external)
- None
Done Checklist
- CI - CI is running, tests are automated and merged.
- Release Enablement <link to Feature Enablement Presentation>
- DEV - Upstream code and tests merged: <link to meaningful PR or GitHub Issue>
- DEV - Upstream documentation merged: <link to meaningful PR or GitHub Issue>
- DEV - Downstream build attached to advisory: <link to errata>
- QE - Test plans in Polarion: <link or reference to Polarion>
- QE - Automated tests merged: <link or reference to automated tests>
- DOC - Downstream documentation merged: <link to meaningful PR>