From fee659d1c400d645bacf95c4038a823d63690642 Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Fri, 12 May 2023 14:34:43 -0500
Subject: [PATCH 01/72] Add model documentation diagrams

---
 docs/architecture/diagrams/model_timeline.md | 133 ++++++++++
 docs/architecture/diagrams/models_diagram.md | 250 +++++++++++++++++++
 src/Pipfile                                  |   1 +
 src/Pipfile.lock                             | 171 +++++++------
 src/registrar/config/settings.py             |   2 +
 5 files changed, 475 insertions(+), 82 deletions(-)
 create mode 100644 docs/architecture/diagrams/model_timeline.md
 create mode 100644 docs/architecture/diagrams/models_diagram.md

diff --git a/docs/architecture/diagrams/model_timeline.md b/docs/architecture/diagrams/model_timeline.md
new file mode 100644
index 000000000..30363e4d4
--- /dev/null
+++ b/docs/architecture/diagrams/model_timeline.md
@@ -0,0 +1,133 @@
+# Data Model Timeline
+
+This diagram connects the data models along with various workflow stages.
+
+1. The applicant starts the process at `/register` interacting with the
+   `DomainApplication` object.
+
+2. The analyst approves the application using the `DomainApplication`'s
+   `approve()` method which creates many related objects: `UserDomainRole`,
+   `Domain`, and `DomainInformation`.
+
+3. After the domain is approved, users interact with various
+   `/domain/<id>/...` views which make changes to the `Domain`,
+   `DomainInformation`, and `UserDomainRole` models. For inviting new users,
+   there is a `DomainInvitation` model that allows people to be added to
+   domains who are not already users.
+
+A more complete diagram of the data models, their fields, and their
+relationships are in [models_diagram.md](./models_diagram.md), created with
+the `django-model2puml` plugin.
+
+@startuml
+
+allowmixing
+left to right direction
+
+class DomainApplication {
+  Application for a domain
+  --
+  creator (User)
+  investigator (User)
+  authorizing_official (Contact)
+  submitter (Contact)
+  other_contacts (Contacts)
+  requested_domain (Domain)
+  current_websites (Websites)
+  alternative_domains (Websites)
+  --
+  Request information...
+}
+
+class User {
+  Django's user class
+  --
+  ...
+  --
+}
+note left of User
+  Created by DjangoOIDC
+  when users arrive back
+  from Login.gov
+
+  <b>username</b> is the Login UUID
+end note
+
+DomainApplication -l- User : creator, investigator
+
+class Contact {
+  Contact info for a person
+  --
+  first_name
+  middle_name
+  last_name
+  title
+  email
+  phone
+  --
+}
+
+DomainApplication *-r-* Contact : authorizing_official, submitter, other_contacts
+
+class Domain {
+  Approved domain
+  --
+  name
+  is_active
+  --
+  <b>EPP methods</b>
+}
+
+DomainApplication .right[#blue].> Domain : approve()
+
+class DomainInformation {
+  Registrar information on a domain
+  --
+  domain (Domain)
+  domain_application (DomainApplication)
+  security_email
+  --
+  Request information...
+}
+
+DomainInformation -- Domain
+DomainInformation -- DomainApplication
+DomainApplication .[#blue].> DomainInformation : approve()
+
+class UserDomainRole {
+  Permissions
+  --
+  domain (Domain)
+  user (User)
+  role="ADMIN"
+  --
+}
+UserDomainRole -- User
+UserDomainRole -- Domain
+DomainApplication .[#blue].> UserDomainRole : approve()
+
+class DomainInvitation {
+  Email invitations sent
+  --
+  email
+  domain (Domain)
+  status
+  --
+}
+DomainInvitation -- Domain
+DomainInvitation .[#green].> UserDomainRole : User.first_login()
+
+actor applicant #Red
+applicant -d-> DomainApplication : **/register**
+
+actor analyst #Blue
+analyst -[#blue]-> DomainApplication : **approve()**
+
+actor user1 #Green
+user1 -[#green]-> Domain : **/domain/<id>/nameservers**
+actor user2 #Green
+user2 -[#green]-> DomainInformation : **/domain/<id>/?????**
+actor user3 #Green
+user3 -right[#green]-> UserDomainRole : **/domain/<id>/users/add**
+user3 -right[#green]-> DomainInvitation : **/domain/<id>/users/add**
+@enduml
diff --git a/docs/architecture/diagrams/models_diagram.md b/docs/architecture/diagrams/models_diagram.md
new file mode 100644
index 000000000..f10c6ad87
--- /dev/null
+++ b/docs/architecture/diagrams/models_diagram.md
@@ -0,0 +1,250 @@
+@startuml 
+class "registrar.Contact <Registrar>" as registrar.Contact #d6f4e9 {
+    contact
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    ~ user (OneToOneField)
+    + first_name (TextField)
+    + middle_name (TextField)
+    + last_name (TextField)
+    + title (TextField)
+    + email (TextField)
+    + phone (PhoneNumberField)
+    --
+}
+registrar.Contact -- registrar.User
+
+
+class "registrar.DomainApplication <Registrar>" as registrar.DomainApplication #d6f4e9 {
+    domain application
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    + status (FSMField)
+    ~ creator (ForeignKey)
+    ~ investigator (ForeignKey)
+    + organization_type (CharField)
+    + federally_recognized_tribe (BooleanField)
+    + state_recognized_tribe (BooleanField)
+    + tribe_name (TextField)
+    + federal_agency (TextField)
+    + federal_type (CharField)
+    + is_election_board (BooleanField)
+    + organization_name (TextField)
+    + address_line1 (TextField)
+    + address_line2 (CharField)
+    + city (TextField)
+    + state_territory (CharField)
+    + zipcode (CharField)
+    + urbanization (TextField)
+    + type_of_work (TextField)
+    + more_organization_information (TextField)
+    ~ authorizing_official (ForeignKey)
+    ~ requested_domain (OneToOneField)
+    ~ submitter (ForeignKey)
+    + purpose (TextField)
+    + no_other_contacts_rationale (TextField)
+    + anything_else (TextField)
+    + is_policy_acknowledged (BooleanField)
+    # current_websites (ManyToManyField)
+    # alternative_domains (ManyToManyField)
+    # other_contacts (ManyToManyField)
+    --
+}
+registrar.DomainApplication -- registrar.User
+registrar.DomainApplication -- registrar.User
+registrar.DomainApplication -- registrar.Contact
+registrar.DomainApplication -- registrar.Domain
+registrar.DomainApplication -- registrar.Contact
+registrar.DomainApplication *--* registrar.Website
+registrar.DomainApplication *--* registrar.Website
+registrar.DomainApplication *--* registrar.Contact
+
+
+class "registrar.DomainInformation <Registrar>" as registrar.DomainInformation #d6f4e9 {
+    domain information
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    ~ creator (ForeignKey)
+    ~ domain_application (OneToOneField)
+    + organization_type (CharField)
+    + federally_recognized_tribe (BooleanField)
+    + state_recognized_tribe (BooleanField)
+    + tribe_name (TextField)
+    + federal_agency (TextField)
+    + federal_type (CharField)
+    + is_election_board (BooleanField)
+    + organization_name (TextField)
+    + address_line1 (TextField)
+    + address_line2 (CharField)
+    + city (TextField)
+    + state_territory (CharField)
+    + zipcode (CharField)
+    + urbanization (TextField)
+    + type_of_work (TextField)
+    + more_organization_information (TextField)
+    ~ authorizing_official (ForeignKey)
+    ~ domain (OneToOneField)
+    ~ submitter (ForeignKey)
+    + purpose (TextField)
+    + no_other_contacts_rationale (TextField)
+    + anything_else (TextField)
+    + is_policy_acknowledged (BooleanField)
+    + security_email (EmailField)
+    # other_contacts (ManyToManyField)
+    --
+}
+registrar.DomainInformation -- registrar.User
+registrar.DomainInformation -- registrar.DomainApplication
+registrar.DomainInformation -- registrar.Contact
+registrar.DomainInformation -- registrar.Domain
+registrar.DomainInformation -- registrar.Contact
+registrar.DomainInformation *--* registrar.Contact
+
+
+class "registrar.Domain <Registrar>" as registrar.Domain #d6f4e9 {
+    domain
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    + name (CharField)
+    + is_active (FSMField)
+    --
+}
+
+
+class "registrar.HostIP <Registrar>" as registrar.HostIP #d6f4e9 {
+    host ip
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    + address (CharField)
+    ~ host (ForeignKey)
+    --
+}
+registrar.HostIP -- registrar.Host
+
+
+class "registrar.Host <Registrar>" as registrar.Host #d6f4e9 {
+    host
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    + name (CharField)
+    ~ domain (ForeignKey)
+    --
+}
+registrar.Host -- registrar.Domain
+
+
+class "registrar.UserDomainRole <Registrar>" as registrar.UserDomainRole #d6f4e9 {
+    user domain role
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    ~ user (ForeignKey)
+    ~ domain (ForeignKey)
+    + role (TextField)
+    --
+}
+registrar.UserDomainRole -- registrar.User
+registrar.UserDomainRole -- registrar.Domain
+
+
+class "registrar.DomainInvitation <Registrar>" as registrar.DomainInvitation #d6f4e9 {
+    domain invitation
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    + email (EmailField)
+    ~ domain (ForeignKey)
+    + status (FSMField)
+    --
+}
+registrar.DomainInvitation -- registrar.Domain
+
+
+class "registrar.Nameserver <Registrar>" as registrar.Nameserver #d6f4e9 {
+    nameserver
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    + name (CharField)
+    ~ domain (ForeignKey)
+    ~ host_ptr (OneToOneField)
+    --
+}
+registrar.Nameserver -- registrar.Domain
+registrar.Nameserver -- registrar.Host
+
+
+class "registrar.PublicContact <Registrar>" as registrar.PublicContact #d6f4e9 {
+    public contact
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    + contact_type (CharField)
+    + name (TextField)
+    + org (TextField)
+    + street1 (TextField)
+    + street2 (TextField)
+    + street3 (TextField)
+    + city (TextField)
+    + sp (TextField)
+    + pc (TextField)
+    + cc (TextField)
+    + email (TextField)
+    + voice (TextField)
+    + fax (TextField)
+    + pw (TextField)
+    --
+}
+
+
+class "registrar.User <Registrar>" as registrar.User #d6f4e9 {
+    user
+    --
+    + id (BigAutoField)
+    + password (CharField)
+    + last_login (DateTimeField)
+    + is_superuser (BooleanField)
+    + username (CharField)
+    + first_name (CharField)
+    + last_name (CharField)
+    + email (EmailField)
+    + is_staff (BooleanField)
+    + is_active (BooleanField)
+    + date_joined (DateTimeField)
+    + phone (PhoneNumberField)
+    # groups (ManyToManyField)
+    # user_permissions (ManyToManyField)
+    # domains (ManyToManyField)
+    --
+}
+registrar.User *--* registrar.Domain
+
+
+class "registrar.Website <Registrar>" as registrar.Website #d6f4e9 {
+    website
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    + website (CharField)
+    --
+}
+
+
+@enduml
diff --git a/src/Pipfile b/src/Pipfile
index d7551f63b..a3a20051c 100644
--- a/src/Pipfile
+++ b/src/Pipfile
@@ -37,3 +37,4 @@ django-webtest = "*"
 types-cachetools = "*"
 boto3-mocking = "*"
 boto3-stubs = "*"
+django-model2puml = "*"
diff --git a/src/Pipfile.lock b/src/Pipfile.lock
index e77116ef5..04722b876 100644
--- a/src/Pipfile.lock
+++ b/src/Pipfile.lock
@@ -1,7 +1,7 @@
 {
     "_meta": {
         "hash": {
-            "sha256": "ebec8b958bcfde525ad74aa1e777b55855e86b2d63264612bc2855bf167070b1"
+            "sha256": "b6c1a957da6c715c734906059a81da21cb0eb4c4ab04f204eb58a48ddb8f7234"
         },
         "pipfile-spec": 6,
         "requires": {},
@@ -24,19 +24,19 @@
         },
         "boto3": {
             "hashes": [
-                "sha256:38ca632be379963f2a2749b5f63a81fe1679913b954914f470ad282c77674bbc",
-                "sha256:4d575c180312bec6108852bae12e6396b9d1bb404154d652c57ee849c62fbb83"
+                "sha256:62285ecee7629a4388d55ae369536f759622d68d5b9a0ced7c58a0c1a409c0f7",
+                "sha256:8ff0af0b25266a01616396abc19eb34dc3d44bd867fa4158985924128b9034fb"
             ],
             "index": "pypi",
-            "version": "==1.26.122"
+            "version": "==1.26.133"
         },
         "botocore": {
             "hashes": [
-                "sha256:9e4984a9e9777c6b949aa1e98323fa35480d9f99d447af7e179ae611f7ed5af9",
-                "sha256:c3b41078d235761b9c5dc22f534a76952622ef96787b96bbd10242ec4d73f2a5"
+                "sha256:7b38e540f73c921d8cb0ac72794072000af9e10758c04ba7f53d5629cc52fa87",
+                "sha256:b266185d7414a559952569005009a400de50af91fd3da44f05cf05b00946c4a7"
             ],
             "markers": "python_version >= '3.7'",
-            "version": "==1.29.122"
+            "version": "==1.29.133"
         },
         "cachetools": {
             "hashes": [
@@ -48,11 +48,11 @@
         },
         "certifi": {
             "hashes": [
-                "sha256:35824b4c3a97115964b408844d64aa14db1cc518f6562e8d7261699d1350a9e3",
-                "sha256:4ad3232f5e926d6718ec31cfc1fcadfde020920e278684144551c91769c7bc18"
+                "sha256:0f0d56dc5a6ad56fd4ba36484d6cc34451e1c6548c61daad8c320169f91eddc7",
+                "sha256:c6c2e98f5c7869efca1f8916fed228dd91539f9f1b444c314c06eef02980c716"
             ],
             "markers": "python_version >= '3.6'",
-            "version": "==2022.12.7"
+            "version": "==2023.5.7"
         },
         "cfenv": {
             "hashes": [
@@ -261,11 +261,11 @@
         },
         "django": {
             "hashes": [
-                "sha256:ad33ed68db9398f5dfb33282704925bce044bef4261cd4fb59e4e7f9ae505a78",
-                "sha256:c36e2ab12824e2ac36afa8b2515a70c53c7742f0d6eaefa7311ec379558db997"
+                "sha256:066b6debb5ac335458d2a713ed995570536c8b59a580005acb0732378d5eb1ee",
+                "sha256:7efa6b1f781a6119a10ac94b4794ded90db8accbe7802281cd26f8664ffed59c"
             ],
             "index": "pypi",
-            "version": "==4.2"
+            "version": "==4.2.1"
         },
         "django-allow-cidr": {
             "hashes": [
@@ -338,11 +338,11 @@
         },
         "faker": {
             "hashes": [
-                "sha256:49060d40e6659e116f53353c5771ad2f2cbcd12b15771f49e3000a3a451f13ec",
-                "sha256:ac903ba8cb5adbce2cdd15e5536118d484bbe01126f3c774dd9f6df77b61232d"
+                "sha256:38dbc3b80e655d7301e190426ab30f04b6b7f6ca4764c5dd02772ffde0fa6dcd",
+                "sha256:f02c6d3fdb5bc781f80b440cf2bdec336ed47ecfb8d620b20c3d4188ed051831"
             ],
             "index": "pypi",
-            "version": "==18.6.0"
+            "version": "==18.7.0"
         },
         "furl": {
             "hashes": [
@@ -623,19 +623,19 @@
         },
         "requests": {
             "hashes": [
-                "sha256:e8f3c9be120d3333921d213eef078af392fba3933ab7ed2d1cba3b56f2568c3b",
-                "sha256:f2e34a75f4749019bb0e3effb66683630e4ffeaf75819fb51bebef1bf5aef059"
+                "sha256:10e94cc4f3121ee6da529d358cdaeaff2f1c409cd377dbc72b825852f2f7e294",
+                "sha256:239d7d4458afcb28a692cdd298d87542235f4ca8d36d03a15bfc128a6559a2f4"
             ],
             "index": "pypi",
-            "version": "==2.29.0"
+            "version": "==2.30.0"
         },
         "s3transfer": {
             "hashes": [
-                "sha256:06176b74f3a15f61f1b4f25a1fc29a4429040b7647133a463da8fa5bd28d5ecd",
-                "sha256:2ed07d3866f523cc561bf4a00fc5535827981b117dd7876f036b0c1aca42c947"
+                "sha256:3c0da2d074bf35d6870ef157158641178a4204a6e689e82546083e31e0311346",
+                "sha256:640bb492711f4c0c0905e1f62b6aaeb771881935ad27884852411f8e9cacbca9"
             ],
             "markers": "python_version >= '3.7'",
-            "version": "==0.6.0"
+            "version": "==0.6.1"
         },
         "setuptools": {
             "hashes": [
@@ -752,11 +752,11 @@
         },
         "boto3": {
             "hashes": [
-                "sha256:38ca632be379963f2a2749b5f63a81fe1679913b954914f470ad282c77674bbc",
-                "sha256:4d575c180312bec6108852bae12e6396b9d1bb404154d652c57ee849c62fbb83"
+                "sha256:62285ecee7629a4388d55ae369536f759622d68d5b9a0ced7c58a0c1a409c0f7",
+                "sha256:8ff0af0b25266a01616396abc19eb34dc3d44bd867fa4158985924128b9034fb"
             ],
             "index": "pypi",
-            "version": "==1.26.122"
+            "version": "==1.26.133"
         },
         "boto3-mocking": {
             "hashes": [
@@ -768,27 +768,27 @@
         },
         "boto3-stubs": {
             "hashes": [
-                "sha256:401e7fe51d88a51b527d883d195ed20c7f57aeb2c0aea24bbb3e911b6d2ad3aa",
-                "sha256:743a37bfd7d1eed4d67cdf825283abc1d93b7900b81d7426aab7e691e075c897"
+                "sha256:a921814574761842073822dc5e9fc7ca4f1c5fdeaa53d83cd8831e060dae09c8",
+                "sha256:cc6a662700e755c1e3dec2383c146b89cd8c70b5921033504bfb8367d03a538f"
             ],
             "index": "pypi",
-            "version": "==1.26.122"
+            "version": "==1.26.133"
         },
         "botocore": {
             "hashes": [
-                "sha256:9e4984a9e9777c6b949aa1e98323fa35480d9f99d447af7e179ae611f7ed5af9",
-                "sha256:c3b41078d235761b9c5dc22f534a76952622ef96787b96bbd10242ec4d73f2a5"
+                "sha256:7b38e540f73c921d8cb0ac72794072000af9e10758c04ba7f53d5629cc52fa87",
+                "sha256:b266185d7414a559952569005009a400de50af91fd3da44f05cf05b00946c4a7"
             ],
             "markers": "python_version >= '3.7'",
-            "version": "==1.29.122"
+            "version": "==1.29.133"
         },
         "botocore-stubs": {
             "hashes": [
-                "sha256:59873a3b535ec3ff0b6bf5f41c9f8a0f8c48032a871bea4d6e4faebbbfc68e8b",
-                "sha256:e6e6c527a6cac0ec69dd1b755d530c9b2dab01d423ce47bdc636dd01ebb01b1b"
+                "sha256:5f6f1967d23c45834858a055cbf65b66863f9f28d05f32f57bf52864a13512d9",
+                "sha256:622c4a5cd740498439008d81c5ded612146f4f0d575341c12591f978edbbe733"
             ],
             "markers": "python_version >= '3.7' and python_version < '4.0'",
-            "version": "==1.29.122"
+            "version": "==1.29.130"
         },
         "click": {
             "hashes": [
@@ -800,11 +800,11 @@
         },
         "django": {
             "hashes": [
-                "sha256:ad33ed68db9398f5dfb33282704925bce044bef4261cd4fb59e4e7f9ae505a78",
-                "sha256:c36e2ab12824e2ac36afa8b2515a70c53c7742f0d6eaefa7311ec379558db997"
+                "sha256:066b6debb5ac335458d2a713ed995570536c8b59a580005acb0732378d5eb1ee",
+                "sha256:7efa6b1f781a6119a10ac94b4794ded90db8accbe7802281cd26f8664ffed59c"
             ],
             "index": "pypi",
-            "version": "==4.2"
+            "version": "==4.2.1"
         },
         "django-debug-toolbar": {
             "hashes": [
@@ -814,6 +814,13 @@
             "index": "pypi",
             "version": "==4.0.0"
         },
+        "django-model2puml": {
+            "hashes": [
+                "sha256:6e773d742e556020a04d3216ce5dee5d3551da162e2d42a997f85b4ed1854771"
+            ],
+            "index": "pypi",
+            "version": "==0.4.1"
+        },
         "django-stubs": {
             "hashes": [
                 "sha256:93baff824f0a056e71036b423b942a74f07b909e45e3fa38185b910f597c5c08",
@@ -896,35 +903,35 @@
         },
         "mypy": {
             "hashes": [
-                "sha256:023fe9e618182ca6317ae89833ba422c411469156b690fde6a315ad10695a521",
-                "sha256:031fc69c9a7e12bcc5660b74122ed84b3f1c505e762cc4296884096c6d8ee140",
-                "sha256:2de7babe398cb7a85ac7f1fd5c42f396c215ab3eff731b4d761d68d0f6a80f48",
-                "sha256:2e93a8a553e0394b26c4ca683923b85a69f7ccdc0139e6acd1354cc884fe0128",
-                "sha256:390bc685ec209ada4e9d35068ac6988c60160b2b703072d2850457b62499e336",
-                "sha256:3a2d219775a120581a0ae8ca392b31f238d452729adbcb6892fa89688cb8306a",
-                "sha256:3efde4af6f2d3ccf58ae825495dbb8d74abd6d176ee686ce2ab19bd025273f41",
-                "sha256:4a99fe1768925e4a139aace8f3fb66db3576ee1c30b9c0f70f744ead7e329c9f",
-                "sha256:4b41412df69ec06ab141808d12e0bf2823717b1c363bd77b4c0820feaa37249e",
-                "sha256:4c8d8c6b80aa4a1689f2a179d31d86ae1367ea4a12855cc13aa3ba24bb36b2d8",
-                "sha256:4d19f1a239d59f10fdc31263d48b7937c585810288376671eaf75380b074f238",
-                "sha256:4e4a682b3f2489d218751981639cffc4e281d548f9d517addfd5a2917ac78119",
-                "sha256:695c45cea7e8abb6f088a34a6034b1d273122e5530aeebb9c09626cea6dca4cb",
-                "sha256:701189408b460a2ff42b984e6bd45c3f41f0ac9f5f58b8873bbedc511900086d",
-                "sha256:70894c5345bea98321a2fe84df35f43ee7bb0feec117a71420c60459fc3e1eed",
-                "sha256:8293a216e902ac12779eb7a08f2bc39ec6c878d7c6025aa59464e0c4c16f7eb9",
-                "sha256:8d26b513225ffd3eacece727f4387bdce6469192ef029ca9dd469940158bc89e",
-                "sha256:a197ad3a774f8e74f21e428f0de7f60ad26a8d23437b69638aac2764d1e06a6a",
-                "sha256:bea55fc25b96c53affab852ad94bf111a3083bc1d8b0c76a61dd101d8a388cf5",
-                "sha256:c9a084bce1061e55cdc0493a2ad890375af359c766b8ac311ac8120d3a472950",
-                "sha256:d0e9464a0af6715852267bf29c9553e4555b61f5904a4fc538547a4d67617937",
-                "sha256:d8e9187bfcd5ffedbe87403195e1fc340189a68463903c39e2b63307c9fa0394",
-                "sha256:eaeaa0888b7f3ccb7bcd40b50497ca30923dba14f385bde4af78fac713d6d6f6",
-                "sha256:f46af8d162f3d470d8ffc997aaf7a269996d205f9d746124a179d3abe05ac602",
-                "sha256:f70a40410d774ae23fcb4afbbeca652905a04de7948eaf0b1789c8d1426b72d1",
-                "sha256:fe91be1c51c90e2afe6827601ca14353bbf3953f343c2129fa1e247d55fd95ba"
+                "sha256:1c4c42c60a8103ead4c1c060ac3cdd3ff01e18fddce6f1016e08939647a0e703",
+                "sha256:44797d031a41516fcf5cbfa652265bb994e53e51994c1bd649ffcd0c3a7eccbf",
+                "sha256:473117e310febe632ddf10e745a355714e771ffe534f06db40702775056614c4",
+                "sha256:4c99c3ecf223cf2952638da9cd82793d8f3c0c5fa8b6ae2b2d9ed1e1ff51ba85",
+                "sha256:550a8b3a19bb6589679a7c3c31f64312e7ff482a816c96e0cecec9ad3a7564dd",
+                "sha256:658fe7b674769a0770d4b26cb4d6f005e88a442fe82446f020be8e5f5efb2fae",
+                "sha256:6e33bb8b2613614a33dff70565f4c803f889ebd2f859466e42b46e1df76018dd",
+                "sha256:6e42d29e324cdda61daaec2336c42512e59c7c375340bd202efa1fe0f7b8f8ca",
+                "sha256:74bc9b6e0e79808bf8678d7678b2ae3736ea72d56eede3820bd3849823e7f305",
+                "sha256:76ec771e2342f1b558c36d49900dfe81d140361dd0d2df6cd71b3db1be155409",
+                "sha256:7d23370d2a6b7a71dc65d1266f9a34e4cde9e8e21511322415db4b26f46f6b8c",
+                "sha256:87df44954c31d86df96c8bd6e80dfcd773473e877ac6176a8e29898bfb3501cb",
+                "sha256:8c5979d0deb27e0f4479bee18ea0f83732a893e81b78e62e2dda3e7e518c92ee",
+                "sha256:95d8d31a7713510685b05fbb18d6ac287a56c8f6554d88c19e73f724a445448a",
+                "sha256:a22435632710a4fcf8acf86cbd0d69f68ac389a3892cb23fbad176d1cddaf228",
+                "sha256:a8763e72d5d9574d45ce5881962bc8e9046bf7b375b0abf031f3e6811732a897",
+                "sha256:c1eb485cea53f4f5284e5baf92902cd0088b24984f4209e25981cc359d64448d",
+                "sha256:c5d2cc54175bab47011b09688b418db71403aefad07cbcd62d44010543fc143f",
+                "sha256:cbc07246253b9e3d7d74c9ff948cd0fd7a71afcc2b77c7f0a59c26e9395cb152",
+                "sha256:d0b6c62206e04061e27009481cb0ec966f7d6172b5b936f3ead3d74f29fe3dcf",
+                "sha256:ddae0f39ca146972ff6bb4399f3b2943884a774b8771ea0a8f50e971f5ea5ba8",
+                "sha256:e1f4d16e296f5135624b34e8fb741eb0eadedca90862405b1f1fde2040b9bd11",
+                "sha256:e86c2c6852f62f8f2b24cb7a613ebe8e0c7dc1402c61d36a609174f63e0ff017",
+                "sha256:ebc95f8386314272bbc817026f8ce8f4f0d2ef7ae44f947c4664efac9adec929",
+                "sha256:f9dca1e257d4cc129517779226753dbefb4f2266c4eaad610fc15c6a7e14283e",
+                "sha256:faff86aa10c1aa4a10e1a301de160f3d8fc8703b88c7e98de46b531ff1276a9a"
             ],
             "index": "pypi",
-            "version": "==1.2.0"
+            "version": "==1.3.0"
         },
         "mypy-extensions": {
             "hashes": [
@@ -968,11 +975,11 @@
         },
         "platformdirs": {
             "hashes": [
-                "sha256:47692bc24c1958e8b0f13dd727307cff1db103fca36399f457da8e05f222fdc4",
-                "sha256:7954a68d0ba23558d753f73437c55f89027cf8f5108c19844d4b82e5af396335"
+                "sha256:412dae91f52a6f84830f39a8078cecd0e866cb72294a5c66808e74d5e88d251f",
+                "sha256:e2378146f1964972c03c085bb5662ae80b2b8c06226c54b2ff4aa9483e8a13a5"
             ],
             "markers": "python_version >= '3.7'",
-            "version": "==3.5.0"
+            "version": "==3.5.1"
         },
         "pycodestyle": {
             "hashes": [
@@ -1062,11 +1069,11 @@
         },
         "s3transfer": {
             "hashes": [
-                "sha256:06176b74f3a15f61f1b4f25a1fc29a4429040b7647133a463da8fa5bd28d5ecd",
-                "sha256:2ed07d3866f523cc561bf4a00fc5535827981b117dd7876f036b0c1aca42c947"
+                "sha256:3c0da2d074bf35d6870ef157158641178a4204a6e689e82546083e31e0311346",
+                "sha256:640bb492711f4c0c0905e1f62b6aaeb771881935ad27884852411f8e9cacbca9"
             ],
             "markers": "python_version >= '3.7'",
-            "version": "==0.6.0"
+            "version": "==0.6.1"
         },
         "six": {
             "hashes": [
@@ -1118,11 +1125,11 @@
         },
         "types-awscrt": {
             "hashes": [
-                "sha256:40854d9d7ce055620d5d41e5adc84df11b879aedbd2cf20de84e73f084aa5797",
-                "sha256:fe38c6fd71199a9f739b69a7c2f3a574585457c4f63730a62830628a7bffc5b0"
+                "sha256:9e447df3ad46767887d14fa9c856df94f80e8a0a7f0169577ab23b52ee37bcdf",
+                "sha256:e28fb3f20568ce9e96e33e01e0b87b891822f36b8f368adb582553b016d4aa08"
             ],
             "markers": "python_version >= '3.7' and python_version < '4.0'",
-            "version": "==0.16.16"
+            "version": "==0.16.17"
         },
         "types-cachetools": {
             "hashes": [
@@ -1148,26 +1155,26 @@
         },
         "types-requests": {
             "hashes": [
-                "sha256:0d580652ce903f643f8c3b494dd01d29367ea57cea0c7ad7f65cf3169092edb0",
-                "sha256:cc1aba862575019306b2ed134eb1ea994cab1c887a22e18d3383e6dd42e9789b"
+                "sha256:c6cf08e120ca9f0dc4fa4e32c3f953c3fba222bcc1db6b97695bce8da1ba9864",
+                "sha256:dec781054324a70ba64430ae9e62e7e9c8e4618c185a5cb3f87a6738251b5a31"
             ],
             "index": "pypi",
-            "version": "==2.28.11.17"
+            "version": "==2.30.0.0"
         },
         "types-s3transfer": {
             "hashes": [
-                "sha256:40e665643f0647832d51c4a26d8a8275cda9134b02bf22caf28198b79bcad382",
-                "sha256:d9c669b30fdd61347720434aacb8ecc4645d900712a70b10f495104f9039c07b"
+                "sha256:6d1ac1dedac750d570428362acdf60fdd4f277b0788855c3894d3226756b2bfb",
+                "sha256:75ac1d7143d58c1e6af467cfd4a96c67ee058a3adf7c249d9309999e1f5f41e4"
             ],
             "markers": "python_version >= '3.7' and python_version < '4.0'",
-            "version": "==0.6.0.post7"
+            "version": "==0.6.1"
         },
         "types-urllib3": {
             "hashes": [
-                "sha256:04235e792139cf3624b25d38faab593456738fbdb7439634046172e3b1339400",
-                "sha256:697102ddf4f781eed6f692353f40cee1098643526f5a8b99f49d2ede90fd3754"
+                "sha256:3300538c9dc11dad32eae4827ac313f5d986b8b21494801f1bf97a1ac6c03ae5",
+                "sha256:5dbd1d2bef14efee43f5318b5d36d805a489f6600252bb53626d4bfafd95e27c"
             ],
-            "version": "==1.26.25.11"
+            "version": "==1.26.25.13"
         },
         "typing-extensions": {
             "hashes": [
diff --git a/src/registrar/config/settings.py b/src/registrar/config/settings.py
index 9491b354a..ce6307e3d 100644
--- a/src/registrar/config/settings.py
+++ b/src/registrar/config/settings.py
@@ -109,6 +109,8 @@ INSTALLED_APPS = [
     "registrar",
     # Our internal API application
     "api",
+    # Only for generating documentation, uncomment to run manage.py generate_puml
+    # "puml_generator",
 ]
 
 # Middleware are routines for processing web requests.

From 4b7a8953b7f191b5666c48d2f1caa81591143411 Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Fri, 12 May 2023 14:44:45 -0500
Subject: [PATCH 02/72] Adjust markdown files with PlantUML inside for Github

---
 docs/architecture/diagrams/model_timeline.md |  2 ++
 docs/architecture/diagrams/models_diagram.md | 12 ++++++++++++
 2 files changed, 14 insertions(+)

diff --git a/docs/architecture/diagrams/model_timeline.md b/docs/architecture/diagrams/model_timeline.md
index 30363e4d4..4a39807a1 100644
--- a/docs/architecture/diagrams/model_timeline.md
+++ b/docs/architecture/diagrams/model_timeline.md
@@ -19,6 +19,7 @@ A more complete diagram of the data models, their fields, and their
 relationships are in [models_diagram.md](./models_diagram.md), created with
 the `django-model2puml` plugin.
 
+```plantuml
 @startuml
 
 allowmixing
@@ -131,3 +132,4 @@ actor user3 #Green
 user3 -right[#green]-> UserDomainRole : **/domain/<id>/users/add**
 user3 -right[#green]-> DomainInvitation : **/domain/<id>/users/add**
 @enduml
+```
diff --git a/docs/architecture/diagrams/models_diagram.md b/docs/architecture/diagrams/models_diagram.md
index f10c6ad87..5e47514d0 100644
--- a/docs/architecture/diagrams/models_diagram.md
+++ b/docs/architecture/diagrams/models_diagram.md
@@ -1,3 +1,14 @@
+# Complete model documentation
+
+This is an auto-generated diagram of our data models generated with the
+[django-model2puml](https://github.com/sen-den/django-model2puml) library
+using the command
+
+```bash
+$ docker compose app ./manage.py generate_puml --include registrar
+```
+
+```plantuml
 @startuml 
 class "registrar.Contact <Registrar>" as registrar.Contact #d6f4e9 {
     contact
@@ -248,3 +259,4 @@ class "registrar.Website <Registrar>" as registrar.Website #d6f4e9 {
 
 
 @enduml
+```

From ec9cf668816cc23f3e9f1d91e26687e177d16696 Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Fri, 12 May 2023 14:52:11 -0500
Subject: [PATCH 03/72] Try with mermaid instead of plantuml

---
 docs/architecture/diagrams/model_timeline.md | 2 +-
 docs/architecture/diagrams/models_diagram.md | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/architecture/diagrams/model_timeline.md b/docs/architecture/diagrams/model_timeline.md
index 4a39807a1..8591e660b 100644
--- a/docs/architecture/diagrams/model_timeline.md
+++ b/docs/architecture/diagrams/model_timeline.md
@@ -19,7 +19,7 @@ A more complete diagram of the data models, their fields, and their
 relationships are in [models_diagram.md](./models_diagram.md), created with
 the `django-model2puml` plugin.
 
-```plantuml
+```mermaid
 @startuml
 
 allowmixing
diff --git a/docs/architecture/diagrams/models_diagram.md b/docs/architecture/diagrams/models_diagram.md
index 5e47514d0..b06c8807a 100644
--- a/docs/architecture/diagrams/models_diagram.md
+++ b/docs/architecture/diagrams/models_diagram.md
@@ -8,7 +8,7 @@ using the command
 $ docker compose app ./manage.py generate_puml --include registrar
 ```
 
-```plantuml
+```mermaid
 @startuml 
 class "registrar.Contact <Registrar>" as registrar.Contact #d6f4e9 {
     contact

From de9a82725afb9b3704163dccde363d9e8b86faad Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Fri, 12 May 2023 14:54:00 -0500
Subject: [PATCH 04/72] Try without @startuml tag?

---
 docs/architecture/diagrams/model_timeline.md | 2 --
 1 file changed, 2 deletions(-)

diff --git a/docs/architecture/diagrams/model_timeline.md b/docs/architecture/diagrams/model_timeline.md
index 8591e660b..2f8991ed6 100644
--- a/docs/architecture/diagrams/model_timeline.md
+++ b/docs/architecture/diagrams/model_timeline.md
@@ -20,7 +20,6 @@ relationships are in [models_diagram.md](./models_diagram.md), created with
 the `django-model2puml` plugin.
 
 ```mermaid
-@startuml
 
 allowmixing
 left to right direction
@@ -131,5 +130,4 @@ user2 -[#green]-> DomainInformation : **/domain/<id>/?????**
 actor user3 #Green
 user3 -right[#green]-> UserDomainRole : **/domain/<id>/users/add**
 user3 -right[#green]-> DomainInvitation : **/domain/<id>/users/add**
-@enduml
 ```

From 738e0dabd6da433e4bad562e3ed977aa13a390c8 Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Fri, 12 May 2023 15:07:02 -0500
Subject: [PATCH 05/72] Try with rendered SVGs in Markdown and <details>

---
 docs/architecture/diagrams/model_timeline.md  | 10 +++++++++-
 docs/architecture/diagrams/model_timeline.svg |  1 +
 docs/architecture/diagrams/models_diagram.md  |  7 ++++++-
 docs/architecture/diagrams/models_diagram.svg |  1 +
 4 files changed, 17 insertions(+), 2 deletions(-)
 create mode 100644 docs/architecture/diagrams/model_timeline.svg
 create mode 100644 docs/architecture/diagrams/models_diagram.svg

diff --git a/docs/architecture/diagrams/model_timeline.md b/docs/architecture/diagrams/model_timeline.md
index 2f8991ed6..6a0adda2a 100644
--- a/docs/architecture/diagrams/model_timeline.md
+++ b/docs/architecture/diagrams/model_timeline.md
@@ -19,7 +19,12 @@ A more complete diagram of the data models, their fields, and their
 relationships are in [models_diagram.md](./models_diagram.md), created with
 the `django-model2puml` plugin.
 
-```mermaid
+![./model_timeline.svg]
+
+<details>
+<summary>PlantUML source code</summary>
+```plantuml
+@startuml
 
 allowmixing
 left to right direction
@@ -130,4 +135,7 @@ user2 -[#green]-> DomainInformation : **/domain/<id>/?????**
 actor user3 #Green
 user3 -right[#green]-> UserDomainRole : **/domain/<id>/users/add**
 user3 -right[#green]-> DomainInvitation : **/domain/<id>/users/add**
+
+@enduml
 ```
+</details>
diff --git a/docs/architecture/diagrams/model_timeline.svg b/docs/architecture/diagrams/model_timeline.svg
new file mode 100644
index 000000000..fb466ec21
--- /dev/null
+++ b/docs/architecture/diagrams/model_timeline.svg
@@ -0,0 +1 @@
+<?xml version="1.0" encoding="us-ascii" standalone="no"?><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" contentStyleType="text/css" height="991px" preserveAspectRatio="none" style="width:1487px;height:991px;background:#FFFFFF;" version="1.1" viewBox="0 0 1487 991" width="1487px" zoomAndPan="magnify"><defs/><g><!--class DomainApplication--><g id="elem_DomainApplication"><rect codeLine="31" fill="#F1F1F1" height="220.8828" id="DomainApplication" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="224" x="337" y="430.3"/><ellipse cx="379.45" cy="446.3" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M381.9231,452.4431 Q381.3421,452.7419 380.7029,452.8913 Q380.0638,453.0407 379.3582,453.0407 Q376.8514,453.0407 375.5315,451.3889 Q374.2117,449.737 374.2117,446.6159 Q374.2117,443.4865 375.5315,441.8347 Q376.8514,440.1828 379.3582,440.1828 Q380.0638,440.1828 380.7112,440.3322 Q381.3587,440.4816 381.9231,440.7805 L381.9231,443.5031 Q381.2923,442.9221 380.6988,442.6523 Q380.1053,442.3825 379.4744,442.3825 Q378.1297,442.3825 377.4449,443.4492 Q376.7601,444.5158 376.7601,446.6159 Q376.7601,448.7077 377.4449,449.7744 Q378.1297,450.841 379.4744,450.841 Q380.1053,450.841 380.6988,450.5712 Q381.2923,450.3015 381.9231,449.7204 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="131" x="399.55" y="451.591">DomainApplication</text><line style="stroke:#181818;stroke-width:0.5;" x1="338" x2="560" y1="462.3" y2="462.3"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="170" x="343" y="479.8352">Application for a domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="338" x2="560" y1="486.7883" y2="486.7883"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="343" y="504.3234">creator (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="343" y="520.8117">investigator (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="200" x="343" y="537.3">authorizing_official (Contact)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="133" x="343" y="553.7883">submitter (Contact)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="175" x="343" y="570.2766">other_contacts (Contacts)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="195" x="343" y="586.7648">requested_domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="190" x="343" y="603.2531">current_websites (Websites)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="212" x="343" y="619.7414">alternative_domains (Websites)</text><line style="stroke:#181818;stroke-width:1.0;" x1="338" x2="560" y1="626.6945" y2="626.6945"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="343" y="644.2297">Request information...</text></g><!--class User--><g id="elem_User"><rect codeLine="46" fill="#F1F1F1" height="88.9766" id="User" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="142" x="378" y="290.26"/><ellipse cx="429.25" cy="306.26" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M431.7231,312.4031 Q431.1421,312.7019 430.5029,312.8513 Q429.8638,313.0007 429.1582,313.0007 Q426.6514,313.0007 425.3315,311.3489 Q424.0117,309.697 424.0117,306.5759 Q424.0117,303.4465 425.3315,301.7947 Q426.6514,300.1428 429.1582,300.1428 Q429.8638,300.1428 430.5112,300.2922 Q431.1587,300.4416 431.7231,300.7405 L431.7231,303.4631 Q431.0923,302.8821 430.4988,302.6123 Q429.9053,302.3425 429.2744,302.3425 Q427.9297,302.3425 427.2449,303.4092 Q426.5601,304.4758 426.5601,306.5759 Q426.5601,308.6677 427.2449,309.7344 Q427.9297,310.801 429.2744,310.801 Q429.9053,310.801 430.4988,310.5312 Q431.0923,310.2615 431.7231,309.6804 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="31" x="449.75" y="311.551">User</text><line style="stroke:#181818;stroke-width:0.5;" x1="379" x2="519" y1="322.26" y2="322.26"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="130" x="384" y="339.7952">Django's user class</text><line style="stroke:#181818;stroke-width:1.0;" x1="379" x2="519" y1="346.7483" y2="346.7483"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="12" x="384" y="364.2834">...</text><line style="stroke:#181818;stroke-width:1.0;" x1="379" x2="519" y1="371.2366" y2="371.2366"/></g><g id="elem_GMN4"><path d="M6,291.47 L6,378.0227 A0,0 0 0 0 6,378.0227 L209,378.0227 A0,0 0 0 0 209,378.0227 L209,338.75 L377.58,334.75 L209,330.75 L209,301.47 L199,291.47 L6,291.47 A0,0 0 0 0 6,291.47 " fill="#FEFFDD" style="stroke:#181818;stroke-width:0.5;"/><path d="M199,291.47 L199,301.47 L209,301.47 L199,291.47 " fill="#FEFFDD" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="149" x="12" y="309.0384">Created by DjangoOIDC</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="144" x="12" y="324.3489">when users arrive back</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="96" x="12" y="339.6595">from Login.gov</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="4" x="12" y="354.97">&#160;</text><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="68" x="12" y="370.2805">username</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="110" x="84" y="370.2805">is the Login UUID</text></g><!--class Contact--><g id="elem_Contact"><rect codeLine="62" fill="#F1F1F1" height="171.418" id="Contact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="184" x="357" y="703.04"/><ellipse cx="418.25" cy="719.04" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M420.7231,725.1831 Q420.1421,725.4819 419.5029,725.6313 Q418.8638,725.7807 418.1582,725.7807 Q415.6514,725.7807 414.3315,724.1289 Q413.0117,722.477 413.0117,719.3559 Q413.0117,716.2265 414.3315,714.5747 Q415.6514,712.9228 418.1582,712.9228 Q418.8638,712.9228 419.5112,713.0722 Q420.1587,713.2216 420.7231,713.5205 L420.7231,716.2431 Q420.0923,715.6621 419.4988,715.3923 Q418.9053,715.1225 418.2744,715.1225 Q416.9297,715.1225 416.2449,716.1892 Q415.5601,717.2558 415.5601,719.3559 Q415.5601,721.4477 416.2449,722.5144 Q416.9297,723.581 418.2744,723.581 Q418.9053,723.581 419.4988,723.3112 Q420.0923,723.0415 420.7231,722.4604 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="53" x="438.75" y="724.331">Contact</text><line style="stroke:#181818;stroke-width:0.5;" x1="358" x2="540" y1="735.04" y2="735.04"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="363" y="752.5752">Contact info for a person</text><line style="stroke:#181818;stroke-width:1.0;" x1="358" x2="540" y1="759.5283" y2="759.5283"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="72" x="363" y="777.0634">first_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="92" x="363" y="793.5517">middle_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="69" x="363" y="810.04">last_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="26" x="363" y="826.5283">title</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="37" x="363" y="843.0166">email</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="44" x="363" y="859.5048">phone</text><line style="stroke:#181818;stroke-width:1.0;" x1="358" x2="540" y1="866.458" y2="866.458"/></g><!--class Domain--><g id="elem_Domain"><rect codeLine="76" fill="#F1F1F1" height="121.9531" id="Domain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="135" x="1345" y="380.77"/><ellipse cx="1382.5" cy="396.77" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1384.9731,402.9131 Q1384.3921,403.2119 1383.7529,403.3613 Q1383.1138,403.5107 1382.4082,403.5107 Q1379.9014,403.5107 1378.5815,401.8589 Q1377.2617,400.207 1377.2617,397.0859 Q1377.2617,393.9565 1378.5815,392.3047 Q1379.9014,390.6528 1382.4082,390.6528 Q1383.1138,390.6528 1383.7612,390.8022 Q1384.4087,390.9516 1384.9731,391.2505 L1384.9731,393.9731 Q1384.3423,393.3921 1383.7488,393.1223 Q1383.1553,392.8525 1382.5244,392.8525 Q1381.1797,392.8525 1380.4949,393.9192 Q1379.8101,394.9858 1379.8101,397.0859 Q1379.8101,399.1777 1380.4949,400.2444 Q1381.1797,401.311 1382.5244,401.311 Q1383.1553,401.311 1383.7488,401.0412 Q1384.3423,400.7715 1384.9731,400.1904 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="53" x="1401.5" y="402.061">Domain</text><line style="stroke:#181818;stroke-width:0.5;" x1="1346" x2="1479" y1="412.77" y2="412.77"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="123" x="1351" y="430.3052">Approved domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="1346" x2="1479" y1="437.2583" y2="437.2583"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="38" x="1351" y="454.7934">name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="57" x="1351" y="471.2817">is_active</text><line style="stroke:#181818;stroke-width:1.0;" x1="1346" x2="1479" y1="478.2348" y2="478.2348"/><text fill="#000000" font-family="sans-serif" font-size="14" font-weight="bold" lengthAdjust="spacing" textLength="94" x="1351" y="495.77">EPP methods</text></g><!--class DomainInformation--><g id="elem_DomainInformation"><rect codeLine="87" fill="#F1F1F1" height="138.4414" id="DomainInformation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="292" x="798" y="511.53"/><ellipse cx="872.75" cy="527.53" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M875.2231,533.6731 Q874.6421,533.9719 874.0029,534.1213 Q873.3638,534.2707 872.6582,534.2707 Q870.1514,534.2707 868.8315,532.6189 Q867.5117,530.967 867.5117,527.8459 Q867.5117,524.7165 868.8315,523.0647 Q870.1514,521.4128 872.6582,521.4128 Q873.3638,521.4128 874.0112,521.5622 Q874.6587,521.7116 875.2231,522.0105 L875.2231,524.7331 Q874.5923,524.1521 873.9988,523.8823 Q873.4053,523.6125 872.7744,523.6125 Q871.4297,523.6125 870.7449,524.6792 Q870.0601,525.7458 870.0601,527.8459 Q870.0601,529.9377 870.7449,531.0044 Q871.4297,532.071 872.7744,532.071 Q873.4053,532.071 873.9988,531.8012 Q874.5923,531.5315 875.2231,530.9504 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="893.25" y="532.821">DomainInformation</text><line style="stroke:#181818;stroke-width:0.5;" x1="799" x2="1089" y1="543.53" y2="543.53"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="237" x="804" y="561.0652">Registrar information on a domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="799" x2="1089" y1="568.0183" y2="568.0183"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="119" x="804" y="585.5534">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="280" x="804" y="602.0417">domain_application (DomainApplication)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="97" x="804" y="618.53">security_email</text><line style="stroke:#181818;stroke-width:1.0;" x1="799" x2="1089" y1="625.4831" y2="625.4831"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="804" y="643.0183">Request information...</text></g><!--class UserDomainRole--><g id="elem_UserDomainRole"><rect codeLine="101" fill="#F1F1F1" height="121.9531" id="UserDomainRole" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="146" x="871" y="267.77"/><ellipse cx="886" cy="283.77" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M888.4731,289.9131 Q887.8921,290.2119 887.2529,290.3613 Q886.6138,290.5107 885.9082,290.5107 Q883.4014,290.5107 882.0815,288.8589 Q880.7617,287.207 880.7617,284.0859 Q880.7617,280.9565 882.0815,279.3047 Q883.4014,277.6528 885.9082,277.6528 Q886.6138,277.6528 887.2612,277.8022 Q887.9087,277.9516 888.4731,278.2505 L888.4731,280.9731 Q887.8423,280.3921 887.2488,280.1223 Q886.6553,279.8525 886.0244,279.8525 Q884.6797,279.8525 883.9949,280.9192 Q883.3101,281.9858 883.3101,284.0859 Q883.3101,286.1777 883.9949,287.2444 Q884.6797,288.311 886.0244,288.311 Q886.6553,288.311 887.2488,288.0412 Q887.8423,287.7715 888.4731,287.1904 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="900" y="289.061">UserDomainRole</text><line style="stroke:#181818;stroke-width:0.5;" x1="872" x2="1016" y1="299.77" y2="299.77"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="82" x="877" y="317.3052">Permissions</text><line style="stroke:#181818;stroke-width:1.0;" x1="872" x2="1016" y1="324.2583" y2="324.2583"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="119" x="877" y="341.7934">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="75" x="877" y="358.2817">user (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="877" y="374.77">role="ADMIN"</text><line style="stroke:#181818;stroke-width:1.0;" x1="872" x2="1016" y1="381.7231" y2="381.7231"/></g><!--class DomainInvitation--><g id="elem_DomainInvitation"><rect codeLine="113" fill="#F1F1F1" height="121.9531" id="DomainInvitation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="157" x="370.5" y="133.77"/><ellipse cx="389.1" cy="149.77" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M391.5731,155.9131 Q390.9921,156.2119 390.3529,156.3613 Q389.7138,156.5107 389.0082,156.5107 Q386.5014,156.5107 385.1815,154.8589 Q383.8617,153.207 383.8617,150.0859 Q383.8617,146.9565 385.1815,145.3047 Q386.5014,143.6528 389.0082,143.6528 Q389.7138,143.6528 390.3612,143.8022 Q391.0087,143.9516 391.5731,144.2505 L391.5731,146.9731 Q390.9423,146.3921 390.3488,146.1223 Q389.7553,145.8525 389.1244,145.8525 Q387.7797,145.8525 387.0949,146.9192 Q386.4101,147.9858 386.4101,150.0859 Q386.4101,152.1777 387.0949,153.2444 Q387.7797,154.311 389.1244,154.311 Q389.7553,154.311 390.3488,154.0412 Q390.9423,153.7715 391.5731,153.1904 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="403.9" y="155.061">DomainInvitation</text><line style="stroke:#181818;stroke-width:0.5;" x1="371.5" x2="526.5" y1="165.77" y2="165.77"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="145" x="376.5" y="183.3052">Email invitations sent</text><line style="stroke:#181818;stroke-width:1.0;" x1="371.5" x2="526.5" y1="190.2583" y2="190.2583"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="37" x="376.5" y="207.7934">email</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="119" x="376.5" y="224.2817">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="41" x="376.5" y="240.77">status</text><line style="stroke:#181818;stroke-width:1.0;" x1="371.5" x2="526.5" y1="247.7231" y2="247.7231"/></g><!--entity applicant--><g id="elem_applicant"><ellipse cx="107.5" cy="467" fill="#FF0000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M107.5,475 L107.5,502 M94.5,483 L120.5,483 M107.5,502 L94.5,517 M107.5,502 L120.5,517 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="63" x="76" y="532.0352">applicant</text></g><!--entity analyst--><g id="elem_analyst"><ellipse cx="107.5" cy="578" fill="#0000FF" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M107.5,586 L107.5,613 M94.5,594 L120.5,594 M107.5,613 L94.5,628 M107.5,613 L120.5,628 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="48" x="83.5" y="643.0352">analyst</text></g><!--entity user1--><g id="elem_user1"><ellipse cx="944" cy="693" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M944,701 L944,728 M931,709 L957,709 M944,728 L931,743 M944,728 L957,743 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="39" x="924.5" y="758.0352">user1</text></g><!--entity user2--><g id="elem_user2"><ellipse cx="449" cy="918" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M449,926 L449,953 M436,934 L462,934 M449,953 L436,968 M449,953 L462,968 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="39" x="429.5" y="983.0352">user2</text></g><!--entity user3--><g id="elem_user3"><ellipse cx="449" cy="14" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M449,22 L449,49 M436,30 L462,30 M449,49 L436,64 M449,49 L462,64 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="39" x="429.5" y="79.0352">user3</text></g><!--link User to DomainApplication--><g id="link_User_DomainApplication"><path codeLine="60" d="M449,379.33 C449,394.42 449,412 449,429.91 " fill="none" id="User-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="127" x="374" y="409.8384">creator, investigator</text></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="74" d="M449,665.32 C449,673.25 449,681.17 449,688.97 " fill="none" id="DomainApplication-Contact" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="449,652.53,445,658.53,449,664.53,453,658.53,449,652.53" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="449,701.7,453,695.7,449,689.7,445,695.7,449,701.7" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="294" x="290.5" y="682.1784">authorizing_official, submitter, other_contacts</text></g><!--link DomainApplication to Domain--><g id="link_DomainApplication_Domain"><path codeLine="85" d="M561.49,524.25 C629.69,514.52 718.76,502.45 798,493.75 C993.13,472.31 1224.03,454.87 1338.95,446.72 " fill="none" id="DomainApplication-to-Domain" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="1343.67,446.32,1334.4072,442.9733,1338.6828,446.6773,1334.9788,450.9528,1343.67,446.32" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="58" x="915" y="462.3184">approve()</text></g><!--link DomainInformation to Domain--><g id="link_DomainInformation_Domain"><path codeLine="97" d="M1090.37,537.43 C1175.4,512.1 1278.68,481.32 1344.75,461.64 " fill="none" id="DomainInformation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to DomainApplication--><g id="link_DomainInformation_DomainApplication"><path codeLine="98" d="M797.89,565.44 C787.78,564.49 777.74,563.58 768,562.75 C699.35,556.84 622.27,551.48 561.18,547.52 " fill="none" id="DomainInformation-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to DomainInformation--><g id="link_DomainApplication_DomainInformation"><path codeLine="99" d="M561.16,581.43 C571.15,583.98 581.19,586.15 591,587.75 C656.45,598.37 729.63,598.73 792.25,595.62 " fill="none" id="DomainApplication-to-DomainInformation" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="796.89,595.33,787.6964,591.7975,791.8966,595.5868,788.1073,599.787,796.89,595.33" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="58" x="650.5" y="584.3184">approve()</text></g><!--link UserDomainRole to User--><g id="link_UserDomainRole_User"><path codeLine="109" d="M870.81,329.62 C776.79,330.77 613.49,332.76 520.37,333.89 " fill="none" id="UserDomainRole-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to Domain--><g id="link_UserDomainRole_Domain"><path codeLine="110" d="M1017.48,345.06 C1092.2,362.05 1211.99,389.76 1315,415.75 C1324.59,418.16 1334.69,420.8 1344.61,423.42 " fill="none" id="UserDomainRole-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to UserDomainRole--><g id="link_DomainApplication_UserDomainRole"><path codeLine="111" d="M561.37,436.7 C571.03,430.09 580.96,424 591,418.75 C638.24,394.04 776.57,362.72 865.1,344.29 " fill="none" id="DomainApplication-to-UserDomainRole" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="869.85,343.1,860.226,341.0073,864.9538,344.1135,861.8476,348.8413,869.85,343.1" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="58" x="650.5" y="362.3184">approve()</text></g><!--link DomainInvitation to Domain--><g id="link_DomainInvitation_Domain"><path codeLine="121" d="M527.59,192.07 C649.76,189.95 893.3,194.21 1090,250.75 C1197.93,281.77 1220.44,305.16 1315,365.75 C1324.88,372.07 1334.96,379.19 1344.71,386.46 " fill="none" id="DomainInvitation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInvitation to UserDomainRole--><g id="link_DomainInvitation_UserDomainRole"><path codeLine="122" d="M527.67,226.06 C548.09,233.71 570.22,241.48 591,247.75 C684.04,275.8 793.42,299.57 865.27,313.96 " fill="none" id="DomainInvitation-to-UserDomainRole" style="stroke:#008000;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#008000" points="869.8,315.07,861.7465,309.4006,864.8949,314.1004,860.1952,317.2488,869.8,315.07" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="105" x="627" y="244.3184">User.first_login()</text></g><!--link applicant to DomainApplication--><g id="link_applicant_DomainApplication"><path codeLine="125" d="M139.23,500.73 C182.25,506.3 262.81,516.75 330.86,525.56 " fill="none" id="applicant-to-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="335.57,526.3,327.1592,521.1758,330.6115,525.657,326.1303,529.1093,335.57,526.3" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="60" x="243" y="511.3184">/register</text></g><!--link analyst to DomainApplication--><g id="link_analyst_DomainApplication"><path codeLine="128" d="M131.84,603.14 C172.5,595.12 258.9,578.06 331.12,563.81 " fill="none" id="analyst-to-DomainApplication" style="stroke:#0000FF;stroke-width:1.0;"/><polygon fill="#0000FF" points="335.74,562.7,326.1352,560.5212,330.8349,563.6696,327.6865,568.3694,335.74,562.7" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="66" x="240" y="566.3184">approve()</text></g><!--link user1 to Domain--><g id="link_user1_Domain"><path codeLine="131" d="M963.98,717.47 C1021.51,700.81 1197.24,644.87 1315,552.75 C1331.64,539.73 1347.6,523.54 1361.58,507.58 " fill="none" id="user1-to-Domain" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="1365.47,504.09,1356.5511,508.2676,1362.1937,507.867,1362.5943,513.5097,1365.47,504.09" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="193" x="1121" y="549.3184">/domain/&lt;id&gt;/nameservers</text></g><!--link user2 to DomainInformation--><g id="link_user2_DomainInformation"><path codeLine="133" d="M468.6,940.35 C491.43,930.84 530.82,912.99 561,891.75 C679.77,808.14 682.15,754.34 798,666.75 C803.86,662.32 809.97,657.93 816.21,653.61 " fill="none" id="user2-to-DomainInformation" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="820.01,650.33,810.3204,652.0941,815.8786,653.1462,814.8264,658.7044,820.01,650.33" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="135" x="612" y="688.3184">/domain/&lt;id&gt;/?????</text></g><!--link user3 to UserDomainRole--><g id="link_user3_UserDomainRole"><path codeLine="135" d="M468.76,54.03 C518.07,81.13 655.31,156.92 768,222.75 C800.17,241.54 835.36,262.72 865.69,281.19 " fill="none" id="user3-to-UserDomainRole" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="869.51,284.13,863.902,276.0337,865.239,281.5303,859.7424,282.8673,869.51,284.13" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="175" x="592" y="121.3184">/domain/&lt;id&gt;/users/add</text></g><!--link user3 to DomainInvitation--><g id="link_user3_DomainInvitation"><path codeLine="136" d="M449,82.14 C449,95.98 449,112.04 449,127.62 " fill="none" id="user3-to-DomainInvitation" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="449,132.33,453,123.33,449,127.33,445,123.33,449,132.33" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="175" x="350" y="112.9484">/domain/&lt;id&gt;/users/add</text></g><!--SRC=[XLNBRjim4BphAuZuKDS8RJIv1QcBD0uA0tq41e8UYaAWfBNCbY9TadAQ5ldtBYbHrijfOCJYBZcSdPsLcH3giU2_kSmZ0LjBh2AQvpjBCguXjLp9A4e5CuQiLC6ulDdl1K-PIv2_4I7jzLPfmaZczs6AKloNQc0MuzC70_er1hWyWB4yxqPPQNTAyp_88rRRBKyv4sHwgwHbgNKRJ9aKt5hGdQYoEz1nMWLCap8kf-5NYJT15bUCoBIgmENIKckGDdw4n70BUF9h_UJ92Bn7Oaq7gC_sDlZADXK-5eHr5rw1-NmUFGUzN6bUejKF9dFrof3IHNmoOBW3_l4vaie2yIrGMtyM4xTEFCX8ybI3V5clRZ7-k0FfqGnXMYDDah3q9oQsMXNaeygvdEVg467aEbcwZP8LSBr8beGRWffLUyZ3mteLWSo8kpoAXXscWbPrN8L6ddSQ66gjTVVbXcUdIss9FJ9LZIMsN1iREqQuA7YM2GWh16iobblXlW592VpUxvI4eDO8rndLTDRSVZLggVEZZyvxvkdQF7XRgmFgtxLqpO-R6C-X-26EKj_TtvC2yDxCEBN7YSxzW7sR9AA4x_Dbk14PL_TDNtUvh8y6yxGsa7DZDTDjwn7yz6TlwFig4hCMc-c0e1ytm17XzYaEwl_7yaEcbDRqNygrRXqJggzH6sD4BkVKQkD62V1QtOCkk35um9nMnSzbyohIUFRjsStgq_hpMR1R3vbMKp4IxfHyefRUgHVwVk3ssFOxrmatVNNGO9Ea3LM5FWshCxYzDA6I0VImJqqAEUSQG8wITe5vDSh2lKmSUvm7D-zLsTAIoGQowBYa6LsE_8nSaTbieRsfGSzc3OnauWdDDdcFkaLXHMiTJo8rOXwHN7_VaCa7LqjKBMWeZRRc3sbKyYskURPSk3d7pGTyUI7M4UgY3NKn0jMrQG_rdVlhu5ssyIu9hLyF3UX0-XwY_o5Oi2n3r1CGWzQ-2F8F]--></g></svg>
\ No newline at end of file
diff --git a/docs/architecture/diagrams/models_diagram.md b/docs/architecture/diagrams/models_diagram.md
index b06c8807a..95d8c0a58 100644
--- a/docs/architecture/diagrams/models_diagram.md
+++ b/docs/architecture/diagrams/models_diagram.md
@@ -8,7 +8,11 @@ using the command
 $ docker compose app ./manage.py generate_puml --include registrar
 ```
 
-```mermaid
+![./models_diagram.svg]
+
+<details>
+<summary>PlantUML source code</summary>
+```plantuml
 @startuml 
 class "registrar.Contact <Registrar>" as registrar.Contact #d6f4e9 {
     contact
@@ -260,3 +264,4 @@ class "registrar.Website <Registrar>" as registrar.Website #d6f4e9 {
 
 @enduml
 ```
+</details>
diff --git a/docs/architecture/diagrams/models_diagram.svg b/docs/architecture/diagrams/models_diagram.svg
new file mode 100644
index 000000000..40d0b57b9
--- /dev/null
+++ b/docs/architecture/diagrams/models_diagram.svg
@@ -0,0 +1 @@
+<?xml version="1.0" encoding="us-ascii" standalone="no"?><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" contentStyleType="text/css" height="2183px" preserveAspectRatio="none" style="width:1565px;height:2183px;background:#FFFFFF;" version="1.1" viewBox="0 0 1565 2183" width="1565px" zoomAndPan="magnify"><defs/><g><!--cluster registrar--><g id="cluster_registrar"><path d="M8.5,6 L71.5,6 A3.75,3.75 0 0 1 74,8.5 L81,28.4883 L1471.5,28.4883 A2.5,2.5 0 0 1 1474,30.9883 L1474,2173.86 A2.5,2.5 0 0 1 1471.5,2176.36 L8.5,2176.36 A2.5,2.5 0 0 1 6,2173.86 L6,8.5 A2.5,2.5 0 0 1 8.5,6 " fill="none" style="stroke:#000000;stroke-width:1.5;"/><line style="stroke:#000000;stroke-width:1.5;" x1="6" x2="81" y1="28.4883" y2="28.4883"/><text fill="#000000" font-family="sans-serif" font-size="14" font-weight="bold" lengthAdjust="spacing" textLength="62" x="10" y="21.5352">registrar</text></g><!--class Contact--><g id="elem_Contact"><rect codeLine="16" fill="#D6F4E9" height="237.3711" id="Contact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="215" x="883.5" y="1328.25"/><ellipse cx="901.65" cy="1344.25" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M904.1231,1350.3931 Q903.5421,1350.6919 902.9029,1350.8413 Q902.2638,1350.9907 901.5582,1350.9907 Q899.0514,1350.9907 897.7315,1349.3389 Q896.4117,1347.687 896.4117,1344.5659 Q896.4117,1341.4365 897.7315,1339.7847 Q899.0514,1338.1328 901.5582,1338.1328 Q902.2638,1338.1328 902.9112,1338.2822 Q903.5587,1338.4316 904.1231,1338.7305 L904.1231,1341.4531 Q903.4923,1340.8721 902.8988,1340.6023 Q902.3053,1340.3325 901.6744,1340.3325 Q900.3297,1340.3325 899.6449,1341.3992 Q898.9601,1342.4658 898.9601,1344.5659 Q898.9601,1346.6577 899.6449,1347.7244 Q900.3297,1348.791 901.6744,1348.791 Q902.3053,1348.791 902.8988,1348.5212 Q903.4923,1348.2515 904.1231,1347.6704 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="916.35" y="1349.541">registrar.Contact</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="1047.5" y="1325.25"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="1048.5" y="1337.8516">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="884.5" x2="1097.5" y1="1360.25" y2="1360.25"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="50" x="889.5" y="1377.7852">contact</text><line style="stroke:#181818;stroke-width:1.0;" x1="884.5" x2="1097.5" y1="1384.7383" y2="1384.7383"/><ellipse cx="894.5" cy="1398.4824" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="903.5" y="1402.2734">id (BigAutoField)</text><ellipse cx="894.5" cy="1414.9707" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="903.5" y="1418.7617">created_at (DateTimeField)</text><ellipse cx="894.5" cy="1431.459" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="903.5" y="1435.25">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="894.5,1443.9473,890.5,1449.9473,898.5,1449.9473" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="151" x="903.5" y="1451.7383">user (OneToOneField)</text><ellipse cx="894.5" cy="1464.4355" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="150" x="903.5" y="1468.2266">first_name (TextField)</text><ellipse cx="894.5" cy="1480.9238" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="170" x="903.5" y="1484.7148">middle_name (TextField)</text><ellipse cx="894.5" cy="1497.4121" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="147" x="903.5" y="1501.2031">last_name (TextField)</text><ellipse cx="894.5" cy="1513.9004" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="104" x="903.5" y="1517.6914">title (TextField)</text><ellipse cx="894.5" cy="1530.3887" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="115" x="903.5" y="1534.1797">email (TextField)</text><ellipse cx="894.5" cy="1546.877" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="903.5" y="1550.668">phone (PhoneNumberField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="884.5" x2="1097.5" y1="1557.6211" y2="1557.6211"/></g><!--class User--><g id="elem_User"><rect codeLine="230" fill="#D6F4E9" height="319.8125" id="User" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="283" x="849.5" y="1625.62"/><ellipse cx="909.75" cy="1641.62" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M912.2231,1647.7631 Q911.6421,1648.0619 911.0029,1648.2113 Q910.3638,1648.3607 909.6582,1648.3607 Q907.1514,1648.3607 905.8315,1646.7089 Q904.5117,1645.057 904.5117,1641.9359 Q904.5117,1638.8065 905.8315,1637.1547 Q907.1514,1635.5028 909.6582,1635.5028 Q910.3638,1635.5028 911.0112,1635.6522 Q911.6587,1635.8016 912.2231,1636.1005 L912.2231,1638.8231 Q911.5923,1638.2421 910.9988,1637.9723 Q910.4053,1637.7025 909.7744,1637.7025 Q908.4297,1637.7025 907.7449,1638.7692 Q907.0601,1639.8358 907.0601,1641.9359 Q907.0601,1644.0277 907.7449,1645.0944 Q908.4297,1646.161 909.7744,1646.161 Q910.4053,1646.161 910.9988,1645.8912 Q911.5923,1645.6215 912.2231,1645.0404 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="930.25" y="1646.911">registrar.User</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="1081.5" y="1622.62"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="1082.5" y="1635.2216">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="850.5" x2="1131.5" y1="1657.62" y2="1657.62"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="30" x="855.5" y="1675.1552">user</text><line style="stroke:#181818;stroke-width:1.0;" x1="850.5" x2="1131.5" y1="1682.1083" y2="1682.1083"/><ellipse cx="860.5" cy="1695.8524" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="869.5" y="1699.6434">id (BigAutoField)</text><ellipse cx="860.5" cy="1712.3407" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="146" x="869.5" y="1716.1317">password (CharField)</text><ellipse cx="860.5" cy="1728.829" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="178" x="869.5" y="1732.62">last_login (DateTimeField)</text><ellipse cx="860.5" cy="1745.3173" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="869.5" y="1749.1083">is_superuser (BooleanField)</text><ellipse cx="860.5" cy="1761.8055" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="148" x="869.5" y="1765.5966">username (CharField)</text><ellipse cx="860.5" cy="1778.2938" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="869.5" y="1782.0848">first_name (CharField)</text><ellipse cx="860.5" cy="1794.7821" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="149" x="869.5" y="1798.5731">last_name (CharField)</text><ellipse cx="860.5" cy="1811.2704" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="121" x="869.5" y="1815.0614">email (EmailField)</text><ellipse cx="860.5" cy="1827.7587" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="150" x="869.5" y="1831.5497">is_staff (BooleanField)</text><ellipse cx="860.5" cy="1844.247" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="159" x="869.5" y="1848.038">is_active (BooleanField)</text><ellipse cx="860.5" cy="1860.7352" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="192" x="869.5" y="1864.5263">date_joined (DateTimeField)</text><ellipse cx="860.5" cy="1877.2235" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="869.5" y="1881.0145">phone (PhoneNumberField)</text><polygon fill="#FFFF44" points="860.5,1888.7118,864.5,1892.7118,860.5,1896.7118,856.5,1892.7118" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="869.5" y="1897.5028">groups (ManyToManyField)</text><polygon fill="#FFFF44" points="860.5,1905.2001,864.5,1909.2001,860.5,1913.2001,856.5,1909.2001" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="257" x="869.5" y="1913.9911">user_permissions (ManyToManyField)</text><polygon fill="#FFFF44" points="860.5,1921.6884,864.5,1925.6884,860.5,1929.6884,856.5,1925.6884" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="196" x="869.5" y="1930.4794">domains (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="850.5" x2="1131.5" y1="1937.4325" y2="1937.4325"/></g><!--class DomainApplication--><g id="elem_DomainApplication"><rect codeLine="34" fill="#D6F4E9" height="600.1133" id="DomainApplication" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="323" x="1009.5" y="668.13"/><ellipse cx="1041.15" cy="684.13" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1043.6231,690.2731 Q1043.0421,690.5719 1042.4029,690.7213 Q1041.7638,690.8707 1041.0582,690.8707 Q1038.5514,690.8707 1037.2315,689.2189 Q1035.9117,687.567 1035.9117,684.4459 Q1035.9117,681.3165 1037.2315,679.6647 Q1038.5514,678.0128 1041.0582,678.0128 Q1041.7638,678.0128 1042.4112,678.1622 Q1043.0587,678.3116 1043.6231,678.6105 L1043.6231,681.3331 Q1042.9923,680.7521 1042.3988,680.4823 Q1041.8053,680.2125 1041.1744,680.2125 Q1039.8297,680.2125 1039.1449,681.2792 Q1038.4601,682.3458 1038.4601,684.4459 Q1038.4601,686.5377 1039.1449,687.6044 Q1039.8297,688.671 1041.1744,688.671 Q1041.8053,688.671 1042.3988,688.4012 Q1042.9923,688.1315 1043.6231,687.5504 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="194" x="1058.85" y="689.421">registrar.DomainApplication</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="1281.5" y="665.13"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="1282.5" y="677.7316">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="1010.5" x2="1331.5" y1="700.13" y2="700.13"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="1015.5" y="717.6652">domain application</text><line style="stroke:#181818;stroke-width:1.0;" x1="1010.5" x2="1331.5" y1="724.6183" y2="724.6183"/><ellipse cx="1020.5" cy="738.3624" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="1029.5" y="742.1534">id (BigAutoField)</text><ellipse cx="1020.5" cy="754.8507" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="1029.5" y="758.6417">created_at (DateTimeField)</text><ellipse cx="1020.5" cy="771.339" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="1029.5" y="775.13">updated_at (DateTimeField)</text><ellipse cx="1020.5" cy="787.8273" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="1029.5" y="791.6183">status (FSMField)</text><polygon fill="#4177AF" points="1020.5,800.3155,1016.5,806.3155,1024.5,806.3155" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="140" x="1029.5" y="808.1066">creator (ForeignKey)</text><polygon fill="#4177AF" points="1020.5,816.8038,1016.5,822.8038,1024.5,822.8038" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="1029.5" y="824.5948">investigator (ForeignKey)</text><ellipse cx="1020.5" cy="837.2921" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="204" x="1029.5" y="841.0831">organization_type (CharField)</text><ellipse cx="1020.5" cy="853.7804" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="284" x="1029.5" y="857.5714">federally_recognized_tribe (BooleanField)</text><ellipse cx="1020.5" cy="870.2687" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="258" x="1029.5" y="874.0597">state_recognized_tribe (BooleanField)</text><ellipse cx="1020.5" cy="886.757" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="155" x="1029.5" y="890.548">tribe_name (TextField)</text><ellipse cx="1020.5" cy="903.2452" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="181" x="1029.5" y="907.0363">federal_agency (TextField)</text><ellipse cx="1020.5" cy="919.7335" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="164" x="1029.5" y="923.5245">federal_type (CharField)</text><ellipse cx="1020.5" cy="936.2218" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="222" x="1029.5" y="940.0128">is_election_board (BooleanField)</text><ellipse cx="1020.5" cy="952.7101" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="211" x="1029.5" y="956.5011">organization_name (TextField)</text><ellipse cx="1020.5" cy="969.1984" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="1029.5" y="972.9894">address_line1 (TextField)</text><ellipse cx="1020.5" cy="985.6866" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="175" x="1029.5" y="989.4777">address_line2 (CharField)</text><ellipse cx="1020.5" cy="1002.1749" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="101" x="1029.5" y="1005.9659">city (TextField)</text><ellipse cx="1020.5" cy="1018.6632" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="176" x="1029.5" y="1022.4542">state_territory (CharField)</text><ellipse cx="1020.5" cy="1035.1515" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="1029.5" y="1038.9425">zipcode (CharField)</text><ellipse cx="1020.5" cy="1051.6398" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="1029.5" y="1055.4308">urbanization (TextField)</text><ellipse cx="1020.5" cy="1068.128" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="169" x="1029.5" y="1071.9191">type_of_work (TextField)</text><ellipse cx="1020.5" cy="1084.6163" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="297" x="1029.5" y="1088.4073">more_organization_information (TextField)</text><polygon fill="#4177AF" points="1020.5,1097.1046,1016.5,1103.1046,1024.5,1103.1046" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="224" x="1029.5" y="1104.8956">authorizing_official (ForeignKey)</text><polygon fill="#4177AF" points="1020.5,1113.5929,1016.5,1119.5929,1024.5,1119.5929" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="249" x="1029.5" y="1121.3839">requested_domain (OneToOneField)</text><polygon fill="#4177AF" points="1020.5,1130.0812,1016.5,1136.0812,1024.5,1136.0812" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="1029.5" y="1137.8722">submitter (ForeignKey)</text><ellipse cx="1020.5" cy="1150.5695" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="135" x="1029.5" y="1154.3605">purpose (TextField)</text><ellipse cx="1020.5" cy="1167.0577" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="272" x="1029.5" y="1170.8488">no_other_contacts_rationale (TextField)</text><ellipse cx="1020.5" cy="1183.546" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="1029.5" y="1187.337">anything_else (TextField)</text><ellipse cx="1020.5" cy="1200.0343" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="266" x="1029.5" y="1203.8253">is_policy_acknowledged (BooleanField)</text><polygon fill="#FFFF44" points="1020.5,1211.5226,1024.5,1215.5226,1020.5,1219.5226,1016.5,1215.5226" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="253" x="1029.5" y="1220.3136">current_websites (ManyToManyField)</text><polygon fill="#FFFF44" points="1020.5,1228.0109,1024.5,1232.0109,1020.5,1236.0109,1016.5,1232.0109" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="275" x="1029.5" y="1236.8019">alternative_domains (ManyToManyField)</text><polygon fill="#FFFF44" points="1020.5,1244.4991,1024.5,1248.4991,1020.5,1252.4991,1016.5,1248.4991" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="238" x="1029.5" y="1253.2902">other_contacts (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="1010.5" x2="1331.5" y1="1260.2433" y2="1260.2433"/></g><!--class Domain--><g id="elem_Domain"><rect codeLine="124" fill="#D6F4E9" height="154.9297" id="Domain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="215" x="705.5" y="2005.43"/><ellipse cx="723.65" cy="2021.43" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M726.1231,2027.5731 Q725.5421,2027.8719 724.9029,2028.0213 Q724.2638,2028.1707 723.5582,2028.1707 Q721.0514,2028.1707 719.7315,2026.5189 Q718.4117,2024.867 718.4117,2021.7459 Q718.4117,2018.6165 719.7315,2016.9647 Q721.0514,2015.3128 723.5582,2015.3128 Q724.2638,2015.3128 724.9112,2015.4622 Q725.5587,2015.6116 726.1231,2015.9105 L726.1231,2018.6331 Q725.4923,2018.0521 724.8988,2017.7823 Q724.3053,2017.5125 723.6744,2017.5125 Q722.3297,2017.5125 721.6449,2018.5792 Q720.9601,2019.6458 720.9601,2021.7459 Q720.9601,2023.8377 721.6449,2024.9044 Q722.3297,2025.971 723.6744,2025.971 Q724.3053,2025.971 724.8988,2025.7012 Q725.4923,2025.4315 726.1231,2024.8504 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="738.35" y="2026.721">registrar.Domain</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="869.5" y="2002.43"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="870.5" y="2015.0316">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="706.5" x2="919.5" y1="2037.43" y2="2037.43"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="52" x="711.5" y="2054.9652">domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="706.5" x2="919.5" y1="2061.9183" y2="2061.9183"/><ellipse cx="716.5" cy="2075.6624" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="725.5" y="2079.4534">id (BigAutoField)</text><ellipse cx="716.5" cy="2092.1507" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="725.5" y="2095.9417">created_at (DateTimeField)</text><ellipse cx="716.5" cy="2108.639" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="725.5" y="2112.43">updated_at (DateTimeField)</text><ellipse cx="716.5" cy="2125.1273" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="725.5" y="2128.9183">name (CharField)</text><ellipse cx="716.5" cy="2141.6155" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="725.5" y="2145.4066">is_active (FSMField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="706.5" x2="919.5" y1="2152.3597" y2="2152.3597"/></g><!--class Website--><g id="elem_Website"><rect codeLine="253" fill="#D6F4E9" height="138.4414" id="Website" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="215" x="1206.5" y="1377.71"/><ellipse cx="1224.65" cy="1393.71" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1227.1231,1399.8531 Q1226.5421,1400.1519 1225.9029,1400.3013 Q1225.2638,1400.4507 1224.5582,1400.4507 Q1222.0514,1400.4507 1220.7315,1398.7989 Q1219.4117,1397.147 1219.4117,1394.0259 Q1219.4117,1390.8965 1220.7315,1389.2447 Q1222.0514,1387.5928 1224.5582,1387.5928 Q1225.2638,1387.5928 1225.9112,1387.7422 Q1226.5587,1387.8916 1227.1231,1388.1905 L1227.1231,1390.9131 Q1226.4923,1390.3321 1225.8988,1390.0623 Q1225.3053,1389.7925 1224.6744,1389.7925 Q1223.3297,1389.7925 1222.6449,1390.8592 Q1221.9601,1391.9258 1221.9601,1394.0259 Q1221.9601,1396.1177 1222.6449,1397.1844 Q1223.3297,1398.251 1224.6744,1398.251 Q1225.3053,1398.251 1225.8988,1397.9812 Q1226.4923,1397.7115 1227.1231,1397.1304 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="1239.35" y="1399.001">registrar.Website</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="1370.5" y="1374.71"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="1371.5" y="1387.3116">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="1207.5" x2="1420.5" y1="1409.71" y2="1409.71"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="52" x="1212.5" y="1427.2452">website</text><line style="stroke:#181818;stroke-width:1.0;" x1="1207.5" x2="1420.5" y1="1434.1983" y2="1434.1983"/><ellipse cx="1217.5" cy="1447.9424" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="1226.5" y="1451.7334">id (BigAutoField)</text><ellipse cx="1217.5" cy="1464.4307" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="1226.5" y="1468.2217">created_at (DateTimeField)</text><ellipse cx="1217.5" cy="1480.919" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="1226.5" y="1484.71">updated_at (DateTimeField)</text><ellipse cx="1217.5" cy="1497.4073" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="1226.5" y="1501.1983">website (CharField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="1207.5" x2="1420.5" y1="1508.1514" y2="1508.1514"/></g><!--class DomainInformation--><g id="elem_DomainInformation"><rect codeLine="81" fill="#D6F4E9" height="567.1367" id="DomainInformation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="323" x="812.5" y="41"/><ellipse cx="842.8" cy="57" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M845.2731,63.1431 Q844.6921,63.4419 844.0529,63.5913 Q843.4138,63.7407 842.7082,63.7407 Q840.2014,63.7407 838.8815,62.0889 Q837.5617,60.437 837.5617,57.3159 Q837.5617,54.1865 838.8815,52.5347 Q840.2014,50.8828 842.7082,50.8828 Q843.4138,50.8828 844.0612,51.0322 Q844.7087,51.1816 845.2731,51.4805 L845.2731,54.2031 Q844.6423,53.6221 844.0488,53.3523 Q843.4553,53.0825 842.8244,53.0825 Q841.4797,53.0825 840.7949,54.1492 Q840.1101,55.2158 840.1101,57.3159 Q840.1101,59.4077 840.7949,60.4744 Q841.4797,61.541 842.8244,61.541 Q843.4553,61.541 844.0488,61.2712 Q844.6423,61.0015 845.2731,60.4204 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="197" x="860.2" y="62.291">registrar.DomainInformation</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="1084.5" y="38"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="1085.5" y="50.6016">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="813.5" x2="1134.5" y1="73" y2="73"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="137" x="818.5" y="90.5352">domain information</text><line style="stroke:#181818;stroke-width:1.0;" x1="813.5" x2="1134.5" y1="97.4883" y2="97.4883"/><ellipse cx="823.5" cy="111.2324" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="832.5" y="115.0234">id (BigAutoField)</text><ellipse cx="823.5" cy="127.7207" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="832.5" y="131.5117">created_at (DateTimeField)</text><ellipse cx="823.5" cy="144.209" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="832.5" y="148">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="823.5,156.6973,819.5,162.6973,827.5,162.6973" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="140" x="832.5" y="164.4883">creator (ForeignKey)</text><polygon fill="#4177AF" points="823.5,173.1855,819.5,179.1855,827.5,179.1855" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="256" x="832.5" y="180.9766">domain_application (OneToOneField)</text><ellipse cx="823.5" cy="193.6738" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="204" x="832.5" y="197.4648">organization_type (CharField)</text><ellipse cx="823.5" cy="210.1621" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="284" x="832.5" y="213.9531">federally_recognized_tribe (BooleanField)</text><ellipse cx="823.5" cy="226.6504" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="258" x="832.5" y="230.4414">state_recognized_tribe (BooleanField)</text><ellipse cx="823.5" cy="243.1387" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="155" x="832.5" y="246.9297">tribe_name (TextField)</text><ellipse cx="823.5" cy="259.627" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="181" x="832.5" y="263.418">federal_agency (TextField)</text><ellipse cx="823.5" cy="276.1152" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="164" x="832.5" y="279.9063">federal_type (CharField)</text><ellipse cx="823.5" cy="292.6035" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="222" x="832.5" y="296.3945">is_election_board (BooleanField)</text><ellipse cx="823.5" cy="309.0918" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="211" x="832.5" y="312.8828">organization_name (TextField)</text><ellipse cx="823.5" cy="325.5801" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="832.5" y="329.3711">address_line1 (TextField)</text><ellipse cx="823.5" cy="342.0684" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="175" x="832.5" y="345.8594">address_line2 (CharField)</text><ellipse cx="823.5" cy="358.5566" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="101" x="832.5" y="362.3477">city (TextField)</text><ellipse cx="823.5" cy="375.0449" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="176" x="832.5" y="378.8359">state_territory (CharField)</text><ellipse cx="823.5" cy="391.5332" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="832.5" y="395.3242">zipcode (CharField)</text><ellipse cx="823.5" cy="408.0215" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="832.5" y="411.8125">urbanization (TextField)</text><ellipse cx="823.5" cy="424.5098" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="169" x="832.5" y="428.3008">type_of_work (TextField)</text><ellipse cx="823.5" cy="440.998" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="297" x="832.5" y="444.7891">more_organization_information (TextField)</text><polygon fill="#4177AF" points="823.5,453.4863,819.5,459.4863,827.5,459.4863" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="224" x="832.5" y="461.2773">authorizing_official (ForeignKey)</text><polygon fill="#4177AF" points="823.5,469.9746,819.5,475.9746,827.5,475.9746" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="832.5" y="477.7656">domain (OneToOneField)</text><polygon fill="#4177AF" points="823.5,486.4629,819.5,492.4629,827.5,492.4629" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="832.5" y="494.2539">submitter (ForeignKey)</text><ellipse cx="823.5" cy="506.9512" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="135" x="832.5" y="510.7422">purpose (TextField)</text><ellipse cx="823.5" cy="523.4395" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="272" x="832.5" y="527.2305">no_other_contacts_rationale (TextField)</text><ellipse cx="823.5" cy="539.9277" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="832.5" y="543.7188">anything_else (TextField)</text><ellipse cx="823.5" cy="556.416" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="266" x="832.5" y="560.207">is_policy_acknowledged (BooleanField)</text><ellipse cx="823.5" cy="572.9043" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="181" x="832.5" y="576.6953">security_email (EmailField)</text><polygon fill="#FFFF44" points="823.5,584.3926,827.5,588.3926,823.5,592.3926,819.5,588.3926" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="238" x="832.5" y="593.1836">other_contacts (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="813.5" x2="1134.5" y1="600.1367" y2="600.1367"/></g><!--class HostIP--><g id="elem_HostIP"><rect codeLine="136" fill="#D6F4E9" height="154.9297" id="HostIP" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="215" x="293.5" y="1369.47"/><ellipse cx="316.15" cy="1385.47" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M318.6231,1391.6131 Q318.0421,1391.9119 317.4029,1392.0613 Q316.7638,1392.2107 316.0582,1392.2107 Q313.5514,1392.2107 312.2315,1390.5589 Q310.9117,1388.907 310.9117,1385.7859 Q310.9117,1382.6565 312.2315,1381.0047 Q313.5514,1379.3528 316.0582,1379.3528 Q316.7638,1379.3528 317.4112,1379.5022 Q318.0587,1379.6516 318.6231,1379.9505 L318.6231,1382.6731 Q317.9923,1382.0921 317.3988,1381.8223 Q316.8053,1381.5525 316.1744,1381.5525 Q314.8297,1381.5525 314.1449,1382.6192 Q313.4601,1383.6858 313.4601,1385.7859 Q313.4601,1387.8777 314.1449,1388.9444 Q314.8297,1390.011 316.1744,1390.011 Q316.8053,1390.011 317.3988,1389.7412 Q317.9923,1389.4715 318.6231,1388.8904 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="106" x="331.85" y="1390.761">registrar.HostIP</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="457.5" y="1366.47"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="458.5" y="1379.0716">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="294.5" x2="507.5" y1="1401.47" y2="1401.47"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="47" x="299.5" y="1419.0052">host ip</text><line style="stroke:#181818;stroke-width:1.0;" x1="294.5" x2="507.5" y1="1425.9583" y2="1425.9583"/><ellipse cx="304.5" cy="1439.7024" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="313.5" y="1443.4934">id (BigAutoField)</text><ellipse cx="304.5" cy="1456.1907" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="313.5" y="1459.9817">created_at (DateTimeField)</text><ellipse cx="304.5" cy="1472.679" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="313.5" y="1476.47">updated_at (DateTimeField)</text><ellipse cx="304.5" cy="1489.1673" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="313.5" y="1492.9583">address (CharField)</text><polygon fill="#4177AF" points="304.5,1501.6555,300.5,1507.6555,308.5,1507.6555" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="121" x="313.5" y="1509.4466">host (ForeignKey)</text><line style="stroke:#181818;stroke-width:1.0;" x1="294.5" x2="507.5" y1="1516.3997" y2="1516.3997"/></g><!--class Host--><g id="elem_Host"><rect codeLine="149" fill="#D6F4E9" height="154.9297" id="Host" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="215" x="254.5" y="1708.06"/><ellipse cx="282.55" cy="1724.06" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M285.0231,1730.2031 Q284.4421,1730.5019 283.8029,1730.6513 Q283.1638,1730.8007 282.4582,1730.8007 Q279.9514,1730.8007 278.6315,1729.1489 Q277.3117,1727.497 277.3117,1724.3759 Q277.3117,1721.2465 278.6315,1719.5947 Q279.9514,1717.9428 282.4582,1717.9428 Q283.1638,1717.9428 283.8112,1718.0922 Q284.4587,1718.2416 285.0231,1718.5405 L285.0231,1721.2631 Q284.3923,1720.6821 283.7988,1720.4123 Q283.2053,1720.1425 282.5744,1720.1425 Q281.2297,1720.1425 280.5449,1721.2092 Q279.8601,1722.2758 279.8601,1724.3759 Q279.8601,1726.4677 280.5449,1727.5344 Q281.2297,1728.601 282.5744,1728.601 Q283.2053,1728.601 283.7988,1728.3312 Q284.3923,1728.0615 285.0231,1727.4804 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="299.45" y="1729.351">registrar.Host</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="418.5" y="1705.06"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="419.5" y="1717.6616">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="255.5" x2="468.5" y1="1740.06" y2="1740.06"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="30" x="260.5" y="1757.5952">host</text><line style="stroke:#181818;stroke-width:1.0;" x1="255.5" x2="468.5" y1="1764.5483" y2="1764.5483"/><ellipse cx="265.5" cy="1778.2924" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="274.5" y="1782.0834">id (BigAutoField)</text><ellipse cx="265.5" cy="1794.7807" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="274.5" y="1798.5717">created_at (DateTimeField)</text><ellipse cx="265.5" cy="1811.269" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="274.5" y="1815.06">updated_at (DateTimeField)</text><ellipse cx="265.5" cy="1827.7573" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="274.5" y="1831.5483">name (CharField)</text><polygon fill="#4177AF" points="265.5,1840.2455,261.5,1846.2455,269.5,1846.2455" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="143" x="274.5" y="1848.0366">domain (ForeignKey)</text><line style="stroke:#181818;stroke-width:1.0;" x1="255.5" x2="468.5" y1="1854.9897" y2="1854.9897"/></g><!--class UserDomainRole--><g id="elem_UserDomainRole"><rect codeLine="162" fill="#D6F4E9" height="171.418" id="UserDomainRole" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="269" x="543.5" y="1361.22"/><ellipse cx="558.5" cy="1377.22" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M560.9731,1383.3631 Q560.3921,1383.6619 559.7529,1383.8113 Q559.1138,1383.9607 558.4082,1383.9607 Q555.9014,1383.9607 554.5815,1382.3089 Q553.2617,1380.657 553.2617,1377.5359 Q553.2617,1374.4065 554.5815,1372.7547 Q555.9014,1371.1028 558.4082,1371.1028 Q559.1138,1371.1028 559.7612,1371.2522 Q560.4087,1371.4016 560.9731,1371.7005 L560.9731,1374.4231 Q560.3423,1373.8421 559.7488,1373.5723 Q559.1553,1373.3025 558.5244,1373.3025 Q557.1797,1373.3025 556.4949,1374.3692 Q555.8101,1375.4358 555.8101,1377.5359 Q555.8101,1379.6277 556.4949,1380.6944 Q557.1797,1381.761 558.5244,1381.761 Q559.1553,1381.761 559.7488,1381.4912 Q560.3423,1381.2215 560.9731,1380.6404 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="177" x="572.5" y="1382.511">registrar.UserDomainRole</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="761.5" y="1358.22"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="762.5" y="1370.8216">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="544.5" x2="811.5" y1="1393.22" y2="1393.22"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="549.5" y="1410.7552">user domain role</text><line style="stroke:#181818;stroke-width:1.0;" x1="544.5" x2="811.5" y1="1417.7083" y2="1417.7083"/><ellipse cx="554.5" cy="1431.4524" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="563.5" y="1435.2434">id (BigAutoField)</text><ellipse cx="554.5" cy="1447.9407" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="563.5" y="1451.7317">created_at (DateTimeField)</text><ellipse cx="554.5" cy="1464.429" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="563.5" y="1468.22">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="554.5,1476.9173,550.5,1482.9173,558.5,1482.9173" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="121" x="563.5" y="1484.7083">user (ForeignKey)</text><polygon fill="#4177AF" points="554.5,1493.4055,550.5,1499.4055,558.5,1499.4055" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="143" x="563.5" y="1501.1966">domain (ForeignKey)</text><ellipse cx="554.5" cy="1513.8938" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="105" x="563.5" y="1517.6848">role (TextField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="544.5" x2="811.5" y1="1524.638" y2="1524.638"/></g><!--class DomainInvitation--><g id="elem_DomainInvitation"><rect codeLine="177" fill="#D6F4E9" height="171.418" id="DomainInvitation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="272" x="505" y="1699.82"/><ellipse cx="520" cy="1715.82" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M522.4731,1721.9631 Q521.8921,1722.2619 521.2529,1722.4113 Q520.6138,1722.5607 519.9082,1722.5607 Q517.4014,1722.5607 516.0815,1720.9089 Q514.7617,1719.257 514.7617,1716.1359 Q514.7617,1713.0065 516.0815,1711.3547 Q517.4014,1709.7028 519.9082,1709.7028 Q520.6138,1709.7028 521.2612,1709.8522 Q521.9087,1710.0016 522.4731,1710.3005 L522.4731,1713.0231 Q521.8423,1712.4421 521.2488,1712.1723 Q520.6553,1711.9025 520.0244,1711.9025 Q518.6797,1711.9025 517.9949,1712.9692 Q517.3101,1714.0358 517.3101,1716.1359 Q517.3101,1718.2277 517.9949,1719.2944 Q518.6797,1720.361 520.0244,1720.361 Q520.6553,1720.361 521.2488,1720.0912 Q521.8423,1719.8215 522.4731,1719.2404 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="180" x="534" y="1721.111">registrar.DomainInvitation</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="726" y="1696.82"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="727" y="1709.4216">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="506" x2="776" y1="1731.82" y2="1731.82"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="120" x="511" y="1749.3552">domain invitation</text><line style="stroke:#181818;stroke-width:1.0;" x1="506" x2="776" y1="1756.3083" y2="1756.3083"/><ellipse cx="516" cy="1770.0524" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="525" y="1773.8434">id (BigAutoField)</text><ellipse cx="516" cy="1786.5407" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="525" y="1790.3317">created_at (DateTimeField)</text><ellipse cx="516" cy="1803.029" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="525" y="1806.82">updated_at (DateTimeField)</text><ellipse cx="516" cy="1819.5173" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="121" x="525" y="1823.3083">email (EmailField)</text><polygon fill="#4177AF" points="516,1832.0055,512,1838.0055,520,1838.0055" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="143" x="525" y="1839.7966">domain (ForeignKey)</text><ellipse cx="516" cy="1852.4938" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="525" y="1856.2848">status (FSMField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="506" x2="776" y1="1863.238" y2="1863.238"/></g><!--class Nameserver--><g id="elem_Nameserver"><rect codeLine="191" fill="#D6F4E9" height="171.418" id="Nameserver" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="236" x="22" y="1361.22"/><ellipse cx="37" cy="1377.22" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M39.4731,1383.3631 Q38.8921,1383.6619 38.2529,1383.8113 Q37.6138,1383.9607 36.9082,1383.9607 Q34.4014,1383.9607 33.0815,1382.3089 Q31.7617,1380.657 31.7617,1377.5359 Q31.7617,1374.4065 33.0815,1372.7547 Q34.4014,1371.1028 36.9082,1371.1028 Q37.6138,1371.1028 38.2612,1371.2522 Q38.9087,1371.4016 39.4731,1371.7005 L39.4731,1374.4231 Q38.8423,1373.8421 38.2488,1373.5723 Q37.6553,1373.3025 37.0244,1373.3025 Q35.6797,1373.3025 34.9949,1374.3692 Q34.3101,1375.4358 34.3101,1377.5359 Q34.3101,1379.6277 34.9949,1380.6944 Q35.6797,1381.761 37.0244,1381.761 Q37.6553,1381.761 38.2488,1381.4912 Q38.8423,1381.2215 39.4731,1380.6404 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="144" x="51" y="1382.511">registrar.Nameserver</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="207" y="1358.22"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="208" y="1370.8216">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="23" x2="257" y1="1393.22" y2="1393.22"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="80" x="28" y="1410.7552">nameserver</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="257" y1="1417.7083" y2="1417.7083"/><ellipse cx="33" cy="1431.4524" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="42" y="1435.2434">id (BigAutoField)</text><ellipse cx="33" cy="1447.9407" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="42" y="1451.7317">created_at (DateTimeField)</text><ellipse cx="33" cy="1464.429" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="42" y="1468.22">updated_at (DateTimeField)</text><ellipse cx="33" cy="1480.9173" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="42" y="1484.7083">name (CharField)</text><polygon fill="#4177AF" points="33,1493.4055,29,1499.4055,37,1499.4055" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="143" x="42" y="1501.1966">domain (ForeignKey)</text><polygon fill="#4177AF" points="33,1509.8938,29,1515.8938,37,1515.8938" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="178" x="42" y="1517.6848">host_ptr (OneToOneField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="257" y1="1524.638" y2="1524.638"/></g><!--class PublicContact--><g id="elem_PublicContact"><rect codeLine="206" fill="#D6F4E9" height="352.7891" id="PublicContact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="249" x="275.5" y="148.17"/><ellipse cx="290.5" cy="164.17" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M292.9731,170.3131 Q292.3921,170.6119 291.7529,170.7613 Q291.1138,170.9107 290.4082,170.9107 Q287.9014,170.9107 286.5815,169.2589 Q285.2617,167.607 285.2617,164.4859 Q285.2617,161.3565 286.5815,159.7047 Q287.9014,158.0528 290.4082,158.0528 Q291.1138,158.0528 291.7612,158.2022 Q292.4087,158.3516 292.9731,158.6505 L292.9731,161.3731 Q292.3423,160.7921 291.7488,160.5223 Q291.1553,160.2525 290.5244,160.2525 Q289.1797,160.2525 288.4949,161.3192 Q287.8101,162.3858 287.8101,164.4859 Q287.8101,166.5777 288.4949,167.6444 Q289.1797,168.711 290.5244,168.711 Q291.1553,168.711 291.7488,168.4412 Q292.3423,168.1715 292.9731,167.5904 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="304.5" y="169.461">registrar.PublicContact</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="473.5" y="145.17"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="474.5" y="157.7716">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="276.5" x2="523.5" y1="180.17" y2="180.17"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="96" x="281.5" y="197.7052">public contact</text><line style="stroke:#181818;stroke-width:1.0;" x1="276.5" x2="523.5" y1="204.6583" y2="204.6583"/><ellipse cx="286.5" cy="218.4024" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="295.5" y="222.1934">id (BigAutoField)</text><ellipse cx="286.5" cy="234.8907" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="295.5" y="238.6817">created_at (DateTimeField)</text><ellipse cx="286.5" cy="251.379" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="295.5" y="255.17">updated_at (DateTimeField)</text><ellipse cx="286.5" cy="267.8673" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="295.5" y="271.6583">contact_type (CharField)</text><ellipse cx="286.5" cy="284.3555" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="295.5" y="288.1466">name (TextField)</text><ellipse cx="286.5" cy="300.8438" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="102" x="295.5" y="304.6348">org (TextField)</text><ellipse cx="286.5" cy="317.3321" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="295.5" y="321.1231">street1 (TextField)</text><ellipse cx="286.5" cy="333.8204" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="295.5" y="337.6114">street2 (TextField)</text><ellipse cx="286.5" cy="350.3087" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="295.5" y="354.0997">street3 (TextField)</text><ellipse cx="286.5" cy="366.797" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="101" x="295.5" y="370.588">city (TextField)</text><ellipse cx="286.5" cy="383.2852" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="295.5" y="387.0763">sp (TextField)</text><ellipse cx="286.5" cy="399.7735" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="295.5" y="403.5645">pc (TextField)</text><ellipse cx="286.5" cy="416.2618" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="92" x="295.5" y="420.0528">cc (TextField)</text><ellipse cx="286.5" cy="432.7501" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="115" x="295.5" y="436.5411">email (TextField)</text><ellipse cx="286.5" cy="449.2384" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="113" x="295.5" y="453.0294">voice (TextField)</text><ellipse cx="286.5" cy="465.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="100" x="295.5" y="469.5177">fax (TextField)</text><ellipse cx="286.5" cy="482.2149" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="98" x="295.5" y="486.0059">pw (TextField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="276.5" x2="523.5" y1="492.9591" y2="492.9591"/></g><!--link Contact to User--><g id="link_Contact_User"><path codeLine="31" d="M991,1565.66 C991,1584.9 991,1605.11 991,1625.16 " fill="none" id="Contact-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to User--><g id="link_DomainApplication_User"><path codeLine="71" d="M1139.55,1268.72 C1129.34,1387.9 1116.59,1509.83 1099,1565.62 C1092.72,1585.55 1084.43,1605.66 1075.21,1625.19 " fill="none" id="DomainApplication-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to User--><g id="link_DomainApplication_User"><path codeLine="72" d="M1171.58,1268.72 C1164.34,1387.9 1151.59,1509.83 1134,1565.62 C1127.72,1585.55 1119.43,1605.66 1109.99,1625.19 " fill="none" id="DomainApplication-User-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="73" d="M1032.55,1268.41 C1025.28,1289.08 1018.54,1309.1 1012.58,1327.78 " fill="none" id="DomainApplication-Contact" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="75" d="M1058.03,1268.41 C1050.22,1289.08 1042.66,1309.1 1035.61,1327.78 " fill="none" id="DomainApplication-Contact-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="78" d="M1078.41,1280.92 C1073.63,1292.59 1068.86,1304.01 1064.14,1315.03 " fill="none" id="DomainApplication-Contact-2" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1083.5,1269.41,1077.5337,1273.4601,1078.9775,1280.5252,1084.9438,1276.4751,1083.5,1269.41" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1058.63,1326.78,1064.6826,1322.86,1063.392,1315.7653,1057.3395,1319.6853,1058.63,1326.78" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Domain--><g id="link_DomainApplication_Domain"><path codeLine="74" d="M1180.93,1268.74 C1187.12,1535.04 1187.82,1890.59 1150,1945.43 C1098.48,2020.13 998.56,2053.96 920.84,2069.28 " fill="none" id="DomainApplication-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Website--><g id="link_DomainApplication_Website"><path codeLine="76" d="M1252.53,1281.63 C1262.02,1311.68 1271.27,1339.98 1279.65,1364.35 " fill="none" id="DomainApplication-Website" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1248.38,1269.41,1246.3622,1276.333,1251.9765,1280.8584,1253.9944,1273.9353,1248.38,1269.41" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1284.2,1376.48,1286.0078,1369.4992,1280.2593,1365.1455,1278.4515,1372.1263,1284.2,1376.48" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Website--><g id="link_DomainApplication_Website"><path codeLine="77" d="M1277.62,1281.63 C1286.1,1311.54 1293.74,1339.72 1299.91,1364.02 " fill="none" id="DomainApplication-Website-1" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1273.85,1269.41,1271.645,1276.2757,1277.1345,1280.9518,1279.3395,1274.0861,1273.85,1269.41" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1303.28,1376.48,1305.7035,1369.6884,1300.3665,1364.8391,1297.9429,1371.6307,1303.28,1376.48" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to User--><g id="link_DomainInformation_User"><path codeLine="116" d="M927.03,608.44 C879.69,917.35 819.75,1391.34 866,1565.62 C871.33,1585.71 878.99,1605.88 887.93,1625.41 " fill="none" id="DomainInformation-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to DomainApplication--><g id="link_DomainInformation_DomainApplication"><path codeLine="117" d="M1060.84,608.39 C1066.9,628.13 1073.02,648.06 1079.1,667.88 " fill="none" id="DomainInformation-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="118" d="M955.14,608.28 C953.01,840.68 959.91,1158.31 972.32,1327.87 " fill="none" id="DomainInformation-Contact" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="120" d="M978.29,608.28 C981.82,840.68 986.64,1158.31 989.21,1327.87 " fill="none" id="DomainInformation-Contact-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="121" d="M1001.97,621.99 C1010.49,846.71 1013.08,1144.8 1006.66,1313.92 " fill="none" id="DomainInformation-Contact-2" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1001.44,609.28,997.6736,615.4293,1001.9012,621.2711,1005.6676,615.1218,1001.44,609.28" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1006.1,1326.87,1010.3343,1321.033,1006.5749,1314.8794,1002.3406,1320.7164,1006.1,1326.87" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Domain--><g id="link_DomainInformation_Domain"><path codeLine="119" d="M1135.53,431.57 C1213.31,491.46 1300.28,573.31 1350,668.13 C1536.15,1023.13 1558.88,1183.12 1439,1565.62 C1377.52,1761.79 1337.16,1819.07 1175,1945.43 C1100.17,2003.74 997.71,2039.25 920.89,2059.37 " fill="none" id="DomainInformation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link HostIP to Host--><g id="link_HostIP_Host"><path codeLine="146" d="M392.1,1524.73 C385.75,1579.54 377.24,1652.96 370.89,1707.76 " fill="none" id="HostIP-Host" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Host to Domain--><g id="link_Host_Domain"><path codeLine="159" d="M410.25,1863.46 C431.12,1892.08 457.53,1923.01 487,1945.43 C552.19,1995.02 638.04,2030 705.28,2052.13 " fill="none" id="Host-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to User--><g id="link_UserDomainRole_User"><path codeLine="173" d="M756.98,1532.87 C785.05,1563.06 817.58,1598.03 849.28,1632.12 " fill="none" id="UserDomainRole-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to Domain--><g id="link_UserDomainRole_Domain"><path codeLine="174" d="M747.42,1532.98 C766.38,1560.87 784.55,1593.09 795,1625.62 C836.16,1753.74 830.65,1912.57 822.26,2005.05 " fill="none" id="UserDomainRole-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInvitation to Domain--><g id="link_DomainInvitation_Domain"><path codeLine="188" d="M690.52,1871.56 C715.03,1913.66 744.4,1964.09 768.23,2005.02 " fill="none" id="DomainInvitation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Nameserver to Domain--><g id="link_Nameserver_Domain"><path codeLine="202" d="M130.92,1532.95 C124.18,1643.22 130.46,1834.54 237,1945.43 C300.68,2011.71 556.59,2051.99 705,2070.25 " fill="none" id="Nameserver-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Nameserver to Host--><g id="link_Nameserver_Host"><path codeLine="203" d="M196.02,1532.87 C231.47,1586.62 276.93,1655.55 311.31,1707.67 " fill="none" id="Nameserver-Host" style="stroke:#181818;stroke-width:1.0;"/></g><!--link User to Domain--><g id="link_User_Domain"><path codeLine="250" d="M888.02,1957.41 C880.6,1969.71 873.32,1981.8 866.39,1993.3 " fill="none" id="User-Domain" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="894.97,1946.88,888.4484,1949.9571,888.7805,1957.1606,895.3021,1954.0834,894.97,1946.88" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="859.29,2004.08,865.8145,2001.009,865.4891,1993.8052,858.9647,1996.8762,859.29,2004.08" style="stroke:#181818;stroke-width:1.0;"/></g><!--SRC=[xLXjZzis3FwUNo7qlcGzP42xOS20OK1VTcWnj3jqD-oZeCYCezMHN4dEDLVqVdlfbrmjctHIu9eDG_CX2KJA8XzI3sdgGeKW7dZ8JOXU-U-VEHkLZkAND_kbNny85SHOuopxQVKZ_2m-p0H-TBlQ_5yicfzpOJ8nVsho9rLq5mQAxBjkNNjG4JAfefW_ntzNPWE9GbLcKmgteWhWnVmF2rSElvAzA-D3b5PjGColu7rCX1kJPGLmKWI3tHbDBAXrs2XJ4ElbsbdKlwn_NbUR9VYU617wE1j3kbZqSFuBNPpDPdeOeUSEJxHFoh8mMaNZx4IinhffrB96BjHdXTC4y5o4g68LnFpYprT9O9idEupjXVDWSlixxFOYOxSGeibf-RbmFbVMt3HkoBWh4VrdQ-NJv80Cl2gAdVIWNOxgQ6JqPedAJvqhGDcHcN2aRYFYqgSxMAeShDvDA326co2X0DtujdJAPxGD2GQCAIhBF8GW2sFXqG7vOy8KRIBbG0jL1EyD1cX7RBmnfNOPvLtbbtTcKtSFCP5k9Q-TVqjTQam5cNXkxChv3VsuMw6gk7RUt1YRurDNHXjLK0dduLs56OTHx-u9HJYt8bJBZOaHoAGiAr-wG8N1EkdY6hpig3D8tnYiI9fHTXVNjS5Ga4_3_2WTNkATLFgjTTS5P3cGIN8cTEKzs2YlOHbC1Bo5h_3nLwx-JXHLWLvPj6eB7GIyRkeBepRWlJ4zZHdmAsbtb7lyXbPylmSyN2mUzhRytSRZAs_P6yQMbfUzotEejFHroTBIkucdwWqcIaXhbEpLEwQ9-5PBljMIUwqb_wSAWl41h24OEjbrlx_LF_TK3lgKSfZWMUqH3nw_bQFk0sVTxm5Voje7gPhavrEr-orzK4o4Jc5xCNmHQ3A3yFM52_7bvOIldKBgwneNXIbFvMn7UYD_Rrj3HdTyS0qw5vACgTSuF0wWGM3nhqRzCnSUWGDvpmWSQcvefM-GhIOG6IYcs3HJXSuwZ-BJJZFueZ4k2hLr8muVu3TmTOfBfrHvqFUajJNns6xnJfLf5lVoKsKeKx-ceASd5qmfk_FtI4XVuut1M6mn7tWmUqefZFPEy1-zuIq3oZBImxi1Y3q_fyijfyYnvcMrnAxWyAWprKknBXlPQUUUv_lZkCwUwTAndoMRR0yG7x6Inwpa1qB2TV8bDHlLr0Fq5qnNjyveyjL8lQVEkwQvaYaa1ye7KJIE2t-9P-5hHqO4hfay5owlBmqPUEoKGbM2Rqi5rPFN4gRDwe_4wQCP6KEFhJbHhLQqARssZXBNEIx_SVXAc37UJWxFpqJkNLNoewWQ2ObORKm8oBsyulHCYoYdmwwS9_9kC3EHIdkDD9kwcTof-AGxRXJwzdfy0W00]--></g></svg>
\ No newline at end of file

