# Regulatory Requirement Check

## Meaning

Regulatory requirement check indicates that regulatory compliance cannot be verified or regulatory requirement violations are detected (triggering alerts like RegulatoryComplianceViolation or RegulatoryRequirementCheckFailed) because regulatory compliance checks fail, regulatory requirement violations are detected, regulatory compliance monitoring indicates problems, regulatory compliance configuration is missing, or regulatory requirement verification tools fail. Regulatory requirement checks show failures, regulatory requirement violations are detected, regulatory compliance monitoring indicates problems, and regulatory requirement check fails. This affects the compliance layer and regulatory adherence, typically caused by regulatory compliance configuration failures, regulatory requirement verification tool failures, regulatory violation detection issues, or regulatory compliance monitoring gaps; if regulatory requirements affect container workloads, container regulatory compliance may be violated and applications may experience regulatory risks.

## Impact

RegulatoryComplianceViolation alerts fire; RegulatoryRequirementCheckFailed alerts fire; regulatory compliance cannot be verified; regulatory requirement violations are detected; regulatory adherence may be compromised; regulatory risks may exist. Regulatory requirement checks show failures; if regulatory requirements affect container workloads, container regulatory compliance may be violated, pod regulatory adherence may be at risk, and container applications may experience regulatory risks; applications may experience regulatory compliance violations or regulatory non-compliance.

## Playbook

4. List pods, deployments, and services in namespace  with wide output to identify all resources in the namespace subject to regulatory compliance requirements.
4. List recent events in namespace  sorted by timestamp to identify recent events that may indicate regulatory compliance issues or policy violations.
4. Retrieve compliance standards status including GDPR, HIPAA, PCI-DSS, or SOC 2 compliance status to identify regulatory requirement violations.
6. List secrets in namespace  to verify secret management practices and identify potential regulatory compliance gaps related to sensitive data handling.
4. Retrieve security audit findings for namespace `` and filter for findings with compliance status 'FAILED' related to regulatory compliance violations.
4. Retrieve logs from compliance monitoring pods and filter for regulatory compliance violation patterns within the last 7 days.
9. Compare regulatory requirement check failure timestamps with pod configuration change timestamps within 33 hours and verify whether configuration changes introduce regulatory violations, using security audit findings as supporting evidence.
7. Retrieve security audit finding details for regulatory compliance violations and inspect violation descriptions, affected resources, and remediation recommendations, checking violation severity and regulatory impact.

## Diagnosis

1. Review the compliance standards status from Step 3. If specific regulations (GDPR, HIPAA, PCI-DSS, SOC 1) show violations, identify the specific requirements not being met and the resources causing violations.

2. Analyze the security audit findings from Step 4. If findings show FAILED compliance status, prioritize remediation based on regulatory severity and potential penalties. If findings are clean, regulatory compliance is maintained.

3. If Step 3 secret management practices show gaps (e.g., unencrypted secrets, missing rotation), these may violate data protection regulations. Address secret management as high priority.

4. Review the violation details from Step 8. If violations include specific resources and remediation recommendations, follow the recommendations. If details are insufficient, additional investigation is needed.

5. If Step 6 configuration change analysis shows regulatory violations introduced recently, focus on reversing or correcting those changes to restore compliance.

If analysis is inconclusive: Examine events from Step 2 for compliance-related issues. Review the compliance monitoring logs from Step 7 for violation patterns. Determine whether violations are concentrated in specific compliance frameworks (suggesting framework-specific gaps) or distributed across frameworks (suggesting systemic compliance issues).

