Skip to content

Commit

Permalink
Update src/validations/constraints/fedramp-external-constraints.xml
Browse files Browse the repository at this point in the history 
Co-authored-by: A.J. Stein <[email protected]>
  • Loading branch information
@wandmagic @aj-stein-gsa
wandmagic and aj-stein-gsa authored Oct 30, 2024
1 parent ba40cd2 commit 8a2a769
Showing 1 changed file with 4 additions and 2 deletions.
6 changes: 4 additions & 2 deletions src/validations/constraints/fedramp-external-constraints.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -161,10 +161,12 @@
<message>A FedRAMP SSP must define a role for the point of contact for an information system security officer.</message>
</expect>
<expect id="party-has-responsibility" target="." test="every $person in //party[@type='person'] satisfies exists(.//responsible-party[party-uuid = $person/@uuid])" level="WARNING">
<message>Every party in a FedRAMP SSP must be responsible for a role.</message>
<prop namespace="https://docs.oasis-open.org/sarif/sarif/v2.1.0"name="help-url" value="https://automate.fedramp.gov/documentation/general-concepts/oscal-metadata/#using-responsible-party-assemblies">
<message>Every party in a FedRAMP SSP MUST be responsible for a role.</message>
</expect>
<expect id="party-has-one-responsibility" target="." test="every $person in //party[@type='person'] satisfies count(.//responsible-party[party-uuid = $person/@uuid]) eq 1" level="WARNING">
<message>Every party in a FedRAMP SSP must be responsible for only one role.</message>
<prop namespace="https://docs.oasis-open.org/sarif/sarif/v2.1.0"name="help-url" value="https://automate.fedramp.gov/documentation/general-concepts/oscal-metadata/#using-responsible-party-assemblies">
<message>Every party in a FedRAMP SSP MUST be responsible for only one role.</message>
</expect>
</constraints>
</context>
Expand Down

0 comments on commit 8a2a769

Please sign in to comment.