From e25353a5610d38ff03aae49b3302bedd8e840bd2 Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Fri, 12 May 2023 15:09:07 -0500
Subject: [PATCH 06/72] Fix markdown image syntax

---
 docs/architecture/diagrams/model_timeline.md | 2 +-
 docs/architecture/diagrams/models_diagram.md | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/architecture/diagrams/model_timeline.md b/docs/architecture/diagrams/model_timeline.md
index 6a0adda2a..bb6c11bb2 100644
--- a/docs/architecture/diagrams/model_timeline.md
+++ b/docs/architecture/diagrams/model_timeline.md
@@ -19,7 +19,7 @@ A more complete diagram of the data models, their fields, and their
 relationships are in [models_diagram.md](./models_diagram.md), created with
 the `django-model2puml` plugin.
 
-![./model_timeline.svg]
+![Data model timeline diagram](./model_timeline.svg)
 
 <details>
 <summary>PlantUML source code</summary>
diff --git a/docs/architecture/diagrams/models_diagram.md b/docs/architecture/diagrams/models_diagram.md
index 95d8c0a58..23e4091e8 100644
--- a/docs/architecture/diagrams/models_diagram.md
+++ b/docs/architecture/diagrams/models_diagram.md
@@ -8,7 +8,7 @@ using the command
 $ docker compose app ./manage.py generate_puml --include registrar
 ```
 
-![./models_diagram.svg]
+![Complete data models diagram](./models_diagram.svg)
 
 <details>
 <summary>PlantUML source code</summary>

From 0407cf63dab2d97f6dfa4e6bb7c3213071b8c89f Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Fri, 12 May 2023 15:11:08 -0500
Subject: [PATCH 07/72] Try to get a  to work in <details>

---
 docs/architecture/diagrams/model_timeline.md | 2 ++
 docs/architecture/diagrams/models_diagram.md | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/docs/architecture/diagrams/model_timeline.md b/docs/architecture/diagrams/model_timeline.md
index bb6c11bb2..aa4167163 100644
--- a/docs/architecture/diagrams/model_timeline.md
+++ b/docs/architecture/diagrams/model_timeline.md
@@ -23,6 +23,7 @@ the `django-model2puml` plugin.
 
 <details>
 <summary>PlantUML source code</summary>
+
 ```plantuml
 @startuml
 
@@ -138,4 +139,5 @@ user3 -right[#green]-> DomainInvitation : **/domain/<id>/users/add**
 
 @enduml
 ```
+
 </details>
diff --git a/docs/architecture/diagrams/models_diagram.md b/docs/architecture/diagrams/models_diagram.md
index 23e4091e8..04d95ee09 100644
--- a/docs/architecture/diagrams/models_diagram.md
+++ b/docs/architecture/diagrams/models_diagram.md
@@ -12,6 +12,7 @@ $ docker compose app ./manage.py generate_puml --include registrar
 
 <details>
 <summary>PlantUML source code</summary>
+
 ```plantuml
 @startuml 
 class "registrar.Contact <Registrar>" as registrar.Contact #d6f4e9 {
@@ -264,4 +265,5 @@ class "registrar.Website <Registrar>" as registrar.Website #d6f4e9 {
 
 @enduml
 ```
+
 </details>

From a356e8e9475d4ff3c68d834d39d63ae7de7e630f Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Fri, 12 May 2023 15:24:24 -0500
Subject: [PATCH 08/72] Document how to generate the SVG images

---
 docs/architecture/diagrams/model_timeline.md  | 6 ++++++
 docs/architecture/diagrams/model_timeline.svg | 2 +-
 docs/architecture/diagrams/models_diagram.md  | 6 ++++++
 docs/architecture/diagrams/models_diagram.svg | 2 +-
 4 files changed, 14 insertions(+), 2 deletions(-)

diff --git a/docs/architecture/diagrams/model_timeline.md b/docs/architecture/diagrams/model_timeline.md
index aa4167163..f2089ce55 100644
--- a/docs/architecture/diagrams/model_timeline.md
+++ b/docs/architecture/diagrams/model_timeline.md
@@ -23,6 +23,12 @@ the `django-model2puml` plugin.
 
 <details>
 <summary>PlantUML source code</summary>
+To regenerate this image using Docker, run
+
+```bash
+$ docker run -v $(pwd):$(pwd) -w $(pwd) -it plantuml/plantuml -tsvg model_timeline.md
+```
+
 
 ```plantuml
 @startuml
diff --git a/docs/architecture/diagrams/model_timeline.svg b/docs/architecture/diagrams/model_timeline.svg
index fb466ec21..cf2eea238 100644
--- a/docs/architecture/diagrams/model_timeline.svg
+++ b/docs/architecture/diagrams/model_timeline.svg
@@ -1 +1 @@
-<?xml version="1.0" encoding="us-ascii" standalone="no"?><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" contentStyleType="text/css" height="991px" preserveAspectRatio="none" style="width:1487px;height:991px;background:#FFFFFF;" version="1.1" viewBox="0 0 1487 991" width="1487px" zoomAndPan="magnify"><defs/><g><!--class DomainApplication--><g id="elem_DomainApplication"><rect codeLine="31" fill="#F1F1F1" height="220.8828" id="DomainApplication" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="224" x="337" y="430.3"/><ellipse cx="379.45" cy="446.3" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M381.9231,452.4431 Q381.3421,452.7419 380.7029,452.8913 Q380.0638,453.0407 379.3582,453.0407 Q376.8514,453.0407 375.5315,451.3889 Q374.2117,449.737 374.2117,446.6159 Q374.2117,443.4865 375.5315,441.8347 Q376.8514,440.1828 379.3582,440.1828 Q380.0638,440.1828 380.7112,440.3322 Q381.3587,440.4816 381.9231,440.7805 L381.9231,443.5031 Q381.2923,442.9221 380.6988,442.6523 Q380.1053,442.3825 379.4744,442.3825 Q378.1297,442.3825 377.4449,443.4492 Q376.7601,444.5158 376.7601,446.6159 Q376.7601,448.7077 377.4449,449.7744 Q378.1297,450.841 379.4744,450.841 Q380.1053,450.841 380.6988,450.5712 Q381.2923,450.3015 381.9231,449.7204 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="131" x="399.55" y="451.591">DomainApplication</text><line style="stroke:#181818;stroke-width:0.5;" x1="338" x2="560" y1="462.3" y2="462.3"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="170" x="343" y="479.8352">Application for a domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="338" x2="560" y1="486.7883" y2="486.7883"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="343" y="504.3234">creator (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="343" y="520.8117">investigator (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="200" x="343" y="537.3">authorizing_official (Contact)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="133" x="343" y="553.7883">submitter (Contact)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="175" x="343" y="570.2766">other_contacts (Contacts)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="195" x="343" y="586.7648">requested_domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="190" x="343" y="603.2531">current_websites (Websites)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="212" x="343" y="619.7414">alternative_domains (Websites)</text><line style="stroke:#181818;stroke-width:1.0;" x1="338" x2="560" y1="626.6945" y2="626.6945"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="343" y="644.2297">Request information...</text></g><!--class User--><g id="elem_User"><rect codeLine="46" fill="#F1F1F1" height="88.9766" id="User" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="142" x="378" y="290.26"/><ellipse cx="429.25" cy="306.26" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M431.7231,312.4031 Q431.1421,312.7019 430.5029,312.8513 Q429.8638,313.0007 429.1582,313.0007 Q426.6514,313.0007 425.3315,311.3489 Q424.0117,309.697 424.0117,306.5759 Q424.0117,303.4465 425.3315,301.7947 Q426.6514,300.1428 429.1582,300.1428 Q429.8638,300.1428 430.5112,300.2922 Q431.1587,300.4416 431.7231,300.7405 L431.7231,303.4631 Q431.0923,302.8821 430.4988,302.6123 Q429.9053,302.3425 429.2744,302.3425 Q427.9297,302.3425 427.2449,303.4092 Q426.5601,304.4758 426.5601,306.5759 Q426.5601,308.6677 427.2449,309.7344 Q427.9297,310.801 429.2744,310.801 Q429.9053,310.801 430.4988,310.5312 Q431.0923,310.2615 431.7231,309.6804 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="31" x="449.75" y="311.551">User</text><line style="stroke:#181818;stroke-width:0.5;" x1="379" x2="519" y1="322.26" y2="322.26"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="130" x="384" y="339.7952">Django's user class</text><line style="stroke:#181818;stroke-width:1.0;" x1="379" x2="519" y1="346.7483" y2="346.7483"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="12" x="384" y="364.2834">...</text><line style="stroke:#181818;stroke-width:1.0;" x1="379" x2="519" y1="371.2366" y2="371.2366"/></g><g id="elem_GMN4"><path d="M6,291.47 L6,378.0227 A0,0 0 0 0 6,378.0227 L209,378.0227 A0,0 0 0 0 209,378.0227 L209,338.75 L377.58,334.75 L209,330.75 L209,301.47 L199,291.47 L6,291.47 A0,0 0 0 0 6,291.47 " fill="#FEFFDD" style="stroke:#181818;stroke-width:0.5;"/><path d="M199,291.47 L199,301.47 L209,301.47 L199,291.47 " fill="#FEFFDD" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="149" x="12" y="309.0384">Created by DjangoOIDC</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="144" x="12" y="324.3489">when users arrive back</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="96" x="12" y="339.6595">from Login.gov</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="4" x="12" y="354.97">&#160;</text><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="68" x="12" y="370.2805">username</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="110" x="84" y="370.2805">is the Login UUID</text></g><!--class Contact--><g id="elem_Contact"><rect codeLine="62" fill="#F1F1F1" height="171.418" id="Contact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="184" x="357" y="703.04"/><ellipse cx="418.25" cy="719.04" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M420.7231,725.1831 Q420.1421,725.4819 419.5029,725.6313 Q418.8638,725.7807 418.1582,725.7807 Q415.6514,725.7807 414.3315,724.1289 Q413.0117,722.477 413.0117,719.3559 Q413.0117,716.2265 414.3315,714.5747 Q415.6514,712.9228 418.1582,712.9228 Q418.8638,712.9228 419.5112,713.0722 Q420.1587,713.2216 420.7231,713.5205 L420.7231,716.2431 Q420.0923,715.6621 419.4988,715.3923 Q418.9053,715.1225 418.2744,715.1225 Q416.9297,715.1225 416.2449,716.1892 Q415.5601,717.2558 415.5601,719.3559 Q415.5601,721.4477 416.2449,722.5144 Q416.9297,723.581 418.2744,723.581 Q418.9053,723.581 419.4988,723.3112 Q420.0923,723.0415 420.7231,722.4604 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="53" x="438.75" y="724.331">Contact</text><line style="stroke:#181818;stroke-width:0.5;" x1="358" x2="540" y1="735.04" y2="735.04"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="363" y="752.5752">Contact info for a person</text><line style="stroke:#181818;stroke-width:1.0;" x1="358" x2="540" y1="759.5283" y2="759.5283"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="72" x="363" y="777.0634">first_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="92" x="363" y="793.5517">middle_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="69" x="363" y="810.04">last_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="26" x="363" y="826.5283">title</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="37" x="363" y="843.0166">email</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="44" x="363" y="859.5048">phone</text><line style="stroke:#181818;stroke-width:1.0;" x1="358" x2="540" y1="866.458" y2="866.458"/></g><!--class Domain--><g id="elem_Domain"><rect codeLine="76" fill="#F1F1F1" height="121.9531" id="Domain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="135" x="1345" y="380.77"/><ellipse cx="1382.5" cy="396.77" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1384.9731,402.9131 Q1384.3921,403.2119 1383.7529,403.3613 Q1383.1138,403.5107 1382.4082,403.5107 Q1379.9014,403.5107 1378.5815,401.8589 Q1377.2617,400.207 1377.2617,397.0859 Q1377.2617,393.9565 1378.5815,392.3047 Q1379.9014,390.6528 1382.4082,390.6528 Q1383.1138,390.6528 1383.7612,390.8022 Q1384.4087,390.9516 1384.9731,391.2505 L1384.9731,393.9731 Q1384.3423,393.3921 1383.7488,393.1223 Q1383.1553,392.8525 1382.5244,392.8525 Q1381.1797,392.8525 1380.4949,393.9192 Q1379.8101,394.9858 1379.8101,397.0859 Q1379.8101,399.1777 1380.4949,400.2444 Q1381.1797,401.311 1382.5244,401.311 Q1383.1553,401.311 1383.7488,401.0412 Q1384.3423,400.7715 1384.9731,400.1904 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="53" x="1401.5" y="402.061">Domain</text><line style="stroke:#181818;stroke-width:0.5;" x1="1346" x2="1479" y1="412.77" y2="412.77"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="123" x="1351" y="430.3052">Approved domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="1346" x2="1479" y1="437.2583" y2="437.2583"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="38" x="1351" y="454.7934">name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="57" x="1351" y="471.2817">is_active</text><line style="stroke:#181818;stroke-width:1.0;" x1="1346" x2="1479" y1="478.2348" y2="478.2348"/><text fill="#000000" font-family="sans-serif" font-size="14" font-weight="bold" lengthAdjust="spacing" textLength="94" x="1351" y="495.77">EPP methods</text></g><!--class DomainInformation--><g id="elem_DomainInformation"><rect codeLine="87" fill="#F1F1F1" height="138.4414" id="DomainInformation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="292" x="798" y="511.53"/><ellipse cx="872.75" cy="527.53" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M875.2231,533.6731 Q874.6421,533.9719 874.0029,534.1213 Q873.3638,534.2707 872.6582,534.2707 Q870.1514,534.2707 868.8315,532.6189 Q867.5117,530.967 867.5117,527.8459 Q867.5117,524.7165 868.8315,523.0647 Q870.1514,521.4128 872.6582,521.4128 Q873.3638,521.4128 874.0112,521.5622 Q874.6587,521.7116 875.2231,522.0105 L875.2231,524.7331 Q874.5923,524.1521 873.9988,523.8823 Q873.4053,523.6125 872.7744,523.6125 Q871.4297,523.6125 870.7449,524.6792 Q870.0601,525.7458 870.0601,527.8459 Q870.0601,529.9377 870.7449,531.0044 Q871.4297,532.071 872.7744,532.071 Q873.4053,532.071 873.9988,531.8012 Q874.5923,531.5315 875.2231,530.9504 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="893.25" y="532.821">DomainInformation</text><line style="stroke:#181818;stroke-width:0.5;" x1="799" x2="1089" y1="543.53" y2="543.53"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="237" x="804" y="561.0652">Registrar information on a domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="799" x2="1089" y1="568.0183" y2="568.0183"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="119" x="804" y="585.5534">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="280" x="804" y="602.0417">domain_application (DomainApplication)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="97" x="804" y="618.53">security_email</text><line style="stroke:#181818;stroke-width:1.0;" x1="799" x2="1089" y1="625.4831" y2="625.4831"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="804" y="643.0183">Request information...</text></g><!--class UserDomainRole--><g id="elem_UserDomainRole"><rect codeLine="101" fill="#F1F1F1" height="121.9531" id="UserDomainRole" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="146" x="871" y="267.77"/><ellipse cx="886" cy="283.77" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M888.4731,289.9131 Q887.8921,290.2119 887.2529,290.3613 Q886.6138,290.5107 885.9082,290.5107 Q883.4014,290.5107 882.0815,288.8589 Q880.7617,287.207 880.7617,284.0859 Q880.7617,280.9565 882.0815,279.3047 Q883.4014,277.6528 885.9082,277.6528 Q886.6138,277.6528 887.2612,277.8022 Q887.9087,277.9516 888.4731,278.2505 L888.4731,280.9731 Q887.8423,280.3921 887.2488,280.1223 Q886.6553,279.8525 886.0244,279.8525 Q884.6797,279.8525 883.9949,280.9192 Q883.3101,281.9858 883.3101,284.0859 Q883.3101,286.1777 883.9949,287.2444 Q884.6797,288.311 886.0244,288.311 Q886.6553,288.311 887.2488,288.0412 Q887.8423,287.7715 888.4731,287.1904 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="900" y="289.061">UserDomainRole</text><line style="stroke:#181818;stroke-width:0.5;" x1="872" x2="1016" y1="299.77" y2="299.77"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="82" x="877" y="317.3052">Permissions</text><line style="stroke:#181818;stroke-width:1.0;" x1="872" x2="1016" y1="324.2583" y2="324.2583"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="119" x="877" y="341.7934">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="75" x="877" y="358.2817">user (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="877" y="374.77">role="ADMIN"</text><line style="stroke:#181818;stroke-width:1.0;" x1="872" x2="1016" y1="381.7231" y2="381.7231"/></g><!--class DomainInvitation--><g id="elem_DomainInvitation"><rect codeLine="113" fill="#F1F1F1" height="121.9531" id="DomainInvitation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="157" x="370.5" y="133.77"/><ellipse cx="389.1" cy="149.77" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M391.5731,155.9131 Q390.9921,156.2119 390.3529,156.3613 Q389.7138,156.5107 389.0082,156.5107 Q386.5014,156.5107 385.1815,154.8589 Q383.8617,153.207 383.8617,150.0859 Q383.8617,146.9565 385.1815,145.3047 Q386.5014,143.6528 389.0082,143.6528 Q389.7138,143.6528 390.3612,143.8022 Q391.0087,143.9516 391.5731,144.2505 L391.5731,146.9731 Q390.9423,146.3921 390.3488,146.1223 Q389.7553,145.8525 389.1244,145.8525 Q387.7797,145.8525 387.0949,146.9192 Q386.4101,147.9858 386.4101,150.0859 Q386.4101,152.1777 387.0949,153.2444 Q387.7797,154.311 389.1244,154.311 Q389.7553,154.311 390.3488,154.0412 Q390.9423,153.7715 391.5731,153.1904 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="403.9" y="155.061">DomainInvitation</text><line style="stroke:#181818;stroke-width:0.5;" x1="371.5" x2="526.5" y1="165.77" y2="165.77"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="145" x="376.5" y="183.3052">Email invitations sent</text><line style="stroke:#181818;stroke-width:1.0;" x1="371.5" x2="526.5" y1="190.2583" y2="190.2583"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="37" x="376.5" y="207.7934">email</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="119" x="376.5" y="224.2817">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="41" x="376.5" y="240.77">status</text><line style="stroke:#181818;stroke-width:1.0;" x1="371.5" x2="526.5" y1="247.7231" y2="247.7231"/></g><!--entity applicant--><g id="elem_applicant"><ellipse cx="107.5" cy="467" fill="#FF0000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M107.5,475 L107.5,502 M94.5,483 L120.5,483 M107.5,502 L94.5,517 M107.5,502 L120.5,517 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="63" x="76" y="532.0352">applicant</text></g><!--entity analyst--><g id="elem_analyst"><ellipse cx="107.5" cy="578" fill="#0000FF" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M107.5,586 L107.5,613 M94.5,594 L120.5,594 M107.5,613 L94.5,628 M107.5,613 L120.5,628 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="48" x="83.5" y="643.0352">analyst</text></g><!--entity user1--><g id="elem_user1"><ellipse cx="944" cy="693" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M944,701 L944,728 M931,709 L957,709 M944,728 L931,743 M944,728 L957,743 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="39" x="924.5" y="758.0352">user1</text></g><!--entity user2--><g id="elem_user2"><ellipse cx="449" cy="918" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M449,926 L449,953 M436,934 L462,934 M449,953 L436,968 M449,953 L462,968 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="39" x="429.5" y="983.0352">user2</text></g><!--entity user3--><g id="elem_user3"><ellipse cx="449" cy="14" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M449,22 L449,49 M436,30 L462,30 M449,49 L436,64 M449,49 L462,64 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="39" x="429.5" y="79.0352">user3</text></g><!--link User to DomainApplication--><g id="link_User_DomainApplication"><path codeLine="60" d="M449,379.33 C449,394.42 449,412 449,429.91 " fill="none" id="User-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="127" x="374" y="409.8384">creator, investigator</text></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="74" d="M449,665.32 C449,673.25 449,681.17 449,688.97 " fill="none" id="DomainApplication-Contact" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="449,652.53,445,658.53,449,664.53,453,658.53,449,652.53" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="449,701.7,453,695.7,449,689.7,445,695.7,449,701.7" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="294" x="290.5" y="682.1784">authorizing_official, submitter, other_contacts</text></g><!--link DomainApplication to Domain--><g id="link_DomainApplication_Domain"><path codeLine="85" d="M561.49,524.25 C629.69,514.52 718.76,502.45 798,493.75 C993.13,472.31 1224.03,454.87 1338.95,446.72 " fill="none" id="DomainApplication-to-Domain" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="1343.67,446.32,1334.4072,442.9733,1338.6828,446.6773,1334.9788,450.9528,1343.67,446.32" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="58" x="915" y="462.3184">approve()</text></g><!--link DomainInformation to Domain--><g id="link_DomainInformation_Domain"><path codeLine="97" d="M1090.37,537.43 C1175.4,512.1 1278.68,481.32 1344.75,461.64 " fill="none" id="DomainInformation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to DomainApplication--><g id="link_DomainInformation_DomainApplication"><path codeLine="98" d="M797.89,565.44 C787.78,564.49 777.74,563.58 768,562.75 C699.35,556.84 622.27,551.48 561.18,547.52 " fill="none" id="DomainInformation-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to DomainInformation--><g id="link_DomainApplication_DomainInformation"><path codeLine="99" d="M561.16,581.43 C571.15,583.98 581.19,586.15 591,587.75 C656.45,598.37 729.63,598.73 792.25,595.62 " fill="none" id="DomainApplication-to-DomainInformation" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="796.89,595.33,787.6964,591.7975,791.8966,595.5868,788.1073,599.787,796.89,595.33" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="58" x="650.5" y="584.3184">approve()</text></g><!--link UserDomainRole to User--><g id="link_UserDomainRole_User"><path codeLine="109" d="M870.81,329.62 C776.79,330.77 613.49,332.76 520.37,333.89 " fill="none" id="UserDomainRole-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to Domain--><g id="link_UserDomainRole_Domain"><path codeLine="110" d="M1017.48,345.06 C1092.2,362.05 1211.99,389.76 1315,415.75 C1324.59,418.16 1334.69,420.8 1344.61,423.42 " fill="none" id="UserDomainRole-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to UserDomainRole--><g id="link_DomainApplication_UserDomainRole"><path codeLine="111" d="M561.37,436.7 C571.03,430.09 580.96,424 591,418.75 C638.24,394.04 776.57,362.72 865.1,344.29 " fill="none" id="DomainApplication-to-UserDomainRole" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="869.85,343.1,860.226,341.0073,864.9538,344.1135,861.8476,348.8413,869.85,343.1" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="58" x="650.5" y="362.3184">approve()</text></g><!--link DomainInvitation to Domain--><g id="link_DomainInvitation_Domain"><path codeLine="121" d="M527.59,192.07 C649.76,189.95 893.3,194.21 1090,250.75 C1197.93,281.77 1220.44,305.16 1315,365.75 C1324.88,372.07 1334.96,379.19 1344.71,386.46 " fill="none" id="DomainInvitation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInvitation to UserDomainRole--><g id="link_DomainInvitation_UserDomainRole"><path codeLine="122" d="M527.67,226.06 C548.09,233.71 570.22,241.48 591,247.75 C684.04,275.8 793.42,299.57 865.27,313.96 " fill="none" id="DomainInvitation-to-UserDomainRole" style="stroke:#008000;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#008000" points="869.8,315.07,861.7465,309.4006,864.8949,314.1004,860.1952,317.2488,869.8,315.07" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="105" x="627" y="244.3184">User.first_login()</text></g><!--link applicant to DomainApplication--><g id="link_applicant_DomainApplication"><path codeLine="125" d="M139.23,500.73 C182.25,506.3 262.81,516.75 330.86,525.56 " fill="none" id="applicant-to-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="335.57,526.3,327.1592,521.1758,330.6115,525.657,326.1303,529.1093,335.57,526.3" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="60" x="243" y="511.3184">/register</text></g><!--link analyst to DomainApplication--><g id="link_analyst_DomainApplication"><path codeLine="128" d="M131.84,603.14 C172.5,595.12 258.9,578.06 331.12,563.81 " fill="none" id="analyst-to-DomainApplication" style="stroke:#0000FF;stroke-width:1.0;"/><polygon fill="#0000FF" points="335.74,562.7,326.1352,560.5212,330.8349,563.6696,327.6865,568.3694,335.74,562.7" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="66" x="240" y="566.3184">approve()</text></g><!--link user1 to Domain--><g id="link_user1_Domain"><path codeLine="131" d="M963.98,717.47 C1021.51,700.81 1197.24,644.87 1315,552.75 C1331.64,539.73 1347.6,523.54 1361.58,507.58 " fill="none" id="user1-to-Domain" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="1365.47,504.09,1356.5511,508.2676,1362.1937,507.867,1362.5943,513.5097,1365.47,504.09" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="193" x="1121" y="549.3184">/domain/&lt;id&gt;/nameservers</text></g><!--link user2 to DomainInformation--><g id="link_user2_DomainInformation"><path codeLine="133" d="M468.6,940.35 C491.43,930.84 530.82,912.99 561,891.75 C679.77,808.14 682.15,754.34 798,666.75 C803.86,662.32 809.97,657.93 816.21,653.61 " fill="none" id="user2-to-DomainInformation" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="820.01,650.33,810.3204,652.0941,815.8786,653.1462,814.8264,658.7044,820.01,650.33" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="135" x="612" y="688.3184">/domain/&lt;id&gt;/?????</text></g><!--link user3 to UserDomainRole--><g id="link_user3_UserDomainRole"><path codeLine="135" d="M468.76,54.03 C518.07,81.13 655.31,156.92 768,222.75 C800.17,241.54 835.36,262.72 865.69,281.19 " fill="none" id="user3-to-UserDomainRole" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="869.51,284.13,863.902,276.0337,865.239,281.5303,859.7424,282.8673,869.51,284.13" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="175" x="592" y="121.3184">/domain/&lt;id&gt;/users/add</text></g><!--link user3 to DomainInvitation--><g id="link_user3_DomainInvitation"><path codeLine="136" d="M449,82.14 C449,95.98 449,112.04 449,127.62 " fill="none" id="user3-to-DomainInvitation" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="449,132.33,453,123.33,449,127.33,445,123.33,449,132.33" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="175" x="350" y="112.9484">/domain/&lt;id&gt;/users/add</text></g><!--SRC=[XLNBRjim4BphAuZuKDS8RJIv1QcBD0uA0tq41e8UYaAWfBNCbY9TadAQ5ldtBYbHrijfOCJYBZcSdPsLcH3giU2_kSmZ0LjBh2AQvpjBCguXjLp9A4e5CuQiLC6ulDdl1K-PIv2_4I7jzLPfmaZczs6AKloNQc0MuzC70_er1hWyWB4yxqPPQNTAyp_88rRRBKyv4sHwgwHbgNKRJ9aKt5hGdQYoEz1nMWLCap8kf-5NYJT15bUCoBIgmENIKckGDdw4n70BUF9h_UJ92Bn7Oaq7gC_sDlZADXK-5eHr5rw1-NmUFGUzN6bUejKF9dFrof3IHNmoOBW3_l4vaie2yIrGMtyM4xTEFCX8ybI3V5clRZ7-k0FfqGnXMYDDah3q9oQsMXNaeygvdEVg467aEbcwZP8LSBr8beGRWffLUyZ3mteLWSo8kpoAXXscWbPrN8L6ddSQ66gjTVVbXcUdIss9FJ9LZIMsN1iREqQuA7YM2GWh16iobblXlW592VpUxvI4eDO8rndLTDRSVZLggVEZZyvxvkdQF7XRgmFgtxLqpO-R6C-X-26EKj_TtvC2yDxCEBN7YSxzW7sR9AA4x_Dbk14PL_TDNtUvh8y6yxGsa7DZDTDjwn7yz6TlwFig4hCMc-c0e1ytm17XzYaEwl_7yaEcbDRqNygrRXqJggzH6sD4BkVKQkD62V1QtOCkk35um9nMnSzbyohIUFRjsStgq_hpMR1R3vbMKp4IxfHyefRUgHVwVk3ssFOxrmatVNNGO9Ea3LM5FWshCxYzDA6I0VImJqqAEUSQG8wITe5vDSh2lKmSUvm7D-zLsTAIoGQowBYa6LsE_8nSaTbieRsfGSzc3OnauWdDDdcFkaLXHMiTJo8rOXwHN7_VaCa7LqjKBMWeZRRc3sbKyYskURPSk3d7pGTyUI7M4UgY3NKn0jMrQG_rdVlhu5ssyIu9hLyF3UX0-XwY_o5Oi2n3r1CGWzQ-2F8F]--></g></svg>
\ No newline at end of file
+<?xml version="1.0" encoding="us-ascii" standalone="no"?><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" contentStyleType="text/css" height="986px" preserveAspectRatio="none" style="width:1507px;height:986px;background:#FFFFFF;" version="1.1" viewBox="0 0 1507 986" width="1507px" zoomAndPan="magnify"><defs/><g><!--class DomainApplication--><g id="elem_DomainApplication"><rect codeLine="38" fill="#F1F1F1" height="218.9688" id="DomainApplication" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="227" x="349" y="430"/><ellipse cx="394.25" cy="446" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M397.2188,451.6406 Q396.6406,451.9375 396,452.0781 Q395.3594,452.2344 394.6563,452.2344 Q392.1563,452.2344 390.8281,450.5938 Q389.5156,448.9375 389.5156,445.8125 Q389.5156,442.6875 390.8281,441.0313 Q392.1563,439.375 394.6563,439.375 Q395.3594,439.375 396,439.5313 Q396.6563,439.6875 397.2188,439.9844 L397.2188,442.7031 Q396.5938,442.125 396,441.8594 Q395.4063,441.5781 394.7813,441.5781 Q393.4375,441.5781 392.75,442.6563 Q392.0625,443.7188 392.0625,445.8125 Q392.0625,447.9063 392.75,448.9844 Q393.4375,450.0469 394.7813,450.0469 Q395.4063,450.0469 396,449.7813 Q396.5938,449.5 397.2188,448.9219 L397.2188,451.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="128" x="414.75" y="450.8467">DomainApplication</text><line style="stroke:#181818;stroke-width:0.5;" x1="350" x2="575" y1="462" y2="462"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="164" x="355" y="478.9951">Application for a domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="350" x2="575" y1="486.2969" y2="486.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="95" x="355" y="503.292">creator (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="355" y="519.5889">investigator (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="194" x="355" y="535.8857">authorizing_official (Contact)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="355" y="552.1826">submitter (Contact)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="180" x="355" y="568.4795">other_contacts (Contacts)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="197" x="355" y="584.7764">requested_domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="197" x="355" y="601.0732">current_websites (Websites)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="215" x="355" y="617.3701">alternative_domains (Websites)</text><line style="stroke:#181818;stroke-width:1.0;" x1="350" x2="575" y1="624.6719" y2="624.6719"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="355" y="641.667">Request information...</text></g><!--class User--><g id="elem_User"><rect codeLine="53" fill="#F1F1F1" height="88.5938" id="User" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="146" x="389.5" y="289"/><ellipse cx="442.25" cy="305" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M445.2188,310.6406 Q444.6406,310.9375 444,311.0781 Q443.3594,311.2344 442.6563,311.2344 Q440.1563,311.2344 438.8281,309.5938 Q437.5156,307.9375 437.5156,304.8125 Q437.5156,301.6875 438.8281,300.0313 Q440.1563,298.375 442.6563,298.375 Q443.3594,298.375 444,298.5313 Q444.6563,298.6875 445.2188,298.9844 L445.2188,301.7031 Q444.5938,301.125 444,300.8594 Q443.4063,300.5781 442.7813,300.5781 Q441.4375,300.5781 440.75,301.6563 Q440.0625,302.7188 440.0625,304.8125 Q440.0625,306.9063 440.75,307.9844 Q441.4375,309.0469 442.7813,309.0469 Q443.4063,309.0469 444,308.7813 Q444.5938,308.5 445.2188,307.9219 L445.2188,310.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="32" x="462.75" y="309.8467">User</text><line style="stroke:#181818;stroke-width:0.5;" x1="390.5" x2="534.5" y1="321" y2="321"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="395.5" y="337.9951">Django's user class</text><line style="stroke:#181818;stroke-width:1.0;" x1="390.5" x2="534.5" y1="345.2969" y2="345.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="12" x="395.5" y="362.292">...</text><line style="stroke:#181818;stroke-width:1.0;" x1="390.5" x2="534.5" y1="369.5938" y2="369.5938"/></g><g id="elem_GMN4"><path d="M6,290.5 L6,376.1641 A0,0 0 0 0 6,376.1641 L214,376.1641 A0,0 0 0 0 214,376.1641 L214,337.5 L389.23,333.5 L214,329.5 L214,300.5 L204,290.5 L6,290.5 A0,0 0 0 0 6,290.5 " fill="#FEFFDD" style="stroke:#181818;stroke-width:0.5;"/><path d="M204,290.5 L204,300.5 L214,300.5 L204,290.5 " fill="#FEFFDD" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="151" x="12" y="307.5669">Created by DjangoOIDC</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="146" x="12" y="322.6997">when users arrive back</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="95" x="12" y="337.8325">from Login.gov</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="4" x="12" y="352.9653">&#160;</text><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="73" x="12" y="368.0981">username</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="110" x="89" y="368.0981">is the Login UUID</text></g><!--class Contact--><g id="elem_Contact"><rect codeLine="69" fill="#F1F1F1" height="170.0781" id="Contact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="182" x="371.5" y="700.5"/><ellipse cx="431.25" cy="716.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M434.2188,722.1406 Q433.6406,722.4375 433,722.5781 Q432.3594,722.7344 431.6563,722.7344 Q429.1563,722.7344 427.8281,721.0938 Q426.5156,719.4375 426.5156,716.3125 Q426.5156,713.1875 427.8281,711.5313 Q429.1563,709.875 431.6563,709.875 Q432.3594,709.875 433,710.0313 Q433.6563,710.1875 434.2188,710.4844 L434.2188,713.2031 Q433.5938,712.625 433,712.3594 Q432.4063,712.0781 431.7813,712.0781 Q430.4375,712.0781 429.75,713.1563 Q429.0625,714.2188 429.0625,716.3125 Q429.0625,718.4063 429.75,719.4844 Q430.4375,720.5469 431.7813,720.5469 Q432.4063,720.5469 433,720.2813 Q433.5938,720 434.2188,719.4219 L434.2188,722.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="54" x="451.75" y="721.3467">Contact</text><line style="stroke:#181818;stroke-width:0.5;" x1="372.5" x2="552.5" y1="732.5" y2="732.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="170" x="377.5" y="749.4951">Contact info for a person</text><line style="stroke:#181818;stroke-width:1.0;" x1="372.5" x2="552.5" y1="756.7969" y2="756.7969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="71" x="377.5" y="773.792">first_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="92" x="377.5" y="790.0889">middle_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="70" x="377.5" y="806.3857">last_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="25" x="377.5" y="822.6826">title</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="36" x="377.5" y="838.9795">email</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="45" x="377.5" y="855.2764">phone</text><line style="stroke:#181818;stroke-width:1.0;" x1="372.5" x2="552.5" y1="862.5781" y2="862.5781"/></g><!--class Domain--><g id="elem_Domain"><rect codeLine="83" fill="#F1F1F1" height="121.1875" id="Domain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="133" x="1367" y="380"/><ellipse cx="1403.6" cy="396" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1406.5688,401.6406 Q1405.9906,401.9375 1405.35,402.0781 Q1404.7094,402.2344 1404.0063,402.2344 Q1401.5063,402.2344 1400.1781,400.5938 Q1398.8656,398.9375 1398.8656,395.8125 Q1398.8656,392.6875 1400.1781,391.0313 Q1401.5063,389.375 1404.0063,389.375 Q1404.7094,389.375 1405.35,389.5313 Q1406.0063,389.6875 1406.5688,389.9844 L1406.5688,392.7031 Q1405.9438,392.125 1405.35,391.8594 Q1404.7563,391.5781 1404.1313,391.5781 Q1402.7875,391.5781 1402.1,392.6563 Q1401.4125,393.7188 1401.4125,395.8125 Q1401.4125,397.9063 1402.1,398.9844 Q1402.7875,400.0469 1404.1313,400.0469 Q1404.7563,400.0469 1405.35,399.7813 Q1405.9438,399.5 1406.5688,398.9219 L1406.5688,401.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="53" x="1422.4" y="400.8467">Domain</text><line style="stroke:#181818;stroke-width:0.5;" x1="1368" x2="1499" y1="412" y2="412"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="121" x="1373" y="428.9951">Approved domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="1368" x2="1499" y1="436.2969" y2="436.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="39" x="1373" y="453.292">name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="58" x="1373" y="469.5889">is_active</text><line style="stroke:#181818;stroke-width:1.0;" x1="1368" x2="1499" y1="476.8906" y2="476.8906"/><text fill="#000000" font-family="sans-serif" font-size="14" font-weight="bold" lengthAdjust="spacing" textLength="103" x="1373" y="493.8857">EPP methods</text></g><!--class DomainInformation--><g id="elem_DomainInformation"><rect codeLine="94" fill="#F1F1F1" height="137.4844" id="DomainInformation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="286" x="818" y="511"/><ellipse cx="891.75" cy="527" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M894.7188,532.6406 Q894.1406,532.9375 893.5,533.0781 Q892.8594,533.2344 892.1563,533.2344 Q889.6563,533.2344 888.3281,531.5938 Q887.0156,529.9375 887.0156,526.8125 Q887.0156,523.6875 888.3281,522.0313 Q889.6563,520.375 892.1563,520.375 Q892.8594,520.375 893.5,520.5313 Q894.1563,520.6875 894.7188,520.9844 L894.7188,523.7031 Q894.0938,523.125 893.5,522.8594 Q892.9063,522.5781 892.2813,522.5781 Q890.9375,522.5781 890.25,523.6563 Q889.5625,524.7188 889.5625,526.8125 Q889.5625,528.9063 890.25,529.9844 Q890.9375,531.0469 892.2813,531.0469 Q892.9063,531.0469 893.5,530.7813 Q894.0938,530.5 894.7188,529.9219 L894.7188,532.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="130" x="912.25" y="531.8467">DomainInformation</text><line style="stroke:#181818;stroke-width:0.5;" x1="819" x2="1103" y1="543" y2="543"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="232" x="824" y="559.9951">Registrar information on a domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="819" x2="1103" y1="567.2969" y2="567.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="824" y="584.292">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="274" x="824" y="600.5889">domain_application (DomainApplication)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="97" x="824" y="616.8857">security_email</text><line style="stroke:#181818;stroke-width:1.0;" x1="819" x2="1103" y1="624.1875" y2="624.1875"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="824" y="641.1826">Request information...</text></g><!--class UserDomainRole--><g id="elem_UserDomainRole"><rect codeLine="108" fill="#F1F1F1" height="121.1875" id="UserDomainRole" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="148" x="887" y="267"/><ellipse cx="902" cy="283" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M904.9688,288.6406 Q904.3906,288.9375 903.75,289.0781 Q903.1094,289.2344 902.4063,289.2344 Q899.9063,289.2344 898.5781,287.5938 Q897.2656,285.9375 897.2656,282.8125 Q897.2656,279.6875 898.5781,278.0313 Q899.9063,276.375 902.4063,276.375 Q903.1094,276.375 903.75,276.5313 Q904.4063,276.6875 904.9688,276.9844 L904.9688,279.7031 Q904.3438,279.125 903.75,278.8594 Q903.1563,278.5781 902.5313,278.5781 Q901.1875,278.5781 900.5,279.6563 Q899.8125,280.7188 899.8125,282.8125 Q899.8125,284.9063 900.5,285.9844 Q901.1875,287.0469 902.5313,287.0469 Q903.1563,287.0469 903.75,286.7813 Q904.3438,286.5 904.9688,285.9219 L904.9688,288.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="916" y="287.8467">UserDomainRole</text><line style="stroke:#181818;stroke-width:0.5;" x1="888" x2="1034" y1="299" y2="299"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="84" x="893" y="315.9951">Permissions</text><line style="stroke:#181818;stroke-width:1.0;" x1="888" x2="1034" y1="323.2969" y2="323.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="893" y="340.292">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="77" x="893" y="356.5889">user (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="893" y="372.8857">role="ADMIN"</text><line style="stroke:#181818;stroke-width:1.0;" x1="888" x2="1034" y1="380.1875" y2="380.1875"/></g><!--class DomainInvitation--><g id="elem_DomainInvitation"><rect codeLine="120" fill="#F1F1F1" height="121.1875" id="DomainInvitation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="156" x="384.5" y="133"/><ellipse cx="404" cy="149" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M406.9688,154.6406 Q406.3906,154.9375 405.75,155.0781 Q405.1094,155.2344 404.4063,155.2344 Q401.9063,155.2344 400.5781,153.5938 Q399.2656,151.9375 399.2656,148.8125 Q399.2656,145.6875 400.5781,144.0313 Q401.9063,142.375 404.4063,142.375 Q405.1094,142.375 405.75,142.5313 Q406.4063,142.6875 406.9688,142.9844 L406.9688,145.7031 Q406.3438,145.125 405.75,144.8594 Q405.1563,144.5781 404.5313,144.5781 Q403.1875,144.5781 402.5,145.6563 Q401.8125,146.7188 401.8125,148.8125 Q401.8125,150.9063 402.5,151.9844 Q403.1875,153.0469 404.5313,153.0469 Q405.1563,153.0469 405.75,152.7813 Q406.3438,152.5 406.9688,151.9219 L406.9688,154.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="419" y="153.8467">DomainInvitation</text><line style="stroke:#181818;stroke-width:0.5;" x1="385.5" x2="539.5" y1="165" y2="165"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="144" x="390.5" y="181.9951">Email invitations sent</text><line style="stroke:#181818;stroke-width:1.0;" x1="385.5" x2="539.5" y1="189.2969" y2="189.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="36" x="390.5" y="206.292">email</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="390.5" y="222.5889">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="43" x="390.5" y="238.8857">status</text><line style="stroke:#181818;stroke-width:1.0;" x1="385.5" x2="539.5" y1="246.1875" y2="246.1875"/></g><!--entity applicant--><g id="elem_applicant"><ellipse cx="110" cy="465" fill="#FF0000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M110,473 L110,500 M97,481 L123,481 M110,500 L97,515 M110,500 L123,515 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="62" x="79" y="529.4951">applicant</text></g><!--entity analyst--><g id="elem_analyst"><ellipse cx="110" cy="576" fill="#0000FF" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M110,584 L110,611 M97,592 L123,592 M110,611 L97,626 M110,611 L123,626 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="48" x="86" y="640.4951">analyst</text></g><!--entity user1--><g id="elem_user1"><ellipse cx="961" cy="692" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M961,700 L961,727 M948,708 L974,708 M961,727 L948,742 M961,727 L974,742 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="40" x="941" y="756.4951">user1</text></g><!--entity user2--><g id="elem_user2"><ellipse cx="462.5" cy="914" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M462.5,922 L462.5,949 M449.5,930 L475.5,930 M462.5,949 L449.5,964 M462.5,949 L475.5,964 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="40" x="442.5" y="978.4951">user2</text></g><!--entity user3--><g id="elem_user3"><ellipse cx="462.5" cy="14" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M462.5,22 L462.5,49 M449.5,30 L475.5,30 M462.5,49 L449.5,64 M462.5,49 L475.5,64 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="40" x="442.5" y="78.4951">user3</text></g><!--link User to DomainApplication--><g id="link_User_DomainApplication"><path codeLine="67" d="M462.5,378.24 C462.5,393.63 462.5,411.61 462.5,429.87 " fill="none" id="User-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="129" x="386.5" y="408.5669">creator, investigator</text></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="81" d="M462.5,662.3 C462.5,670.63 462.5,678.96 462.5,687.14 " fill="none" id="DomainApplication-Contact" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="462.5,649.24,458.5,655.24,462.5,661.24,466.5,655.24,462.5,649.24" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="462.5,700.5,466.5,694.5,462.5,688.5,458.5,694.5,462.5,700.5" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="292" x="305" y="679.3169">authorizing_official, submitter, other_contacts</text></g><!--link DomainApplication to Domain--><g id="link_DomainApplication_Domain"><path codeLine="92" d="M576.31,523.6 C645.89,514.11 737.02,502.24 818,493.5 C1014.69,472.27 1247.54,454.08 1361.91,445.6 " fill="none" id="DomainApplication-to-Domain" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="1366.93,445.22,1357.6577,441.8997,1361.9438,445.5915,1358.252,449.8776,1366.93,445.22" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="62" x="930" y="462.5669">approve()</text></g><!--link DomainInformation to Domain--><g id="link_DomainInformation_Domain"><path codeLine="104" d="M1104.12,537.51 C1191.37,511.74 1298.99,479.94 1366.7,459.94 " fill="none" id="DomainInformation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to DomainApplication--><g id="link_DomainInformation_DomainApplication"><path codeLine="105" d="M817.84,564.21 C807.75,563.25 797.72,562.34 788,561.5 C717.68,555.44 638.66,550.05 576.21,546.13 " fill="none" id="DomainInformation-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to DomainInformation--><g id="link_DomainApplication_DomainInformation"><path codeLine="106" d="M576.25,580.28 C586.21,582.79 596.23,584.93 606,586.5 C673.3,597.31 748.71,597.44 812.58,594.12 " fill="none" id="DomainApplication-to-DomainInformation" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="817.94,593.83,808.7364,590.3237,812.9474,594.101,809.1701,598.312,817.94,593.83" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="62" x="666" y="582.5669">approve()</text></g><!--link UserDomainRole to User--><g id="link_UserDomainRole_User"><path codeLine="116" d="M886.91,328.38 C792.61,329.52 629.56,331.49 535.7,332.63 " fill="none" id="UserDomainRole-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to Domain--><g id="link_UserDomainRole_Domain"><path codeLine="117" d="M1035.14,343.61 C1110.86,360.49 1232.5,388.16 1337,414.5 C1346.66,416.94 1356.85,419.6 1366.83,422.27 " fill="none" id="UserDomainRole-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to UserDomainRole--><g id="link_DomainApplication_UserDomainRole"><path codeLine="118" d="M576.11,435.45 C585.87,428.84 595.88,422.75 606,417.5 C653.58,392.82 792.69,361.49 881.7,343.05 " fill="none" id="DomainApplication-to-UserDomainRole" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="886.69,342.02,877.066,339.9273,881.7938,343.0335,878.6876,347.7613,886.69,342.02" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="62" x="666" y="360.5669">approve()</text></g><!--link DomainInvitation to Domain--><g id="link_DomainInvitation_Domain"><path codeLine="128" d="M540.56,191.16 C662.53,189.45 906.48,194.23 1104,249.5 C1215.21,280.62 1239.49,302.64 1337,364.5 C1346.93,370.8 1357.04,377.94 1366.79,385.26 " fill="none" id="DomainInvitation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInvitation to UserDomainRole--><g id="link_DomainInvitation_UserDomainRole"><path codeLine="129" d="M540.53,224.25 C561.57,232.07 584.5,240.07 606,246.5 C699.5,274.45 809.35,298.22 881.59,312.64 " fill="none" id="DomainInvitation-to-UserDomainRole" style="stroke:#008000;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#008000" points="886.73,313.66,878.6956,307.9636,881.8282,312.6739,877.1179,315.8065,886.73,313.66" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="105" x="644.5" y="242.5669">User.first_login()</text></g><!--link applicant to DomainApplication--><g id="link_applicant_DomainApplication"><path codeLine="132" d="M141.19,498.38 C185.86,504.11 272.03,515.17 343.75,524.38 " fill="none" id="applicant-to-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="348.89,525.04,340.4647,519.9396,343.9297,524.411,339.4583,527.8761,348.89,525.04" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="63" x="250" y="507.5669">/register</text></g><!--link analyst to DomainApplication--><g id="link_analyst_DomainApplication"><path codeLine="135" d="M134.27,601.12 C176.46,593.17 268.22,575.89 343.87,561.65 " fill="none" id="analyst-to-DomainApplication" style="stroke:#0000FF;stroke-width:1.0;"/><polygon fill="#0000FF" points="348.83,560.72,339.2438,558.4606,343.9169,561.6483,340.7292,566.3215,348.83,560.72" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="73" x="245" y="562.5669">approve()</text></g><!--link user1 to Domain--><g id="link_user1_Domain"><path codeLine="138" d="M981.21,716.25 C1039.44,699.66 1217.35,643.92 1337,551.5 C1354.06,538.32 1370.3,521.69 1384.39,505.34 " fill="none" id="user1-to-Domain" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="1387.93,501.19,1379.0451,505.4394,1384.6843,504.9933,1385.1304,510.6326,1387.93,501.19" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="201" x="1135" y="547.5669">/domain/&lt;id&gt;/nameservers</text></g><!--link user2 to DomainInformation--><g id="link_user2_DomainInformation"><path codeLine="140" d="M482.72,936.1 C505.87,926.74 545.47,909.32 576,888.5 C696.58,806.27 701.45,754.37 818,666.5 C824.79,661.38 831.89,656.29 839.14,651.29 " fill="none" id="user2-to-DomainInformation" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="843.68,648.19,833.9946,649.9769,839.5552,651.016,838.5162,656.5766,843.68,648.19" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="146" x="624" y="687.5669">/domain/&lt;id&gt;/?????</text></g><!--link user3 to UserDomainRole--><g id="link_user3_UserDomainRole"><path codeLine="142" d="M482.71,53.6 C533.19,80.24 673.59,154.93 788,221.5 C819.21,239.66 853.13,260.35 882.53,278.61 " fill="none" id="user3-to-UserDomainRole" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="886.84,281.28,881.2959,273.1398,882.5896,278.6467,877.0827,279.9405,886.84,281.28" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="180" x="607" y="119.5669">/domain/&lt;id&gt;/users/add</text></g><!--link user3 to DomainInvitation--><g id="link_user3_DomainInvitation"><path codeLine="143" d="M462.5,81.87 C462.5,95.81 462.5,112 462.5,127.64 " fill="none" id="user3-to-DomainInvitation" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="462.5,132.92,466.5,123.92,462.5,127.92,458.5,123.92,462.5,132.92" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="180" x="361" y="111.8169">/domain/&lt;id&gt;/users/add</text></g><!--SRC=[XLNBRjim4BphAuZuKDS8RJIv1QcBD0uA0tq41e8UYaAWfBNCbY9TadAQ5ldtBYbHrijfOCJYBZcSdPsLcH3giU2_kSmZ0LjBh2AQvpjBCguXjLp9A4e5CuQiLC6ulDdl1K-PIv2_4I7jzLPfmaZczs6AKloNQc0MuzC70_er1hWyWB4yxqPPQNTAyp_88rRRBKyv4sHwgwHbgNKRJ9aKt5hGdQYoEz1nMWLCap8kf-5NYJT15bUCoBIgmENIKckGDdw4n70BUF9h_UJ92Bn7Oaq7gC_sDlZADXK-5eHr5rw1-NmUFGUzN6bUejKF9dFrof3IHNmoOBW3_l4vaie2yIrGMtyM4xTEFCX8ybI3V5clRZ7-k0FfqGnXMYDDah3q9oQsMXNaeygvdEVg467aEbcwZP8LSBr8beGRWffLUyZ3mteLWSo8kpoAXXscWbPrN8L6ddSQ66gjTVVbXcUdIss9FJ9LZIMsN1iREqQuA7YM2GWh16iobblXlW592VpUxvI4eDO8rndLTDRSVZLggVEZZyvxvkdQF7XRgmFgtxLqpO-R6C-X-26EKj_TtvC2yDxCEBN7YSxzW7sR9AA4x_Dbk14PL_TDNtUvh8y6yxGsa7DZDTDjwn7yz6TlwFig4hCMc-c0e1ytm17XzYaEwl_7yaEcbDRqNygrRXqJggzH6sD4BkVKQkD62V1QtOCkk35um9nMnSzbyohIUFRjsStgq_hpMR1R3vbMKp4IxfHyefRUgHVwVk3ssFOxrmatVNNGO9Ea3LM5FWshCxYzDA6I0VImJqqAEUSQG8wITe5vDSh2lKmSUvm7D-zLsTAIoGQowBYa6LsE_8nSaTbieRsfGSzc3OnauWdDDdcFkaLXHMiTJo8rOXwHN7_VaCa7LqjKBMWeZRRc3sbKyYskURPSk3d7pGTyUI7M4UgY3NKn0jMrQG_rdVlhu5ssyIu9hLyF3UX0-XwY_o5Oi2n3r1CGWzQ-2F8F]--></g></svg>
\ No newline at end of file
diff --git a/docs/architecture/diagrams/models_diagram.md b/docs/architecture/diagrams/models_diagram.md
index 04d95ee09..77fa36707 100644
--- a/docs/architecture/diagrams/models_diagram.md
+++ b/docs/architecture/diagrams/models_diagram.md
@@ -13,6 +13,12 @@ $ docker compose app ./manage.py generate_puml --include registrar
 <details>
 <summary>PlantUML source code</summary>
 
