Improved the openssl FIPs checks to be more comprehensive, as well as fixed some of the language around other checks.
What's Changed
- octo-sts policy: fix subject org by @stevebeattie in #26
- chore: enable dependabot to keep github actions updated by @stevebeattie in #27
- allowed signatures: allow github webui based commits by @stevebeattie in #30
- Bump the actions group with 3 updates by @dependabot[bot] in #28
- Bump sigstore/cosign-installer from 3.9.2 to 4.0.0 by @dependabot[bot] in #29
- Bump the actions group across 1 directory with 4 updates by @dependabot[bot] in #35
- update-ca-cert workflow: fix version ref to create-pull-request action by @stevebeattie in #36
- Update README to reflect SRG profile changes by @some-natalie in #37
- Bump actions/checkout from 5.0.0 to 6.0.1 by @dependabot[bot] in #39
- Bump step-security/harden-runner from 2.13.3 to 2.14.0 in the actions group across 1 directory by @dependabot[bot] in #40
- openssl checks: ensure that openssl.cnf contain expected elements by @stevebeattie in #41
- Fix validation errors and incorrect check by @stevebeattie in #43
- add simple make targets for oscap xccdf validate by @stevebeattie in #44
- fix: make datastreams and combined xml match by @stevebeattie in #45
New Contributors
- @dependabot[bot] made their first contribution in #28
- @some-natalie made their first contribution in #37
Full Changelog: v3.2.7...v3.2.8
Contributors
stevebeattie, some-natalie, and dependabot