Framework Coverage Matrix
This matrix shows how uploaded artifacts map to frameworks in our reports, ensuring comprehensive compliance coverage.
Artifact → Framework Mapping
| Artifact | Typical Issues | Frameworks |
|---|---|---|
| TLS/PKI (cert dumps) | TLS.EXPIRED_CERT; TLS.WEAK_SIGALG; TLS.SMALL_KEY |
CISNIST 800-53 (SC-12/13)CNSA 2.0 |
| SBOM/CBOM | CRYPTO.SHA1; CRYPTO.MD5; PQC.MIGRATION.GAP |
CISCNSA 2.0FIPS 203/204/205 |
| Configs (YAML/JSON) | CONFIG.K8S.PRIVILEGED; ALLOW_PRIV_ESC; TLS.LEGACY |
CISNIST 800-53 (CM-6, SC-13) |
| Logs | LOGS.AUTH_FAILURE_SPIKE |
CISNIST 800-53 (AU-6) |
| AI transcripts | AI.PROMPT_INJECTION (signals only) |
MITRE ATLASNIST AI RMF |
Issue → Framework References
| Issue Code | Framework Refs |
|---|---|
TLS.EXPIRED_CERT | CIS 4.4NIST SC-12CNSA 2.0 |
TLS.WEAK_SIGALG | CIS 4.1NIST SC-13CNSA 2.0 |
TLS.SMALL_KEY | CIS 4.1NIST SC-12 |
CRYPTO.SHA1 | CIS 4.1NIST SC-12 |
CRYPTO.MD5 | CIS 4.1NIST SC-12 |
CONFIG.K8S.PRIVILEGED | CIS 6.3NIST CM-6 |
CONFIG.K8S.ALLOW_PRIV_ESC | CIS 6.3NIST CM-6 |
CONFIG.TLS.LEGACY_PROTO | NIST SC-13 |
IAM.NO_MFA | CIS 6.5NIST IA-2 |
AI.PROMPT_INJECTION | MITRE ATLAS TA0001NIST AI RMF |
PQC.MIGRATION.GAP | CNSA 2.0FIPS 203/204/205 |
LOGS.AUTH_FAILURE_SPIKE | CIS 5.1NIST AU-6 |
Note: We present multiple frameworks (e.g., "CIS by GPT; NIST by Anthropic") as historical reference with date and uncertainty; it is not treated as a current probability.