Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update PCI-DSS control file for version 4.0.1 #12435

Merged
merged 15 commits into from
Sep 27, 2024
Merged

Update PCI-DSS control file for version 4.0.1 #12435

merged 15 commits into from
Sep 27, 2024

Conversation

marcusburghardt
Copy link
Member

Description:

PCI-DSS released a new version of PCI-DSS policy in June-2024.
The changes are more about wording and clarification, without any technical impact on rules.

Rationale:

  • PCI-DSS updated

Review Hints:

My recommendation is to check the Summary of Changes document and the individual commits.
It is also helpful to open the two versions to compare the changes if the changelog is not enough to give more context.

@marcusburghardt
Update PCI-DSS version in control file
6606c67 
A new version was released on 2025-06 including some wording updates.
No requirement was included, removed or technically changed.

Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Replace retained by stored in 3.3.1
7173ae2 
Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Update requirement 3.3.2
1fd3441 
Clarificatin about "a legitimate and documented business need."

Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Update description of requirement 3.5.1.1
7dd40a3 
Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Simplify description of requirement 5.4.1
da9e46a 
Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Update description in requrement 6.3.3
6b29f3a 
Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Update description of requirement 6.4.3
c9f4116 
The last bullet point was slightly updated. This commit also includes a
formatting issue (no text change) in 6.4.1.

Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Replace account by ID in requirement 8.2.2
9b251fe 
Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Update title of requirement 8.4.2
5f3c2dd 
Clarify that the requirement is for all "non-console" access into the
CDE.

Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Update title in requirement 8.4.3
6f9c860 
Clarify that this requirement applies to "remote access" rather than
the confusing term "remote network access".

Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Minor update in title of requirement 9.3.4
52eb338 
Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Increment title in requirement 11.3.1.1
8ade797 
Incremented to "high-risk vulnerabilities or critical vulnerabilities."

Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Update title of requirement 12.3.1
8284f8e 
Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Update title and description in requirement 12.9.1
e798532 
Intended for clarification.

Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt
Update PCI-DSS profiles for RHEL
1d4a11c 
Signed-off-by: Marcus Burghardt <[email protected]>
@marcusburghardt marcusburghardt added RHEL Red Hat Enterprise Linux product related. Highlight This PR/Issue should make it to the featured changelog. Update Profile Issues or pull requests related to Profiles updates. pci-dss labels Sep 27, 2024
@marcusburghardt marcusburghardt added this to the 0.1.75 milestone Sep 27, 2024
@marcusburghardt marcusburghardt requested a review from a team as a code owner September 27, 2024 10:56
@github-actions GitHub Actions
Copy link

Start a new ephemeral environment with changes proposed in this pull request:

Fedora Environment
Open in Gitpod

Oracle Linux 8 Environment
Open in Gitpod

@marcusburghardt marcusburghardt changed the title Update PCI-DSS control file for 4.0.1 Update PCI-DSS control file for version 4.0.1 Sep 27, 2024
@github-actions GitHub Actions
Copy link

🤖 A k8s content image for this PR is available at:
ghcr.io/complianceascode/k8scontent:12435
This image was built from commit: 1d4a11c

Click here to see how to deploy it

If you alread have Compliance Operator deployed:
utils/build_ds_container.py -i ghcr.io/complianceascode/k8scontent:12435

Otherwise deploy the content and operator together by checking out ComplianceAsCode/compliance-operator and:
CONTENT_IMAGE=ghcr.io/complianceascode/k8scontent:12435 make deploy-local

@codeclimate CodeClimate
Copy link

codeclimate bot commented Sep 27, 2024

Code Climate has analyzed commit 1d4a11c and detected 0 issues on this pull request.

The test coverage on the diff in this pull request is 100.0% (50% is the threshold).

This pull request will bring the total coverage in the repository to 59.5% (0.0% change).

View more on Code Climate.

@Mab879 Mab879 self-assigned this Sep 27, 2024
Mab879
Mab879 approved these changes Sep 27, 2024
View reviewed changes
Copy link
Member

@Mab879 Mab879 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks.

@Mab879 Mab879 merged commit fee8a5c into ComplianceAsCode:master Sep 27, 2024
100 checks passed
@marcusburghardt marcusburghardt deleted the pcidss_401 branch September 27, 2024 14:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Mab879 Mab879 Mab879 approved these changes

Assignees

@Mab879 Mab879

Labels
Highlight This PR/Issue should make it to the featured changelog. pci-dss RHEL Red Hat Enterprise Linux product related. Update Profile Issues or pull requests related to Profiles updates.
Projects
None yet
Milestone
0.1.75
Development

Successfully merging this pull request may close these issues.
2 participants
@marcusburghardt @Mab879