+To regenerate this image using Docker, run
+
+```bash
+$ docker run -v $(pwd):$(pwd) -w $(pwd) -it plantuml/plantuml -tsvg models_diagram.md
+```
+
 ```plantuml
 @startuml 
 class "registrar.Contact <Registrar>" as registrar.Contact #d6f4e9 {
diff --git a/docs/architecture/diagrams/models_diagram.svg b/docs/architecture/diagrams/models_diagram.svg
index 40d0b57b9..e0cdd355f 100644
--- a/docs/architecture/diagrams/models_diagram.svg
+++ b/docs/architecture/diagrams/models_diagram.svg
@@ -1 +1 @@
-<?xml version="1.0" encoding="us-ascii" standalone="no"?><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" contentStyleType="text/css" height="2183px" preserveAspectRatio="none" style="width:1565px;height:2183px;background:#FFFFFF;" version="1.1" viewBox="0 0 1565 2183" width="1565px" zoomAndPan="magnify"><defs/><g><!--cluster registrar--><g id="cluster_registrar"><path d="M8.5,6 L71.5,6 A3.75,3.75 0 0 1 74,8.5 L81,28.4883 L1471.5,28.4883 A2.5,2.5 0 0 1 1474,30.9883 L1474,2173.86 A2.5,2.5 0 0 1 1471.5,2176.36 L8.5,2176.36 A2.5,2.5 0 0 1 6,2173.86 L6,8.5 A2.5,2.5 0 0 1 8.5,6 " fill="none" style="stroke:#000000;stroke-width:1.5;"/><line style="stroke:#000000;stroke-width:1.5;" x1="6" x2="81" y1="28.4883" y2="28.4883"/><text fill="#000000" font-family="sans-serif" font-size="14" font-weight="bold" lengthAdjust="spacing" textLength="62" x="10" y="21.5352">registrar</text></g><!--class Contact--><g id="elem_Contact"><rect codeLine="16" fill="#D6F4E9" height="237.3711" id="Contact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="215" x="883.5" y="1328.25"/><ellipse cx="901.65" cy="1344.25" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M904.1231,1350.3931 Q903.5421,1350.6919 902.9029,1350.8413 Q902.2638,1350.9907 901.5582,1350.9907 Q899.0514,1350.9907 897.7315,1349.3389 Q896.4117,1347.687 896.4117,1344.5659 Q896.4117,1341.4365 897.7315,1339.7847 Q899.0514,1338.1328 901.5582,1338.1328 Q902.2638,1338.1328 902.9112,1338.2822 Q903.5587,1338.4316 904.1231,1338.7305 L904.1231,1341.4531 Q903.4923,1340.8721 902.8988,1340.6023 Q902.3053,1340.3325 901.6744,1340.3325 Q900.3297,1340.3325 899.6449,1341.3992 Q898.9601,1342.4658 898.9601,1344.5659 Q898.9601,1346.6577 899.6449,1347.7244 Q900.3297,1348.791 901.6744,1348.791 Q902.3053,1348.791 902.8988,1348.5212 Q903.4923,1348.2515 904.1231,1347.6704 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="916.35" y="1349.541">registrar.Contact</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="1047.5" y="1325.25"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="1048.5" y="1337.8516">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="884.5" x2="1097.5" y1="1360.25" y2="1360.25"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="50" x="889.5" y="1377.7852">contact</text><line style="stroke:#181818;stroke-width:1.0;" x1="884.5" x2="1097.5" y1="1384.7383" y2="1384.7383"/><ellipse cx="894.5" cy="1398.4824" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="903.5" y="1402.2734">id (BigAutoField)</text><ellipse cx="894.5" cy="1414.9707" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="903.5" y="1418.7617">created_at (DateTimeField)</text><ellipse cx="894.5" cy="1431.459" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="903.5" y="1435.25">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="894.5,1443.9473,890.5,1449.9473,898.5,1449.9473" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="151" x="903.5" y="1451.7383">user (OneToOneField)</text><ellipse cx="894.5" cy="1464.4355" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="150" x="903.5" y="1468.2266">first_name (TextField)</text><ellipse cx="894.5" cy="1480.9238" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="170" x="903.5" y="1484.7148">middle_name (TextField)</text><ellipse cx="894.5" cy="1497.4121" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="147" x="903.5" y="1501.2031">last_name (TextField)</text><ellipse cx="894.5" cy="1513.9004" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="104" x="903.5" y="1517.6914">title (TextField)</text><ellipse cx="894.5" cy="1530.3887" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="115" x="903.5" y="1534.1797">email (TextField)</text><ellipse cx="894.5" cy="1546.877" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="903.5" y="1550.668">phone (PhoneNumberField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="884.5" x2="1097.5" y1="1557.6211" y2="1557.6211"/></g><!--class User--><g id="elem_User"><rect codeLine="230" fill="#D6F4E9" height="319.8125" id="User" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="283" x="849.5" y="1625.62"/><ellipse cx="909.75" cy="1641.62" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M912.2231,1647.7631 Q911.6421,1648.0619 911.0029,1648.2113 Q910.3638,1648.3607 909.6582,1648.3607 Q907.1514,1648.3607 905.8315,1646.7089 Q904.5117,1645.057 904.5117,1641.9359 Q904.5117,1638.8065 905.8315,1637.1547 Q907.1514,1635.5028 909.6582,1635.5028 Q910.3638,1635.5028 911.0112,1635.6522 Q911.6587,1635.8016 912.2231,1636.1005 L912.2231,1638.8231 Q911.5923,1638.2421 910.9988,1637.9723 Q910.4053,1637.7025 909.7744,1637.7025 Q908.4297,1637.7025 907.7449,1638.7692 Q907.0601,1639.8358 907.0601,1641.9359 Q907.0601,1644.0277 907.7449,1645.0944 Q908.4297,1646.161 909.7744,1646.161 Q910.4053,1646.161 910.9988,1645.8912 Q911.5923,1645.6215 912.2231,1645.0404 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="930.25" y="1646.911">registrar.User</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="1081.5" y="1622.62"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="1082.5" y="1635.2216">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="850.5" x2="1131.5" y1="1657.62" y2="1657.62"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="30" x="855.5" y="1675.1552">user</text><line style="stroke:#181818;stroke-width:1.0;" x1="850.5" x2="1131.5" y1="1682.1083" y2="1682.1083"/><ellipse cx="860.5" cy="1695.8524" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="869.5" y="1699.6434">id (BigAutoField)</text><ellipse cx="860.5" cy="1712.3407" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="146" x="869.5" y="1716.1317">password (CharField)</text><ellipse cx="860.5" cy="1728.829" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="178" x="869.5" y="1732.62">last_login (DateTimeField)</text><ellipse cx="860.5" cy="1745.3173" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="869.5" y="1749.1083">is_superuser (BooleanField)</text><ellipse cx="860.5" cy="1761.8055" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="148" x="869.5" y="1765.5966">username (CharField)</text><ellipse cx="860.5" cy="1778.2938" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="869.5" y="1782.0848">first_name (CharField)</text><ellipse cx="860.5" cy="1794.7821" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="149" x="869.5" y="1798.5731">last_name (CharField)</text><ellipse cx="860.5" cy="1811.2704" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="121" x="869.5" y="1815.0614">email (EmailField)</text><ellipse cx="860.5" cy="1827.7587" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="150" x="869.5" y="1831.5497">is_staff (BooleanField)</text><ellipse cx="860.5" cy="1844.247" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="159" x="869.5" y="1848.038">is_active (BooleanField)</text><ellipse cx="860.5" cy="1860.7352" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="192" x="869.5" y="1864.5263">date_joined (DateTimeField)</text><ellipse cx="860.5" cy="1877.2235" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="869.5" y="1881.0145">phone (PhoneNumberField)</text><polygon fill="#FFFF44" points="860.5,1888.7118,864.5,1892.7118,860.5,1896.7118,856.5,1892.7118" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="869.5" y="1897.5028">groups (ManyToManyField)</text><polygon fill="#FFFF44" points="860.5,1905.2001,864.5,1909.2001,860.5,1913.2001,856.5,1909.2001" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="257" x="869.5" y="1913.9911">user_permissions (ManyToManyField)</text><polygon fill="#FFFF44" points="860.5,1921.6884,864.5,1925.6884,860.5,1929.6884,856.5,1925.6884" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="196" x="869.5" y="1930.4794">domains (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="850.5" x2="1131.5" y1="1937.4325" y2="1937.4325"/></g><!--class DomainApplication--><g id="elem_DomainApplication"><rect codeLine="34" fill="#D6F4E9" height="600.1133" id="DomainApplication" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="323" x="1009.5" y="668.13"/><ellipse cx="1041.15" cy="684.13" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1043.6231,690.2731 Q1043.0421,690.5719 1042.4029,690.7213 Q1041.7638,690.8707 1041.0582,690.8707 Q1038.5514,690.8707 1037.2315,689.2189 Q1035.9117,687.567 1035.9117,684.4459 Q1035.9117,681.3165 1037.2315,679.6647 Q1038.5514,678.0128 1041.0582,678.0128 Q1041.7638,678.0128 1042.4112,678.1622 Q1043.0587,678.3116 1043.6231,678.6105 L1043.6231,681.3331 Q1042.9923,680.7521 1042.3988,680.4823 Q1041.8053,680.2125 1041.1744,680.2125 Q1039.8297,680.2125 1039.1449,681.2792 Q1038.4601,682.3458 1038.4601,684.4459 Q1038.4601,686.5377 1039.1449,687.6044 Q1039.8297,688.671 1041.1744,688.671 Q1041.8053,688.671 1042.3988,688.4012 Q1042.9923,688.1315 1043.6231,687.5504 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="194" x="1058.85" y="689.421">registrar.DomainApplication</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="1281.5" y="665.13"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="1282.5" y="677.7316">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="1010.5" x2="1331.5" y1="700.13" y2="700.13"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="1015.5" y="717.6652">domain application</text><line style="stroke:#181818;stroke-width:1.0;" x1="1010.5" x2="1331.5" y1="724.6183" y2="724.6183"/><ellipse cx="1020.5" cy="738.3624" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="1029.5" y="742.1534">id (BigAutoField)</text><ellipse cx="1020.5" cy="754.8507" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="1029.5" y="758.6417">created_at (DateTimeField)</text><ellipse cx="1020.5" cy="771.339" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="1029.5" y="775.13">updated_at (DateTimeField)</text><ellipse cx="1020.5" cy="787.8273" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="1029.5" y="791.6183">status (FSMField)</text><polygon fill="#4177AF" points="1020.5,800.3155,1016.5,806.3155,1024.5,806.3155" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="140" x="1029.5" y="808.1066">creator (ForeignKey)</text><polygon fill="#4177AF" points="1020.5,816.8038,1016.5,822.8038,1024.5,822.8038" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="1029.5" y="824.5948">investigator (ForeignKey)</text><ellipse cx="1020.5" cy="837.2921" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="204" x="1029.5" y="841.0831">organization_type (CharField)</text><ellipse cx="1020.5" cy="853.7804" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="284" x="1029.5" y="857.5714">federally_recognized_tribe (BooleanField)</text><ellipse cx="1020.5" cy="870.2687" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="258" x="1029.5" y="874.0597">state_recognized_tribe (BooleanField)</text><ellipse cx="1020.5" cy="886.757" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="155" x="1029.5" y="890.548">tribe_name (TextField)</text><ellipse cx="1020.5" cy="903.2452" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="181" x="1029.5" y="907.0363">federal_agency (TextField)</text><ellipse cx="1020.5" cy="919.7335" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="164" x="1029.5" y="923.5245">federal_type (CharField)</text><ellipse cx="1020.5" cy="936.2218" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="222" x="1029.5" y="940.0128">is_election_board (BooleanField)</text><ellipse cx="1020.5" cy="952.7101" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="211" x="1029.5" y="956.5011">organization_name (TextField)</text><ellipse cx="1020.5" cy="969.1984" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="1029.5" y="972.9894">address_line1 (TextField)</text><ellipse cx="1020.5" cy="985.6866" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="175" x="1029.5" y="989.4777">address_line2 (CharField)</text><ellipse cx="1020.5" cy="1002.1749" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="101" x="1029.5" y="1005.9659">city (TextField)</text><ellipse cx="1020.5" cy="1018.6632" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="176" x="1029.5" y="1022.4542">state_territory (CharField)</text><ellipse cx="1020.5" cy="1035.1515" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="1029.5" y="1038.9425">zipcode (CharField)</text><ellipse cx="1020.5" cy="1051.6398" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="1029.5" y="1055.4308">urbanization (TextField)</text><ellipse cx="1020.5" cy="1068.128" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="169" x="1029.5" y="1071.9191">type_of_work (TextField)</text><ellipse cx="1020.5" cy="1084.6163" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="297" x="1029.5" y="1088.4073">more_organization_information (TextField)</text><polygon fill="#4177AF" points="1020.5,1097.1046,1016.5,1103.1046,1024.5,1103.1046" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="224" x="1029.5" y="1104.8956">authorizing_official (ForeignKey)</text><polygon fill="#4177AF" points="1020.5,1113.5929,1016.5,1119.5929,1024.5,1119.5929" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="249" x="1029.5" y="1121.3839">requested_domain (OneToOneField)</text><polygon fill="#4177AF" points="1020.5,1130.0812,1016.5,1136.0812,1024.5,1136.0812" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="1029.5" y="1137.8722">submitter (ForeignKey)</text><ellipse cx="1020.5" cy="1150.5695" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="135" x="1029.5" y="1154.3605">purpose (TextField)</text><ellipse cx="1020.5" cy="1167.0577" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="272" x="1029.5" y="1170.8488">no_other_contacts_rationale (TextField)</text><ellipse cx="1020.5" cy="1183.546" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="1029.5" y="1187.337">anything_else (TextField)</text><ellipse cx="1020.5" cy="1200.0343" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="266" x="1029.5" y="1203.8253">is_policy_acknowledged (BooleanField)</text><polygon fill="#FFFF44" points="1020.5,1211.5226,1024.5,1215.5226,1020.5,1219.5226,1016.5,1215.5226" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="253" x="1029.5" y="1220.3136">current_websites (ManyToManyField)</text><polygon fill="#FFFF44" points="1020.5,1228.0109,1024.5,1232.0109,1020.5,1236.0109,1016.5,1232.0109" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="275" x="1029.5" y="1236.8019">alternative_domains (ManyToManyField)</text><polygon fill="#FFFF44" points="1020.5,1244.4991,1024.5,1248.4991,1020.5,1252.4991,1016.5,1248.4991" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="238" x="1029.5" y="1253.2902">other_contacts (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="1010.5" x2="1331.5" y1="1260.2433" y2="1260.2433"/></g><!--class Domain--><g id="elem_Domain"><rect codeLine="124" fill="#D6F4E9" height="154.9297" id="Domain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="215" x="705.5" y="2005.43"/><ellipse cx="723.65" cy="2021.43" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M726.1231,2027.5731 Q725.5421,2027.8719 724.9029,2028.0213 Q724.2638,2028.1707 723.5582,2028.1707 Q721.0514,2028.1707 719.7315,2026.5189 Q718.4117,2024.867 718.4117,2021.7459 Q718.4117,2018.6165 719.7315,2016.9647 Q721.0514,2015.3128 723.5582,2015.3128 Q724.2638,2015.3128 724.9112,2015.4622 Q725.5587,2015.6116 726.1231,2015.9105 L726.1231,2018.6331 Q725.4923,2018.0521 724.8988,2017.7823 Q724.3053,2017.5125 723.6744,2017.5125 Q722.3297,2017.5125 721.6449,2018.5792 Q720.9601,2019.6458 720.9601,2021.7459 Q720.9601,2023.8377 721.6449,2024.9044 Q722.3297,2025.971 723.6744,2025.971 Q724.3053,2025.971 724.8988,2025.7012 Q725.4923,2025.4315 726.1231,2024.8504 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="738.35" y="2026.721">registrar.Domain</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="869.5" y="2002.43"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="870.5" y="2015.0316">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="706.5" x2="919.5" y1="2037.43" y2="2037.43"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="52" x="711.5" y="2054.9652">domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="706.5" x2="919.5" y1="2061.9183" y2="2061.9183"/><ellipse cx="716.5" cy="2075.6624" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="725.5" y="2079.4534">id (BigAutoField)</text><ellipse cx="716.5" cy="2092.1507" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="725.5" y="2095.9417">created_at (DateTimeField)</text><ellipse cx="716.5" cy="2108.639" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="725.5" y="2112.43">updated_at (DateTimeField)</text><ellipse cx="716.5" cy="2125.1273" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="725.5" y="2128.9183">name (CharField)</text><ellipse cx="716.5" cy="2141.6155" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="725.5" y="2145.4066">is_active (FSMField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="706.5" x2="919.5" y1="2152.3597" y2="2152.3597"/></g><!--class Website--><g id="elem_Website"><rect codeLine="253" fill="#D6F4E9" height="138.4414" id="Website" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="215" x="1206.5" y="1377.71"/><ellipse cx="1224.65" cy="1393.71" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1227.1231,1399.8531 Q1226.5421,1400.1519 1225.9029,1400.3013 Q1225.2638,1400.4507 1224.5582,1400.4507 Q1222.0514,1400.4507 1220.7315,1398.7989 Q1219.4117,1397.147 1219.4117,1394.0259 Q1219.4117,1390.8965 1220.7315,1389.2447 Q1222.0514,1387.5928 1224.5582,1387.5928 Q1225.2638,1387.5928 1225.9112,1387.7422 Q1226.5587,1387.8916 1227.1231,1388.1905 L1227.1231,1390.9131 Q1226.4923,1390.3321 1225.8988,1390.0623 Q1225.3053,1389.7925 1224.6744,1389.7925 Q1223.3297,1389.7925 1222.6449,1390.8592 Q1221.9601,1391.9258 1221.9601,1394.0259 Q1221.9601,1396.1177 1222.6449,1397.1844 Q1223.3297,1398.251 1224.6744,1398.251 Q1225.3053,1398.251 1225.8988,1397.9812 Q1226.4923,1397.7115 1227.1231,1397.1304 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="1239.35" y="1399.001">registrar.Website</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="1370.5" y="1374.71"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="1371.5" y="1387.3116">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="1207.5" x2="1420.5" y1="1409.71" y2="1409.71"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="52" x="1212.5" y="1427.2452">website</text><line style="stroke:#181818;stroke-width:1.0;" x1="1207.5" x2="1420.5" y1="1434.1983" y2="1434.1983"/><ellipse cx="1217.5" cy="1447.9424" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="1226.5" y="1451.7334">id (BigAutoField)</text><ellipse cx="1217.5" cy="1464.4307" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="1226.5" y="1468.2217">created_at (DateTimeField)</text><ellipse cx="1217.5" cy="1480.919" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="1226.5" y="1484.71">updated_at (DateTimeField)</text><ellipse cx="1217.5" cy="1497.4073" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="1226.5" y="1501.1983">website (CharField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="1207.5" x2="1420.5" y1="1508.1514" y2="1508.1514"/></g><!--class DomainInformation--><g id="elem_DomainInformation"><rect codeLine="81" fill="#D6F4E9" height="567.1367" id="DomainInformation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="323" x="812.5" y="41"/><ellipse cx="842.8" cy="57" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M845.2731,63.1431 Q844.6921,63.4419 844.0529,63.5913 Q843.4138,63.7407 842.7082,63.7407 Q840.2014,63.7407 838.8815,62.0889 Q837.5617,60.437 837.5617,57.3159 Q837.5617,54.1865 838.8815,52.5347 Q840.2014,50.8828 842.7082,50.8828 Q843.4138,50.8828 844.0612,51.0322 Q844.7087,51.1816 845.2731,51.4805 L845.2731,54.2031 Q844.6423,53.6221 844.0488,53.3523 Q843.4553,53.0825 842.8244,53.0825 Q841.4797,53.0825 840.7949,54.1492 Q840.1101,55.2158 840.1101,57.3159 Q840.1101,59.4077 840.7949,60.4744 Q841.4797,61.541 842.8244,61.541 Q843.4553,61.541 844.0488,61.2712 Q844.6423,61.0015 845.2731,60.4204 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="197" x="860.2" y="62.291">registrar.DomainInformation</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="1084.5" y="38"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="1085.5" y="50.6016">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="813.5" x2="1134.5" y1="73" y2="73"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="137" x="818.5" y="90.5352">domain information</text><line style="stroke:#181818;stroke-width:1.0;" x1="813.5" x2="1134.5" y1="97.4883" y2="97.4883"/><ellipse cx="823.5" cy="111.2324" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="832.5" y="115.0234">id (BigAutoField)</text><ellipse cx="823.5" cy="127.7207" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="832.5" y="131.5117">created_at (DateTimeField)</text><ellipse cx="823.5" cy="144.209" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="832.5" y="148">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="823.5,156.6973,819.5,162.6973,827.5,162.6973" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="140" x="832.5" y="164.4883">creator (ForeignKey)</text><polygon fill="#4177AF" points="823.5,173.1855,819.5,179.1855,827.5,179.1855" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="256" x="832.5" y="180.9766">domain_application (OneToOneField)</text><ellipse cx="823.5" cy="193.6738" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="204" x="832.5" y="197.4648">organization_type (CharField)</text><ellipse cx="823.5" cy="210.1621" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="284" x="832.5" y="213.9531">federally_recognized_tribe (BooleanField)</text><ellipse cx="823.5" cy="226.6504" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="258" x="832.5" y="230.4414">state_recognized_tribe (BooleanField)</text><ellipse cx="823.5" cy="243.1387" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="155" x="832.5" y="246.9297">tribe_name (TextField)</text><ellipse cx="823.5" cy="259.627" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="181" x="832.5" y="263.418">federal_agency (TextField)</text><ellipse cx="823.5" cy="276.1152" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="164" x="832.5" y="279.9063">federal_type (CharField)</text><ellipse cx="823.5" cy="292.6035" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="222" x="832.5" y="296.3945">is_election_board (BooleanField)</text><ellipse cx="823.5" cy="309.0918" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="211" x="832.5" y="312.8828">organization_name (TextField)</text><ellipse cx="823.5" cy="325.5801" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="832.5" y="329.3711">address_line1 (TextField)</text><ellipse cx="823.5" cy="342.0684" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="175" x="832.5" y="345.8594">address_line2 (CharField)</text><ellipse cx="823.5" cy="358.5566" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="101" x="832.5" y="362.3477">city (TextField)</text><ellipse cx="823.5" cy="375.0449" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="176" x="832.5" y="378.8359">state_territory (CharField)</text><ellipse cx="823.5" cy="391.5332" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="832.5" y="395.3242">zipcode (CharField)</text><ellipse cx="823.5" cy="408.0215" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="832.5" y="411.8125">urbanization (TextField)</text><ellipse cx="823.5" cy="424.5098" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="169" x="832.5" y="428.3008">type_of_work (TextField)</text><ellipse cx="823.5" cy="440.998" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="297" x="832.5" y="444.7891">more_organization_information (TextField)</text><polygon fill="#4177AF" points="823.5,453.4863,819.5,459.4863,827.5,459.4863" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="224" x="832.5" y="461.2773">authorizing_official (ForeignKey)</text><polygon fill="#4177AF" points="823.5,469.9746,819.5,475.9746,827.5,475.9746" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="832.5" y="477.7656">domain (OneToOneField)</text><polygon fill="#4177AF" points="823.5,486.4629,819.5,492.4629,827.5,492.4629" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="832.5" y="494.2539">submitter (ForeignKey)</text><ellipse cx="823.5" cy="506.9512" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="135" x="832.5" y="510.7422">purpose (TextField)</text><ellipse cx="823.5" cy="523.4395" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="272" x="832.5" y="527.2305">no_other_contacts_rationale (TextField)</text><ellipse cx="823.5" cy="539.9277" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="832.5" y="543.7188">anything_else (TextField)</text><ellipse cx="823.5" cy="556.416" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="266" x="832.5" y="560.207">is_policy_acknowledged (BooleanField)</text><ellipse cx="823.5" cy="572.9043" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="181" x="832.5" y="576.6953">security_email (EmailField)</text><polygon fill="#FFFF44" points="823.5,584.3926,827.5,588.3926,823.5,592.3926,819.5,588.3926" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="238" x="832.5" y="593.1836">other_contacts (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="813.5" x2="1134.5" y1="600.1367" y2="600.1367"/></g><!--class HostIP--><g id="elem_HostIP"><rect codeLine="136" fill="#D6F4E9" height="154.9297" id="HostIP" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="215" x="293.5" y="1369.47"/><ellipse cx="316.15" cy="1385.47" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M318.6231,1391.6131 Q318.0421,1391.9119 317.4029,1392.0613 Q316.7638,1392.2107 316.0582,1392.2107 Q313.5514,1392.2107 312.2315,1390.5589 Q310.9117,1388.907 310.9117,1385.7859 Q310.9117,1382.6565 312.2315,1381.0047 Q313.5514,1379.3528 316.0582,1379.3528 Q316.7638,1379.3528 317.4112,1379.5022 Q318.0587,1379.6516 318.6231,1379.9505 L318.6231,1382.6731 Q317.9923,1382.0921 317.3988,1381.8223 Q316.8053,1381.5525 316.1744,1381.5525 Q314.8297,1381.5525 314.1449,1382.6192 Q313.4601,1383.6858 313.4601,1385.7859 Q313.4601,1387.8777 314.1449,1388.9444 Q314.8297,1390.011 316.1744,1390.011 Q316.8053,1390.011 317.3988,1389.7412 Q317.9923,1389.4715 318.6231,1388.8904 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="106" x="331.85" y="1390.761">registrar.HostIP</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="457.5" y="1366.47"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="458.5" y="1379.0716">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="294.5" x2="507.5" y1="1401.47" y2="1401.47"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="47" x="299.5" y="1419.0052">host ip</text><line style="stroke:#181818;stroke-width:1.0;" x1="294.5" x2="507.5" y1="1425.9583" y2="1425.9583"/><ellipse cx="304.5" cy="1439.7024" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="313.5" y="1443.4934">id (BigAutoField)</text><ellipse cx="304.5" cy="1456.1907" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="313.5" y="1459.9817">created_at (DateTimeField)</text><ellipse cx="304.5" cy="1472.679" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="313.5" y="1476.47">updated_at (DateTimeField)</text><ellipse cx="304.5" cy="1489.1673" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="313.5" y="1492.9583">address (CharField)</text><polygon fill="#4177AF" points="304.5,1501.6555,300.5,1507.6555,308.5,1507.6555" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="121" x="313.5" y="1509.4466">host (ForeignKey)</text><line style="stroke:#181818;stroke-width:1.0;" x1="294.5" x2="507.5" y1="1516.3997" y2="1516.3997"/></g><!--class Host--><g id="elem_Host"><rect codeLine="149" fill="#D6F4E9" height="154.9297" id="Host" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="215" x="254.5" y="1708.06"/><ellipse cx="282.55" cy="1724.06" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M285.0231,1730.2031 Q284.4421,1730.5019 283.8029,1730.6513 Q283.1638,1730.8007 282.4582,1730.8007 Q279.9514,1730.8007 278.6315,1729.1489 Q277.3117,1727.497 277.3117,1724.3759 Q277.3117,1721.2465 278.6315,1719.5947 Q279.9514,1717.9428 282.4582,1717.9428 Q283.1638,1717.9428 283.8112,1718.0922 Q284.4587,1718.2416 285.0231,1718.5405 L285.0231,1721.2631 Q284.3923,1720.6821 283.7988,1720.4123 Q283.2053,1720.1425 282.5744,1720.1425 Q281.2297,1720.1425 280.5449,1721.2092 Q279.8601,1722.2758 279.8601,1724.3759 Q279.8601,1726.4677 280.5449,1727.5344 Q281.2297,1728.601 282.5744,1728.601 Q283.2053,1728.601 283.7988,1728.3312 Q284.3923,1728.0615 285.0231,1727.4804 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="299.45" y="1729.351">registrar.Host</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="418.5" y="1705.06"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="419.5" y="1717.6616">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="255.5" x2="468.5" y1="1740.06" y2="1740.06"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="30" x="260.5" y="1757.5952">host</text><line style="stroke:#181818;stroke-width:1.0;" x1="255.5" x2="468.5" y1="1764.5483" y2="1764.5483"/><ellipse cx="265.5" cy="1778.2924" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="274.5" y="1782.0834">id (BigAutoField)</text><ellipse cx="265.5" cy="1794.7807" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="274.5" y="1798.5717">created_at (DateTimeField)</text><ellipse cx="265.5" cy="1811.269" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="274.5" y="1815.06">updated_at (DateTimeField)</text><ellipse cx="265.5" cy="1827.7573" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="274.5" y="1831.5483">name (CharField)</text><polygon fill="#4177AF" points="265.5,1840.2455,261.5,1846.2455,269.5,1846.2455" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="143" x="274.5" y="1848.0366">domain (ForeignKey)</text><line style="stroke:#181818;stroke-width:1.0;" x1="255.5" x2="468.5" y1="1854.9897" y2="1854.9897"/></g><!--class UserDomainRole--><g id="elem_UserDomainRole"><rect codeLine="162" fill="#D6F4E9" height="171.418" id="UserDomainRole" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="269" x="543.5" y="1361.22"/><ellipse cx="558.5" cy="1377.22" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M560.9731,1383.3631 Q560.3921,1383.6619 559.7529,1383.8113 Q559.1138,1383.9607 558.4082,1383.9607 Q555.9014,1383.9607 554.5815,1382.3089 Q553.2617,1380.657 553.2617,1377.5359 Q553.2617,1374.4065 554.5815,1372.7547 Q555.9014,1371.1028 558.4082,1371.1028 Q559.1138,1371.1028 559.7612,1371.2522 Q560.4087,1371.4016 560.9731,1371.7005 L560.9731,1374.4231 Q560.3423,1373.8421 559.7488,1373.5723 Q559.1553,1373.3025 558.5244,1373.3025 Q557.1797,1373.3025 556.4949,1374.3692 Q555.8101,1375.4358 555.8101,1377.5359 Q555.8101,1379.6277 556.4949,1380.6944 Q557.1797,1381.761 558.5244,1381.761 Q559.1553,1381.761 559.7488,1381.4912 Q560.3423,1381.2215 560.9731,1380.6404 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="177" x="572.5" y="1382.511">registrar.UserDomainRole</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="761.5" y="1358.22"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="762.5" y="1370.8216">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="544.5" x2="811.5" y1="1393.22" y2="1393.22"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="549.5" y="1410.7552">user domain role</text><line style="stroke:#181818;stroke-width:1.0;" x1="544.5" x2="811.5" y1="1417.7083" y2="1417.7083"/><ellipse cx="554.5" cy="1431.4524" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="563.5" y="1435.2434">id (BigAutoField)</text><ellipse cx="554.5" cy="1447.9407" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="563.5" y="1451.7317">created_at (DateTimeField)</text><ellipse cx="554.5" cy="1464.429" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="563.5" y="1468.22">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="554.5,1476.9173,550.5,1482.9173,558.5,1482.9173" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="121" x="563.5" y="1484.7083">user (ForeignKey)</text><polygon fill="#4177AF" points="554.5,1493.4055,550.5,1499.4055,558.5,1499.4055" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="143" x="563.5" y="1501.1966">domain (ForeignKey)</text><ellipse cx="554.5" cy="1513.8938" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="105" x="563.5" y="1517.6848">role (TextField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="544.5" x2="811.5" y1="1524.638" y2="1524.638"/></g><!--class DomainInvitation--><g id="elem_DomainInvitation"><rect codeLine="177" fill="#D6F4E9" height="171.418" id="DomainInvitation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="272" x="505" y="1699.82"/><ellipse cx="520" cy="1715.82" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M522.4731,1721.9631 Q521.8921,1722.2619 521.2529,1722.4113 Q520.6138,1722.5607 519.9082,1722.5607 Q517.4014,1722.5607 516.0815,1720.9089 Q514.7617,1719.257 514.7617,1716.1359 Q514.7617,1713.0065 516.0815,1711.3547 Q517.4014,1709.7028 519.9082,1709.7028 Q520.6138,1709.7028 521.2612,1709.8522 Q521.9087,1710.0016 522.4731,1710.3005 L522.4731,1713.0231 Q521.8423,1712.4421 521.2488,1712.1723 Q520.6553,1711.9025 520.0244,1711.9025 Q518.6797,1711.9025 517.9949,1712.9692 Q517.3101,1714.0358 517.3101,1716.1359 Q517.3101,1718.2277 517.9949,1719.2944 Q518.6797,1720.361 520.0244,1720.361 Q520.6553,1720.361 521.2488,1720.0912 Q521.8423,1719.8215 522.4731,1719.2404 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="180" x="534" y="1721.111">registrar.DomainInvitation</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="726" y="1696.82"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="727" y="1709.4216">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="506" x2="776" y1="1731.82" y2="1731.82"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="120" x="511" y="1749.3552">domain invitation</text><line style="stroke:#181818;stroke-width:1.0;" x1="506" x2="776" y1="1756.3083" y2="1756.3083"/><ellipse cx="516" cy="1770.0524" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="525" y="1773.8434">id (BigAutoField)</text><ellipse cx="516" cy="1786.5407" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="525" y="1790.3317">created_at (DateTimeField)</text><ellipse cx="516" cy="1803.029" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="525" y="1806.82">updated_at (DateTimeField)</text><ellipse cx="516" cy="1819.5173" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="121" x="525" y="1823.3083">email (EmailField)</text><polygon fill="#4177AF" points="516,1832.0055,512,1838.0055,520,1838.0055" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="143" x="525" y="1839.7966">domain (ForeignKey)</text><ellipse cx="516" cy="1852.4938" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="525" y="1856.2848">status (FSMField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="506" x2="776" y1="1863.238" y2="1863.238"/></g><!--class Nameserver--><g id="elem_Nameserver"><rect codeLine="191" fill="#D6F4E9" height="171.418" id="Nameserver" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="236" x="22" y="1361.22"/><ellipse cx="37" cy="1377.22" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M39.4731,1383.3631 Q38.8921,1383.6619 38.2529,1383.8113 Q37.6138,1383.9607 36.9082,1383.9607 Q34.4014,1383.9607 33.0815,1382.3089 Q31.7617,1380.657 31.7617,1377.5359 Q31.7617,1374.4065 33.0815,1372.7547 Q34.4014,1371.1028 36.9082,1371.1028 Q37.6138,1371.1028 38.2612,1371.2522 Q38.9087,1371.4016 39.4731,1371.7005 L39.4731,1374.4231 Q38.8423,1373.8421 38.2488,1373.5723 Q37.6553,1373.3025 37.0244,1373.3025 Q35.6797,1373.3025 34.9949,1374.3692 Q34.3101,1375.4358 34.3101,1377.5359 Q34.3101,1379.6277 34.9949,1380.6944 Q35.6797,1381.761 37.0244,1381.761 Q37.6553,1381.761 38.2488,1381.4912 Q38.8423,1381.2215 39.4731,1380.6404 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="144" x="51" y="1382.511">registrar.Nameserver</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="207" y="1358.22"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="208" y="1370.8216">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="23" x2="257" y1="1393.22" y2="1393.22"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="80" x="28" y="1410.7552">nameserver</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="257" y1="1417.7083" y2="1417.7083"/><ellipse cx="33" cy="1431.4524" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="42" y="1435.2434">id (BigAutoField)</text><ellipse cx="33" cy="1447.9407" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="42" y="1451.7317">created_at (DateTimeField)</text><ellipse cx="33" cy="1464.429" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="42" y="1468.22">updated_at (DateTimeField)</text><ellipse cx="33" cy="1480.9173" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="42" y="1484.7083">name (CharField)</text><polygon fill="#4177AF" points="33,1493.4055,29,1499.4055,37,1499.4055" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="143" x="42" y="1501.1966">domain (ForeignKey)</text><polygon fill="#4177AF" points="33,1509.8938,29,1515.8938,37,1515.8938" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="178" x="42" y="1517.6848">host_ptr (OneToOneField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="257" y1="1524.638" y2="1524.638"/></g><!--class PublicContact--><g id="elem_PublicContact"><rect codeLine="206" fill="#D6F4E9" height="352.7891" id="PublicContact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="249" x="275.5" y="148.17"/><ellipse cx="290.5" cy="164.17" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M292.9731,170.3131 Q292.3921,170.6119 291.7529,170.7613 Q291.1138,170.9107 290.4082,170.9107 Q287.9014,170.9107 286.5815,169.2589 Q285.2617,167.607 285.2617,164.4859 Q285.2617,161.3565 286.5815,159.7047 Q287.9014,158.0528 290.4082,158.0528 Q291.1138,158.0528 291.7612,158.2022 Q292.4087,158.3516 292.9731,158.6505 L292.9731,161.3731 Q292.3423,160.7921 291.7488,160.5223 Q291.1553,160.2525 290.5244,160.2525 Q289.1797,160.2525 288.4949,161.3192 Q287.8101,162.3858 287.8101,164.4859 Q287.8101,166.5777 288.4949,167.6444 Q289.1797,168.711 290.5244,168.711 Q291.1553,168.711 291.7488,168.4412 Q292.3423,168.1715 292.9731,167.5904 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="304.5" y="169.461">registrar.PublicContact</text><rect fill="#FFFFFF" height="16.1328" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="54" x="473.5" y="145.17"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="52" x="474.5" y="157.7716">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="276.5" x2="523.5" y1="180.17" y2="180.17"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="96" x="281.5" y="197.7052">public contact</text><line style="stroke:#181818;stroke-width:1.0;" x1="276.5" x2="523.5" y1="204.6583" y2="204.6583"/><ellipse cx="286.5" cy="218.4024" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="295.5" y="222.1934">id (BigAutoField)</text><ellipse cx="286.5" cy="234.8907" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="183" x="295.5" y="238.6817">created_at (DateTimeField)</text><ellipse cx="286.5" cy="251.379" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="295.5" y="255.17">updated_at (DateTimeField)</text><ellipse cx="286.5" cy="267.8673" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="295.5" y="271.6583">contact_type (CharField)</text><ellipse cx="286.5" cy="284.3555" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="295.5" y="288.1466">name (TextField)</text><ellipse cx="286.5" cy="300.8438" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="102" x="295.5" y="304.6348">org (TextField)</text><ellipse cx="286.5" cy="317.3321" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="295.5" y="321.1231">street1 (TextField)</text><ellipse cx="286.5" cy="333.8204" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="295.5" y="337.6114">street2 (TextField)</text><ellipse cx="286.5" cy="350.3087" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="295.5" y="354.0997">street3 (TextField)</text><ellipse cx="286.5" cy="366.797" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="101" x="295.5" y="370.588">city (TextField)</text><ellipse cx="286.5" cy="383.2852" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="295.5" y="387.0763">sp (TextField)</text><ellipse cx="286.5" cy="399.7735" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="94" x="295.5" y="403.5645">pc (TextField)</text><ellipse cx="286.5" cy="416.2618" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="92" x="295.5" y="420.0528">cc (TextField)</text><ellipse cx="286.5" cy="432.7501" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="115" x="295.5" y="436.5411">email (TextField)</text><ellipse cx="286.5" cy="449.2384" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="113" x="295.5" y="453.0294">voice (TextField)</text><ellipse cx="286.5" cy="465.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="100" x="295.5" y="469.5177">fax (TextField)</text><ellipse cx="286.5" cy="482.2149" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="98" x="295.5" y="486.0059">pw (TextField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="276.5" x2="523.5" y1="492.9591" y2="492.9591"/></g><!--link Contact to User--><g id="link_Contact_User"><path codeLine="31" d="M991,1565.66 C991,1584.9 991,1605.11 991,1625.16 " fill="none" id="Contact-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to User--><g id="link_DomainApplication_User"><path codeLine="71" d="M1139.55,1268.72 C1129.34,1387.9 1116.59,1509.83 1099,1565.62 C1092.72,1585.55 1084.43,1605.66 1075.21,1625.19 " fill="none" id="DomainApplication-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to User--><g id="link_DomainApplication_User"><path codeLine="72" d="M1171.58,1268.72 C1164.34,1387.9 1151.59,1509.83 1134,1565.62 C1127.72,1585.55 1119.43,1605.66 1109.99,1625.19 " fill="none" id="DomainApplication-User-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="73" d="M1032.55,1268.41 C1025.28,1289.08 1018.54,1309.1 1012.58,1327.78 " fill="none" id="DomainApplication-Contact" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="75" d="M1058.03,1268.41 C1050.22,1289.08 1042.66,1309.1 1035.61,1327.78 " fill="none" id="DomainApplication-Contact-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="78" d="M1078.41,1280.92 C1073.63,1292.59 1068.86,1304.01 1064.14,1315.03 " fill="none" id="DomainApplication-Contact-2" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1083.5,1269.41,1077.5337,1273.4601,1078.9775,1280.5252,1084.9438,1276.4751,1083.5,1269.41" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1058.63,1326.78,1064.6826,1322.86,1063.392,1315.7653,1057.3395,1319.6853,1058.63,1326.78" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Domain--><g id="link_DomainApplication_Domain"><path codeLine="74" d="M1180.93,1268.74 C1187.12,1535.04 1187.82,1890.59 1150,1945.43 C1098.48,2020.13 998.56,2053.96 920.84,2069.28 " fill="none" id="DomainApplication-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Website--><g id="link_DomainApplication_Website"><path codeLine="76" d="M1252.53,1281.63 C1262.02,1311.68 1271.27,1339.98 1279.65,1364.35 " fill="none" id="DomainApplication-Website" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1248.38,1269.41,1246.3622,1276.333,1251.9765,1280.8584,1253.9944,1273.9353,1248.38,1269.41" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1284.2,1376.48,1286.0078,1369.4992,1280.2593,1365.1455,1278.4515,1372.1263,1284.2,1376.48" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Website--><g id="link_DomainApplication_Website"><path codeLine="77" d="M1277.62,1281.63 C1286.1,1311.54 1293.74,1339.72 1299.91,1364.02 " fill="none" id="DomainApplication-Website-1" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1273.85,1269.41,1271.645,1276.2757,1277.1345,1280.9518,1279.3395,1274.0861,1273.85,1269.41" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1303.28,1376.48,1305.7035,1369.6884,1300.3665,1364.8391,1297.9429,1371.6307,1303.28,1376.48" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to User--><g id="link_DomainInformation_User"><path codeLine="116" d="M927.03,608.44 C879.69,917.35 819.75,1391.34 866,1565.62 C871.33,1585.71 878.99,1605.88 887.93,1625.41 " fill="none" id="DomainInformation-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to DomainApplication--><g id="link_DomainInformation_DomainApplication"><path codeLine="117" d="M1060.84,608.39 C1066.9,628.13 1073.02,648.06 1079.1,667.88 " fill="none" id="DomainInformation-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="118" d="M955.14,608.28 C953.01,840.68 959.91,1158.31 972.32,1327.87 " fill="none" id="DomainInformation-Contact" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="120" d="M978.29,608.28 C981.82,840.68 986.64,1158.31 989.21,1327.87 " fill="none" id="DomainInformation-Contact-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="121" d="M1001.97,621.99 C1010.49,846.71 1013.08,1144.8 1006.66,1313.92 " fill="none" id="DomainInformation-Contact-2" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1001.44,609.28,997.6736,615.4293,1001.9012,621.2711,1005.6676,615.1218,1001.44,609.28" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1006.1,1326.87,1010.3343,1321.033,1006.5749,1314.8794,1002.3406,1320.7164,1006.1,1326.87" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Domain--><g id="link_DomainInformation_Domain"><path codeLine="119" d="M1135.53,431.57 C1213.31,491.46 1300.28,573.31 1350,668.13 C1536.15,1023.13 1558.88,1183.12 1439,1565.62 C1377.52,1761.79 1337.16,1819.07 1175,1945.43 C1100.17,2003.74 997.71,2039.25 920.89,2059.37 " fill="none" id="DomainInformation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link HostIP to Host--><g id="link_HostIP_Host"><path codeLine="146" d="M392.1,1524.73 C385.75,1579.54 377.24,1652.96 370.89,1707.76 " fill="none" id="HostIP-Host" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Host to Domain--><g id="link_Host_Domain"><path codeLine="159" d="M410.25,1863.46 C431.12,1892.08 457.53,1923.01 487,1945.43 C552.19,1995.02 638.04,2030 705.28,2052.13 " fill="none" id="Host-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to User--><g id="link_UserDomainRole_User"><path codeLine="173" d="M756.98,1532.87 C785.05,1563.06 817.58,1598.03 849.28,1632.12 " fill="none" id="UserDomainRole-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to Domain--><g id="link_UserDomainRole_Domain"><path codeLine="174" d="M747.42,1532.98 C766.38,1560.87 784.55,1593.09 795,1625.62 C836.16,1753.74 830.65,1912.57 822.26,2005.05 " fill="none" id="UserDomainRole-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInvitation to Domain--><g id="link_DomainInvitation_Domain"><path codeLine="188" d="M690.52,1871.56 C715.03,1913.66 744.4,1964.09 768.23,2005.02 " fill="none" id="DomainInvitation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Nameserver to Domain--><g id="link_Nameserver_Domain"><path codeLine="202" d="M130.92,1532.95 C124.18,1643.22 130.46,1834.54 237,1945.43 C300.68,2011.71 556.59,2051.99 705,2070.25 " fill="none" id="Nameserver-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Nameserver to Host--><g id="link_Nameserver_Host"><path codeLine="203" d="M196.02,1532.87 C231.47,1586.62 276.93,1655.55 311.31,1707.67 " fill="none" id="Nameserver-Host" style="stroke:#181818;stroke-width:1.0;"/></g><!--link User to Domain--><g id="link_User_Domain"><path codeLine="250" d="M888.02,1957.41 C880.6,1969.71 873.32,1981.8 866.39,1993.3 " fill="none" id="User-Domain" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="894.97,1946.88,888.4484,1949.9571,888.7805,1957.1606,895.3021,1954.0834,894.97,1946.88" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="859.29,2004.08,865.8145,2001.009,865.4891,1993.8052,858.9647,1996.8762,859.29,2004.08" style="stroke:#181818;stroke-width:1.0;"/></g><!--SRC=[xLXjZzis3FwUNo7qlcGzP42xOS20OK1VTcWnj3jqD-oZeCYCezMHN4dEDLVqVdlfbrmjctHIu9eDG_CX2KJA8XzI3sdgGeKW7dZ8JOXU-U-VEHkLZkAND_kbNny85SHOuopxQVKZ_2m-p0H-TBlQ_5yicfzpOJ8nVsho9rLq5mQAxBjkNNjG4JAfefW_ntzNPWE9GbLcKmgteWhWnVmF2rSElvAzA-D3b5PjGColu7rCX1kJPGLmKWI3tHbDBAXrs2XJ4ElbsbdKlwn_NbUR9VYU617wE1j3kbZqSFuBNPpDPdeOeUSEJxHFoh8mMaNZx4IinhffrB96BjHdXTC4y5o4g68LnFpYprT9O9idEupjXVDWSlixxFOYOxSGeibf-RbmFbVMt3HkoBWh4VrdQ-NJv80Cl2gAdVIWNOxgQ6JqPedAJvqhGDcHcN2aRYFYqgSxMAeShDvDA326co2X0DtujdJAPxGD2GQCAIhBF8GW2sFXqG7vOy8KRIBbG0jL1EyD1cX7RBmnfNOPvLtbbtTcKtSFCP5k9Q-TVqjTQam5cNXkxChv3VsuMw6gk7RUt1YRurDNHXjLK0dduLs56OTHx-u9HJYt8bJBZOaHoAGiAr-wG8N1EkdY6hpig3D8tnYiI9fHTXVNjS5Ga4_3_2WTNkATLFgjTTS5P3cGIN8cTEKzs2YlOHbC1Bo5h_3nLwx-JXHLWLvPj6eB7GIyRkeBepRWlJ4zZHdmAsbtb7lyXbPylmSyN2mUzhRytSRZAs_P6yQMbfUzotEejFHroTBIkucdwWqcIaXhbEpLEwQ9-5PBljMIUwqb_wSAWl41h24OEjbrlx_LF_TK3lgKSfZWMUqH3nw_bQFk0sVTxm5Voje7gPhavrEr-orzK4o4Jc5xCNmHQ3A3yFM52_7bvOIldKBgwneNXIbFvMn7UYD_Rrj3HdTyS0qw5vACgTSuF0wWGM3nhqRzCnSUWGDvpmWSQcvefM-GhIOG6IYcs3HJXSuwZ-BJJZFueZ4k2hLr8muVu3TmTOfBfrHvqFUajJNns6xnJfLf5lVoKsKeKx-ceASd5qmfk_FtI4XVuut1M6mn7tWmUqefZFPEy1-zuIq3oZBImxi1Y3q_fyijfyYnvcMrnAxWyAWprKknBXlPQUUUv_lZkCwUwTAndoMRR0yG7x6Inwpa1qB2TV8bDHlLr0Fq5qnNjyveyjL8lQVEkwQvaYaa1ye7KJIE2t-9P-5hHqO4hfay5owlBmqPUEoKGbM2Rqi5rPFN4gRDwe_4wQCP6KEFhJbHhLQqARssZXBNEIx_SVXAc37UJWxFpqJkNLNoewWQ2ObORKm8oBsyulHCYoYdmwwS9_9kC3EHIdkDD9kwcTof-AGxRXJwzdfy0W00]--></g></svg>
\ No newline at end of file
+<?xml version="1.0" encoding="us-ascii" standalone="no"?><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" contentStyleType="text/css" height="2165px" preserveAspectRatio="none" style="width:1584px;height:2165px;background:#FFFFFF;" version="1.1" viewBox="0 0 1584 2165" width="1584px" zoomAndPan="magnify"><defs/><g><!--cluster registrar--><g id="cluster_registrar"><path d="M8.5,6 L78.5,6 A3.75,3.75 0 0 1 81,8.5 L88,28.2969 L1490.5,28.2969 A2.5,2.5 0 0 1 1493,30.7969 L1493,2155.5 A2.5,2.5 0 0 1 1490.5,2158 L8.5,2158 A2.5,2.5 0 0 1 6,2155.5 L6,8.5 A2.5,2.5 0 0 1 8.5,6 " fill="none" style="stroke:#000000;stroke-width:1.5;"/><line style="stroke:#000000;stroke-width:1.5;" x1="6" x2="88" y1="28.2969" y2="28.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" font-weight="bold" lengthAdjust="spacing" textLength="69" x="10" y="20.9951">registrar</text></g><!--class Contact--><g id="elem_Contact"><rect codeLine="23" fill="#D6F4E9" height="235.2656" id="Contact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="895.5" y="1316"/><ellipse cx="913.2" cy="1332" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M916.1688,1337.6406 Q915.5906,1337.9375 914.95,1338.0781 Q914.3094,1338.2344 913.6063,1338.2344 Q911.1063,1338.2344 909.7781,1336.5938 Q908.4656,1334.9375 908.4656,1331.8125 Q908.4656,1328.6875 909.7781,1327.0313 Q911.1063,1325.375 913.6063,1325.375 Q914.3094,1325.375 914.95,1325.5313 Q915.6063,1325.6875 916.1688,1325.9844 L916.1688,1328.7031 Q915.5438,1328.125 914.95,1327.8594 Q914.3563,1327.5781 913.7313,1327.5781 Q912.3875,1327.5781 911.7,1328.6563 Q911.0125,1329.7188 911.0125,1331.8125 Q911.0125,1333.9063 911.7,1334.9844 Q912.3875,1336.0469 913.7313,1336.0469 Q914.3563,1336.0469 914.95,1335.7813 Q915.5438,1335.5 916.1688,1334.9219 L916.1688,1337.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="115" x="927.8" y="1336.8467">registrar.Contact</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1057.5" y="1313"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1058.5" y="1325.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="896.5" x2="1111.5" y1="1348" y2="1348"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="52" x="901.5" y="1364.9951">contact</text><line style="stroke:#181818;stroke-width:1.0;" x1="896.5" x2="1111.5" y1="1372.2969" y2="1372.2969"/><ellipse cx="906.5" cy="1385.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="915.5" y="1389.292">id (BigAutoField)</text><ellipse cx="906.5" cy="1402.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="915.5" y="1405.5889">created_at (DateTimeField)</text><ellipse cx="906.5" cy="1418.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="915.5" y="1421.8857">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="906.5,1430.8359,902.5,1436.8359,910.5,1436.8359" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="153" x="915.5" y="1438.1826">user (OneToOneField)</text><ellipse cx="906.5" cy="1451.1328" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="147" x="915.5" y="1454.4795">first_name (TextField)</text><ellipse cx="906.5" cy="1467.4297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="168" x="915.5" y="1470.7764">middle_name (TextField)</text><ellipse cx="906.5" cy="1483.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="146" x="915.5" y="1487.0732">last_name (TextField)</text><ellipse cx="906.5" cy="1500.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="101" x="915.5" y="1503.3701">title (TextField)</text><ellipse cx="906.5" cy="1516.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="915.5" y="1519.667">email (TextField)</text><ellipse cx="906.5" cy="1532.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="915.5" y="1535.9639">phone (PhoneNumberField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="896.5" x2="1111.5" y1="1543.2656" y2="1543.2656"/></g><!--class User--><g id="elem_User"><rect codeLine="237" fill="#D6F4E9" height="316.75" id="User" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="284" x="862" y="1611"/><ellipse cx="921.25" cy="1627" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M924.2188,1632.6406 Q923.6406,1632.9375 923,1633.0781 Q922.3594,1633.2344 921.6563,1633.2344 Q919.1563,1633.2344 917.8281,1631.5938 Q916.5156,1629.9375 916.5156,1626.8125 Q916.5156,1623.6875 917.8281,1622.0313 Q919.1563,1620.375 921.6563,1620.375 Q922.3594,1620.375 923,1620.5313 Q923.6563,1620.6875 924.2188,1620.9844 L924.2188,1623.7031 Q923.5938,1623.125 923,1622.8594 Q922.4063,1622.5781 921.7813,1622.5781 Q920.4375,1622.5781 919.75,1623.6563 Q919.0625,1624.7188 919.0625,1626.8125 Q919.0625,1628.9063 919.75,1629.9844 Q920.4375,1631.0469 921.7813,1631.0469 Q922.4063,1631.0469 923,1630.7813 Q923.5938,1630.5 924.2188,1629.9219 L924.2188,1632.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="941.75" y="1631.8467">registrar.User</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1091" y="1608"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1092" y="1620.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="863" x2="1145" y1="1643" y2="1643"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="31" x="868" y="1659.9951">user</text><line style="stroke:#181818;stroke-width:1.0;" x1="863" x2="1145" y1="1667.2969" y2="1667.2969"/><ellipse cx="873" cy="1680.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="882" y="1684.292">id (BigAutoField)</text><ellipse cx="873" cy="1697.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="145" x="882" y="1700.5889">password (CharField)</text><ellipse cx="873" cy="1713.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="177" x="882" y="1716.8857">last_login (DateTimeField)</text><ellipse cx="873" cy="1729.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="192" x="882" y="1733.1826">is_superuser (BooleanField)</text><ellipse cx="873" cy="1746.1328" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="148" x="882" y="1749.4795">username (CharField)</text><ellipse cx="873" cy="1762.4297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="149" x="882" y="1765.7764">first_name (CharField)</text><ellipse cx="873" cy="1778.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="148" x="882" y="1782.0732">last_name (CharField)</text><ellipse cx="873" cy="1795.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="882" y="1798.3701">email (EmailField)</text><ellipse cx="873" cy="1811.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="150" x="882" y="1814.667">is_staff (BooleanField)</text><ellipse cx="873" cy="1827.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="161" x="882" y="1830.9639">is_active (BooleanField)</text><ellipse cx="873" cy="1843.9141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="193" x="882" y="1847.2607">date_joined (DateTimeField)</text><ellipse cx="873" cy="1860.2109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="882" y="1863.5576">phone (PhoneNumberField)</text><polygon fill="#FFFF44" points="873,1871.5078,877,1875.5078,873,1879.5078,869,1875.5078" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="185" x="882" y="1879.8545">groups (ManyToManyField)</text><polygon fill="#FFFF44" points="873,1887.8047,877,1891.8047,873,1895.8047,869,1891.8047" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="258" x="882" y="1896.1514">user_permissions (ManyToManyField)</text><polygon fill="#FFFF44" points="873,1904.1016,877,1908.1016,873,1912.1016,869,1908.1016" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="195" x="882" y="1912.4482">domains (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="863" x2="1145" y1="1919.75" y2="1919.75"/></g><!--class DomainApplication--><g id="elem_DomainApplication"><rect codeLine="41" fill="#D6F4E9" height="593.7969" id="DomainApplication" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="314" x="1029" y="662"/><ellipse cx="1057.05" cy="678" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1060.0188,683.6406 Q1059.4406,683.9375 1058.8,684.0781 Q1058.1594,684.2344 1057.4563,684.2344 Q1054.9563,684.2344 1053.6281,682.5938 Q1052.3156,680.9375 1052.3156,677.8125 Q1052.3156,674.6875 1053.6281,673.0313 Q1054.9563,671.375 1057.4563,671.375 Q1058.1594,671.375 1058.8,671.5313 Q1059.4563,671.6875 1060.0188,671.9844 L1060.0188,674.7031 Q1059.3938,674.125 1058.8,673.8594 Q1058.2063,673.5781 1057.5813,673.5781 Q1056.2375,673.5781 1055.55,674.6563 Q1054.8625,675.7188 1054.8625,677.8125 Q1054.8625,679.9063 1055.55,680.9844 Q1056.2375,682.0469 1057.5813,682.0469 Q1058.2063,682.0469 1058.8,681.7813 Q1059.3938,681.5 1060.0188,680.9219 L1060.0188,683.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="1073.95" y="682.8467">registrar.DomainApplication</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1288" y="659"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1289" y="671.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="1030" x2="1342" y1="694" y2="694"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="129" x="1035" y="710.9951">domain application</text><line style="stroke:#181818;stroke-width:1.0;" x1="1030" x2="1342" y1="718.2969" y2="718.2969"/><ellipse cx="1040" cy="731.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="1049" y="735.292">id (BigAutoField)</text><ellipse cx="1040" cy="748.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="1049" y="751.5889">created_at (DateTimeField)</text><ellipse cx="1040" cy="764.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="1049" y="767.8857">updated_at (DateTimeField)</text><ellipse cx="1040" cy="780.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="1049" y="784.1826">status (FSMField)</text><polygon fill="#4177AF" points="1040,793.1328,1036,799.1328,1044,799.1328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="140" x="1049" y="800.4795">creator (ForeignKey)</text><polygon fill="#4177AF" points="1040,809.4297,1036,815.4297,1044,815.4297" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="171" x="1049" y="816.7764">investigator (ForeignKey)</text><ellipse cx="1040" cy="829.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="200" x="1049" y="833.0732">organization_type (CharField)</text><ellipse cx="1040" cy="846.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="283" x="1049" y="849.3701">federally_recognized_tribe (BooleanField)</text><ellipse cx="1040" cy="862.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="261" x="1049" y="865.667">state_recognized_tribe (BooleanField)</text><ellipse cx="1040" cy="878.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="153" x="1049" y="881.9639">tribe_name (TextField)</text><ellipse cx="1040" cy="894.9141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="180" x="1049" y="898.2607">federal_agency (TextField)</text><ellipse cx="1040" cy="911.2109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="162" x="1049" y="914.5576">federal_type (CharField)</text><ellipse cx="1040" cy="927.5078" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="223" x="1049" y="930.8545">is_election_board (BooleanField)</text><ellipse cx="1040" cy="943.8047" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="207" x="1049" y="947.1514">organization_name (TextField)</text><ellipse cx="1040" cy="960.1016" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="1049" y="963.4482">address_line1 (TextField)</text><ellipse cx="1040" cy="976.3984" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="174" x="1049" y="979.7451">address_line2 (CharField)</text><ellipse cx="1040" cy="992.6953" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="1049" y="996.042">city (TextField)</text><ellipse cx="1040" cy="1008.9922" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="1049" y="1012.3389">state_territory (CharField)</text><ellipse cx="1040" cy="1025.2891" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="133" x="1049" y="1028.6357">zipcode (CharField)</text><ellipse cx="1040" cy="1041.5859" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="161" x="1049" y="1044.9326">urbanization (TextField)</text><ellipse cx="1040" cy="1057.8828" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="1049" y="1061.2295">type_of_work (TextField)</text><ellipse cx="1040" cy="1074.1797" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="288" x="1049" y="1077.5264">more_organization_information (TextField)</text><polygon fill="#4177AF" points="1040,1086.4766,1036,1092.4766,1044,1092.4766" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="217" x="1049" y="1093.8232">authorizing_official (ForeignKey)</text><polygon fill="#4177AF" points="1040,1102.7734,1036,1108.7734,1044,1108.7734" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="252" x="1049" y="1110.1201">requested_domain (OneToOneField)</text><polygon fill="#4177AF" points="1040,1119.0703,1036,1125.0703,1044,1125.0703" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="1049" y="1126.417">submitter (ForeignKey)</text><ellipse cx="1040" cy="1139.3672" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="1049" y="1142.7139">purpose (TextField)</text><ellipse cx="1040" cy="1155.6641" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="271" x="1049" y="1159.0107">no_other_contacts_rationale (TextField)</text><ellipse cx="1040" cy="1171.9609" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="171" x="1049" y="1175.3076">anything_else (TextField)</text><ellipse cx="1040" cy="1188.2578" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="268" x="1049" y="1191.6045">is_policy_acknowledged (BooleanField)</text><polygon fill="#FFFF44" points="1040,1199.5547,1044,1203.5547,1040,1207.5547,1036,1203.5547" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="255" x="1049" y="1207.9014">current_websites (ManyToManyField)</text><polygon fill="#FFFF44" points="1040,1215.8516,1044,1219.8516,1040,1223.8516,1036,1219.8516" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="273" x="1049" y="1224.1982">alternative_domains (ManyToManyField)</text><polygon fill="#FFFF44" points="1040,1232.1484,1044,1236.1484,1040,1240.1484,1036,1236.1484" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="240" x="1049" y="1240.4951">other_contacts (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="1030" x2="1342" y1="1247.7969" y2="1247.7969"/></g><!--class Domain--><g id="elem_Domain"><rect codeLine="131" fill="#D6F4E9" height="153.7813" id="Domain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="717.5" y="1988"/><ellipse cx="735.65" cy="2004" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M738.6188,2009.6406 Q738.0406,2009.9375 737.4,2010.0781 Q736.7594,2010.2344 736.0563,2010.2344 Q733.5563,2010.2344 732.2281,2008.5938 Q730.9156,2006.9375 730.9156,2003.8125 Q730.9156,2000.6875 732.2281,1999.0313 Q733.5563,1997.375 736.0563,1997.375 Q736.7594,1997.375 737.4,1997.5313 Q738.0563,1997.6875 738.6188,1997.9844 L738.6188,2000.7031 Q737.9938,2000.125 737.4,1999.8594 Q736.8063,1999.5781 736.1813,1999.5781 Q734.8375,1999.5781 734.15,2000.6563 Q733.4625,2001.7188 733.4625,2003.8125 Q733.4625,2005.9063 734.15,2006.9844 Q734.8375,2008.0469 736.1813,2008.0469 Q736.8063,2008.0469 737.4,2007.7813 Q737.9938,2007.5 738.6188,2006.9219 L738.6188,2009.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="750.35" y="2008.8467">registrar.Domain</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="879.5" y="1985"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="880.5" y="1997.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="718.5" x2="933.5" y1="2020" y2="2020"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="51" x="723.5" y="2036.9951">domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="718.5" x2="933.5" y1="2044.2969" y2="2044.2969"/><ellipse cx="728.5" cy="2057.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="737.5" y="2061.292">id (BigAutoField)</text><ellipse cx="728.5" cy="2074.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="737.5" y="2077.5889">created_at (DateTimeField)</text><ellipse cx="728.5" cy="2090.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="737.5" y="2093.8857">updated_at (DateTimeField)</text><ellipse cx="728.5" cy="2106.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="737.5" y="2110.1826">name (CharField)</text><ellipse cx="728.5" cy="2123.1328" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="133" x="737.5" y="2126.4795">is_active (FSMField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="718.5" x2="933.5" y1="2133.7813" y2="2133.7813"/></g><!--class Website--><g id="elem_Website"><rect codeLine="260" fill="#D6F4E9" height="137.4844" id="Website" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="1222.5" y="1365"/><ellipse cx="1239.3" cy="1381" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1242.2688,1386.6406 Q1241.6906,1386.9375 1241.05,1387.0781 Q1240.4094,1387.2344 1239.7063,1387.2344 Q1237.2063,1387.2344 1235.8781,1385.5938 Q1234.5656,1383.9375 1234.5656,1380.8125 Q1234.5656,1377.6875 1235.8781,1376.0313 Q1237.2063,1374.375 1239.7063,1374.375 Q1240.4094,1374.375 1241.05,1374.5313 Q1241.7063,1374.6875 1242.2688,1374.9844 L1242.2688,1377.7031 Q1241.6438,1377.125 1241.05,1376.8594 Q1240.4563,1376.5781 1239.8313,1376.5781 Q1238.4875,1376.5781 1237.8,1377.6563 Q1237.1125,1378.7188 1237.1125,1380.8125 Q1237.1125,1382.9063 1237.8,1383.9844 Q1238.4875,1385.0469 1239.8313,1385.0469 Q1240.4563,1385.0469 1241.05,1384.7813 Q1241.6438,1384.5 1242.2688,1383.9219 L1242.2688,1386.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="1253.7" y="1385.8467">registrar.Website</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1384.5" y="1362"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1385.5" y="1374.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="1223.5" x2="1438.5" y1="1397" y2="1397"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="54" x="1228.5" y="1413.9951">website</text><line style="stroke:#181818;stroke-width:1.0;" x1="1223.5" x2="1438.5" y1="1421.2969" y2="1421.2969"/><ellipse cx="1233.5" cy="1434.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="1242.5" y="1438.292">id (BigAutoField)</text><ellipse cx="1233.5" cy="1451.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="1242.5" y="1454.5889">created_at (DateTimeField)</text><ellipse cx="1233.5" cy="1467.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="1242.5" y="1470.8857">updated_at (DateTimeField)</text><ellipse cx="1233.5" cy="1483.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="1242.5" y="1487.1826">website (CharField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="1223.5" x2="1438.5" y1="1494.4844" y2="1494.4844"/></g><!--class DomainInformation--><g id="elem_DomainInformation"><rect codeLine="88" fill="#D6F4E9" height="561.2031" id="DomainInformation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="314" x="836" y="41"/><ellipse cx="863.15" cy="57" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M866.1188,62.6406 Q865.5406,62.9375 864.9,63.0781 Q864.2594,63.2344 863.5563,63.2344 Q861.0563,63.2344 859.7281,61.5938 Q858.4156,59.9375 858.4156,56.8125 Q858.4156,53.6875 859.7281,52.0313 Q861.0563,50.375 863.5563,50.375 Q864.2594,50.375 864.9,50.5313 Q865.5563,50.6875 866.1188,50.9844 L866.1188,53.7031 Q865.4938,53.125 864.9,52.8594 Q864.3063,52.5781 863.6813,52.5781 Q862.3375,52.5781 861.65,53.6563 Q860.9625,54.7188 860.9625,56.8125 Q860.9625,58.9063 861.65,59.9844 Q862.3375,61.0469 863.6813,61.0469 Q864.3063,61.0469 864.9,60.7813 Q865.4938,60.5 866.1188,59.9219 L866.1188,62.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="879.85" y="61.8467">registrar.DomainInformation</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1095" y="38"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1096" y="50.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="837" x2="1149" y1="73" y2="73"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="842" y="89.9951">domain information</text><line style="stroke:#181818;stroke-width:1.0;" x1="837" x2="1149" y1="97.2969" y2="97.2969"/><ellipse cx="847" cy="110.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="856" y="114.292">id (BigAutoField)</text><ellipse cx="847" cy="127.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="856" y="130.5889">created_at (DateTimeField)</text><ellipse cx="847" cy="143.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="856" y="146.8857">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="847,155.8359,843,161.8359,851,161.8359" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="140" x="856" y="163.1826">creator (ForeignKey)</text><polygon fill="#4177AF" points="847,172.1328,843,178.1328,851,178.1328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="254" x="856" y="179.4795">domain_application (OneToOneField)</text><ellipse cx="847" cy="192.4297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="200" x="856" y="195.7764">organization_type (CharField)</text><ellipse cx="847" cy="208.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="283" x="856" y="212.0732">federally_recognized_tribe (BooleanField)</text><ellipse cx="847" cy="225.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="261" x="856" y="228.3701">state_recognized_tribe (BooleanField)</text><ellipse cx="847" cy="241.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="153" x="856" y="244.667">tribe_name (TextField)</text><ellipse cx="847" cy="257.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="180" x="856" y="260.9639">federal_agency (TextField)</text><ellipse cx="847" cy="273.9141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="162" x="856" y="277.2607">federal_type (CharField)</text><ellipse cx="847" cy="290.2109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="223" x="856" y="293.5576">is_election_board (BooleanField)</text><ellipse cx="847" cy="306.5078" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="207" x="856" y="309.8545">organization_name (TextField)</text><ellipse cx="847" cy="322.8047" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="856" y="326.1514">address_line1 (TextField)</text><ellipse cx="847" cy="339.1016" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="174" x="856" y="342.4482">address_line2 (CharField)</text><ellipse cx="847" cy="355.3984" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="856" y="358.7451">city (TextField)</text><ellipse cx="847" cy="371.6953" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="856" y="375.042">state_territory (CharField)</text><ellipse cx="847" cy="387.9922" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="133" x="856" y="391.3389">zipcode (CharField)</text><ellipse cx="847" cy="404.2891" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="161" x="856" y="407.6357">urbanization (TextField)</text><ellipse cx="847" cy="420.5859" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="856" y="423.9326">type_of_work (TextField)</text><ellipse cx="847" cy="436.8828" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="288" x="856" y="440.2295">more_organization_information (TextField)</text><polygon fill="#4177AF" points="847,449.1797,843,455.1797,851,455.1797" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="217" x="856" y="456.5264">authorizing_official (ForeignKey)</text><polygon fill="#4177AF" points="847,465.4766,843,471.4766,851,471.4766" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="856" y="472.8232">domain (OneToOneField)</text><polygon fill="#4177AF" points="847,481.7734,843,487.7734,851,487.7734" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="856" y="489.1201">submitter (ForeignKey)</text><ellipse cx="847" cy="502.0703" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="856" y="505.417">purpose (TextField)</text><ellipse cx="847" cy="518.3672" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="271" x="856" y="521.7139">no_other_contacts_rationale (TextField)</text><ellipse cx="847" cy="534.6641" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="171" x="856" y="538.0107">anything_else (TextField)</text><ellipse cx="847" cy="550.9609" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="268" x="856" y="554.3076">is_policy_acknowledged (BooleanField)</text><ellipse cx="847" cy="567.2578" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="179" x="856" y="570.6045">security_email (EmailField)</text><polygon fill="#FFFF44" points="847,578.5547,851,582.5547,847,586.5547,843,582.5547" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="240" x="856" y="586.9014">other_contacts (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="837" x2="1149" y1="594.2031" y2="594.2031"/></g><!--class HostIP--><g id="elem_HostIP"><rect codeLine="143" fill="#D6F4E9" height="153.7813" id="HostIP" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="297.5" y="1356.5"/><ellipse cx="319.7" cy="1372.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M322.6688,1378.1406 Q322.0906,1378.4375 321.45,1378.5781 Q320.8094,1378.7344 320.1063,1378.7344 Q317.6063,1378.7344 316.2781,1377.0938 Q314.9656,1375.4375 314.9656,1372.3125 Q314.9656,1369.1875 316.2781,1367.5313 Q317.6063,1365.875 320.1063,1365.875 Q320.8094,1365.875 321.45,1366.0313 Q322.1063,1366.1875 322.6688,1366.4844 L322.6688,1369.2031 Q322.0438,1368.625 321.45,1368.3594 Q320.8563,1368.0781 320.2313,1368.0781 Q318.8875,1368.0781 318.2,1369.1563 Q317.5125,1370.2188 317.5125,1372.3125 Q317.5125,1374.4063 318.2,1375.4844 Q318.8875,1376.5469 320.2313,1376.5469 Q320.8563,1376.5469 321.45,1376.2813 Q322.0438,1376 322.6688,1375.4219 L322.6688,1378.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="105" x="335.3" y="1377.3467">registrar.HostIP</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="459.5" y="1353.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="460.5" y="1365.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="298.5" x2="513.5" y1="1388.5" y2="1388.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="47" x="303.5" y="1405.4951">host ip</text><line style="stroke:#181818;stroke-width:1.0;" x1="298.5" x2="513.5" y1="1412.7969" y2="1412.7969"/><ellipse cx="308.5" cy="1426.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="317.5" y="1429.792">id (BigAutoField)</text><ellipse cx="308.5" cy="1442.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="317.5" y="1446.0889">created_at (DateTimeField)</text><ellipse cx="308.5" cy="1459.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="317.5" y="1462.3857">updated_at (DateTimeField)</text><ellipse cx="308.5" cy="1475.3359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="317.5" y="1478.6826">address (CharField)</text><polygon fill="#4177AF" points="308.5,1487.6328,304.5,1493.6328,312.5,1493.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="122" x="317.5" y="1494.9795">host (ForeignKey)</text><line style="stroke:#181818;stroke-width:1.0;" x1="298.5" x2="513.5" y1="1502.2813" y2="1502.2813"/></g><!--class Host--><g id="elem_Host"><rect codeLine="156" fill="#D6F4E9" height="153.7813" id="Host" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="266.5" y="1692.5"/><ellipse cx="294.1" cy="1708.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M297.0688,1714.1406 Q296.4906,1714.4375 295.85,1714.5781 Q295.2094,1714.7344 294.5063,1714.7344 Q292.0063,1714.7344 290.6781,1713.0938 Q289.3656,1711.4375 289.3656,1708.3125 Q289.3656,1705.1875 290.6781,1703.5313 Q292.0063,1701.875 294.5063,1701.875 Q295.2094,1701.875 295.85,1702.0313 Q296.5063,1702.1875 297.0688,1702.4844 L297.0688,1705.2031 Q296.4438,1704.625 295.85,1704.3594 Q295.2563,1704.0781 294.6313,1704.0781 Q293.2875,1704.0781 292.6,1705.1563 Q291.9125,1706.2188 291.9125,1708.3125 Q291.9125,1710.4063 292.6,1711.4844 Q293.2875,1712.5469 294.6313,1712.5469 Q295.2563,1712.5469 295.85,1712.2813 Q296.4438,1712 297.0688,1711.4219 L297.0688,1714.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="310.9" y="1713.3467">registrar.Host</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="428.5" y="1689.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="429.5" y="1701.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="267.5" x2="482.5" y1="1724.5" y2="1724.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="31" x="272.5" y="1741.4951">host</text><line style="stroke:#181818;stroke-width:1.0;" x1="267.5" x2="482.5" y1="1748.7969" y2="1748.7969"/><ellipse cx="277.5" cy="1762.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="286.5" y="1765.792">id (BigAutoField)</text><ellipse cx="277.5" cy="1778.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="286.5" y="1782.0889">created_at (DateTimeField)</text><ellipse cx="277.5" cy="1795.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="286.5" y="1798.3857">updated_at (DateTimeField)</text><ellipse cx="277.5" cy="1811.3359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="286.5" y="1814.6826">name (CharField)</text><polygon fill="#4177AF" points="277.5,1823.6328,273.5,1829.6328,281.5,1829.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="286.5" y="1830.9795">domain (ForeignKey)</text><line style="stroke:#181818;stroke-width:1.0;" x1="267.5" x2="482.5" y1="1838.2813" y2="1838.2813"/></g><!--class UserDomainRole--><g id="elem_UserDomainRole"><rect codeLine="169" fill="#D6F4E9" height="170.0781" id="UserDomainRole" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="273" x="549.5" y="1348.5"/><ellipse cx="564.5" cy="1364.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M567.4688,1370.1406 Q566.8906,1370.4375 566.25,1370.5781 Q565.6094,1370.7344 564.9063,1370.7344 Q562.4063,1370.7344 561.0781,1369.0938 Q559.7656,1367.4375 559.7656,1364.3125 Q559.7656,1361.1875 561.0781,1359.5313 Q562.4063,1357.875 564.9063,1357.875 Q565.6094,1357.875 566.25,1358.0313 Q566.9063,1358.1875 567.4688,1358.4844 L567.4688,1361.2031 Q566.8438,1360.625 566.25,1360.3594 Q565.6563,1360.0781 565.0313,1360.0781 Q563.6875,1360.0781 563,1361.1563 Q562.3125,1362.2188 562.3125,1364.3125 Q562.3125,1366.4063 563,1367.4844 Q563.6875,1368.5469 565.0313,1368.5469 Q565.6563,1368.5469 566.25,1368.2813 Q566.8438,1368 567.4688,1367.4219 L567.4688,1370.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="177" x="578.5" y="1369.3467">registrar.UserDomainRole</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="767.5" y="1345.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="768.5" y="1357.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="550.5" x2="821.5" y1="1380.5" y2="1380.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="555.5" y="1397.4951">user domain role</text><line style="stroke:#181818;stroke-width:1.0;" x1="550.5" x2="821.5" y1="1404.7969" y2="1404.7969"/><ellipse cx="560.5" cy="1418.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="569.5" y="1421.792">id (BigAutoField)</text><ellipse cx="560.5" cy="1434.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="569.5" y="1438.0889">created_at (DateTimeField)</text><ellipse cx="560.5" cy="1451.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="569.5" y="1454.3857">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="560.5,1463.3359,556.5,1469.3359,564.5,1469.3359" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="122" x="569.5" y="1470.6826">user (ForeignKey)</text><polygon fill="#4177AF" points="560.5,1479.6328,556.5,1485.6328,564.5,1485.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="569.5" y="1486.9795">domain (ForeignKey)</text><ellipse cx="560.5" cy="1499.9297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="102" x="569.5" y="1503.2764">role (TextField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="550.5" x2="821.5" y1="1510.5781" y2="1510.5781"/></g><!--class DomainInvitation--><g id="elem_DomainInvitation"><rect codeLine="184" fill="#D6F4E9" height="170.0781" id="DomainInvitation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="271" x="518.5" y="1684.5"/><ellipse cx="533.5" cy="1700.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M536.4688,1706.1406 Q535.8906,1706.4375 535.25,1706.5781 Q534.6094,1706.7344 533.9063,1706.7344 Q531.4063,1706.7344 530.0781,1705.0938 Q528.7656,1703.4375 528.7656,1700.3125 Q528.7656,1697.1875 530.0781,1695.5313 Q531.4063,1693.875 533.9063,1693.875 Q534.6094,1693.875 535.25,1694.0313 Q535.9063,1694.1875 536.4688,1694.4844 L536.4688,1697.2031 Q535.8438,1696.625 535.25,1696.3594 Q534.6563,1696.0781 534.0313,1696.0781 Q532.6875,1696.0781 532,1697.1563 Q531.3125,1698.2188 531.3125,1700.3125 Q531.3125,1702.4063 532,1703.4844 Q532.6875,1704.5469 534.0313,1704.5469 Q534.6563,1704.5469 535.25,1704.2813 Q535.8438,1704 536.4688,1703.4219 L536.4688,1706.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="175" x="547.5" y="1705.3467">registrar.DomainInvitation</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="734.5" y="1681.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="735.5" y="1693.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="519.5" x2="788.5" y1="1716.5" y2="1716.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="524.5" y="1733.4951">domain invitation</text><line style="stroke:#181818;stroke-width:1.0;" x1="519.5" x2="788.5" y1="1740.7969" y2="1740.7969"/><ellipse cx="529.5" cy="1754.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="538.5" y="1757.792">id (BigAutoField)</text><ellipse cx="529.5" cy="1770.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="538.5" y="1774.0889">created_at (DateTimeField)</text><ellipse cx="529.5" cy="1787.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="538.5" y="1790.3857">updated_at (DateTimeField)</text><ellipse cx="529.5" cy="1803.3359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="538.5" y="1806.6826">email (EmailField)</text><polygon fill="#4177AF" points="529.5,1815.6328,525.5,1821.6328,533.5,1821.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="538.5" y="1822.9795">domain (ForeignKey)</text><ellipse cx="529.5" cy="1835.9297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="538.5" y="1839.2764">status (FSMField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="519.5" x2="788.5" y1="1846.5781" y2="1846.5781"/></g><!--class Nameserver--><g id="elem_Nameserver"><rect codeLine="198" fill="#D6F4E9" height="170.0781" id="Nameserver" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="240" x="22" y="1348.5"/><ellipse cx="37" cy="1364.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M39.9688,1370.1406 Q39.3906,1370.4375 38.75,1370.5781 Q38.1094,1370.7344 37.4063,1370.7344 Q34.9063,1370.7344 33.5781,1369.0938 Q32.2656,1367.4375 32.2656,1364.3125 Q32.2656,1361.1875 33.5781,1359.5313 Q34.9063,1357.875 37.4063,1357.875 Q38.1094,1357.875 38.75,1358.0313 Q39.4063,1358.1875 39.9688,1358.4844 L39.9688,1361.2031 Q39.3438,1360.625 38.75,1360.3594 Q38.1563,1360.0781 37.5313,1360.0781 Q36.1875,1360.0781 35.5,1361.1563 Q34.8125,1362.2188 34.8125,1364.3125 Q34.8125,1366.4063 35.5,1367.4844 Q36.1875,1368.5469 37.5313,1368.5469 Q38.1563,1368.5469 38.75,1368.2813 Q39.3438,1368 39.9688,1367.4219 L39.9688,1370.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="144" x="51" y="1369.3467">registrar.Nameserver</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="207" y="1345.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="208" y="1357.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="23" x2="261" y1="1380.5" y2="1380.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="82" x="28" y="1397.4951">nameserver</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="261" y1="1404.7969" y2="1404.7969"/><ellipse cx="33" cy="1418.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="42" y="1421.792">id (BigAutoField)</text><ellipse cx="33" cy="1434.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="42" y="1438.0889">created_at (DateTimeField)</text><ellipse cx="33" cy="1451.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="42" y="1454.3857">updated_at (DateTimeField)</text><ellipse cx="33" cy="1467.3359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="42" y="1470.6826">name (CharField)</text><polygon fill="#4177AF" points="33,1479.6328,29,1485.6328,37,1485.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="42" y="1486.9795">domain (ForeignKey)</text><polygon fill="#4177AF" points="33,1495.9297,29,1501.9297,37,1501.9297" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="179" x="42" y="1503.2764">host_ptr (OneToOneField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="261" y1="1510.5781" y2="1510.5781"/></g><!--class PublicContact--><g id="elem_PublicContact"><rect codeLine="213" fill="#D6F4E9" height="349.3438" id="PublicContact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="252" x="286" y="147"/><ellipse cx="301" cy="163" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M303.9688,168.6406 Q303.3906,168.9375 302.75,169.0781 Q302.1094,169.2344 301.4063,169.2344 Q298.9063,169.2344 297.5781,167.5938 Q296.2656,165.9375 296.2656,162.8125 Q296.2656,159.6875 297.5781,158.0313 Q298.9063,156.375 301.4063,156.375 Q302.1094,156.375 302.75,156.5313 Q303.4063,156.6875 303.9688,156.9844 L303.9688,159.7031 Q303.3438,159.125 302.75,158.8594 Q302.1563,158.5781 301.5313,158.5781 Q300.1875,158.5781 299.5,159.6563 Q298.8125,160.7188 298.8125,162.8125 Q298.8125,164.9063 299.5,165.9844 Q300.1875,167.0469 301.5313,167.0469 Q302.1563,167.0469 302.75,166.7813 Q303.3438,166.5 303.9688,165.9219 L303.9688,168.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="156" x="315" y="167.8467">registrar.PublicContact</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="483" y="144"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="484" y="156.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="287" x2="537" y1="179" y2="179"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="97" x="292" y="195.9951">public contact</text><line style="stroke:#181818;stroke-width:1.0;" x1="287" x2="537" y1="203.2969" y2="203.2969"/><ellipse cx="297" cy="216.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="306" y="220.292">id (BigAutoField)</text><ellipse cx="297" cy="233.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="306" y="236.5889">created_at (DateTimeField)</text><ellipse cx="297" cy="249.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="306" y="252.8857">updated_at (DateTimeField)</text><ellipse cx="297" cy="265.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="167" x="306" y="269.1826">contact_type (CharField)</text><ellipse cx="297" cy="282.1328" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="115" x="306" y="285.4795">name (TextField)</text><ellipse cx="297" cy="298.4297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="306" y="301.7764">org (TextField)</text><ellipse cx="297" cy="314.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="306" y="318.0732">street1 (TextField)</text><ellipse cx="297" cy="331.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="306" y="334.3701">street2 (TextField)</text><ellipse cx="297" cy="347.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="306" y="350.667">street3 (TextField)</text><ellipse cx="297" cy="363.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="306" y="366.9639">city (TextField)</text><ellipse cx="297" cy="379.9141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="306" y="383.2607">sp (TextField)</text><ellipse cx="297" cy="396.2109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="306" y="399.5576">pc (TextField)</text><ellipse cx="297" cy="412.5078" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="92" x="306" y="415.8545">cc (TextField)</text><ellipse cx="297" cy="428.8047" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="306" y="432.1514">email (TextField)</text><ellipse cx="297" cy="445.1016" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="306" y="448.4482">voice (TextField)</text><ellipse cx="297" cy="461.3984" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="95" x="306" y="464.7451">fax (TextField)</text><ellipse cx="297" cy="477.6953" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="96" x="306" y="481.042">pw (TextField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="287" x2="537" y1="488.3438" y2="488.3438"/></g><!--link Contact to User--><g id="link_Contact_User"><path codeLine="38" d="M1004,1551.32 C1004,1570.6 1004,1590.86 1004,1610.95 " fill="none" id="Contact-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to User--><g id="link_DomainApplication_User"><path codeLine="78" d="M1154.11,1256.08 C1143.68,1374.43 1130.71,1495.66 1113,1551 C1106.58,1571.05 1098.11,1591.27 1088.69,1610.89 " fill="none" id="DomainApplication-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to User--><g id="link_DomainApplication_User"><path codeLine="79" d="M1186.12,1256.08 C1178.68,1374.43 1165.71,1495.66 1148,1551 C1141.58,1571.05 1133.11,1591.27 1123.46,1610.89 " fill="none" id="DomainApplication-User-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="80" d="M1046.42,1256.22 C1038.95,1277.02 1032.02,1297.15 1025.91,1315.92 " fill="none" id="DomainApplication-Contact" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="82" d="M1071.9,1256.22 C1063.89,1277.02 1056.13,1297.15 1048.9,1315.92 " fill="none" id="DomainApplication-Contact-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="85" d="M1092.37,1268.33 C1087.31,1280.45 1082.26,1292.29 1077.28,1303.71 " fill="none" id="DomainApplication-Contact-2" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1097.38,1256.22,1091.3898,1260.2347,1092.7918,1267.3082,1098.782,1263.2935,1097.38,1256.22" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1071.9,1315.92,1077.9813,1312.0447,1076.743,1304.9407,1070.6617,1308.816,1071.9,1315.92" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Domain--><g id="link_DomainApplication_Domain"><path codeLine="81" d="M1195.48,1256.1 C1201.32,1520.28 1201.64,1873.62 1164,1928 C1112.34,2002.63 1012.39,2036.33 934.52,2051.53 " fill="none" id="DomainApplication-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Website--><g id="link_DomainApplication_Website"><path codeLine="83" d="M1268.61,1268.94 C1278.41,1299.33 1287.97,1327.94 1296.59,1352.48 " fill="none" id="DomainApplication-Website" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1264.53,1256.22,1262.5553,1263.1555,1268.1978,1267.6457,1270.1725,1260.7102,1264.53,1256.22" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1301.01,1364.92,1302.7667,1357.9261,1296.9865,1353.6146,1295.2298,1360.6085,1301.01,1364.92" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Website--><g id="link_DomainApplication_Website"><path codeLine="84" d="M1293.72,1268.94 C1302.5,1299.19 1310.42,1327.68 1316.78,1352.14 " fill="none" id="DomainApplication-Website-1" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1290.01,1256.22,1287.8527,1263.1009,1293.3746,1267.7387,1295.5318,1260.8578,1290.01,1256.22" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1320.06,1364.92,1322.4455,1358.1149,1317.0814,1353.2955,1314.6959,1360.1006,1320.06,1364.92" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to User--><g id="link_DomainInformation_User"><path codeLine="123" d="M944.13,602.07 C894.66,908.1 831.58,1378.26 878,1551 C883.41,1571.12 891.18,1591.31 900.25,1610.83 " fill="none" id="DomainInformation-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to DomainApplication--><g id="link_DomainInformation_DomainApplication"><path codeLine="124" d="M1077.93,602.16 C1083.95,621.98 1090.03,641.99 1096.07,661.89 " fill="none" id="DomainInformation-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="125" d="M972.63,602.24 C969.24,832.64 974.45,1147.79 985.97,1315.8 " fill="none" id="DomainInformation-Contact" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="127" d="M995.77,602.24 C998.06,832.64 1001.18,1147.79 1002.84,1315.8 " fill="none" id="DomainInformation-Contact-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="128" d="M1019.36,615.49 C1026.71,838.66 1027.7,1135.18 1020.32,1302.73 " fill="none" id="DomainInformation-Contact-2" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1018.91,602.24,1015.1166,608.3727,1019.3186,614.233,1023.112,608.1003,1018.91,602.24" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1019.72,1315.8,1023.9927,1309.991,1020.2739,1303.8128,1016.0012,1309.6218,1019.72,1315.8" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Domain--><g id="link_DomainInformation_Domain"><path codeLine="126" d="M1150.18,427.83 C1226.3,487.38 1311.7,568.6 1361,662 C1546.52,1013.45 1577.85,1172.41 1457,1551 C1394.48,1746.84 1351.95,1802.67 1189,1928 C1113.92,1985.75 1011.67,2021.11 934.82,2041.24 " fill="none" id="DomainInformation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link HostIP to Host--><g id="link_HostIP_Host"><path codeLine="153" d="M398.93,1510.71 C393.88,1565.1 387.12,1637.95 382.07,1692.33 " fill="none" id="HostIP-Host" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Host to Domain--><g id="link_Host_Domain"><path codeLine="166" d="M423.86,1846.74 C444.92,1875.1 471.51,1905.75 501,1928 C565.7,1976.8 650.49,2011.52 717.24,2033.66 " fill="none" id="Host-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to User--><g id="link_UserDomainRole_User"><path codeLine="180" d="M766.24,1518.78 C795.32,1549.32 829.09,1584.79 861.89,1619.24 " fill="none" id="UserDomainRole-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to Domain--><g id="link_UserDomainRole_Domain"><path codeLine="181" d="M757.74,1518.62 C777.33,1546.31 796.14,1578.39 807,1611 C849.28,1737.96 843.78,1896.07 835.32,1987.96 " fill="none" id="UserDomainRole-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInvitation to Domain--><g id="link_DomainInvitation_Domain"><path codeLine="195" d="M703.29,1854.61 C727.91,1896.61 757.47,1947.06 781.41,1987.9 " fill="none" id="DomainInvitation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Nameserver to Domain--><g id="link_Nameserver_Domain"><path codeLine="209" d="M135.07,1518.58 C130.97,1628.12 141.5,1818.55 249,1928 C313.41,1993.58 568.85,2033.85 717.38,2052.21 " fill="none" id="Nameserver-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Nameserver to Host--><g id="link_Nameserver_Host"><path codeLine="210" d="M200.8,1518.78 C238,1572.12 285.72,1640.52 321.8,1692.24 " fill="none" id="Nameserver-Host" style="stroke:#181818;stroke-width:1.0;"/></g><!--link User to Domain--><g id="link_User_Domain"><path codeLine="257" d="M901.22,1939.98 C893.66,1952.44 886.23,1964.68 879.17,1976.33 " fill="none" id="User-Domain" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="908.23,1928.42,901.6997,1931.4787,902.0115,1938.6831,908.5418,1935.6244,908.23,1928.42" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="872.24,1987.76,878.7691,1984.6989,878.4546,1977.4946,871.9255,1980.5558,872.24,1987.76" style="stroke:#181818;stroke-width:1.0;"/></g><!--SRC=[xLXjZzis3FwUNo7qlcGzP42xOS20OK1VTcWnj3jqD-oZeCYCezMHN4dEDLVqVdlfbrmjctHIu9eDG_CX2KJA8XzI3sdgGeKW7dZ8JOXU-U-VEHkLZkAND_kbNny85SHOuopxQVKZ_2m-p0H-TBlQ_5yicfzpOJ8nVsho9rLq5mQAxBjkNNjG4JAfefW_ntzNPWE9GbLcKmgteWhWnVmF2rSElvAzA-D3b5PjGColu7rCX1kJPGLmKWI3tHbDBAXrs2XJ4ElbsbdKlwn_NbUR9VYU617wE1j3kbZqSFuBNPpDPdeOeUSEJxHFoh8mMaNZx4IinhffrB96BjHdXTC4y5o4g68LnFpYprT9O9idEupjXVDWSlixxFOYOxSGeibf-RbmFbVMt3HkoBWh4VrdQ-NJv80Cl2gAdVIWNOxgQ6JqPedAJvqhGDcHcN2aRYFYqgSxMAeShDvDA326co2X0DtujdJAPxGD2GQCAIhBF8GW2sFXqG7vOy8KRIBbG0jL1EyD1cX7RBmnfNOPvLtbbtTcKtSFCP5k9Q-TVqjTQam5cNXkxChv3VsuMw6gk7RUt1YRurDNHXjLK0dduLs56OTHx-u9HJYt8bJBZOaHoAGiAr-wG8N1EkdY6hpig3D8tnYiI9fHTXVNjS5Ga4_3_2WTNkATLFgjTTS5P3cGIN8cTEKzs2YlOHbC1Bo5h_3nLwx-JXHLWLvPj6eB7GIyRkeBepRWlJ4zZHdmAsbtb7lyXbPylmSyN2mUzhRytSRZAs_P6yQMbfUzotEejFHroTBIkucdwWqcIaXhbEpLEwQ9-5PBljMIUwqb_wSAWl41h24OEjbrlx_LF_TK3lgKSfZWMUqH3nw_bQFk0sVTxm5Voje7gPhavrEr-orzK4o4Jc5xCNmHQ3A3yFM52_7bvOIldKBgwneNXIbFvMn7UYD_Rrj3HdTyS0qw5vACgTSuF0wWGM3nhqRzCnSUWGDvpmWSQcvefM-GhIOG6IYcs3HJXSuwZ-BJJZFueZ4k2hLr8muVu3TmTOfBfrHvqFUajJNns6xnJfLf5lVoKsKeKx-ceASd5qmfk_FtI4XVuut1M6mn7tWmUqefZFPEy1-zuIq3oZBImxi1Y3q_fyijfyYnvcMrnAxWyAWprKknBXlPQUUUv_lZkCwUwTAndoMRR0yG7x6Inwpa1qB2TV8bDHlLr0Fq5qnNjyveyjL8lQVEkwQvaYaa1ye7KJIE2t-9P-5hHqO4hfay5owlBmqPUEoKGbM2Rqi5rPFN4gRDwe_4wQCP6KEFhJbHhLQqARssZXBNEIx_SVXAc37UJWxFpqJkNLNoewWQ2ObORKm8oBsyulHCYoYdmwwS9_9kC3EHIdkDD9kwcTof-AGxRXJwzdfy0W00]--></g></svg>
