EnforcementLog

Experimental

EnforcementLog records actions taken in response to noncompliance findings from Layer 5 evaluations.

actions array[object] Required

Enforce that Clear dispositions only contain Passed assessment results

disposition Disposition Required

disposition is the aggregate enforcement disposition across all actions in this log

metadata object Required

ActionLog

Experimental

ActionLog captures a performed enforcement action.

disposition Disposition Required

disposition is the enforcement action taken

justification Justification Required

justification links the action to its assessment findings and any applicable exceptions

method EntryMapping Required

method references the specific AcceptedMethod entry within the Policy being enforced

start Datetime Required

start is the timestamp when the enforcement action began

steps array[EnforcementStep] Required

steps references the code paths or addresses that carried out this enforcement action

end Datetime

end is the timestamp when the enforcement action concluded

message string

message provides additional context about the action

EnforcementStep

EnforcementStep is a reference to the code that performed an enforcement action

  • Type: string

Justification

Experimental

Justification provides the assessment data and exception references that justify an enforcement action.

assessments array[AssessmentFinding] Required

assessments links the action to one or more Assessment Findings

exceptions array[ArtifactMapping]

exceptions references approved Policy exceptions that authorize the action

AssessmentFinding

Experimental

AssessmentFinding maps an enforcement action to its originating assessment data across Layer 2, Layer 3, and Layer 5.

log EntryMapping Required

log maps to the EvaluationLog entry containing the finding

result Result Required

result is the assessment outcome that triggered the enforcement action

plan EntryMapping

plan maps to the Policy assessment plan that was executed

requirement EntryMapping

requirement maps to the Layer 2 assessment requirement that was evaluated

Disposition

Disposition enumerates the possible enforcement outcomes.

  • Type: string