Heimdall Result doesn't match OpenSCAP HTML

Open gmisura opened this issue 5 months ago • 3 comments

The Heimdall result says Compliance Level: 51.31%, Passed: 175, Failed: 127 (High: 1, Medium: 118, Low:8), N/A: 34, Not Reviewed: 36, Profile Error: 13

using the https://github.com/mitre/amazon-linux-2023-stig-ready-baseline

The OpenSCAP HTML says: 75.05%, Passed: 183, Failed: 122 (High:2, Medium: 105, Low:12, Other:3), Other: 29

using the "CIS Amazon Linux 2023 Benchmark for Level 2 - Server"

Clearly the percentages are being calculated differently because the pass/failed numbers are not that different.

Which number is "correct"? Which will a DoD Auditor accept?

Jul 07 '25 21:07 gmisura