GRC Store

Search / openssf/osps-baseline-to-iso-18974 / v0.0.0-dev-671f23f

Release · v0.0.0-dev-671f23f

openssf/osps-baseline-to-iso-18974 Mapping Document

openssf/osps-baseline-to-iso-18974

Cross-walk from the Open Source Project Security (OSPS) Baseline controls to ISO/IEC 18974. Each mapping asserts a "relates-to" relationship; strength, confidence-level, and rationale are left unset and should be added as the mappings are individually reviewed.

Published by OSPS Baseline Authors

Install

OCI v1.1
$grcli unpack --repository openssf/osps-baseline-to-iso-18974 --tag v0.0.0-dev-671f23f
Coordinate
oci.grc.store/openssf/osps-baseline-to-iso-18974:v0.0.0-dev-671f23f
Manifest digest
sha256:70cd15cb9fde29c69629752f2e026f94904dc2ca277f5692bc5899021fa1b389

Provenance

1 layer
Digest Media type Size
23d4a4eda2dd… application/vnd.gemara.artifact.v1+yaml 4.0 KiB
Bundle config blob 
{
  "bundle-version": "1.0",
  "gemara-version": "1.2.0",
  "metadata": {
    "provenance": {
      "buildDefinition": {
        "buildType": "https://grc.store/grcli/buildtype/v0",
        "externalParameters": {
          "artifact": {
            "id": "osps-baseline-to-iso-18974",
            "type": "MappingDocument"
          },
          "target": {
            "registry": "oci.grc.store",
            "repository": "openssf/osps-baseline-to-iso-18974",
            "tag": "v0.0.0-dev-671f23f"
          }
        },
        "internalParameters": {
          "CI": "true",
          "GITHUB_ACTIONS": "true",
          "GITHUB_ACTOR": "eddie-knight",
          "GITHUB_REF": "refs/heads/main",
          "GITHUB_REPOSITORY": "eddie-knight/security-baseline",
          "GITHUB_RUN_ATTEMPT": "1",
          "GITHUB_RUN_ID": "26617016306",
          "GITHUB_SHA": "671f23f015e4b0f6108ab8f82f0eba7f89d55dce",
          "GITHUB_WORKFLOW": "Publish to grc.store",
          "RUNNER_OS": "Linux"
        },
        "resolvedDependencies": [
          {
            "name": "/home/runner/work/_temp/staged/osps-to-iso-18974.yaml",
            "uri": "file:///home/runner/work/_temp/staged/osps-to-iso-18974.yaml",
            "digest": {
              "sha256": "23d4a4eda2dd7b96ff5c30a57af9b682f645eead96a7d699bbb40036e4f16c9b"
            }
          },
          {
            "name": "source",
            "uri": "git+https://github.com/eddie-knight/security-baseline@671f23f015e4b0f6108ab8f82f0eba7f89d55dce",
            "digest": {
              "gitCommit": "671f23f015e4b0f6108ab8f82f0eba7f89d55dce"
            }
          }
        ]
      },
      "runDetails": {
        "builder": {
          "id": "https://github.com/eddie-knight/security-baseline/actions/runs/26617016306",
          "version": {
            "go": "go1.25.0",
            "go-arch": "amd64",
            "go-os": "linux",
            "grcli": "v0.2.2"
          }
        },
        "metadata": {
          "invocationId": "26617016306-1",
          "startedOn": "2026-05-29T03:57:19.404676408Z",
          "finishedOn": "2026-05-29T03:57:19.49092424Z"
        },
        "byproducts": [
          {
            "name": "osps-to-iso-18974.yaml",
            "digest": {
              "sha256": "23d4a4eda2dd7b96ff5c30a57af9b682f645eead96a7d699bbb40036e4f16c9b"
            }
          }
        ]
      }
    }
  },
  "artifacts": [
    {
      "name": "osps-to-iso-18974.yaml",
      "type": "MappingDocument",
      "id": "osps-baseline-to-iso-18974",
      "role": "artifact"
    }
  ]
}

Renderer not enabled

A renderer for MappingDocument is not yet supported in this UI. The artifact is published and pullable via the coordinate above.