\ No newline at end of file

From a987de0c19d13b285bdafbc9e35bd1da8bd59ccf Mon Sep 17 00:00:00 2001
From: Alysia Broddrick <abroddrick@truss.works>
Date: Wed, 17 May 2023 11:50:41 -0700
Subject: [PATCH 09/72] update codeowners file including tech lead

---
 .github/CODEOWNERS | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index bd2239e69..8e3c6d91b 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -1,3 +1,4 @@
 # For more information on CODEOWNERS, see the documentation: https://docs.github.com/en/repositories/managing-your-repositorys-settings-and-features/customizing-your-repository/about-code-owners
 
-docs/* @dotgov
\ No newline at end of file
+* @abroddrick
+docs/* @DotGov

From 9ed15bc1a8b94f78d5e603747916e0f742db2a82 Mon Sep 17 00:00:00 2001
From: Alysia Broddrick <abroddrick@truss.works>
Date: Wed, 17 May 2023 11:55:40 -0700
Subject: [PATCH 10/72] update codeowners cisagov tag

---
 .github/CODEOWNERS | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index 8e3c6d91b..af56b635f 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -1,4 +1,4 @@
 # For more information on CODEOWNERS, see the documentation: https://docs.github.com/en/repositories/managing-your-repositorys-settings-and-features/customizing-your-repository/about-code-owners
 
 * @abroddrick
-docs/* @DotGov
+docs/* @cisagov/dotgov

From 400232a10f51a72528ac8d44b2ec428ab1e9a4b4 Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Wed, 17 May 2023 13:59:34 -0500
Subject: [PATCH 11/72] Add public_site_url template tag

---
 ops/manifests/manifest-stable.yaml               |  2 ++
 ops/scripts/manifest-sandbox-template.yaml       |  2 ++
 src/.env-example                                 |  1 +
 src/docker-compose.yml                           |  2 ++
 src/registrar/config/settings.py                 |  7 +++++++
 src/registrar/templates/application_purpose.html |  4 ++--
 src/registrar/templatetags/url_helpers.py        | 16 ++++++++++++++++
 7 files changed, 32 insertions(+), 2 deletions(-)

diff --git a/ops/manifests/manifest-stable.yaml b/ops/manifests/manifest-stable.yaml
index 619e5fc7a..72726cd08 100644
--- a/ops/manifests/manifest-stable.yaml
+++ b/ops/manifests/manifest-stable.yaml
@@ -20,6 +20,8 @@ applications:
     DJANGO_BASE_URL: https://getgov-stable.app.cloud.gov
     # Tell Django how much stuff to log
     DJANGO_LOG_LEVEL: INFO
+    # Public site base URL
+    GETGOV_PUBLIC_SITE_URL: https://federalist-877ab29f-16f6-4f12-961c-96cf064cf070.sites.pages.cloud.gov/site/cisagov/getgov-home/
   routes:
     - route: getgov-stable.app.cloud.gov
   services:
diff --git a/ops/scripts/manifest-sandbox-template.yaml b/ops/scripts/manifest-sandbox-template.yaml
index ba814b3d5..1bf979c9f 100644
--- a/ops/scripts/manifest-sandbox-template.yaml
+++ b/ops/scripts/manifest-sandbox-template.yaml
@@ -20,6 +20,8 @@ applications:
     DJANGO_BASE_URL: https://getgov-ENVIRONMENT.app.cloud.gov
     # Tell Django how much stuff to log
     DJANGO_LOG_LEVEL: INFO
+    # default public site location
+    GETGOV_PUBLIC_SITE_URL: https://beta.get.gov
   routes:
     - route: getgov-ENVIRONMENT.app.cloud.gov
   services:
diff --git a/src/.env-example b/src/.env-example
index 7100fc628..9b3f56409 100644
--- a/src/.env-example
+++ b/src/.env-example
@@ -1,2 +1,3 @@
 DJANGO_SECRET_KEY=""
 DJANGO_SECRET_LOGIN_KEY=""
+GETGOV_PUBLIC_SITE_URL="https://federalist-877ab29f-16f6-4f12-961c-96cf064cf070.sites.pages.cloud.gov/site/cisagov/getgov-home/"
diff --git a/src/docker-compose.yml b/src/docker-compose.yml
index 4399c5b70..8b1111868 100644
--- a/src/docker-compose.yml
+++ b/src/docker-compose.yml
@@ -27,6 +27,8 @@ services:
       - DJANGO_DEBUG=True
       # Tell Django where it is being hosted
       - DJANGO_BASE_URL=http://localhost:8080
+      # Public site URL link
+      - GETGOV_PUBLIC_SITE_URL="https://beta.get.gov"
       # Set a username for accessing the registry
       - REGISTRY_CL_ID=nothing
       # Set a password for accessing the registry
diff --git a/src/registrar/config/settings.py b/src/registrar/config/settings.py
index 9491b354a..41559ceba 100644
--- a/src/registrar/config/settings.py
+++ b/src/registrar/config/settings.py
@@ -62,6 +62,9 @@ secret_registry_key = b64decode(secret("REGISTRY_KEY", ""))
 secret_registry_key_passphrase = secret("REGISTRY_KEY_PASSPHRASE", "")
 secret_registry_hostname = secret("REGISTRY_HOSTNAME")
 
+# this needs to exist or a warning will be generated
+secret_getgov_public_site_url = secret("GETGOV_PUBLIC_SITE_URL")
+
 # region: Basic Django Config-----------------------------------------------###
 
 # Build paths inside the project like this: BASE_DIR / "subdir".
@@ -503,6 +506,10 @@ ROOT_URLCONF = "registrar.config.urls"
 # Must be relative and end with "/"
 STATIC_URL = "public/"
 
+# Base URL of our separate static public website. Used by the
+# {% public_site_url subdir/path %} template tag
+GETGOV_PUBLIC_SITE_URL = secret_getgov_public_site_url
+
 # endregion
 # region: Registry----------------------------------------------------------###
 
diff --git a/src/registrar/templates/application_purpose.html b/src/registrar/templates/application_purpose.html
index a28dc27b3..ca2ff7287 100644
--- a/src/registrar/templates/application_purpose.html
+++ b/src/registrar/templates/application_purpose.html
@@ -1,5 +1,5 @@
 {% extends 'application_form.html' %}
-{% load field_helpers %}
+{% load field_helpers url_helpers %}
 
 {% block form_instructions %}
   <p>.Gov domain names are for use on the internet. Don’t register a .gov to simply reserve a 
@@ -8,7 +8,7 @@ domain name or for mainly internal use.</p>
   <p>Describe the reason for your domain request. Explain how you plan to use this domain. 
 Who is your intended audience? Will you use it for a website and/or email? Are you moving 
 your website from another top-level domain (like .com or .org)? 
-Read about <a href="{% url 'todo' %}">activities that are prohibited on .gov domains.</a></p>
+Read about <a href="{% public_site_url 'domains/requirements/' %}">activities that are prohibited on .gov domains.</a></p>
 
 {% endblock %}
 
diff --git a/src/registrar/templatetags/url_helpers.py b/src/registrar/templatetags/url_helpers.py
index 6201e61eb..7662a42d8 100644
--- a/src/registrar/templatetags/url_helpers.py
+++ b/src/registrar/templatetags/url_helpers.py
@@ -1,6 +1,10 @@
+from urllib.parse import urljoin
+
 from django import template
 from django.urls import reverse
 
+from django.conf import settings
+
 register = template.Library()
 
 
@@ -15,3 +19,15 @@ def startswith(text, starts):
     if isinstance(text, str):
         return text.startswith(starts)
     return False
+
+
+@register.simple_tag
+def public_site_url(url_path):
+    """Make a full URL for this path at our public site.
+
+    The public site base url is set by a GETGOV_PUBLIC_SITE_URL environment
+    variable.
+    """
+    base_url = settings.GETGOV_PUBLIC_SITE_URL
+    public_url = urljoin(base_url, url_path)
+    return public_url

From cc1438b0e7d80ecf4aa9800b4ab5d72942e09d85 Mon Sep 17 00:00:00 2001
From: Alysia Broddrick <abroddrick@truss.works>
Date: Wed, 17 May 2023 12:11:56 -0700
Subject: [PATCH 12/72] add section on adding a codeowner

---
 docs/developer/README.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/docs/developer/README.md b/docs/developer/README.md
index a5e1d312e..54cf6e9f2 100644
--- a/docs/developer/README.md
+++ b/docs/developer/README.md
@@ -81,6 +81,19 @@ The endpoint /admin can be used to view and manage site content, including but n
 
 5. In the browser, navigate to /admins. To verify that all is working correctly, under "domain applications" you should see fake domains with various fake statuses.
 
+## Adding to CODEOWNERS (optional)
+
+The CODEOWNERS file set the tagged individuals as default PR reviewers on any commit regarding the content specify. "*" indicates a user will be added as PR reviewer for all files in the repo, while "subfolder/*" indicates a particular folder for which a user(s) will be added as default PR reviewer. To add yourself as code owner for all files:
+
+1. Go to .github\CODEOWNERS
+2. where you see "* @abroddrick" add a space followed by your github tag. For instance if your github username was @NewGithubUsername you would do the following:
+
+```
+* @abroddrick @NewGithubUsername
+```
+
+3. Create a pull request to finalize your changes
+
 ## Viewing Logs
 
 If you run via `docker-compose up`, you'll see the logs in your terminal.

From 5243f575250b50bf53bec297b9dd70a672d8f766 Mon Sep 17 00:00:00 2001
From: Alysia Broddrick <abroddrick@truss.works>
Date: Wed, 17 May 2023 12:13:16 -0700
Subject: [PATCH 13/72] added optional checkbox for adding codeowner

---
 .github/ISSUE_TEMPLATE/developer-onboarding.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/ISSUE_TEMPLATE/developer-onboarding.md b/.github/ISSUE_TEMPLATE/developer-onboarding.md
index b8f102685..74af9ef60 100644
--- a/.github/ISSUE_TEMPLATE/developer-onboarding.md
+++ b/.github/ISSUE_TEMPLATE/developer-onboarding.md
@@ -34,6 +34,8 @@ cf login -a api.fr.cloud.gov  --sso
 
  **Note:** As mentioned in the [Login documentation](https://developers.login.gov/testing/), the sandbox Login account is different account from your regular, production Login account. If you have not created a Login account for the sandbox before, you will need to create a new account first.
 
+- [ ] Optional- add yourself as a codeowner if desired. See the [Developer readme](https://github.com/cisagov/getgov/blob/main/docs/developer/README.md) for how to do this and what it does.
+
 ### Steps for the onboarder
 - [ ] Add the onboardee to cloud.gov org (cisa-getgov-prototyping) 
 - [ ] Setup a [developer specific space for the new developer](#setting-up-developer-sandbox)

From f69cd985f0a59a77ac4f7e396d6653116a17cf37 Mon Sep 17 00:00:00 2001
From: Alysia Broddrick <abroddrick@truss.works>
Date: Wed, 17 May 2023 12:15:53 -0700
Subject: [PATCH 14/72] fixed typo

---
 docs/developer/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/developer/README.md b/docs/developer/README.md
index 54cf6e9f2..2a13cf58b 100644
--- a/docs/developer/README.md
+++ b/docs/developer/README.md
@@ -83,7 +83,7 @@ The endpoint /admin can be used to view and manage site content, including but n
 
 ## Adding to CODEOWNERS (optional)
 
-The CODEOWNERS file set the tagged individuals as default PR reviewers on any commit regarding the content specify. "*" indicates a user will be added as PR reviewer for all files in the repo, while "subfolder/*" indicates a particular folder for which a user(s) will be added as default PR reviewer. To add yourself as code owner for all files:
+The CODEOWNERS file sets the tagged individuals as default PR reviewers on any commit regarding the content specified. An asterisk indicates a user will be added as PR reviewer for all files in the repo, while "subfolder/*" indicates a particular folder for which a user(s) will be added as default PR reviewer. To add yourself as code owner for all files:
 
 1. Go to .github\CODEOWNERS
 2. where you see "* @abroddrick" add a space followed by your github tag. For instance if your github username was @NewGithubUsername you would do the following:

From 135192fd9f44fdd313c3583d5f986ce8df965e9e Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Wed, 17 May 2023 15:02:59 -0500
Subject: [PATCH 15/72] Add a unit test for new template tag

---
 src/docker-compose.yml                    |  2 +-
 src/registrar/templatetags/url_helpers.py |  6 ++++-
 src/registrar/tests/test_templatetags.py  | 31 +++++++++++++++++++++++
 3 files changed, 37 insertions(+), 2 deletions(-)
 create mode 100644 src/registrar/tests/test_templatetags.py

diff --git a/src/docker-compose.yml b/src/docker-compose.yml
index 8b1111868..82642bc93 100644
--- a/src/docker-compose.yml
+++ b/src/docker-compose.yml
@@ -28,7 +28,7 @@ services:
       # Tell Django where it is being hosted
       - DJANGO_BASE_URL=http://localhost:8080
       # Public site URL link
-      - GETGOV_PUBLIC_SITE_URL="https://beta.get.gov"
+      - GETGOV_PUBLIC_SITE_URL=https://beta.get.gov
       # Set a username for accessing the registry
       - REGISTRY_CL_ID=nothing
       # Set a password for accessing the registry
diff --git a/src/registrar/templatetags/url_helpers.py b/src/registrar/templatetags/url_helpers.py
index 7662a42d8..096d6f2f6 100644
--- a/src/registrar/templatetags/url_helpers.py
+++ b/src/registrar/templatetags/url_helpers.py
@@ -29,5 +29,9 @@ def public_site_url(url_path):
     variable.
     """
     base_url = settings.GETGOV_PUBLIC_SITE_URL
-    public_url = urljoin(base_url, url_path)
+    # join the two halves with a single slash
+    public_url ="/".join([
+        base_url.rstrip("/"),
+        url_path.lstrip("/")
+    ])
     return public_url
diff --git a/src/registrar/tests/test_templatetags.py b/src/registrar/tests/test_templatetags.py
new file mode 100644
index 000000000..10a174be0
--- /dev/null
+++ b/src/registrar/tests/test_templatetags.py
@@ -0,0 +1,31 @@
+"""Test template tags."""
+
+from django.conf import settings
+from django.test import TestCase
+from django.template import Context, Template
+
+class TestTemplateTags(TestCase):
+
+    def _render_template(self, string, context=None):
+        """Helper method to render a template given as a string.
+
+        Originally from https://stackoverflow.com/a/1690879
+        """
+        context = context or {}
+        context = Context(context)
+        return Template(string).render(context)
+
+    def test_public_site_url(self):
+        result = self._render_template(
+            "{% load url_helpers %}{% public_site_url 'directory/page' %}"
+        )
+        self.assertTrue(result.startswith(settings.GETGOV_PUBLIC_SITE_URL))
+        self.assertTrue(result.endswith("/directory/page"))
+
+    def test_public_site_url_leading_slash(self):
+        result = self._render_template(
+            "{% load url_helpers %}{% public_site_url '/directory/page' %}"
+        )
+        self.assertTrue(result.startswith(settings.GETGOV_PUBLIC_SITE_URL))
+        # slash-slash host slash directory slash page
+        self.assertEqual(result.count("/"), 4)

From 125877c4af0e9bee51018292a9b33bd54cdc005b Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Wed, 17 May 2023 15:13:48 -0500
Subject: [PATCH 16/72] Fix linting errors

---
 src/registrar/templatetags/url_helpers.py | 7 +------
 src/registrar/tests/test_templatetags.py  | 2 +-
 2 files changed, 2 insertions(+), 7 deletions(-)

diff --git a/src/registrar/templatetags/url_helpers.py b/src/registrar/templatetags/url_helpers.py
index 096d6f2f6..5b76c116f 100644
--- a/src/registrar/templatetags/url_helpers.py
+++ b/src/registrar/templatetags/url_helpers.py
@@ -1,5 +1,3 @@
-from urllib.parse import urljoin
-
 from django import template
 from django.urls import reverse
 
@@ -30,8 +28,5 @@ def public_site_url(url_path):
     """
     base_url = settings.GETGOV_PUBLIC_SITE_URL
     # join the two halves with a single slash
-    public_url ="/".join([
-        base_url.rstrip("/"),
-        url_path.lstrip("/")
-    ])
+    public_url = "/".join([base_url.rstrip("/"), url_path.lstrip("/")])
     return public_url
diff --git a/src/registrar/tests/test_templatetags.py b/src/registrar/tests/test_templatetags.py
index 10a174be0..681d823b7 100644
--- a/src/registrar/tests/test_templatetags.py
+++ b/src/registrar/tests/test_templatetags.py
@@ -4,8 +4,8 @@ from django.conf import settings
 from django.test import TestCase
 from django.template import Context, Template
 
-class TestTemplateTags(TestCase):
 
+class TestTemplateTags(TestCase):
     def _render_template(self, string, context=None):
         """Helper method to render a template given as a string.
 

From efe418bf2ec986614ece7320fda57142736c3a66 Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Wed, 17 May 2023 15:25:21 -0500
Subject: [PATCH 17/72] Fix broken test with env default

---
 src/registrar/config/settings.py | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/registrar/config/settings.py b/src/registrar/config/settings.py
index 41559ceba..879948785 100644
--- a/src/registrar/config/settings.py
+++ b/src/registrar/config/settings.py
@@ -62,8 +62,7 @@ secret_registry_key = b64decode(secret("REGISTRY_KEY", ""))
 secret_registry_key_passphrase = secret("REGISTRY_KEY_PASSPHRASE", "")
 secret_registry_hostname = secret("REGISTRY_HOSTNAME")
 
-# this needs to exist or a warning will be generated
-secret_getgov_public_site_url = secret("GETGOV_PUBLIC_SITE_URL")
+secret_getgov_public_site_url = secret("GETGOV_PUBLIC_SITE_URL", "")
 
 # region: Basic Django Config-----------------------------------------------###
 

From 566a0ae1dbc0a24d7f7f60654cc32c026deeb555 Mon Sep 17 00:00:00 2001
From: Mohammad  Minaie <spikespiegel19@gmail.com>
Date: Thu, 18 May 2023 11:47:04 -0400
Subject: [PATCH 18/72] update suggestions from h-m-f-t

---
 .github/ISSUE_TEMPLATE/issue-default.yml | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/issue-default.yml b/.github/ISSUE_TEMPLATE/issue-default.yml
index ecfa56140..0ab2335bb 100644
--- a/.github/ISSUE_TEMPLATE/issue-default.yml
+++ b/.github/ISSUE_TEMPLATE/issue-default.yml
@@ -1,32 +1,32 @@
-name: Standard Issue Tempalte
+name: Standard Issue Template
 description: Create an Issue
-title: "[Issue]:"
+title: "[Issue]: "
 labels: ["research"]
-assignees:
-  - kitsushadow
+# assignees:
+#   - kitsushadow
 body:
   - type: markdown
     attributes:
       value: |
-        Please fill this out best you can
+        Describe an issue, idea, task, bug, or story.
   - type: textarea
     id: why
     attributes:
       label: Why or Acceptance Criteria
-      description: What is the reason we determined we need an issue.
+      description: What is the reason it was determined this is an issue.
       placeholder: This issue is a product of...
-      value: "While working on X or researching Y it was discovered that Z was an issue that need captured."
+      value: "While working on X or researching Y it was discovered that Z was an issue that needed captured."
     validations:
       required: true
   - type: dropdown
     id: type
     attributes:
       label: Issue Type
-      description: What type of issue is this
+      description: What kind of role would take action on your issue?
       options:
         - research (Default)
-        - dev
-        - product
+        - development
+        - product team
     validations:
       required: true
   - type: textarea

From 1511b5deca1abca41a39b822ccc2eeabb0837c47 Mon Sep 17 00:00:00 2001
From: igorkorenfeld <igor.korenfeld@gsa.gov>
Date: Thu, 18 May 2023 19:14:37 -0400
Subject: [PATCH 19/72] Upate summary item for user lists and edit button
 option

---
 .../templates/includes/summary_item.html      | 120 +++++++++++-------
 1 file changed, 74 insertions(+), 46 deletions(-)

diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index c902f1980..170ec67cb 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -1,49 +1,77 @@
+{% load static url_helpers %}
+
 <section class="summary-item margin-top-3">
   <hr class="" />
-  <p class="summary-item__title 
-            text-primary-dark text-semibold
-            margin-top-0 margin-bottom-05"
-  > 
-  {{ title }} 
-  </p>
-  {% if address %}
-    {% include "includes/organization_address.html" with organization=value %}
-  {% elif contact %}
-    {% if list %}
-      {% if value|length == 1 %}
-        {% include "includes/contact.html" with contact=value|first %}
-      {% else %}
-        <ul class="usa-list usa-list--unstyled margin-top-0">
-          {% for item in value %}
-          <li>
-            <p class="text-semibold margin-top-1 margin-bottom-0">
-              Conatct {{forloop.counter}}
-            </p>
-            {% include "includes/contact.html" with contact=item %}</li>
-          {% empty %}
-           <li>None</li>
-          {% endfor %}</ul></p>
-        </ul>
-      {% endif %}
-    {% else %}
-      {% include "includes/contact.html" with contact=value %}
-    {% endif %}
-  {% elif list %}
-    {% if value|length == 1 %}
-      <p class="margin-top-0">{{ value | first }} </p>
-    {% else %}
-      <ul class="usa-list margin-top-0">
-        {% for item in value %}
-         <li>{{ item }}</li>
-        {% empty %}
-         <li>None</li>
-        {% endfor %}</ul></p>
-      </ul>
-    {% endif %}
-  {% else %}
-  <p class="margin-top-0">
-    {{ value }}
-  </p>
-  {% endif %}
-  
+  <div class="display-flex flex-justify">
+    <div>
+      <p class="summary-item__title 
+                text-primary-dark text-semibold
+                margin-top-0 margin-bottom-05"
+      > 
+      {{ title }} 
+      </p>
+      {% if address %}
+        {% include "includes/organization_address.html" with organization=value %}
 
+      {% elif contact %}
+        {% if list %}
+          {% if value|length == 1 %}
+            {% include "includes/contact.html" with contact=value|first %}
+          {% else %}
+            <ul class="usa-list usa-list--unstyled margin-top-0">
+              {% for item in value %}
+              <li>
+                <p class="text-semibold margin-top-1 margin-bottom-0">
+                  Conatct {{forloop.counter}}
+                </p>
+                {% include "includes/contact.html" with contact=item %}</li>
+              {% empty %}
+               <li>None</li>
+              {% endfor %}</ul></p>
+            </ul>
+          {% endif %}
+        {% else %}
+          {% include "includes/contact.html" with contact=value %}
+        {% endif %}
+
+      {% elif list %}
+        {% if value|length == 1 %}
+          <p class="margin-top-0">{{ value | first }} </p>
+        {% else %}
+          <ul class="usa-list margin-top-0">
+            {% for item in value %}
+             <li>{{ item }}</li>
+            {% empty %}
+             <li>None</li>
+            {% endfor %}</ul></p>
+          </ul>
+        {% endif %}
+
+      {% elif users %}
+        {% if value|length == 1 %}
+            <p class="margin-top-0">{{ user.email }} <span class="padding-left-2px text-base"> ({{ value.first.role }}) </span></p>
+        {% else %}
+          <ul class="usa-list usa-list--unstyled margin-top-0">
+          {% for item in value %}
+            <li>{{ user.email }} <span class="padding-left-2px text-base"> ({{ item.role }}) </span></li>
+          {% endfor %} 
+        {% endif %}
+
+      {% else %}
+      <p class="margin-top-0">
+        {{ value }}
+      </p>
+      {% endif %}
+    </div>
+
+    {% if edit_link %}
+    <a
+        aria-describedby="summary-item__title"
+        href="{{ edit_link }}"
+    >
+      Edit<span class="sr-only"> {{ title }}</span>
+    </a>
+    {% endif %}
+
+  </div> 
+</section>

From 649be0f49c42f0b81e8b842d201d4ac378de47ff Mon Sep 17 00:00:00 2001
From: igorkorenfeld <igor.korenfeld@gsa.gov>
Date: Thu, 18 May 2023 19:15:13 -0400
Subject: [PATCH 20/72] Add detail fields to domain overview page

---
 src/registrar/templates/domain_detail.html | 27 ++++++++++++++++++++++
 1 file changed, 27 insertions(+)

diff --git a/src/registrar/templates/domain_detail.html b/src/registrar/templates/domain_detail.html
index dd6faa1be..14ac10639 100644
--- a/src/registrar/templates/domain_detail.html
+++ b/src/registrar/templates/domain_detail.html
@@ -1,6 +1,33 @@
 {% extends "domain_base.html" %}
+{% load static url_helpers %}
 
 {% block domain_content %}
   {{ block.super }}
   <p>Active: {% if domain.is_active %}Yes{% else %}No{% endif %}</p>
+  org type: {{domain.domain_info.organization_type}}
+
+  {% url 'domain-nameservers' pk=domain.id as url %}
+  {% include "includes/summary_item.html" with title='DNS name servers' value=domain.nameservers list='true' edit_link=url %}
+
+  {% url 'todo' as url %}
+  {% if domain.domain_info.organization_name %}
+    {% include "includes/summary_item.html" with title='Organization name and mailing address' value=domain.domain_info address='true' edit_link=url %}
+  {% endif %}
+
+  {% if domain.domain_info.authorizing_official %}
+    {% url 'todo' as url %}
+    {% include "includes/summary_item.html" with title='Authorizing official' value=domain.domain_info.authorizing_official contact='true' edit_link=url %}
+  {% endif %}
+
+  {% if domain.domain_info.submitter %}
+    {% url 'todo' as url %}
+    {% include "includes/summary_item.html" with title='Your contact information' value='---TODO---' edit_link=url %}
+  {% endif %}
+
+  {% url 'todo' as url %}
+  {% include "includes/summary_item.html" with title='Security email' value=domain.domain_info.security_email edit_link=url %}
+
+  {% url 'domain-users' pk=domain.id as url %}
+  {% include "includes/summary_item.html" with title='User management' users='true' value=domain.permissions.all edit_link=url %}
+
 {% endblock %}  {# domain_content #}

From 23672f426510ef4d44acfa388ad6159f25a72599 Mon Sep 17 00:00:00 2001
From: rachidatecs <rachid.mrad@ecstech.com>
Date: Fri, 19 May 2023 10:57:24 -0400
Subject: [PATCH 21/72] url confid for contact information

---
 src/registrar/config/urls.py | 7 ++++++-
 src/zap.conf                 | 2 +-
 2 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/src/registrar/config/urls.py b/src/registrar/config/urls.py
index bd5b22da7..2cecd6492 100644
--- a/src/registrar/config/urls.py
+++ b/src/registrar/config/urls.py
@@ -84,7 +84,12 @@ urlpatterns = [
         name="domain-nameservers",
     ),
     path(
-        "domain/<int:pk>/securityemail",
+        "domain/<int:pk>/contact-information",
+        views.DomainSecurityEmailView.as_view(),
+        name="domain-contact-information",
+    ),
+    path(
+        "domain/<int:pk>/security-email",
         views.DomainSecurityEmailView.as_view(),
         name="domain-security-email",
     ),
diff --git a/src/zap.conf b/src/zap.conf
index bb86d60b7..ee92e8a1c 100644
--- a/src/zap.conf
+++ b/src/zap.conf
@@ -52,7 +52,7 @@
 10038	OUTOFSCOPE	http://app:8080/users
 10038	OUTOFSCOPE	http://app:8080/users/add
 10038	OUTOFSCOPE	http://app:8080/nameservers
-10038	OUTOFSCOPE	http://app:8080/securityemail
+10038	OUTOFSCOPE	http://app:8080/security-email
 10038	OUTOFSCOPE	http://app:8080/delete
 10038	OUTOFSCOPE	http://app:8080/withdraw 
 10038	OUTOFSCOPE	http://app:8080/withdrawconfirmed 

From d75c3e0ea61aee121a716b312eaae4ffee35b9b4 Mon Sep 17 00:00:00 2001
From: Mohammad  Minaie <spikespiegel19@gmail.com>
Date: Fri, 19 May 2023 11:42:02 -0400
Subject: [PATCH 22/72] update suggestions from h-m-f-t

---
 .github/ISSUE_TEMPLATE/issue-default.yml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/issue-default.yml b/.github/ISSUE_TEMPLATE/issue-default.yml
index 0ab2335bb..6cd021a2e 100644
--- a/.github/ISSUE_TEMPLATE/issue-default.yml
+++ b/.github/ISSUE_TEMPLATE/issue-default.yml
@@ -1,7 +1,7 @@
-name: Standard Issue Template
-description: Create an Issue
-title: "[Issue]: "
-labels: ["research"]
+name: Issue
+description: Provide a title for the issue you are describing 
+title: ""
+labels: ["review"]
 # assignees:
 #   - kitsushadow
 body:

From d99a6da82f695c6c7115af1cf0286f250c981482 Mon Sep 17 00:00:00 2001
From: igorkorenfeld <igor.korenfeld@gsa.gov>
Date: Fri, 19 May 2023 12:30:59 -0400
Subject: [PATCH 23/72] Fix formatting and remove aria tag

---
 src/registrar/templates/includes/summary_item.html | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index 170ec67cb..bcf8b7ea1 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -43,7 +43,7 @@
              <li>{{ item }}</li>
             {% empty %}
              <li>None</li>
-            {% endfor %}</ul></p>
+            {% endfor %}</ul>
           </ul>
         {% endif %}
 
@@ -58,7 +58,7 @@
         {% endif %}
 
       {% else %}
-      <p class="margin-top-0">
+      <p class="margin-top-0 margin-bottom-0">
         {{ value }}
       </p>
       {% endif %}
@@ -66,7 +66,6 @@
 
     {% if edit_link %}
     <a
-        aria-describedby="summary-item__title"
         href="{{ edit_link }}"
     >
       Edit<span class="sr-only"> {{ title }}</span>

From e17bca1a99d6e4af58ebc7678d5e1f1192122fa3 Mon Sep 17 00:00:00 2001
From: igorkorenfeld <igor.korenfeld@gsa.gov>
Date: Fri, 19 May 2023 12:33:44 -0400
Subject: [PATCH 24/72] Add conditional text for dns section, remove if gates

---
 src/registrar/templates/domain_detail.html | 30 +++++++++++-----------
 1 file changed, 15 insertions(+), 15 deletions(-)

diff --git a/src/registrar/templates/domain_detail.html b/src/registrar/templates/domain_detail.html
index 14ac10639..8dcef8a70 100644
--- a/src/registrar/templates/domain_detail.html
+++ b/src/registrar/templates/domain_detail.html
@@ -3,31 +3,31 @@
 
 {% block domain_content %}
   {{ block.super }}
-  <p>Active: {% if domain.is_active %}Yes{% else %}No{% endif %}</p>
-  org type: {{domain.domain_info.organization_type}}
+  <div class="margin-top-4 tablet:grid-col-10">
 
-  {% url 'domain-nameservers' pk=domain.id as url %}
-  {% include "includes/summary_item.html" with title='DNS name servers' value=domain.nameservers list='true' edit_link=url %}
+    {% url 'domain-nameservers' pk=domain.id as url %}
+    {% if domain.nameservers %} 
+      {% include "includes/summary_item.html" with title='DNS name servers' value=domain.nameservers list='true' edit_link=url %}
+    {% else %}
+      <h2 class="margin-top-neg-1"> DNS name servers </h2>
+      <p> No DNS name servers have been added yet. Before your domain can be used we’ll need information about your domain name servers.</p>
+      <a class="usa-button margin-bottom-1" href="{{url}}"> Add DNS name servers </a> 
+    {% endif %}
 
-  {% url 'todo' as url %}
-  {% if domain.domain_info.organization_name %}
+    {% url 'todo' as url %}
     {% include "includes/summary_item.html" with title='Organization name and mailing address' value=domain.domain_info address='true' edit_link=url %}
-  {% endif %}
 
-  {% if domain.domain_info.authorizing_official %}
     {% url 'todo' as url %}
     {% include "includes/summary_item.html" with title='Authorizing official' value=domain.domain_info.authorizing_official contact='true' edit_link=url %}
-  {% endif %}
 
-  {% if domain.domain_info.submitter %}
     {% url 'todo' as url %}
     {% include "includes/summary_item.html" with title='Your contact information' value='---TODO---' edit_link=url %}
-  {% endif %}
 
-  {% url 'todo' as url %}
-  {% include "includes/summary_item.html" with title='Security email' value=domain.domain_info.security_email edit_link=url %}
+    {% url 'todo' as url %}
+    {% include "includes/summary_item.html" with title='Security email' value=domain.domain_info.security_email edit_link=url %}
 
-  {% url 'domain-users' pk=domain.id as url %}
-  {% include "includes/summary_item.html" with title='User management' users='true' value=domain.permissions.all edit_link=url %}
+    {% url 'domain-users' pk=domain.id as url %}
+    {% include "includes/summary_item.html" with title='User management' users='true' value=domain.permissions.all edit_link=url %}
 
+  </div>
 {% endblock %}  {# domain_content #}

From aa58fe0f265f9b9a55f0ecbc00f0817d9c9ce11a Mon Sep 17 00:00:00 2001
From: igorkorenfeld <igor.korenfeld@gsa.gov>
Date: Fri, 19 May 2023 12:34:49 -0400
Subject: [PATCH 25/72] Make h2 color default primary-dark

---
 .../assets/sass/_theme/_uswds-theme-custom-styles.scss         | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/registrar/assets/sass/_theme/_uswds-theme-custom-styles.scss b/src/registrar/assets/sass/_theme/_uswds-theme-custom-styles.scss
index ff2614fb8..8c06730bf 100644
--- a/src/registrar/assets/sass/_theme/_uswds-theme-custom-styles.scss
+++ b/src/registrar/assets/sass/_theme/_uswds-theme-custom-styles.scss
@@ -77,6 +77,7 @@ h2 {
   font-weight: font-weight('semibold');
   line-height: line-height('heading', 3);
   margin: units(4) 0 units(1);
+  color: color('primary-darker');
 }
 
 .register-form-step > h1 {
@@ -431,4 +432,4 @@ abbr[title] {
   @include at-media('tablet') {
     height: units('mobile');
   }
-}
\ No newline at end of file
+}

From eb51173ab472fb1a026d413610054453c9ef443e Mon Sep 17 00:00:00 2001
From: igorkorenfeld <igor.korenfeld@gsa.gov>
Date: Fri, 19 May 2023 12:44:36 -0400
Subject: [PATCH 26/72] Add security email section

---
 src/registrar/templates/domain_detail.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/templates/domain_detail.html b/src/registrar/templates/domain_detail.html
index 8dcef8a70..97b15207a 100644
--- a/src/registrar/templates/domain_detail.html
+++ b/src/registrar/templates/domain_detail.html
@@ -23,8 +23,8 @@
     {% url 'todo' as url %}
     {% include "includes/summary_item.html" with title='Your contact information' value='---TODO---' edit_link=url %}
 
-    {% url 'todo' as url %}
-    {% include "includes/summary_item.html" with title='Security email' value=domain.domain_info.security_email edit_link=url %}
+    {% url 'domain-security-email' pk=domain.id as url %}
+    {% include "includes/summary_item.html" with title='Security email' value=domain.security_email edit_link=url %}
 
     {% url 'domain-users' pk=domain.id as url %}
     {% include "includes/summary_item.html" with title='User management' users='true' value=domain.permissions.all edit_link=url %}

From 0d5ca5bdcbda92ac4e97b48c4674076faeb63d1a Mon Sep 17 00:00:00 2001
From: igorkorenfeld <igor.korenfeld@gsa.gov>
Date: Fri, 19 May 2023 12:47:21 -0400
Subject: [PATCH 27/72] Make domain overview sentance case in sidebar

---
 src/registrar/templates/domain_sidebar.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/domain_sidebar.html b/src/registrar/templates/domain_sidebar.html
index 46a87ba76..76877198b 100644
--- a/src/registrar/templates/domain_sidebar.html
+++ b/src/registrar/templates/domain_sidebar.html
@@ -8,7 +8,7 @@
         <a href="{{ url }}" 
           {% if request.path == url %}class="usa-current"{% endif %}
         >
-          Domain Overview
+          Domain overview
         </a>
       </li>
 

From 785da453d588b81158a15d29610ccac0cfdd0d4e Mon Sep 17 00:00:00 2001
From: Mohammad  Minaie <spikespiegel19@gmail.com>
Date: Fri, 19 May 2023 14:18:33 -0400
Subject: [PATCH 28/72] title must be a non-empty string

---
 .github/ISSUE_TEMPLATE/issue-default.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/ISSUE_TEMPLATE/issue-default.yml b/.github/ISSUE_TEMPLATE/issue-default.yml
index 6cd021a2e..eeaa4fed2 100644
--- a/.github/ISSUE_TEMPLATE/issue-default.yml
+++ b/.github/ISSUE_TEMPLATE/issue-default.yml
@@ -1,6 +1,6 @@
 name: Issue
 description: Provide a title for the issue you are describing 
-title: ""
+title: "Please provide a clear title"
 labels: ["review"]
 # assignees:
 #   - kitsushadow

From 53de82a406afc0bcde97e9491c64c6b98fdb300e Mon Sep 17 00:00:00 2001
From: igorkorenfeld <igor.korenfeld@gsa.gov>
Date: Fri, 19 May 2023 14:55:37 -0400
Subject: [PATCH 29/72] Remove extra spacing on single item lists

---
 src/registrar/templates/includes/summary_item.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index bcf8b7ea1..3b9d555cd 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -36,7 +36,7 @@
 
       {% elif list %}
         {% if value|length == 1 %}
-          <p class="margin-top-0">{{ value | first }} </p>
+          <p class="margin-top-0 margin-bottom-0">{{ value | first }} </p>
         {% else %}
           <ul class="usa-list margin-top-0">
             {% for item in value %}
@@ -49,7 +49,7 @@
 
       {% elif users %}
         {% if value|length == 1 %}
-            <p class="margin-top-0">{{ user.email }} <span class="padding-left-2px text-base"> ({{ value.first.role }}) </span></p>
+            <p class="margin-top-0 margin-bottom-0">{{ user.email }} <span class="padding-left-2px text-base"> ({{ value.first.role }}) </span></p>
         {% else %}
           <ul class="usa-list usa-list--unstyled margin-top-0">
           {% for item in value %}

From 573b93e0cdb669b662db25df8c7dfc3ac55a31db Mon Sep 17 00:00:00 2001
From: rachidatecs <107004823+rachidatecs@users.noreply.github.com>
Date: Mon, 22 May 2023 13:33:12 -0400
Subject: [PATCH 30/72] Update summary_item.html

Fix typo
---
 src/registrar/templates/includes/summary_item.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index 3b9d555cd..9d0464a29 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -22,7 +22,7 @@
               {% for item in value %}
               <li>
                 <p class="text-semibold margin-top-1 margin-bottom-0">
-                  Conatct {{forloop.counter}}
+                  Contact {{forloop.counter}}
                 </p>
                 {% include "includes/contact.html" with contact=item %}</li>
               {% empty %}

From 659941368a0536dff375fd142d7bcd4511e20194 Mon Sep 17 00:00:00 2001
From: rachidatecs <rachid.mrad@ecstech.com>
Date: Mon, 22 May 2023 14:35:01 -0400
Subject: [PATCH 31/72] Vie, Form, Template for Contact Info

---
 src/registrar/forms/__init__.py               |  2 +-
 src/registrar/forms/domain.py                 | 43 ++++++++++++
 src/registrar/models/contact.py               |  3 +
 src/registrar/templates/domain_sidebar.html   |  2 +-
 .../domain_your_contact_information.html      | 35 ++++++++++
 src/registrar/views/__init__.py               |  1 +
 src/registrar/views/domain.py                 | 68 +++++++++++++++++--
 src/zap.conf                                  |  1 +
 8 files changed, 148 insertions(+), 7 deletions(-)
 create mode 100644 src/registrar/templates/domain_your_contact_information.html

diff --git a/src/registrar/forms/__init__.py b/src/registrar/forms/__init__.py
index 6cfe07818..7571ee763 100644
--- a/src/registrar/forms/__init__.py
+++ b/src/registrar/forms/__init__.py
@@ -1,2 +1,2 @@
 from .application_wizard import *
-from .domain import DomainAddUserForm, NameserverFormset, DomainSecurityEmailForm
+from .domain import DomainAddUserForm, NameserverFormset, DomainSecurityEmailForm, ContactForm
diff --git a/src/registrar/forms/domain.py b/src/registrar/forms/domain.py
index 83e13b685..f8e195360 100644
--- a/src/registrar/forms/domain.py
+++ b/src/registrar/forms/domain.py
@@ -3,6 +3,10 @@
 from django import forms
 from django.forms import formset_factory
 
+from phonenumber_field.widgets import RegionalPhoneNumberWidget
+
+from ..models import Contact
+
 
 class DomainAddUserForm(forms.Form):
 
@@ -29,3 +33,42 @@ class DomainSecurityEmailForm(forms.Form):
     """Form for adding or editing a security email to a domain."""
 
     security_email = forms.EmailField(label="Security email")
+    
+    
+class ContactForm(forms.ModelForm):
+
+    """Form for updating contacts."""
+
+    class Meta:
+        model = Contact
+        fields = ["first_name", "middle_name", "last_name", "title", "email", "phone"]
+        widgets = {
+            "first_name": forms.TextInput,
+            "middle_name": forms.TextInput,
+            "last_name": forms.TextInput,
+            "title": forms.TextInput,
+            "email": forms.EmailInput,
+            "phone": RegionalPhoneNumberWidget,
+        }
+
+    # the database fields have blank=True so ModelForm doesn't create
+    # required fields by default. Use this list in __init__ to mark each
+    # of these fields as required
+    required = [
+        "first_name",
+        "last_name",
+        "title",
+        "email",
+        "phone"
+    ]
+
+    def __init__(self, *args, **kwargs):
+        super().__init__(*args, **kwargs)
+        # take off maxlength attribute for the phone number field
+        # which interferes with out input_with_errors template tag
+        self.fields['phone'].widget.attrs.pop('maxlength', None)
+
+        for field_name in self.required:
+            self.fields[field_name].required = True
+    
+    
diff --git a/src/registrar/models/contact.py b/src/registrar/models/contact.py
index d5d32a7ae..cbfde7a23 100644
--- a/src/registrar/models/contact.py
+++ b/src/registrar/models/contact.py
@@ -20,6 +20,7 @@ class Contact(TimeStampedModel):
         null=True,
         blank=True,
         help_text="First name",
+        verbose_name="first name / given name",
         db_index=True,
     )
     middle_name = models.TextField(
@@ -31,12 +32,14 @@ class Contact(TimeStampedModel):
         null=True,
         blank=True,
         help_text="Last name",
+        verbose_name="last name / family name",
         db_index=True,
     )
     title = models.TextField(
         null=True,
         blank=True,
         help_text="Title",
+        verbose_name="title or role in your organization",
     )
     email = models.TextField(
         null=True,
diff --git a/src/registrar/templates/domain_sidebar.html b/src/registrar/templates/domain_sidebar.html
index 46a87ba76..939c925cc 100644
--- a/src/registrar/templates/domain_sidebar.html
+++ b/src/registrar/templates/domain_sidebar.html
@@ -40,7 +40,7 @@
       </li>
 
       <li class="usa-sidenav__item">
-        {% url 'todo' as url %}
+        {% url 'domain-your-contact-information' pk=domain.id as url %}
         <a href="{{ url }}"
           {% if request.path == url %}class="usa-current"{% endif %}
         >
diff --git a/src/registrar/templates/domain_your_contact_information.html b/src/registrar/templates/domain_your_contact_information.html
new file mode 100644
index 000000000..e18deeb50
--- /dev/null
+++ b/src/registrar/templates/domain_your_contact_information.html
@@ -0,0 +1,35 @@
+{% extends "domain_base.html" %}
+{% load static field_helpers %}
+
+{% block title %}Domain contact information | {{ domain.name }} | {% endblock %}
+
+{% block domain_content %}
+
+  <h1>Domain contact information</h1>
+
+  <p>If you’d like us to use a different name, email, or phone number you can make those changes below. Changing your contact information here won’t affect your Login.gov account information.</p>
+
+  {% include "includes/required_fields.html" %}
+
+  <form class="usa-form usa-form--large" method="post" novalidate id="form-container">
+    {% csrf_token %}
+
+    {% input_with_errors form.first_name %}
+
+    {% input_with_errors form.middle_name %}
+
+    {% input_with_errors form.last_name %}
+
+    {% input_with_errors form.title %}
+
+    {% input_with_errors form.email %}
+    
+    {% input_with_errors form.phone %}
+
+    <button
+      type="submit"
+      class="usa-button"
+    >Save</button>
+  </form>
+
+{% endblock %}  {# domain_content #}
diff --git a/src/registrar/views/__init__.py b/src/registrar/views/__init__.py
index 820d0295d..758d04d72 100644
--- a/src/registrar/views/__init__.py
+++ b/src/registrar/views/__init__.py
@@ -2,6 +2,7 @@ from .application import *
 from .domain import (
     DomainView,
     DomainNameserversView,
+    DomainYourContactInformationView,
     DomainSecurityEmailView,
     DomainUsersView,
     DomainAddUserView,
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index d0fa8952e..ec720ed25 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -10,9 +10,9 @@ from django.urls import reverse
 from django.views.generic import DetailView
 from django.views.generic.edit import DeleteView, FormMixin
 
-from registrar.models import Domain, DomainInvitation, User, UserDomainRole
+from registrar.models import Domain, DomainInvitation, User, UserDomainRole, DomainInformation
 
-from ..forms import DomainAddUserForm, NameserverFormset, DomainSecurityEmailForm
+from ..forms import DomainAddUserForm, NameserverFormset, DomainSecurityEmailForm, ContactForm
 from ..utility.email import send_templated_email, EmailSendingError
 from .utility import DomainPermission
 
@@ -44,7 +44,7 @@ class DomainNameserversView(DomainPermission, FormMixin, DetailView):
         return [{"server": server} for server in domain.nameservers()]
 
     def get_success_url(self):
-        """Redirect to the overview page for the domain."""
+        """Redirect to the nameservers page for the domain."""
         return reverse("domain-nameservers", kwargs={"pk": self.object.pk})
 
     def get_context_data(self, **kwargs):
@@ -94,6 +94,64 @@ class DomainNameserversView(DomainPermission, FormMixin, DetailView):
         )
         # superclass has the redirect
         return super().form_valid(formset)
+    
+    
+class DomainYourContactInformationView(DomainPermission, FormMixin, DetailView):
+
+    """Domain your contact information editing view."""
+
+    model = Domain
+    template_name = "domain_your_contact_information.html"
+    context_object_name = "domain"
+    form_class = ContactForm
+    
+    # def get_initial(self):
+    #     """The initial value for the form."""
+    #     domainInformation = self.get_object()
+    #     initial = super().get_initial()
+    #     initial["first_name"] = domainInformation.submitter.first_name
+    #     initial["middle_name"] = domainInformation.submitter.middle_name
+    #     initial["last_name"] = domainInformation.submitter.last_name
+    #     initial["title"] = domainInformation.submitter.title
+    #     initial["email"] = domainInformation.submitter.email
+    #     initial["phone"] = domainInformation.submitter.phone
+    #     return initial
+    
+    def get_form_kwargs(self, *args, **kwargs):
+        """Add domain_info.submitter instance to make a bound form."""
+        form_kwargs = super().get_form_kwargs(*args, **kwargs)
+        form_kwargs["instance"] = self.get_object().domain_info.submitter
+        return form_kwargs
+
+    def get_success_url(self):
+        """Redirect to the your contact information for the domain."""
+        return reverse("domain-your-contact-information", kwargs={"pk": self.object.pk})
+
+    def post(self, request, *args, **kwargs):
+        """Form submission posts to this view."""
+        self.object = self.get_object()
+        form = self.get_form()
+        if form.is_valid():
+            # there is a valid email address in the form
+            return self.form_valid(form)
+        else:
+            return self.form_invalid(form)
+
+    def form_valid(self, form):
+        """The form is valid, call setter in model."""
+
+        # Post to DB using values from the form
+        # new_email = form.cleaned_data["security_email"]
+        # domain = self.get_object()
+        # domain.set_security_email(new_email)
+        domain = self.get_object()
+        form.save()
+
+        messages.success(
+            self.request, "Your contact information for this domain have been updated."
+        )
+        # superclass has the redirect
+        return super().form_valid(form)
 
 
 class DomainSecurityEmailView(DomainPermission, FormMixin, DetailView):
@@ -113,11 +171,11 @@ class DomainSecurityEmailView(DomainPermission, FormMixin, DetailView):
         return initial
 
     def get_success_url(self):
-        """Redirect to the overview page for the domain."""
+        """Redirect to the security email page for the domain."""
         return reverse("domain-security-email", kwargs={"pk": self.object.pk})
 
     def post(self, request, *args, **kwargs):
-        """Formset submission posts to this view."""
+        """Form submission posts to this view."""
         self.object = self.get_object()
         form = self.get_form()
         if form.is_valid():
diff --git a/src/zap.conf b/src/zap.conf
index ee92e8a1c..6a5e9bf77 100644
--- a/src/zap.conf
+++ b/src/zap.conf
@@ -52,6 +52,7 @@
 10038	OUTOFSCOPE	http://app:8080/users
 10038	OUTOFSCOPE	http://app:8080/users/add
 10038	OUTOFSCOPE	http://app:8080/nameservers
+10038	OUTOFSCOPE	http://app:8080/your-contact-information
 10038	OUTOFSCOPE	http://app:8080/security-email
 10038	OUTOFSCOPE	http://app:8080/delete
 10038	OUTOFSCOPE	http://app:8080/withdraw 

From 1876f08ca655001c60c2bad01368a18678ce1cc2 Mon Sep 17 00:00:00 2001
From: rachidatecs <rachid.mrad@ecstech.com>
Date: Mon, 22 May 2023 14:48:50 -0400
Subject: [PATCH 32/72] Fix view assignment in urls config

---
 src/registrar/config/urls.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/registrar/config/urls.py b/src/registrar/config/urls.py
index 2cecd6492..1b47a362f 100644
--- a/src/registrar/config/urls.py
+++ b/src/registrar/config/urls.py
@@ -84,9 +84,9 @@ urlpatterns = [
         name="domain-nameservers",
     ),
     path(
-        "domain/<int:pk>/contact-information",
-        views.DomainSecurityEmailView.as_view(),
-        name="domain-contact-information",
+        "domain/<int:pk>/your-contact-information",
+        views.DomainYourContactInformationView.as_view(),
+        name="domain-your-contact-information",
     ),
     path(
         "domain/<int:pk>/security-email",

From 2816acb924a7a76f159cf6c26e2f527253fd36af Mon Sep 17 00:00:00 2001
From: brandonlenz <brandonalenz@gmail.com>
Date: Mon, 22 May 2023 16:50:58 -0400
Subject: [PATCH 33/72] Add base for bug template

---
 .github/ISSUE_TEMPLATE/bug.yml | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 .github/ISSUE_TEMPLATE/bug.yml

diff --git a/.github/ISSUE_TEMPLATE/bug.yml b/.github/ISSUE_TEMPLATE/bug.yml
new file mode 100644
index 000000000..de76ed3fd
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/bug.yml
@@ -0,0 +1,5 @@
+name: Bug
+description: Report a bug
+title: "[Bug]: "
+labels: ["bug"]
+

From c6b18361d164ae6494faecd92fa3985cee516544 Mon Sep 17 00:00:00 2001
From: brandonlenz <brandonalenz@gmail.com>
Date: Mon, 22 May 2023 17:14:00 -0400
Subject: [PATCH 34/72] Add body

---
 .github/ISSUE_TEMPLATE/bug.yml | 43 ++++++++++++++++++++++++++++++++++
 1 file changed, 43 insertions(+)

diff --git a/.github/ISSUE_TEMPLATE/bug.yml b/.github/ISSUE_TEMPLATE/bug.yml
index de76ed3fd..34b0362d4 100644
--- a/.github/ISSUE_TEMPLATE/bug.yml
+++ b/.github/ISSUE_TEMPLATE/bug.yml
@@ -3,3 +3,46 @@ description: Report a bug
 title: "[Bug]: "
 labels: ["bug"]
 
+body:
+  - type: textarea
+    id: current-behavior
+    attributes:
+      label: Current Behavior
+      description: "Please add a concise description of the issue"
+      placeholder: "Example: The application shows an internal server error when attempting to apply for a new domain"
+    validations:
+      required: true
+  - type: textarea
+    id: expected-behavior
+    attributes:
+      label: Expected Behavior
+      description: "Please add a concise description of the behavior you would expect if this issue were not occurring"
+      placeholder: "Example: When submitting a new domain application, the request should be successful, OR if there is a problem with the user's application preventing submission, errors should be enumerated to the user"
+    validations:
+      required: true
+  - type: textarea
+    id: steps-to-reproduce
+    attributes:
+      label: Steps to Reproduce
+      description: "How can the issue be reliably reproduced?"
+      placeholder: |
+        Example:
+        1. In the test environment, fill out the application for a new domain
+        2. Click the button to trigger a save/submit on the final page and complete the application 
+        3. See the error
+    validations:
+      required: true
+  - type: textarea
+    id: environment
+    attributes:
+      label: Environment
+      description: "Where is this issue occurring? If related to development environment, list the specific relevant tool versions"
+      placeholder: |
+        Example:
+        - Browser: Chrome x.y.z
+        - Python: x.y.z
+  - type: textarea
+    id: additional-context
+    attributes:
+      label: Additional Context
+      description: "Please include additional references, screenshots, documentation that are relevant"

From 6e81f2db85ab691648da3cf3f407032629d412c1 Mon Sep 17 00:00:00 2001
From: Alysia Broddrick <abroddrick@truss.works>
Date: Mon, 22 May 2023 14:19:19 -0700
Subject: [PATCH 35/72] updated sr-only tag to match the section its in

---
 src/registrar/templates/home.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/home.html b/src/registrar/templates/home.html
index a92d2973c..aa2034a27 100644
--- a/src/registrar/templates/home.html
+++ b/src/registrar/templates/home.html
@@ -22,7 +22,7 @@
     <h2>Registered domains</h2>
     {% if domains %}
     <table class="usa-table usa-table--borderless usa-table--stacked dotgov-table dotgov-table--stacked">
-      <caption class="sr-only">Your domain applications</caption>
+      <caption class="sr-only">Your registered domains</caption>
       <thead>
         <tr>
           <th data-sortable scope="col" role="columnheader">Domain name</th>

From c488a33c67093c712f70aa0c78b413ced4e2f022 Mon Sep 17 00:00:00 2001
From: brandonlenz <brandonalenz@gmail.com>
Date: Mon, 22 May 2023 17:40:38 -0400
Subject: [PATCH 36/72] update context description

---
 .github/ISSUE_TEMPLATE/bug.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/ISSUE_TEMPLATE/bug.yml b/.github/ISSUE_TEMPLATE/bug.yml
index 34b0362d4..8ef05c048 100644
--- a/.github/ISSUE_TEMPLATE/bug.yml
+++ b/.github/ISSUE_TEMPLATE/bug.yml
@@ -45,4 +45,4 @@ body:
     id: additional-context
     attributes:
       label: Additional Context
-      description: "Please include additional references, screenshots, documentation that are relevant"
+      description: "Please include additional references, screenshots, documentation, etc. that are relevant"

From b3d4631d45346379dd7b84c5a403f584dc20aaf8 Mon Sep 17 00:00:00 2001
From: rachidatecs <rachid.mrad@ecstech.com>
Date: Tue, 23 May 2023 18:51:52 -0400
Subject: [PATCH 37/72] Clean up and add unit tests

---
 src/registrar/forms/__init__.py   |  7 ++-
 src/registrar/forms/domain.py     | 16 ++----
 src/registrar/tests/test_views.py | 90 ++++++++++++++++---------------
 src/registrar/views/domain.py     | 36 ++++++-------
 4 files changed, 73 insertions(+), 76 deletions(-)

diff --git a/src/registrar/forms/__init__.py b/src/registrar/forms/__init__.py
index 7571ee763..364740211 100644
--- a/src/registrar/forms/__init__.py
+++ b/src/registrar/forms/__init__.py
@@ -1,2 +1,7 @@
 from .application_wizard import *
-from .domain import DomainAddUserForm, NameserverFormset, DomainSecurityEmailForm, ContactForm
+from .domain import (
+    DomainAddUserForm,
+    NameserverFormset,
+    DomainSecurityEmailForm,
+    ContactForm,
+)
diff --git a/src/registrar/forms/domain.py b/src/registrar/forms/domain.py
index f8e195360..be26296f4 100644
--- a/src/registrar/forms/domain.py
+++ b/src/registrar/forms/domain.py
@@ -33,8 +33,8 @@ class DomainSecurityEmailForm(forms.Form):
     """Form for adding or editing a security email to a domain."""
 
     security_email = forms.EmailField(label="Security email")
-    
-    
+
+
 class ContactForm(forms.ModelForm):
 
     """Form for updating contacts."""
@@ -54,21 +54,13 @@ class ContactForm(forms.ModelForm):
     # the database fields have blank=True so ModelForm doesn't create
     # required fields by default. Use this list in __init__ to mark each
     # of these fields as required
-    required = [
-        "first_name",
-        "last_name",
-        "title",
-        "email",
-        "phone"
-    ]
+    required = ["first_name", "last_name", "title", "email", "phone"]
 
     def __init__(self, *args, **kwargs):
         super().__init__(*args, **kwargs)
         # take off maxlength attribute for the phone number field
         # which interferes with out input_with_errors template tag
-        self.fields['phone'].widget.attrs.pop('maxlength', None)
+        self.fields["phone"].widget.attrs.pop("maxlength", None)
 
         for field_name in self.required:
             self.fields[field_name].required = True
-    
-    
diff --git a/src/registrar/tests/test_views.py b/src/registrar/tests/test_views.py
index ee83034e1..d1ef2b41d 100644
--- a/src/registrar/tests/test_views.py
+++ b/src/registrar/tests/test_views.py
@@ -13,6 +13,7 @@ import boto3_mocking  # type: ignore
 from registrar.models import (
     DomainApplication,
     Domain,
+    DomainInformation,
     DomainInvitation,
     Contact,
     Website,
@@ -1029,12 +1030,16 @@ class TestWithDomainPermissions(TestWithUser):
     def setUp(self):
         super().setUp()
         self.domain, _ = Domain.objects.get_or_create(name="igorville.gov")
+        self.domain_information, _ = DomainInformation.objects.get_or_create(
+            creator=self.user, domain=self.domain
+        )
         self.role, _ = UserDomainRole.objects.get_or_create(
             user=self.user, domain=self.domain, role=UserDomainRole.Roles.ADMIN
         )
 
     def tearDown(self):
         try:
+            self.domain_information.delete()
             self.domain.delete()
             self.role.delete()
         except ValueError:  # pass if already deleted
@@ -1045,55 +1050,37 @@ class TestWithDomainPermissions(TestWithUser):
 class TestDomainPermissions(TestWithDomainPermissions):
     def test_not_logged_in(self):
         """Not logged in gets a redirect to Login."""
-        response = self.client.get(reverse("domain", kwargs={"pk": self.domain.id}))
-        self.assertEqual(response.status_code, 302)
-
-        response = self.client.get(
-            reverse("domain-users", kwargs={"pk": self.domain.id})
-        )
-        self.assertEqual(response.status_code, 302)
-
-        response = self.client.get(
-            reverse("domain-users-add", kwargs={"pk": self.domain.id})
-        )
-        self.assertEqual(response.status_code, 302)
-
-        response = self.client.get(
-            reverse("domain-nameservers", kwargs={"pk": self.domain.id})
-        )
-        self.assertEqual(response.status_code, 302)
-
-        response = self.client.get(
-            reverse("domain-security-email", kwargs={"pk": self.domain.id})
-        )
-        self.assertEqual(response.status_code, 302)
+        for view_name in [
+            "domain",
+            "domain-users",
+            "domain-users-add",
+            "domain-nameservers",
+            "domain-your-contact-information" "domain-security-email",
+        ]:
+            with self.subTest(view_name=view_name):
+                response = self.client.get(
+                    reverse(view_name, kwargs={"pk": self.domain.id})
+                )
+                self.assertEqual(response.status_code, 302)
 
     def test_no_domain_role(self):
         """Logged in but no role gets 403 Forbidden."""
         self.client.force_login(self.user)
         self.role.delete()  # user no longer has a role on this domain
 
-        with less_console_noise():
-            response = self.client.get(reverse("domain", kwargs={"pk": self.domain.id}))
-        self.assertEqual(response.status_code, 403)
-
-        with less_console_noise():
-            response = self.client.get(
-                reverse("domain-users", kwargs={"pk": self.domain.id})
-            )
-        self.assertEqual(response.status_code, 403)
-
-        with less_console_noise():
-            response = self.client.get(
-                reverse("domain-users-add", kwargs={"pk": self.domain.id})
-            )
-        self.assertEqual(response.status_code, 403)
-
-        with less_console_noise():
-            response = self.client.get(
-                reverse("domain-nameservers", kwargs={"pk": self.domain.id})
-            )
-        self.assertEqual(response.status_code, 403)
+        for view_name in [
+            "domain",
+            "domain-users",
+            "domain-users-add",
+            "domain-nameservers",
+            "domain-your-contact-information" "domain-security-email",
+        ]:
+            with self.subTest(view_name=view_name):
+                with less_console_noise():
+                    response = self.client.get(
+                        reverse(view_name, kwargs={"pk": self.domain.id})
+                    )
+                self.assertEqual(response.status_code, 403)
 
 
 class TestDomainDetail(TestWithDomainPermissions, WebTest):
@@ -1287,6 +1274,23 @@ class TestDomainDetail(TestWithDomainPermissions, WebTest):
         # the field.
         self.assertContains(result, "This field is required", count=2, status_code=200)
 
+    def test_domain_your_contact_information(self):
+        """Can load domain's your contact information page."""
+        page = self.client.get(
+            reverse("domain-your-contact-information", kwargs={"pk": self.domain.id})
+        )
+        self.assertContains(page, "Domain contact information")
+
+    def test_domain_your_contact_information(self):
+        """Your contact information appears on the page."""
+        self.domain_information.submitter = Contact(first_name="Testy")
+        self.domain_information.submitter.save()
+        self.domain_information.save()
+        page = self.app.get(
+            reverse("domain-your-contact-information", kwargs={"pk": self.domain.id})
+        )
+        self.assertContains(page, "Testy")
+
     def test_domain_security_email(self):
         """Can load domain's security email page."""
         page = self.client.get(
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index ec720ed25..f0337a36c 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -10,9 +10,20 @@ from django.urls import reverse
 from django.views.generic import DetailView
 from django.views.generic.edit import DeleteView, FormMixin
 
-from registrar.models import Domain, DomainInvitation, User, UserDomainRole, DomainInformation
+from registrar.models import (
+    Domain,
+    DomainInvitation,
+    User,
+    UserDomainRole,
+    DomainInformation,
+)
 
-from ..forms import DomainAddUserForm, NameserverFormset, DomainSecurityEmailForm, ContactForm
+from ..forms import (
+    DomainAddUserForm,
+    NameserverFormset,
+    DomainSecurityEmailForm,
+    ContactForm,
+)
 from ..utility.email import send_templated_email, EmailSendingError
 from .utility import DomainPermission
 
@@ -94,8 +105,8 @@ class DomainNameserversView(DomainPermission, FormMixin, DetailView):
         )
         # superclass has the redirect
         return super().form_valid(formset)
-    
-    
+
+
 class DomainYourContactInformationView(DomainPermission, FormMixin, DetailView):
 
     """Domain your contact information editing view."""
@@ -104,19 +115,7 @@ class DomainYourContactInformationView(DomainPermission, FormMixin, DetailView):
     template_name = "domain_your_contact_information.html"
     context_object_name = "domain"
     form_class = ContactForm
-    
-    # def get_initial(self):
-    #     """The initial value for the form."""
-    #     domainInformation = self.get_object()
-    #     initial = super().get_initial()
-    #     initial["first_name"] = domainInformation.submitter.first_name
-    #     initial["middle_name"] = domainInformation.submitter.middle_name
-    #     initial["last_name"] = domainInformation.submitter.last_name
-    #     initial["title"] = domainInformation.submitter.title
-    #     initial["email"] = domainInformation.submitter.email
-    #     initial["phone"] = domainInformation.submitter.phone
-    #     return initial
-    
+
     def get_form_kwargs(self, *args, **kwargs):
         """Add domain_info.submitter instance to make a bound form."""
         form_kwargs = super().get_form_kwargs(*args, **kwargs)
@@ -141,9 +140,6 @@ class DomainYourContactInformationView(DomainPermission, FormMixin, DetailView):
         """The form is valid, call setter in model."""
 
         # Post to DB using values from the form
-        # new_email = form.cleaned_data["security_email"]
-        # domain = self.get_object()
-        # domain.set_security_email(new_email)
         domain = self.get_object()
         form.save()
 

From 9453c6dae166d8c45238b46189611beb6da07b1b Mon Sep 17 00:00:00 2001
From: rachidatecs <rachid.mrad@ecstech.com>
Date: Tue, 23 May 2023 18:59:14 -0400
Subject: [PATCH 38/72] migrations

---
 ...t_name_alter_contact_last_name_and_more.py | 44 +++++++++++++++++++
 1 file changed, 44 insertions(+)
 create mode 100644 src/registrar/migrations/0021_alter_contact_first_name_alter_contact_last_name_and_more.py

diff --git a/src/registrar/migrations/0021_alter_contact_first_name_alter_contact_last_name_and_more.py b/src/registrar/migrations/0021_alter_contact_first_name_alter_contact_last_name_and_more.py
new file mode 100644
index 000000000..355ab2748
--- /dev/null
+++ b/src/registrar/migrations/0021_alter_contact_first_name_alter_contact_last_name_and_more.py
@@ -0,0 +1,44 @@
+# Generated by Django 4.2 on 2023-05-23 22:54
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("registrar", "0020_remove_domaininformation_security_email"),
+    ]
+
+    operations = [
+        migrations.AlterField(
+            model_name="contact",
+            name="first_name",
+            field=models.TextField(
+                blank=True,
+                db_index=True,
+                help_text="First name",
+                null=True,
+                verbose_name="first name / given name",
+            ),
+        ),
+        migrations.AlterField(
+            model_name="contact",
+            name="last_name",
+            field=models.TextField(
+                blank=True,
+                db_index=True,
+                help_text="Last name",
+                null=True,
+                verbose_name="last name / family name",
+            ),
+        ),
+        migrations.AlterField(
+            model_name="contact",
+            name="title",
+            field=models.TextField(
+                blank=True,
+                help_text="Title",
+                null=True,
+                verbose_name="title or role in your organization",
+            ),
+        ),
+    ]

From 968d1818e5ab1537c0bce760c8ff0916a7730f34 Mon Sep 17 00:00:00 2001
From: rachidatecs <rachid.mrad@ecstech.com>
Date: Tue, 23 May 2023 19:11:51 -0400
Subject: [PATCH 39/72] Clean up

---
 src/registrar/tests/test_views.py | 8 +++++---
 src/registrar/views/domain.py     | 2 --
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/src/registrar/tests/test_views.py b/src/registrar/tests/test_views.py
index 887082b0b..1a0c5171b 100644
--- a/src/registrar/tests/test_views.py
+++ b/src/registrar/tests/test_views.py
@@ -1055,7 +1055,8 @@ class TestDomainPermissions(TestWithDomainPermissions):
             "domain-users",
             "domain-users-add",
             "domain-nameservers",
-            "domain-your-contact-information" "domain-security-email",
+            "domain-your-contact-information",
+            "domain-security-email",
         ]:
             with self.subTest(view_name=view_name):
                 response = self.client.get(
@@ -1073,7 +1074,8 @@ class TestDomainPermissions(TestWithDomainPermissions):
             "domain-users",
             "domain-users-add",
             "domain-nameservers",
-            "domain-your-contact-information" "domain-security-email",
+            "domain-your-contact-information",
+            "domain-security-email",
         ]:
             with self.subTest(view_name=view_name):
                 with less_console_noise():
@@ -1287,7 +1289,7 @@ class TestDomainDetail(TestWithDomainPermissions, WebTest):
         )
         self.assertContains(page, "Domain contact information")
 
-    def test_domain_your_contact_information(self):
+    def test_domain_your_contact_information_content(self):
         """Your contact information appears on the page."""
         self.domain_information.submitter = Contact(first_name="Testy")
         self.domain_information.submitter.save()
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 178475afd..33ce8d8eb 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -15,7 +15,6 @@ from registrar.models import (
     DomainInvitation,
     User,
     UserDomainRole,
-    DomainInformation,
 )
 
 from ..forms import (
@@ -140,7 +139,6 @@ class DomainYourContactInformationView(DomainPermission, FormMixin, DetailView):
         """The form is valid, call setter in model."""
 
         # Post to DB using values from the form
-        domain = self.get_object()
         form.save()
 
         messages.success(

From a4dae87c43d81719897aae6c5886a2136e825fe0 Mon Sep 17 00:00:00 2001
From: Mohammad  Minaie <spikespiegel19@gmail.com>
Date: Wed, 24 May 2023 10:08:21 -0400
Subject: [PATCH 40/72] updates to language in the default issue, merger of the
 bug PR, and updates to some of the bug language

---
 .github/ISSUE_TEMPLATE/bug.yml           |  2 +-
 .github/ISSUE_TEMPLATE/issue-default.yml | 18 +++++++++---------
 2 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/bug.yml b/.github/ISSUE_TEMPLATE/bug.yml
index 8ef05c048..c01761f1c 100644
--- a/.github/ISSUE_TEMPLATE/bug.yml
+++ b/.github/ISSUE_TEMPLATE/bug.yml
@@ -24,7 +24,7 @@ body:
     id: steps-to-reproduce
     attributes:
       label: Steps to Reproduce
-      description: "How can the issue be reliably reproduced?"
+      description: "How can the issue be reliably reproduced? feel free to include screenshots or other supporting artifacts"
       placeholder: |
         Example:
         1. In the test environment, fill out the application for a new domain
diff --git a/.github/ISSUE_TEMPLATE/issue-default.yml b/.github/ISSUE_TEMPLATE/issue-default.yml
index eeaa4fed2..665ba530d 100644
--- a/.github/ISSUE_TEMPLATE/issue-default.yml
+++ b/.github/ISSUE_TEMPLATE/issue-default.yml
@@ -8,25 +8,25 @@ body:
   - type: markdown
     attributes:
       value: |
-        Describe an issue, idea, task, bug, or story.
+        Describe the ticket your are capturing in further detail.
   - type: textarea
     id: why
     attributes:
-      label: Why or Acceptance Criteria
-      description: What is the reason it was determined this is an issue.
-      placeholder: This issue is a product of...
-      value: "While working on X or researching Y it was discovered that Z was an issue that needed captured."
+      label: Ticket Description
+      description: Please provide details to accurately reflect why this ticket is being captured and also what is necessary to resolve.
+      placeholder: Provide details describing your lead up to needing this issue as well as any resolution or requirements for resolving or working on this more.
+      value: "While (working on or discussing) (issue #000 or domain request validation) I discovered there was (a missing workflow, an improvement, a missing feature). To resolve this (more research, a new feature, a new field, an interview) is required. Provide any links, screenshots, or mockups which would further detail the description."
     validations:
       required: true
   - type: dropdown
     id: type
     attributes:
       label: Issue Type
-      description: What kind of role would take action on your issue?
+      description: Does this work require
       options:
-        - research (Default)
+        - discovery (Default)
         - development
-        - product team
+        - design review
     validations:
       required: true
   - type: textarea
@@ -34,4 +34,4 @@ body:
     attributes:
       label: Link dependent issues
       description: If this ticket is dependent on another issue or blocks a current issue, please link.
-      render: shell
+      render: shell
\ No newline at end of file

From 7d70fb40e0dbf0f3ca6fb8812f5bb1afe0036f62 Mon Sep 17 00:00:00 2001
From: brandonlenz <brandonalenz@gmail.com>
Date: Wed, 24 May 2023 11:08:57 -0400
Subject: [PATCH 41/72] PR Feedback:

- Link to official documentation
- Link to CODEOWNERS file
- Add comments to CODEOWNERS for clarity at a brief glance
- Markdown formatting
---
 .github/CODEOWNERS       |  3 +++
 docs/developer/README.md | 15 +++++++++------
 2 files changed, 12 insertions(+), 6 deletions(-)

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index af56b635f..3d7614620 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -1,4 +1,7 @@
 # For more information on CODEOWNERS, see the documentation: https://docs.github.com/en/repositories/managing-your-repositorys-settings-and-features/customizing-your-repository/about-code-owners
 
+# Default owners for all files
 * @abroddrick
+
+# Owners for documentation
 docs/* @cisagov/dotgov
diff --git a/docs/developer/README.md b/docs/developer/README.md
index 2a13cf58b..d96fa7253 100644
--- a/docs/developer/README.md
+++ b/docs/developer/README.md
@@ -83,14 +83,17 @@ The endpoint /admin can be used to view and manage site content, including but n
 
 ## Adding to CODEOWNERS (optional)
 
-The CODEOWNERS file sets the tagged individuals as default PR reviewers on any commit regarding the content specified. An asterisk indicates a user will be added as PR reviewer for all files in the repo, while "subfolder/*" indicates a particular folder for which a user(s) will be added as default PR reviewer. To add yourself as code owner for all files:
+The CODEOWNERS file sets the tagged individuals as default reviewers on any Pull Request that changes files that they are marked as owners of.
 
-1. Go to .github\CODEOWNERS
-2. where you see "* @abroddrick" add a space followed by your github tag. For instance if your github username was @NewGithubUsername you would do the following:
+1. Go to [.github\CODEOWNERS](../../.github/CODEOWNERS)
+2. Following the [CODEOWNERS documentation](https://docs.github.com/en/repositories/managing-your-repositorys-settings-and-features/customizing-your-repository/about-code-owners), add yourself as owner to files that you wish to be automatically requested as reviewer for.
+   
