Context
agent-bom covers IaC security (Terraform 50 rules, Dockerfile, Helm, K8s) but has zero coverage for OS-level and bare-metal hardening. For enterprises running AI infrastructure on dedicated GPU servers, bare-metal security is critical.
Scope
CIS Benchmarks for:
- Linux (Ubuntu 22.04/24.04, RHEL 9, Amazon Linux 2023) — SSH config, firewall, audit logging, kernel hardening, filesystem permissions
- macOS (14 Sonoma, 15 Sequoia) — FileVault, SIP, Gatekeeper, firewall, screen lock
- Windows Server (2022/2025) — BitLocker, Windows Defender, audit policy, account lockout
AI Infrastructure Focus
Beyond standard CIS, check AI-specific bare-metal concerns:
- GPU driver versions and known CVEs (NVIDIA driver, CUDA toolkit)
- NVIDIA MIG/MPS isolation configuration
- IOMMU/VT-d enabled for GPU passthrough security
- Secure Boot + TPM 2.0 for model integrity verification
- Docker/containerd runtime hardening (CIS Docker Benchmark)
Implementation Approach
- Read-only, agentless — SSH inventory or local system checks
agent-bom os-audit CLI command- Output as CycloneDX properties or standalone JSON
- Start with top 20 checks per OS, expand based on feedback
Priority
v0.75.0 — design + Linux MVP
v0.76.0 — macOS + Windows + GPU-specific checks
Labels: enhancement, security, v0.75.0
Context
agent-bom covers IaC security (Terraform 50 rules, Dockerfile, Helm, K8s) but has zero coverage for OS-level and bare-metal hardening. For enterprises running AI infrastructure on dedicated GPU servers, bare-metal security is critical.
Scope
CIS Benchmarks for:
AI Infrastructure Focus
Beyond standard CIS, check AI-specific bare-metal concerns:
Implementation Approach
agent-bom os-auditCLI commandPriority
v0.75.0 — design + Linux MVP
v0.76.0 — macOS + Windows + GPU-specific checks
Labels: enhancement, security, v0.75.0