Script Arguments

This page documents the command-line arguments for the main generation scripts.

generate_guidance.py

Generates documentation, configuration profiles, compliance scripts, and DDM components from a baseline.

./scripts/generate_guidance.py [OPTIONS] BASELINE

Argument	Description
`BASELINE`	Path to the baseline YAML file (required)
`-h, --help`	Show help message
`-a NAME, --audit_name NAME`	Name for audit plist and log (defaults to baseline name)
`-D, --ddm`	Generate DDM components
`-l LOGO, --logo LOGO`	Path to logo file for the guide
`-p, --profiles`	Generate individual configuration profiles
`-P, --consolidated-profile`	Generate a single consolidated profile
`-r REFERENCE, --reference REFERENCE`	Use reference ID instead of rule ID
`-s, --script`	Generate the compliance script
`-x, --xls`	Generate Excel document
`-H HASH, --hash HASH`	Sign profiles with subject key ID

Creates baseline YAML files by collecting rules with matching tags.

./scripts/generate_baseline.py [OPTIONS]

Argument	Description
`-h, --help`	Show help message
`-c, --controls`	Output the 800-53 controls covered by the rules
`-k KEYWORD, --keyword KEYWORD`	Tag to collect rules containing the tag
`-l, --list_tags`	List available keyword tags
`-t, --tailor`	Customize baseline with organization values

Creates SCAP 1.4 datastream, XCCDF, and OVAL documents.

./scripts/generate_scap.py [OPTIONS]

Argument	Description
`-h, --help`	Show help message
`-x, --xccdf`	Generate XCCDF file only
`-o, --oval`	Generate OVAL file only
`-l, --list_tags`	List available keyword tags
`-b BASELINE, --baseline BASELINE`	Generate for a specific baseline
`-d FILE, --disastig FILE`	Include DISA STIG references from file

Creates custom rules and baselines for unsupported compliance frameworks.

./scripts/generate_mapping.py [OPTIONS] CSV_FILE

Argument	Description
`CSV_FILE`	Path to CSV mapping file (required)
`-h, --help`	Show help message
`-f FRAMEWORK, --framework FRAMEWORK`	Source framework to map from (default: 800-53r5)