+   For example, if you wish to add yourself as a default reviewer for all pull requests, add your GitHub username to the same line as the `*` designator:  
 
-```
-* @abroddrick @NewGithubUsername
-```
+   ```diff
+   - * @abroddrick
+   + * @abroddrick @YourGitHubUser
+   ```
 
 3. Create a pull request to finalize your changes
 

From c8dbd45c00393eb9df9e71438cce962c2d1c3017 Mon Sep 17 00:00:00 2001
From: Katherine-Osos <119689946+Katherine-Osos@users.noreply.github.com>
Date: Wed, 24 May 2023 14:52:26 -0500
Subject: [PATCH 42/72] Fixed a typo (#650)

---
 src/registrar/templates/includes/summary_item.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index c902f1980..934c5566e 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -17,7 +17,7 @@
           {% for item in value %}
           <li>
             <p class="text-semibold margin-top-1 margin-bottom-0">
-              Conatct {{forloop.counter}}
+              Contact {{forloop.counter}}
             </p>
             {% include "includes/contact.html" with contact=item %}</li>
           {% empty %}

From 10185553de21bfc882f9a439df9817e25805408b Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Wed, 24 May 2023 15:28:52 -0500
Subject: [PATCH 43/72] Add abstract views that enforce permissions.

---
 src/registrar/config/urls.py                  |  4 +-
 .../templates/application_status.html         |  2 +-
 src/registrar/tests/test_views.py             | 40 ++++++++++-
 src/registrar/views/application.py            | 38 ++++++-----
 src/registrar/views/domain.py                 | 33 ++++-----
 src/registrar/views/utility/__init__.py       |  7 +-
 src/registrar/views/utility/mixins.py         | 47 ++++++++++++-
 .../views/utility/permission_views.py         | 67 +++++++++++++++++++
 8 files changed, 194 insertions(+), 44 deletions(-)
 create mode 100644 src/registrar/views/utility/permission_views.py

diff --git a/src/registrar/config/urls.py b/src/registrar/config/urls.py
index e903b4e8f..126be0293 100644
--- a/src/registrar/config/urls.py
+++ b/src/registrar/config/urls.py
@@ -59,12 +59,12 @@ urlpatterns = [
     ),
     path(
         "application/<int:pk>/withdraw",
-        views.ApplicationWithdraw.as_view(),
+        views.ApplicationWithdrawConfirmation.as_view(),
         name="application-withdraw-confirmation",
     ),
     path(
         "application/<int:pk>/withdrawconfirmed",
-        views.ApplicationWithdraw.updatestatus,
+        views.ApplicationWithdrawn.as_view(),
         name="application-withdrawn",
     ),
     path("health/", views.health),
diff --git a/src/registrar/templates/application_status.html b/src/registrar/templates/application_status.html
index fadd8ec36..054e04460 100644
--- a/src/registrar/templates/application_status.html
+++ b/src/registrar/templates/application_status.html
@@ -31,7 +31,7 @@
     <p> <b class="review__step__name">Last updated:</b> {{domainapplication.updated_at|date:"F j, Y"}}<br>
     <b class="review__step__name">Request #:</b> {{domainapplication.id}}</p>
     <p>{% include "includes/domain_application.html" %}</p>
-    <p><a href="{% url 'application-withdraw-confirmation' domainapplication.id %}" class="usa-button usa-button--outline withdraw_outline">
+    <p><a href="{% url 'application-withdraw-confirmation' pk=domainapplication.id %}" class="usa-button usa-button--outline withdraw_outline">
       Withdraw request</a>
     </p>
   </div>
diff --git a/src/registrar/tests/test_views.py b/src/registrar/tests/test_views.py
index 959183f34..928ba2b6f 100644
--- a/src/registrar/tests/test_views.py
+++ b/src/registrar/tests/test_views.py
@@ -1136,7 +1136,7 @@ class TestDomainDetail(TestWithDomainPermissions, WebTest):
         self.assertContains(response, "Add another user")
 
     def test_domain_user_add_form(self):
-        """Adding a user works."""
+        """Adding an existing user works."""
         other_user, _ = get_user_model().objects.get_or_create(
             email="mayor@igorville.gov"
         )
@@ -1219,6 +1219,22 @@ class TestDomainDetail(TestWithDomainPermissions, WebTest):
         with self.assertRaises(DomainInvitation.DoesNotExist):
             DomainInvitation.objects.get(id=invitation.id)
 
+    def test_domain_invitation_cancel_no_permissions(self):
+        """Posting to the delete view as a different user should fail."""
+        EMAIL = "mayor@igorville.gov"
+        invitation, _ = DomainInvitation.objects.get_or_create(
+            domain=self.domain, email=EMAIL
+        )
+
+        other_user = User()
+        other_user.save()
+        self.client.force_login(other_user)
+        with less_console_noise():  # permission denied makes console errors
+            result = self.client.post(
+                reverse("invitation-delete", kwargs={"pk": invitation.id})
+            )
+        self.assertEqual(result.status_code, 403)
+
     @boto3_mocking.patching
     def test_domain_invitation_flow(self):
         """Send an invitation to a new user, log in and load the dashboard."""
@@ -1330,6 +1346,7 @@ class TestApplicationStatus(TestWithUser, WebTest):
     def setUp(self):
         super().setUp()
         self.app.set_user(self.user.username)
+        self.client.force_login(self.user)
 
     def _completed_application(
         self,
@@ -1443,3 +1460,24 @@ class TestApplicationStatus(TestWithUser, WebTest):
         )
         home_page = self.app.get("/")
         self.assertContains(home_page, "Withdrawn")
+
+    def test_application_status_no_permissions(self):
+        """Can't access applications without being the creator."""
+        application = self._completed_application()
+        other_user = User()
+        other_user.save()
+        application.creator = other_user
+        application.save()
+
+        # PermissionDeniedErrors make lots of noise in test output
+        with less_console_noise():
+            for url_name in [
+                "application-status",
+                "application-withdraw-confirmation",
+                "application-withdrawn",
+            ]:
+                with self.subTest(url_name=url_name):
+                    page = self.client.get(
+                        reverse(url_name, kwargs={"pk": application.pk})
+                    )
+                    self.assertEqual(page.status_code, 403)
diff --git a/src/registrar/views/application.py b/src/registrar/views/application.py
index f08c80a24..e0c9773f6 100644
--- a/src/registrar/views/application.py
+++ b/src/registrar/views/application.py
@@ -14,7 +14,7 @@ from registrar.models import DomainApplication
 from registrar.utility import StrEnum
 from registrar.views.utility import StepsHelper
 
-from .utility import DomainPermission
+from .utility import DomainApplicationPermissionView
 
 logger = logging.getLogger(__name__)
 
@@ -478,29 +478,31 @@ class Finished(ApplicationWizard):
         return render(self.request, self.template_name, context)
 
 
-class ApplicationStatus(generic.DetailView):
-    model = DomainApplication
+class ApplicationStatus(DomainApplicationPermissionView):
     template_name = "application_status.html"
 
-    def get_context_data(self, **kwargs):
-        """Get context details to process information from application"""
-        context = super(ApplicationStatus, self).get_context_data(**kwargs)
-        return context
 
+class ApplicationWithdrawConfirmation(DomainApplicationPermissionView):
+    """This page will ask user to confirm if they want to withdraw
 
-class ApplicationWithdraw(LoginRequiredMixin, generic.DetailView, DomainPermission):
-    model = DomainApplication
-    template_name = "application_withdraw_confirmation.html"
-    """ The page above will display asking user to confirm if they want to withdraw;
-
-    Note it uses "DomainPermission" from Domain to ensure that the person who
-    applied only have access to withdraw the request
+    The DomainApplicationPermissionView restricts access so that only the
+    `creator` of the application may withdraw it.
     """
 
-    def updatestatus(request, pk):
-        """If user click on withdraw confirm button, it will be updated to withdraw
-        and send back to homepage"""
-        application = DomainApplication.objects.get(id=pk)
+    template_name = "application_withdraw_confirmation.html"
+
+
+class ApplicationWithdrawn(DomainApplicationPermissionView):
+    # this view renders no template
+    template_name = None
+
+    def get(self, *args, **kwargs):
+        """View class that does the actual withdrawing.
+
+        If user click on withdraw confirm button, this view updates the status to withdraw
+        and send back to homepage.
+        """
+        application = DomainApplication.objects.get(id=self.kwargs["pk"])
         application.status = "withdrawn"
         application.save()
         return HttpResponseRedirect(reverse("home"))
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index b5962c398..e954ffefc 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -1,4 +1,9 @@
-"""View for a single Domain."""
+"""Views for a single Domain.
+
+Authorization is handled by the `DomainPermissionView`. To ensure that only
+authorized users can see information on a domain, every view here should
+inherit from `DomainPermissionView` (or DomainInvitationPermissionDeleteView).
+"""
 
 import logging
 
@@ -14,28 +19,24 @@ from registrar.models import Domain, DomainInvitation, User, UserDomainRole
 
 from ..forms import DomainAddUserForm, NameserverFormset, DomainSecurityEmailForm
 from ..utility.email import send_templated_email, EmailSendingError
-from .utility import DomainPermission
+from .utility import DomainPermissionView, DomainInvitationPermissionDeleteView
 
 
 logger = logging.getLogger(__name__)
 
 
-class DomainView(DomainPermission, DetailView):
+class DomainView(DomainPermissionView):
 
     """Domain detail overview page."""
 
-    model = Domain
     template_name = "domain_detail.html"
-    context_object_name = "domain"
 
 
-class DomainNameserversView(DomainPermission, FormMixin, DetailView):
+class DomainNameserversView(DomainPermissionView, FormMixin):
 
     """Domain nameserver editing view."""
 
-    model = Domain
     template_name = "domain_nameservers.html"
-    context_object_name = "domain"
     form_class = NameserverFormset
 
     def get_initial(self):
@@ -96,13 +97,11 @@ class DomainNameserversView(DomainPermission, FormMixin, DetailView):
         return super().form_valid(formset)
 
 
-class DomainSecurityEmailView(DomainPermission, FormMixin, DetailView):
+class DomainSecurityEmailView(DomainPermissionView, FormMixin):
 
     """Domain security email editing view."""
 
-    model = Domain
     template_name = "domain_security_email.html"
-    context_object_name = "domain"
     form_class = DomainSecurityEmailForm
 
     def get_initial(self):
@@ -141,16 +140,14 @@ class DomainSecurityEmailView(DomainPermission, FormMixin, DetailView):
         return redirect(self.get_success_url())
 
 
-class DomainUsersView(DomainPermission, DetailView):
+class DomainUsersView(DomainPermissionView):
 
     """User management page in the domain details."""
 
-    model = Domain
     template_name = "domain_users.html"
-    context_object_name = "domain"
 
 
-class DomainAddUserView(DomainPermission, FormMixin, DetailView):
+class DomainAddUserView(DomainPermissionView, FormMixin):
 
     """Inside of a domain's user management, a form for adding users.
 
@@ -159,7 +156,6 @@ class DomainAddUserView(DomainPermission, FormMixin, DetailView):
     """
 
     template_name = "domain_add_user.html"
-    model = Domain
     form_class = DomainAddUserForm
 
     def get_success_url(self):
@@ -239,10 +235,7 @@ class DomainAddUserView(DomainPermission, FormMixin, DetailView):
         return redirect(self.get_success_url())
 
 
-class DomainInvitationDeleteView(SuccessMessageMixin, DeleteView):
-    model = DomainInvitation
-    object: DomainInvitation  # workaround for type mismatch in DeleteView
-
+class DomainInvitationDeleteView(DomainInvitationPermissionDeleteView):
     def get_success_url(self):
         return reverse("domain-users", kwargs={"pk": self.object.domain.id})
 
diff --git a/src/registrar/views/utility/__init__.py b/src/registrar/views/utility/__init__.py
index a492b5cb3..6c656c614 100644
--- a/src/registrar/views/utility/__init__.py
+++ b/src/registrar/views/utility/__init__.py
@@ -1,3 +1,8 @@
 from .steps_helper import StepsHelper
 from .always_404 import always_404
-from .mixins import DomainPermission
+
+from .permission_views import (
+    DomainPermissionView,
+    DomainApplicationPermissionView,
+    DomainInvitationPermissionDeleteView,
+)
diff --git a/src/registrar/views/utility/mixins.py b/src/registrar/views/utility/mixins.py
index 71129a1f6..890b10a02 100644
--- a/src/registrar/views/utility/mixins.py
+++ b/src/registrar/views/utility/mixins.py
@@ -2,7 +2,7 @@
 
 from django.contrib.auth.mixins import PermissionRequiredMixin
 
-from registrar.models import UserDomainRole
+from registrar.models import UserDomainRole, DomainApplication, DomainInvitation
 
 
 class PermissionsLoginMixin(PermissionRequiredMixin):
@@ -35,3 +35,48 @@ class DomainPermission(PermissionsLoginMixin):
 
         # if we need to check more about the nature of role, do it here.
         return True
+
+
+class DomainApplicationPermission(PermissionsLoginMixin):
+
+    """Does the logged-in user have access to this domain application?"""
+
+    def has_permission(self):
+        """Check if this user has access to this domain application.
+
+        The user is in self.request.user and the domain needs to be looked
+        up from the domain's primary key in self.kwargs["pk"]
+        """
+        if not self.request.user.is_authenticated:
+            return False
+
+        # user needs to be the creator of the application
+        # this query is empty if there isn't a domain application with this
+        # id and this user as creator
+        if not DomainApplication.objects.filter(
+            creator=self.request.user, id=self.kwargs["pk"]
+        ).exists():
+            return False
+
+        return True
+
+
+class DomainInvitationPermission(PermissionsLoginMixin):
+
+    """Does the logged-in user have access to this domain invitation?
+
+    A user has access to a domain invitation if they have a role on the
+    associated domain.
+    """
+
+    def has_permission(self):
+        """Check if this user has a role on the domain of this invitation."""
+        if not self.request.user.is_authenticated:
+            return False
+
+        if not DomainInvitation.objects.filter(
+            id=self.kwargs["pk"], domain__permissions__user=self.request.user
+        ).exists():
+            return False
+
+        return True
diff --git a/src/registrar/views/utility/permission_views.py b/src/registrar/views/utility/permission_views.py
new file mode 100644
index 000000000..d5f4525d8
--- /dev/null
+++ b/src/registrar/views/utility/permission_views.py
@@ -0,0 +1,67 @@
+"""View classes that enforce authorization."""
+
+import abc  # abstract base class
+
+from django.views.generic import DetailView, DeleteView
+
+from registrar.models import Domain, DomainApplication, DomainInvitation
+
+from .mixins import (
+    DomainPermission,
+    DomainApplicationPermission,
+    DomainInvitationPermission,
+)
+
+
+class DomainPermissionView(DomainPermission, DetailView, abc.ABC):
+
+    """Abstract base view for domains that enforces permissions.
+
+    This abstract view cannot be instantiated. Actual views must specify `template_name`.
+    """
+
+    # DetailView property for what model this is viewing
+    model = Domain
+    # variable name in template context for the model object
+    context_object_name = "domain"
+
+    # Abstract property enforces NotImplementedError on an attribute.
+    @property
+    @abc.abstractmethod
+    def template_name(self):
+        raise NotImplementedError
+
+
+class DomainApplicationPermissionView(DomainApplicationPermission, DetailView, abc.ABC):
+
+    """Abstract base view for domain applications that enforces permissions
+
+    This abstract view cannot be instantiated. Actual views must specify `template_name`.
+    """
+
+    # DetailView property for what model this is viewing
+    model = DomainApplication
+    # variable name in template context for the model object
+    context_object_name = "domainapplication"
+
+    # Abstract property enforces NotImplementedError on an attribute.
+    @property
+    @abc.abstractmethod
+    def template_name(self):
+        raise NotImplementedError
+
+
+class DomainInvitationPermissionDeleteView(
+    DomainInvitationPermission, DeleteView, abc.ABC
+):
+
+    """Abstract view for deleting a domain invitation.
+
+    This one is fairly specialized, but this is the only thing that we do
+    right now with domain invitations. We still have the full
+    `DomainInvitationPermission` class, but here we just pair it with a
+    DeleteView.
+    """
+
+    model = DomainInvitation
+    object: DomainInvitation  # workaround for type mismatch in DeleteView

From a277336a067aad3be0cd6d0fcdd6d2aa8e789d3b Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Wed, 24 May 2023 15:38:26 -0500
Subject: [PATCH 44/72] fix linting errors

---
 src/registrar/views/application.py              |  7 +++----
 src/registrar/views/domain.py                   | 11 +++++++----
 src/registrar/views/utility/permission_views.py |  6 ++++--
 3 files changed, 14 insertions(+), 10 deletions(-)

diff --git a/src/registrar/views/application.py b/src/registrar/views/application.py
index e0c9773f6..b8454bf78 100644
--- a/src/registrar/views/application.py
+++ b/src/registrar/views/application.py
@@ -6,7 +6,6 @@ from django.shortcuts import redirect, render
 from django.urls import resolve, reverse
 from django.utils.translation import gettext_lazy as _
 from django.views.generic import TemplateView
-from django.views import generic
 from django.contrib import messages
 
 from registrar.forms import application_wizard as forms
@@ -494,13 +493,13 @@ class ApplicationWithdrawConfirmation(DomainApplicationPermissionView):
 
 class ApplicationWithdrawn(DomainApplicationPermissionView):
     # this view renders no template
-    template_name = None
+    template_name = ""
 
     def get(self, *args, **kwargs):
         """View class that does the actual withdrawing.
 
-        If user click on withdraw confirm button, this view updates the status to withdraw
-        and send back to homepage.
+        If user click on withdraw confirm button, this view updates the status
+        to withdraw and send back to homepage.
         """
         application = DomainApplication.objects.get(id=self.kwargs["pk"])
         application.status = "withdrawn"
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index e954ffefc..361175295 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -12,10 +12,9 @@ from django.contrib.messages.views import SuccessMessageMixin
 from django.db import IntegrityError
 from django.shortcuts import redirect
 from django.urls import reverse
-from django.views.generic import DetailView
-from django.views.generic.edit import DeleteView, FormMixin
+from django.views.generic.edit import FormMixin
 
-from registrar.models import Domain, DomainInvitation, User, UserDomainRole
+from registrar.models import DomainInvitation, User, UserDomainRole
 
 from ..forms import DomainAddUserForm, NameserverFormset, DomainSecurityEmailForm
 from ..utility.email import send_templated_email, EmailSendingError
@@ -235,7 +234,11 @@ class DomainAddUserView(DomainPermissionView, FormMixin):
         return redirect(self.get_success_url())
 
 
-class DomainInvitationDeleteView(DomainInvitationPermissionDeleteView):
+class DomainInvitationDeleteView(
+    DomainInvitationPermissionDeleteView, SuccessMessageMixin
+):
+    object: DomainInvitation  # workaround for type mismatch in DeleteView
+
     def get_success_url(self):
         return reverse("domain-users", kwargs={"pk": self.object.domain.id})
 
diff --git a/src/registrar/views/utility/permission_views.py b/src/registrar/views/utility/permission_views.py
index d5f4525d8..e52ed102c 100644
--- a/src/registrar/views/utility/permission_views.py
+++ b/src/registrar/views/utility/permission_views.py
@@ -17,7 +17,8 @@ class DomainPermissionView(DomainPermission, DetailView, abc.ABC):
 
     """Abstract base view for domains that enforces permissions.
 
-    This abstract view cannot be instantiated. Actual views must specify `template_name`.
+    This abstract view cannot be instantiated. Actual views must specify
+    `template_name`.
     """
 
     # DetailView property for what model this is viewing
@@ -36,7 +37,8 @@ class DomainApplicationPermissionView(DomainApplicationPermission, DetailView, a
 
     """Abstract base view for domain applications that enforces permissions
 
-    This abstract view cannot be instantiated. Actual views must specify `template_name`.
+    This abstract view cannot be instantiated. Actual views must specify
+    `template_name`.
     """
 
     # DetailView property for what model this is viewing

From 0df2d5ff5b534da6933a133c697b44a3a1e26047 Mon Sep 17 00:00:00 2001
From: brandonlenz <brandonalenz@gmail.com>
Date: Thu, 25 May 2023 10:11:12 -0400
Subject: [PATCH 45/72] For fields where formatting is important, place
 examples in description so they can be easily copy/pasted, but do not prefill

---
 .github/ISSUE_TEMPLATE/bug.yml | 17 +++++++++++------
 1 file changed, 11 insertions(+), 6 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/bug.yml b/.github/ISSUE_TEMPLATE/bug.yml
index c01761f1c..51ec2d81f 100644
--- a/.github/ISSUE_TEMPLATE/bug.yml
+++ b/.github/ISSUE_TEMPLATE/bug.yml
@@ -24,25 +24,30 @@ body:
     id: steps-to-reproduce
     attributes:
       label: Steps to Reproduce
-      description: "How can the issue be reliably reproduced? feel free to include screenshots or other supporting artifacts"
-      placeholder: |
+      description: |
+        How can the issue be reliably reproduced? Feel free to include screenshots or other supporting artifacts
+        
         Example:
         1. In the test environment, fill out the application for a new domain
         2. Click the button to trigger a save/submit on the final page and complete the application 
         3. See the error
+      value: |
+        1.
     validations:
       required: true
   - type: textarea
     id: environment
     attributes:
-      label: Environment
-      description: "Where is this issue occurring? If related to development environment, list the specific relevant tool versions"
-      placeholder: |
+      label: Environment (optional)
+      description: |
+        Where is this issue occurring? If related to development environment, list the relevant tool versions.
+        
         Example:
+        - Environment: Sandbox
         - Browser: Chrome x.y.z
         - Python: x.y.z
   - type: textarea
     id: additional-context
     attributes:
-      label: Additional Context
+      label: Additional Context (optional)
       description: "Please include additional references, screenshots, documentation, etc. that are relevant"

From 0632ff1fe7aa8ad918b51aef43b72aab51baa5eb Mon Sep 17 00:00:00 2001
From: brandonlenz <brandonalenz@gmail.com>
Date: Thu, 25 May 2023 10:40:54 -0400
Subject: [PATCH 46/72] Add a help section

---
 .github/ISSUE_TEMPLATE/bug.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/ISSUE_TEMPLATE/bug.yml b/.github/ISSUE_TEMPLATE/bug.yml
index 51ec2d81f..3a9227e81 100644
--- a/.github/ISSUE_TEMPLATE/bug.yml
+++ b/.github/ISSUE_TEMPLATE/bug.yml
@@ -4,6 +4,10 @@ title: "[Bug]: "
 labels: ["bug"]
 
 body:
+  - type: markdown
+    id: help
+    attributes:
+      value: GitHub Issues use [GitHub Flavored Markdown](https://docs.github.com/en/get-started/writing-on-github/getting-started-with-writing-and-formatting-on-github/basic-writing-and-formatting-syntax) for formatting.
   - type: textarea
     id: current-behavior
     attributes:

From 86d1ca9609bd0258b074d609e1be1d9ce3c07f1a Mon Sep 17 00:00:00 2001
From: brandonlenz <brandonalenz@gmail.com>
Date: Thu, 25 May 2023 10:44:24 -0400
Subject: [PATCH 47/72] Make help section a "note"

---
 .github/ISSUE_TEMPLATE/bug.yml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/ISSUE_TEMPLATE/bug.yml b/.github/ISSUE_TEMPLATE/bug.yml
index 3a9227e81..e3e6a6f23 100644
--- a/.github/ISSUE_TEMPLATE/bug.yml
+++ b/.github/ISSUE_TEMPLATE/bug.yml
@@ -7,7 +7,9 @@ body:
   - type: markdown
     id: help
     attributes:
-      value: GitHub Issues use [GitHub Flavored Markdown](https://docs.github.com/en/get-started/writing-on-github/getting-started-with-writing-and-formatting-on-github/basic-writing-and-formatting-syntax) for formatting.
+      value: |
+        > **Note**
+        > GitHub Issues use [GitHub Flavored Markdown](https://docs.github.com/en/get-started/writing-on-github/getting-started-with-writing-and-formatting-on-github/basic-writing-and-formatting-syntax) for formatting.
   - type: textarea
     id: current-behavior
     attributes:

From a40146a914592cb2da20eec9da1d7cbd69695f68 Mon Sep 17 00:00:00 2001
From: Seamus Johnston <seamus.johnston@gsa.gov>
Date: Wed, 24 May 2023 15:41:52 -0500
Subject: [PATCH 48/72] Better error handling for EPP

---
 src/epplibwrapper/__init__.py |  5 +++
 src/epplibwrapper/client.py   | 51 +++++++++++-------------
 src/epplibwrapper/errors.py   | 74 ++++++++++++++++++++++++++++++++++-
 3 files changed, 100 insertions(+), 30 deletions(-)

diff --git a/src/epplibwrapper/__init__.py b/src/epplibwrapper/__init__.py
index ab3b63080..b306dbd0e 100644
--- a/src/epplibwrapper/__init__.py
+++ b/src/epplibwrapper/__init__.py
@@ -43,10 +43,15 @@ except NameError:
 # Attn: these imports should NOT be at the top of the file
 try:
     from .client import CLIENT, commands
+    from .errors import RegistryError, ErrorCode
+    from epplib.models import common
 except ImportError:
     pass
 
 __all__ = [
     "CLIENT",
     "commands",
+    "common",
+    "ErrorCode",
+    "RegistryError",
 ]
diff --git a/src/epplibwrapper/client.py b/src/epplibwrapper/client.py
index 7ddf0a03e..f91e6dbd2 100644
--- a/src/epplibwrapper/client.py
+++ b/src/epplibwrapper/client.py
@@ -67,54 +67,47 @@ class EPPLibWrapper:
     def _send(self, command):
         """Helper function used by `send`."""
         try:
+            cmd_type = command.__class__.__name__
             with self._connect as wire:
                 response = wire.send(command)
         except (ValueError, ParsingError) as err:
-            logger.warning(
-                "%s failed to execute due to some syntax error."
-                % command.__class__.__name__,
-                exc_info=True,
-            )
-            raise RegistryError() from err
+            message = "%s failed to execute due to some syntax error." % cmd_type
+            logger.warning(message, exc_info=True)
+            raise RegistryError(message) from err
         except TransportError as err:
-            logger.warning(
-                "%s failed to execute due to a connection error."
-                % command.__class__.__name__,
-                exc_info=True,
-            )
-            raise RegistryError() from err
+            message = "%s failed to execute due to a connection error." % cmd_type
+            logger.warning(message, exc_info=True)
+            raise RegistryError(message) from err
         except LoginError as err:
-            logger.warning(
-                "%s failed to execute due to a registry login error."
-                % command.__class__.__name__,
-                exc_info=True,
-            )
-            raise RegistryError() from err
+            message = "%s failed to execute due to a registry login error." % cmd_type
+            logger.warning(message, exc_info=True)
+            raise RegistryError(message) from err
         except Exception as err:
-            logger.warning(
-                "%s failed to execute due to an unknown error."
-                % command.__class__.__name__,
-                exc_info=True,
-            )
-            raise RegistryError() from err
+            message = "%s failed to execute due to an unknown error." % cmd_type
+            logger.warning(message, exc_info=True)
+            raise RegistryError(message) from err
         else:
             if response.code >= 2000:
-                raise RegistryError(response.msg)
+                raise RegistryError(response.msg, code=response.code)
             else:
                 return response
 
-    def send(self, command):
+    def send(self, command, *, cleaned=False):
         """Login, send the command, then close the connection. Tries 3 times."""
+        # try to prevent use of this method without appropriate safeguards
+        if not cleaned:
+            raise ValueError("Please sanitize user input before sending it.")
+
         counter = 0  # we'll try 3 times
         while True:
             try:
                 return self._send(command)
             except RegistryError as err:
-                if counter == 3:  # don't try again
-                    raise err
-                else:
+                if err.should_retry() and counter < 3:
                     counter += 1
                     sleep((counter * 50) / 1000)  # sleep 50 ms to 150 ms
+                else:  # don't try again
+                    raise err
 
 
 try:
diff --git a/src/epplibwrapper/errors.py b/src/epplibwrapper/errors.py
index c3028e0c4..7e45633a7 100644
--- a/src/epplibwrapper/errors.py
+++ b/src/epplibwrapper/errors.py
@@ -1,5 +1,77 @@
+from enum import IntEnum
+
+
+class ErrorCode(IntEnum):
+    """
+    Overview of registry response codes from RFC 5730. See RFC 5730 for full text.
+
+        - 1000 - 1500 Success
+        - 2000 - 2308 Registrar did something silly
+        - 2400 - 2500 Registry did something silly
+        - 2501 - 2502 Something malicious or abusive may have occurred
+    """
+
+    COMMAND_COMPLETED_SUCCESSFULLY = 1000
+    COMMAND_COMPLETED_SUCCESSFULLY_ACTION_PENDING = 1001
+    COMMAND_COMPLETED_SUCCESSFULLY_NO_MESSAGES = 1300
+    COMMAND_COMPLETED_SUCCESSFULLY_ACK_TO_DEQUEUE = 1301
+    COMMAND_COMPLETED_SUCCESSFULLY_ENDING_SESSION = 1500
+
+    UNKNOWN_COMMAND = 2000
+    COMMAND_SYNTAX_ERROR = 2001
+    COMMAND_USE_ERROR = 2002
+    REQUIRED_PARAMETER_MISSING = 2003
+    PARAMETER_VALUE_RANGE_ERROR = 2004
+    PARAMETER_VALUE_SYNTAX_ERROR = 2005
+    UNIMPLEMENTED_PROTOCOL_VERSION = 2100
+    UNIMPLEMENTED_COMMAND = 2101
+    UNIMPLEMENTED_OPTION = 2102
+    UNIMPLEMENTED_EXTENSION = 2103
+    BILLING_FAILURE = 2104
+    OBJECT_IS_NOT_ELIGIBLE_FOR_RENEWAL = 2105
+    OBJECT_IS_NOT_ELIGIBLE_FOR_TRANSFER = 2106
+    AUTHENTICATION_ERROR = 2200
+    AUTHORIZATION_ERROR = 2201
+    INVALID_AUTHORIZATION_INFORMATION = 2202
+    OBJECT_PENDING_TRANSFER = 2300
+    OBJECT_NOT_PENDING_TRANSFER = 2301
+    OBJECT_EXISTS = 2302
+    OBJECT_DOES_NOT_EXIST = 2303
+    OBJECT_STATUS_PROHIBITS_OPERATION = 2304
+    OBJECT_ASSOCIATION_PROHIBITS_OPERATION = 2305
+    PARAMETER_VALUE_POLICY_ERROR = 2306
+    UNIMPLEMENTED_OBJECT_SERVICE = 2307
+    DATA_MANAGEMENT_POLICY_VIOLATION = 2308
+
+    COMMAND_FAILED = 2400
+    COMMAND_FAILED_SERVER_CLOSING_CONNECTION = 2500
+
+    AUTHENTICATION_ERROR_SERVER_CLOSING_CONNECTION = 2501
+    SESSION_LIMIT_EXCEEDED_SERVER_CLOSING_CONNECTION = 2502
+
+
 class RegistryError(Exception):
-    pass
+    """
+    Overview of registry response codes from RFC 5730. See RFC 5730 for full text.
+
+        - 1000 - 1500 Success
+        - 2000 - 2308 Registrar did something silly
+        - 2400 - 2500 Registry did something silly
+        - 2501 - 2502 Something malicious or abusive may have occurred
+    """
+
+    def __init__(self, *args, code=None, **kwargs):
+        super().__init__(*args, **kwargs)
+        self.code = code
+
+    def should_retry(self):
+        return self.code == ErrorCode.COMMAND_FAILED
+
+    def is_server_error(self):
+        return self.code is not None and (self.code >= 2400 and self.code <= 2500)
+
+    def is_client_error(self):
+        return self.code is not None and (self.code >= 2000 and self.code <= 2308)
 
 
 class LoginError(RegistryError):

From 93427ad0727196c0411337125e64c45f8fbdac2e Mon Sep 17 00:00:00 2001
From: Seamus Johnston <seamus.johnston@gsa.gov>
Date: Tue, 2 May 2023 09:59:26 -0500
Subject: [PATCH 49/72] Update fields and help text for Public Contact

---
 ...main_publiccontact_registry_id_and_more.py | 122 +++++++++++++
 src/registrar/models/public_contact.py        | 162 ++++++++++++++----
 2 files changed, 254 insertions(+), 30 deletions(-)
 create mode 100644 src/registrar/migrations/0021_publiccontact_domain_publiccontact_registry_id_and_more.py

diff --git a/src/registrar/migrations/0021_publiccontact_domain_publiccontact_registry_id_and_more.py b/src/registrar/migrations/0021_publiccontact_domain_publiccontact_registry_id_and_more.py
new file mode 100644
index 000000000..35e07fe71
--- /dev/null
+++ b/src/registrar/migrations/0021_publiccontact_domain_publiccontact_registry_id_and_more.py
@@ -0,0 +1,122 @@
+# Generated by Django 4.2.1 on 2023-05-25 15:03
+
+from django.db import migrations, models
+import django.db.models.deletion
+import registrar.models.public_contact
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("registrar", "0020_remove_domaininformation_security_email"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="publiccontact",
+            name="domain",
+            field=models.ForeignKey(
+                default=1,
+                on_delete=django.db.models.deletion.PROTECT,
+                related_name="contacts",
+                to="registrar.domain",
+            ),
+            preserve_default=False,
+        ),
+        migrations.AddField(
+            model_name="publiccontact",
+            name="registry_id",
+            field=models.CharField(
+                default=registrar.models.public_contact.get_id,
+                help_text="Auto generated ID to track this contact in the registry",
+                max_length=16,
+            ),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="cc",
+            field=models.TextField(help_text="Contact's country code"),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="city",
+            field=models.TextField(help_text="Contact's city"),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="contact_type",
+            field=models.CharField(
+                choices=[
+                    ("registrant", "Registrant"),
+                    ("administrative", "Administrative"),
+                    ("technical", "Technical"),
+                    ("security", "Security"),
+                ],
+                help_text="For which type of WHOIS contact",
+                max_length=14,
+            ),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="email",
+            field=models.TextField(help_text="Contact's email address"),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="fax",
+            field=models.TextField(
+                help_text="Contact's fax number (null ok). Must be in ITU.E164.2005 format.",
+                null=True,
+            ),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="name",
+            field=models.TextField(help_text="Contact's full name"),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="org",
+            field=models.TextField(
+                help_text="Contact's organization (null ok)", null=True
+            ),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="pc",
+            field=models.TextField(help_text="Contact's postal code"),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="pw",
+            field=models.TextField(
+                help_text="Contact's authorization code. 16 characters minimum."
+            ),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="sp",
+            field=models.TextField(help_text="Contact's state or province"),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="street1",
+            field=models.TextField(help_text="Contact's street"),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="street2",
+            field=models.TextField(help_text="Contact's street (null ok)", null=True),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="street3",
+            field=models.TextField(help_text="Contact's street (null ok)", null=True),
+        ),
+        migrations.AlterField(
+            model_name="publiccontact",
+            name="voice",
+            field=models.TextField(
+                help_text="Contact's phone number. Must be in ITU.E164.2005 format"
+            ),
+        ),
+    ]
diff --git a/src/registrar/models/public_contact.py b/src/registrar/models/public_contact.py
index c5517f8e0..f273b9ef1 100644
--- a/src/registrar/models/public_contact.py
+++ b/src/registrar/models/public_contact.py
@@ -1,8 +1,21 @@
+from datetime import datetime
+from random import choices
+from string import ascii_uppercase, ascii_lowercase, digits
+
 from django.db import models
 
 from .utility.time_stamped_model import TimeStampedModel
 
 
+def get_id():
+    """Generate a 16 character registry ID with a low probability of collision."""
+    day = datetime.today().strftime("%A")[:2]
+    rand = "".join(
+        choices(ascii_uppercase + ascii_lowercase + digits, k=14)  # nosec B311
+    )
+    return f"{day}{rand}"
+
+
 class PublicContact(TimeStampedModel):
     """Contact information intended to be published in WHOIS."""
 
@@ -14,37 +27,126 @@ class PublicContact(TimeStampedModel):
         TECHNICAL = "technical", "Technical"
         SECURITY = "security", "Security"
 
-    contact_type = models.CharField(max_length=14, choices=ContactTypeChoices.choices)
+    def save(self, *args, **kwargs):
+        """Save to the registry and also locally in the registrar database."""
+        if hasattr(self, "domain"):
+            match self.contact_type:
+                case PublicContact.ContactTypeChoices.REGISTRANT:
+                    self.domain.registrant = self
+                case PublicContact.ContactTypeChoices.ADMINISTRATIVE:
+                    self.domain.administrative_contact = self
+                case PublicContact.ContactTypeChoices.TECHNICAL:
+                    self.domain.technical_contact = self
+                case PublicContact.ContactTypeChoices.SECURITY:
+                    self.domain.security_contact = self
+        super().save(*args, **kwargs)
 
-    # contact's full name
-    name = models.TextField(null=False)
-    # contact's organization (null ok)
-    org = models.TextField(null=True)
-    # contact's street
-    street1 = models.TextField(null=False)
-    # contact's street (null ok)
-    street2 = models.TextField(null=True)
-    # contact's street (null ok)
-    street3 = models.TextField(null=True)
-    # contact's city
-    city = models.TextField(null=False)
-    # contact's state or province
-    sp = models.TextField(null=False)
-    # contact's postal code
-    pc = models.TextField(null=False)
-    # contact's country code
-    cc = models.TextField(null=False)
-    # contact's email address
-    email = models.TextField(null=False)
-    # contact's phone number
-    # Must be in ITU.E164.2005 format
-    voice = models.TextField(null=False)
-    # contact's fax number (null ok)
-    # Must be in ITU.E164.2005 format
-    fax = models.TextField(null=True)
-    # contact's authorization code
-    # 16 characters minium
-    pw = models.TextField(null=False)
+    contact_type = models.CharField(
+        max_length=14,
+        choices=ContactTypeChoices.choices,
+        help_text="For which type of WHOIS contact",
+    )
+    registry_id = models.CharField(
+        max_length=16,
+        default=get_id,
+        null=False,
+        help_text="Auto generated ID to track this contact in the registry",
+    )
+    domain = models.ForeignKey(
+        "registrar.Domain",
+        on_delete=models.PROTECT,
+        related_name="contacts",
+    )
+
+    name = models.TextField(null=False, help_text="Contact's full name")
+    org = models.TextField(null=True, help_text="Contact's organization (null ok)")
+    street1 = models.TextField(null=False, help_text="Contact's street")
+    street2 = models.TextField(null=True, help_text="Contact's street (null ok)")
+    street3 = models.TextField(null=True, help_text="Contact's street (null ok)")
+    city = models.TextField(null=False, help_text="Contact's city")
+    sp = models.TextField(null=False, help_text="Contact's state or province")
+    pc = models.TextField(null=False, help_text="Contact's postal code")
+    cc = models.TextField(null=False, help_text="Contact's country code")
+    email = models.TextField(null=False, help_text="Contact's email address")
+    voice = models.TextField(
+        null=False, help_text="Contact's phone number. Must be in ITU.E164.2005 format"
+    )
+    fax = models.TextField(
+        null=True,
+        help_text="Contact's fax number (null ok). Must be in ITU.E164.2005 format.",
+    )
+    pw = models.TextField(
+        null=False, help_text="Contact's authorization code. 16 characters minimum."
+    )
+
+    @classmethod
+    def get_default_registrant(cls):
+        return cls(
+            contact_type=PublicContact.ContactTypeChoices.REGISTRANT,
+            registry_id=get_id(),
+            name="CSD/CB – Attn: Cameron Dixon",
+            org="Cybersecurity and Infrastructure Security Agency",
+            street1="CISA – NGR STOP 0645",
+            street2="1110 N. Glebe Rd.",
+            city="Arlington",
+            sp="VA",
+            pc="20598-0645",
+            cc="US",
+            email="dotgov@cisa.dhs.gov",
+            voice="+1.8882820870",
+            pw="thisisnotapassword",
+        )
+
+    @classmethod
+    def get_default_administrative(cls):
+        return cls(
+            contact_type=PublicContact.ContactTypeChoices.ADMINISTRATIVE,
+            registry_id=get_id(),
+            name="Program Manager",
+            org="Cybersecurity and Infrastructure Security Agency",
+            street1="4200 Wilson Blvd.",
+            city="Arlington",
+            sp="VA",
+            pc="22201",
+            cc="US",
+            email="dotgov@cisa.dhs.gov",
+            voice="+1.8882820870",
+            pw="thisisnotapassword",
+        )
+
+    @classmethod
+    def get_default_technical(cls):
+        return cls(
+            contact_type=PublicContact.ContactTypeChoices.TECHNICAL,
+            registry_id=get_id(),
+            name="Registry Customer Service",
+            org="Cybersecurity and Infrastructure Security Agency",
+            street1="4200 Wilson Blvd.",
+            city="Arlington",
+            sp="VA",
+            pc="22201",
+            cc="US",
+            email="dotgov@cisa.dhs.gov",
+            voice="+1.8882820870",
+            pw="thisisnotapassword",
+        )
+
+    @classmethod
+    def get_default_security(cls):
+        return cls(
+            contact_type=PublicContact.ContactTypeChoices.SECURITY,
+            registry_id=get_id(),
+            name="Registry Customer Service",
+            org="Cybersecurity and Infrastructure Security Agency",
+            street1="4200 Wilson Blvd.",
+            city="Arlington",
+            sp="VA",
+            pc="22201",
+            cc="US",
+            email="dotgov@cisa.dhs.gov",
+            voice="+1.8882820870",
+            pw="thisisnotapassword",
+        )
 
     def __str__(self):
         return f"{self.name} <{self.email}>"

From 0bdc2520d12ff49912e03045bebad76d2083d13c Mon Sep 17 00:00:00 2001
From: brandonlenz <brandonalenz@gmail.com>
Date: Thu, 25 May 2023 17:25:17 -0400
Subject: [PATCH 50/72] Add user story template based loosely on bug template

---
 .github/ISSUE_TEMPLATE/user-story.yml | 62 +++++++++++++++++++++++++++
 1 file changed, 62 insertions(+)
 create mode 100644 .github/ISSUE_TEMPLATE/user-story.yml

diff --git a/.github/ISSUE_TEMPLATE/user-story.yml b/.github/ISSUE_TEMPLATE/user-story.yml
new file mode 100644
index 000000000..65ba2f4c1
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/user-story.yml
@@ -0,0 +1,62 @@
+name: User Story
+description: Capture actionable sprint work
+title: "[Story]: "
+labels: ["story"]
+
+body:
+  - type: markdown
+    id: help
+    attributes:
+      value: |
+        > **Note**
+        > GitHub Issues use [GitHub Flavored Markdown](https://docs.github.com/en/get-started/writing-on-github/getting-started-with-writing-and-formatting-on-github/basic-writing-and-formatting-syntax) for formatting.
+  - type: textarea
+    id: story
+    attributes:
+      label: User Story
+      description: |
+        Please add the "as a, I want, so that" details that describe the user story.
+        If more than one "as a, I want, so that" describes the story, add multiple. 
+        
+        Example:
+        As an administrator
+        I want the ability to approve a domain application
+        so that a request can be fulfilled and a new .gov domain can be provisioned
+      value: |
+        As a 
+        I want
+        so that
+    validations:
+      required: true
+  - type: textarea
+    id: acceptance-criteria
+    attributes:
+      label: Acceptance Criteria
+      description: |
+        Please add the acceptance criteria using one or more "given, when, then" formulae
+        
+        Example:
+        Given that I am an administrator
+        When I click to approve a domain application
+        Then the domain provisioning process should be initiated, and the applicant should receive an email update.
+      value: |
+        Given 
+        When 
+        Then
+    validations:
+      required: true
+  - type: textarea
+    id: additional-context
+    attributes:
+      label: Additional Context (optional)
+      description: "Please include additional references, screenshots, documentation, etc. that are relevant"
+  - type: textarea
+    id: issue-links
+    attributes:
+      label: Issue Links (optional)
+      description: |
+        What other issues does this story relate to and how?
+        
+        Example:
+        - 🚧 Blocked by: #123
+        - 🔄 Relates to: #234

From f1697f1c723a89a9e70993a8d65dd2fcd6c0b46d Mon Sep 17 00:00:00 2001
From: brandonlenz <brandonalenz@gmail.com>
Date: Thu, 25 May 2023 17:31:32 -0400
Subject: [PATCH 51/72] Specificity

---
 .github/ISSUE_TEMPLATE/user-story.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/ISSUE_TEMPLATE/user-story.yml b/.github/ISSUE_TEMPLATE/user-story.yml
index 65ba2f4c1..0ad2f2853 100644
--- a/.github/ISSUE_TEMPLATE/user-story.yml
+++ b/.github/ISSUE_TEMPLATE/user-story.yml
@@ -36,7 +36,7 @@ body:
         Please add the acceptance criteria using one or more "given, when, then" formulae
         
         Example:
-        Given that I am an administrator
+        Given that I am an administrator who has finished reviewing a domain application
         When I click to approve a domain application
         Then the domain provisioning process should be initiated, and the applicant should receive an email update.
       value: |

From 7a3e1bcb2c94960de8c0cddfb814d6136dcc92b6 Mon Sep 17 00:00:00 2001
From: Seamus Johnston <seamus.johnston@gsa.gov>
Date: Thu, 25 May 2023 13:53:02 -0500
Subject: [PATCH 52/72] Create a DraftDomain model for requested domains

---
 src/api/views.py                              | 10 +--
 src/registrar/fixtures.py                     |  8 ++-
 src/registrar/forms/application_wizard.py     | 12 ++--
 .../management/commands/load_domains_data.py  | 12 +---
 ...ainapplication_approved_domain_and_more.py | 66 +++++++++++++++++++
 src/registrar/models/__init__.py              |  3 +
 src/registrar/models/domain_application.py    | 24 +++++--
 src/registrar/models/domain_information.py    | 20 +++---
 src/registrar/models/draft_domain.py          | 22 +++++++
 src/registrar/models/utility/domain_helper.py | 64 ++++++++++++++++++
 src/registrar/models/website.py               | 32 ---------
 src/registrar/tests/test_emails.py            |  4 +-
 src/registrar/tests/test_models.py            | 58 +++-------------
 src/registrar/tests/test_models_domain.py     | 54 +++++++++++++++
 src/registrar/tests/test_views.py             |  7 +-
 15 files changed, 272 insertions(+), 124 deletions(-)
 create mode 100644 src/registrar/migrations/0022_draftdomain_domainapplication_approved_domain_and_more.py
 create mode 100644 src/registrar/models/draft_domain.py
 create mode 100644 src/registrar/models/utility/domain_helper.py
 create mode 100644 src/registrar/tests/test_models_domain.py

diff --git a/src/api/views.py b/src/api/views.py
index ab68a42d3..e19e060ef 100644
--- a/src/api/views.py
+++ b/src/api/views.py
@@ -37,7 +37,7 @@ def _domains():
     Fetch a file from DOMAIN_FILE_URL, parse the CSV for the domain,
     lowercase everything and return the list.
     """
-    Domain = apps.get_model("registrar.Domain")
+    DraftDomain = apps.get_model("registrar.DraftDomain")
     # 5 second timeout
     file_contents = requests.get(DOMAIN_FILE_URL, timeout=5).text
     domains = set()
@@ -46,7 +46,7 @@ def _domains():
         # get the domain before the first comma
         domain = line.split(",", 1)[0]
         # sanity-check the string we got from the file here
-        if Domain.string_could_be_domain(domain):
+        if DraftDomain.string_could_be_domain(domain):
             # lowercase everything when we put it in domains
             domains.add(domain.lower())
     return domains
@@ -75,12 +75,12 @@ def available(request, domain=""):
     Response is a JSON dictionary with the key "available" and value true or
     false.
     """
-    Domain = apps.get_model("registrar.Domain")
+    DraftDomain = apps.get_model("registrar.DraftDomain")
     # validate that the given domain could be a domain name and fail early if
     # not.
     if not (
-        Domain.string_could_be_domain(domain)
-        or Domain.string_could_be_domain(domain + ".gov")
+        DraftDomain.string_could_be_domain(domain)
+        or DraftDomain.string_could_be_domain(domain + ".gov")
     ):
         return JsonResponse(
             {"available": False, "message": DOMAIN_API_MESSAGES["invalid"]}
diff --git a/src/registrar/fixtures.py b/src/registrar/fixtures.py
index 0161527e1..438f6723b 100644
--- a/src/registrar/fixtures.py
+++ b/src/registrar/fixtures.py
@@ -5,7 +5,7 @@ from faker import Faker
 from registrar.models import (
     User,
     DomainApplication,
-    Domain,
+    DraftDomain,
     Contact,
     Website,
 )
@@ -216,11 +216,13 @@ class DomainApplicationFixture:
 
         if not da.requested_domain:
             if "requested_domain" in app and app["requested_domain"] is not None:
-                da.requested_domain, _ = Domain.objects.get_or_create(
+                da.requested_domain, _ = DraftDomain.objects.get_or_create(
                     name=app["requested_domain"]
                 )
             else:
-                da.requested_domain = Domain.objects.create(name=cls.fake_dot_gov())
+                da.requested_domain = DraftDomain.objects.create(
+                    name=cls.fake_dot_gov()
+                )
 
     @classmethod
     def _set_many_to_many_relations(cls, da: DomainApplication, app: dict):
diff --git a/src/registrar/forms/application_wizard.py b/src/registrar/forms/application_wizard.py
index 333c9c6b1..f04a3488e 100644
--- a/src/registrar/forms/application_wizard.py
+++ b/src/registrar/forms/application_wizard.py
@@ -11,7 +11,7 @@ from django.utils.safestring import mark_safe
 
 from api.views import DOMAIN_API_MESSAGES
 
-from registrar.models import Contact, DomainApplication, Domain
+from registrar.models import Contact, DomainApplication, DraftDomain, Domain
 from registrar.utility import errors
 
 logger = logging.getLogger(__name__)
@@ -453,7 +453,7 @@ class AlternativeDomainForm(RegistrarForm):
         """Validation code for domain names."""
         try:
             requested = self.cleaned_data.get("alternative_domain", None)
-            validated = Domain.validate(requested, blank_ok=True)
+            validated = DraftDomain.validate(requested, blank_ok=True)
         except errors.ExtraDotsError:
             raise forms.ValidationError(
                 DOMAIN_API_MESSAGES["extra_dots"], code="extra_dots"
@@ -498,7 +498,7 @@ class BaseAlternativeDomainFormSet(RegistrarFormSet):
 
     @classmethod
     def on_fetch(cls, query):
-        return [{"alternative_domain": domain.sld} for domain in query]
+        return [{"alternative_domain": Domain.sld(domain.name)} for domain in query]
 
     @classmethod
     def from_database(cls, obj):
@@ -524,7 +524,7 @@ class DotGovDomainForm(RegistrarForm):
                 requested_domain.name = f"{domain}.gov"
                 requested_domain.save()
             else:
-                requested_domain = Domain.objects.create(name=f"{domain}.gov")
+                requested_domain = DraftDomain.objects.create(name=f"{domain}.gov")
                 obj.requested_domain = requested_domain
                 obj.save()
 
@@ -535,14 +535,14 @@ class DotGovDomainForm(RegistrarForm):
         values = {}
         requested_domain = getattr(obj, "requested_domain", None)
         if requested_domain is not None:
-            values["requested_domain"] = requested_domain.sld
+            values["requested_domain"] = Domain.sld(requested_domain.name)
         return values
 
     def clean_requested_domain(self):
         """Validation code for domain names."""
         try:
             requested = self.cleaned_data.get("requested_domain", None)
-            validated = Domain.validate(requested)
+            validated = DraftDomain.validate(requested)
         except errors.BlankValueError:
             raise forms.ValidationError(
                 DOMAIN_API_MESSAGES["required"], code="required"
diff --git a/src/registrar/management/commands/load_domains_data.py b/src/registrar/management/commands/load_domains_data.py
index 358a4113e..b205e562e 100644
--- a/src/registrar/management/commands/load_domains_data.py
+++ b/src/registrar/management/commands/load_domains_data.py
@@ -54,16 +54,6 @@ class Command(BaseCommand):
         domains = []
         for row in reader:
             name = row["Name"].lower()  # we typically use lowercase domains
-
-            # Ensure that there is a `Domain` object for each domain name in
-            # this file and that it is active. There is a uniqueness
-            # constraint for active Domain objects, so we are going to account
-            # for that here with this check so that our later bulk_create
-            # should succeed
-            if Domain.objects.filter(name=name, is_active=True).exists():
-                # don't do anything, this domain is here and active
-                continue
-            else:
-                domains.append(Domain(name=name, is_active=True))
+            domains.append(Domain(name=name))
         logger.info("Creating %d new domains", len(domains))
         Domain.objects.bulk_create(domains)
diff --git a/src/registrar/migrations/0022_draftdomain_domainapplication_approved_domain_and_more.py b/src/registrar/migrations/0022_draftdomain_domainapplication_approved_domain_and_more.py
new file mode 100644
index 000000000..3670146f1
--- /dev/null
+++ b/src/registrar/migrations/0022_draftdomain_domainapplication_approved_domain_and_more.py
@@ -0,0 +1,66 @@
+# Generated by Django 4.2.1 on 2023-05-26 13:14
+
+from django.db import migrations, models
+import django.db.models.deletion
+import registrar.models.utility.domain_helper
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("registrar", "0021_publiccontact_domain_publiccontact_registry_id_and_more"),
+    ]
+
+    operations = [
+        migrations.CreateModel(
+            name="DraftDomain",
+            fields=[
+                (
+                    "id",
+                    models.BigAutoField(
+                        auto_created=True,
+                        primary_key=True,
+                        serialize=False,
+                        verbose_name="ID",
+                    ),
+                ),
+                ("created_at", models.DateTimeField(auto_now_add=True)),
+                ("updated_at", models.DateTimeField(auto_now=True)),
+                (
+                    "name",
+                    models.CharField(
+                        default=None,
+                        help_text="Fully qualified domain name",
+                        max_length=253,
+                    ),
+                ),
+            ],
+            options={
+                "abstract": False,
+            },
+            bases=(models.Model, registrar.models.utility.domain_helper.DomainHelper),
+        ),
+        migrations.AddField(
+            model_name="domainapplication",
+            name="approved_domain",
+            field=models.OneToOneField(
+                blank=True,
+                help_text="The approved domain",
+                null=True,
+                on_delete=django.db.models.deletion.PROTECT,
+                related_name="domain_application",
+                to="registrar.domain",
+            ),
+        ),
+        migrations.AlterField(
+            model_name="domainapplication",
+            name="requested_domain",
+            field=models.OneToOneField(
+                blank=True,
+                help_text="The requested domain",
+                null=True,
+                on_delete=django.db.models.deletion.PROTECT,
+                related_name="domain_application",
+                to="registrar.draftdomain",
+            ),
+        ),
+    ]
diff --git a/src/registrar/models/__init__.py b/src/registrar/models/__init__.py
index 9351e312d..542cb00e1 100644
--- a/src/registrar/models/__init__.py
+++ b/src/registrar/models/__init__.py
@@ -4,6 +4,7 @@ from .contact import Contact
 from .domain_application import DomainApplication
 from .domain_information import DomainInformation
 from .domain import Domain
+from .draft_domain import DraftDomain
 from .host_ip import HostIP
 from .host import Host
 from .domain_invitation import DomainInvitation
@@ -18,6 +19,7 @@ __all__ = [
     "DomainApplication",
     "DomainInformation",
     "Domain",
+    "DraftDomain",
     "DomainInvitation",
     "HostIP",
     "Host",
@@ -31,6 +33,7 @@ __all__ = [
 auditlog.register(Contact)
 auditlog.register(DomainApplication)
 auditlog.register(Domain)
+auditlog.register(DraftDomain)
 auditlog.register(DomainInvitation)
 auditlog.register(HostIP)
 auditlog.register(Host)
diff --git a/src/registrar/models/domain_application.py b/src/registrar/models/domain_application.py
index 44c93892c..3859e04a7 100644
--- a/src/registrar/models/domain_application.py
+++ b/src/registrar/models/domain_application.py
@@ -400,10 +400,19 @@ class DomainApplication(TimeStampedModel):
         related_name="current+",
     )
 
-    requested_domain = models.OneToOneField(
+    approved_domain = models.OneToOneField(
         "Domain",
         null=True,
         blank=True,
+        help_text="The approved domain",
+        related_name="domain_application",
+        on_delete=models.PROTECT,
+    )
+
+    requested_domain = models.OneToOneField(
+        "DraftDomain",
+        null=True,
+        blank=True,
         help_text="The requested domain",
         related_name="domain_application",
         on_delete=models.PROTECT,
@@ -499,8 +508,8 @@ class DomainApplication(TimeStampedModel):
         if self.requested_domain is None:
             raise ValueError("Requested domain is missing.")
 
-        Domain = apps.get_model("registrar.Domain")
-        if not Domain.string_could_be_domain(self.requested_domain.name):
+        DraftDomain = apps.get_model("registrar.DraftDomain")
+        if not DraftDomain.string_could_be_domain(self.requested_domain.name):
             raise ValueError("Requested domain is not a valid domain name.")
 
         # When an application is submitted, we need to send a confirmation email
@@ -516,13 +525,16 @@ class DomainApplication(TimeStampedModel):
         application into an admin on that domain.
         """
 
-        # create the domain if it doesn't exist
+        # create the domain
         Domain = apps.get_model("registrar.Domain")
-        created_domain, _ = Domain.objects.get_or_create(name=self.requested_domain)
+        if Domain.objects.filter(name=self.requested_domain.name).exists():
+            raise ValueError("Cannot approve. Requested domain is already in use.")
+        created_domain = Domain.objects.create(name=self.requested_domain.name)
+        self.approved_domain = created_domain
 
         # copy the information from domainapplication into domaininformation
         DomainInformation = apps.get_model("registrar.DomainInformation")
-        DomainInformation.create_from_da(self)
+        DomainInformation.create_from_da(self, domain=created_domain)
 
         # create the permission for the user
         UserDomainRole = apps.get_model("registrar.UserDomainRole")
diff --git a/src/registrar/models/domain_information.py b/src/registrar/models/domain_information.py
index c7832266b..c86a6c04f 100644
--- a/src/registrar/models/domain_information.py
+++ b/src/registrar/models/domain_information.py
@@ -211,24 +211,24 @@ class DomainInformation(TimeStampedModel):
             return ""
 
     @classmethod
-    def create_from_da(cls, domain_application):
+    def create_from_da(cls, domain_application, domain=None):
         """Takes in a DomainApplication dict and converts it into DomainInformation"""
         da_dict = domain_application.to_dict()
         # remove the id so one can be assinged on creation
-        da_id = da_dict.pop("id")
+        da_id = da_dict.pop("id", None)
         # check if we have a record that corresponds with the domain
         # application, if so short circuit the create
         domain_info = cls.objects.filter(domain_application__id=da_id).first()
         if domain_info:
             return domain_info
         # the following information below is not needed in the domain information:
-        da_dict.pop("status")
-        da_dict.pop("current_websites")
-        da_dict.pop("investigator")
-        da_dict.pop("alternative_domains")
-        # use the requested_domain to create information for this domain
-        da_dict["domain"] = da_dict.pop("requested_domain")
-        other_contacts = da_dict.pop("other_contacts")
+        da_dict.pop("status", None)
+        da_dict.pop("current_websites", None)
+        da_dict.pop("investigator", None)
+        da_dict.pop("alternative_domains", None)
+        da_dict.pop("requested_domain", None)
+        da_dict.pop("approved_domain", None)
+        other_contacts = da_dict.pop("other_contacts", [])
         domain_info = cls(**da_dict)
         domain_info.domain_application = domain_application
         # Save so the object now have PK
@@ -237,6 +237,8 @@ class DomainInformation(TimeStampedModel):
 
         # Process the remaining "many to many" stuff
         domain_info.other_contacts.add(*other_contacts)
+        if domain:
+            domain_info.domain = domain
         domain_info.save()
         return domain_info
 
diff --git a/src/registrar/models/draft_domain.py b/src/registrar/models/draft_domain.py
new file mode 100644
index 000000000..fc70a18f3
--- /dev/null
+++ b/src/registrar/models/draft_domain.py
@@ -0,0 +1,22 @@
+import logging
+
+from django.db import models
+
+from .utility.domain_helper import DomainHelper
+from .utility.time_stamped_model import TimeStampedModel
+
+logger = logging.getLogger(__name__)
+
+
+class DraftDomain(TimeStampedModel, DomainHelper):
+    """Store domain names which registrants have requested."""
+
+    def __str__(self) -> str:
+        return self.name
+
+    name = models.CharField(
+        max_length=253,
+        blank=False,
+        default=None,  # prevent saving without a value
+        help_text="Fully qualified domain name",
+    )
diff --git a/src/registrar/models/utility/domain_helper.py b/src/registrar/models/utility/domain_helper.py
new file mode 100644
index 000000000..8f5737915
--- /dev/null
+++ b/src/registrar/models/utility/domain_helper.py
@@ -0,0 +1,64 @@
+import re
+
+from api.views import in_domains
+from registrar.utility import errors
+
+
+class DomainHelper:
+    """Utility functions and constants for domain names."""
+
+    # a domain name is alphanumeric or hyphen, up to 63 characters, doesn't
+    # begin or end with a hyphen, followed by a TLD of 2-6 alphabetic characters
+    DOMAIN_REGEX = re.compile(r"^(?!-)[A-Za-z0-9-]{1,63}(?<!-)\.[A-Za-z]{2,6}$")
+
+    # a domain name is alphanumeric or hyphen, has at least 2 dots, doesn't
+    # begin or end with a hyphen, followed by a TLD of 2-6 alphabetic characters
+    HOST_REGEX = re.compile(r"^((?!-)[A-Za-z0-9-]{1,63}(?<!-)\.){2,}([A-Za-z]){2,6}$")
+
+    # a domain can be no longer than 253 characters in total
+    MAX_LENGTH = 253
+
+    @classmethod
+    def string_could_be_domain(cls, domain: str | None) -> bool:
+        """Return True if the string could be a domain name, otherwise False."""
+        if not isinstance(domain, str):
+            return False
+        return bool(cls.DOMAIN_REGEX.match(domain))
+
+    @classmethod
+    def validate(cls, domain: str | None, blank_ok=False) -> str:
+        """Attempt to determine if a domain name could be requested."""
+        if domain is None:
+            raise errors.BlankValueError()
+        if not isinstance(domain, str):
+            raise ValueError("Domain name must be a string")
+        domain = domain.lower().strip()
+        if domain == "":
+            if blank_ok:
+                return domain
+            else:
+                raise errors.BlankValueError()
+        if domain.endswith(".gov"):
+            domain = domain[:-4]
+        if "." in domain:
+            raise errors.ExtraDotsError()
+        if not DomainHelper.string_could_be_domain(domain + ".gov"):
+            raise ValueError()
+        if in_domains(domain):
+            raise errors.DomainUnavailableError()
+        return domain
+
+    @classmethod
+    def sld(cls, domain: str):
+        """
+        Get the second level domain. Example: `gsa.gov` -> `gsa`.
+
+        If no TLD is present, returns the original string.
+        """
+        return domain.split(".")[0]
+
+    @classmethod
+    def tld(cls, domain: str):
+        """Get the top level domain. Example: `gsa.gov` -> `gov`."""
+        parts = domain.rsplit(".")
+        return parts[-1] if len(parts) > 1 else ""
diff --git a/src/registrar/models/website.py b/src/registrar/models/website.py
index 65d86ddf1..d21564531 100644
--- a/src/registrar/models/website.py
+++ b/src/registrar/models/website.py
@@ -1,5 +1,3 @@
-from django.apps import apps
-from django.core.exceptions import ValidationError
 from django.db import models
 
 from .utility.time_stamped_model import TimeStampedModel
@@ -18,35 +16,5 @@ class Website(TimeStampedModel):
         help_text="",
     )
 
-    @property
-    def sld(self):
-        """Get or set the second level domain string."""
-        return self.website.split(".")[0]
-
-    @sld.setter
-    def sld(self, value: str):
-        Domain = apps.get_model("registrar.Domain")
-        parts = self.website.split(".")
-        tld = parts[1] if len(parts) > 1 else ""
-        if Domain.string_could_be_domain(f"{value}.{tld}"):
-            self.website = f"{value}.{tld}"
-        else:
-            raise ValidationError("%s is not a valid second level domain" % value)
-
-    @property
-    def tld(self):
-        """Get or set the top level domain string."""
-        parts = self.website.split(".")
-        return parts[1] if len(parts) > 1 else ""
-
-    @tld.setter
-    def tld(self, value: str):
-        Domain = apps.get_model("registrar.Domain")
-        sld = self.website.split(".")[0]
-        if Domain.string_could_be_domain(f"{sld}.{value}"):
-            self.website = f"{sld}.{value}"
-        else:
-            raise ValidationError("%s is not a valid top level domain" % value)
-
     def __str__(self) -> str:
         return str(self.website)
diff --git a/src/registrar/tests/test_emails.py b/src/registrar/tests/test_emails.py
index 44cb565e2..4d7b22d01 100644
--- a/src/registrar/tests/test_emails.py
+++ b/src/registrar/tests/test_emails.py
@@ -5,7 +5,7 @@ from unittest.mock import MagicMock
 from django.contrib.auth import get_user_model
 from django.test import TestCase
 
-from registrar.models import Contact, Domain, Website, DomainApplication
+from registrar.models import Contact, DraftDomain, Website, DomainApplication
 
 import boto3_mocking  # type: ignore
 
@@ -28,7 +28,7 @@ class TestEmails(TestCase):
             email="testy@town.com",
             phone="(555) 555 5555",
         )
-        domain, _ = Domain.objects.get_or_create(name="city.gov")
+        domain, _ = DraftDomain.objects.get_or_create(name="city.gov")
         alt, _ = Website.objects.get_or_create(website="city1.gov")
         current, _ = Website.objects.get_or_create(website="city.com")
         you, _ = Contact.objects.get_or_create(
diff --git a/src/registrar/tests/test_models.py b/src/registrar/tests/test_models.py
index 2ebca68d7..97fe51a92 100644
--- a/src/registrar/tests/test_models.py
+++ b/src/registrar/tests/test_models.py
@@ -8,6 +8,7 @@ from registrar.models import (
     User,
     Website,
     Domain,
+    DraftDomain,
     DomainInvitation,
     UserDomainRole,
 )
@@ -40,7 +41,7 @@ class TestDomainApplication(TestCase):
         contact = Contact.objects.create()
         com_website, _ = Website.objects.get_or_create(website="igorville.com")
         gov_website, _ = Website.objects.get_or_create(website="igorville.gov")
-        domain, _ = Domain.objects.get_or_create(name="igorville.gov")
+        domain, _ = DraftDomain.objects.get_or_create(name="igorville.gov")
         application = DomainApplication.objects.create(
             creator=user,
             investigator=user,
@@ -100,7 +101,7 @@ class TestDomainApplication(TestCase):
 
     def test_status_fsm_submit_succeed(self):
         user, _ = User.objects.get_or_create()
-        site = Domain.objects.create(name="igorville.gov")
+        site = DraftDomain.objects.create(name="igorville.gov")
         application = DomainApplication.objects.create(
             creator=user, requested_domain=site
         )
@@ -113,7 +114,7 @@ class TestDomainApplication(TestCase):
         """Create an application and submit it and see if email was sent."""
         user, _ = User.objects.get_or_create()
         contact = Contact.objects.create(email="test@test.gov")
-        domain, _ = Domain.objects.get_or_create(name="igorville.gov")
+        domain, _ = DraftDomain.objects.get_or_create(name="igorville.gov")
         application = DomainApplication.objects.create(
             creator=user,
             requested_domain=domain,
@@ -135,62 +136,22 @@ class TestDomainApplication(TestCase):
         )
 
 
-class TestDomain(TestCase):
-    def test_empty_create_fails(self):
-        """Can't create a completely empty domain."""
-        with self.assertRaisesRegex(IntegrityError, "name"):
-            Domain.objects.create()
-
-    def test_minimal_create(self):
-        """Can create with just a name."""
-        domain = Domain.objects.create(name="igorville.gov")
-        self.assertEqual(domain.is_active, False)
-
-    @skip("cannot activate a domain without mock registry")
-    def test_get_status(self):
-        """Returns proper status based on `is_active`."""
-        domain = Domain.objects.create(name="igorville.gov")
-        domain.save()
-        self.assertEqual(None, domain.status)
-        domain.activate()
-        domain.save()
-        self.assertIn("ok", domain.status)
-
-    def test_fsm_activate_fail_unique(self):
-        """Can't activate domain if name is not unique."""
-        d1, _ = Domain.objects.get_or_create(name="igorville.gov")
-        d2, _ = Domain.objects.get_or_create(name="igorville.gov")
-        d1.activate()
-        d1.save()
-        with self.assertRaises(ValueError):
-            d2.activate()
-
-    def test_fsm_activate_fail_unapproved(self):
-        """Can't activate domain if application isn't approved."""
-        d1, _ = Domain.objects.get_or_create(name="igorville.gov")
-        user, _ = User.objects.get_or_create()
-        application = DomainApplication.objects.create(creator=user)
-        d1.domain_application = application
-        d1.save()
-        with self.assertRaises(ValueError):
-            d1.activate()
-
-
 class TestPermissions(TestCase):
 
     """Test the User-Domain-Role connection."""
 
     def test_approval_creates_role(self):
-        domain, _ = Domain.objects.get_or_create(name="igorville.gov")
+        draft_domain, _ = DraftDomain.objects.get_or_create(name="igorville.gov")
         user, _ = User.objects.get_or_create()
         application = DomainApplication.objects.create(
-            creator=user, requested_domain=domain
+            creator=user, requested_domain=draft_domain
         )
         # skip using the submit method
         application.status = DomainApplication.SUBMITTED
         application.approve()
 
         # should be a role for this user
+        domain = Domain.objects.get(name="igorville.gov")
         self.assertTrue(UserDomainRole.objects.get(user=user, domain=domain))
 
 
@@ -199,16 +160,17 @@ class TestDomainInfo(TestCase):
     """Test creation of Domain Information when approved."""
 
     def test_approval_creates_info(self):
-        domain, _ = Domain.objects.get_or_create(name="igorville.gov")
+        draft_domain, _ = DraftDomain.objects.get_or_create(name="igorville.gov")
         user, _ = User.objects.get_or_create()
         application = DomainApplication.objects.create(
-            creator=user, requested_domain=domain
+            creator=user, requested_domain=draft_domain
         )
         # skip using the submit method
         application.status = DomainApplication.SUBMITTED
         application.approve()
 
         # should be an information present for this domain
+        domain = Domain.objects.get(name="igorville.gov")
         self.assertTrue(DomainInformation.objects.get(domain=domain))
 
 
diff --git a/src/registrar/tests/test_models_domain.py b/src/registrar/tests/test_models_domain.py
new file mode 100644
index 000000000..25b7be2d2
--- /dev/null
+++ b/src/registrar/tests/test_models_domain.py
@@ -0,0 +1,54 @@
+from django.test import TestCase
+from django.db.utils import IntegrityError
+
+from registrar.models import (
+    DomainApplication,
+    User,
+    Domain,
+)
+from unittest import skip
+
+
+class TestDomain(TestCase):
+    def test_empty_create_fails(self):
+        """Can't create a completely empty domain."""
+        with self.assertRaisesRegex(IntegrityError, "name"):
+            Domain.objects.create()
+
+    def test_minimal_create(self):
+        """Can create with just a name."""
+        Domain.objects.create(name="igorville.gov")
+        # this assertion will not work -- for now, the fact that the
+        # above command didn't error out is proof enough
+        # self.assertEquals(domain.state, Domain.State.DRAFTED)
+
+    @skip("cannot activate a domain without mock registry")
+    def test_get_status(self):
+        """Returns proper status based on `state`."""
+        domain = Domain.objects.create(name="igorville.gov")
+        domain.save()
+        self.assertEqual(None, domain.status)
+        domain.activate()
+        domain.save()
+        self.assertIn("ok", domain.status)
+
+    @skip("cannot activate a domain without mock registry")
+    def test_fsm_activate_fail_unique(self):
+        """Can't activate domain if name is not unique."""
+        d1, _ = Domain.objects.get_or_create(name="igorville.gov")
+        d2, _ = Domain.objects.get_or_create(name="igorville.gov")
+        d1.activate()
+        d1.save()
+        with self.assertRaises(ValueError):
+            d2.activate()
+
+    @skip("cannot activate a domain without mock registry")
+    def test_fsm_activate_fail_unapproved(self):
+        """Can't activate domain if application isn't approved."""
+        d1, _ = Domain.objects.get_or_create(name="igorville.gov")
+        user, _ = User.objects.get_or_create()
+        application = DomainApplication.objects.create(creator=user)
+        d1.domain_application = application
+        d1.save()
+        with self.assertRaises(ValueError):
+            d1.activate()
diff --git a/src/registrar/tests/test_views.py b/src/registrar/tests/test_views.py
index 959183f34..daac3fca3 100644
--- a/src/registrar/tests/test_views.py
+++ b/src/registrar/tests/test_views.py
@@ -13,6 +13,7 @@ import boto3_mocking  # type: ignore
 from registrar.models import (
     DomainApplication,
     Domain,
+    DraftDomain,
     DomainInvitation,
     Contact,
     Website,
@@ -75,7 +76,7 @@ class LoggedInTests(TestWithUser):
     def test_home_lists_domain_applications(self):
         response = self.client.get("/")
         self.assertNotContains(response, "igorville.gov")
-        site = Domain.objects.create(name="igorville.gov")
+        site = DraftDomain.objects.create(name="igorville.gov")
         application = DomainApplication.objects.create(
             creator=self.user, requested_domain=site
         )
@@ -1035,6 +1036,8 @@ class TestWithDomainPermissions(TestWithUser):
 
     def tearDown(self):
         try:
+            if hasattr(self.domain, "contacts"):
+                self.domain.contacts.all().delete()
             self.domain.delete()
             self.role.delete()
         except ValueError:  # pass if already deleted
@@ -1347,7 +1350,7 @@ class TestApplicationStatus(TestWithUser, WebTest):
             email="testy@town.com",
             phone="(555) 555 5555",
         )
-        domain, _ = Domain.objects.get_or_create(name="citystatus.gov")
+        domain, _ = DraftDomain.objects.get_or_create(name="citystatus.gov")
         alt, _ = Website.objects.get_or_create(website="city1.gov")
         current, _ = Website.objects.get_or_create(website="city.com")
         you, _ = Contact.objects.get_or_create(

From dd58f4623130161e87353f68cf8df45fc267e0a0 Mon Sep 17 00:00:00 2001
From: Seamus Johnston <seamus.johnston@gsa.gov>
Date: Fri, 26 May 2023 09:22:27 -0500
Subject: [PATCH 53/72] Fix type errors in linter

---
 ...22_draftdomain_domainapplication_approved_domain_and_more.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/migrations/0022_draftdomain_domainapplication_approved_domain_and_more.py b/src/registrar/migrations/0022_draftdomain_domainapplication_approved_domain_and_more.py
index 3670146f1..fb89e0eb2 100644
--- a/src/registrar/migrations/0022_draftdomain_domainapplication_approved_domain_and_more.py
+++ b/src/registrar/migrations/0022_draftdomain_domainapplication_approved_domain_and_more.py
@@ -37,7 +37,7 @@ class Migration(migrations.Migration):
             options={
                 "abstract": False,
             },
-            bases=(models.Model, registrar.models.utility.domain_helper.DomainHelper),
+            bases=(models.Model, registrar.models.utility.domain_helper.DomainHelper),  # type: ignore
         ),
         migrations.AddField(
             model_name="domainapplication",

From 7d2a44226ae428e4470fd4221f6a95ccdda57ff2 Mon Sep 17 00:00:00 2001
From: Cameron Dixon <cameron.dixon@cisa.dhs.gov>
Date: Mon, 29 May 2023 07:39:03 -0400
Subject: [PATCH 54/72] Create SECURITY.md

add more relevant blurb than cisagov default
---
 .github/SECURITY.md | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100644 .github/SECURITY.md

diff --git a/.github/SECURITY.md b/.github/SECURITY.md
new file mode 100644
index 000000000..46b7e500f
--- /dev/null
+++ b/.github/SECURITY.md
@@ -0,0 +1,3 @@
+If you've found a security or privacy issue on the .gov top-level domain infrastructure, email dotgov@cisa.dhs.gov.
+
+If you see a security or privacy issue on a .gov domain, check [current-full.csv]([url](https://github.com/cisagov/dotgov-data/blob/main/current-full.csv)) or whois (same data) to see if the domain has a security contact. Most [federal (executive branch) agencies]([url](https://github.com/cisagov/vdp-in-fceb/)) also have a vulnerability disclosure policy. If you are unable to find a contact or receive no response from the security contact, you may email dotgov@cisa.dhs.gov.

From 7563cff1c04715ddc9abcc408060d1efb1e5f7b9 Mon Sep 17 00:00:00 2001
From: Cameron Dixon <cameron.dixon@cisa.dhs.gov>
Date: Tue, 30 May 2023 11:30:44 -0400
Subject: [PATCH 55/72] revise SECURITY.md

Revise and reformat, move VDP link lower in the doc
---
 .github/SECURITY.md | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/.github/SECURITY.md b/.github/SECURITY.md
index 46b7e500f..fc27feff3 100644
--- a/.github/SECURITY.md
+++ b/.github/SECURITY.md
@@ -1,3 +1,5 @@
-If you've found a security or privacy issue on the .gov top-level domain infrastructure, email dotgov@cisa.dhs.gov.
+* If you've found a security or privacy issue on the **.gov top-level domain infrastructure**, submit it to our [vulnerabilty disclosure form](https://forms.office.com/Pages/ResponsePage.aspx?id=bOfNPG2UEkq7evydCEI1SqHke9Gh6wJEl3kQ5EjWUKlUMTZZS1lBVkxHUzZURFpLTkE2NEJFVlhVRi4u) or email dotgov@cisa.dhs.gov.
+* If you see a security or privacy issue on **an individual .gov domain**, check [current-full.csv](https://flatgithub.com/cisagov/dotgov-data/blob/main/?filename=current-full.csv) or [Whois](https://domains.dotgov.gov/dotgov-web/registration/whois.xhtml) (same data) to check whether the domain has a security contact to report your finding directly. You are welcome to Cc dotgov@cisa.dhs.gov on the email.
+  * If you are unable to find a contact or receive no response from the security contact, email dotgov@cisa.dhs.gov.
 
-If you see a security or privacy issue on a .gov domain, check [current-full.csv]([url](https://github.com/cisagov/dotgov-data/blob/main/current-full.csv)) or whois (same data) to see if the domain has a security contact. Most [federal (executive branch) agencies]([url](https://github.com/cisagov/vdp-in-fceb/)) also have a vulnerability disclosure policy. If you are unable to find a contact or receive no response from the security contact, you may email dotgov@cisa.dhs.gov.
+Note that most federal (executive branch) agencies maintain a [vulnerability disclosure policy](https://github.com/cisagov/vdp-in-fceb/).

From 7bc38ad5164894c37f65d4ac88713251892727d4 Mon Sep 17 00:00:00 2001
From: Seamus Johnston <seamus.johnston@gsa.gov>
Date: Tue, 30 May 2023 12:51:27 -0500
Subject: [PATCH 56/72] More pythonic logger calls

---
 src/epplibwrapper/client.py | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/src/epplibwrapper/client.py b/src/epplibwrapper/client.py
index f91e6dbd2..156ee7608 100644
--- a/src/epplibwrapper/client.py
+++ b/src/epplibwrapper/client.py
@@ -71,20 +71,20 @@ class EPPLibWrapper:
             with self._connect as wire:
                 response = wire.send(command)
         except (ValueError, ParsingError) as err:
-            message = "%s failed to execute due to some syntax error." % cmd_type
-            logger.warning(message, exc_info=True)
+            message = "%s failed to execute due to some syntax error."
+            logger.warning(message, cmd_type, exc_info=True)
             raise RegistryError(message) from err
         except TransportError as err:
-            message = "%s failed to execute due to a connection error." % cmd_type
-            logger.warning(message, exc_info=True)
+            message = "%s failed to execute due to a connection error."
+            logger.warning(message, cmd_type, exc_info=True)
             raise RegistryError(message) from err
         except LoginError as err:
-            message = "%s failed to execute due to a registry login error." % cmd_type
-            logger.warning(message, exc_info=True)
+            message = "%s failed to execute due to a registry login error."
+            logger.warning(message, cmd_type, exc_info=True)
             raise RegistryError(message) from err
         except Exception as err:
-            message = "%s failed to execute due to an unknown error." % cmd_type
-            logger.warning(message, exc_info=True)
+            message = "%s failed to execute due to an unknown error."
+            logger.warning(message, cmd_type, exc_info=True)
             raise RegistryError(message) from err
         else:
             if response.code >= 2000:

From ca141d5c26e24f90a2ca582e445cc8d5f2c66b8c Mon Sep 17 00:00:00 2001
From: Seamus Johnston <seamus.johnston@gsa.gov>
Date: Tue, 30 May 2023 13:49:30 -0500
Subject: [PATCH 57/72] Document location of default contacts

---
 docs/developer/default-WHOIS-contacts.md | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 docs/developer/default-WHOIS-contacts.md

diff --git a/docs/developer/default-WHOIS-contacts.md b/docs/developer/default-WHOIS-contacts.md
new file mode 100644
index 000000000..98f3e75a7
--- /dev/null
+++ b/docs/developer/default-WHOIS-contacts.md
@@ -0,0 +1,5 @@
+# How to change the default contact data
+
+The defaults are located in [src/registrar/models/public_contact.py](../../src/registrar/models/public_contact.py). Change them in the source code and re-deploy.
