Hello folks,

after more than three months of intensive work we are thrilled to announce the SCAP Security Guide v0.1.29 has been released: * [1] https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.29

The highlights of this release are as follows: * Numerous STIG profile enhancements for Red Hat Enterprise Linux 7 product, * The produced benchmark for Red Hat Enterprise Linux 6 product now passes NIST SCAP Content Validation Tool 1.2.1.14 requirements, * A plenty of new OVAL checks have been implemented for the Red Hat Enterprise Linux 7 product, * A substantial effort has been contributed the existing SCAP content for JBoss EAP v5 and JBoss Fuse v6 products to follow the format as expected by regular SCAP Security Guide product, * Other numerous XCCDF, OVAL, and remediation scripts enhancements and bug fixes

See [1] for a more complete overview of the changes implemented (my notes indicate there have been ~420 changes since 0.1.28 release).

The pre-built Zip archives with DataStream files are available at usual places: * https://github.com/OpenSCAP/scap-security-guide/releases/download/v0.1.29/sc... (using OVAL 5.10 language version)

* https://github.com/OpenSCAP/scap-security-guide/releases/download/v0.1.29/sc... (using OVAL 5.11 language version)

I would like to use this opportunity to issue thanks to all contributors (developers, testers, issue reporters) who have helped this release to become a reality.

Happy hardening

Regards, Jan -- Jan iankko Lieskovsky (on behalf of the SCAP Security Guide upstream team)

P.S.: As always should you encounter issues with the provided policies, kindly report them at: https://github.com/OpenSCAP/scap-security-guide/issues/new