Improve OpenSCAP support in Uyuni
a project by admehmood
Updated over 2 years ago. 1 hackers ♥️. 2 followers.

Project Description

SUSE Manager and Uyuni do support OpenSCAP and user can make use of it to keep the compliance status in check. However, when it comes to usability, there are things that could be improved.

Goal for this Hackweek

1. Step

  • Remove requirement of clients having SCAP content, but rather all the content will stay at server and will be transferred to client temporary at the time of scan.

2. Step

  • Improve the UI to list all the scap content files as select list so user can easily select the content
  • Then based on previous step, select the profiles available in selected data stream from the last step

3. Step

  • Add the possibility to upload the tailoring file on the server
  • Extend the UI in 2.Step to make it possible for the user to select the uploaded tailoring file
  • Based on selected tailoring file, select the profile

4. Step

  • Adjust the salt states if needed

5. Step

  • Parse the results, especially the remediations as bash script
  • Apply the remediation using salt right from the scap feature UI

Bonus

  • Add taskomatic job to download scap content from SUSE server once per day to make use of '--fetch-remote-resources F

Resources

  • https://github.com/uyuni-project/uyuni
  • https://documentation.suse.com/suma/4.3/en/suse-manager/administration/openscap.html

Skills

  • Java
  • React
  • TypeScript
  • OpenSCAP
  • Database

Join this project

Looking for hackers with the skills:

uyuni java javascript openscap complianceascode react typescript susemanager

This project is part of:

Hack Week 22

Activity

  • over 2 years ago: ygutierrez started this project.
  • over 2 years ago: j_renner liked this project.
  • over 2 years ago: admehmood added keyword "susemanager" to this project.
  • over 2 years ago: admehmood added keyword "react" to this project.
  • over 2 years ago: admehmood added keyword "typescript" to this project.
  • over 2 years ago: admehmood added keyword "java" to this project.
  • over 2 years ago: admehmood added keyword "javascript" to this project.
  • over 2 years ago: admehmood added keyword "openscap" to this project.
  • over 2 years ago: admehmood added keyword "complianceascode" to this project.
  • over 2 years ago: admehmood added keyword "uyuni" to this project.
  • over 2 years ago: admehmood originated this project.


    • Comments

    Be the first to comment!

    Similar Projects

    Flaky Tests AI Finder for Uyuni and MLM Test Suites by oscar-barrios

    Description

    Our current Grafana dashboards provide a great overview of test suite health, including a panel for "Top failed tests." However, identifying which of these failures are due to legitimate bugs versus intermittent "flaky tests" is a manual, time-consuming process. These flaky tests erode trust in our test suites and slow down development.

    This project aims to build a simple but powerful Python script that automates flaky test detection. The script will directly query our Prometheus instance for the historical data of each failed test, using the jenkins_build_test_case_failure_age metric. It will then format this data and send it to the Gemini API with a carefully crafted prompt, asking it to identify which tests show a flaky pattern.

    The final output will be a clean JSON list of the most probable flaky tests, which can then be used to populate a new "Top Flaky Tests" panel in our existing Grafana test suite dashboard.

    Goals

    By the end of Hack Week, we aim to have a single, working Python script that:

    1. Connects to Prometheus and executes a query to fetch detailed test failure history.
    2. Processes the raw data into a format suitable for the Gemini API.
    3. Successfully calls the Gemini API with the data and a clear prompt.
    4. Parses the AI's response to extract a simple list of flaky tests.
    5. Saves the list to a JSON file that can be displayed in Grafana.
    6. New panel in our Dashboard listing the Flaky tests

    Resources

    Move Uyuni Test Framework from Selenium to Playwright + AI by oscar-barrios

    Description

    This project aims to migrate the existing Uyuni Test Framework from Selenium to Playwright. The move will improve the stability, speed, and maintainability of our end-to-end tests by leveraging Playwright's modern features. We'll be rewriting the current Selenium code in Ruby to Playwright code in TypeScript, which includes updating the test framework runner, step definitions, and configurations. This is also necessary because we're moving from Cucumber Ruby to CucumberJS.

    If you're still curious about the AI in the title, it was just a way to grab your attention. Thanks for your understanding.

    Goals

    • Migrate Core tests including Onboarding of clients
    • Improve test reliabillity: Measure and confirm a significant reduction of flakynes.
    • Implement a robust framework: Establish a well-structured and reusable Playwright test framework using the CucumberJS

    Resources

    Kudos aka openSUSE Recognition Platform by lkocman

    Description

    I started the Kudos application shortly after Leap 16.0 to create a simple, friendly way to recognize people for their work and contributions to openSUSE. There’s so much more to our community than just submitting requests in OBS or gitea we have translations (not only in Weblate), wiki edits, forum and social media moderation, infrastructure maintenance, booth participation, talks, manual testing, openQA test suites, and more!

    Goals

    • Kudos under github.com/openSUSE/kudos with build previews aka netlify

    • Have a kudos.opensuse.org instance running in production

    • Build an easy-to-contribute recognition platform for the openSUSE communit a place where everyone can send and receive appreciation for their work, across all areas of contribution.

    • In the future, we could even explore reward options such as vouchers for t-shirts or other community swag, small tokens of appreciation to make recognition more tangible.

    Resources

    Move Uyuni Test Framework from Selenium to Playwright + AI by oscar-barrios

    Description

    This project aims to migrate the existing Uyuni Test Framework from Selenium to Playwright. The move will improve the stability, speed, and maintainability of our end-to-end tests by leveraging Playwright's modern features. We'll be rewriting the current Selenium code in Ruby to Playwright code in TypeScript, which includes updating the test framework runner, step definitions, and configurations. This is also necessary because we're moving from Cucumber Ruby to CucumberJS.

    If you're still curious about the AI in the title, it was just a way to grab your attention. Thanks for your understanding.

    Goals

    • Migrate Core tests including Onboarding of clients
    • Improve test reliabillity: Measure and confirm a significant reduction of flakynes.
    • Implement a robust framework: Establish a well-structured and reusable Playwright test framework using the CucumberJS

    Resources