+
+The choice of which fields to disclose is hardcoded in [src/registrar/models/domain.py](../../src/registrar/models/domain.py) (May 23) but in the future this may become customizable by registrants.
\ No newline at end of file

From cf1eabc573c38a6b06ae32c0bc1b78da02462b15 Mon Sep 17 00:00:00 2001
From: Seamus Johnston <seamus.johnston@gsa.gov>
Date: Tue, 30 May 2023 14:21:49 -0500
Subject: [PATCH 58/72] Update UML model diagrams

---
 docs/architecture/diagrams/model_timeline.md  | 13 +++++++++++--
 docs/architecture/diagrams/model_timeline.svg |  2 +-
 docs/architecture/diagrams/models_diagram.md  | 18 +++++++++++++++++-
 docs/architecture/diagrams/models_diagram.svg |  2 +-
 4 files changed, 30 insertions(+), 5 deletions(-)

diff --git a/docs/architecture/diagrams/model_timeline.md b/docs/architecture/diagrams/model_timeline.md
index f2089ce55..cc7dddc6c 100644
--- a/docs/architecture/diagrams/model_timeline.md
+++ b/docs/architecture/diagrams/model_timeline.md
@@ -44,7 +44,8 @@ class DomainApplication {
   authorizing_official (Contact)
   submitter (Contact)
   other_contacts (Contacts)
-  requested_domain (Domain)
+  approved_domain (Domain)
+  requested_domain (DraftDomain)
   current_websites (Websites)
   alternative_domains (Websites)
   --
@@ -81,11 +82,19 @@ class Contact {
 
 DomainApplication *-r-* Contact : authorizing_official, submitter, other_contacts
 
+class DraftDomain {
+  Requested domain
+  --
+  name
+  --
+}
+
+DomainApplication -l- DraftDomain : requested_domain
+
 class Domain {
   Approved domain
   --
   name
-  is_active
   --
   <b>EPP methods</b>
 }
diff --git a/docs/architecture/diagrams/model_timeline.svg b/docs/architecture/diagrams/model_timeline.svg
index cf2eea238..4e0400bb0 100644
--- a/docs/architecture/diagrams/model_timeline.svg
+++ b/docs/architecture/diagrams/model_timeline.svg
@@ -1 +1 @@
-<?xml version="1.0" encoding="us-ascii" standalone="no"?><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" contentStyleType="text/css" height="986px" preserveAspectRatio="none" style="width:1507px;height:986px;background:#FFFFFF;" version="1.1" viewBox="0 0 1507 986" width="1507px" zoomAndPan="magnify"><defs/><g><!--class DomainApplication--><g id="elem_DomainApplication"><rect codeLine="38" fill="#F1F1F1" height="218.9688" id="DomainApplication" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="227" x="349" y="430"/><ellipse cx="394.25" cy="446" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M397.2188,451.6406 Q396.6406,451.9375 396,452.0781 Q395.3594,452.2344 394.6563,452.2344 Q392.1563,452.2344 390.8281,450.5938 Q389.5156,448.9375 389.5156,445.8125 Q389.5156,442.6875 390.8281,441.0313 Q392.1563,439.375 394.6563,439.375 Q395.3594,439.375 396,439.5313 Q396.6563,439.6875 397.2188,439.9844 L397.2188,442.7031 Q396.5938,442.125 396,441.8594 Q395.4063,441.5781 394.7813,441.5781 Q393.4375,441.5781 392.75,442.6563 Q392.0625,443.7188 392.0625,445.8125 Q392.0625,447.9063 392.75,448.9844 Q393.4375,450.0469 394.7813,450.0469 Q395.4063,450.0469 396,449.7813 Q396.5938,449.5 397.2188,448.9219 L397.2188,451.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="128" x="414.75" y="450.8467">DomainApplication</text><line style="stroke:#181818;stroke-width:0.5;" x1="350" x2="575" y1="462" y2="462"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="164" x="355" y="478.9951">Application for a domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="350" x2="575" y1="486.2969" y2="486.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="95" x="355" y="503.292">creator (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="355" y="519.5889">investigator (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="194" x="355" y="535.8857">authorizing_official (Contact)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="355" y="552.1826">submitter (Contact)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="180" x="355" y="568.4795">other_contacts (Contacts)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="197" x="355" y="584.7764">requested_domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="197" x="355" y="601.0732">current_websites (Websites)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="215" x="355" y="617.3701">alternative_domains (Websites)</text><line style="stroke:#181818;stroke-width:1.0;" x1="350" x2="575" y1="624.6719" y2="624.6719"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="355" y="641.667">Request information...</text></g><!--class User--><g id="elem_User"><rect codeLine="53" fill="#F1F1F1" height="88.5938" id="User" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="146" x="389.5" y="289"/><ellipse cx="442.25" cy="305" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M445.2188,310.6406 Q444.6406,310.9375 444,311.0781 Q443.3594,311.2344 442.6563,311.2344 Q440.1563,311.2344 438.8281,309.5938 Q437.5156,307.9375 437.5156,304.8125 Q437.5156,301.6875 438.8281,300.0313 Q440.1563,298.375 442.6563,298.375 Q443.3594,298.375 444,298.5313 Q444.6563,298.6875 445.2188,298.9844 L445.2188,301.7031 Q444.5938,301.125 444,300.8594 Q443.4063,300.5781 442.7813,300.5781 Q441.4375,300.5781 440.75,301.6563 Q440.0625,302.7188 440.0625,304.8125 Q440.0625,306.9063 440.75,307.9844 Q441.4375,309.0469 442.7813,309.0469 Q443.4063,309.0469 444,308.7813 Q444.5938,308.5 445.2188,307.9219 L445.2188,310.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="32" x="462.75" y="309.8467">User</text><line style="stroke:#181818;stroke-width:0.5;" x1="390.5" x2="534.5" y1="321" y2="321"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="395.5" y="337.9951">Django's user class</text><line style="stroke:#181818;stroke-width:1.0;" x1="390.5" x2="534.5" y1="345.2969" y2="345.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="12" x="395.5" y="362.292">...</text><line style="stroke:#181818;stroke-width:1.0;" x1="390.5" x2="534.5" y1="369.5938" y2="369.5938"/></g><g id="elem_GMN4"><path d="M6,290.5 L6,376.1641 A0,0 0 0 0 6,376.1641 L214,376.1641 A0,0 0 0 0 214,376.1641 L214,337.5 L389.23,333.5 L214,329.5 L214,300.5 L204,290.5 L6,290.5 A0,0 0 0 0 6,290.5 " fill="#FEFFDD" style="stroke:#181818;stroke-width:0.5;"/><path d="M204,290.5 L204,300.5 L214,300.5 L204,290.5 " fill="#FEFFDD" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="151" x="12" y="307.5669">Created by DjangoOIDC</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="146" x="12" y="322.6997">when users arrive back</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="95" x="12" y="337.8325">from Login.gov</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="4" x="12" y="352.9653">&#160;</text><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="73" x="12" y="368.0981">username</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="110" x="89" y="368.0981">is the Login UUID</text></g><!--class Contact--><g id="elem_Contact"><rect codeLine="69" fill="#F1F1F1" height="170.0781" id="Contact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="182" x="371.5" y="700.5"/><ellipse cx="431.25" cy="716.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M434.2188,722.1406 Q433.6406,722.4375 433,722.5781 Q432.3594,722.7344 431.6563,722.7344 Q429.1563,722.7344 427.8281,721.0938 Q426.5156,719.4375 426.5156,716.3125 Q426.5156,713.1875 427.8281,711.5313 Q429.1563,709.875 431.6563,709.875 Q432.3594,709.875 433,710.0313 Q433.6563,710.1875 434.2188,710.4844 L434.2188,713.2031 Q433.5938,712.625 433,712.3594 Q432.4063,712.0781 431.7813,712.0781 Q430.4375,712.0781 429.75,713.1563 Q429.0625,714.2188 429.0625,716.3125 Q429.0625,718.4063 429.75,719.4844 Q430.4375,720.5469 431.7813,720.5469 Q432.4063,720.5469 433,720.2813 Q433.5938,720 434.2188,719.4219 L434.2188,722.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="54" x="451.75" y="721.3467">Contact</text><line style="stroke:#181818;stroke-width:0.5;" x1="372.5" x2="552.5" y1="732.5" y2="732.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="170" x="377.5" y="749.4951">Contact info for a person</text><line style="stroke:#181818;stroke-width:1.0;" x1="372.5" x2="552.5" y1="756.7969" y2="756.7969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="71" x="377.5" y="773.792">first_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="92" x="377.5" y="790.0889">middle_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="70" x="377.5" y="806.3857">last_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="25" x="377.5" y="822.6826">title</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="36" x="377.5" y="838.9795">email</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="45" x="377.5" y="855.2764">phone</text><line style="stroke:#181818;stroke-width:1.0;" x1="372.5" x2="552.5" y1="862.5781" y2="862.5781"/></g><!--class Domain--><g id="elem_Domain"><rect codeLine="83" fill="#F1F1F1" height="121.1875" id="Domain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="133" x="1367" y="380"/><ellipse cx="1403.6" cy="396" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1406.5688,401.6406 Q1405.9906,401.9375 1405.35,402.0781 Q1404.7094,402.2344 1404.0063,402.2344 Q1401.5063,402.2344 1400.1781,400.5938 Q1398.8656,398.9375 1398.8656,395.8125 Q1398.8656,392.6875 1400.1781,391.0313 Q1401.5063,389.375 1404.0063,389.375 Q1404.7094,389.375 1405.35,389.5313 Q1406.0063,389.6875 1406.5688,389.9844 L1406.5688,392.7031 Q1405.9438,392.125 1405.35,391.8594 Q1404.7563,391.5781 1404.1313,391.5781 Q1402.7875,391.5781 1402.1,392.6563 Q1401.4125,393.7188 1401.4125,395.8125 Q1401.4125,397.9063 1402.1,398.9844 Q1402.7875,400.0469 1404.1313,400.0469 Q1404.7563,400.0469 1405.35,399.7813 Q1405.9438,399.5 1406.5688,398.9219 L1406.5688,401.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="53" x="1422.4" y="400.8467">Domain</text><line style="stroke:#181818;stroke-width:0.5;" x1="1368" x2="1499" y1="412" y2="412"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="121" x="1373" y="428.9951">Approved domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="1368" x2="1499" y1="436.2969" y2="436.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="39" x="1373" y="453.292">name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="58" x="1373" y="469.5889">is_active</text><line style="stroke:#181818;stroke-width:1.0;" x1="1368" x2="1499" y1="476.8906" y2="476.8906"/><text fill="#000000" font-family="sans-serif" font-size="14" font-weight="bold" lengthAdjust="spacing" textLength="103" x="1373" y="493.8857">EPP methods</text></g><!--class DomainInformation--><g id="elem_DomainInformation"><rect codeLine="94" fill="#F1F1F1" height="137.4844" id="DomainInformation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="286" x="818" y="511"/><ellipse cx="891.75" cy="527" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M894.7188,532.6406 Q894.1406,532.9375 893.5,533.0781 Q892.8594,533.2344 892.1563,533.2344 Q889.6563,533.2344 888.3281,531.5938 Q887.0156,529.9375 887.0156,526.8125 Q887.0156,523.6875 888.3281,522.0313 Q889.6563,520.375 892.1563,520.375 Q892.8594,520.375 893.5,520.5313 Q894.1563,520.6875 894.7188,520.9844 L894.7188,523.7031 Q894.0938,523.125 893.5,522.8594 Q892.9063,522.5781 892.2813,522.5781 Q890.9375,522.5781 890.25,523.6563 Q889.5625,524.7188 889.5625,526.8125 Q889.5625,528.9063 890.25,529.9844 Q890.9375,531.0469 892.2813,531.0469 Q892.9063,531.0469 893.5,530.7813 Q894.0938,530.5 894.7188,529.9219 L894.7188,532.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="130" x="912.25" y="531.8467">DomainInformation</text><line style="stroke:#181818;stroke-width:0.5;" x1="819" x2="1103" y1="543" y2="543"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="232" x="824" y="559.9951">Registrar information on a domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="819" x2="1103" y1="567.2969" y2="567.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="824" y="584.292">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="274" x="824" y="600.5889">domain_application (DomainApplication)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="97" x="824" y="616.8857">security_email</text><line style="stroke:#181818;stroke-width:1.0;" x1="819" x2="1103" y1="624.1875" y2="624.1875"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="824" y="641.1826">Request information...</text></g><!--class UserDomainRole--><g id="elem_UserDomainRole"><rect codeLine="108" fill="#F1F1F1" height="121.1875" id="UserDomainRole" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="148" x="887" y="267"/><ellipse cx="902" cy="283" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M904.9688,288.6406 Q904.3906,288.9375 903.75,289.0781 Q903.1094,289.2344 902.4063,289.2344 Q899.9063,289.2344 898.5781,287.5938 Q897.2656,285.9375 897.2656,282.8125 Q897.2656,279.6875 898.5781,278.0313 Q899.9063,276.375 902.4063,276.375 Q903.1094,276.375 903.75,276.5313 Q904.4063,276.6875 904.9688,276.9844 L904.9688,279.7031 Q904.3438,279.125 903.75,278.8594 Q903.1563,278.5781 902.5313,278.5781 Q901.1875,278.5781 900.5,279.6563 Q899.8125,280.7188 899.8125,282.8125 Q899.8125,284.9063 900.5,285.9844 Q901.1875,287.0469 902.5313,287.0469 Q903.1563,287.0469 903.75,286.7813 Q904.3438,286.5 904.9688,285.9219 L904.9688,288.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="916" y="287.8467">UserDomainRole</text><line style="stroke:#181818;stroke-width:0.5;" x1="888" x2="1034" y1="299" y2="299"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="84" x="893" y="315.9951">Permissions</text><line style="stroke:#181818;stroke-width:1.0;" x1="888" x2="1034" y1="323.2969" y2="323.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="893" y="340.292">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="77" x="893" y="356.5889">user (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="893" y="372.8857">role="ADMIN"</text><line style="stroke:#181818;stroke-width:1.0;" x1="888" x2="1034" y1="380.1875" y2="380.1875"/></g><!--class DomainInvitation--><g id="elem_DomainInvitation"><rect codeLine="120" fill="#F1F1F1" height="121.1875" id="DomainInvitation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="156" x="384.5" y="133"/><ellipse cx="404" cy="149" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M406.9688,154.6406 Q406.3906,154.9375 405.75,155.0781 Q405.1094,155.2344 404.4063,155.2344 Q401.9063,155.2344 400.5781,153.5938 Q399.2656,151.9375 399.2656,148.8125 Q399.2656,145.6875 400.5781,144.0313 Q401.9063,142.375 404.4063,142.375 Q405.1094,142.375 405.75,142.5313 Q406.4063,142.6875 406.9688,142.9844 L406.9688,145.7031 Q406.3438,145.125 405.75,144.8594 Q405.1563,144.5781 404.5313,144.5781 Q403.1875,144.5781 402.5,145.6563 Q401.8125,146.7188 401.8125,148.8125 Q401.8125,150.9063 402.5,151.9844 Q403.1875,153.0469 404.5313,153.0469 Q405.1563,153.0469 405.75,152.7813 Q406.3438,152.5 406.9688,151.9219 L406.9688,154.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="419" y="153.8467">DomainInvitation</text><line style="stroke:#181818;stroke-width:0.5;" x1="385.5" x2="539.5" y1="165" y2="165"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="144" x="390.5" y="181.9951">Email invitations sent</text><line style="stroke:#181818;stroke-width:1.0;" x1="385.5" x2="539.5" y1="189.2969" y2="189.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="36" x="390.5" y="206.292">email</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="390.5" y="222.5889">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="43" x="390.5" y="238.8857">status</text><line style="stroke:#181818;stroke-width:1.0;" x1="385.5" x2="539.5" y1="246.1875" y2="246.1875"/></g><!--entity applicant--><g id="elem_applicant"><ellipse cx="110" cy="465" fill="#FF0000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M110,473 L110,500 M97,481 L123,481 M110,500 L97,515 M110,500 L123,515 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="62" x="79" y="529.4951">applicant</text></g><!--entity analyst--><g id="elem_analyst"><ellipse cx="110" cy="576" fill="#0000FF" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M110,584 L110,611 M97,592 L123,592 M110,611 L97,626 M110,611 L123,626 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="48" x="86" y="640.4951">analyst</text></g><!--entity user1--><g id="elem_user1"><ellipse cx="961" cy="692" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M961,700 L961,727 M948,708 L974,708 M961,727 L948,742 M961,727 L974,742 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="40" x="941" y="756.4951">user1</text></g><!--entity user2--><g id="elem_user2"><ellipse cx="462.5" cy="914" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M462.5,922 L462.5,949 M449.5,930 L475.5,930 M462.5,949 L449.5,964 M462.5,949 L475.5,964 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="40" x="442.5" y="978.4951">user2</text></g><!--entity user3--><g id="elem_user3"><ellipse cx="462.5" cy="14" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M462.5,22 L462.5,49 M449.5,30 L475.5,30 M462.5,49 L449.5,64 M462.5,49 L475.5,64 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="40" x="442.5" y="78.4951">user3</text></g><!--link User to DomainApplication--><g id="link_User_DomainApplication"><path codeLine="67" d="M462.5,378.24 C462.5,393.63 462.5,411.61 462.5,429.87 " fill="none" id="User-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="129" x="386.5" y="408.5669">creator, investigator</text></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="81" d="M462.5,662.3 C462.5,670.63 462.5,678.96 462.5,687.14 " fill="none" id="DomainApplication-Contact" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="462.5,649.24,458.5,655.24,462.5,661.24,466.5,655.24,462.5,649.24" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="462.5,700.5,466.5,694.5,462.5,688.5,458.5,694.5,462.5,700.5" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="292" x="305" y="679.3169">authorizing_official, submitter, other_contacts</text></g><!--link DomainApplication to Domain--><g id="link_DomainApplication_Domain"><path codeLine="92" d="M576.31,523.6 C645.89,514.11 737.02,502.24 818,493.5 C1014.69,472.27 1247.54,454.08 1361.91,445.6 " fill="none" id="DomainApplication-to-Domain" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="1366.93,445.22,1357.6577,441.8997,1361.9438,445.5915,1358.252,449.8776,1366.93,445.22" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="62" x="930" y="462.5669">approve()</text></g><!--link DomainInformation to Domain--><g id="link_DomainInformation_Domain"><path codeLine="104" d="M1104.12,537.51 C1191.37,511.74 1298.99,479.94 1366.7,459.94 " fill="none" id="DomainInformation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to DomainApplication--><g id="link_DomainInformation_DomainApplication"><path codeLine="105" d="M817.84,564.21 C807.75,563.25 797.72,562.34 788,561.5 C717.68,555.44 638.66,550.05 576.21,546.13 " fill="none" id="DomainInformation-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to DomainInformation--><g id="link_DomainApplication_DomainInformation"><path codeLine="106" d="M576.25,580.28 C586.21,582.79 596.23,584.93 606,586.5 C673.3,597.31 748.71,597.44 812.58,594.12 " fill="none" id="DomainApplication-to-DomainInformation" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="817.94,593.83,808.7364,590.3237,812.9474,594.101,809.1701,598.312,817.94,593.83" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="62" x="666" y="582.5669">approve()</text></g><!--link UserDomainRole to User--><g id="link_UserDomainRole_User"><path codeLine="116" d="M886.91,328.38 C792.61,329.52 629.56,331.49 535.7,332.63 " fill="none" id="UserDomainRole-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to Domain--><g id="link_UserDomainRole_Domain"><path codeLine="117" d="M1035.14,343.61 C1110.86,360.49 1232.5,388.16 1337,414.5 C1346.66,416.94 1356.85,419.6 1366.83,422.27 " fill="none" id="UserDomainRole-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to UserDomainRole--><g id="link_DomainApplication_UserDomainRole"><path codeLine="118" d="M576.11,435.45 C585.87,428.84 595.88,422.75 606,417.5 C653.58,392.82 792.69,361.49 881.7,343.05 " fill="none" id="DomainApplication-to-UserDomainRole" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="886.69,342.02,877.066,339.9273,881.7938,343.0335,878.6876,347.7613,886.69,342.02" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="62" x="666" y="360.5669">approve()</text></g><!--link DomainInvitation to Domain--><g id="link_DomainInvitation_Domain"><path codeLine="128" d="M540.56,191.16 C662.53,189.45 906.48,194.23 1104,249.5 C1215.21,280.62 1239.49,302.64 1337,364.5 C1346.93,370.8 1357.04,377.94 1366.79,385.26 " fill="none" id="DomainInvitation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInvitation to UserDomainRole--><g id="link_DomainInvitation_UserDomainRole"><path codeLine="129" d="M540.53,224.25 C561.57,232.07 584.5,240.07 606,246.5 C699.5,274.45 809.35,298.22 881.59,312.64 " fill="none" id="DomainInvitation-to-UserDomainRole" style="stroke:#008000;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#008000" points="886.73,313.66,878.6956,307.9636,881.8282,312.6739,877.1179,315.8065,886.73,313.66" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="105" x="644.5" y="242.5669">User.first_login()</text></g><!--link applicant to DomainApplication--><g id="link_applicant_DomainApplication"><path codeLine="132" d="M141.19,498.38 C185.86,504.11 272.03,515.17 343.75,524.38 " fill="none" id="applicant-to-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="348.89,525.04,340.4647,519.9396,343.9297,524.411,339.4583,527.8761,348.89,525.04" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="63" x="250" y="507.5669">/register</text></g><!--link analyst to DomainApplication--><g id="link_analyst_DomainApplication"><path codeLine="135" d="M134.27,601.12 C176.46,593.17 268.22,575.89 343.87,561.65 " fill="none" id="analyst-to-DomainApplication" style="stroke:#0000FF;stroke-width:1.0;"/><polygon fill="#0000FF" points="348.83,560.72,339.2438,558.4606,343.9169,561.6483,340.7292,566.3215,348.83,560.72" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="73" x="245" y="562.5669">approve()</text></g><!--link user1 to Domain--><g id="link_user1_Domain"><path codeLine="138" d="M981.21,716.25 C1039.44,699.66 1217.35,643.92 1337,551.5 C1354.06,538.32 1370.3,521.69 1384.39,505.34 " fill="none" id="user1-to-Domain" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="1387.93,501.19,1379.0451,505.4394,1384.6843,504.9933,1385.1304,510.6326,1387.93,501.19" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="201" x="1135" y="547.5669">/domain/&lt;id&gt;/nameservers</text></g><!--link user2 to DomainInformation--><g id="link_user2_DomainInformation"><path codeLine="140" d="M482.72,936.1 C505.87,926.74 545.47,909.32 576,888.5 C696.58,806.27 701.45,754.37 818,666.5 C824.79,661.38 831.89,656.29 839.14,651.29 " fill="none" id="user2-to-DomainInformation" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="843.68,648.19,833.9946,649.9769,839.5552,651.016,838.5162,656.5766,843.68,648.19" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="146" x="624" y="687.5669">/domain/&lt;id&gt;/?????</text></g><!--link user3 to UserDomainRole--><g id="link_user3_UserDomainRole"><path codeLine="142" d="M482.71,53.6 C533.19,80.24 673.59,154.93 788,221.5 C819.21,239.66 853.13,260.35 882.53,278.61 " fill="none" id="user3-to-UserDomainRole" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="886.84,281.28,881.2959,273.1398,882.5896,278.6467,877.0827,279.9405,886.84,281.28" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="180" x="607" y="119.5669">/domain/&lt;id&gt;/users/add</text></g><!--link user3 to DomainInvitation--><g id="link_user3_DomainInvitation"><path codeLine="143" d="M462.5,81.87 C462.5,95.81 462.5,112 462.5,127.64 " fill="none" id="user3-to-DomainInvitation" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="462.5,132.92,466.5,123.92,462.5,127.92,458.5,123.92,462.5,132.92" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="180" x="361" y="111.8169">/domain/&lt;id&gt;/users/add</text></g><!--SRC=[XLNBRjim4BphAuZuKDS8RJIv1QcBD0uA0tq41e8UYaAWfBNCbY9TadAQ5ldtBYbHrijfOCJYBZcSdPsLcH3giU2_kSmZ0LjBh2AQvpjBCguXjLp9A4e5CuQiLC6ulDdl1K-PIv2_4I7jzLPfmaZczs6AKloNQc0MuzC70_er1hWyWB4yxqPPQNTAyp_88rRRBKyv4sHwgwHbgNKRJ9aKt5hGdQYoEz1nMWLCap8kf-5NYJT15bUCoBIgmENIKckGDdw4n70BUF9h_UJ92Bn7Oaq7gC_sDlZADXK-5eHr5rw1-NmUFGUzN6bUejKF9dFrof3IHNmoOBW3_l4vaie2yIrGMtyM4xTEFCX8ybI3V5clRZ7-k0FfqGnXMYDDah3q9oQsMXNaeygvdEVg467aEbcwZP8LSBr8beGRWffLUyZ3mteLWSo8kpoAXXscWbPrN8L6ddSQ66gjTVVbXcUdIss9FJ9LZIMsN1iREqQuA7YM2GWh16iobblXlW592VpUxvI4eDO8rndLTDRSVZLggVEZZyvxvkdQF7XRgmFgtxLqpO-R6C-X-26EKj_TtvC2yDxCEBN7YSxzW7sR9AA4x_Dbk14PL_TDNtUvh8y6yxGsa7DZDTDjwn7yz6TlwFig4hCMc-c0e1ytm17XzYaEwl_7yaEcbDRqNygrRXqJggzH6sD4BkVKQkD62V1QtOCkk35um9nMnSzbyohIUFRjsStgq_hpMR1R3vbMKp4IxfHyefRUgHVwVk3ssFOxrmatVNNGO9Ea3LM5FWshCxYzDA6I0VImJqqAEUSQG8wITe5vDSh2lKmSUvm7D-zLsTAIoGQowBYa6LsE_8nSaTbieRsfGSzc3OnauWdDDdcFkaLXHMiTJo8rOXwHN7_VaCa7LqjKBMWeZRRc3sbKyYskURPSk3d7pGTyUI7M4UgY3NKn0jMrQG_rdVlhu5ssyIu9hLyF3UX0-XwY_o5Oi2n3r1CGWzQ-2F8F]--></g></svg>
\ No newline at end of file
+<?xml version="1.0" encoding="us-ascii" standalone="no"?><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" contentStyleType="text/css" height="1028px" preserveAspectRatio="none" style="width:1389px;height:1028px;background:#FFFFFF;" version="1.1" viewBox="0 0 1389 1028" width="1389px" zoomAndPan="magnify"><defs/><g><!--class DomainApplication--><g id="elem_DomainApplication"><rect codeLine="38" fill="#F1F1F1" height="235.2656" id="DomainApplication" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="242" x="203" y="258"/><ellipse cx="255.75" cy="274" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M258.7188,279.6406 Q258.1406,279.9375 257.5,280.0781 Q256.8594,280.2344 256.1563,280.2344 Q253.6563,280.2344 252.3281,278.5938 Q251.0156,276.9375 251.0156,273.8125 Q251.0156,270.6875 252.3281,269.0313 Q253.6563,267.375 256.1563,267.375 Q256.8594,267.375 257.5,267.5313 Q258.1563,267.6875 258.7188,267.9844 L258.7188,270.7031 Q258.0938,270.125 257.5,269.8594 Q256.9063,269.5781 256.2813,269.5781 Q254.9375,269.5781 254.25,270.6563 Q253.5625,271.7188 253.5625,273.8125 Q253.5625,275.9063 254.25,276.9844 Q254.9375,278.0469 256.2813,278.0469 Q256.9063,278.0469 257.5,277.7813 Q258.0938,277.5 258.7188,276.9219 L258.7188,279.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="128" x="276.25" y="278.8467">DomainApplication</text><line style="stroke:#181818;stroke-width:0.5;" x1="204" x2="444" y1="290" y2="290"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="164" x="209" y="306.9951">Application for a domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="204" x2="444" y1="314.2969" y2="314.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="95" x="209" y="331.292">creator (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="209" y="347.5889">investigator (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="194" x="209" y="363.8857">authorizing_official (Contact)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="209" y="380.1826">submitter (Contact)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="180" x="209" y="396.4795">other_contacts (Contacts)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="190" x="209" y="412.7764">approved_domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="230" x="209" y="429.0732">requested_domain (DraftDomain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="197" x="209" y="445.3701">current_websites (Websites)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="215" x="209" y="461.667">alternative_domains (Websites)</text><line style="stroke:#181818;stroke-width:1.0;" x1="204" x2="444" y1="468.9688" y2="468.9688"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="209" y="485.9639">Request information...</text></g><!--class User--><g id="elem_User"><rect codeLine="54" fill="#F1F1F1" height="88.5938" id="User" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="146" x="1236" y="723"/><ellipse cx="1288.75" cy="739" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1291.7188,744.6406 Q1291.1406,744.9375 1290.5,745.0781 Q1289.8594,745.2344 1289.1563,745.2344 Q1286.6563,745.2344 1285.3281,743.5938 Q1284.0156,741.9375 1284.0156,738.8125 Q1284.0156,735.6875 1285.3281,734.0313 Q1286.6563,732.375 1289.1563,732.375 Q1289.8594,732.375 1290.5,732.5313 Q1291.1563,732.6875 1291.7188,732.9844 L1291.7188,735.7031 Q1291.0938,735.125 1290.5,734.8594 Q1289.9063,734.5781 1289.2813,734.5781 Q1287.9375,734.5781 1287.25,735.6563 Q1286.5625,736.7188 1286.5625,738.8125 Q1286.5625,740.9063 1287.25,741.9844 Q1287.9375,743.0469 1289.2813,743.0469 Q1289.9063,743.0469 1290.5,742.7813 Q1291.0938,742.5 1291.7188,741.9219 L1291.7188,744.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="32" x="1309.25" y="743.8467">User</text><line style="stroke:#181818;stroke-width:0.5;" x1="1237" x2="1381" y1="755" y2="755"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="1242" y="771.9951">Django's user class</text><line style="stroke:#181818;stroke-width:1.0;" x1="1237" x2="1381" y1="779.2969" y2="779.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="12" x="1242" y="796.292">...</text><line style="stroke:#181818;stroke-width:1.0;" x1="1237" x2="1381" y1="803.5938" y2="803.5938"/></g><g id="elem_GMN4"><path d="M726,935.5 L726,1021.1641 L934,1021.1641 L934,945.5 L924,935.5 L726,935.5 " fill="#FEFFDD" style="stroke:#181818;stroke-width:0.5;"/><path d="M924,935.5 L924,945.5 L934,945.5 L924,935.5 " fill="#FEFFDD" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="151" x="732" y="952.5669">Created by DjangoOIDC</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="146" x="732" y="967.6997">when users arrive back</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="95" x="732" y="982.8325">from Login.gov</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="4" x="732" y="997.9653">&#160;</text><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="73" x="732" y="1013.0981">username</text><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="110" x="809" y="1013.0981">is the Login UUID</text></g><!--class Contact--><g id="elem_Contact"><rect codeLine="70" fill="#F1F1F1" height="170.0781" id="Contact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="182" x="233" y="544.5"/><ellipse cx="292.75" cy="560.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M295.7188,566.1406 Q295.1406,566.4375 294.5,566.5781 Q293.8594,566.7344 293.1563,566.7344 Q290.6563,566.7344 289.3281,565.0938 Q288.0156,563.4375 288.0156,560.3125 Q288.0156,557.1875 289.3281,555.5313 Q290.6563,553.875 293.1563,553.875 Q293.8594,553.875 294.5,554.0313 Q295.1563,554.1875 295.7188,554.4844 L295.7188,557.2031 Q295.0938,556.625 294.5,556.3594 Q293.9063,556.0781 293.2813,556.0781 Q291.9375,556.0781 291.25,557.1563 Q290.5625,558.2188 290.5625,560.3125 Q290.5625,562.4063 291.25,563.4844 Q291.9375,564.5469 293.2813,564.5469 Q293.9063,564.5469 294.5,564.2813 Q295.0938,564 295.7188,563.4219 L295.7188,566.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="54" x="313.25" y="565.3467">Contact</text><line style="stroke:#181818;stroke-width:0.5;" x1="234" x2="414" y1="576.5" y2="576.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="170" x="239" y="593.4951">Contact info for a person</text><line style="stroke:#181818;stroke-width:1.0;" x1="234" x2="414" y1="600.7969" y2="600.7969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="71" x="239" y="617.792">first_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="92" x="239" y="634.0889">middle_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="70" x="239" y="650.3857">last_name</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="25" x="239" y="666.6826">title</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="36" x="239" y="682.9795">email</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="45" x="239" y="699.2764">phone</text><line style="stroke:#181818;stroke-width:1.0;" x1="234" x2="414" y1="706.5781" y2="706.5781"/></g><!--class DraftDomain--><g id="elem_DraftDomain"><rect codeLine="84" fill="#F1F1F1" height="88.5938" id="DraftDomain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="144" x="252" y="117"/><ellipse cx="278.7" cy="133" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M281.6688,138.6406 Q281.0906,138.9375 280.45,139.0781 Q279.8094,139.2344 279.1063,139.2344 Q276.6063,139.2344 275.2781,137.5938 Q273.9656,135.9375 273.9656,132.8125 Q273.9656,129.6875 275.2781,128.0313 Q276.6063,126.375 279.1063,126.375 Q279.8094,126.375 280.45,126.5313 Q281.1063,126.6875 281.6688,126.9844 L281.6688,129.7031 Q281.0438,129.125 280.45,128.8594 Q279.8563,128.5781 279.2313,128.5781 Q277.8875,128.5781 277.2,129.6563 Q276.5125,130.7188 276.5125,132.8125 Q276.5125,134.9063 277.2,135.9844 Q277.8875,137.0469 279.2313,137.0469 Q279.8563,137.0469 280.45,136.7813 Q281.0438,136.5 281.6688,135.9219 L281.6688,138.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="86" x="295.3" y="137.8467">DraftDomain</text><line style="stroke:#181818;stroke-width:0.5;" x1="253" x2="395" y1="149" y2="149"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="258" y="165.9951">Requested domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="253" x2="395" y1="173.2969" y2="173.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="39" x="258" y="190.292">name</text><line style="stroke:#181818;stroke-width:1.0;" x1="253" x2="395" y1="197.5938" y2="197.5938"/></g><!--class Domain--><g id="elem_Domain"><rect codeLine="93" fill="#F1F1F1" height="104.8906" id="Domain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="133" x="1242.5" y="494"/><ellipse cx="1279.1" cy="510" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1282.0688,515.6406 Q1281.4906,515.9375 1280.85,516.0781 Q1280.2094,516.2344 1279.5063,516.2344 Q1277.0063,516.2344 1275.6781,514.5938 Q1274.3656,512.9375 1274.3656,509.8125 Q1274.3656,506.6875 1275.6781,505.0313 Q1277.0063,503.375 1279.5063,503.375 Q1280.2094,503.375 1280.85,503.5313 Q1281.5063,503.6875 1282.0688,503.9844 L1282.0688,506.7031 Q1281.4438,506.125 1280.85,505.8594 Q1280.2563,505.5781 1279.6313,505.5781 Q1278.2875,505.5781 1277.6,506.6563 Q1276.9125,507.7188 1276.9125,509.8125 Q1276.9125,511.9063 1277.6,512.9844 Q1278.2875,514.0469 1279.6313,514.0469 Q1280.2563,514.0469 1280.85,513.7813 Q1281.4438,513.5 1282.0688,512.9219 L1282.0688,515.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="53" x="1297.9" y="514.8467">Domain</text><line style="stroke:#181818;stroke-width:0.5;" x1="1243.5" x2="1374.5" y1="526" y2="526"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="121" x="1248.5" y="542.9951">Approved domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="1243.5" x2="1374.5" y1="550.2969" y2="550.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="39" x="1248.5" y="567.292">name</text><line style="stroke:#181818;stroke-width:1.0;" x1="1243.5" x2="1374.5" y1="574.5938" y2="574.5938"/><text fill="#000000" font-family="sans-serif" font-size="14" font-weight="bold" lengthAdjust="spacing" textLength="103" x="1248.5" y="591.5889">EPP methods</text></g><!--class DomainInformation--><g id="elem_DomainInformation"><rect codeLine="103" fill="#F1F1F1" height="137.4844" id="DomainInformation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="286" x="687" y="249"/><ellipse cx="760.75" cy="265" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M763.7188,270.6406 Q763.1406,270.9375 762.5,271.0781 Q761.8594,271.2344 761.1563,271.2344 Q758.6563,271.2344 757.3281,269.5938 Q756.0156,267.9375 756.0156,264.8125 Q756.0156,261.6875 757.3281,260.0313 Q758.6563,258.375 761.1563,258.375 Q761.8594,258.375 762.5,258.5313 Q763.1563,258.6875 763.7188,258.9844 L763.7188,261.7031 Q763.0938,261.125 762.5,260.8594 Q761.9063,260.5781 761.2813,260.5781 Q759.9375,260.5781 759.25,261.6563 Q758.5625,262.7188 758.5625,264.8125 Q758.5625,266.9063 759.25,267.9844 Q759.9375,269.0469 761.2813,269.0469 Q761.9063,269.0469 762.5,268.7813 Q763.0938,268.5 763.7188,267.9219 L763.7188,270.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="130" x="781.25" y="269.8467">DomainInformation</text><line style="stroke:#181818;stroke-width:0.5;" x1="688" x2="972" y1="281" y2="281"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="232" x="693" y="297.9951">Registrar information on a domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="688" x2="972" y1="305.2969" y2="305.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="693" y="322.292">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="274" x="693" y="338.5889">domain_application (DomainApplication)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="97" x="693" y="354.8857">security_email</text><line style="stroke:#181818;stroke-width:1.0;" x1="688" x2="972" y1="362.1875" y2="362.1875"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="152" x="693" y="379.1826">Request information...</text></g><!--class UserDomainRole--><g id="elem_UserDomainRole"><rect codeLine="117" fill="#F1F1F1" height="121.1875" id="UserDomainRole" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="148" x="756" y="707"/><ellipse cx="771" cy="723" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M773.9688,728.6406 Q773.3906,728.9375 772.75,729.0781 Q772.1094,729.2344 771.4063,729.2344 Q768.9063,729.2344 767.5781,727.5938 Q766.2656,725.9375 766.2656,722.8125 Q766.2656,719.6875 767.5781,718.0313 Q768.9063,716.375 771.4063,716.375 Q772.1094,716.375 772.75,716.5313 Q773.4063,716.6875 773.9688,716.9844 L773.9688,719.7031 Q773.3438,719.125 772.75,718.8594 Q772.1563,718.5781 771.5313,718.5781 Q770.1875,718.5781 769.5,719.6563 Q768.8125,720.7188 768.8125,722.8125 Q768.8125,724.9063 769.5,725.9844 Q770.1875,727.0469 771.5313,727.0469 Q772.1563,727.0469 772.75,726.7813 Q773.3438,726.5 773.9688,725.9219 L773.9688,728.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="785" y="727.8467">UserDomainRole</text><line style="stroke:#181818;stroke-width:0.5;" x1="757" x2="903" y1="739" y2="739"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="84" x="762" y="755.9951">Permissions</text><line style="stroke:#181818;stroke-width:1.0;" x1="757" x2="903" y1="763.2969" y2="763.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="762" y="780.292">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="77" x="762" y="796.5889">user (User)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="762" y="812.8857">role="ADMIN"</text><line style="stroke:#181818;stroke-width:1.0;" x1="757" x2="903" y1="820.1875" y2="820.1875"/></g><!--class DomainInvitation--><g id="elem_DomainInvitation"><rect codeLine="129" fill="#F1F1F1" height="121.1875" id="DomainInvitation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="156" x="246" y="877"/><ellipse cx="265.5" cy="893" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M268.4688,898.6406 Q267.8906,898.9375 267.25,899.0781 Q266.6094,899.2344 265.9063,899.2344 Q263.4063,899.2344 262.0781,897.5938 Q260.7656,895.9375 260.7656,892.8125 Q260.7656,889.6875 262.0781,888.0313 Q263.4063,886.375 265.9063,886.375 Q266.6094,886.375 267.25,886.5313 Q267.9063,886.6875 268.4688,886.9844 L268.4688,889.7031 Q267.8438,889.125 267.25,888.8594 Q266.6563,888.5781 266.0313,888.5781 Q264.6875,888.5781 264,889.6563 Q263.3125,890.7188 263.3125,892.8125 Q263.3125,894.9063 264,895.9844 Q264.6875,897.0469 266.0313,897.0469 Q266.6563,897.0469 267.25,896.7813 Q267.8438,896.5 268.4688,895.9219 L268.4688,898.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="280.5" y="897.8467">DomainInvitation</text><line style="stroke:#181818;stroke-width:0.5;" x1="247" x2="401" y1="909" y2="909"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="144" x="252" y="925.9951">Email invitations sent</text><line style="stroke:#181818;stroke-width:1.0;" x1="247" x2="401" y1="933.2969" y2="933.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="36" x="252" y="950.292">email</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="252" y="966.5889">domain (Domain)</text><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="43" x="252" y="982.8857">status</text><line style="stroke:#181818;stroke-width:1.0;" x1="247" x2="401" y1="990.1875" y2="990.1875"/></g><!--entity applicant--><g id="elem_applicant"><ellipse cx="37" cy="291" fill="#FF0000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M37,299 L37,326 M24,307 L50,307 M37,326 L24,341 M37,326 L50,341 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="62" x="6" y="355.4951">applicant</text></g><!--entity analyst--><g id="elem_analyst"><ellipse cx="37" cy="402" fill="#0000FF" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M37,410 L37,437 M24,418 L50,418 M37,437 L24,452 M37,437 L50,452 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="48" x="13" y="466.4951">analyst</text></g><!--entity user1--><g id="elem_user1"><ellipse cx="830" cy="517" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M830,525 L830,552 M817,533 L843,533 M830,552 L817,567 M830,552 L843,567 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="40" x="810" y="581.4951">user1</text></g><!--entity user2--><g id="elem_user2"><ellipse cx="324" cy="14" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M324,22 L324,49 M311,30 L337,30 M324,49 L311,64 M324,49 L337,64 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="40" x="304" y="78.4951">user2</text></g><!--entity user3--><g id="elem_user3"><ellipse cx="324" cy="758" fill="#008000" rx="8" ry="8" style="stroke:#181818;stroke-width:0.5;"/><path d="M324,766 L324,793 M311,774 L337,774 M324,793 L311,808 M324,793 L337,808 " fill="none" style="stroke:#181818;stroke-width:0.5;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="40" x="304" y="822.4951">user3</text></g><!--link GMN4 to User--><g id="link_GMN4_User"><path d="M934.37,979.47 C1014.2,975.67 1124.45,960.15 1206,908.5 C1242.5,885.38 1270.05,844.1 1287.26,812.15 " fill="none" id="GMN4-User" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/></g><!--link User to DomainApplication--><g id="link_User_DomainApplication"><path codeLine="68" d="M1235.88,748.94 C1225.85,746.41 1215.67,743.87 1206,741.5 C1177.23,734.45 714.14,631.36 687,619.5 C600.71,581.79 512.91,523.21 445.39,472.9 " fill="none" id="User-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="129" x="765.5" y="615.5669">creator, investigator</text></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="82" d="M324,506.15 C324,514.48 324,522.78 324,530.92 " fill="none" id="DomainApplication-Contact" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="324,493.06,320,499.06,324,505.06,328,499.06,324,493.06" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="324,544.22,328,538.22,324,532.22,320,538.22,324,544.22" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="292" x="166.5" y="523.3169">authorizing_official, submitter, other_contacts</text></g><!--link DraftDomain to DomainApplication--><g id="link_DraftDomain_DomainApplication"><path codeLine="91" d="M324,206 C324,221.38 324,239.4 324,257.86 " fill="none" id="DraftDomain-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="120" x="252.5" y="236.5669">requested_domain</text></g><!--link DomainApplication to Domain--><g id="link_DomainApplication_Domain"><path codeLine="101" d="M445.23,392.46 C615.33,417.13 935.66,466.05 1206,521.5 C1216.13,523.58 1226.78,525.96 1237.22,528.41 " fill="none" id="DomainApplication-to-Domain" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="1242.32,529.62,1234.492,523.6432,1237.4561,528.4613,1232.638,531.4254,1242.32,529.62" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="62" x="799" y="425.5669">approve()</text></g><!--link DomainInformation to Domain--><g id="link_DomainInformation_Domain"><path codeLine="113" d="M973.23,330.82 C1047.47,343.14 1136.95,366.85 1206,412.5 C1236.85,432.9 1262.12,465.85 1279.79,493.98 " fill="none" id="DomainInformation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to DomainApplication--><g id="link_DomainInformation_DomainApplication"><path codeLine="114" d="M686.61,348.91 C676.61,350.62 666.67,352.17 657,353.5 C587.18,363.07 508.51,368.52 445.27,371.6 " fill="none" id="DomainInformation-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to DomainInformation--><g id="link_DomainApplication_DomainInformation"><path codeLine="115" d="M445.33,360.08 C455.36,358.85 465.35,357.64 475,356.5 C542.78,348.47 617.94,340.12 681.5,333.21 " fill="none" id="DomainApplication-to-DomainInformation" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="686.83,332.63,677.449,329.6306,681.8595,333.1728,678.3174,337.5833,686.83,332.63" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="62" x="535" y="333.5669">approve()</text></g><!--link UserDomainRole to User--><g id="link_UserDomainRole_User"><path codeLine="125" d="M904.23,767.5 C994.32,767.5 1146.33,767.5 1235.91,767.5 " fill="none" id="UserDomainRole-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to Domain--><g id="link_UserDomainRole_Domain"><path codeLine="126" d="M904.23,733.57 C996.54,690.8 1153.86,617.91 1242.41,576.89 " fill="none" id="UserDomainRole-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to UserDomainRole--><g id="link_DomainApplication_UserDomainRole"><path codeLine="127" d="M426.23,493.2 C433.25,504.39 439.66,515.9 445,527.5 C473.8,590.04 427.51,629.64 475,679.5 C512.4,718.77 658.19,744.88 750.61,757.87 " fill="none" id="DomainApplication-to-UserDomainRole" style="stroke:#0000FF;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#0000FF" points="755.79,758.59,747.423,753.3945,750.8372,757.9049,746.3268,761.3191,755.79,758.59" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="62" x="535" y="675.5669">approve()</text></g><!--link DomainInvitation to Domain--><g id="link_DomainInvitation_Domain"><path codeLine="137" d="M402.06,937.46 C526.31,935.02 776.83,920.24 973,845.5 C1089.23,801.22 1116.77,777.15 1206,690.5 C1233.8,663.5 1259.03,628.02 1277.45,599.04 " fill="none" id="DomainInvitation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInvitation to UserDomainRole--><g id="link_DomainInvitation_UserDomainRole"><path codeLine="138" d="M402.36,895.78 C425.33,884.37 450.83,872.64 475,863.5 C567.48,828.52 678.01,800.66 750.67,784.15 " fill="none" id="DomainInvitation-to-UserDomainRole" style="stroke:#008000;stroke-width:1.0;stroke-dasharray:7.0,7.0;"/><polygon fill="#008000" points="755.83,782.98,746.1712,781.0545,750.9521,784.0782,747.9284,788.8591,755.83,782.98" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" lengthAdjust="spacing" textLength="105" x="513.5" y="802.5669">User.first_login()</text></g><!--link applicant to DomainApplication--><g id="link_applicant_DomainApplication"><path codeLine="141" d="M68.23,326.33 C99.39,332.35 150.06,342.13 198.04,351.39 " fill="none" id="applicant-to-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="202.97,352.34,194.9007,346.6932,198.0622,351.3841,193.3713,354.5456,202.97,352.34" style="stroke:#181818;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="63" x="104" y="328.5669">/register</text></g><!--link analyst to DomainApplication--><g id="link_analyst_DomainApplication"><path codeLine="144" d="M61.32,426.92 C91.46,421 146.21,410.24 197.86,400.09 " fill="none" id="analyst-to-DomainApplication" style="stroke:#0000FF;stroke-width:1.0;"/><polygon fill="#0000FF" points="202.85,399.11,193.2501,396.9096,197.9427,400.0686,194.7838,404.7612,202.85,399.11" style="stroke:#0000FF;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="73" x="99" y="400.5669">approve()</text></g><!--link user1 to Domain--><g id="link_user1_Domain"><path codeLine="147" d="M850.29,546.5 C914.8,546.5 1125.23,546.5 1236.9,546.5 " fill="none" id="user1-to-Domain" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="1242.14,546.5,1233.14,542.5,1237.14,546.5,1233.14,550.5,1242.14,546.5" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="201" x="1004" y="542.5669">/domain/&lt;id&gt;/nameservers</text></g><!--link user2 to DomainInformation--><g id="link_user2_DomainInformation"><path codeLine="149" d="M344.35,51.96 C368.26,62.54 410.07,81.47 445,99.5 C535,145.95 634.38,202.52 709.49,246.39 " fill="none" id="user2-to-DomainInformation" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="713.95,249,708.2079,240.9982,709.6363,246.4718,704.1627,247.9001,713.95,249" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="146" x="493" y="112.5669">/domain/&lt;id&gt;/?????</text></g><!--link user3 to UserDomainRole--><g id="link_user3_UserDomainRole"><path codeLine="151" d="M344.14,786.74 C410.14,784.12 630.69,775.37 750.28,770.62 " fill="none" id="user3-to-UserDomainRole" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="755.55,770.41,746.3973,766.7729,750.554,770.6098,746.7171,774.7665,755.55,770.41" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="180" x="476" y="770.5669">/domain/&lt;id&gt;/users/add</text></g><!--link user3 to DomainInvitation--><g id="link_user3_DomainInvitation"><path codeLine="152" d="M324,825.87 C324,839.81 324,856 324,871.64 " fill="none" id="user3-to-DomainInvitation" style="stroke:#008000;stroke-width:1.0;"/><polygon fill="#008000" points="324,876.92,328,867.92,324,871.92,320,867.92,324,876.92" style="stroke:#008000;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="13" font-weight="bold" lengthAdjust="spacing" textLength="180" x="222.5" y="855.8169">/domain/&lt;id&gt;/users/add</text></g><!--SRC=[XLNRRXen47tVhx32GmcAGKtUK4gLXgX2wYL2YlfGLSZipYvklJQr3MbIvTyxzgxtJXgXi9xn7fzpPiOm8THZplzmcKK2Kaki8ffdEqiIhY6sNCaeYWKpXYnLphYysUy5ZvbBaByH8SrrgZHX9F7xC4Kf_eirC8lnyOC1VOu1BezWBC_QKNQmEwNvC_BOg3JbCMU2Z6-Lj2osReCvR7DkBUXMLDaTw4rS14oLCXvolzVg2Ccc84J6XG2Nql3xW2IQESrIMs-83rg3j9j7s1fk0P6_bKyUMI0FYPgFK09qDdZbw-8G58o-vDwXwNGQlGG_dNHluV8davbwOyZ1HNmoOBWN_EDB99K5uakaKlyk9cwTkP2GxLC9ydMrlCNuumwaHpE4QOqqoPR5lp2HQfMJJohZSfgfOuIHw-t2RPGiX-lPTa6u8UXfiOSyFAoM4SY4kCEZgDy1LD12npmK-g9LuA2rh8kN6vwTBsNBx96fgbecvThOZME4YvmdYO2mGh0gOxaLxXkGbC3l_Kv926uDS9rGJIVLwVF1bhke- -oYqrpL6DITukMiGozr6hzaUOgDSwu9DUyrPNlkmh3vbZvvbA_dtVqzoG759SQLTFZygP_oxwEjEC2FwO9KDCgn6P-tpr_LNLpAphYnckbcVnFyT2-0_lGLaGrhi1dt2FgP1vn3RfyseSJ_cQi-KqfB-g_b6gSE6TNrg8anO9SRXsBZMWdmNjs3phan-88vxOeV_ke-rFZkkxERvUVLbxFGHHraMepUGBWb-OIMpbklrFt8RLtsErS9D-9bq62Hf0sgGftwwWnkFvYWf0VThrELGiwP1f23f5rWMjmNmjrOZZqEgxjK2jdIaj4QagXUqeGk1dxBvcGocMdVrA0damf6Cl64pJRwWBv5OKLB7qyYLMRMIAw-RydeezCI5GiQfD76_26DmhxPDKyMCpVRkFc8DoHYrL2NJQZB0QXsctPGtxk_5jvL4- -AqF9wg41xrdSG_Q_DZ2K9efw0w9NsLP1_]--></g></svg>
\ No newline at end of file
diff --git a/docs/architecture/diagrams/models_diagram.md b/docs/architecture/diagrams/models_diagram.md
index 77fa36707..000d480c7 100644
--- a/docs/architecture/diagrams/models_diagram.md
+++ b/docs/architecture/diagrams/models_diagram.md
@@ -65,6 +65,7 @@ class "registrar.DomainApplication <Registrar>" as registrar.DomainApplication #
     + type_of_work (TextField)
     + more_organization_information (TextField)
     ~ authorizing_official (ForeignKey)
+    ~ approved_domain (OneToOneField)
     ~ requested_domain (OneToOneField)
     ~ submitter (ForeignKey)
     + purpose (TextField)
@@ -79,6 +80,7 @@ class "registrar.DomainApplication <Registrar>" as registrar.DomainApplication #
 registrar.DomainApplication -- registrar.User
 registrar.DomainApplication -- registrar.User
 registrar.DomainApplication -- registrar.Contact
+registrar.DomainApplication -- registrar.DraftDomain
 registrar.DomainApplication -- registrar.Domain
 registrar.DomainApplication -- registrar.Contact
 registrar.DomainApplication *--* registrar.Website
@@ -129,6 +131,17 @@ registrar.DomainInformation -- registrar.Contact
 registrar.DomainInformation *--* registrar.Contact
 
 
+class "registrar.DraftDomain <Registrar>" as registrar.DraftDomain #d6f4e9 {
+    draft domain
+    --
+    + id (BigAutoField)
+    + created_at (DateTimeField)
+    + updated_at (DateTimeField)
+    + name (CharField)
+    --
+}
+
+
 class "registrar.Domain <Registrar>" as registrar.Domain #d6f4e9 {
     domain
     --
@@ -136,7 +149,6 @@ class "registrar.Domain <Registrar>" as registrar.Domain #d6f4e9 {
     + created_at (DateTimeField)
     + updated_at (DateTimeField)
     + name (CharField)
-    + is_active (FSMField)
     --
 }
 
@@ -218,6 +230,8 @@ class "registrar.PublicContact <Registrar>" as registrar.PublicContact #d6f4e9 {
     + created_at (DateTimeField)
     + updated_at (DateTimeField)
     + contact_type (CharField)
+    + registry_id (CharField)
+    ~ domain (ForeignKey)
     + name (TextField)
     + org (TextField)
     + street1 (TextField)
@@ -234,6 +248,8 @@ class "registrar.PublicContact <Registrar>" as registrar.PublicContact #d6f4e9 {
     --
 }
 
+registrar.PublicContact -- registrar.Domain
+
 
 class "registrar.User <Registrar>" as registrar.User #d6f4e9 {
     user
diff --git a/docs/architecture/diagrams/models_diagram.svg b/docs/architecture/diagrams/models_diagram.svg
index e0cdd355f..0075c44cb 100644
--- a/docs/architecture/diagrams/models_diagram.svg
+++ b/docs/architecture/diagrams/models_diagram.svg
@@ -1 +1 @@
-<?xml version="1.0" encoding="us-ascii" standalone="no"?><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" contentStyleType="text/css" height="2165px" preserveAspectRatio="none" style="width:1584px;height:2165px;background:#FFFFFF;" version="1.1" viewBox="0 0 1584 2165" width="1584px" zoomAndPan="magnify"><defs/><g><!--cluster registrar--><g id="cluster_registrar"><path d="M8.5,6 L78.5,6 A3.75,3.75 0 0 1 81,8.5 L88,28.2969 L1490.5,28.2969 A2.5,2.5 0 0 1 1493,30.7969 L1493,2155.5 A2.5,2.5 0 0 1 1490.5,2158 L8.5,2158 A2.5,2.5 0 0 1 6,2155.5 L6,8.5 A2.5,2.5 0 0 1 8.5,6 " fill="none" style="stroke:#000000;stroke-width:1.5;"/><line style="stroke:#000000;stroke-width:1.5;" x1="6" x2="88" y1="28.2969" y2="28.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" font-weight="bold" lengthAdjust="spacing" textLength="69" x="10" y="20.9951">registrar</text></g><!--class Contact--><g id="elem_Contact"><rect codeLine="23" fill="#D6F4E9" height="235.2656" id="Contact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="895.5" y="1316"/><ellipse cx="913.2" cy="1332" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M916.1688,1337.6406 Q915.5906,1337.9375 914.95,1338.0781 Q914.3094,1338.2344 913.6063,1338.2344 Q911.1063,1338.2344 909.7781,1336.5938 Q908.4656,1334.9375 908.4656,1331.8125 Q908.4656,1328.6875 909.7781,1327.0313 Q911.1063,1325.375 913.6063,1325.375 Q914.3094,1325.375 914.95,1325.5313 Q915.6063,1325.6875 916.1688,1325.9844 L916.1688,1328.7031 Q915.5438,1328.125 914.95,1327.8594 Q914.3563,1327.5781 913.7313,1327.5781 Q912.3875,1327.5781 911.7,1328.6563 Q911.0125,1329.7188 911.0125,1331.8125 Q911.0125,1333.9063 911.7,1334.9844 Q912.3875,1336.0469 913.7313,1336.0469 Q914.3563,1336.0469 914.95,1335.7813 Q915.5438,1335.5 916.1688,1334.9219 L916.1688,1337.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="115" x="927.8" y="1336.8467">registrar.Contact</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1057.5" y="1313"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1058.5" y="1325.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="896.5" x2="1111.5" y1="1348" y2="1348"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="52" x="901.5" y="1364.9951">contact</text><line style="stroke:#181818;stroke-width:1.0;" x1="896.5" x2="1111.5" y1="1372.2969" y2="1372.2969"/><ellipse cx="906.5" cy="1385.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="915.5" y="1389.292">id (BigAutoField)</text><ellipse cx="906.5" cy="1402.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="915.5" y="1405.5889">created_at (DateTimeField)</text><ellipse cx="906.5" cy="1418.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="915.5" y="1421.8857">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="906.5,1430.8359,902.5,1436.8359,910.5,1436.8359" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="153" x="915.5" y="1438.1826">user (OneToOneField)</text><ellipse cx="906.5" cy="1451.1328" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="147" x="915.5" y="1454.4795">first_name (TextField)</text><ellipse cx="906.5" cy="1467.4297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="168" x="915.5" y="1470.7764">middle_name (TextField)</text><ellipse cx="906.5" cy="1483.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="146" x="915.5" y="1487.0732">last_name (TextField)</text><ellipse cx="906.5" cy="1500.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="101" x="915.5" y="1503.3701">title (TextField)</text><ellipse cx="906.5" cy="1516.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="915.5" y="1519.667">email (TextField)</text><ellipse cx="906.5" cy="1532.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="915.5" y="1535.9639">phone (PhoneNumberField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="896.5" x2="1111.5" y1="1543.2656" y2="1543.2656"/></g><!--class User--><g id="elem_User"><rect codeLine="237" fill="#D6F4E9" height="316.75" id="User" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="284" x="862" y="1611"/><ellipse cx="921.25" cy="1627" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M924.2188,1632.6406 Q923.6406,1632.9375 923,1633.0781 Q922.3594,1633.2344 921.6563,1633.2344 Q919.1563,1633.2344 917.8281,1631.5938 Q916.5156,1629.9375 916.5156,1626.8125 Q916.5156,1623.6875 917.8281,1622.0313 Q919.1563,1620.375 921.6563,1620.375 Q922.3594,1620.375 923,1620.5313 Q923.6563,1620.6875 924.2188,1620.9844 L924.2188,1623.7031 Q923.5938,1623.125 923,1622.8594 Q922.4063,1622.5781 921.7813,1622.5781 Q920.4375,1622.5781 919.75,1623.6563 Q919.0625,1624.7188 919.0625,1626.8125 Q919.0625,1628.9063 919.75,1629.9844 Q920.4375,1631.0469 921.7813,1631.0469 Q922.4063,1631.0469 923,1630.7813 Q923.5938,1630.5 924.2188,1629.9219 L924.2188,1632.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="941.75" y="1631.8467">registrar.User</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1091" y="1608"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1092" y="1620.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="863" x2="1145" y1="1643" y2="1643"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="31" x="868" y="1659.9951">user</text><line style="stroke:#181818;stroke-width:1.0;" x1="863" x2="1145" y1="1667.2969" y2="1667.2969"/><ellipse cx="873" cy="1680.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="882" y="1684.292">id (BigAutoField)</text><ellipse cx="873" cy="1697.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="145" x="882" y="1700.5889">password (CharField)</text><ellipse cx="873" cy="1713.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="177" x="882" y="1716.8857">last_login (DateTimeField)</text><ellipse cx="873" cy="1729.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="192" x="882" y="1733.1826">is_superuser (BooleanField)</text><ellipse cx="873" cy="1746.1328" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="148" x="882" y="1749.4795">username (CharField)</text><ellipse cx="873" cy="1762.4297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="149" x="882" y="1765.7764">first_name (CharField)</text><ellipse cx="873" cy="1778.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="148" x="882" y="1782.0732">last_name (CharField)</text><ellipse cx="873" cy="1795.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="882" y="1798.3701">email (EmailField)</text><ellipse cx="873" cy="1811.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="150" x="882" y="1814.667">is_staff (BooleanField)</text><ellipse cx="873" cy="1827.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="161" x="882" y="1830.9639">is_active (BooleanField)</text><ellipse cx="873" cy="1843.9141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="193" x="882" y="1847.2607">date_joined (DateTimeField)</text><ellipse cx="873" cy="1860.2109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="882" y="1863.5576">phone (PhoneNumberField)</text><polygon fill="#FFFF44" points="873,1871.5078,877,1875.5078,873,1879.5078,869,1875.5078" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="185" x="882" y="1879.8545">groups (ManyToManyField)</text><polygon fill="#FFFF44" points="873,1887.8047,877,1891.8047,873,1895.8047,869,1891.8047" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="258" x="882" y="1896.1514">user_permissions (ManyToManyField)</text><polygon fill="#FFFF44" points="873,1904.1016,877,1908.1016,873,1912.1016,869,1908.1016" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="195" x="882" y="1912.4482">domains (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="863" x2="1145" y1="1919.75" y2="1919.75"/></g><!--class DomainApplication--><g id="elem_DomainApplication"><rect codeLine="41" fill="#D6F4E9" height="593.7969" id="DomainApplication" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="314" x="1029" y="662"/><ellipse cx="1057.05" cy="678" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1060.0188,683.6406 Q1059.4406,683.9375 1058.8,684.0781 Q1058.1594,684.2344 1057.4563,684.2344 Q1054.9563,684.2344 1053.6281,682.5938 Q1052.3156,680.9375 1052.3156,677.8125 Q1052.3156,674.6875 1053.6281,673.0313 Q1054.9563,671.375 1057.4563,671.375 Q1058.1594,671.375 1058.8,671.5313 Q1059.4563,671.6875 1060.0188,671.9844 L1060.0188,674.7031 Q1059.3938,674.125 1058.8,673.8594 Q1058.2063,673.5781 1057.5813,673.5781 Q1056.2375,673.5781 1055.55,674.6563 Q1054.8625,675.7188 1054.8625,677.8125 Q1054.8625,679.9063 1055.55,680.9844 Q1056.2375,682.0469 1057.5813,682.0469 Q1058.2063,682.0469 1058.8,681.7813 Q1059.3938,681.5 1060.0188,680.9219 L1060.0188,683.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="1073.95" y="682.8467">registrar.DomainApplication</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1288" y="659"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1289" y="671.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="1030" x2="1342" y1="694" y2="694"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="129" x="1035" y="710.9951">domain application</text><line style="stroke:#181818;stroke-width:1.0;" x1="1030" x2="1342" y1="718.2969" y2="718.2969"/><ellipse cx="1040" cy="731.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="1049" y="735.292">id (BigAutoField)</text><ellipse cx="1040" cy="748.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="1049" y="751.5889">created_at (DateTimeField)</text><ellipse cx="1040" cy="764.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="1049" y="767.8857">updated_at (DateTimeField)</text><ellipse cx="1040" cy="780.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="1049" y="784.1826">status (FSMField)</text><polygon fill="#4177AF" points="1040,793.1328,1036,799.1328,1044,799.1328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="140" x="1049" y="800.4795">creator (ForeignKey)</text><polygon fill="#4177AF" points="1040,809.4297,1036,815.4297,1044,815.4297" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="171" x="1049" y="816.7764">investigator (ForeignKey)</text><ellipse cx="1040" cy="829.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="200" x="1049" y="833.0732">organization_type (CharField)</text><ellipse cx="1040" cy="846.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="283" x="1049" y="849.3701">federally_recognized_tribe (BooleanField)</text><ellipse cx="1040" cy="862.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="261" x="1049" y="865.667">state_recognized_tribe (BooleanField)</text><ellipse cx="1040" cy="878.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="153" x="1049" y="881.9639">tribe_name (TextField)</text><ellipse cx="1040" cy="894.9141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="180" x="1049" y="898.2607">federal_agency (TextField)</text><ellipse cx="1040" cy="911.2109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="162" x="1049" y="914.5576">federal_type (CharField)</text><ellipse cx="1040" cy="927.5078" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="223" x="1049" y="930.8545">is_election_board (BooleanField)</text><ellipse cx="1040" cy="943.8047" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="207" x="1049" y="947.1514">organization_name (TextField)</text><ellipse cx="1040" cy="960.1016" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="1049" y="963.4482">address_line1 (TextField)</text><ellipse cx="1040" cy="976.3984" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="174" x="1049" y="979.7451">address_line2 (CharField)</text><ellipse cx="1040" cy="992.6953" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="1049" y="996.042">city (TextField)</text><ellipse cx="1040" cy="1008.9922" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="1049" y="1012.3389">state_territory (CharField)</text><ellipse cx="1040" cy="1025.2891" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="133" x="1049" y="1028.6357">zipcode (CharField)</text><ellipse cx="1040" cy="1041.5859" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="161" x="1049" y="1044.9326">urbanization (TextField)</text><ellipse cx="1040" cy="1057.8828" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="1049" y="1061.2295">type_of_work (TextField)</text><ellipse cx="1040" cy="1074.1797" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="288" x="1049" y="1077.5264">more_organization_information (TextField)</text><polygon fill="#4177AF" points="1040,1086.4766,1036,1092.4766,1044,1092.4766" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="217" x="1049" y="1093.8232">authorizing_official (ForeignKey)</text><polygon fill="#4177AF" points="1040,1102.7734,1036,1108.7734,1044,1108.7734" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="252" x="1049" y="1110.1201">requested_domain (OneToOneField)</text><polygon fill="#4177AF" points="1040,1119.0703,1036,1125.0703,1044,1125.0703" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="1049" y="1126.417">submitter (ForeignKey)</text><ellipse cx="1040" cy="1139.3672" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="1049" y="1142.7139">purpose (TextField)</text><ellipse cx="1040" cy="1155.6641" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="271" x="1049" y="1159.0107">no_other_contacts_rationale (TextField)</text><ellipse cx="1040" cy="1171.9609" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="171" x="1049" y="1175.3076">anything_else (TextField)</text><ellipse cx="1040" cy="1188.2578" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="268" x="1049" y="1191.6045">is_policy_acknowledged (BooleanField)</text><polygon fill="#FFFF44" points="1040,1199.5547,1044,1203.5547,1040,1207.5547,1036,1203.5547" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="255" x="1049" y="1207.9014">current_websites (ManyToManyField)</text><polygon fill="#FFFF44" points="1040,1215.8516,1044,1219.8516,1040,1223.8516,1036,1219.8516" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="273" x="1049" y="1224.1982">alternative_domains (ManyToManyField)</text><polygon fill="#FFFF44" points="1040,1232.1484,1044,1236.1484,1040,1240.1484,1036,1236.1484" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="240" x="1049" y="1240.4951">other_contacts (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="1030" x2="1342" y1="1247.7969" y2="1247.7969"/></g><!--class Domain--><g id="elem_Domain"><rect codeLine="131" fill="#D6F4E9" height="153.7813" id="Domain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="717.5" y="1988"/><ellipse cx="735.65" cy="2004" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M738.6188,2009.6406 Q738.0406,2009.9375 737.4,2010.0781 Q736.7594,2010.2344 736.0563,2010.2344 Q733.5563,2010.2344 732.2281,2008.5938 Q730.9156,2006.9375 730.9156,2003.8125 Q730.9156,2000.6875 732.2281,1999.0313 Q733.5563,1997.375 736.0563,1997.375 Q736.7594,1997.375 737.4,1997.5313 Q738.0563,1997.6875 738.6188,1997.9844 L738.6188,2000.7031 Q737.9938,2000.125 737.4,1999.8594 Q736.8063,1999.5781 736.1813,1999.5781 Q734.8375,1999.5781 734.15,2000.6563 Q733.4625,2001.7188 733.4625,2003.8125 Q733.4625,2005.9063 734.15,2006.9844 Q734.8375,2008.0469 736.1813,2008.0469 Q736.8063,2008.0469 737.4,2007.7813 Q737.9938,2007.5 738.6188,2006.9219 L738.6188,2009.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="750.35" y="2008.8467">registrar.Domain</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="879.5" y="1985"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="880.5" y="1997.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="718.5" x2="933.5" y1="2020" y2="2020"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="51" x="723.5" y="2036.9951">domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="718.5" x2="933.5" y1="2044.2969" y2="2044.2969"/><ellipse cx="728.5" cy="2057.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="737.5" y="2061.292">id (BigAutoField)</text><ellipse cx="728.5" cy="2074.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="737.5" y="2077.5889">created_at (DateTimeField)</text><ellipse cx="728.5" cy="2090.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="737.5" y="2093.8857">updated_at (DateTimeField)</text><ellipse cx="728.5" cy="2106.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="737.5" y="2110.1826">name (CharField)</text><ellipse cx="728.5" cy="2123.1328" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="133" x="737.5" y="2126.4795">is_active (FSMField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="718.5" x2="933.5" y1="2133.7813" y2="2133.7813"/></g><!--class Website--><g id="elem_Website"><rect codeLine="260" fill="#D6F4E9" height="137.4844" id="Website" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="1222.5" y="1365"/><ellipse cx="1239.3" cy="1381" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1242.2688,1386.6406 Q1241.6906,1386.9375 1241.05,1387.0781 Q1240.4094,1387.2344 1239.7063,1387.2344 Q1237.2063,1387.2344 1235.8781,1385.5938 Q1234.5656,1383.9375 1234.5656,1380.8125 Q1234.5656,1377.6875 1235.8781,1376.0313 Q1237.2063,1374.375 1239.7063,1374.375 Q1240.4094,1374.375 1241.05,1374.5313 Q1241.7063,1374.6875 1242.2688,1374.9844 L1242.2688,1377.7031 Q1241.6438,1377.125 1241.05,1376.8594 Q1240.4563,1376.5781 1239.8313,1376.5781 Q1238.4875,1376.5781 1237.8,1377.6563 Q1237.1125,1378.7188 1237.1125,1380.8125 Q1237.1125,1382.9063 1237.8,1383.9844 Q1238.4875,1385.0469 1239.8313,1385.0469 Q1240.4563,1385.0469 1241.05,1384.7813 Q1241.6438,1384.5 1242.2688,1383.9219 L1242.2688,1386.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="1253.7" y="1385.8467">registrar.Website</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1384.5" y="1362"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1385.5" y="1374.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="1223.5" x2="1438.5" y1="1397" y2="1397"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="54" x="1228.5" y="1413.9951">website</text><line style="stroke:#181818;stroke-width:1.0;" x1="1223.5" x2="1438.5" y1="1421.2969" y2="1421.2969"/><ellipse cx="1233.5" cy="1434.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="1242.5" y="1438.292">id (BigAutoField)</text><ellipse cx="1233.5" cy="1451.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="1242.5" y="1454.5889">created_at (DateTimeField)</text><ellipse cx="1233.5" cy="1467.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="1242.5" y="1470.8857">updated_at (DateTimeField)</text><ellipse cx="1233.5" cy="1483.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="1242.5" y="1487.1826">website (CharField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="1223.5" x2="1438.5" y1="1494.4844" y2="1494.4844"/></g><!--class DomainInformation--><g id="elem_DomainInformation"><rect codeLine="88" fill="#D6F4E9" height="561.2031" id="DomainInformation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="314" x="836" y="41"/><ellipse cx="863.15" cy="57" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M866.1188,62.6406 Q865.5406,62.9375 864.9,63.0781 Q864.2594,63.2344 863.5563,63.2344 Q861.0563,63.2344 859.7281,61.5938 Q858.4156,59.9375 858.4156,56.8125 Q858.4156,53.6875 859.7281,52.0313 Q861.0563,50.375 863.5563,50.375 Q864.2594,50.375 864.9,50.5313 Q865.5563,50.6875 866.1188,50.9844 L866.1188,53.7031 Q865.4938,53.125 864.9,52.8594 Q864.3063,52.5781 863.6813,52.5781 Q862.3375,52.5781 861.65,53.6563 Q860.9625,54.7188 860.9625,56.8125 Q860.9625,58.9063 861.65,59.9844 Q862.3375,61.0469 863.6813,61.0469 Q864.3063,61.0469 864.9,60.7813 Q865.4938,60.5 866.1188,59.9219 L866.1188,62.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="879.85" y="61.8467">registrar.DomainInformation</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1095" y="38"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1096" y="50.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="837" x2="1149" y1="73" y2="73"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="842" y="89.9951">domain information</text><line style="stroke:#181818;stroke-width:1.0;" x1="837" x2="1149" y1="97.2969" y2="97.2969"/><ellipse cx="847" cy="110.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="856" y="114.292">id (BigAutoField)</text><ellipse cx="847" cy="127.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="856" y="130.5889">created_at (DateTimeField)</text><ellipse cx="847" cy="143.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="856" y="146.8857">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="847,155.8359,843,161.8359,851,161.8359" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="140" x="856" y="163.1826">creator (ForeignKey)</text><polygon fill="#4177AF" points="847,172.1328,843,178.1328,851,178.1328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="254" x="856" y="179.4795">domain_application (OneToOneField)</text><ellipse cx="847" cy="192.4297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="200" x="856" y="195.7764">organization_type (CharField)</text><ellipse cx="847" cy="208.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="283" x="856" y="212.0732">federally_recognized_tribe (BooleanField)</text><ellipse cx="847" cy="225.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="261" x="856" y="228.3701">state_recognized_tribe (BooleanField)</text><ellipse cx="847" cy="241.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="153" x="856" y="244.667">tribe_name (TextField)</text><ellipse cx="847" cy="257.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="180" x="856" y="260.9639">federal_agency (TextField)</text><ellipse cx="847" cy="273.9141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="162" x="856" y="277.2607">federal_type (CharField)</text><ellipse cx="847" cy="290.2109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="223" x="856" y="293.5576">is_election_board (BooleanField)</text><ellipse cx="847" cy="306.5078" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="207" x="856" y="309.8545">organization_name (TextField)</text><ellipse cx="847" cy="322.8047" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="856" y="326.1514">address_line1 (TextField)</text><ellipse cx="847" cy="339.1016" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="174" x="856" y="342.4482">address_line2 (CharField)</text><ellipse cx="847" cy="355.3984" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="856" y="358.7451">city (TextField)</text><ellipse cx="847" cy="371.6953" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="856" y="375.042">state_territory (CharField)</text><ellipse cx="847" cy="387.9922" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="133" x="856" y="391.3389">zipcode (CharField)</text><ellipse cx="847" cy="404.2891" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="161" x="856" y="407.6357">urbanization (TextField)</text><ellipse cx="847" cy="420.5859" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="856" y="423.9326">type_of_work (TextField)</text><ellipse cx="847" cy="436.8828" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="288" x="856" y="440.2295">more_organization_information (TextField)</text><polygon fill="#4177AF" points="847,449.1797,843,455.1797,851,455.1797" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="217" x="856" y="456.5264">authorizing_official (ForeignKey)</text><polygon fill="#4177AF" points="847,465.4766,843,471.4766,851,471.4766" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="856" y="472.8232">domain (OneToOneField)</text><polygon fill="#4177AF" points="847,481.7734,843,487.7734,851,487.7734" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="856" y="489.1201">submitter (ForeignKey)</text><ellipse cx="847" cy="502.0703" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="856" y="505.417">purpose (TextField)</text><ellipse cx="847" cy="518.3672" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="271" x="856" y="521.7139">no_other_contacts_rationale (TextField)</text><ellipse cx="847" cy="534.6641" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="171" x="856" y="538.0107">anything_else (TextField)</text><ellipse cx="847" cy="550.9609" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="268" x="856" y="554.3076">is_policy_acknowledged (BooleanField)</text><ellipse cx="847" cy="567.2578" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="179" x="856" y="570.6045">security_email (EmailField)</text><polygon fill="#FFFF44" points="847,578.5547,851,582.5547,847,586.5547,843,582.5547" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="240" x="856" y="586.9014">other_contacts (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="837" x2="1149" y1="594.2031" y2="594.2031"/></g><!--class HostIP--><g id="elem_HostIP"><rect codeLine="143" fill="#D6F4E9" height="153.7813" id="HostIP" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="297.5" y="1356.5"/><ellipse cx="319.7" cy="1372.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M322.6688,1378.1406 Q322.0906,1378.4375 321.45,1378.5781 Q320.8094,1378.7344 320.1063,1378.7344 Q317.6063,1378.7344 316.2781,1377.0938 Q314.9656,1375.4375 314.9656,1372.3125 Q314.9656,1369.1875 316.2781,1367.5313 Q317.6063,1365.875 320.1063,1365.875 Q320.8094,1365.875 321.45,1366.0313 Q322.1063,1366.1875 322.6688,1366.4844 L322.6688,1369.2031 Q322.0438,1368.625 321.45,1368.3594 Q320.8563,1368.0781 320.2313,1368.0781 Q318.8875,1368.0781 318.2,1369.1563 Q317.5125,1370.2188 317.5125,1372.3125 Q317.5125,1374.4063 318.2,1375.4844 Q318.8875,1376.5469 320.2313,1376.5469 Q320.8563,1376.5469 321.45,1376.2813 Q322.0438,1376 322.6688,1375.4219 L322.6688,1378.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="105" x="335.3" y="1377.3467">registrar.HostIP</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="459.5" y="1353.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="460.5" y="1365.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="298.5" x2="513.5" y1="1388.5" y2="1388.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="47" x="303.5" y="1405.4951">host ip</text><line style="stroke:#181818;stroke-width:1.0;" x1="298.5" x2="513.5" y1="1412.7969" y2="1412.7969"/><ellipse cx="308.5" cy="1426.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="317.5" y="1429.792">id (BigAutoField)</text><ellipse cx="308.5" cy="1442.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="317.5" y="1446.0889">created_at (DateTimeField)</text><ellipse cx="308.5" cy="1459.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="317.5" y="1462.3857">updated_at (DateTimeField)</text><ellipse cx="308.5" cy="1475.3359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="317.5" y="1478.6826">address (CharField)</text><polygon fill="#4177AF" points="308.5,1487.6328,304.5,1493.6328,312.5,1493.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="122" x="317.5" y="1494.9795">host (ForeignKey)</text><line style="stroke:#181818;stroke-width:1.0;" x1="298.5" x2="513.5" y1="1502.2813" y2="1502.2813"/></g><!--class Host--><g id="elem_Host"><rect codeLine="156" fill="#D6F4E9" height="153.7813" id="Host" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="266.5" y="1692.5"/><ellipse cx="294.1" cy="1708.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M297.0688,1714.1406 Q296.4906,1714.4375 295.85,1714.5781 Q295.2094,1714.7344 294.5063,1714.7344 Q292.0063,1714.7344 290.6781,1713.0938 Q289.3656,1711.4375 289.3656,1708.3125 Q289.3656,1705.1875 290.6781,1703.5313 Q292.0063,1701.875 294.5063,1701.875 Q295.2094,1701.875 295.85,1702.0313 Q296.5063,1702.1875 297.0688,1702.4844 L297.0688,1705.2031 Q296.4438,1704.625 295.85,1704.3594 Q295.2563,1704.0781 294.6313,1704.0781 Q293.2875,1704.0781 292.6,1705.1563 Q291.9125,1706.2188 291.9125,1708.3125 Q291.9125,1710.4063 292.6,1711.4844 Q293.2875,1712.5469 294.6313,1712.5469 Q295.2563,1712.5469 295.85,1712.2813 Q296.4438,1712 297.0688,1711.4219 L297.0688,1714.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="310.9" y="1713.3467">registrar.Host</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="428.5" y="1689.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="429.5" y="1701.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="267.5" x2="482.5" y1="1724.5" y2="1724.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="31" x="272.5" y="1741.4951">host</text><line style="stroke:#181818;stroke-width:1.0;" x1="267.5" x2="482.5" y1="1748.7969" y2="1748.7969"/><ellipse cx="277.5" cy="1762.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="286.5" y="1765.792">id (BigAutoField)</text><ellipse cx="277.5" cy="1778.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="286.5" y="1782.0889">created_at (DateTimeField)</text><ellipse cx="277.5" cy="1795.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="286.5" y="1798.3857">updated_at (DateTimeField)</text><ellipse cx="277.5" cy="1811.3359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="286.5" y="1814.6826">name (CharField)</text><polygon fill="#4177AF" points="277.5,1823.6328,273.5,1829.6328,281.5,1829.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="286.5" y="1830.9795">domain (ForeignKey)</text><line style="stroke:#181818;stroke-width:1.0;" x1="267.5" x2="482.5" y1="1838.2813" y2="1838.2813"/></g><!--class UserDomainRole--><g id="elem_UserDomainRole"><rect codeLine="169" fill="#D6F4E9" height="170.0781" id="UserDomainRole" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="273" x="549.5" y="1348.5"/><ellipse cx="564.5" cy="1364.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M567.4688,1370.1406 Q566.8906,1370.4375 566.25,1370.5781 Q565.6094,1370.7344 564.9063,1370.7344 Q562.4063,1370.7344 561.0781,1369.0938 Q559.7656,1367.4375 559.7656,1364.3125 Q559.7656,1361.1875 561.0781,1359.5313 Q562.4063,1357.875 564.9063,1357.875 Q565.6094,1357.875 566.25,1358.0313 Q566.9063,1358.1875 567.4688,1358.4844 L567.4688,1361.2031 Q566.8438,1360.625 566.25,1360.3594 Q565.6563,1360.0781 565.0313,1360.0781 Q563.6875,1360.0781 563,1361.1563 Q562.3125,1362.2188 562.3125,1364.3125 Q562.3125,1366.4063 563,1367.4844 Q563.6875,1368.5469 565.0313,1368.5469 Q565.6563,1368.5469 566.25,1368.2813 Q566.8438,1368 567.4688,1367.4219 L567.4688,1370.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="177" x="578.5" y="1369.3467">registrar.UserDomainRole</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="767.5" y="1345.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="768.5" y="1357.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="550.5" x2="821.5" y1="1380.5" y2="1380.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="555.5" y="1397.4951">user domain role</text><line style="stroke:#181818;stroke-width:1.0;" x1="550.5" x2="821.5" y1="1404.7969" y2="1404.7969"/><ellipse cx="560.5" cy="1418.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="569.5" y="1421.792">id (BigAutoField)</text><ellipse cx="560.5" cy="1434.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="569.5" y="1438.0889">created_at (DateTimeField)</text><ellipse cx="560.5" cy="1451.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="569.5" y="1454.3857">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="560.5,1463.3359,556.5,1469.3359,564.5,1469.3359" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="122" x="569.5" y="1470.6826">user (ForeignKey)</text><polygon fill="#4177AF" points="560.5,1479.6328,556.5,1485.6328,564.5,1485.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="569.5" y="1486.9795">domain (ForeignKey)</text><ellipse cx="560.5" cy="1499.9297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="102" x="569.5" y="1503.2764">role (TextField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="550.5" x2="821.5" y1="1510.5781" y2="1510.5781"/></g><!--class DomainInvitation--><g id="elem_DomainInvitation"><rect codeLine="184" fill="#D6F4E9" height="170.0781" id="DomainInvitation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="271" x="518.5" y="1684.5"/><ellipse cx="533.5" cy="1700.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M536.4688,1706.1406 Q535.8906,1706.4375 535.25,1706.5781 Q534.6094,1706.7344 533.9063,1706.7344 Q531.4063,1706.7344 530.0781,1705.0938 Q528.7656,1703.4375 528.7656,1700.3125 Q528.7656,1697.1875 530.0781,1695.5313 Q531.4063,1693.875 533.9063,1693.875 Q534.6094,1693.875 535.25,1694.0313 Q535.9063,1694.1875 536.4688,1694.4844 L536.4688,1697.2031 Q535.8438,1696.625 535.25,1696.3594 Q534.6563,1696.0781 534.0313,1696.0781 Q532.6875,1696.0781 532,1697.1563 Q531.3125,1698.2188 531.3125,1700.3125 Q531.3125,1702.4063 532,1703.4844 Q532.6875,1704.5469 534.0313,1704.5469 Q534.6563,1704.5469 535.25,1704.2813 Q535.8438,1704 536.4688,1703.4219 L536.4688,1706.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="175" x="547.5" y="1705.3467">registrar.DomainInvitation</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="734.5" y="1681.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="735.5" y="1693.