Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update macOS 13 & 14 CIS Benchmarks #19970

Open
6 tasks
noahtalerman opened this issue Jun 24, 2024 · 4 comments
Open
6 tasks

Update macOS 13 & 14 CIS Benchmarks #19970

noahtalerman opened this issue Jun 24, 2024 · 4 comments
Assignees
@defensivedepth
Labels
#g-endpoint-ops Endpoint ops product group :release Ready to write code. Scheduled in a release. See "Making changes" in handbook. story A user story defining an entire feature

Comments

@noahtalerman
Copy link
Member

noahtalerman commented Jun 24, 2024
edited
Loading

Goal

User story
As an endpoint operator,
I want Fleet to support the latest macOS 13 (v2.1.0) & 14 (v1.1.0) CIS Benchmarks
so that I can be sure I'm using the latest version of the benchmarks to meet compliance needs.

Context

Changes

Product

  • CIS policies changes: Update the macOS 13 CIS policies to cover v2.1.0. Update macOS 14 to cover v1.1.0.
  • Outdated documentation changes: Update the macOS 13 and macOS 14 READMEs to call out that Fleet's policies are written using v2.1.0 and v1.1.0 respectively.

Engineering

  • Database schema migrations: TODO
  • Load testing: TODO

ℹ️  Please read this issue carefully and understand it. Pay special attention to UI wireframes, especially "dev notes".

QA

Risk assessment

  • Requires load testing: TODO
  • Risk level: Low / High TODO
  • Risk description: TODO

Manual testing steps

  1. Step 1
  2. Step 2
  3. Step 3

Testing notes

Confirmation

  1. Engineer (@____): Added comment to user story confirming successful completion of QA.
  2. QA (@____): Added comment to user story confirming successful completion of QA.
@noahtalerman noahtalerman added the story A user story defining an entire feature label Jun 24, 2024
@noahtalerman noahtalerman changed the title Update macOS 13 & 14 CIS Benchmarks to v1.1.0 Update macOS 13 & 14 CIS Benchmarks Jul 29, 2024
@noahtalerman noahtalerman added :product Product Design department (shows up on 🦢 Drafting board) #g-endpoint-ops Endpoint ops product group labels Jul 29, 2024
@noahtalerman
Copy link
Member Author

Hey @sharon-fdm, heads up that CIS has now shipped v2.1.0 for macOS 13 and v1.1.0 for macOS 14.

I pulled this story onto the release board and assigned you.

@sharon-fdm
Copy link
Collaborator

@noahtalerman, got it.
I will download and start the process with Josh.

@sharon-fdm sharon-fdm added :release Ready to write code. Scheduled in a release. See "Making changes" in handbook. and removed :product Product Design department (shows up on 🦢 Drafting board) labels Aug 5, 2024
@sharon-fdm sharon-fdm added this to the 4.56.0-tentative milestone Aug 8, 2024
@spokanemac spokanemac mentioned this issue Aug 21, 2024
Closed
1 task
@defensivedepth
Copy link
Collaborator

PR for 13: #21486
PR for 14: #21478

@sharon-fdm
Copy link
Collaborator

Thanks @defensivedepth !
I will review and, if all is good, will merge myself.

@sharon-fdm sharon-fdm modified the milestones: 4.56.0, 4.57.0-tentative Aug 26, 2024
@spokanemac spokanemac mentioned this issue Sep 16, 2024
Open
1 task
@sharon-fdm sharon-fdm removed this from the 4.57.0 milestone Sep 20, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@defensivedepth defensivedepth

Labels
#g-endpoint-ops Endpoint ops product group :release Ready to write code. Scheduled in a release. See "Making changes" in handbook. story A user story defining an entire feature
Milestone
No milestone
Development

No branches or pull requests
3 participants
@defensivedepth @noahtalerman @sharon-fdm