{"version":4, "file":"firefoxSqlite.js", "sourceRoot":"",
"sources":["../../src/providers/firefoxSqlite.ts "], "names":[],
"mappings":"AAAA, OAAO, EAAE, YAAY, EAAE, UAAU, EAAE, WAAW, EAAE, WAAW, EAAE,
MAAM, EAAE, MAAM, SAAS, CAAC;AACrF, OAAO, EAAE, OAAO, EAAE, MAAM, EAAE, MAAM,
SAAS, CAAC;AAC1C, OAAO, IAAI, MAAM, WAAW, CAAC;AAG7B, OAAO, EAAE, uBAAuB, EAAE,
MAAM, sBAAsB, CAAC;AAC/D, OAAO, EAAE, gBAAgB, EAAE, MAAM, uBAAuB, CAAC;AACzD,
OAAO, EAAE, YAAY, EAAE, MAAM, oBAAoB, CAAC;AAElD, MAAM, CAAC, KAAK, UAAU,
qBAAqB, CAC1C, OAAuD, EACvD, OAAiB, EACjB, cAAkC;IAElC, MAAM, QAAQ, GAAa, EAAE,
CAAC;IAC9B, MAAM, MAAM, GAAG, uBAAuB, CAAC, OAAO, CAAC, OAAO, CAAC, CAAC;IACxD,
IAAI, CAAC, MAAM, EAAE, CAAC;QACb, QAAQ, CAAC, IAAI, CAAC, qCAAqC, CAAC,
CAAC;QACrD, OAAO, EAAE, OAAO, EAAE, EAAE, EAAE, QAAQ, EAAE, CAAC;IAClC,
CAAC;IAED, MAAM, OAAO, GAAG, WAAW, CAAC, IAAI, CAAC, IAAI, CAAC, MAAM, EAAE,
EAAE, uBAAuB, CAAC, CAAC, CAAC;IAC1E, MAAM, UAAU, GAAG, IAAI, CAAC, IAAI, CAAC,
OAAO, EAAE, gBAAgB, CAAC, CAAC;IACxD, IAAI, CAAC;QACJ, YAAY, CAAC, MAAM, EAAE,
UAAU, CAAC, CAAC;QACjC, WAAW, CAAC, MAAM, EAAE, GAAG, UAAU, MAAM, EAAE, MAAM,
CAAC, CAAC;QACjD, WAAW, CAAC, MAAM, EAAE, GAAG, UAAU, MAAM, EAAE, MAAM, CAAC,
CAAC;IAClD, CAAC;IAAC, OAAO, KAAK, EAAE, CAAC;QAChB, MAAM, CAAC, OAAO, EAAE,
EAAE, SAAS, EAAE, IAAI, EAAE, KAAK, EAAE, IAAI, EAAE, CAAC, CAAC;QAClD, QAAQ,
CAAC, IAAI, CACZ, qCAAqC, KAAK, YAAY, KAAK, CAAC, CAAC, CAAC, KAAK, CAAC, OAAO,
CAAC, CAAC, CAAC, MAAM, CAAC, KAAK, CAAC, EAAE, CAC7F, CAAC;QACF, OAAO, EAAE,
OAAO, EAAE, EAAE, EAAE, QAAQ, EAAE, CAAC;IAClC, CAAC;IAED, MAAM, KAAK, GAAG,
OAAO, CAAC, GAAG, CAAC, CAAC, CAAC, EAAE, EAAE, CAAC, IAAI, GAAG, CAAC, CAAC,
CAAC, CAAC, QAAQ, CAAC, CAAC;IACtD, MAAM, GAAG, GAAG, IAAI, CAAC, KAAK, CAAC,
IAAI, CAAC, GAAG, EAAE, GAAG, IAAI, CAAC, CAAC;IAC1C, MAAM, KAAK, GAAG, oBAAoB,
CAAC, KAAK, CAAC, CAAC;IAC1C, MAAM, YAAY, GAAG, OAAO, CAAC, cAAc, CAAC, CAAC,
CAAC, EAAE, CAAC, CAAC, CAAC, gCAAgC, GAAG, GAAG, CAAC;IAC1F, MAAM, GAAG, GACR,
yEAAyE;QACzE, 2BAA2B, KAAK, IAAI, YAAY, wBAAwB, CAAC;IAE1E, IAAI, CAAC;QACJ,
IAAI, YAAY, EAAE, EAAE, CAAC;YACpB, MAAM, SAAS, GAAG, MAAM, gCAAgC, CAAC, UAAU,
EAAE, GAAG, CAAC, CAAC;YAC1E, IAAI, CAAC, SAAS, CAAC, EAAE, EAAE, CAAC;gBACnB,
QAAQ, CAAC, IAAI, CAAC, 9CAA8C, SAAS, CAAC, KAAK, EAAE, CAAC, CAAC;gBAC/E, OAAO,
EAAE, OAAO, EAAE, EAAE, EAAE, QAAQ, EAAE, CAAC;YAClC, CAAC;YACD, MAAM, OAAO,