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="519.5" x2="788.5" y1="1716.5" y2="1716.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="524.5" y="1733.4951">domain invitation</text><line style="stroke:#181818;stroke-width:1.0;" x1="519.5" x2="788.5" y1="1740.7969" y2="1740.7969"/><ellipse cx="529.5" cy="1754.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="538.5" y="1757.792">id (BigAutoField)</text><ellipse cx="529.5" cy="1770.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="538.5" y="1774.0889">created_at (DateTimeField)</text><ellipse cx="529.5" cy="1787.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="538.5" y="1790.3857">updated_at (DateTimeField)</text><ellipse cx="529.5" cy="1803.3359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="538.5" y="1806.6826">email (EmailField)</text><polygon fill="#4177AF" points="529.5,1815.6328,525.5,1821.6328,533.5,1821.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="538.5" y="1822.9795">domain (ForeignKey)</text><ellipse cx="529.5" cy="1835.9297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="538.5" y="1839.2764">status (FSMField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="519.5" x2="788.5" y1="1846.5781" y2="1846.5781"/></g><!--class Nameserver--><g id="elem_Nameserver"><rect codeLine="198" fill="#D6F4E9" height="170.0781" id="Nameserver" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="240" x="22" y="1348.5"/><ellipse cx="37" cy="1364.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M39.9688,1370.1406 Q39.3906,1370.4375 38.75,1370.5781 Q38.1094,1370.7344 37.4063,1370.7344 Q34.9063,1370.7344 33.5781,1369.0938 Q32.2656,1367.4375 32.2656,1364.3125 Q32.2656,1361.1875 33.5781,1359.5313 Q34.9063,1357.875 37.4063,1357.875 Q38.1094,1357.875 38.75,1358.0313 Q39.4063,1358.1875 39.9688,1358.4844 L39.9688,1361.2031 Q39.3438,1360.625 38.75,1360.3594 Q38.1563,1360.0781 37.5313,1360.0781 Q36.1875,1360.0781 35.5,1361.1563 Q34.8125,1362.2188 34.8125,1364.3125 Q34.8125,1366.4063 35.5,1367.4844 Q36.1875,1368.5469 37.5313,1368.5469 Q38.1563,1368.5469 38.75,1368.2813 Q39.3438,1368 39.9688,1367.4219 L39.9688,1370.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="144" x="51" y="1369.3467">registrar.Nameserver</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="207" y="1345.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="208" y="1357.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="23" x2="261" y1="1380.5" y2="1380.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="82" x="28" y="1397.4951">nameserver</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="261" y1="1404.7969" y2="1404.7969"/><ellipse cx="33" cy="1418.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="42" y="1421.792">id (BigAutoField)</text><ellipse cx="33" cy="1434.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="42" y="1438.0889">created_at (DateTimeField)</text><ellipse cx="33" cy="1451.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="42" y="1454.3857">updated_at (DateTimeField)</text><ellipse cx="33" cy="1467.3359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="42" y="1470.6826">name (CharField)</text><polygon fill="#4177AF" points="33,1479.6328,29,1485.6328,37,1485.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="42" y="1486.9795">domain (ForeignKey)</text><polygon fill="#4177AF" points="33,1495.9297,29,1501.9297,37,1501.9297" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="179" x="42" y="1503.2764">host_ptr (OneToOneField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="261" y1="1510.5781" y2="1510.5781"/></g><!--class PublicContact--><g id="elem_PublicContact"><rect codeLine="213" fill="#D6F4E9" height="349.3438" id="PublicContact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="252" x="286" y="147"/><ellipse cx="301" cy="163" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M303.9688,168.6406 Q303.3906,168.9375 302.75,169.0781 Q302.1094,169.2344 301.4063,169.2344 Q298.9063,169.2344 297.5781,167.5938 Q296.2656,165.9375 296.2656,162.8125 Q296.2656,159.6875 297.5781,158.0313 Q298.9063,156.375 301.4063,156.375 Q302.1094,156.375 302.75,156.5313 Q303.4063,156.6875 303.9688,156.9844 L303.9688,159.7031 Q303.3438,159.125 302.75,158.8594 Q302.1563,158.5781 301.5313,158.5781 Q300.1875,158.5781 299.5,159.6563 Q298.8125,160.7188 298.8125,162.8125 Q298.8125,164.9063 299.5,165.9844 Q300.1875,167.0469 301.5313,167.0469 Q302.1563,167.0469 302.75,166.7813 Q303.3438,166.5 303.9688,165.9219 L303.9688,168.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="156" x="315" y="167.8467">registrar.PublicContact</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="483" y="144"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="484" y="156.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="287" x2="537" y1="179" y2="179"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="97" x="292" y="195.9951">public contact</text><line style="stroke:#181818;stroke-width:1.0;" x1="287" x2="537" y1="203.2969" y2="203.2969"/><ellipse cx="297" cy="216.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="306" y="220.292">id (BigAutoField)</text><ellipse cx="297" cy="233.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="306" y="236.5889">created_at (DateTimeField)</text><ellipse cx="297" cy="249.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="306" y="252.8857">updated_at (DateTimeField)</text><ellipse cx="297" cy="265.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="167" x="306" y="269.1826">contact_type (CharField)</text><ellipse cx="297" cy="282.1328" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="115" x="306" y="285.4795">name (TextField)</text><ellipse cx="297" cy="298.4297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="306" y="301.7764">org (TextField)</text><ellipse cx="297" cy="314.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="306" y="318.0732">street1 (TextField)</text><ellipse cx="297" cy="331.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="306" y="334.3701">street2 (TextField)</text><ellipse cx="297" cy="347.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="306" y="350.667">street3 (TextField)</text><ellipse cx="297" cy="363.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="306" y="366.9639">city (TextField)</text><ellipse cx="297" cy="379.9141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="306" y="383.2607">sp (TextField)</text><ellipse cx="297" cy="396.2109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="306" y="399.5576">pc (TextField)</text><ellipse cx="297" cy="412.5078" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="92" x="306" y="415.8545">cc (TextField)</text><ellipse cx="297" cy="428.8047" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="306" y="432.1514">email (TextField)</text><ellipse cx="297" cy="445.1016" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="306" y="448.4482">voice (TextField)</text><ellipse cx="297" cy="461.3984" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="95" x="306" y="464.7451">fax (TextField)</text><ellipse cx="297" cy="477.6953" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="96" x="306" y="481.042">pw (TextField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="287" x2="537" y1="488.3438" y2="488.3438"/></g><!--link Contact to User--><g id="link_Contact_User"><path codeLine="38" d="M1004,1551.32 C1004,1570.6 1004,1590.86 1004,1610.95 " fill="none" id="Contact-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to User--><g id="link_DomainApplication_User"><path codeLine="78" d="M1154.11,1256.08 C1143.68,1374.43 1130.71,1495.66 1113,1551 C1106.58,1571.05 1098.11,1591.27 1088.69,1610.89 " fill="none" id="DomainApplication-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to User--><g id="link_DomainApplication_User"><path codeLine="79" d="M1186.12,1256.08 C1178.68,1374.43 1165.71,1495.66 1148,1551 C1141.58,1571.05 1133.11,1591.27 1123.46,1610.89 " fill="none" id="DomainApplication-User-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="80" d="M1046.42,1256.22 C1038.95,1277.02 1032.02,1297.15 1025.91,1315.92 " fill="none" id="DomainApplication-Contact" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="82" d="M1071.9,1256.22 C1063.89,1277.02 1056.13,1297.15 1048.9,1315.92 " fill="none" id="DomainApplication-Contact-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="85" d="M1092.37,1268.33 C1087.31,1280.45 1082.26,1292.29 1077.28,1303.71 " fill="none" id="DomainApplication-Contact-2" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1097.38,1256.22,1091.3898,1260.2347,1092.7918,1267.3082,1098.782,1263.2935,1097.38,1256.22" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1071.9,1315.92,1077.9813,1312.0447,1076.743,1304.9407,1070.6617,1308.816,1071.9,1315.92" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Domain--><g id="link_DomainApplication_Domain"><path codeLine="81" d="M1195.48,1256.1 C1201.32,1520.28 1201.64,1873.62 1164,1928 C1112.34,2002.63 1012.39,2036.33 934.52,2051.53 " fill="none" id="DomainApplication-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Website--><g id="link_DomainApplication_Website"><path codeLine="83" d="M1268.61,1268.94 C1278.41,1299.33 1287.97,1327.94 1296.59,1352.48 " fill="none" id="DomainApplication-Website" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1264.53,1256.22,1262.5553,1263.1555,1268.1978,1267.6457,1270.1725,1260.7102,1264.53,1256.22" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1301.01,1364.92,1302.7667,1357.9261,1296.9865,1353.6146,1295.2298,1360.6085,1301.01,1364.92" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Website--><g id="link_DomainApplication_Website"><path codeLine="84" d="M1293.72,1268.94 C1302.5,1299.19 1310.42,1327.68 1316.78,1352.14 " fill="none" id="DomainApplication-Website-1" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1290.01,1256.22,1287.8527,1263.1009,1293.3746,1267.7387,1295.5318,1260.8578,1290.01,1256.22" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1320.06,1364.92,1322.4455,1358.1149,1317.0814,1353.2955,1314.6959,1360.1006,1320.06,1364.92" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to User--><g id="link_DomainInformation_User"><path codeLine="123" d="M944.13,602.07 C894.66,908.1 831.58,1378.26 878,1551 C883.41,1571.12 891.18,1591.31 900.25,1610.83 " fill="none" id="DomainInformation-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to DomainApplication--><g id="link_DomainInformation_DomainApplication"><path codeLine="124" d="M1077.93,602.16 C1083.95,621.98 1090.03,641.99 1096.07,661.89 " fill="none" id="DomainInformation-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="125" d="M972.63,602.24 C969.24,832.64 974.45,1147.79 985.97,1315.8 " fill="none" id="DomainInformation-Contact" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="127" d="M995.77,602.24 C998.06,832.64 1001.18,1147.79 1002.84,1315.8 " fill="none" id="DomainInformation-Contact-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="128" d="M1019.36,615.49 C1026.71,838.66 1027.7,1135.18 1020.32,1302.73 " fill="none" id="DomainInformation-Contact-2" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1018.91,602.24,1015.1166,608.3727,1019.3186,614.233,1023.112,608.1003,1018.91,602.24" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1019.72,1315.8,1023.9927,1309.991,1020.2739,1303.8128,1016.0012,1309.6218,1019.72,1315.8" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Domain--><g id="link_DomainInformation_Domain"><path codeLine="126" d="M1150.18,427.83 C1226.3,487.38 1311.7,568.6 1361,662 C1546.52,1013.45 1577.85,1172.41 1457,1551 C1394.48,1746.84 1351.95,1802.67 1189,1928 C1113.92,1985.75 1011.67,2021.11 934.82,2041.24 " fill="none" id="DomainInformation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link HostIP to Host--><g id="link_HostIP_Host"><path codeLine="153" d="M398.93,1510.71 C393.88,1565.1 387.12,1637.95 382.07,1692.33 " fill="none" id="HostIP-Host" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Host to Domain--><g id="link_Host_Domain"><path codeLine="166" d="M423.86,1846.74 C444.92,1875.1 471.51,1905.75 501,1928 C565.7,1976.8 650.49,2011.52 717.24,2033.66 " fill="none" id="Host-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to User--><g id="link_UserDomainRole_User"><path codeLine="180" d="M766.24,1518.78 C795.32,1549.32 829.09,1584.79 861.89,1619.24 " fill="none" id="UserDomainRole-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to Domain--><g id="link_UserDomainRole_Domain"><path codeLine="181" d="M757.74,1518.62 C777.33,1546.31 796.14,1578.39 807,1611 C849.28,1737.96 843.78,1896.07 835.32,1987.96 " fill="none" id="UserDomainRole-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInvitation to Domain--><g id="link_DomainInvitation_Domain"><path codeLine="195" d="M703.29,1854.61 C727.91,1896.61 757.47,1947.06 781.41,1987.9 " fill="none" id="DomainInvitation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Nameserver to Domain--><g id="link_Nameserver_Domain"><path codeLine="209" d="M135.07,1518.58 C130.97,1628.12 141.5,1818.55 249,1928 C313.41,1993.58 568.85,2033.85 717.38,2052.21 " fill="none" id="Nameserver-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Nameserver to Host--><g id="link_Nameserver_Host"><path codeLine="210" d="M200.8,1518.78 C238,1572.12 285.72,1640.52 321.8,1692.24 " fill="none" id="Nameserver-Host" style="stroke:#181818;stroke-width:1.0;"/></g><!--link User to Domain--><g id="link_User_Domain"><path codeLine="257" d="M901.22,1939.98 C893.66,1952.44 886.23,1964.68 879.17,1976.33 " fill="none" id="User-Domain" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="908.23,1928.42,901.6997,1931.4787,902.0115,1938.6831,908.5418,1935.6244,908.23,1928.42" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="872.24,1987.76,878.7691,1984.6989,878.4546,1977.4946,871.9255,1980.5558,872.24,1987.76" style="stroke:#181818;stroke-width:1.0;"/></g><!--SRC=[xLXjZzis3FwUNo7qlcGzP42xOS20OK1VTcWnj3jqD-oZeCYCezMHN4dEDLVqVdlfbrmjctHIu9eDG_CX2KJA8XzI3sdgGeKW7dZ8JOXU-U-VEHkLZkAND_kbNny85SHOuopxQVKZ_2m-p0H-TBlQ_5yicfzpOJ8nVsho9rLq5mQAxBjkNNjG4JAfefW_ntzNPWE9GbLcKmgteWhWnVmF2rSElvAzA-D3b5PjGColu7rCX1kJPGLmKWI3tHbDBAXrs2XJ4ElbsbdKlwn_NbUR9VYU617wE1j3kbZqSFuBNPpDPdeOeUSEJxHFoh8mMaNZx4IinhffrB96BjHdXTC4y5o4g68LnFpYprT9O9idEupjXVDWSlixxFOYOxSGeibf-RbmFbVMt3HkoBWh4VrdQ-NJv80Cl2gAdVIWNOxgQ6JqPedAJvqhGDcHcN2aRYFYqgSxMAeShDvDA326co2X0DtujdJAPxGD2GQCAIhBF8GW2sFXqG7vOy8KRIBbG0jL1EyD1cX7RBmnfNOPvLtbbtTcKtSFCP5k9Q-TVqjTQam5cNXkxChv3VsuMw6gk7RUt1YRurDNHXjLK0dduLs56OTHx-u9HJYt8bJBZOaHoAGiAr-wG8N1EkdY6hpig3D8tnYiI9fHTXVNjS5Ga4_3_2WTNkATLFgjTTS5P3cGIN8cTEKzs2YlOHbC1Bo5h_3nLwx-JXHLWLvPj6eB7GIyRkeBepRWlJ4zZHdmAsbtb7lyXbPylmSyN2mUzhRytSRZAs_P6yQMbfUzotEejFHroTBIkucdwWqcIaXhbEpLEwQ9-5PBljMIUwqb_wSAWl41h24OEjbrlx_LF_TK3lgKSfZWMUqH3nw_bQFk0sVTxm5Voje7gPhavrEr-orzK4o4Jc5xCNmHQ3A3yFM52_7bvOIldKBgwneNXIbFvMn7UYD_Rrj3HdTyS0qw5vACgTSuF0wWGM3nhqRzCnSUWGDvpmWSQcvefM-GhIOG6IYcs3HJXSuwZ-BJJZFueZ4k2hLr8muVu3TmTOfBfrHvqFUajJNns6xnJfLf5lVoKsKeKx-ceASd5qmfk_FtI4XVuut1M6mn7tWmUqefZFPEy1-zuIq3oZBImxi1Y3q_fyijfyYnvcMrnAxWyAWprKknBXlPQUUUv_lZkCwUwTAndoMRR0yG7x6Inwpa1qB2TV8bDHlLr0Fq5qnNjyveyjL8lQVEkwQvaYaa1ye7KJIE2t-9P-5hHqO4hfay5owlBmqPUEoKGbM2Rqi5rPFN4gRDwe_4wQCP6KEFhJbHhLQqARssZXBNEIx_SVXAc37UJWxFpqJkNLNoewWQ2ObORKm8oBsyulHCYoYdmwwS9_9kC3EHIdkDD9kwcTof-AGxRXJwzdfy0W00]--></g></svg>
\ No newline at end of file
+<?xml version="1.0" encoding="us-ascii" standalone="no"?><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" contentStyleType="text/css" height="2229px" preserveAspectRatio="none" style="width:1910px;height:2229px;background:#FFFFFF;" version="1.1" viewBox="0 0 1910 2229" width="1910px" zoomAndPan="magnify"><defs/><g><!--cluster registrar--><g id="cluster_registrar"><path d="M8.5,6 L78.5,6 A3.75,3.75 0 0 1 81,8.5 L88,28.2969 L1769.5,28.2969 A2.5,2.5 0 0 1 1772,30.7969 L1772,2219.5 A2.5,2.5 0 0 1 1769.5,2222 L8.5,2222 A2.5,2.5 0 0 1 6,2219.5 L6,8.5 A2.5,2.5 0 0 1 8.5,6 " fill="none" style="stroke:#000000;stroke-width:1.5;"/><line style="stroke:#000000;stroke-width:1.5;" x1="6" x2="88" y1="28.2969" y2="28.2969"/><text fill="#000000" font-family="sans-serif" font-size="14" font-weight="bold" lengthAdjust="spacing" textLength="69" x="10" y="20.9951">registrar</text></g><!--class Contact--><g id="elem_Contact"><rect codeLine="23" fill="#D6F4E9" height="235.2656" id="Contact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="895.5" y="1332"/><ellipse cx="913.2" cy="1348" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M916.1688,1353.6406 Q915.5906,1353.9375 914.95,1354.0781 Q914.3094,1354.2344 913.6063,1354.2344 Q911.1063,1354.2344 909.7781,1352.5938 Q908.4656,1350.9375 908.4656,1347.8125 Q908.4656,1344.6875 909.7781,1343.0313 Q911.1063,1341.375 913.6063,1341.375 Q914.3094,1341.375 914.95,1341.5313 Q915.6063,1341.6875 916.1688,1341.9844 L916.1688,1344.7031 Q915.5438,1344.125 914.95,1343.8594 Q914.3563,1343.5781 913.7313,1343.5781 Q912.3875,1343.5781 911.7,1344.6563 Q911.0125,1345.7188 911.0125,1347.8125 Q911.0125,1349.9063 911.7,1350.9844 Q912.3875,1352.0469 913.7313,1352.0469 Q914.3563,1352.0469 914.95,1351.7813 Q915.5438,1351.5 916.1688,1350.9219 L916.1688,1353.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="115" x="927.8" y="1352.8467">registrar.Contact</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1057.5" y="1329"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1058.5" y="1341.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="896.5" x2="1111.5" y1="1364" y2="1364"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="52" x="901.5" y="1380.9951">contact</text><line style="stroke:#181818;stroke-width:1.0;" x1="896.5" x2="1111.5" y1="1388.2969" y2="1388.2969"/><ellipse cx="906.5" cy="1401.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="915.5" y="1405.292">id (BigAutoField)</text><ellipse cx="906.5" cy="1418.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="915.5" y="1421.5889">created_at (DateTimeField)</text><ellipse cx="906.5" cy="1434.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="915.5" y="1437.8857">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="906.5,1446.8359,902.5,1452.8359,910.5,1452.8359" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="153" x="915.5" y="1454.1826">user (OneToOneField)</text><ellipse cx="906.5" cy="1467.1328" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="147" x="915.5" y="1470.4795">first_name (TextField)</text><ellipse cx="906.5" cy="1483.4297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="168" x="915.5" y="1486.7764">middle_name (TextField)</text><ellipse cx="906.5" cy="1499.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="146" x="915.5" y="1503.0732">last_name (TextField)</text><ellipse cx="906.5" cy="1516.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="101" x="915.5" y="1519.3701">title (TextField)</text><ellipse cx="906.5" cy="1532.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="915.5" y="1535.667">email (TextField)</text><ellipse cx="906.5" cy="1548.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="915.5" y="1551.9639">phone (PhoneNumberField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="896.5" x2="1111.5" y1="1559.2656" y2="1559.2656"/></g><!--class User--><g id="elem_User"><rect codeLine="253" fill="#D6F4E9" height="316.75" id="User" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="284" x="942" y="1659.5"/><ellipse cx="1001.25" cy="1675.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1004.2188,1681.1406 Q1003.6406,1681.4375 1003,1681.5781 Q1002.3594,1681.7344 1001.6563,1681.7344 Q999.1563,1681.7344 997.8281,1680.0938 Q996.5156,1678.4375 996.5156,1675.3125 Q996.5156,1672.1875 997.8281,1670.5313 Q999.1563,1668.875 1001.6563,1668.875 Q1002.3594,1668.875 1003,1669.0313 Q1003.6563,1669.1875 1004.2188,1669.4844 L1004.2188,1672.2031 Q1003.5938,1671.625 1003,1671.3594 Q1002.4063,1671.0781 1001.7813,1671.0781 Q1000.4375,1671.0781 999.75,1672.1563 Q999.0625,1673.2188 999.0625,1675.3125 Q999.0625,1677.4063 999.75,1678.4844 Q1000.4375,1679.5469 1001.7813,1679.5469 Q1002.4063,1679.5469 1003,1679.2813 Q1003.5938,1679 1004.2188,1678.4219 L1004.2188,1681.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="1021.75" y="1680.3467">registrar.User</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1171" y="1656.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1172" y="1668.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="943" x2="1225" y1="1691.5" y2="1691.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="31" x="948" y="1708.4951">user</text><line style="stroke:#181818;stroke-width:1.0;" x1="943" x2="1225" y1="1715.7969" y2="1715.7969"/><ellipse cx="953" cy="1729.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="962" y="1732.792">id (BigAutoField)</text><ellipse cx="953" cy="1745.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="145" x="962" y="1749.0889">password (CharField)</text><ellipse cx="953" cy="1762.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="177" x="962" y="1765.3857">last_login (DateTimeField)</text><ellipse cx="953" cy="1778.3359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="192" x="962" y="1781.6826">is_superuser (BooleanField)</text><ellipse cx="953" cy="1794.6328" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="148" x="962" y="1797.9795">username (CharField)</text><ellipse cx="953" cy="1810.9297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="149" x="962" y="1814.2764">first_name (CharField)</text><ellipse cx="953" cy="1827.2266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="148" x="962" y="1830.5732">last_name (CharField)</text><ellipse cx="953" cy="1843.5234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="962" y="1846.8701">email (EmailField)</text><ellipse cx="953" cy="1859.8203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="150" x="962" y="1863.167">is_staff (BooleanField)</text><ellipse cx="953" cy="1876.1172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="161" x="962" y="1879.4639">is_active (BooleanField)</text><ellipse cx="953" cy="1892.4141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="193" x="962" y="1895.7607">date_joined (DateTimeField)</text><ellipse cx="953" cy="1908.7109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="962" y="1912.0576">phone (PhoneNumberField)</text><polygon fill="#FFFF44" points="953,1920.0078,957,1924.0078,953,1928.0078,949,1924.0078" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="185" x="962" y="1928.3545">groups (ManyToManyField)</text><polygon fill="#FFFF44" points="953,1936.3047,957,1940.3047,953,1944.3047,949,1940.3047" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="258" x="962" y="1944.6514">user_permissions (ManyToManyField)</text><polygon fill="#FFFF44" points="953,1952.6016,957,1956.6016,953,1960.6016,949,1956.6016" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="195" x="962" y="1960.9482">domains (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="943" x2="1225" y1="1968.25" y2="1968.25"/></g><!--class DomainApplication--><g id="elem_DomainApplication"><rect codeLine="41" fill="#D6F4E9" height="610.0938" id="DomainApplication" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="314" x="1040" y="662"/><ellipse cx="1068.05" cy="678" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1071.0188,683.6406 Q1070.4406,683.9375 1069.8,684.0781 Q1069.1594,684.2344 1068.4563,684.2344 Q1065.9563,684.2344 1064.6281,682.5938 Q1063.3156,680.9375 1063.3156,677.8125 Q1063.3156,674.6875 1064.6281,673.0313 Q1065.9563,671.375 1068.4563,671.375 Q1069.1594,671.375 1069.8,671.5313 Q1070.4563,671.6875 1071.0188,671.9844 L1071.0188,674.7031 Q1070.3938,674.125 1069.8,673.8594 Q1069.2063,673.5781 1068.5813,673.5781 Q1067.2375,673.5781 1066.55,674.6563 Q1065.8625,675.7188 1065.8625,677.8125 Q1065.8625,679.9063 1066.55,680.9844 Q1067.2375,682.0469 1068.5813,682.0469 Q1069.2063,682.0469 1069.8,681.7813 Q1070.3938,681.5 1071.0188,680.9219 L1071.0188,683.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="189" x="1084.95" y="682.8467">registrar.DomainApplication</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1299" y="659"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1300" y="671.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="1041" x2="1353" y1="694" y2="694"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="129" x="1046" y="710.9951">domain application</text><line style="stroke:#181818;stroke-width:1.0;" x1="1041" x2="1353" y1="718.2969" y2="718.2969"/><ellipse cx="1051" cy="731.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="1060" y="735.292">id (BigAutoField)</text><ellipse cx="1051" cy="748.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="1060" y="751.5889">created_at (DateTimeField)</text><ellipse cx="1051" cy="764.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="1060" y="767.8857">updated_at (DateTimeField)</text><ellipse cx="1051" cy="780.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="1060" y="784.1826">status (FSMField)</text><polygon fill="#4177AF" points="1051,793.1328,1047,799.1328,1055,799.1328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="140" x="1060" y="800.4795">creator (ForeignKey)</text><polygon fill="#4177AF" points="1051,809.4297,1047,815.4297,1055,815.4297" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="171" x="1060" y="816.7764">investigator (ForeignKey)</text><ellipse cx="1051" cy="829.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="200" x="1060" y="833.0732">organization_type (CharField)</text><ellipse cx="1051" cy="846.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="283" x="1060" y="849.3701">federally_recognized_tribe (BooleanField)</text><ellipse cx="1051" cy="862.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="261" x="1060" y="865.667">state_recognized_tribe (BooleanField)</text><ellipse cx="1051" cy="878.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="153" x="1060" y="881.9639">tribe_name (TextField)</text><ellipse cx="1051" cy="894.9141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="180" x="1060" y="898.2607">federal_agency (TextField)</text><ellipse cx="1051" cy="911.2109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="162" x="1060" y="914.5576">federal_type (CharField)</text><ellipse cx="1051" cy="927.5078" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="223" x="1060" y="930.8545">is_election_board (BooleanField)</text><ellipse cx="1051" cy="943.8047" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="207" x="1060" y="947.1514">organization_name (TextField)</text><ellipse cx="1051" cy="960.1016" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="1060" y="963.4482">address_line1 (TextField)</text><ellipse cx="1051" cy="976.3984" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="174" x="1060" y="979.7451">address_line2 (CharField)</text><ellipse cx="1051" cy="992.6953" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="1060" y="996.042">city (TextField)</text><ellipse cx="1051" cy="1008.9922" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="1060" y="1012.3389">state_territory (CharField)</text><ellipse cx="1051" cy="1025.2891" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="133" x="1060" y="1028.6357">zipcode (CharField)</text><ellipse cx="1051" cy="1041.5859" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="161" x="1060" y="1044.9326">urbanization (TextField)</text><ellipse cx="1051" cy="1057.8828" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="1060" y="1061.2295">type_of_work (TextField)</text><ellipse cx="1051" cy="1074.1797" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="288" x="1060" y="1077.5264">more_organization_information (TextField)</text><polygon fill="#4177AF" points="1051,1086.4766,1047,1092.4766,1055,1092.4766" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="217" x="1060" y="1093.8232">authorizing_official (ForeignKey)</text><polygon fill="#4177AF" points="1051,1102.7734,1047,1108.7734,1055,1108.7734" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="245" x="1060" y="1110.1201">approved_domain (OneToOneField)</text><polygon fill="#4177AF" points="1051,1119.0703,1047,1125.0703,1055,1125.0703" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="252" x="1060" y="1126.417">requested_domain (OneToOneField)</text><polygon fill="#4177AF" points="1051,1135.3672,1047,1141.3672,1055,1141.3672" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="1060" y="1142.7139">submitter (ForeignKey)</text><ellipse cx="1051" cy="1155.6641" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="1060" y="1159.0107">purpose (TextField)</text><ellipse cx="1051" cy="1171.9609" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="271" x="1060" y="1175.3076">no_other_contacts_rationale (TextField)</text><ellipse cx="1051" cy="1188.2578" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="171" x="1060" y="1191.6045">anything_else (TextField)</text><ellipse cx="1051" cy="1204.5547" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="268" x="1060" y="1207.9014">is_policy_acknowledged (BooleanField)</text><polygon fill="#FFFF44" points="1051,1215.8516,1055,1219.8516,1051,1223.8516,1047,1219.8516" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="255" x="1060" y="1224.1982">current_websites (ManyToManyField)</text><polygon fill="#FFFF44" points="1051,1232.1484,1055,1236.1484,1051,1240.1484,1047,1236.1484" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="273" x="1060" y="1240.4951">alternative_domains (ManyToManyField)</text><polygon fill="#FFFF44" points="1051,1248.4453,1055,1252.4453,1051,1256.4453,1047,1252.4453" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="240" x="1060" y="1256.792">other_contacts (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="1041" x2="1353" y1="1264.0938" y2="1264.0938"/></g><!--class DraftDomain--><g id="elem_DraftDomain"><rect codeLine="133" fill="#D6F4E9" height="137.4844" id="DraftDomain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="243" x="1185.5" y="1381"/><ellipse cx="1200.5" cy="1397" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1203.4688,1402.6406 Q1202.8906,1402.9375 1202.25,1403.0781 Q1201.6094,1403.2344 1200.9063,1403.2344 Q1198.4063,1403.2344 1197.0781,1401.5938 Q1195.7656,1399.9375 1195.7656,1396.8125 Q1195.7656,1393.6875 1197.0781,1392.0313 Q1198.4063,1390.375 1200.9063,1390.375 Q1201.6094,1390.375 1202.25,1390.5313 Q1202.9063,1390.6875 1203.4688,1390.9844 L1203.4688,1393.7031 Q1202.8438,1393.125 1202.25,1392.8594 Q1201.6563,1392.5781 1201.0313,1392.5781 Q1199.6875,1392.5781 1199,1393.6563 Q1198.3125,1394.7188 1198.3125,1396.8125 Q1198.3125,1398.9063 1199,1399.9844 Q1199.6875,1401.0469 1201.0313,1401.0469 Q1201.6563,1401.0469 1202.25,1400.7813 Q1202.8438,1400.5 1203.4688,1399.9219 L1203.4688,1402.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="147" x="1214.5" y="1401.8467">registrar.DraftDomain</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1373.5" y="1378"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1374.5" y="1390.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="1186.5" x2="1427.5" y1="1413" y2="1413"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="86" x="1191.5" y="1429.9951">draft domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="1186.5" x2="1427.5" y1="1437.2969" y2="1437.2969"/><ellipse cx="1196.5" cy="1450.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="1205.5" y="1454.292">id (BigAutoField)</text><ellipse cx="1196.5" cy="1467.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="1205.5" y="1470.5889">created_at (DateTimeField)</text><ellipse cx="1196.5" cy="1483.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="1205.5" y="1486.8857">updated_at (DateTimeField)</text><ellipse cx="1196.5" cy="1499.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="1205.5" y="1503.1826">name (CharField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="1186.5" x2="1427.5" y1="1510.4844" y2="1510.4844"/></g><!--class Domain--><g id="elem_Domain"><rect codeLine="144" fill="#D6F4E9" height="137.4844" id="Domain" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="711.5" y="2069"/><ellipse cx="729.65" cy="2085" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M732.6188,2090.6406 Q732.0406,2090.9375 731.4,2091.0781 Q730.7594,2091.2344 730.0563,2091.2344 Q727.5563,2091.2344 726.2281,2089.5938 Q724.9156,2087.9375 724.9156,2084.8125 Q724.9156,2081.6875 726.2281,2080.0313 Q727.5563,2078.375 730.0563,2078.375 Q730.7594,2078.375 731.4,2078.5313 Q732.0563,2078.6875 732.6188,2078.9844 L732.6188,2081.7031 Q731.9938,2081.125 731.4,2080.8594 Q730.8063,2080.5781 730.1813,2080.5781 Q728.8375,2080.5781 728.15,2081.6563 Q727.4625,2082.7188 727.4625,2084.8125 Q727.4625,2086.9063 728.15,2087.9844 Q728.8375,2089.0469 730.1813,2089.0469 Q730.8063,2089.0469 731.4,2088.7813 Q731.9938,2088.5 732.6188,2087.9219 L732.6188,2090.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="114" x="744.35" y="2089.8467">registrar.Domain</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="873.5" y="2066"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="874.5" y="2078.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="712.5" x2="927.5" y1="2101" y2="2101"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="51" x="717.5" y="2117.9951">domain</text><line style="stroke:#181818;stroke-width:1.0;" x1="712.5" x2="927.5" y1="2125.2969" y2="2125.2969"/><ellipse cx="722.5" cy="2138.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="731.5" y="2142.292">id (BigAutoField)</text><ellipse cx="722.5" cy="2155.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="731.5" y="2158.5889">created_at (DateTimeField)</text><ellipse cx="722.5" cy="2171.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="731.5" y="2174.8857">updated_at (DateTimeField)</text><ellipse cx="722.5" cy="2187.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="731.5" y="2191.1826">name (CharField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="712.5" x2="927.5" y1="2198.4844" y2="2198.4844"/></g><!--class Website--><g id="elem_Website"><rect codeLine="276" fill="#D6F4E9" height="137.4844" id="Website" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="1501.5" y="1381"/><ellipse cx="1518.3" cy="1397" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M1521.2688,1402.6406 Q1520.6906,1402.9375 1520.05,1403.0781 Q1519.4094,1403.2344 1518.7063,1403.2344 Q1516.2063,1403.2344 1514.8781,1401.5938 Q1513.5656,1399.9375 1513.5656,1396.8125 Q1513.5656,1393.6875 1514.8781,1392.0313 Q1516.2063,1390.375 1518.7063,1390.375 Q1519.4094,1390.375 1520.05,1390.5313 Q1520.7063,1390.6875 1521.2688,1390.9844 L1521.2688,1393.7031 Q1520.6438,1393.125 1520.05,1392.8594 Q1519.4563,1392.5781 1518.8313,1392.5781 Q1517.4875,1392.5781 1516.8,1393.6563 Q1516.1125,1394.7188 1516.1125,1396.8125 Q1516.1125,1398.9063 1516.8,1399.9844 Q1517.4875,1401.0469 1518.8313,1401.0469 Q1519.4563,1401.0469 1520.05,1400.7813 Q1520.6438,1400.5 1521.2688,1399.9219 L1521.2688,1402.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="1532.7" y="1401.8467">registrar.Website</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1663.5" y="1378"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1664.5" y="1390.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="1502.5" x2="1717.5" y1="1413" y2="1413"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="54" x="1507.5" y="1429.9951">website</text><line style="stroke:#181818;stroke-width:1.0;" x1="1502.5" x2="1717.5" y1="1437.2969" y2="1437.2969"/><ellipse cx="1512.5" cy="1450.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="1521.5" y="1454.292">id (BigAutoField)</text><ellipse cx="1512.5" cy="1467.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="1521.5" y="1470.5889">created_at (DateTimeField)</text><ellipse cx="1512.5" cy="1483.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="1521.5" y="1486.8857">updated_at (DateTimeField)</text><ellipse cx="1512.5" cy="1499.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="1521.5" y="1503.1826">website (CharField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="1502.5" x2="1717.5" y1="1510.4844" y2="1510.4844"/></g><!--class DomainInformation--><g id="elem_DomainInformation"><rect codeLine="90" fill="#D6F4E9" height="561.2031" id="DomainInformation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="314" x="847" y="41"/><ellipse cx="874.15" cy="57" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M877.1188,62.6406 Q876.5406,62.9375 875.9,63.0781 Q875.2594,63.2344 874.5563,63.2344 Q872.0563,63.2344 870.7281,61.5938 Q869.4156,59.9375 869.4156,56.8125 Q869.4156,53.6875 870.7281,52.0313 Q872.0563,50.375 874.5563,50.375 Q875.2594,50.375 875.9,50.5313 Q876.5563,50.6875 877.1188,50.9844 L877.1188,53.7031 Q876.4938,53.125 875.9,52.8594 Q875.3063,52.5781 874.6813,52.5781 Q873.3375,52.5781 872.65,53.6563 Q871.9625,54.7188 871.9625,56.8125 Q871.9625,58.9063 872.65,59.9844 Q873.3375,61.0469 874.6813,61.0469 Q875.3063,61.0469 875.9,60.7813 Q876.4938,60.5 877.1188,59.9219 L877.1188,62.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="890.85" y="61.8467">registrar.DomainInformation</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="1106" y="38"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="1107" y="50.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="848" x2="1160" y1="73" y2="73"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="132" x="853" y="89.9951">domain information</text><line style="stroke:#181818;stroke-width:1.0;" x1="848" x2="1160" y1="97.2969" y2="97.2969"/><ellipse cx="858" cy="110.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="867" y="114.292">id (BigAutoField)</text><ellipse cx="858" cy="127.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="867" y="130.5889">created_at (DateTimeField)</text><ellipse cx="858" cy="143.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="867" y="146.8857">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="858,155.8359,854,161.8359,862,161.8359" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="140" x="867" y="163.1826">creator (ForeignKey)</text><polygon fill="#4177AF" points="858,172.1328,854,178.1328,862,178.1328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="254" x="867" y="179.4795">domain_application (OneToOneField)</text><ellipse cx="858" cy="192.4297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="200" x="867" y="195.7764">organization_type (CharField)</text><ellipse cx="858" cy="208.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="283" x="867" y="212.0732">federally_recognized_tribe (BooleanField)</text><ellipse cx="858" cy="225.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="261" x="867" y="228.3701">state_recognized_tribe (BooleanField)</text><ellipse cx="858" cy="241.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="153" x="867" y="244.667">tribe_name (TextField)</text><ellipse cx="858" cy="257.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="180" x="867" y="260.9639">federal_agency (TextField)</text><ellipse cx="858" cy="273.9141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="162" x="867" y="277.2607">federal_type (CharField)</text><ellipse cx="858" cy="290.2109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="223" x="867" y="293.5576">is_election_board (BooleanField)</text><ellipse cx="858" cy="306.5078" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="207" x="867" y="309.8545">organization_name (TextField)</text><ellipse cx="858" cy="322.8047" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="172" x="867" y="326.1514">address_line1 (TextField)</text><ellipse cx="858" cy="339.1016" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="174" x="867" y="342.4482">address_line2 (CharField)</text><ellipse cx="858" cy="355.3984" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="867" y="358.7451">city (TextField)</text><ellipse cx="858" cy="371.6953" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="867" y="375.042">state_territory (CharField)</text><ellipse cx="858" cy="387.9922" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="133" x="867" y="391.3389">zipcode (CharField)</text><ellipse cx="858" cy="404.2891" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="161" x="867" y="407.6357">urbanization (TextField)</text><ellipse cx="858" cy="420.5859" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="166" x="867" y="423.9326">type_of_work (TextField)</text><ellipse cx="858" cy="436.8828" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="288" x="867" y="440.2295">more_organization_information (TextField)</text><polygon fill="#4177AF" points="858,449.1797,854,455.1797,862,455.1797" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="217" x="867" y="456.5264">authorizing_official (ForeignKey)</text><polygon fill="#4177AF" points="858,465.4766,854,471.4766,862,471.4766" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="173" x="867" y="472.8232">domain (OneToOneField)</text><polygon fill="#4177AF" points="858,481.7734,854,487.7734,862,487.7734" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="157" x="867" y="489.1201">submitter (ForeignKey)</text><ellipse cx="858" cy="502.0703" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="867" y="505.417">purpose (TextField)</text><ellipse cx="858" cy="518.3672" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="271" x="867" y="521.7139">no_other_contacts_rationale (TextField)</text><ellipse cx="858" cy="534.6641" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="171" x="867" y="538.0107">anything_else (TextField)</text><ellipse cx="858" cy="550.9609" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="268" x="867" y="554.3076">is_policy_acknowledged (BooleanField)</text><ellipse cx="858" cy="567.2578" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="179" x="867" y="570.6045">security_email (EmailField)</text><polygon fill="#FFFF44" points="858,578.5547,862,582.5547,858,586.5547,854,582.5547" style="stroke:#B38D22;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="240" x="867" y="586.9014">other_contacts (ManyToManyField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="848" x2="1160" y1="594.2031" y2="594.2031"/></g><!--class HostIP--><g id="elem_HostIP"><rect codeLine="155" fill="#D6F4E9" height="153.7813" id="HostIP" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="297.5" y="1372.5"/><ellipse cx="319.7" cy="1388.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M322.6688,1394.1406 Q322.0906,1394.4375 321.45,1394.5781 Q320.8094,1394.7344 320.1063,1394.7344 Q317.6063,1394.7344 316.2781,1393.0938 Q314.9656,1391.4375 314.9656,1388.3125 Q314.9656,1385.1875 316.2781,1383.5313 Q317.6063,1381.875 320.1063,1381.875 Q320.8094,1381.875 321.45,1382.0313 Q322.1063,1382.1875 322.6688,1382.4844 L322.6688,1385.2031 Q322.0438,1384.625 321.45,1384.3594 Q320.8563,1384.0781 320.2313,1384.0781 Q318.8875,1384.0781 318.2,1385.1563 Q317.5125,1386.2188 317.5125,1388.3125 Q317.5125,1390.4063 318.2,1391.4844 Q318.8875,1392.5469 320.2313,1392.5469 Q320.8563,1392.5469 321.45,1392.2813 Q322.0438,1392 322.6688,1391.4219 L322.6688,1394.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="105" x="335.3" y="1393.3467">registrar.HostIP</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="459.5" y="1369.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="460.5" y="1381.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="298.5" x2="513.5" y1="1404.5" y2="1404.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="47" x="303.5" y="1421.4951">host ip</text><line style="stroke:#181818;stroke-width:1.0;" x1="298.5" x2="513.5" y1="1428.7969" y2="1428.7969"/><ellipse cx="308.5" cy="1442.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="317.5" y="1445.792">id (BigAutoField)</text><ellipse cx="308.5" cy="1458.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="317.5" y="1462.0889">created_at (DateTimeField)</text><ellipse cx="308.5" cy="1475.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="317.5" y="1478.3857">updated_at (DateTimeField)</text><ellipse cx="308.5" cy="1491.3359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="134" x="317.5" y="1494.6826">address (CharField)</text><polygon fill="#4177AF" points="308.5,1503.6328,304.5,1509.6328,312.5,1509.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="122" x="317.5" y="1510.9795">host (ForeignKey)</text><line style="stroke:#181818;stroke-width:1.0;" x1="298.5" x2="513.5" y1="1518.2813" y2="1518.2813"/></g><!--class Host--><g id="elem_Host"><rect codeLine="168" fill="#D6F4E9" height="153.7813" id="Host" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="217" x="346.5" y="1741"/><ellipse cx="374.1" cy="1757" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M377.0688,1762.6406 Q376.4906,1762.9375 375.85,1763.0781 Q375.2094,1763.2344 374.5063,1763.2344 Q372.0063,1763.2344 370.6781,1761.5938 Q369.3656,1759.9375 369.3656,1756.8125 Q369.3656,1753.6875 370.6781,1752.0313 Q372.0063,1750.375 374.5063,1750.375 Q375.2094,1750.375 375.85,1750.5313 Q376.5063,1750.6875 377.0688,1750.9844 L377.0688,1753.7031 Q376.4438,1753.125 375.85,1752.8594 Q375.2563,1752.5781 374.6313,1752.5781 Q373.2875,1752.5781 372.6,1753.6563 Q371.9125,1754.7188 371.9125,1756.8125 Q371.9125,1758.9063 372.6,1759.9844 Q373.2875,1761.0469 374.6313,1761.0469 Q375.2563,1761.0469 375.85,1760.7813 Q376.4438,1760.5 377.0688,1759.9219 L377.0688,1762.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="390.9" y="1761.8467">registrar.Host</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="508.5" y="1738"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="509.5" y="1750.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="347.5" x2="562.5" y1="1773" y2="1773"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="31" x="352.5" y="1789.9951">host</text><line style="stroke:#181818;stroke-width:1.0;" x1="347.5" x2="562.5" y1="1797.2969" y2="1797.2969"/><ellipse cx="357.5" cy="1810.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="366.5" y="1814.292">id (BigAutoField)</text><ellipse cx="357.5" cy="1827.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="366.5" y="1830.5889">created_at (DateTimeField)</text><ellipse cx="357.5" cy="1843.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="366.5" y="1846.8857">updated_at (DateTimeField)</text><ellipse cx="357.5" cy="1859.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="366.5" y="1863.1826">name (CharField)</text><polygon fill="#4177AF" points="357.5,1872.1328,353.5,1878.1328,361.5,1878.1328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="366.5" y="1879.4795">domain (ForeignKey)</text><line style="stroke:#181818;stroke-width:1.0;" x1="347.5" x2="562.5" y1="1886.7813" y2="1886.7813"/></g><!--class UserDomainRole--><g id="elem_UserDomainRole"><rect codeLine="181" fill="#D6F4E9" height="170.0781" id="UserDomainRole" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="273" x="549.5" y="1364.5"/><ellipse cx="564.5" cy="1380.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M567.4688,1386.1406 Q566.8906,1386.4375 566.25,1386.5781 Q565.6094,1386.7344 564.9063,1386.7344 Q562.4063,1386.7344 561.0781,1385.0938 Q559.7656,1383.4375 559.7656,1380.3125 Q559.7656,1377.1875 561.0781,1375.5313 Q562.4063,1373.875 564.9063,1373.875 Q565.6094,1373.875 566.25,1374.0313 Q566.9063,1374.1875 567.4688,1374.4844 L567.4688,1377.2031 Q566.8438,1376.625 566.25,1376.3594 Q565.6563,1376.0781 565.0313,1376.0781 Q563.6875,1376.0781 563,1377.1563 Q562.3125,1378.2188 562.3125,1380.3125 Q562.3125,1382.4063 563,1383.4844 Q563.6875,1384.5469 565.0313,1384.5469 Q565.6563,1384.5469 566.25,1384.2813 Q566.8438,1384 567.4688,1383.4219 L567.4688,1386.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="177" x="578.5" y="1385.3467">registrar.UserDomainRole</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="767.5" y="1361.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="768.5" y="1373.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="550.5" x2="821.5" y1="1396.5" y2="1396.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="555.5" y="1413.4951">user domain role</text><line style="stroke:#181818;stroke-width:1.0;" x1="550.5" x2="821.5" y1="1420.7969" y2="1420.7969"/><ellipse cx="560.5" cy="1434.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="569.5" y="1437.792">id (BigAutoField)</text><ellipse cx="560.5" cy="1450.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="569.5" y="1454.0889">created_at (DateTimeField)</text><ellipse cx="560.5" cy="1467.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="569.5" y="1470.3857">updated_at (DateTimeField)</text><polygon fill="#4177AF" points="560.5,1479.3359,556.5,1485.3359,564.5,1485.3359" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="122" x="569.5" y="1486.6826">user (ForeignKey)</text><polygon fill="#4177AF" points="560.5,1495.6328,556.5,1501.6328,564.5,1501.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="569.5" y="1502.9795">domain (ForeignKey)</text><ellipse cx="560.5" cy="1515.9297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="102" x="569.5" y="1519.2764">role (TextField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="550.5" x2="821.5" y1="1526.5781" y2="1526.5781"/></g><!--class DomainInvitation--><g id="elem_DomainInvitation"><rect codeLine="196" fill="#D6F4E9" height="170.0781" id="DomainInvitation" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="271" x="598.5" y="1733"/><ellipse cx="613.5" cy="1749" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M616.4688,1754.6406 Q615.8906,1754.9375 615.25,1755.0781 Q614.6094,1755.2344 613.9063,1755.2344 Q611.4063,1755.2344 610.0781,1753.5938 Q608.7656,1751.9375 608.7656,1748.8125 Q608.7656,1745.6875 610.0781,1744.0313 Q611.4063,1742.375 613.9063,1742.375 Q614.6094,1742.375 615.25,1742.5313 Q615.9063,1742.6875 616.4688,1742.9844 L616.4688,1745.7031 Q615.8438,1745.125 615.25,1744.8594 Q614.6563,1744.5781 614.0313,1744.5781 Q612.6875,1744.5781 612,1745.6563 Q611.3125,1746.7188 611.3125,1748.8125 Q611.3125,1750.9063 612,1751.9844 Q612.6875,1753.0469 614.0313,1753.0469 Q614.6563,1753.0469 615.25,1752.7813 Q615.8438,1752.5 616.4688,1751.9219 L616.4688,1754.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="175" x="627.5" y="1753.8467">registrar.DomainInvitation</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="814.5" y="1730"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="815.5" y="1742.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="599.5" x2="868.5" y1="1765" y2="1765"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="116" x="604.5" y="1781.9951">domain invitation</text><line style="stroke:#181818;stroke-width:1.0;" x1="599.5" x2="868.5" y1="1789.2969" y2="1789.2969"/><ellipse cx="609.5" cy="1802.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="618.5" y="1806.292">id (BigAutoField)</text><ellipse cx="609.5" cy="1819.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="618.5" y="1822.5889">created_at (DateTimeField)</text><ellipse cx="609.5" cy="1835.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="618.5" y="1838.8857">updated_at (DateTimeField)</text><ellipse cx="609.5" cy="1851.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="618.5" y="1855.1826">email (EmailField)</text><polygon fill="#4177AF" points="609.5,1864.1328,605.5,1870.1328,613.5,1870.1328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="618.5" y="1871.4795">domain (ForeignKey)</text><ellipse cx="609.5" cy="1884.4297" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="118" x="618.5" y="1887.7764">status (FSMField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="599.5" x2="868.5" y1="1895.0781" y2="1895.0781"/></g><!--class Nameserver--><g id="elem_Nameserver"><rect codeLine="210" fill="#D6F4E9" height="170.0781" id="Nameserver" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="240" x="22" y="1364.5"/><ellipse cx="37" cy="1380.5" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M39.9688,1386.1406 Q39.3906,1386.4375 38.75,1386.5781 Q38.1094,1386.7344 37.4063,1386.7344 Q34.9063,1386.7344 33.5781,1385.0938 Q32.2656,1383.4375 32.2656,1380.3125 Q32.2656,1377.1875 33.5781,1375.5313 Q34.9063,1373.875 37.4063,1373.875 Q38.1094,1373.875 38.75,1374.0313 Q39.4063,1374.1875 39.9688,1374.4844 L39.9688,1377.2031 Q39.3438,1376.625 38.75,1376.3594 Q38.1563,1376.0781 37.5313,1376.0781 Q36.1875,1376.0781 35.5,1377.1563 Q34.8125,1378.2188 34.8125,1380.3125 Q34.8125,1382.4063 35.5,1383.4844 Q36.1875,1384.5469 37.5313,1384.5469 Q38.1563,1384.5469 38.75,1384.2813 Q39.3438,1384 39.9688,1383.4219 L39.9688,1386.1406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="144" x="51" y="1385.3467">registrar.Nameserver</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="207" y="1361.5"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="208" y="1373.6387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="23" x2="261" y1="1396.5" y2="1396.5"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="82" x="28" y="1413.4951">nameserver</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="261" y1="1420.7969" y2="1420.7969"/><ellipse cx="33" cy="1434.4453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="42" y="1437.792">id (BigAutoField)</text><ellipse cx="33" cy="1450.7422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="42" y="1454.0889">created_at (DateTimeField)</text><ellipse cx="33" cy="1467.0391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="42" y="1470.3857">updated_at (DateTimeField)</text><ellipse cx="33" cy="1483.3359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="117" x="42" y="1486.6826">name (CharField)</text><polygon fill="#4177AF" points="33,1495.6328,29,1501.6328,37,1501.6328" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="42" y="1502.9795">domain (ForeignKey)</text><polygon fill="#4177AF" points="33,1511.9297,29,1517.9297,37,1517.9297" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="179" x="42" y="1519.2764">host_ptr (OneToOneField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="261" y1="1526.5781" y2="1526.5781"/></g><!--class PublicContact--><g id="elem_PublicContact"><rect codeLine="225" fill="#D6F4E9" height="381.9375" id="PublicContact" rx="2.5" ry="2.5" style="stroke:#181818;stroke-width:0.5;" width="252" x="22" y="1627"/><ellipse cx="37" cy="1643" fill="#ADD1B2" rx="11" ry="11" style="stroke:#181818;stroke-width:1.0;"/><path d="M39.9688,1648.6406 Q39.3906,1648.9375 38.75,1649.0781 Q38.1094,1649.2344 37.4063,1649.2344 Q34.9063,1649.2344 33.5781,1647.5938 Q32.2656,1645.9375 32.2656,1642.8125 Q32.2656,1639.6875 33.5781,1638.0313 Q34.9063,1636.375 37.4063,1636.375 Q38.1094,1636.375 38.75,1636.5313 Q39.4063,1636.6875 39.9688,1636.9844 L39.9688,1639.7031 Q39.3438,1639.125 38.75,1638.8594 Q38.1563,1638.5781 37.5313,1638.5781 Q36.1875,1638.5781 35.5,1639.6563 Q34.8125,1640.7188 34.8125,1642.8125 Q34.8125,1644.9063 35.5,1645.9844 Q36.1875,1647.0469 37.5313,1647.0469 Q38.1563,1647.0469 38.75,1646.7813 Q39.3438,1646.5 39.9688,1645.9219 L39.9688,1648.6406 Z " fill="#000000"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="156" x="51" y="1647.8467">registrar.PublicContact</text><rect fill="#FFFFFF" height="15.9688" style="stroke:#181818;stroke-width:1.0;stroke-dasharray:2.0,2.0;" width="58" x="219" y="1624"/><text fill="#000000" font-family="sans-serif" font-size="12" font-style="italic" lengthAdjust="spacing" textLength="56" x="220" y="1636.1387">Registrar</text><line style="stroke:#181818;stroke-width:0.5;" x1="23" x2="273" y1="1659" y2="1659"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="97" x="28" y="1675.9951">public contact</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="273" y1="1683.2969" y2="1683.2969"/><ellipse cx="33" cy="1696.9453" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="42" y="1700.292">id (BigAutoField)</text><ellipse cx="33" cy="1713.2422" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="186" x="42" y="1716.5889">created_at (DateTimeField)</text><ellipse cx="33" cy="1729.5391" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="191" x="42" y="1732.8857">updated_at (DateTimeField)</text><ellipse cx="33" cy="1745.8359" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="167" x="42" y="1749.1826">contact_type (CharField)</text><ellipse cx="33" cy="1762.1328" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="148" x="42" y="1765.4795">registry_id (CharField)</text><polygon fill="#4177AF" points="33,1774.4297,29,1780.4297,37,1780.4297" style="stroke:#1963A0;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="142" x="42" y="1781.7764">domain (ForeignKey)</text><ellipse cx="33" cy="1794.7266" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="115" x="42" y="1798.0732">name (TextField)</text><ellipse cx="33" cy="1811.0234" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="42" y="1814.3701">org (TextField)</text><ellipse cx="33" cy="1827.3203" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="42" y="1830.667">street1 (TextField)</text><ellipse cx="33" cy="1843.6172" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="42" y="1846.9639">street2 (TextField)</text><ellipse cx="33" cy="1859.9141" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="126" x="42" y="1863.2607">street3 (TextField)</text><ellipse cx="33" cy="1876.2109" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="99" x="42" y="1879.5576">city (TextField)</text><ellipse cx="33" cy="1892.5078" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="42" y="1895.8545">sp (TextField)</text><ellipse cx="33" cy="1908.8047" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="93" x="42" y="1912.1514">pc (TextField)</text><ellipse cx="33" cy="1925.1016" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="92" x="42" y="1928.4482">cc (TextField)</text><ellipse cx="33" cy="1941.3984" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="42" y="1944.7451">email (TextField)</text><ellipse cx="33" cy="1957.6953" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="112" x="42" y="1961.042">voice (TextField)</text><ellipse cx="33" cy="1973.9922" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="95" x="42" y="1977.3389">fax (TextField)</text><ellipse cx="33" cy="1990.2891" fill="#84BE84" rx="3" ry="3" style="stroke:#038048;stroke-width:1.0;"/><text fill="#000000" font-family="sans-serif" font-size="14" lengthAdjust="spacing" textLength="96" x="42" y="1993.6357">pw (TextField)</text><line style="stroke:#181818;stroke-width:1.0;" x1="23" x2="273" y1="2000.9375" y2="2000.9375"/></g><!--link Contact to User--><g id="link_Contact_User"><path codeLine="38" d="M1029.48,1567.22 C1035.88,1596.55 1042.86,1628.52 1049.62,1659.49 " fill="none" id="Contact-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to User--><g id="link_DomainApplication_User"><path codeLine="79" d="M1150.99,1272.11 C1139.78,1366.77 1127.13,1471.38 1113,1567 C1108.58,1596.91 1103.23,1628.71 1098.1,1659.25 " fill="none" id="DomainApplication-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to User--><g id="link_DomainApplication_User"><path codeLine="80" d="M1184.34,1272.11 C1174.78,1366.77 1162.13,1471.38 1148,1567 C1143.58,1596.91 1138.23,1628.71 1132.43,1659.25 " fill="none" id="DomainApplication-User-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="81" d="M1049.37,1272.31 C1041.59,1293.07 1034.36,1313.15 1027.97,1331.86 " fill="none" id="DomainApplication-Contact" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="84" d="M1074.77,1272.31 C1066.43,1293.07 1058.36,1313.15 1050.85,1331.86 " fill="none" id="DomainApplication-Contact-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Contact--><g id="link_DomainApplication_Contact"><path codeLine="87" d="M1094.96,1284.39 C1089.7,1296.49 1084.46,1308.3 1079.3,1319.68 " fill="none" id="DomainApplication-Contact-2" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1100.17,1272.31,1094.1191,1276.2326,1095.4128,1283.3267,1101.4636,1279.4041,1100.17,1272.31" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1073.73,1331.86,1079.8643,1328.0692,1078.7244,1320.9487,1072.5901,1324.7396,1073.73,1331.86" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to DraftDomain--><g id="link_DomainApplication_DraftDomain"><path codeLine="82" d="M1266.66,1272.31 C1275.92,1312.72 1284.57,1350.53 1291.47,1380.68 " fill="none" id="DomainApplication-DraftDomain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Domain--><g id="link_DomainApplication_Domain"><path codeLine="83" d="M1354.19,1152.2 C1391.66,1206.66 1426.43,1268.73 1446,1332 C1476.86,1431.78 1468.22,1464.95 1446,1567 C1400.06,1778.04 1406.79,1867.05 1244,2009 C1155.65,2086.04 1022.1,2116.54 928.55,2128.61 " fill="none" id="DomainApplication-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Website--><g id="link_DomainApplication_Website"><path codeLine="85" d="M1362.64,1175.42 C1421.87,1244.86 1485.76,1318.03 1533.83,1371.13 " fill="none" id="DomainApplication-Website" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1354.2,1165.52,1355.0438,1172.6816,1361.9791,1174.6571,1361.1352,1167.4955,1354.2,1165.52" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1542.62,1380.81,1541.5479,1373.679,1534.5532,1371.9259,1535.6252,1379.0569,1542.62,1380.81" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainApplication to Website--><g id="link_DomainApplication_Website"><path codeLine="86" d="M1362.79,1145.66 C1430.43,1223.14 1504.1,1309.95 1553.38,1370.69 " fill="none" id="DomainApplication-Website-1" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1354.1,1135.72,1355.0385,1142.8698,1361.9993,1144.7534,1361.0608,1137.6036,1354.1,1135.72" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1561.68,1380.97,1561.0158,1373.7895,1554.1323,1371.6409,1554.7964,1378.8214,1561.68,1380.97" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to User--><g id="link_DomainInformation_User"><path codeLine="125" d="M947.66,602.05 C889.84,913.36 816.4,1395.37 878,1567 C892.2,1606.57 915.67,1644.34 941.79,1678 " fill="none" id="DomainInformation-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to DomainApplication--><g id="link_DomainInformation_DomainApplication"><path codeLine="126" d="M1087.95,602.41 C1093.87,622.15 1099.86,642.11 1105.82,661.98 " fill="none" id="DomainInformation-DomainApplication" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="127" d="M980.96,602.28 C975.14,837.09 977.23,1160.76 987.22,1331.75 " fill="none" id="DomainInformation-Contact" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="129" d="M1004,602.28 C1004,837.09 1004,1160.76 1004,1331.75 " fill="none" id="DomainInformation-Contact-1" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Contact--><g id="link_DomainInformation_Contact"><path codeLine="130" d="M1027.36,615.44 C1032.64,843.11 1030.69,1147.99 1021.51,1318.68 " fill="none" id="DomainInformation-Contact-2" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1027.04,602.28,1023.1862,608.3749,1027.33,614.2765,1031.1838,608.1816,1027.04,602.28" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="1020.78,1331.75,1025.1098,1325.9835,1021.4522,1319.7688,1017.1224,1325.5354,1020.78,1331.75" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInformation to Domain--><g id="link_DomainInformation_Domain"><path codeLine="128" d="M1161.05,441.28 C1422.82,654.87 1903.88,1122.99 1736,1567 C1643.35,1812.05 1570.32,1873.67 1346,2009 C1215.96,2087.45 1040.46,2117.66 928.73,2129.28 " fill="none" id="DomainInformation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link HostIP to Host--><g id="link_HostIP_Host"><path codeLine="165" d="M416.21,1526.88 C424.6,1589.61 436.42,1678.01 444.8,1740.71 " fill="none" id="HostIP-Host" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Host to Domain--><g id="link_Host_Domain"><path codeLine="178" d="M493.87,1895.38 C515.72,1932.95 545.7,1976.92 581,2009 C618.85,2043.4 667.67,2071.58 711.31,2092.62 " fill="none" id="Host-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to User--><g id="link_UserDomainRole_User"><path codeLine="192" d="M803.88,1534.66 C840.65,1562.66 880.58,1594.92 915,1627 C925.98,1637.23 937.02,1648.1 947.92,1659.25 " fill="none" id="UserDomainRole-User" style="stroke:#181818;stroke-width:1.0;"/></g><!--link UserDomainRole to Domain--><g id="link_UserDomainRole_Domain"><path codeLine="193" d="M814.75,1534.57 C843.9,1560.43 870.96,1591.57 887,1627 C922.01,1704.33 907.34,1926.58 887,2009 C881.97,2029.39 873.02,2050.13 863.28,2068.79 " fill="none" id="UserDomainRole-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link DomainInvitation to Domain--><g id="link_DomainInvitation_Domain"><path codeLine="207" d="M756.82,1903.25 C770.85,1955.06 788.59,2020.55 801.7,2068.94 " fill="none" id="DomainInvitation-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Nameserver to Domain--><g id="link_Nameserver_Domain"><path codeLine="221" d="M231.62,1534.85 C255.16,1561.96 277.89,1593.67 292,1627 C325.25,1705.54 273.62,1944.14 329,2009 C378.11,2066.52 582.32,2104.25 711.42,2122.85 " fill="none" id="Nameserver-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link Nameserver to Host--><g id="link_Nameserver_Host"><path codeLine="222" d="M232.3,1534.83 C261.06,1563.17 292.31,1595.58 319,1627 C349.46,1662.87 380.24,1705.24 404.79,1740.86 " fill="none" id="Nameserver-Host" style="stroke:#181818;stroke-width:1.0;"/></g><!--link PublicContact to Domain--><g id="link_PublicContact_Domain"><path codeLine="250" d="M274.09,1989.2 C282.73,1996.42 291.71,2003.09 301,2009 C427.31,2089.4 600.61,2119.1 711.46,2130.07 " fill="none" id="PublicContact-Domain" style="stroke:#181818;stroke-width:1.0;"/></g><!--link User to Domain--><g id="link_User_Domain"><path codeLine="273" d="M944.26,1987.06 C923.51,2012.02 903.01,2036.67 884.83,2058.54 " fill="none" id="User-Domain" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="952.77,1976.82,945.8601,1978.8822,945.106,1986.0538,952.0159,1983.9916,952.77,1976.82" style="stroke:#181818;stroke-width:1.0;"/><polygon fill="#181818" points="876.37,2068.7,883.2817,2066.6436,884.0418,2059.4727,877.1302,2061.5291,876.37,2068.7" style="stroke:#181818;stroke-width:1.0;"/></g><!--SRC=[xLbRRzis57xtho2Q5w-11xGT1Wme1ZJDWXL5kw3Bq4U2fevbhZAfaPHJfsX- -uukJaJfK9A1n2k6vY4sT3wAv_wHnp8Jph4d5bBbl1NsnzT6Uo4zU_bX_-ZN9qmuraUS93-lVe9Vs9SPmpzPFws-BnRLnobJ2PkVgVHLuSs5WYpveNakBGWF2HUUpS_nsvNQG00eycG8SCiA1vRD_z1mPV1Vi7QbhFDSYmsm-HLyze5mev8aWvWKdH5TwPNFgEUm4IeZdkThen5_MNwyBpPBi2qnUkZhhE_InQBbvx_GnDbi9hiHEZUuetwLvvcImYkZ1sBLnuPHIoev4_U0umJmb3alVE7O_EBFTq5WgpSRZEs5iQ1I_HPsUv7IMt1UfRJyb1cR2grkAZEut-Ne_TThOSFaW0IioB8Tjo1DYd1KqbkrHF2PCHa8tLCJ9c8hKInzcesvI47BtG0WehXo73AGbMrB8sn2wn3u8AAAI18Bpl5CQNWs8dzEg2ALfmoeNUN1MeK1sX4BRrGkJK9PLzZbdTfKxQ5Fk5dnQsC_KKMDgS03ovLU6RkXNtVBHE7NngeRfLDywqf99J8guR0ihDbYq9ioeVhDBLRRFmNcvHZC5SkDyXx8rCqBcnj71KiRRlmQB6yQhEEsCakGpKZedL-NPa56lWspA3TOwZikv2TjhZD8KY1JwOJ9mbhGdb_3qYaFMAllyFLNflmV04M6LcdKQWkD2-BOq9O8hDCT-qsitoSV2TqqvkaBpgrO-HfpmA83yLEqUhfOF6qj-LW7yP6Nx1MBijQRLbsEiLORIx9MgyYFTUmOOATQATwYqiZvv3jDVQUf1wMf_nFjO7m0YGT3nvk3zM_bnmDnIBkbZBD25DthWzENnbhto5uFky41NVkUpeRwTGlLwTIbf4dGOzqiwdRIgTqg7QAqDCf5905zamRzRfn_SpbWK0C83LhZGwRoOrdKjEwUKRUr8hrErIdcneGWxyjdCN-CU8FmnNyQslkEFi4FPBSW_51sk5hw0NlkW4SwmD0trTYbqSwY-BZZdZZrzQcjrAx7H1t_TKmTOeGXQDpf-zQxLNxgcVSE6ZdoxkN7oj082m-vdXxjH0Zvpjw9BdsF5OEns68-n9tP0eLkr7U2RxJ2wmx8SqzFDpjERDavV6Y80MDTyx9OujbcV1OSua9VvvNik8FXq_rsiVj9e_gEbnfCZie-ZBs3BPxcoIk61V3FefBdKSaBGXAxn-JKq5bIBv07ZAstHadoOYW-K_jTqprs5akH0zXgXAC8PfgMOpdkXJUqXCYEQlwVcRJC0JAxy2BZYXnipKVKzQMKa3KV_Z11RnsHHNfmhOuNgnMj2ahHvMeRcGEKXSJ_DdXxJYBM3lw4SS9IQueyFkehFS7HLnlb73RuE71uPaXmTlS24y-ZPeOra4fxH9XDpSppM4shsIvooFyN]--></g></svg>
\ No newline at end of file

From e8fe34562cf275d344fa21d45874dcc0be5e9c93 Mon Sep 17 00:00:00 2001
From: Jon Roberts <jon.roberts@gsa.gov>
Date: Wed, 31 May 2023 10:51:10 -0400
Subject: [PATCH 59/72] Added exception for school fixing #524

---
 src/registrar/models/domain_application.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/registrar/models/domain_application.py b/src/registrar/models/domain_application.py
index 3859e04a7..c157372b1 100644
--- a/src/registrar/models/domain_application.py
+++ b/src/registrar/models/domain_application.py
@@ -567,6 +567,7 @@ class DomainApplication(TimeStampedModel):
         excluded = [
             DomainApplication.OrganizationChoices.FEDERAL,
             DomainApplication.OrganizationChoices.INTERSTATE,
+            DomainApplication.OrganizationChoices.SCHOOL_DISTRICT
         ]
         return bool(user_choice and user_choice not in excluded)
 

From 6c48a0be132a1fc9b332b5c0a0a19976db6a850f Mon Sep 17 00:00:00 2001
From: Jon Roberts <jon.roberts@gsa.gov>
Date: Wed, 31 May 2023 10:52:34 -0400
Subject: [PATCH 60/72] Added comment

---
 src/registrar/models/domain_application.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/registrar/models/domain_application.py b/src/registrar/models/domain_application.py
index c157372b1..47139cfc0 100644
--- a/src/registrar/models/domain_application.py
+++ b/src/registrar/models/domain_application.py
@@ -562,6 +562,7 @@ class DomainApplication(TimeStampedModel):
         """Show this step if the answer to the first question implies it.
 
         This shows for answers that aren't "Federal" or "Interstate".
+        This also doesnt show if user selected "School District" as well (#524)
         """
         user_choice = self.organization_type
         excluded = [

From 40eee950ece9e441852766c56fb096cce0c3214c Mon Sep 17 00:00:00 2001
From: Jon Roberts <jon.roberts@gsa.gov>
Date: Wed, 31 May 2023 11:15:36 -0400
Subject: [PATCH 61/72] Linted

---
 src/registrar/models/domain_application.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/models/domain_application.py b/src/registrar/models/domain_application.py
index 47139cfc0..1ff551bea 100644
--- a/src/registrar/models/domain_application.py
+++ b/src/registrar/models/domain_application.py
@@ -568,7 +568,7 @@ class DomainApplication(TimeStampedModel):
         excluded = [
             DomainApplication.OrganizationChoices.FEDERAL,
             DomainApplication.OrganizationChoices.INTERSTATE,
-            DomainApplication.OrganizationChoices.SCHOOL_DISTRICT
+            DomainApplication.OrganizationChoices.SCHOOL_DISTRICT,
         ]
         return bool(user_choice and user_choice not in excluded)
 

From d2a25d0d52b015d6928728e5a7354627e18164c7 Mon Sep 17 00:00:00 2001
From: Seamus Johnston <seamus.johnston@gsa.gov>
Date: Wed, 31 May 2023 12:05:58 -0500
Subject: [PATCH 62/72] Fix typo in reset-db.yaml

---
 .github/workflows/reset-db.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/reset-db.yaml b/.github/workflows/reset-db.yaml
index 69fda8bff..f1b3d38c0 100644
--- a/.github/workflows/reset-db.yaml
+++ b/.github/workflows/reset-db.yaml
@@ -34,8 +34,8 @@ jobs:
       - name: Delete existing data for ${{ github.event.inputs.environment }}
         uses: 18f/cg-deploy-action@main
         with:
-          cf_username: ${{ secrets[CF_USERNAME] }}
-          cf_password: ${{ secrets[CF_PASSWORD] }}
+          cf_username: ${{ secrets[env.CF_USERNAME] }}
+          cf_password: ${{ secrets[env.CF_PASSWORD] }}
           cf_org: cisa-getgov-prototyping
           cf_space: ${{ github.event.inputs.environment }}
           full_command: "cf run-task getgov-${{ github.event.inputs.environment }} --command 'python manage.py flush --no-input' --name flush"

From 320c2b5e181c2aa9e762697b7d059d4c21724c6d Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Wed, 31 May 2023 12:50:33 -0500
Subject: [PATCH 63/72] fix reset-db workflow and merge error

---
 .github/workflows/reset-db.yaml                    | 4 ++--
 src/registrar/templates/includes/summary_item.html | 2 --
 2 files changed, 2 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/reset-db.yaml b/.github/workflows/reset-db.yaml
index 69fda8bff..f1b3d38c0 100644
--- a/.github/workflows/reset-db.yaml
+++ b/.github/workflows/reset-db.yaml
@@ -34,8 +34,8 @@ jobs:
       - name: Delete existing data for ${{ github.event.inputs.environment }}
         uses: 18f/cg-deploy-action@main
         with:
-          cf_username: ${{ secrets[CF_USERNAME] }}
-          cf_password: ${{ secrets[CF_PASSWORD] }}
+          cf_username: ${{ secrets[env.CF_USERNAME] }}
+          cf_password: ${{ secrets[env.CF_PASSWORD] }}
           cf_org: cisa-getgov-prototyping
           cf_space: ${{ github.event.inputs.environment }}
           full_command: "cf run-task getgov-${{ github.event.inputs.environment }} --command 'python manage.py flush --no-input' --name flush"
diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index 6c80f544a..9de8b3c6c 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -47,7 +47,6 @@
     {{ value }}
   </p>
   {% endif %}
-    </div>
 
     {% if edit_link %}
     <a
@@ -57,5 +56,4 @@
     </a>
     {% endif %}
 
-  </div> 
 </section>

From cd7b08ccdacb0093826c41031e67fc5464f9a998 Mon Sep 17 00:00:00 2001
From: Alysia Broddrick <abroddrick@truss.works>
Date: Wed, 31 May 2023 11:41:40 -0700
Subject: [PATCH 64/72] fixed typos

---
 src/registrar/forms/domain.py | 2 +-
 src/registrar/views/domain.py | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/forms/domain.py b/src/registrar/forms/domain.py
index be26296f4..3668c3018 100644
--- a/src/registrar/forms/domain.py
+++ b/src/registrar/forms/domain.py
@@ -59,7 +59,7 @@ class ContactForm(forms.ModelForm):
     def __init__(self, *args, **kwargs):
         super().__init__(*args, **kwargs)
         # take off maxlength attribute for the phone number field
-        # which interferes with out input_with_errors template tag
+        # which interferes with our input_with_errors template tag
         self.fields["phone"].widget.attrs.pop("maxlength", None)
 
         for field_name in self.required:
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 33ce8d8eb..c5d6b1721 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -142,7 +142,7 @@ class DomainYourContactInformationView(DomainPermission, FormMixin, DetailView):
         form.save()
 
         messages.success(
-            self.request, "Your contact information for this domain have been updated."
+            self.request, "Your contact information for this domain has been updated."
         )
         # superclass has the redirect
         return super().form_valid(form)

From 32545ab75cc99a22db8994c41db4aeb5901d6109 Mon Sep 17 00:00:00 2001
From: Alysia Broddrick <abroddrick@truss.works>
Date: Wed, 31 May 2023 16:11:28 -0700
Subject: [PATCH 65/72] resolved migrations with non-sequential numbering

---
 ...er_contact_first_name_alter_contact_last_name_and_more.py} | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename src/registrar/migrations/{0021_alter_contact_first_name_alter_contact_last_name_and_more.py => 0023_alter_contact_first_name_alter_contact_last_name_and_more.py} (89%)

diff --git a/src/registrar/migrations/0021_alter_contact_first_name_alter_contact_last_name_and_more.py b/src/registrar/migrations/0023_alter_contact_first_name_alter_contact_last_name_and_more.py
similarity index 89%
rename from src/registrar/migrations/0021_alter_contact_first_name_alter_contact_last_name_and_more.py
rename to src/registrar/migrations/0023_alter_contact_first_name_alter_contact_last_name_and_more.py
index 355ab2748..b2259f650 100644
--- a/src/registrar/migrations/0021_alter_contact_first_name_alter_contact_last_name_and_more.py
+++ b/src/registrar/migrations/0023_alter_contact_first_name_alter_contact_last_name_and_more.py
@@ -1,11 +1,11 @@
-# Generated by Django 4.2 on 2023-05-23 22:54
+# Generated by Django 4.2.1 on 2023-05-31 23:09
 
 from django.db import migrations, models
 
 
 class Migration(migrations.Migration):
     dependencies = [
-        ("registrar", "0020_remove_domaininformation_security_email"),
+        ("registrar", "0022_draftdomain_domainapplication_approved_domain_and_more"),
     ]
 
     operations = [

From d4b4cc6ea78d1f651c3a38080d2d30fc731282f1 Mon Sep 17 00:00:00 2001
From: Alysia Broddrick <abroddrick@truss.works>
Date: Wed, 31 May 2023 16:18:30 -0700
Subject: [PATCH 66/72] removed unused import from merge

---
 src/registrar/views/domain.py | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index b9231e846..d101b46b7 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -15,7 +15,6 @@ from django.urls import reverse
 from django.views.generic.edit import FormMixin
 
 from registrar.models import (
-    Domain,
     DomainInvitation,
     User,
     UserDomainRole,
@@ -109,7 +108,7 @@ class DomainNameserversView(DomainPermissionView, FormMixin):
 class DomainYourContactInformationView(DomainPermissionView, FormMixin):
 
     """Domain your contact information editing view."""
-    
+
     template_name = "domain_your_contact_information.html"
     form_class = ContactForm
 

From 89e14120d7bd4c7cfc4e08b961cfb35e26d2530a Mon Sep 17 00:00:00 2001
From: Logan McDonald <logan.mcdonald@gsa.gov>
Date: Thu, 1 Jun 2023 09:08:46 -0700
Subject: [PATCH 67/72] Remove compliance documentation (#665)

remove compliance documentation
---
 docs/compliance/.trestle/.keep                |    0
 docs/compliance/.trestle/config.ini           |   27 -
 docs/compliance/Makefile                      |   11 -
 docs/compliance/Pipfile                       |   12 -
 docs/compliance/Pipfile.lock                  |  905 ----
 docs/compliance/README.md                     |   68 -
 docs/compliance/assessment-plans/.keep        |    0
 docs/compliance/assessment-results/.keep      |    0
 docs/compliance/catalogs/.keep                |    0
 docs/compliance/component-definitions/.keep   |    0
 docs/compliance/control-families.md           |   51 -
 docs/compliance/dist/assessment-plans/.keep   |    0
 docs/compliance/dist/assessment-results/.keep |    0
 docs/compliance/dist/catalogs/.keep           |    0
 .../dist/component-definitions/.keep          |    0
 .../dist/plan-of-action-and-milestones/.keep  |    0
 docs/compliance/dist/profiles/.keep           |    0
 .../dist/system-security-plans/.keep          |    0
 .../dist/system-security-plans/ato/ac-1.md    |   79 -
 .../dist/system-security-plans/ato/ac-11.1.md |   31 -
 .../dist/system-security-plans/ato/ac-11.md   |   46 -
 .../dist/system-security-plans/ato/ac-12.md   |   31 -
 .../dist/system-security-plans/ato/ac-14.md   |   47 -
 .../dist/system-security-plans/ato/ac-17.1.md |   29 -
 .../dist/system-security-plans/ato/ac-17.2.md |   28 -
 .../dist/system-security-plans/ato/ac-17.3.md |   28 -
 .../dist/system-security-plans/ato/ac-17.4.md |   49 -
 .../dist/system-security-plans/ato/ac-17.md   |   48 -
 .../dist/system-security-plans/ato/ac-18.1.md |   29 -
 .../dist/system-security-plans/ato/ac-18.3.md |   31 -
 .../dist/system-security-plans/ato/ac-18.md   |   45 -
 .../dist/system-security-plans/ato/ac-19.5.md |   31 -
 .../dist/system-security-plans/ato/ac-19.md   |   52 -
 .../dist/system-security-plans/ato/ac-2.1.md  |   31 -
 .../dist/system-security-plans/ato/ac-2.13.md |   31 -
 .../dist/system-security-plans/ato/ac-2.2.md  |   31 -
 .../dist/system-security-plans/ato/ac-2.3.md  |   66 -
 .../dist/system-security-plans/ato/ac-2.4.md  |   35 -
 .../dist/system-security-plans/ato/ac-2.5.md  |   31 -
 .../dist/system-security-plans/ato/ac-2.md    |  166 -
 .../dist/system-security-plans/ato/ac-20.1.md |   48 -
 .../dist/system-security-plans/ato/ac-20.2.md |   31 -
 .../dist/system-security-plans/ato/ac-20.md   |   54 -
 .../dist/system-security-plans/ato/ac-21.md   |   46 -
 .../dist/system-security-plans/ato/ac-22.md   |   65 -
 .../dist/system-security-plans/ato/ac-3.md    |   31 -
 .../dist/system-security-plans/ato/ac-4.md    |   33 -
 .../dist/system-security-plans/ato/ac-5.md    |   46 -
 .../dist/system-security-plans/ato/ac-6.1.md  |   50 -
 .../dist/system-security-plans/ato/ac-6.10.md |   28 -
 .../dist/system-security-plans/ato/ac-6.2.md  |   31 -
 .../dist/system-security-plans/ato/ac-6.5.md  |   31 -
 .../dist/system-security-plans/ato/ac-6.7.md  |   46 -
 .../dist/system-security-plans/ato/ac-6.9.md  |   28 -
 .../dist/system-security-plans/ato/ac-6.md    |   31 -
 .../dist/system-security-plans/ato/ac-7.md    |   46 -
 .../dist/system-security-plans/ato/ac-8.md    |   70 -
 .../dist/system-security-plans/ato/at-1.md    |   79 -
 .../dist/system-security-plans/ato/at-2.2.md  |   32 -
 .../dist/system-security-plans/ato/at-2.3.md  |   34 -
 .../dist/system-security-plans/ato/at-2.md    |   75 -
 .../dist/system-security-plans/ato/at-3.md    |   66 -
 .../dist/system-security-plans/ato/at-4.md    |   47 -
 .../dist/system-security-plans/ato/au-1.md    |   79 -
 .../dist/system-security-plans/ato/au-11.md   |   31 -
 .../dist/system-security-plans/ato/au-12.md   |   55 -
 .../dist/system-security-plans/ato/au-2.md    |   78 -
 .../dist/system-security-plans/ato/au-3.1.md  |   31 -
 .../dist/system-security-plans/ato/au-3.md    |   84 -
 .../dist/system-security-plans/ato/au-4.md    |   28 -
 .../dist/system-security-plans/ato/au-5.md    |   46 -
 .../dist/system-security-plans/ato/au-6.1.md  |   31 -
 .../dist/system-security-plans/ato/au-6.3.md  |   31 -
 .../dist/system-security-plans/ato/au-6.md    |   55 -
 .../dist/system-security-plans/ato/au-7.1.md  |   32 -
 .../dist/system-security-plans/ato/au-7.md    |   50 -
 .../dist/system-security-plans/ato/au-8.md    |   46 -
 .../dist/system-security-plans/ato/au-9.4.md  |   31 -
 .../dist/system-security-plans/ato/au-9.md    |   46 -
 .../dist/system-security-plans/ato/ca-1.md    |   79 -
 .../dist/system-security-plans/ato/ca-2.1.md  |   35 -
 .../dist/system-security-plans/ato/ca-2.md    |   99 -
 .../dist/system-security-plans/ato/ca-3.md    |   62 -
 .../dist/system-security-plans/ato/ca-5.md    |   46 -
 .../dist/system-security-plans/ato/ca-6.md    |   79 -
 .../dist/system-security-plans/ato/ca-7.1.md  |   31 -
 .../dist/system-security-plans/ato/ca-7.4.md  |   58 -
 .../dist/system-security-plans/ato/ca-7.md    |   99 -
 .../dist/system-security-plans/ato/ca-9.md    |   67 -
 .../dist/system-security-plans/ato/cm-1.md    |   79 -
 .../dist/system-security-plans/ato/cm-10.md   |   55 -
 .../dist/system-security-plans/ato/cm-11.md   |   55 -
 .../dist/system-security-plans/ato/cm-12.1.md |   31 -
 .../dist/system-security-plans/ato/cm-12.md   |   59 -
 .../dist/system-security-plans/ato/cm-2.2.md  |   34 -
 .../dist/system-security-plans/ato/cm-2.3.md  |   31 -
 .../dist/system-security-plans/ato/cm-2.7.md  |   46 -
 .../dist/system-security-plans/ato/cm-2.md    |   53 -
 .../dist/system-security-plans/ato/cm-3.2.md  |   33 -
 .../dist/system-security-plans/ato/cm-3.4.md  |   32 -
 .../dist/system-security-plans/ato/cm-3.md    |   94 -
 .../dist/system-security-plans/ato/cm-4.2.md  |   36 -
 .../dist/system-security-plans/ato/cm-4.md    |   32 -
 .../dist/system-security-plans/ato/cm-5.md    |   35 -
 .../dist/system-security-plans/ato/cm-6.md    |   70 -
 .../dist/system-security-plans/ato/cm-7.1.md  |   50 -
 .../dist/system-security-plans/ato/cm-7.2.md  |   31 -
 .../dist/system-security-plans/ato/cm-7.5.md  |   55 -
 .../dist/system-security-plans/ato/cm-7.md    |   50 -
 .../dist/system-security-plans/ato/cm-8.1.md  |   33 -
 .../dist/system-security-plans/ato/cm-8.3.md  |   50 -
 .../dist/system-security-plans/ato/cm-8.md    |   58 -
 .../dist/system-security-plans/ato/cm-9.md    |   86 -
 .../dist/system-security-plans/ato/cp-1.md    |   79 -
 .../dist/system-security-plans/ato/cp-10.2.md |   28 -
 .../dist/system-security-plans/ato/cp-10.md   |   29 -
 .../dist/system-security-plans/ato/cp-2.1.md  |   31 -
 .../dist/system-security-plans/ato/cp-2.3.md  |   31 -
 .../dist/system-security-plans/ato/cp-2.8.md  |   31 -
 .../dist/system-security-plans/ato/cp-2.md    |  126 -
 .../dist/system-security-plans/ato/cp-3.md    |   53 -
 .../dist/system-security-plans/ato/cp-4.1.md  |   31 -
 .../dist/system-security-plans/ato/cp-4.md    |   57 -
 .../dist/system-security-plans/ato/cp-6.1.md  |   31 -
 .../dist/system-security-plans/ato/cp-6.3.md  |   32 -
 .../dist/system-security-plans/ato/cp-6.md    |   47 -
 .../dist/system-security-plans/ato/cp-7.1.md  |   31 -
 .../dist/system-security-plans/ato/cp-7.2.md  |   32 -
 .../dist/system-security-plans/ato/cp-7.3.md  |   31 -
 .../dist/system-security-plans/ato/cp-7.md    |   56 -
 .../dist/system-security-plans/ato/cp-8.1.md  |   42 -
 .../dist/system-security-plans/ato/cp-8.2.md  |   28 -
 .../dist/system-security-plans/ato/cp-8.md    |   28 -
 .../dist/system-security-plans/ato/cp-9.1.md  |   32 -
 .../dist/system-security-plans/ato/cp-9.8.md  |   31 -
 .../dist/system-security-plans/ato/cp-9.md    |   66 -
 .../dist/system-security-plans/ato/ia-1.md    |   79 -
 .../dist/system-security-plans/ato/ia-11.md   |   31 -
 .../dist/system-security-plans/ato/ia-12.2.md |   31 -
 .../dist/system-security-plans/ato/ia-12.3.md |   31 -
 .../dist/system-security-plans/ato/ia-12.5.md |   31 -
 .../dist/system-security-plans/ato/ia-12.md   |   57 -
 .../dist/system-security-plans/ato/ia-2.1.md  |   31 -
 .../dist/system-security-plans/ato/ia-2.12.md |   31 -
 .../dist/system-security-plans/ato/ia-2.2.md  |   31 -
 .../dist/system-security-plans/ato/ia-2.8.md  |   31 -
 .../dist/system-security-plans/ato/ia-2.md    |   36 -
 .../dist/system-security-plans/ato/ia-3.md    |   31 -
 .../dist/system-security-plans/ato/ia-4.4.md  |   31 -
 .../dist/system-security-plans/ato/ia-4.md    |   66 -
 .../dist/system-security-plans/ato/ia-5.1.md  |  102 -
 .../dist/system-security-plans/ato/ia-5.2.md  |   54 -
 .../dist/system-security-plans/ato/ia-5.6.md  |   31 -
 .../dist/system-security-plans/ato/ia-5.md    |  114 -
 .../dist/system-security-plans/ato/ia-6.md    |   31 -
