GRC Store

Search / finos-ccc/ccc.vpc.cp / v2026.06-rc3

Release · v2026.06-rc3

FINOS-CCC/CCC.VPC.CP Capability Catalog

FINOS-CCC/CCC.VPC.CP

Capabilities for Virtual Private Cloud technologies, as defined by the FINOS Common Cloud Controls project.

Published by FINOS Common Cloud Controls

Install

OCI v1.1
$grcli unpack --repository finos-ccc/ccc.vpc.cp --tag v2026.06-rc3
Coordinate
oci.grc.store/finos-ccc/ccc.vpc.cp:v2026.06-rc3
Manifest digest
sha256:4c3722b11c747fad8888701e4af8ebcd5a455ddd531bd18565233bb29eca8e58

Provenance

1 layer
Digest Media type Size
b20e8bf74039… application/vnd.gemara.artifact.v1+yaml 5.4 KiB
Bundle config blob 
{
  "bundle-version": "1.0",
  "gemara-version": "v1.2.0",
  "metadata": {
    "provenance": {
      "buildDefinition": {
        "buildType": "https://grc.store/grcli/buildtype/v0",
        "externalParameters": {
          "artifact": {
            "id": "CCC.VPC.CP",
            "type": "CapabilityCatalog"
          },
          "target": {
            "registry": "oci.grc.store",
            "repository": "finos-ccc/ccc.vpc.cp",
            "tag": "v2026.06-rc3"
          }
        },
        "internalParameters": {
          "CI": "true",
          "GITHUB_ACTIONS": "true",
          "GITHUB_ACTOR": "eddie-knight",
          "GITHUB_REF": "refs/heads/main",
          "GITHUB_REPOSITORY": "eddie-knight/common-cloud-controls",
          "GITHUB_RUN_ATTEMPT": "2",
          "GITHUB_RUN_ID": "26768391088",
          "GITHUB_SHA": "24594e28430c12318cacffe7fdda6a3ea272d975",
          "GITHUB_WORKFLOW": "Batch Release All Catalogs",
          "RUNNER_OS": "Linux"
        },
        "resolvedDependencies": [
          {
            "name": "artifacts/networking/vpc/capabilities.yaml",
            "uri": "file://artifacts/networking/vpc/capabilities.yaml",
            "digest": {
              "sha256": "b20e8bf74039bdf1f6feee857826e8f91862930be73958dabc59bf1372c1efef"
            }
          },
          {
            "name": "source",
            "uri": "git+https://github.com/eddie-knight/common-cloud-controls@24594e28430c12318cacffe7fdda6a3ea272d975",
            "digest": {
              "gitCommit": "24594e28430c12318cacffe7fdda6a3ea272d975"
            }
          }
        ]
      },
      "runDetails": {
        "builder": {
          "id": "https://github.com/eddie-knight/common-cloud-controls/actions/runs/26768391088",
          "version": {
            "go": "go1.25.0",
            "go-arch": "amd64",
            "go-os": "linux",
            "grcli": "v0.2.2"
          }
        },
        "metadata": {
          "invocationId": "26768391088-2",
          "startedOn": "2026-06-01T16:45:26.204708082Z",
          "finishedOn": "2026-06-01T16:45:26.321758443Z"
        },
        "byproducts": [
          {
            "name": "capabilities.yaml",
            "digest": {
              "sha256": "b20e8bf74039bdf1f6feee857826e8f91862930be73958dabc59bf1372c1efef"
            }
          }
        ]
      }
    }
  },
  "artifacts": [
    {
      "name": "capabilities.yaml",
      "type": "CapabilityCatalog",
      "id": "CCC.VPC.CP",
      "role": "artifact"
    }
  ]
}

CCC Virtual Private Cloud Capabilities

Capabilities for Virtual Private Cloud technologies, as defined by the FINOS Common Cloud Controls project.

ID
CCC.VPC.CP
Version
v2026.06-rc3
Gemara version
v1.2.0
Author
FINOS Common Cloud Controls

Networking

The Networking group covers entries related to network infrastructure, connectivity, and traffic management. This includes virtual networks, subnets, load balancing, DNS, routing, peering, and network-level access controls.

  1. CCC.VPC.CP01 Isolated Custom Network Creation

    Ability to create a virtual network that is isolated from other users of the same public cloud.

  2. CCC.VPC.CP02 IPv4 CIDR Block

    Ability to specify a IPv4 CIDR block to the virtual network.

  3. CCC.VPC.CP03 IPv6 CIDR Block

    Ability to specify a IPv6 CIDR block to the virtual network.

  4. CCC.VPC.CP04 Public Subnet Creation

    Ability to create a subnet that allows resources within the subnet to communicate with the public internet.

  5. CCC.VPC.CP05 Private Subnet Creation

    Ability to create a subnet that resources within the subnet cannot directly access the public internet.

  6. CCC.VPC.CP06 Multiple Availability Zones for Subnets

    Ability to spread the subnets in more than one availability zones.

  7. CCC.VPC.CP07 Routing Control

    Ability to control traffic within the VPC and between the VPC and the internet or on-premises networks using customizable route tables.

  8. CCC.VPC.CP08 Connectivity Options - Internet Gateway

    Enables direct internet access for resources within a VPC.

  9. CCC.VPC.CP09 Connectivity Options - NAT Gateways

    Allows instances in private subnets to access the internet without exposing them to inbound internet traffic.

  10. CCC.VPC.CP10 Connectivity Options - Private Connection

    Dedicated, private, high-speed connections between on-premises networks and cloud VPC.

  11. CCC.VPC.CP11 Connectivity Options - VPC Peering

    Establishing a private connection between two VPCs to communicate seamlessly.

  12. CCC.VPC.CP12 Connectivity Options - Transit Gateways

    A hub-and-spoke model for connecting multiple VPCs and on-premises networks.

  13. CCC.VPC.CP13 Connectivity Options - Site-to-site VPN

    Provides an encrypted connection over the internet between a VPC and an on-premises network.

  14. CCC.VPC.CP14 Built-in DNS Resolution

    Resolves hostnames to IP addresses for instances within the VPC allowing instances to communicate using hostnames instead of IP addresses.

  15. CCC.VPC.CP15 Built-in DHCP Resolution

    Automatically assign IP addresses, subnet masks, default gateways and other network configurations to instances within the VPC.

  16. CCC.VPC.CP17 VPC Endpoints

    Ability to allow secure, private connectivity between resources within a VPC and other services without the need for a public internet.

Observability

The Observability group covers entries related to logging, monitoring, metrics, alerting, and event publication. This includes audit trail integrity, enumeration detection, and protection against tampering or unauthorized access to operational telemetry.

  1. CCC.VPC.CP16 Flow Logs

    Ability to capture information about the IP traffic going through the VPC.