Home
A STIG Manager CLI client that watches a path for test result files formatted as CKL or XCCDF and posts the results to a Collection.
The client is suitable for use as a service or daemon, in automated testing pipelines, or from the command line. Test result files discovered on the path or sub-paths are parsed and the parsed content is pushed to a timed cargo queue. If configured to do so, the queue worker creates new Assets as needed and updates STIG assignments. Reviews from the result files are then posted to the corresponding Asset.
- Node.js 14+ and npm
- Keycloak 11+ configured to issue tokens for the STIG Manager API.
- A Keycloak OpenID Connect client configured with a service account and appropriate scopes.
- STIG Manager API with a Collection grant of "Manage" for the client
See REQUIREMENTS for documentation.
$ npm install --global stigman-watcher
stigman-watcher [options]
Options can be set from the command line, from environment variables prefixed by WATCHER_, or from the contents of an .env file in the current directory.
See OPTIONS for documentation.
$ stigman-watcher \
--mode events
--client-id stigman-watcher \
--collection-id 1 \
--path /my/path/to/results \
--authority https://keycloak-host/auth/realms/stigman \
--api https://stigman-api/api
Unless --one-shot is provided, the utility remains active and processes test result files found under the given path. To stop execution, send the process the SIGINT signal. If running interactivey, you can type Ctrl-C to exit.
The utility streams structured JSON logs to the console and/or to a specified logfile. The log related options are:
--log-level
--log-file
--log-file-level
--log-color
--silent
See LOGGING for documentation.