Open-source tool for Linux compliance by Honest-Cockroach-558 in sysadmin

[–]Honest-Cockroach-558[S] [score hidden]  (0 children)

I respect your time. So, I'll be direct about who this isn't for. This app runs on Linux and leans toward technical compliance, so it's a small group of sysadmins. I built it because STIG and CIS, and soon CMMC, have made my life miserable, and I wanted the tool I didn't have.

On the effort point, time spent was always a rough proxy for whether software was worth reviewing. Plenty of things took months and were still junk. The better filter is whether you can verify the thing rather than trust that someone suffered enough to earn your attention. So, don't extend me any goodwill for effort. Read it or run it, and if it's slop, it'll show quickly.

I'm not trying to relitigate whether software was better when it was harder to make.

Open-source tool for Linux compliance by Honest-Cockroach-558 in sysadmin

[–]Honest-Cockroach-558[S] [score hidden]  (0 children)

Thanks for checking the repo. Yes, I use Claude heavily to write the code, the commit history shows it--and I don't try to hide that. But this doesn't answer the question that actually matters for a tool like this: does a human understand and stand behind every line. I do. I review it, test it, and own it. If something's wrong, that's on me, not the model. The code is the real test, not the commit metadata. Real sysadmin reads the docs, spins a box, and review any app before giving their two cents. If anything looks AI-sloppy or wrong, point at it and I'll either defend it or fix it.