Tools supporting OSCAL
This is a collection of tools that are OSCAL-compatible and will continue to be expanded as new ones are identified. To add a tool, email us with the name, publisher, and summary of the tool.
OSCAL-Compass Agile Authoring
Ready to use CI/CD pipeline configuration and setup using a GitOps approach and Trestle SDK for human and machine readable OSCAL compliance documents collaborative authoring. Manage semantic versioning, provenance traceability,… See more
OSCAL-Compass Trestle SDK
Command line tool and OSCAL SDK for enabling creation, validation, and governance of documentation artifacts for compliance needs.
OSCAL-Pydantic-v2
A python library designed to produce strictly conformant OSCAL models with a modern, highly pythonic API. The tool leverages Pydantic for run-time type enforcement.
RSpec Oscal Formatter
A formatter for the RSpec test framework for Ruby. It allows you to add metadata to RSpec tests in order to produce OSCAL Assessment Plans and Assessment Results directly from… See more
OSCAL Content Registry
The registry is a centralized platform dedicated to the storage, management, and dissemination of Open Security Controls Assessment Language (OSCAL) models
OSCAL Viewer
A React application (built on the OSCAL React Library) for viewing OSCAL Catalogs, Profiles, SSPs, and Component Definitions.
Rust Toolbox for OSCAL
The “roscal” code repository provides Rust-based tools and libraries for OSCAL, focusing on enhancing model building through automated data gathering and enabling continuous security enforcement.
liboscal-java
A Java library for parsing and processing OSCAL documents, including support for serialization and profile resolution.