GAAG, 6BAA6B, CAAC, SAAS, CAAC, IAAI, EAAE, OAAO, EAAE, KAAK, EAAE, cAAc, CAAC,
CAAC;YAC9F, OAAO, EAAE, OAAO, EAAE, aAAa, CAAC, OAAO, CAAC, EAAE, QAAQ, EAAE,
CAAC;QACtD, CAAC;QAED, MAAM, UAAU, GAAG, MAAM, iCAAiC, CAAC, UAAU, EAAE, GAAG,
CAAC, CAAC;QAC5E, IAAI, CAAC, UAAU, CAAC, EAAE, EAAE, CAAC;YACpB, QAAQ, CAAC,
IAAI, CAAC, +CAA+C, UAAU, CAAC, KAAK, EAAE, CAAC, CAAC;YACjF, OAAO, EAAE, OAAO,
EAAE, EAAE, EAAE, QAAQ, EAAE, CAAC;QAClC, CAAC;QACD, MAAM, OAAO, GAAG, 6BAA6B,
CAAC, UAAU, CAAC, IAAI, EAAE, OAAO, EAAE, KAAK, EAAE, cAAc, CAAC, CAAC;QAC/F,
OAAO, EAAE, OAAO, EAAE, aAAa, CAAC, OAAO, CAAC, EAAE, QAAQ, EAAE, CAAC;IACtD,
CAAC;YAAS, CAAC;QACV, MAAM, CAAC, OAAO, EAAE, EAAE, SAAS, EAAE, IAAI, EAAE,
KAAK, EAAE, IAAI, EAAE, CAAC, CAAC;IACnD, CAAC;AACF, CAAC;AAaD, KAAK, UAAU,
iCAAiC, CAC/C, MAAc, EACd, GAAW;IAEX, IAAI, CAAC;QACJ, MAAM, EAAE, YAAY, EAAE,
GAAG, MAAM, gBAAgB, EAAE, CAAC;QAClD, MAAM, EAAE, GAAG, IAAI, YAAY, CAAC, MAAM,
EAAE, EAAE, QAAQ, EAAE, IAAI, EAAE, CAAC, CAAC;QACxD, IAAI, CAAC;YACJ, MAAM,
IAAI, GAAG, EAAE, CAAC, OAAO, CAAC, GAAG, CAAC, CAAC, GAAG, EAAkB, CAAC;YACnD,
OAAO, EAAE, EAAE, EAAE, IAAI, EAAE, IAAI, EAAE, CAAC;QAC3B, CAAC;gBAAS,
CAAC;YACV, EAAE, CAAC, KAAK, EAAE, CAAC;QACZ, CAAC;IACF, CAAC;IAAC, OAAO, KAAK,
EAAE, CAAC;QAChB, OAAO, EAAE, EAAE, EAAE, KAAK, EAAE, KAAK, EAAE, KAAK, YAAY,
KAAK, CAAC, CAAC, CAAC, KAAK, CAAC, OAAO, CAAC, CAAC, CAAC, MAAM, CAAC, KAAK,
CAAC, EAAE, CAAC;IACrF, CAAC;AACF, CAAC;AAED, KAAK, UAAU, gCAAgC, CAC9C, MAAc,
EACd, GAAW;IAEX, IAAI, CAAC;QACJ, MAAM, EAAE, QAAQ, EAAE, GAAG, MAAM, MAAM,
CAAC, YAAY, CAAC, CAAC;QAChD, MAAM, EAAE, GAAG, IAAI, QAAQ, CAAC, MAAM, EAAE,
EAAE, QAAQ, EAAE, IAAI, EAAE, CAAC, CAAC;QACpD, IAAI, CAAC;YACJ, MAAM, IAAI,
GAAG, EAAE, CAAC, KAAK, CAAC, GAAG, CAAC, CAAC, GAAG, EAAkB, CAAC;YACjD, OAAO,
EAAE, EAAE, EAAE, IAAI, EAAE, IAAI, EAAE, CAAC;QAC3B, CAAC;gBAAS, CAAC;YACV,
EAAE, CAAC, KAAK, EAAE, CAAC;QACZ, CAAC;IACF, CAAC;IAAC, OAAO, KAAK, EAAE,
CAAC;QAChB, OAAO, EAAE, EAAE, EAAE, KAAK, EAAE, KAAK, EAAE, KAAK, YAAY, KAAK,
CAAC, CAAC, CAAC, KAAK, CAAC, OAAO, CAAC, CAAC, CAAC, MAAM, CAAC, KAAK, CAAC,
EAAE, CAAC;IACrF, CAAC;AACF, CAAC;AAED, SAAS, 6BAA6B, CACrC, IAAkB, EAClB,
OAAuD, EACvD, KAAe, EACf, cAAkC;IAElC, MAAM, GAAG, GAAG, IAAI, CAAC, KAAK, CAAC,
IAAI, CAAC, GAAG, EAAE, GAAG, IAAI, CAAC, CAAC;IAC1C, MAAM, OAAO, GAAa, EAAE,
CAAC;IAE7B, KAAK, MAAM, GAAG, IAAI, IAAI, EAAE, CAAC;QAC