Generated from the official FedRAMP/docs GitHub repo. Source path: FRMR.documentation.json on main at blob 5c6bfee74029. FRMR version: 0.9.43-beta · upstream last_updated: 2026-04-08. The official FedRAMP/rules repo exists, but grclanker still treats FedRAMP/docs as the active source until structured rules land there.

FedRAMP Official Sources

This section is generated from the official FedRAMP GitHub organization. grclanker uses these machine-readable materials for both CLI lookups and reviewed docs snapshots so the public site stays fast without drifting away from upstream.

Current Grounding

• Primary source: FedRAMP/docs → FRMR.documentation.json on main
• FRMR version: 0.9.43-beta
• Upstream last_updated: 2026-04-08
• Rev5 remains a first-class lane beside 20x in grclanker.

Process Docs

• Authorization Data Sharing — ADS · applies to both, 20x, rev5 · requirements: both 15, 20x 1, rev5 4
• Collaborative Continuous Monitoring — CCM · applies to both · requirements: both 24, 20x 0, rev5 0
• FedRAMP Security Inbox — FSI · applies to both · requirements: both 16, 20x 0, rev5 0
• Incident Communications Procedures — ICP · applies to 20x · requirements: both 0, 20x 9, rev5 0
• Key Security Indicators — KSI · applies to 20x · requirements: both 0, 20x 3, rev5 0
• Minimum Assessment Scope — MAS · applies to both · requirements: both 5, 20x 0, rev5 0
• Persistent Validation and Assessment — PVA · applies to 20x · requirements: both 0, 20x 18, rev5 0
• Secure Configuration Guide — SCG · applies to both · requirements: both 9, 20x 0, rev5 0
• Significant Change Notifications — SCN · applies to both · requirements: both 17, 20x 0, rev5 0
• Using Cryptographic Modules — UCM · applies to 20x · requirements: both 0, 20x 3, rev5 0
• Vulnerability Detection and Response — VDR · applies to both · requirements: both 39, 20x 0, rev5 0

KSI Domains

• Authorization by FedRAMP — AFR · 10 indicators
• Cybersecurity Education — CED · 4 indicators
• Change Management — CMT · 4 indicators
• Cloud Native Architecture — CNA · 8 indicators
• Identity and Access Management — IAM · 7 indicators
• Incident Response — INR · 3 indicators
• Monitoring, Logging, and Auditing — MLA · 5 indicators
• Policy and Inventory — PIY · 5 indicators
• Recovery Planning — RPL · 4 indicators
• Supply Chain Risk — SCR · 2 indicators
• Service Configuration — SVC · 8 indicators