 .../dist/system-security-plans/ato/ia-7.md    |   31 -
 .../dist/system-security-plans/ato/ia-8.1.md  |   32 -
 .../dist/system-security-plans/ato/ia-8.2.md  |   47 -
 .../dist/system-security-plans/ato/ia-8.4.md  |   31 -
 .../dist/system-security-plans/ato/ia-8.md    |   31 -
 .../dist/system-security-plans/ato/ir-1.md    |   79 -
 .../dist/system-security-plans/ato/ir-2.md    |   53 -
 .../dist/system-security-plans/ato/ir-3.2.md  |   31 -
 .../dist/system-security-plans/ato/ir-3.md    |   31 -
 .../dist/system-security-plans/ato/ir-4.1.md  |   31 -
 .../dist/system-security-plans/ato/ir-4.md    |   73 -
 .../dist/system-security-plans/ato/ir-5.md    |   32 -
 .../dist/system-security-plans/ato/ir-6.1.md  |   31 -
 .../dist/system-security-plans/ato/ir-6.3.md  |   31 -
 .../dist/system-security-plans/ato/ir-6.md    |   46 -
 .../dist/system-security-plans/ato/ir-7.1.md  |   31 -
 .../dist/system-security-plans/ato/ir-7.md    |   32 -
 .../dist/system-security-plans/ato/ir-8.md    |   96 -
 .../dist/system-security-plans/ato/ma-1.md    |   79 -
 .../dist/system-security-plans/ato/ma-2.md    |   82 -
 .../dist/system-security-plans/ato/ma-3.1.md  |   28 -
 .../dist/system-security-plans/ato/ma-3.2.md  |   28 -
 .../dist/system-security-plans/ato/ma-3.3.md  |   63 -
 .../dist/system-security-plans/ato/ma-3.md    |   45 -
 .../dist/system-security-plans/ato/ma-4.md    |   73 -
 .../dist/system-security-plans/ato/ma-5.md    |   53 -
 .../dist/system-security-plans/ato/ma-6.md    |   28 -
 .../dist/system-security-plans/ato/mp-1.md    |   79 -
 .../dist/system-security-plans/ato/mp-2.md    |   29 -
 .../dist/system-security-plans/ato/mp-3.md    |   43 -
 .../dist/system-security-plans/ato/mp-4.md    |   46 -
 .../dist/system-security-plans/ato/mp-5.md    |   63 -
 .../dist/system-security-plans/ato/mp-6.md    |   45 -
 .../dist/system-security-plans/ato/mp-7.md    |   43 -
 .../dist/system-security-plans/ato/pe-1.md    |   76 -
 .../dist/system-security-plans/ato/pe-10.md   |   52 -
 .../dist/system-security-plans/ato/pe-11.md   |   28 -
 .../dist/system-security-plans/ato/pe-12.md   |   31 -
 .../dist/system-security-plans/ato/pe-13.1.md |   30 -
 .../dist/system-security-plans/ato/pe-13.md   |   33 -
 .../dist/system-security-plans/ato/pe-14.md   |   43 -
 .../dist/system-security-plans/ato/pe-15.md   |   31 -
 .../dist/system-security-plans/ato/pe-16.md   |   46 -
 .../dist/system-security-plans/ato/pe-17.md   |   62 -
 .../dist/system-security-plans/ato/pe-2.md    |   63 -
 .../dist/system-security-plans/ato/pe-3.md    |   96 -
 .../dist/system-security-plans/ato/pe-4.md    |   27 -
 .../dist/system-security-plans/ato/pe-5.md    |   28 -
 .../dist/system-security-plans/ato/pe-6.1.md  |   29 -
 .../dist/system-security-plans/ato/pe-6.md    |   54 -
 .../dist/system-security-plans/ato/pe-8.md    |   52 -
 .../dist/system-security-plans/ato/pe-9.md    |   29 -
 .../dist/system-security-plans/ato/pl-1.md    |   79 -
 .../dist/system-security-plans/ato/pl-10.md   |   31 -
 .../dist/system-security-plans/ato/pl-11.md   |   31 -
 .../dist/system-security-plans/ato/pl-2.md    |  128 -
 .../dist/system-security-plans/ato/pl-4.1.md  |   57 -
 .../dist/system-security-plans/ato/pl-4.md    |   65 -
 .../dist/system-security-plans/ato/pl-8.md    |   76 -
 .../dist/system-security-plans/ato/ps-1.md    |   79 -
 .../dist/system-security-plans/ato/ps-2.md    |   55 -
 .../dist/system-security-plans/ato/ps-3.md    |   47 -
 .../dist/system-security-plans/ato/ps-4.md    |   75 -
 .../dist/system-security-plans/ato/ps-5.md    |   64 -
 .../dist/system-security-plans/ato/ps-6.md    |   59 -
 .../dist/system-security-plans/ato/ps-7.md    |   73 -
 .../dist/system-security-plans/ato/ps-8.md    |   46 -
 .../dist/system-security-plans/ato/ps-9.md    |   32 -
 .../dist/system-security-plans/ato/ra-1.md    |   79 -
 .../dist/system-security-plans/ato/ra-2.md    |   59 -
 .../dist/system-security-plans/ato/ra-3.1.md  |   46 -
 .../dist/system-security-plans/ato/ra-3.md    |   92 -
 .../dist/system-security-plans/ato/ra-5.11.md |   31 -
 .../dist/system-security-plans/ato/ra-5.2.md  |   31 -
 .../dist/system-security-plans/ato/ra-5.5.md  |   31 -
 .../dist/system-security-plans/ato/ra-5.md    |   96 -
 .../dist/system-security-plans/ato/ra-7.md    |   34 -
 .../dist/system-security-plans/ato/ra-9.md    |   35 -
 .../dist/system-security-plans/ato/sa-1.md    |   79 -
 .../dist/system-security-plans/ato/sa-10.md   |   83 -
 .../dist/system-security-plans/ato/sa-11.md   |   81 -
 .../dist/system-security-plans/ato/sa-15.3.md |   49 -
 .../dist/system-security-plans/ato/sa-15.md   |   58 -
 .../dist/system-security-plans/ato/sa-2.md    |   58 -
 .../dist/system-security-plans/ato/sa-22.md   |   48 -
 .../dist/system-security-plans/ato/sa-3.md    |   70 -
 .../dist/system-security-plans/ato/sa-4.1.md  |   31 -
 .../dist/system-security-plans/ato/sa-4.10.md |   31 -
 .../dist/system-security-plans/ato/sa-4.2.md  |   31 -
 .../dist/system-security-plans/ato/sa-4.9.md  |   34 -
 .../dist/system-security-plans/ato/sa-4.md    |  122 -
 .../dist/system-security-plans/ato/sa-5.md    |   88 -
 .../dist/system-security-plans/ato/sa-8.md    |   44 -
 .../dist/system-security-plans/ato/sa-9.2.md  |   31 -
 .../dist/system-security-plans/ato/sa-9.md    |   58 -
 .../dist/system-security-plans/ato/sc-1.md    |   79 -
 .../dist/system-security-plans/ato/sc-10.md   |   31 -
 .../dist/system-security-plans/ato/sc-12.md   |   32 -
 .../dist/system-security-plans/ato/sc-13.md   |   46 -
 .../dist/system-security-plans/ato/sc-15.md   |   46 -
 .../dist/system-security-plans/ato/sc-17.md   |   46 -
 .../dist/system-security-plans/ato/sc-18.md   |   51 -
 .../dist/system-security-plans/ato/sc-2.md    |   31 -
 .../dist/system-security-plans/ato/sc-20.md   |   48 -
 .../dist/system-security-plans/ato/sc-21.md   |   30 -
 .../dist/system-security-plans/ato/sc-22.md   |   33 -
 .../dist/system-security-plans/ato/sc-23.md   |   28 -
 .../dist/system-security-plans/ato/sc-28.1.md |   32 -
 .../dist/system-security-plans/ato/sc-28.md   |   31 -
 .../dist/system-security-plans/ato/sc-39.md   |   28 -
 .../dist/system-security-plans/ato/sc-4.md    |   32 -
 .../dist/system-security-plans/ato/sc-5.md    |   46 -
 .../dist/system-security-plans/ato/sc-7.3.md  |   28 -
 .../dist/system-security-plans/ato/sc-7.4.md  |   99 -
 .../dist/system-security-plans/ato/sc-7.5.md  |   32 -
 .../dist/system-security-plans/ato/sc-7.7.md  |   31 -
 .../dist/system-security-plans/ato/sc-7.8.md  |   31 -
 .../dist/system-security-plans/ato/sc-7.md    |   58 -
 .../dist/system-security-plans/ato/sc-8.1.md  |   28 -
 .../dist/system-security-plans/ato/sc-8.md    |   33 -
 .../dist/system-security-plans/ato/si-1.md    |   79 -
 .../dist/system-security-plans/ato/si-10.md   |   31 -
 .../dist/system-security-plans/ato/si-11.md   |   46 -
 .../dist/system-security-plans/ato/si-12.md   |   34 -
 .../dist/system-security-plans/ato/si-16.md   |   28 -
 .../dist/system-security-plans/ato/si-2.2.md  |   31 -
 .../dist/system-security-plans/ato/si-2.md    |   72 -
 .../dist/system-security-plans/ato/si-3.md    |   75 -
 .../dist/system-security-plans/ato/si-4.2.md  |   31 -
 .../dist/system-security-plans/ato/si-4.4.md  |   48 -
 .../dist/system-security-plans/ato/si-4.5.md  |   31 -
 .../dist/system-security-plans/ato/si-4.md    |  104 -
 .../dist/system-security-plans/ato/si-5.md    |   64 -
 .../dist/system-security-plans/ato/si-7.1.md  |   33 -
 .../dist/system-security-plans/ato/si-7.7.md  |   31 -
 .../dist/system-security-plans/ato/si-7.md    |   50 -
 .../dist/system-security-plans/ato/si-8.2.md  |   31 -
 .../dist/system-security-plans/ato/si-8.md    |   49 -
 .../dist/system-security-plans/ato/sr-1.md    |   79 -
 .../dist/system-security-plans/ato/sr-10.md   |   31 -
 .../dist/system-security-plans/ato/sr-11.1.md |   31 -
 .../dist/system-security-plans/ato/sr-11.2.md |   32 -
 .../dist/system-security-plans/ato/sr-11.md   |   49 -
 .../dist/system-security-plans/ato/sr-12.md   |   31 -
 .../dist/system-security-plans/ato/sr-2.1.md  |   31 -
 .../dist/system-security-plans/ato/sr-2.md    |   66 -
 .../dist/system-security-plans/ato/sr-3.md    |   56 -
 .../dist/system-security-plans/ato/sr-5.md    |   33 -
 .../dist/system-security-plans/ato/sr-6.md    |   31 -
 .../dist/system-security-plans/ato/sr-8.md    |   31 -
 docs/compliance/glossary.md                   |   57 -
 .../plan-of-action-and-milestones/.keep       |    0
 docs/compliance/profiles/.keep                |    0
 docs/compliance/profiles/ato/profile.json     |  313 --
 docs/compliance/status_header.yaml            |    9 -
 docs/compliance/system-security-plans/.keep   |    0
 .../ato/system-security-plan.json             | 3917 -----------------
 312 files changed, 19185 deletions(-)
 delete mode 100644 docs/compliance/.trestle/.keep
 delete mode 100644 docs/compliance/.trestle/config.ini
 delete mode 100644 docs/compliance/Makefile
 delete mode 100644 docs/compliance/Pipfile
 delete mode 100644 docs/compliance/Pipfile.lock
 delete mode 100644 docs/compliance/README.md
 delete mode 100644 docs/compliance/assessment-plans/.keep
 delete mode 100644 docs/compliance/assessment-results/.keep
 delete mode 100644 docs/compliance/catalogs/.keep
 delete mode 100644 docs/compliance/component-definitions/.keep
 delete mode 100644 docs/compliance/control-families.md
 delete mode 100644 docs/compliance/dist/assessment-plans/.keep
 delete mode 100644 docs/compliance/dist/assessment-results/.keep
 delete mode 100644 docs/compliance/dist/catalogs/.keep
 delete mode 100644 docs/compliance/dist/component-definitions/.keep
 delete mode 100644 docs/compliance/dist/plan-of-action-and-milestones/.keep
 delete mode 100644 docs/compliance/dist/profiles/.keep
 delete mode 100644 docs/compliance/dist/system-security-plans/.keep
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-11.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-11.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-12.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-14.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-17.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-17.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-17.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-17.4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-17.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-18.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-18.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-18.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-19.5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-19.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-2.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-2.13.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-2.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-2.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-2.4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-2.5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-20.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-20.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-20.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-21.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-22.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-6.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-6.10.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-6.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-6.5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-6.7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-6.9.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ac-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/at-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/at-2.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/at-2.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/at-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/at-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/at-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-11.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-12.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-3.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-6.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-6.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-7.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-9.4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/au-9.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ca-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ca-2.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ca-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ca-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ca-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ca-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ca-7.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ca-7.4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ca-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ca-9.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-10.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-11.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-12.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-12.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-2.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-2.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-2.7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-3.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-3.4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-4.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-7.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-7.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-7.5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-8.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-8.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cm-9.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-10.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-10.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-2.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-2.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-2.8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-4.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-6.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-6.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-7.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-7.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-7.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-8.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-8.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-9.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-9.8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/cp-9.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-11.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-12.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-12.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-12.5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-12.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-2.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-2.12.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-2.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-2.8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-4.4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-5.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-5.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-5.6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-8.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-8.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-8.4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ia-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-3.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-4.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-6.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-6.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-7.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ir-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ma-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ma-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ma-3.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ma-3.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ma-3.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ma-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ma-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ma-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ma-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/mp-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/mp-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/mp-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/mp-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/mp-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/mp-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/mp-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-10.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-11.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-12.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-13.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-13.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-14.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-15.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-16.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-17.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-6.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pe-9.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pl-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pl-10.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pl-11.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pl-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pl-4.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pl-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/pl-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ps-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ps-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ps-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ps-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ps-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ps-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ps-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ps-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ps-9.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ra-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ra-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ra-3.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ra-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ra-5.11.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ra-5.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ra-5.5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ra-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ra-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/ra-9.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-10.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-11.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-15.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-15.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-22.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-4.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-4.10.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-4.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-4.9.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-9.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sa-9.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-10.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-12.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-13.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-15.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-17.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-18.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-20.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-21.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-22.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-23.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-28.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-28.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-39.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-7.3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-7.4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-7.5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-7.7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-7.8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-8.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sc-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-10.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-11.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-12.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-16.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-2.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-4.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-4.4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-4.5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-4.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-7.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-7.7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-7.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-8.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/si-8.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-10.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-11.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-11.2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-11.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-12.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-2.1.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-2.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-3.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-5.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-6.md
 delete mode 100644 docs/compliance/dist/system-security-plans/ato/sr-8.md
 delete mode 100644 docs/compliance/glossary.md
 delete mode 100644 docs/compliance/plan-of-action-and-milestones/.keep
 delete mode 100644 docs/compliance/profiles/.keep
 delete mode 100644 docs/compliance/profiles/ato/profile.json
 delete mode 100644 docs/compliance/status_header.yaml
 delete mode 100644 docs/compliance/system-security-plans/.keep
 delete mode 100644 docs/compliance/system-security-plans/ato/system-security-plan.json

diff --git a/docs/compliance/.trestle/.keep b/docs/compliance/.trestle/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/.trestle/config.ini b/docs/compliance/.trestle/config.ini
deleted file mode 100644
index 001c2fb52..000000000
--- a/docs/compliance/.trestle/config.ini
+++ /dev/null
@@ -1,27 +0,0 @@
-[catalog]
-decomposition_rules = ['catalog.groups.*.controls.*']
-create_number_of_groups = 2
-create_number_of_controls = 2
-
-[profile]
-decomposition_rules = []
-
-[target-definition]
-decomposition_rules = ['target-definition.targets.*.target-control-implementations.*']
-create_number_of_targets = 2
-create_number_of_target_control_implementations = 2
-
-[component-definition]
-decomposition_rules = []
-
-[system-security-plan]
-decomposition_rules = []
-
-[assessment-plan]
-decomposition_rules = []
-
-[assessment-result]
-decomposition_rules = []
-
-[plan-of-action-and-milestone]
-decomposition_rules = []
\ No newline at end of file
diff --git a/docs/compliance/Makefile b/docs/compliance/Makefile
deleted file mode 100644
index de34c3205..000000000
--- a/docs/compliance/Makefile
+++ /dev/null
@@ -1,11 +0,0 @@
-generate-with-header:
-	trestle author ssp-generate -p ato -o dist/system-security-plans/ato -y status_header.yaml
-
-generate:
-	trestle author ssp-generate -p ato -o dist/system-security-plans/ato
-
-assemble:
-	trestle author ssp-assemble --markdown dist/system-security-plans/ --output ato
-
-status:
-	grep -R "\- c\-" dist/system-security-plans/* | cut -d':' -f2 | sed -E 's/^.*(c-)/\1/' | sort | uniq -c
diff --git a/docs/compliance/Pipfile b/docs/compliance/Pipfile
deleted file mode 100644
index b3a70a9c3..000000000
--- a/docs/compliance/Pipfile
+++ /dev/null
@@ -1,12 +0,0 @@
-[[source]]
-url = "https://pypi.org/simple"
-verify_ssl = true
-name = "pypi"
-
-[packages]
-compliance-trestle = "*"
-
-[dev-packages]
-
-[requires]
-python_version = "3.10"
diff --git a/docs/compliance/Pipfile.lock b/docs/compliance/Pipfile.lock
deleted file mode 100644
index 49546100b..000000000
--- a/docs/compliance/Pipfile.lock
+++ /dev/null
@@ -1,905 +0,0 @@
-{
-    "_meta": {
-        "hash": {
-            "sha256": "d0491659fc916b6d6085de8b555960fc53b69c0d3a88cf8fe105671590f5f004"
-        },
-        "pipfile-spec": 6,
-        "requires": {
-            "python_version": "3.10"
-        },
-        "sources": [
-            {
-                "name": "pypi",
-                "url": "https://pypi.org/simple",
-                "verify_ssl": true
-            }
-        ]
-    },
-    "default": {
-        "anyio": {
-            "hashes": [
-                "sha256:25ea0d673ae30af41a0c442f81cf3b38c7e79fdc7b60335a4c14e05eb0947421",
-                "sha256:fbbe32bd270d2a2ef3ed1c5d45041250284e31fc0a4df4a5a6071842051a51e3"
-            ],
-            "markers": "python_full_version >= '3.6.2'",
-            "version": "==3.6.2"
-        },
-        "argcomplete": {
-            "hashes": [
-                "sha256:6372ad78c89d662035101418ae253668445b391755cfe94ea52f1b9d22425b20",
-                "sha256:cffa11ea77999bb0dd27bb25ff6dc142a6796142f68d45b1a26b11f58724561e"
-            ],
-            "markers": "python_version >= '3.6'",
-            "version": "==2.0.0"
-        },
-        "attrs": {
-            "hashes": [
-                "sha256:08a96c641c3a74e44eb59afb61a24f2cb9f4d7188748e76ba4bb5edfa3cb7d1c",
-                "sha256:f7b7ce16570fe9965acd6d30101a28f62fb4a7f9e926b3bbc9b61f8b04247e72"
-            ],
-            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3'",
-            "version": "==19.3.0"
-        },
-        "bcrypt": {
-            "hashes": [
-                "sha256:089098effa1bc35dc055366740a067a2fc76987e8ec75349eb9484061c54f535",
-                "sha256:08d2947c490093a11416df18043c27abe3921558d2c03e2076ccb28a116cb6d0",
-                "sha256:0eaa47d4661c326bfc9d08d16debbc4edf78778e6aaba29c1bc7ce67214d4410",
-                "sha256:27d375903ac8261cfe4047f6709d16f7d18d39b1ec92aaf72af989552a650ebd",
-                "sha256:2b3ac11cf45161628f1f3733263e63194f22664bf4d0c0f3ab34099c02134665",
-                "sha256:2caffdae059e06ac23fce178d31b4a702f2a3264c20bfb5ff541b338194d8fab",
-                "sha256:3100851841186c25f127731b9fa11909ab7b1df6fc4b9f8353f4f1fd952fbf71",
-                "sha256:5ad4d32a28b80c5fa6671ccfb43676e8c1cc232887759d1cd7b6f56ea4355215",
-                "sha256:67a97e1c405b24f19d08890e7ae0c4f7ce1e56a712a016746c8b2d7732d65d4b",
-                "sha256:705b2cea8a9ed3d55b4491887ceadb0106acf7c6387699fca771af56b1cdeeda",
-                "sha256:8a68f4341daf7522fe8d73874de8906f3a339048ba406be6ddc1b3ccb16fc0d9",
-                "sha256:a522427293d77e1c29e303fc282e2d71864579527a04ddcfda6d4f8396c6c36a",
-                "sha256:ae88eca3024bb34bb3430f964beab71226e761f51b912de5133470b649d82344",
-                "sha256:b1023030aec778185a6c16cf70f359cbb6e0c289fd564a7cfa29e727a1c38f8f",
-                "sha256:b3b85202d95dd568efcb35b53936c5e3b3600c7cdcc6115ba461df3a8e89f38d",
-                "sha256:b57adba8a1444faf784394de3436233728a1ecaeb6e07e8c22c8848f179b893c",
-                "sha256:bf4fa8b2ca74381bb5442c089350f09a3f17797829d958fad058d6e44d9eb83c",
-                "sha256:ca3204d00d3cb2dfed07f2d74a25f12fc12f73e606fcaa6975d1f7ae69cacbb2",
-                "sha256:cbb03eec97496166b704ed663a53680ab57c5084b2fc98ef23291987b525cb7d",
-                "sha256:e9a51bbfe7e9802b5f3508687758b564069ba937748ad7b9e890086290d2f79e",
-                "sha256:fbdaec13c5105f0c4e5c52614d04f0bca5f5af007910daa8b6b12095edaa67b3"
-            ],
-            "markers": "python_version >= '3.6'",
-            "version": "==4.0.1"
-        },
-        "black": {
-            "hashes": [
-                "sha256:14ff67aec0a47c424bc99b71005202045dc09270da44a27848d534600ac64fc7",
-                "sha256:197df8509263b0b8614e1df1756b1dd41be6738eed2ba9e9769f3880c2b9d7b6",
-                "sha256:1e464456d24e23d11fced2bc8c47ef66d471f845c7b7a42f3bd77bf3d1789650",
-                "sha256:2039230db3c6c639bd84efe3292ec7b06e9214a2992cd9beb293d639c6402edb",
-                "sha256:21199526696b8f09c3997e2b4db8d0b108d801a348414264d2eb8eb2532e540d",
-                "sha256:2644b5d63633702bc2c5f3754b1b475378fbbfb481f62319388235d0cd104c2d",
-                "sha256:432247333090c8c5366e69627ccb363bc58514ae3e63f7fc75c54b1ea80fa7de",
-                "sha256:444ebfb4e441254e87bad00c661fe32df9969b2bf224373a448d8aca2132b395",
-                "sha256:5b9b29da4f564ba8787c119f37d174f2b69cdfdf9015b7d8c5c16121ddc054ae",
-                "sha256:5cc42ca67989e9c3cf859e84c2bf014f6633db63d1cbdf8fdb666dcd9e77e3fa",
-                "sha256:5d8f74030e67087b219b032aa33a919fae8806d49c867846bfacde57f43972ef",
-                "sha256:72ef3925f30e12a184889aac03d77d031056860ccae8a1e519f6cbb742736383",
-                "sha256:819dc789f4498ecc91438a7de64427c73b45035e2e3680c92e18795a839ebb66",
-                "sha256:915ace4ff03fdfff953962fa672d44be269deb2eaf88499a0f8805221bc68c87",
-                "sha256:9311e99228ae10023300ecac05be5a296f60d2fd10fff31cf5c1fa4ca4b1988d",
-                "sha256:974308c58d057a651d182208a484ce80a26dac0caef2895836a92dd6ebd725e0",
-                "sha256:b8b49776299fece66bffaafe357d929ca9451450f5466e997a7285ab0fe28e3b",
-                "sha256:c957b2b4ea88587b46cf49d1dc17681c1e672864fd7af32fc1e9664d572b3458",
-                "sha256:e41a86c6c650bcecc6633ee3180d80a025db041a8e2398dcc059b3afa8382cd4",
-                "sha256:f513588da599943e0cde4e32cc9879e825d58720d6557062d1098c5ad80080e1",
-                "sha256:fba8a281e570adafb79f7755ac8721b6cf1bbf691186a287e990c7929c7692ff"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==22.10.0"
-        },
-        "certifi": {
-            "hashes": [
-                "sha256:35824b4c3a97115964b408844d64aa14db1cc518f6562e8d7261699d1350a9e3",
-                "sha256:4ad3232f5e926d6718ec31cfc1fcadfde020920e278684144551c91769c7bc18"
-            ],
-            "index": "pypi",
-            "version": "==2022.12.7"
-        },
-        "cffi": {
-            "hashes": [
-                "sha256:00a9ed42e88df81ffae7a8ab6d9356b371399b91dbdf0c3cb1e84c03a13aceb5",
-                "sha256:03425bdae262c76aad70202debd780501fabeaca237cdfddc008987c0e0f59ef",
-                "sha256:04ed324bda3cda42b9b695d51bb7d54b680b9719cfab04227cdd1e04e5de3104",
-                "sha256:0e2642fe3142e4cc4af0799748233ad6da94c62a8bec3a6648bf8ee68b1c7426",
-                "sha256:173379135477dc8cac4bc58f45db08ab45d228b3363adb7af79436135d028405",
-                "sha256:198caafb44239b60e252492445da556afafc7d1e3ab7a1fb3f0584ef6d742375",
-                "sha256:1e74c6b51a9ed6589199c787bf5f9875612ca4a8a0785fb2d4a84429badaf22a",
-                "sha256:2012c72d854c2d03e45d06ae57f40d78e5770d252f195b93f581acf3ba44496e",
-                "sha256:21157295583fe8943475029ed5abdcf71eb3911894724e360acff1d61c1d54bc",
-                "sha256:2470043b93ff09bf8fb1d46d1cb756ce6132c54826661a32d4e4d132e1977adf",
-                "sha256:285d29981935eb726a4399badae8f0ffdff4f5050eaa6d0cfc3f64b857b77185",
-                "sha256:30d78fbc8ebf9c92c9b7823ee18eb92f2e6ef79b45ac84db507f52fbe3ec4497",
-                "sha256:320dab6e7cb2eacdf0e658569d2575c4dad258c0fcc794f46215e1e39f90f2c3",
-                "sha256:33ab79603146aace82c2427da5ca6e58f2b3f2fb5da893ceac0c42218a40be35",
-                "sha256:3548db281cd7d2561c9ad9984681c95f7b0e38881201e157833a2342c30d5e8c",
-                "sha256:3799aecf2e17cf585d977b780ce79ff0dc9b78d799fc694221ce814c2c19db83",
-                "sha256:39d39875251ca8f612b6f33e6b1195af86d1b3e60086068be9cc053aa4376e21",
-                "sha256:3b926aa83d1edb5aa5b427b4053dc420ec295a08e40911296b9eb1b6170f6cca",
-                "sha256:3bcde07039e586f91b45c88f8583ea7cf7a0770df3a1649627bf598332cb6984",
-                "sha256:3d08afd128ddaa624a48cf2b859afef385b720bb4b43df214f85616922e6a5ac",
-                "sha256:3eb6971dcff08619f8d91607cfc726518b6fa2a9eba42856be181c6d0d9515fd",
-                "sha256:40f4774f5a9d4f5e344f31a32b5096977b5d48560c5592e2f3d2c4374bd543ee",
-                "sha256:4289fc34b2f5316fbb762d75362931e351941fa95fa18789191b33fc4cf9504a",
-                "sha256:470c103ae716238bbe698d67ad020e1db9d9dba34fa5a899b5e21577e6d52ed2",
-                "sha256:4f2c9f67e9821cad2e5f480bc8d83b8742896f1242dba247911072d4fa94c192",
-                "sha256:50a74364d85fd319352182ef59c5c790484a336f6db772c1a9231f1c3ed0cbd7",
-                "sha256:54a2db7b78338edd780e7ef7f9f6c442500fb0d41a5a4ea24fff1c929d5af585",
-                "sha256:5635bd9cb9731e6d4a1132a498dd34f764034a8ce60cef4f5319c0541159392f",
-                "sha256:59c0b02d0a6c384d453fece7566d1c7e6b7bae4fc5874ef2ef46d56776d61c9e",
-                "sha256:5d598b938678ebf3c67377cdd45e09d431369c3b1a5b331058c338e201f12b27",
-                "sha256:5df2768244d19ab7f60546d0c7c63ce1581f7af8b5de3eb3004b9b6fc8a9f84b",
-                "sha256:5ef34d190326c3b1f822a5b7a45f6c4535e2f47ed06fec77d3d799c450b2651e",
-                "sha256:6975a3fac6bc83c4a65c9f9fcab9e47019a11d3d2cf7f3c0d03431bf145a941e",
-                "sha256:6c9a799e985904922a4d207a94eae35c78ebae90e128f0c4e521ce339396be9d",
-                "sha256:70df4e3b545a17496c9b3f41f5115e69a4f2e77e94e1d2a8e1070bc0c38c8a3c",
-                "sha256:7473e861101c9e72452f9bf8acb984947aa1661a7704553a9f6e4baa5ba64415",
-                "sha256:8102eaf27e1e448db915d08afa8b41d6c7ca7a04b7d73af6514df10a3e74bd82",
-                "sha256:87c450779d0914f2861b8526e035c5e6da0a3199d8f1add1a665e1cbc6fc6d02",
-                "sha256:8b7ee99e510d7b66cdb6c593f21c043c248537a32e0bedf02e01e9553a172314",
-                "sha256:91fc98adde3d7881af9b59ed0294046f3806221863722ba7d8d120c575314325",
-                "sha256:94411f22c3985acaec6f83c6df553f2dbe17b698cc7f8ae751ff2237d96b9e3c",
-                "sha256:98d85c6a2bef81588d9227dde12db8a7f47f639f4a17c9ae08e773aa9c697bf3",
-                "sha256:9ad5db27f9cabae298d151c85cf2bad1d359a1b9c686a275df03385758e2f914",
-                "sha256:a0b71b1b8fbf2b96e41c4d990244165e2c9be83d54962a9a1d118fd8657d2045",
-                "sha256:a0f100c8912c114ff53e1202d0078b425bee3649ae34d7b070e9697f93c5d52d",
-                "sha256:a591fe9e525846e4d154205572a029f653ada1a78b93697f3b5a8f1f2bc055b9",
-                "sha256:a5c84c68147988265e60416b57fc83425a78058853509c1b0629c180094904a5",
-                "sha256:a66d3508133af6e8548451b25058d5812812ec3798c886bf38ed24a98216fab2",
-                "sha256:a8c4917bd7ad33e8eb21e9a5bbba979b49d9a97acb3a803092cbc1133e20343c",
-                "sha256:b3bbeb01c2b273cca1e1e0c5df57f12dce9a4dd331b4fa1635b8bec26350bde3",
-                "sha256:cba9d6b9a7d64d4bd46167096fc9d2f835e25d7e4c121fb2ddfc6528fb0413b2",
-                "sha256:cc4d65aeeaa04136a12677d3dd0b1c0c94dc43abac5860ab33cceb42b801c1e8",
-                "sha256:ce4bcc037df4fc5e3d184794f27bdaab018943698f4ca31630bc7f84a7b69c6d",
-                "sha256:cec7d9412a9102bdc577382c3929b337320c4c4c4849f2c5cdd14d7368c5562d",
-                "sha256:d400bfb9a37b1351253cb402671cea7e89bdecc294e8016a707f6d1d8ac934f9",
-                "sha256:d61f4695e6c866a23a21acab0509af1cdfd2c013cf256bbf5b6b5e2695827162",
-                "sha256:db0fbb9c62743ce59a9ff687eb5f4afbe77e5e8403d6697f7446e5f609976f76",
-                "sha256:dd86c085fae2efd48ac91dd7ccffcfc0571387fe1193d33b6394db7ef31fe2a4",
-                "sha256:e00b098126fd45523dd056d2efba6c5a63b71ffe9f2bbe1a4fe1716e1d0c331e",
-                "sha256:e229a521186c75c8ad9490854fd8bbdd9a0c9aa3a524326b55be83b54d4e0ad9",
-                "sha256:e263d77ee3dd201c3a142934a086a4450861778baaeeb45db4591ef65550b0a6",
-                "sha256:ed9cb427ba5504c1dc15ede7d516b84757c3e3d7868ccc85121d9310d27eed0b",
-                "sha256:fa6693661a4c91757f4412306191b6dc88c1703f780c8234035eac011922bc01",
-                "sha256:fcd131dd944808b5bdb38e6f5b53013c5aa4f334c5cad0c72742f6eba4b73db0"
-            ],
-            "version": "==1.15.1"
-        },
-        "chardet": {
-            "hashes": [
-                "sha256:0d6f53a15db4120f2b08c94f11e7d93d2c911ee118b6b30a04ec3ee8310179fa",
-                "sha256:f864054d66fd9118f2e67044ac8981a54775ec5b67aed0441892edb553d21da5"
-            ],
-            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3, 3.4'",
-            "version": "==4.0.0"
-        },
-        "charset-normalizer": {
-            "hashes": [
-                "sha256:5a3d016c7c547f69d6f81fb0db9449ce888b418b5b9952cc5e6e66843e9dd845",
-                "sha256:83e9a75d1911279afd89352c68b45348559d1fc0506b054b346651b5e7fee29f"
-            ],
-            "markers": "python_version >= '3.6'",
-            "version": "==2.1.1"
-        },
-        "click": {
-            "hashes": [
-                "sha256:7682dc8afb30297001674575ea00d1814d808d6a36af415a82bd481d37ba7b8e",
-                "sha256:bb4d8133cb15a609f44e8213d9b391b0809795062913b383c62be0ee95b1db48"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==8.1.3"
-        },
-        "cmarkgfm": {
-            "hashes": [
-                "sha256:02f14c7e77fcddf044df14cc227d7703027ee720bac719616ac505af29812b73",
-                "sha256:0c5d762351f14479b07bfda6773905caa0fa7f132f6478c35e467d0be21e9f2e",
-                "sha256:13c34b6dc5b77100201c543cd205366ef7ecc612efce4247e2b7a0bb258b271e",
-                "sha256:3157b37d1a897ee57ae57be8eafac3659e31fdce33fbbc85f76df34ee2804d5a",
-                "sha256:371c4a2d88508800f6cc872082970afdb414f2d3b86ac7769419f27da0d43acc",
-                "sha256:3a31b239dfe4945fcb6a53fcb7dac64cb857ecfb1f710d891ff96955c64509f6",
-                "sha256:3a5138d76e93378a72fb7a704cbf09764ebb43cfcf121e6d7ffdc40fb7917d4a",
-                "sha256:3c7053c8650bf1f79c607dc88ff56652d07f52aac4b60aa1bf07529c9b4473a7",
-                "sha256:4121f6047c4d4a28ded3cf02c087869549e9f0c3712e5a2af180972f9d1348a5",
-                "sha256:427ca60eb2f56c6293ac0e91b728acf608297c9030dccd3c928e938b3bf3ee77",
-                "sha256:51134e3775ac7c47ca2430a53b02c6ff03463143af8dfaeb1575c03e039ee485",
-                "sha256:57e4f57aa9264a3244a28665d3c5ec81b1ace454b01a1c09ff0d67a2cd12ca5a",
-                "sha256:605bd69fa4b247be9bb4e7d75bda4df37428a153e3a67aca50d7cd9dc1ee8225",
-                "sha256:6377e46d854cc32e03933a44a0b6e6750cf89b4314e1c84958a7a547c3952c23",
-                "sha256:6a48a67ff8425b4dee33196f6cd9bdba7b902c0b7e369150f6704989f9c40476",
-                "sha256:6bb05e1b4adc8027c41ddbd11761482c652f1aa2ae4419469e3883ec8b0bdf67",
-                "sha256:706daefce3f9bd1cd955b6bb06beac31c050b65f4bec8025dade3b0f05dbeed2",
-                "sha256:713bd4e64651e7bbd897bbaee6057c16b72c6ac3cf59b2b38892d635d52755eb",
-                "sha256:7262bb2b875d1c47dfa0e074fe349eb1ba1901e323fcf9e3fc4dbf97f0b92d97",
-                "sha256:737e4525c63ae3bca731e5c57056c02078e31e579ec655b72bd28eae525d6b53",
-                "sha256:7641061c0bc4caf754f119c326131ad41c25beb1e95e2479e8aab60dbd8f9f79",
-                "sha256:786e8a06f7eec6eb3f3789353a586c8b065570d2db9811fdcdaced736a36ce53",
-                "sha256:791c7f8aed353d540aed52c6724df408eb73208d7c9dd98aae6506d5783cb95f",
-                "sha256:7a974b3b90805f656054d6873cd876ee5c7949e7860d131b7ec0b29a3de3a3f3",
-                "sha256:82cfc1bc7099fa819993c41d3c6778bff29e5547dbf1de1dbb113ef4d2bc0df9",
-                "sha256:872f3c9d99aedf55ad6950a4158873a107f6338040bc381b21849ccf165e9d90",
-                "sha256:89cc51c26a10ebdaada4ed2630f6f375cf059d3aca5d77aff493a2010f6ed60a",
-                "sha256:8b58277117a439fd27aee2bcc8869be334fb7e8781e27066ec31ec0a596a6a01",
-                "sha256:8be0c52d0caf1852a5374c7c9a279801c1a8dd9e2040939e75262d02b003835b",
-                "sha256:8eebdc5ca2cd565998195d1e6189d5979a00a5db9c579d05953478cb085ef435",
-                "sha256:8f901c002172a3be8bb91a422da23dfae0301afe062addf41c976385f96bc1ef",
-                "sha256:94ba213739648006232aa917f8c4c42c520812601d85502fa7a5dad0f0d1590e",
-                "sha256:989432956e34591387f0aaab98caabd699f2f5d4c708d1a0d882334a8b760cc5",
-                "sha256:a386b01a266a42e8e9052c74ad42dc1ff50b209d8958a3656e0435fa018a0223",
-                "sha256:ae6796d4e8ea746dc8e29173f95ffb9b12f940ff5b9186d10203445526cf8d4d",
-                "sha256:b04da61652984c89868b31aface2d75e3d26081273d3764e18b5661eea98916e",
-                "sha256:b594063a3421561e0559cc5a68419cdcb020512fc40c3eb37e4629bae2a954b6",
-                "sha256:c17e19db003f86662d08ce382912767f7221637703a64cfdb85b8c1447cc4b36",
-                "sha256:c58c904c22b946d436637e8e1987db5886af8041c57e0028c419f98075344f1f",
-                "sha256:c61f3f2cd2b9c44cb2579e165a18f824a6c99682aff10ac2779a7a74a3167e89",
-                "sha256:ccbfb5e427ca815d80962e6705834ebadeb55058ac745e0339fb570bb78a6114",
-                "sha256:ce717bd3e26a95b749fbbf68da42cc5cb9200779a4943bbdd38fa73711366081",
-                "sha256:d4422e0dd3a11eeebbe86c6c08ac1c28783efed4b7b948a9878724e677eda107",
-                "sha256:e550ca0826eab1ab87d9eed58da89cc113f13f369fdd61c799705007422dbfce",
-                "sha256:e66f15d4c645c87819f7170990a00e0fa9e0e8255097f8bd5eb3037d78264efb",
-                "sha256:e7b5b6cd8befa8c1cf2a55f750a4dcf84de05c80a7110d933ea6724fbc6d2cf8",
-                "sha256:ec2bf8d5799c4b5bbfbae30a4a1dfcb06512f2e17e9ee60ba7e1d390318582fc",
-                "sha256:f0da78ef960f57aec8a6854821a99fa7a520dad77631b19becb68b2ebf8dbc2d",
-                "sha256:f56aa4940aa4ee98fd6f3e0a648b8ae1e6a27f5007d64d406aeadc51451dc13b",
-                "sha256:fa28b1a335adb5bad04b4a50382cbcfcc6c8d68413ba35e2cd3f657a1dc76347"
-            ],
-            "version": "==0.6.0"
-        },
-        "compliance-trestle": {
-            "hashes": [
-                "sha256:2d9fd9ef09ba2aac0d78777291edfbc106284bd22ef9407516f232ca4e70697d",
-                "sha256:82b52835ce2f31a71559c33b8ed3262e01cd07e95ecd9f577189e2d1e81fe25e"
-            ],
-            "index": "pypi",
-            "version": "==1.1.0"
-        },
-        "cryptography": {
-            "hashes": [
-                "sha256:0a3bf09bb0b7a2c93ce7b98cb107e9170a90c51a0162a20af1c61c765b90e60b",
-                "sha256:1f64a62b3b75e4005df19d3b5235abd43fa6358d5516cfc43d87aeba8d08dd51",
-                "sha256:32db5cc49c73f39aac27574522cecd0a4bb7384e71198bc65a0d23f901e89bb7",
-                "sha256:4881d09298cd0b669bb15b9cfe6166f16fc1277b4ed0d04a22f3d6430cb30f1d",
-                "sha256:4e2dddd38a5ba733be6a025a1475a9f45e4e41139d1321f412c6b360b19070b6",
-                "sha256:53e0285b49fd0ab6e604f4c5d9c5ddd98de77018542e88366923f152dbeb3c29",
-                "sha256:70f8f4f7bb2ac9f340655cbac89d68c527af5bb4387522a8413e841e3e6628c9",
-                "sha256:7b2d54e787a884ffc6e187262823b6feb06c338084bbe80d45166a1cb1c6c5bf",
-                "sha256:7be666cc4599b415f320839e36367b273db8501127b38316f3b9f22f17a0b815",
-                "sha256:8241cac0aae90b82d6b5c443b853723bcc66963970c67e56e71a2609dc4b5eaf",
-                "sha256:82740818f2f240a5da8dfb8943b360e4f24022b093207160c77cadade47d7c85",
-                "sha256:8897b7b7ec077c819187a123174b645eb680c13df68354ed99f9b40a50898f77",
-                "sha256:c2c5250ff0d36fd58550252f54915776940e4e866f38f3a7866d92b32a654b86",
-                "sha256:ca9f686517ec2c4a4ce930207f75c00bf03d94e5063cbc00a1dc42531511b7eb",
-                "sha256:d2b3d199647468d410994dbeb8cec5816fb74feb9368aedf300af709ef507e3e",
-                "sha256:da73d095f8590ad437cd5e9faf6628a218aa7c387e1fdf67b888b47ba56a17f0",
-                "sha256:e167b6b710c7f7bc54e67ef593f8731e1f45aa35f8a8a7b72d6e42ec76afd4b3",
-                "sha256:ea634401ca02367c1567f012317502ef3437522e2fc44a3ea1844de028fa4b84",
-                "sha256:ec6597aa85ce03f3e507566b8bcdf9da2227ec86c4266bd5e6ab4d9e0cc8dab2",
-                "sha256:f64b232348ee82f13aac22856515ce0195837f6968aeaa94a3d0353ea2ec06a6"
-            ],
-            "markers": "python_version >= '3.6'",
-            "version": "==36.0.2"
-        },
-        "datamodel-code-generator": {
-            "extras": [
-                "http"
-            ],
-            "hashes": [
-                "sha256:0a92afc78aff6ed6b7bc23401bdd376d9af765997af013b2c013ba735f3a6a4f",
-                "sha256:d54e07fdf4650ba63f2379a0c95932bb71a4d279cec79252ada581294c4747f7"
-            ],
-            "markers": "python_version >= '3.7' and python_version < '4.0'",
-            "version": "==0.14.0"
-        },
-        "defusedxml": {
-            "hashes": [
-                "sha256:1bb3032db185915b62d7c6209c5a8792be6a32ab2fedacc84e01b52c51aa3e69",
-                "sha256:a352e7e428770286cc899e2542b6cdaedb2b4953ff269a210103ec58f6198a61"
-            ],
-            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3, 3.4'",
-            "version": "==0.7.1"
-        },
-        "dnspython": {
-            "hashes": [
-                "sha256:0f7569a4a6ff151958b64304071d370daa3243d15941a7beedf0c9fe5105603e",
-                "sha256:a851e51367fb93e9e1361732c1d60dab63eff98712e503ea7d92e6eccb109b4f"
-            ],
-            "markers": "python_version >= '3.6' and python_version < '4.0'",
-            "version": "==2.2.1"
-        },
-        "email-validator": {
-            "hashes": [
-                "sha256:553a66f8be2ec2dea641ae1d3f29017ab89e9d603d4a25cdaac39eefa283d769",
-                "sha256:816073f2a7cffef786b29928f58ec16cdac42710a53bb18aa94317e3e145ec5c"
-            ],
-            "version": "==1.3.0"
-        },
-        "et-xmlfile": {
-            "hashes": [
-                "sha256:8eb9e2bc2f8c97e37a2dc85a09ecdcdec9d8a396530a6d5a33b30b9a92da0c5c",
-                "sha256:a2ba85d1d6a74ef63837eed693bcb89c3f752169b0e3e7ae5b16ca5e1b3deada"
-            ],
-            "markers": "python_version >= '3.6'",
-            "version": "==1.1.0"
-        },
-        "furl": {
-            "hashes": [
-                "sha256:5a6188fe2666c484a12159c18be97a1977a71d632ef5bb867ef15f54af39cc4e",
-                "sha256:9ab425062c4217f9802508e45feb4a83e54324273ac4b202f1850363309666c0"
-            ],
-            "version": "==2.1.3"
-        },
-        "genson": {
-            "hashes": [
-                "sha256:8caf69aa10af7aee0e1a1351d1d06801f4696e005f06cedef438635384346a16"
-            ],
-            "version": "==1.2.2"
-        },
-        "h11": {
-            "hashes": [
-                "sha256:8f19fbbe99e72420ff35c00b27a34cb9937e902a8b810e2c88300c6f0a3b699d",
-                "sha256:e3fe4ac4b851c468cc8363d500db52c2ead036020723024a109d37346efaa761"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==0.14.0"
-        },
-        "httpcore": {
-            "hashes": [
-                "sha256:52c79095197178856724541e845f2db86d5f1527640d9254b5b8f6f6cebfdee6",
-                "sha256:c35c5176dc82db732acfd90b581a3062c999a72305df30c0fc8fafd8e4aca068"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==0.16.2"
-        },
-        "httpx": {
-            "hashes": [
-                "sha256:0b9b1f0ee18b9978d637b0776bfd7f54e2ca278e063e3586d8f01cda89e042a8",
-                "sha256:202ae15319be24efe9a8bd4ed4360e68fde7b38bcc2ce87088d416f026667d19"
-            ],
-            "version": "==0.23.1"
-        },
-        "idna": {
-            "hashes": [
-                "sha256:814f528e8dead7d329833b91c5faa87d60bf71824cd12a7530b5526063d02cb4",
-                "sha256:90b77e79eaa3eba6de819a0c442c0b4ceefc341a7a2ab77d7562bf49f425c5c2"
-            ],
-            "markers": "python_version >= '3.5'",
-            "version": "==3.4"
-        },
-        "ilcli": {
-            "hashes": [
-                "sha256:8a56b053836f8b0e1bbbdda884288d18dc966bd8e90fdf9b340914dba625cd7f",
-                "sha256:dfb7d2da49c63ef92c5a589eb5f765d073d7ea83275c3dd2aea8ae5cbe4c5be2"
-            ],
-            "version": "==0.3.2"
-        },
-        "inflect": {
-            "hashes": [
-                "sha256:aadc7ed73928f5e014129794bbac03058cca35d0a973a5fc4eb45c7fa26005f9",
-                "sha256:b45d91a4a28a4e617ff1821117439b06eaa86e2a4573154af0149e9be6687238"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==5.6.2"
-        },
-        "isodate": {
-            "hashes": [
-                "sha256:0751eece944162659049d35f4f549ed815792b38793f07cf73381c1c87cbed96",
-                "sha256:48c5881de7e8b0a0d648cb024c8062dc84e7b840ed81e864c7614fd3c127bde9"
-            ],
-            "version": "==0.6.1"
-        },
-        "isort": {
-            "hashes": [
-                "sha256:6f62d78e2f89b4500b080fe3a81690850cd254227f27f75c3a0c491a1f351ba7",
-                "sha256:e8443a5e7a020e9d7f97f1d7d9cd17c88bcb3bc7e218bf9cf5095fe550be2951"
-            ],
-            "markers": "python_version < '4.0' and python_full_version >= '3.6.1'",
-            "version": "==5.10.1"
-        },
-        "jinja2": {
-            "hashes": [
-                "sha256:077ce6014f7b40d03b47d1f1ca4b0fc8328a692bd284016f806ed0eaca390ad8",
-                "sha256:611bb273cd68f3b993fabdc4064fc858c5b47a973cb5aa7999ec1ba405c87cd7"
-            ],
-            "markers": "python_version >= '3.6'",
-            "version": "==3.0.3"
-        },
-        "jsonschema": {
-            "hashes": [
-                "sha256:4e5b3cf8216f577bee9ce139cbe72eca3ea4f292ec60928ff24758ce626cd163",
-                "sha256:c8a85b28d377cc7737e46e2d9f2b4f44ee3c0e1deac6bf46ddefc7187d30797a"
-            ],
-            "version": "==3.2.0"
-        },
-        "markupsafe": {
-            "hashes": [
-                "sha256:0212a68688482dc52b2d45013df70d169f542b7394fc744c02a57374a4207003",
-                "sha256:089cf3dbf0cd6c100f02945abeb18484bd1ee57a079aefd52cffd17fba910b88",
-                "sha256:10c1bfff05d95783da83491be968e8fe789263689c02724e0c691933c52994f5",
-                "sha256:33b74d289bd2f5e527beadcaa3f401e0df0a89927c1559c8566c066fa4248ab7",
-                "sha256:3799351e2336dc91ea70b034983ee71cf2f9533cdff7c14c90ea126bfd95d65a",
-                "sha256:3ce11ee3f23f79dbd06fb3d63e2f6af7b12db1d46932fe7bd8afa259a5996603",
-                "sha256:421be9fbf0ffe9ffd7a378aafebbf6f4602d564d34be190fc19a193232fd12b1",
-                "sha256:43093fb83d8343aac0b1baa75516da6092f58f41200907ef92448ecab8825135",
-                "sha256:46d00d6cfecdde84d40e572d63735ef81423ad31184100411e6e3388d405e247",
-                "sha256:4a33dea2b688b3190ee12bd7cfa29d39c9ed176bda40bfa11099a3ce5d3a7ac6",
-                "sha256:4b9fe39a2ccc108a4accc2676e77da025ce383c108593d65cc909add5c3bd601",
-                "sha256:56442863ed2b06d19c37f94d999035e15ee982988920e12a5b4ba29b62ad1f77",
-                "sha256:671cd1187ed5e62818414afe79ed29da836dde67166a9fac6d435873c44fdd02",
-                "sha256:694deca8d702d5db21ec83983ce0bb4b26a578e71fbdbd4fdcd387daa90e4d5e",
-                "sha256:6a074d34ee7a5ce3effbc526b7083ec9731bb3cbf921bbe1d3005d4d2bdb3a63",
-                "sha256:6d0072fea50feec76a4c418096652f2c3238eaa014b2f94aeb1d56a66b41403f",
-                "sha256:6fbf47b5d3728c6aea2abb0589b5d30459e369baa772e0f37a0320185e87c980",
-                "sha256:7f91197cc9e48f989d12e4e6fbc46495c446636dfc81b9ccf50bb0ec74b91d4b",
-                "sha256:86b1f75c4e7c2ac2ccdaec2b9022845dbb81880ca318bb7a0a01fbf7813e3812",
-                "sha256:8dc1c72a69aa7e082593c4a203dcf94ddb74bb5c8a731e4e1eb68d031e8498ff",
-                "sha256:8e3dcf21f367459434c18e71b2a9532d96547aef8a871872a5bd69a715c15f96",
-                "sha256:8e576a51ad59e4bfaac456023a78f6b5e6e7651dcd383bcc3e18d06f9b55d6d1",
-                "sha256:96e37a3dc86e80bf81758c152fe66dbf60ed5eca3d26305edf01892257049925",
-                "sha256:97a68e6ada378df82bc9f16b800ab77cbf4b2fada0081794318520138c088e4a",
-                "sha256:99a2a507ed3ac881b975a2976d59f38c19386d128e7a9a18b7df6fff1fd4c1d6",
-                "sha256:a49907dd8420c5685cfa064a1335b6754b74541bbb3706c259c02ed65b644b3e",
-                "sha256:b09bf97215625a311f669476f44b8b318b075847b49316d3e28c08e41a7a573f",
-                "sha256:b7bd98b796e2b6553da7225aeb61f447f80a1ca64f41d83612e6139ca5213aa4",
-                "sha256:b87db4360013327109564f0e591bd2a3b318547bcef31b468a92ee504d07ae4f",
-                "sha256:bcb3ed405ed3222f9904899563d6fc492ff75cce56cba05e32eff40e6acbeaa3",
-                "sha256:d4306c36ca495956b6d568d276ac11fdd9c30a36f1b6eb928070dc5360b22e1c",
-                "sha256:d5ee4f386140395a2c818d149221149c54849dfcfcb9f1debfe07a8b8bd63f9a",
-                "sha256:dda30ba7e87fbbb7eab1ec9f58678558fd9a6b8b853530e176eabd064da81417",
-                "sha256:e04e26803c9c3851c931eac40c695602c6295b8d432cbe78609649ad9bd2da8a",
-                "sha256:e1c0b87e09fa55a220f058d1d49d3fb8df88fbfab58558f1198e08c1e1de842a",
-                "sha256:e72591e9ecd94d7feb70c1cbd7be7b3ebea3f548870aa91e2732960fa4d57a37",
-                "sha256:e8c843bbcda3a2f1e3c2ab25913c80a3c5376cd00c6e8c4a86a89a28c8dc5452",
-                "sha256:efc1913fd2ca4f334418481c7e595c00aad186563bbc1ec76067848c7ca0a933",
-                "sha256:f121a1420d4e173a5d96e47e9a0c0dcff965afdf1626d28de1460815f7c4ee7a",
-                "sha256:fc7b548b17d238737688817ab67deebb30e8073c95749d55538ed473130ec0c7"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==2.1.1"
-        },
-        "mypy-extensions": {
-            "hashes": [
-                "sha256:090fedd75945a69ae91ce1303b5824f428daf5a028d2f6ab8a299250a846f15d",
-                "sha256:2d82818f5bb3e369420cb3c4060a7970edba416647068eb4c5343488a6c604a8"
-            ],
-            "version": "==0.4.3"
-        },
-        "openapi-schema-validator": {
-            "hashes": [
-                "sha256:230db361c71a5b08b25ec926797ac8b59a8f499bbd7316bd15b6cd0fc9aea5df",
-                "sha256:8ef097b78c191c89d9a12cdf3d311b2ecf9d3b80bbe8610dbc67a812205a6a8d",
-                "sha256:af023ae0d16372cf8dd0d128c9f3eaa080dc3cd5dfc69e6a247579f25bd10503"
-            ],
-            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3, 3.4'",
-            "version": "==0.1.6"
-        },
-        "openapi-spec-validator": {
-            "hashes": [
-                "sha256:43d606c5910ed66e1641807993bd0a981de2fc5da44f03e1c4ca2bb65b94b68e",
-                "sha256:49d7da81996714445116f6105c9c5955c0e197ef8636da4f368c913f64753443"
-            ],
-            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3, 3.4'",
-            "version": "==0.3.3"
-        },
-        "openpyxl": {
-            "hashes": [
-                "sha256:0ab6d25d01799f97a9464630abacbb34aafecdcaa0ef3cba6d6b3499867d0355",
-                "sha256:e47805627aebcf860edb4edf7987b1309c1b3632f3750538ed962bbcc3bd7449"
-            ],
-            "markers": "python_version >= '3.6'",
-            "version": "==3.0.10"
-        },
-        "orderedmultidict": {
-            "hashes": [
-                "sha256:04070bbb5e87291cc9bfa51df413677faf2141c73c61d2a5f7b26bea3cd882ad",
-                "sha256:43c839a17ee3cdd62234c47deca1a8508a3f2ca1d0678a3bf791c87cf84adbf3"
-            ],
-            "version": "==1.0.1"
-        },
-        "orjson": {
-            "hashes": [
-                "sha256:0379ad4c0246281f136a93ed357e342f24070c7055f00aeff9a69c2352e38d10",
-                "sha256:0459893746dc80dbfb262a24c08fdba2a737d44d26691e85f27b2223cac8075f",
-                "sha256:068febdc7e10655a68a381d2db714d0a90ce46dc81519a4962521a0af07697fb",
-                "sha256:194aef99db88b450b0005406f259ad07df545e6c9632f2a64c04986a0faf2c68",
-                "sha256:3497dde5c99dd616554f0dcb694b955a2dc3eb920fe36b150f88ce53e3be2a46",
-                "sha256:37196a7f2219508c6d944d7d5ea0000a226818787dadbbed309bfa6174f0402b",
-                "sha256:3e9e54ff8c9253d7f01ebc5836a1308d0ebe8e5c2edee620867a49556a158484",
-                "sha256:4b0c13e05da5bc1a6b2e1d3b117cc669e2267ce0a131e94845056d506ef041c6",
-                "sha256:4b587ec06ab7dd4fb5acf50af98314487b7d56d6e1a7f05d49d8367e0e0b23bc",
-                "sha256:4cd0bb7e843ceba759e4d4cc2ca9243d1a878dac42cdcfc2295883fbd5bd2400",
-                "sha256:4fff44ca121329d62e48582850a247a487e968cfccd5527fab20bd5b650b78c3",
-                "sha256:52540572c349179e2a7b6a7b98d6e9320e0333533af809359a95f7b57a61c506",
-                "sha256:54f3ef512876199d7dacd348a0fc53392c6be15bdf857b2d67fa1b089d561b98",
-                "sha256:65ea3336c2bda31bc938785b84283118dec52eb90a2946b140054873946f60a4",
-                "sha256:6bf425bba42a8cee49d611ddd50b7fea9e87787e77bf90b2cb9742293f319480",
-                "sha256:75de90c34db99c42ee7608ff88320442d3ce17c258203139b5a8b0afb4a9b43b",
-                "sha256:78d69020fa9cf28b363d2494e5f1f10210e8fecf49bf4a767fcffcce7b9d7f58",
-                "sha256:7f0ec0ca4e81492569057199e042607090ba48289c4f59f29bbc219282b8dc60",
-                "sha256:83891e9c3a172841f63cae75ff9ce78f12e4c2c5161baec7af725b1d71d4de21",
-                "sha256:8fe6188ea2a1165280b4ff5fab92753b2007665804e8214be3d00d0b83b5764e",
-                "sha256:94bd4295fadea984b6284dc55f7d1ea828240057f3b6a1d8ec3fe4d1ea596964",
-                "sha256:961bc1dcbc3a89b52e8979194b3043e7d28ffc979187e46ad23efa8ada612d04",
-                "sha256:989bf5980fc8aca43a9d0a50ea0a0eee81257e812aaceb1e9c0dbd0856fc5230",
-                "sha256:a30503ee24fc3c59f768501d7a7ded5119a631c79033929a5035a4c91901eac7",
-                "sha256:aa57fe8b32750a64c816840444ec4d1e4310630ecd9d1d7b3db4b45d248b5585",
-                "sha256:b7018494a7a11bcd04da1173c3a38fa5a866f905c138326504552231824ac9c1",
-                "sha256:b70782258c73913eb6542c04b6556c841247eb92eeace5db2ee2e1d4cb6ffaa5",
-                "sha256:ca61e6c5a86efb49b790c8e331ff05db6d5ed773dfc9b58667ea3b260971cfb2",
-                "sha256:cbdfbd49d58cbaabfa88fcdf9e4f09487acca3d17f144648668ea6ae06cc3183",
-                "sha256:cf3dad7dbf65f78fefca0eb385d606844ea58a64fe908883a32768dfaee0b952",
-                "sha256:d30d427a1a731157206ddb1e95620925298e4c7c3f93838f53bd19f6069be244",
-                "sha256:d46241e63df2d39f4b7d44e2ff2becfb6646052b963afb1a99f4ef8c2a31aba0",
-                "sha256:d5870ced447a9fbeb5aeb90f362d9106b80a32f729a57b59c64684dbc9175e92",
-                "sha256:d746da1260bbe7cb06200813cc40482fb1b0595c4c09c3afffe34cfc408d0a4a",
-                "sha256:dbd74d2d3d0b7ac8ca968c3be51d4cfbecec65c6d6f55dabe95e975c234d0338",
-                "sha256:dc29ff612030f3c2e8d7c0bc6c74d18b76dde3726230d892524735498f29f4b2",
-                "sha256:e570fdfa09b84cc7c42a3a6dd22dbd2177cb5f3798feefc430066b260886acae",
-                "sha256:eda1534a5289168614f21422861cbfb1abb8a82d66c00a8ba823d863c0797178",
-                "sha256:ef3b4c7931989eb973fbbcc38accf7711d607a2b0ed84817341878ec8effb9c5",
-                "sha256:f06ef273d8d4101948ebc4262a485737bcfd440fb83dd4b125d3e5f4226117bc",
-                "sha256:f1612e08b8254d359f9b72c4a4099d46cdc0f58b574da48472625a0e80222b6e",
-                "sha256:f8ff793a3188c21e646219dc5e2c60a74dde25c26de3075f4c2e33cf25835340",
-                "sha256:faf44a709f54cf490a27ccb0fb1cb5a99005c36ff7cb127d222306bf84f5493f",
-                "sha256:ff96c61127550ae25caab325e1f4a4fba2740ca77f8e81640f1b8b575e95f784"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==3.8.3"
-        },
-        "packaging": {
-            "hashes": [
-                "sha256:dd47c42927d89ab911e606518907cc2d3a1f38bbd026385970643f9c5b8ecfeb",
-                "sha256:ef103e05f519cdc783ae24ea4e2e0f508a9c99b2d4969652eed6a2e1ea5bd522"
-            ],
-            "markers": "python_version >= '3.6'",
-            "version": "==21.3"
-        },
-        "paramiko": {
-            "hashes": [
-                "sha256:376885c05c5d6aa6e1f4608aac2a6b5b0548b1add40274477324605903d9cd49",
-                "sha256:b2df1a6325f6996ef55a8789d0462f5b502ea83b3c990cbb5bbe57345c6812c4"
-            ],
-            "version": "==2.12.0"
-        },
-        "pathspec": {
-            "hashes": [
-                "sha256:88c2606f2c1e818b978540f73ecc908e13999c6c3a383daf3705652ae79807a5",
-                "sha256:8f6bf73e5758fd365ef5d58ce09ac7c27d2833a8d7da51712eac6e27e35141b0"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==0.10.2"
-        },
-        "platformdirs": {
-            "hashes": [
-                "sha256:1a89a12377800c81983db6be069ec068eee989748799b946cce2a6e80dcc54ca",
-                "sha256:b46ffafa316e6b83b47489d240ce17173f123a9b9c83282141c3daf26ad9ac2e"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==2.6.0"
-        },
-        "prance": {
-            "hashes": [
-                "sha256:814a523bc1ff18383c12cb523ce44c90fe8792bf5f48d8cc33c9f658276658ed",
-                "sha256:c15e9ca889b56262e4c2aee354f52918ba5e54f46bb3da42b806d8bbd8255ee9"
-            ],
-            "markers": "python_version >= '3.6'",
-            "version": "==0.22.11.4.0"
-        },
-        "pycparser": {
-            "hashes": [
-                "sha256:8ee45429555515e1f6b185e78100aea234072576aa43ab53aefcae078162fca9",
-                "sha256:e644fdec12f7872f86c58ff790da456218b10f863970249516d60a5eaca77206"
-            ],
-            "version": "==2.21"
-        },
-        "pydantic": {
-            "extras": [
-                "email"
-            ],
-            "hashes": [
-                "sha256:05e00dbebbe810b33c7a7362f231893183bcc4251f3f2ff991c31d5c08240c42",
-                "sha256:06094d18dd5e6f2bbf93efa54991c3240964bb663b87729ac340eb5014310624",
-                "sha256:0b959f4d8211fc964772b595ebb25f7652da3f22322c007b6fed26846a40685e",
-                "sha256:19b3b9ccf97af2b7519c42032441a891a5e05c68368f40865a90eb88833c2559",
-                "sha256:1b6ee725bd6e83ec78b1aa32c5b1fa67a3a65badddde3976bca5fe4568f27709",
-                "sha256:1ee433e274268a4b0c8fde7ad9d58ecba12b069a033ecc4645bb6303c062d2e9",
-                "sha256:216f3bcbf19c726b1cc22b099dd409aa371f55c08800bcea4c44c8f74b73478d",
-                "sha256:2d0567e60eb01bccda3a4df01df677adf6b437958d35c12a3ac3e0f078b0ee52",
-                "sha256:2e05aed07fa02231dbf03d0adb1be1d79cabb09025dd45aa094aa8b4e7b9dcda",
-                "sha256:352aedb1d71b8b0736c6d56ad2bd34c6982720644b0624462059ab29bd6e5912",
-                "sha256:355639d9afc76bcb9b0c3000ddcd08472ae75318a6eb67a15866b87e2efa168c",
-                "sha256:37c90345ec7dd2f1bcef82ce49b6235b40f282b94d3eec47e801baf864d15525",
-                "sha256:4b8795290deaae348c4eba0cebb196e1c6b98bdbe7f50b2d0d9a4a99716342fe",
-                "sha256:5760e164b807a48a8f25f8aa1a6d857e6ce62e7ec83ea5d5c5a802eac81bad41",
-                "sha256:6eb843dcc411b6a2237a694f5e1d649fc66c6064d02b204a7e9d194dff81eb4b",
-                "sha256:7b5ba54d026c2bd2cb769d3468885f23f43710f651688e91f5fb1edcf0ee9283",
-                "sha256:7c2abc4393dea97a4ccbb4ec7d8658d4e22c4765b7b9b9445588f16c71ad9965",
-                "sha256:81a7b66c3f499108b448f3f004801fcd7d7165fb4200acb03f1c2402da73ce4c",
-                "sha256:91b8e218852ef6007c2b98cd861601c6a09f1aa32bbbb74fab5b1c33d4a1e410",
-                "sha256:9300fcbebf85f6339a02c6994b2eb3ff1b9c8c14f502058b5bf349d42447dcf5",
-                "sha256:9cabf4a7f05a776e7793e72793cd92cc865ea0e83a819f9ae4ecccb1b8aa6116",
-                "sha256:a1f5a63a6dfe19d719b1b6e6106561869d2efaca6167f84f5ab9347887d78b98",
-                "sha256:a4c805731c33a8db4b6ace45ce440c4ef5336e712508b4d9e1aafa617dc9907f",
-                "sha256:ae544c47bec47a86bc7d350f965d8b15540e27e5aa4f55170ac6a75e5f73b644",
-                "sha256:b97890e56a694486f772d36efd2ba31612739bc6f3caeee50e9e7e3ebd2fdd13",
-                "sha256:bb6ad4489af1bac6955d38ebcb95079a836af31e4c4f74aba1ca05bb9f6027bd",
-                "sha256:bedf309630209e78582ffacda64a21f96f3ed2e51fbf3962d4d488e503420254",
-                "sha256:c1ba1afb396148bbc70e9eaa8c06c1716fdddabaf86e7027c5988bae2a829ab6",
-                "sha256:c33602f93bfb67779f9c507e4d69451664524389546bacfe1bee13cae6dc7488",
-                "sha256:c4aac8e7103bf598373208f6299fa9a5cfd1fc571f2d40bf1dd1955a63d6eeb5",
-                "sha256:c6f981882aea41e021f72779ce2a4e87267458cc4d39ea990729e21ef18f0f8c",
-                "sha256:cc78cc83110d2f275ec1970e7a831f4e371ee92405332ebfe9860a715f8336e1",
-                "sha256:d49f3db871575e0426b12e2f32fdb25e579dea16486a26e5a0474af87cb1ab0a",
-                "sha256:dd3f9a40c16daf323cf913593083698caee97df2804aa36c4b3175d5ac1b92a2",
-                "sha256:e0bedafe4bc165ad0a56ac0bd7695df25c50f76961da29c050712596cf092d6d",
-                "sha256:e9069e1b01525a96e6ff49e25876d90d5a563bc31c658289a8772ae186552236"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==1.10.2"
-        },
-        "pynacl": {
-            "hashes": [
-                "sha256:06b8f6fa7f5de8d5d2f7573fe8c863c051225a27b61e6860fd047b1775807858",
-                "sha256:0c84947a22519e013607c9be43706dd42513f9e6ae5d39d3613ca1e142fba44d",
-                "sha256:20f42270d27e1b6a29f54032090b972d97f0a1b0948cc52392041ef7831fee93",
-                "sha256:401002a4aaa07c9414132aaed7f6836ff98f59277a234704ff66878c2ee4a0d1",
-                "sha256:52cb72a79269189d4e0dc537556f4740f7f0a9ec41c1322598799b0bdad4ef92",
-                "sha256:61f642bf2378713e2c2e1de73444a3778e5f0a38be6fee0fe532fe30060282ff",
-                "sha256:8ac7448f09ab85811607bdd21ec2464495ac8b7c66d146bf545b0f08fb9220ba",
-                "sha256:a36d4a9dda1f19ce6e03c9a784a2921a4b726b02e1c736600ca9c22029474394",
-                "sha256:a422368fc821589c228f4c49438a368831cb5bbc0eab5ebe1d7fac9dded6567b",
-                "sha256:e46dae94e34b085175f8abb3b0aaa7da40767865ac82c928eeb9e57e1ea8a543"
-            ],
-            "markers": "python_version >= '3.6'",
-            "version": "==1.5.0"
-        },
-        "pyparsing": {
-            "hashes": [
-                "sha256:2b020ecf7d21b687f219b71ecad3631f644a47f01403fa1d1036b0c6416d70fb",
-                "sha256:5026bae9a10eeaefb61dab2f09052b9f4307d44aee4eda64b309723d8d206bbc"
-            ],
-            "markers": "python_full_version >= '3.6.8'",
-            "version": "==3.0.9"
-        },
-        "pyrsistent": {
-            "hashes": [
-                "sha256:aa2ae1c2e496f4d6777f869ea5de7166a8ccb9c2e06ebcf6c7ff1b670c98c5ef"
-            ],
-            "markers": "python_version >= '2.7'",
-            "version": "==0.16.1"
-        },
-        "pysnooper": {
-            "hashes": [
-                "sha256:378f13d731a3e04d3d0350e5f295bdd0f1b49fc8a8b8bf2067fe1e5290bd20be",
-                "sha256:d17dc91cca1593c10230dce45e46b1d3ff0f8910f0c38e941edf6ba1260b3820"
-            ],
-            "version": "==1.1.1"
-        },
-        "python-dotenv": {
-            "hashes": [
-                "sha256:1684eb44636dd462b66c3ee016599815514527ad99965de77f43e0944634a7e5",
-                "sha256:b77d08274639e3d34145dfa6c7008e66df0f04b7be7a75fd0d5292c191d79045"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==0.21.0"
-        },
-        "python-frontmatter": {
-            "hashes": [
-                "sha256:766ae75f1b301ffc5fe3494339147e0fd80bc3deff3d7590a93991978b579b08",
-                "sha256:e98152e977225ddafea6f01f40b4b0f1de175766322004c826ca99842d19a7cd"
-            ],
-            "version": "==1.0.0"
-        },
-        "pyyaml": {
-            "hashes": [
-                "sha256:01b45c0191e6d66c470b6cf1b9531a771a83c1c4208272ead47a3ae4f2f603bf",
-                "sha256:0283c35a6a9fbf047493e3a0ce8d79ef5030852c51e9d911a27badfde0605293",
-                "sha256:055d937d65826939cb044fc8c9b08889e8c743fdc6a32b33e2390f66013e449b",
-                "sha256:07751360502caac1c067a8132d150cf3d61339af5691fe9e87803040dbc5db57",
-                "sha256:0b4624f379dab24d3725ffde76559cff63d9ec94e1736b556dacdfebe5ab6d4b",
-                "sha256:0ce82d761c532fe4ec3f87fc45688bdd3a4c1dc5e0b4a19814b9009a29baefd4",
-                "sha256:1e4747bc279b4f613a09eb64bba2ba602d8a6664c6ce6396a4d0cd413a50ce07",
-                "sha256:213c60cd50106436cc818accf5baa1aba61c0189ff610f64f4a3e8c6726218ba",
-                "sha256:231710d57adfd809ef5d34183b8ed1eeae3f76459c18fb4a0b373ad56bedcdd9",
-                "sha256:277a0ef2981ca40581a47093e9e2d13b3f1fbbeffae064c1d21bfceba2030287",
-                "sha256:2cd5df3de48857ed0544b34e2d40e9fac445930039f3cfe4bcc592a1f836d513",
-                "sha256:40527857252b61eacd1d9af500c3337ba8deb8fc298940291486c465c8b46ec0",
-                "sha256:432557aa2c09802be39460360ddffd48156e30721f5e8d917f01d31694216782",
-                "sha256:473f9edb243cb1935ab5a084eb238d842fb8f404ed2193a915d1784b5a6b5fc0",
-                "sha256:48c346915c114f5fdb3ead70312bd042a953a8ce5c7106d5bfb1a5254e47da92",
-                "sha256:50602afada6d6cbfad699b0c7bb50d5ccffa7e46a3d738092afddc1f9758427f",
-                "sha256:68fb519c14306fec9720a2a5b45bc9f0c8d1b9c72adf45c37baedfcd949c35a2",
-                "sha256:77f396e6ef4c73fdc33a9157446466f1cff553d979bd00ecb64385760c6babdc",
-                "sha256:81957921f441d50af23654aa6c5e5eaf9b06aba7f0a19c18a538dc7ef291c5a1",
-                "sha256:819b3830a1543db06c4d4b865e70ded25be52a2e0631ccd2f6a47a2822f2fd7c",
-                "sha256:897b80890765f037df3403d22bab41627ca8811ae55e9a722fd0392850ec4d86",
-                "sha256:98c4d36e99714e55cfbaaee6dd5badbc9a1ec339ebfc3b1f52e293aee6bb71a4",
-                "sha256:9df7ed3b3d2e0ecfe09e14741b857df43adb5a3ddadc919a2d94fbdf78fea53c",
-                "sha256:9fa600030013c4de8165339db93d182b9431076eb98eb40ee068700c9c813e34",
-                "sha256:a80a78046a72361de73f8f395f1f1e49f956c6be882eed58505a15f3e430962b",
-                "sha256:afa17f5bc4d1b10afd4466fd3a44dc0e245382deca5b3c353d8b757f9e3ecb8d",
-                "sha256:b3d267842bf12586ba6c734f89d1f5b871df0273157918b0ccefa29deb05c21c",
-                "sha256:b5b9eccad747aabaaffbc6064800670f0c297e52c12754eb1d976c57e4f74dcb",
-                "sha256:bfaef573a63ba8923503d27530362590ff4f576c626d86a9fed95822a8255fd7",
-                "sha256:c5687b8d43cf58545ade1fe3e055f70eac7a5a1a0bf42824308d868289a95737",
-                "sha256:cba8c411ef271aa037d7357a2bc8f9ee8b58b9965831d9e51baf703280dc73d3",
-                "sha256:d15a181d1ecd0d4270dc32edb46f7cb7733c7c508857278d3d378d14d606db2d",
-                "sha256:d4b0ba9512519522b118090257be113b9468d804b19d63c71dbcf4a48fa32358",
-                "sha256:d4db7c7aef085872ef65a8fd7d6d09a14ae91f691dec3e87ee5ee0539d516f53",
-                "sha256:d4eccecf9adf6fbcc6861a38015c2a64f38b9d94838ac1810a9023a0609e1b78",
-                "sha256:d67d839ede4ed1b28a4e8909735fc992a923cdb84e618544973d7dfc71540803",
-                "sha256:daf496c58a8c52083df09b80c860005194014c3698698d1a57cbcfa182142a3a",
-                "sha256:dbad0e9d368bb989f4515da330b88a057617d16b6a8245084f1b05400f24609f",
-                "sha256:e61ceaab6f49fb8bdfaa0f92c4b57bcfbea54c09277b1b4f7ac376bfb7a7c174",
-                "sha256:f84fbc98b019fef2ee9a1cb3ce93e3187a6df0b2538a651bfb890254ba9f90b5"
-            ],
-            "markers": "python_version >= '3.6'",
-            "version": "==6.0"
-        },
-        "requests": {
-            "hashes": [
-                "sha256:7c5599b102feddaa661c826c56ab4fee28bfd17f5abca1ebbe3e7f19d7c97983",
-                "sha256:8fefa2a1a1365bf5520aac41836fbee479da67864514bdb821f31ce07ce65349"
-            ],
-            "markers": "python_version >= '3.7' and python_version < '4.0'",
-            "version": "==2.28.1"
-        },
-        "rfc3986": {
-            "extras": [
-                "idna2008"
-            ],
-            "hashes": [
-                "sha256:270aaf10d87d0d4e095063c65bf3ddbc6ee3d0b226328ce21e036f946e421835",
-                "sha256:a86d6e1f5b1dc238b218b012df0aa79409667bb209e58da56d0b94704e712a97"
-            ],
-            "version": "==1.5.0"
-        },
-        "ruamel.yaml": {
-            "hashes": [
-                "sha256:742b35d3d665023981bd6d16b3d24248ce5df75fdb4e2924e93a05c1f8b61ca7",
-                "sha256:8b7ce697a2f212752a35c1ac414471dc16c424c9573be4926b56ff3f5d23b7af"
-            ],
-            "markers": "python_version >= '3'",
-            "version": "==0.17.21"
-        },
-        "ruamel.yaml.clib": {
-            "hashes": [
-                "sha256:045e0626baf1c52e5527bd5db361bc83180faaba2ff586e763d3d5982a876a9e",
-                "sha256:15910ef4f3e537eea7fe45f8a5d19997479940d9196f357152a09031c5be59f3",
-                "sha256:184faeaec61dbaa3cace407cffc5819f7b977e75360e8d5ca19461cd851a5fc5",
-                "sha256:1f08fd5a2bea9c4180db71678e850b995d2a5f4537be0e94557668cf0f5f9497",
-                "sha256:2aa261c29a5545adfef9296b7e33941f46aa5bbd21164228e833412af4c9c75f",
-                "sha256:3110a99e0f94a4a3470ff67fc20d3f96c25b13d24c6980ff841e82bafe827cac",
-                "sha256:3243f48ecd450eddadc2d11b5feb08aca941b5cd98c9b1db14b2fd128be8c697",
-                "sha256:370445fd795706fd291ab00c9df38a0caed0f17a6fb46b0f607668ecb16ce763",
-                "sha256:40d030e2329ce5286d6b231b8726959ebbe0404c92f0a578c0e2482182e38282",
-                "sha256:41d0f1fa4c6830176eef5b276af04c89320ea616655d01327d5ce65e50575c94",
-                "sha256:4a4d8d417868d68b979076a9be6a38c676eca060785abaa6709c7b31593c35d1",
-                "sha256:4b3a93bb9bc662fc1f99c5c3ea8e623d8b23ad22f861eb6fce9377ac07ad6072",
-                "sha256:5bc0667c1eb8f83a3752b71b9c4ba55ef7c7058ae57022dd9b29065186a113d9",
-                "sha256:721bc4ba4525f53f6a611ec0967bdcee61b31df5a56801281027a3a6d1c2daf5",
-                "sha256:763d65baa3b952479c4e972669f679fe490eee058d5aa85da483ebae2009d231",
-                "sha256:7bdb4c06b063f6fd55e472e201317a3bb6cdeeee5d5a38512ea5c01e1acbdd93",
-                "sha256:8831a2cedcd0f0927f788c5bdf6567d9dc9cc235646a434986a852af1cb54b4b",
-                "sha256:91a789b4aa0097b78c93e3dc4b40040ba55bef518f84a40d4442f713b4094acb",
-                "sha256:92460ce908546ab69770b2e576e4f99fbb4ce6ab4b245345a3869a0a0410488f",
-                "sha256:99e77daab5d13a48a4054803d052ff40780278240a902b880dd37a51ba01a307",
-                "sha256:a234a20ae07e8469da311e182e70ef6b199d0fbeb6c6cc2901204dd87fb867e8",
-                "sha256:a7b301ff08055d73223058b5c46c55638917f04d21577c95e00e0c4d79201a6b",
-                "sha256:be2a7ad8fd8f7442b24323d24ba0b56c51219513cfa45b9ada3b87b76c374d4b",
-                "sha256:bf9a6bc4a0221538b1a7de3ed7bca4c93c02346853f44e1cd764be0023cd3640",
-                "sha256:c3ca1fbba4ae962521e5eb66d72998b51f0f4d0f608d3c0347a48e1af262efa7",
-                "sha256:d000f258cf42fec2b1bbf2863c61d7b8918d31ffee905da62dede869254d3b8a",
-                "sha256:d5859983f26d8cd7bb5c287ef452e8aacc86501487634573d260968f753e1d71",
-                "sha256:d5e51e2901ec2366b79f16c2299a03e74ba4531ddcfacc1416639c557aef0ad8",
-                "sha256:debc87a9516b237d0466a711b18b6ebeb17ba9f391eb7f91c649c5c4ec5006c7",
-                "sha256:df5828871e6648db72d1c19b4bd24819b80a755c4541d3409f0f7acd0f335c80",
-                "sha256:ecdf1a604009bd35c674b9225a8fa609e0282d9b896c03dd441a91e5f53b534e",
-                "sha256:efa08d63ef03d079dcae1dfe334f6c8847ba8b645d08df286358b1f5293d24ab",
-                "sha256:f01da5790e95815eb5a8a138508c01c758e5f5bc0ce4286c4f7028b8dd7ac3d0",
-                "sha256:f34019dced51047d6f70cb9383b2ae2853b7fc4dce65129a5acd49f4f9256646"
-            ],
-            "markers": "python_version < '3.11' and platform_python_implementation == 'CPython'",
-            "version": "==0.2.7"
-        },
-        "semver": {
-            "hashes": [
-                "sha256:ced8b23dceb22134307c1b8abfa523da14198793d9787ac838e70e29e77458d4",
-                "sha256:fa0fe2722ee1c3f57eac478820c3a5ae2f624af8264cbdf9000c980ff7f75e3f"
-            ],
-            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3'",
-            "version": "==2.13.0"
-        },
-        "setuptools": {
-            "hashes": [
-                "sha256:57f6f22bde4e042978bcd50176fdb381d7c21a9efa4041202288d3737a0c6a54",
-                "sha256:a7620757bf984b58deaf32fc8a4577a9bbc0850cf92c20e1ce41c38c19e5fb75"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==65.6.3"
-        },
-        "six": {
-            "hashes": [
-                "sha256:1e61c37477a1626458e36f7b1d82aa5c9b094fa4802892072e49de9c60c4c926",
-                "sha256:8abb2f1d86890a2dfb989f9a77cfcfd3e47c2a354b01111771326f8aa26e0254"
-            ],
-            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3'",
-            "version": "==1.16.0"
-        },
-        "sniffio": {
-            "hashes": [
-                "sha256:e60305c5e5d314f5389259b7f22aaa33d8f7dee49763119234af3755c55b9101",
-                "sha256:eecefdce1e5bbfb7ad2eeaabf7c1eeb404d7757c379bd1f7e5cce9d8bf425384"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==1.3.0"
-        },
-        "toml": {
-            "hashes": [
-                "sha256:806143ae5bfb6a3c6e736a764057db0e6a0e05e338b5630894a5f779cabb4f9b",
-                "sha256:b3bda1d108d5dd99f4a20d24d9c348e91c4db7ab1b749200bded2f839ccbe68f"
-            ],
-            "markers": "python_version >= '2.6' and python_version not in '3.0, 3.1, 3.2, 3.3'",
-            "version": "==0.10.2"
-        },
-        "tomli": {
-            "hashes": [
-                "sha256:939de3e7a6161af0c887ef91b7d41a53e7c5a1ca976325f429cb46ea9bc30ecc",
-                "sha256:de526c12914f0c550d15924c62d72abc48d6fe7364aa87328337a31007fe8a4f"
-            ],
-            "markers": "python_full_version < '3.11.0a7'",
-            "version": "==2.0.1"
-        },
-        "typed-ast": {
-            "hashes": [
-                "sha256:0261195c2062caf107831e92a76764c81227dae162c4f75192c0d489faf751a2",
-                "sha256:0fdbcf2fef0ca421a3f5912555804296f0b0960f0418c440f5d6d3abb549f3e1",
-                "sha256:183afdf0ec5b1b211724dfef3d2cad2d767cbefac291f24d69b00546c1837fb6",
-                "sha256:211260621ab1cd7324e0798d6be953d00b74e0428382991adfddb352252f1d62",
-                "sha256:267e3f78697a6c00c689c03db4876dd1efdfea2f251a5ad6555e82a26847b4ac",
-                "sha256:2efae9db7a8c05ad5547d522e7dbe62c83d838d3906a3716d1478b6c1d61388d",
-                "sha256:370788a63915e82fd6f212865a596a0fefcbb7d408bbbb13dea723d971ed8bdc",
-                "sha256:39e21ceb7388e4bb37f4c679d72707ed46c2fbf2a5609b8b8ebc4b067d977df2",
-                "sha256:3e123d878ba170397916557d31c8f589951e353cc95fb7f24f6bb69adc1a8a97",
-                "sha256:4879da6c9b73443f97e731b617184a596ac1235fe91f98d279a7af36c796da35",
-                "sha256:4e964b4ff86550a7a7d56345c7864b18f403f5bd7380edf44a3c1fb4ee7ac6c6",
-                "sha256:639c5f0b21776605dd6c9dbe592d5228f021404dafd377e2b7ac046b0349b1a1",
-                "sha256:669dd0c4167f6f2cd9f57041e03c3c2ebf9063d0757dc89f79ba1daa2bfca9d4",
-                "sha256:6778e1b2f81dfc7bc58e4b259363b83d2e509a65198e85d5700dfae4c6c8ff1c",
-                "sha256:683407d92dc953c8a7347119596f0b0e6c55eb98ebebd9b23437501b28dcbb8e",
-                "sha256:79b1e0869db7c830ba6a981d58711c88b6677506e648496b1f64ac7d15633aec",
-                "sha256:7d5d014b7daa8b0bf2eaef684295acae12b036d79f54178b92a2b6a56f92278f",
-                "sha256:98f80dee3c03455e92796b58b98ff6ca0b2a6f652120c263efdba4d6c5e58f72",
-                "sha256:a94d55d142c9265f4ea46fab70977a1944ecae359ae867397757d836ea5a3f47",
-                "sha256:a9916d2bb8865f973824fb47436fa45e1ebf2efd920f2b9f99342cb7fab93f72",
-                "sha256:c542eeda69212fa10a7ada75e668876fdec5f856cd3d06829e6aa64ad17c8dfe",
-                "sha256:cf4afcfac006ece570e32d6fa90ab74a17245b83dfd6655a6f68568098345ff6",
-                "sha256:ebd9d7f80ccf7a82ac5f88c521115cc55d84e35bf8b446fcd7836eb6b98929a3",
-                "sha256:ed855bbe3eb3715fca349c80174cfcfd699c2f9de574d40527b8429acae23a66"
-            ],
-            "markers": "python_full_version >= '3.9.8'",
-            "version": "==1.5.4"
-        },
-        "typing-extensions": {
-            "hashes": [
-                "sha256:1511434bb92bf8dd198c12b1cc812e800d4181cfcb867674e0f8279cc93087aa",
-                "sha256:16fa4864408f655d35ec496218b85f79b3437c829e93320c7c9215ccfd92489e"
-            ],
-            "markers": "python_version >= '3.7'",
-            "version": "==4.4.0"
-        },
-        "urllib3": {
-            "hashes": [
-                "sha256:47cc05d99aaa09c9e72ed5809b60e7ba354e64b59c9c173ac3018642d8bb41fc",
-                "sha256:c083dd0dce68dbfbe1129d5271cb90f9447dea7d52097c6e0126120c521ddea8"
-            ],
-            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3, 3.4, 3.5'",
-            "version": "==1.26.13"
-        }
-    },
-    "develop": {}
-}
diff --git a/docs/compliance/README.md b/docs/compliance/README.md
deleted file mode 100644
index b41fa7c13..000000000
--- a/docs/compliance/README.md
+++ /dev/null
@@ -1,68 +0,0 @@
-# Compliance Template
-
-A compliance documentation workflow using [OSCAL](https://pages.nist.gov/OSCAL/) with [Trestle](https://github.com/IBM/compliance-trestle) to generate a System Security Plan (SSP) using Markdown.
-
-## Usage
-
-### Background
-
-For a little background on OSCAL please see the [glossary](glossary.md) and [control families](control-families.md) documentation.
-
-### Make
-
-We use the Makefile for our workflow. You will be primarily working in [dist/system-security-plans/ato](dist/system-security-plans/ato) where all the Markdown for our controls live. You will usually not need to run any Make commands while documenting. Just add your explanation on each control to the SSP Markdown. But the Make commands we have are: 
-
-- `make generate` to have `trestle` generate the corresponding control statement in Markdown. Use this if you need to add a control.
-- `make generate-with-header` to have `trestle` generate the corresponding control statement in Markdown with the status headers.
-- `make assemble` will generate the resulting OSCAL System Security Plan (SSP).
-- `make status` will print out some basic metrics about control status bits.
-
-### Suggested workflow
-
-Here is a suggested compliance documentation workflow that uses [compliance-trestle](https://github.com/IBM/compliance-trestle):
-
-- Add a control to the [profile](./profiles/ato/) that will be satisfied.
-- Run `make generate` to have `trestle` generate the corresponding control statement in Markdown.
-  - This Markdown file will live in `dist/system-security-plans/`.
-- Flesh out implementation detail stubs for that control.
-  - It is OK to leave a control implementation description blank initially.
-  - Backfill missing implementation descriptions as needed.
-  - If links to existing code are needed, consider linking to high level artifacts with a general description.
-    - Avoid linking directly to lines of code as these will change over time.
-- (Optionally) Run `make assemble` to generate the resulting OSCAL System Security Plan (SSP).
-  - This is an optional step because nothing uses the OSCAL SSP yet.
-
-### Status
-
-To track compliance status, there's a header yaml file with a status list. The options are:
-
-- `c-not-implemented`: this control has not been met or documented.
-- `c-implemented`: this control has been met and documented.
-- `c-inherited`: this control is inherited from cloud.gov or another system we use.
-- `c-org-help-needed`: this control needs to be implemented at a higher level.
-
-`make status` will print out some basic metrics about control status bits.
-
-## Controls
-
-Below are details about the controls, including additional parameters, notes, and control families.
-
-### Parameters
-
-A few controls require us to supply parameters to the control. These parameter choices are given in the official NIST catalog description. For instance, `sc-12.2` requires us to choose between `NIST FIPS-compliant` or `NSA-approved` symmetric keys.
-
-To provide a parameter, edit the [profile](./profiles/ato/profile.json) and add the relevant parameter id to the `set-parameters` section, along with the value(s) that best fits the control. (Note that some controls allow more than one parameter.)
-
-It is also possible to override the default parameters for a control, if needed.
-
-Once new parameters are set in the profile, please run `make generate` to re-generate the control Markdown with the new parameters.
-
-## Attribution
-
-This is a copy with alternations from the 18F [compliance-template](https://github.com/GSA-TTS/compliance-template)
-
-## Getting started for non-python devs
-
-1. Install [pipenv](https://docs.pipenv.org/)
-1. Run `pipenv install` to install dependencies from `Pipfile`
-1. Run `pipenv shell` to start a shell with the correct virtual environment configured
diff --git a/docs/compliance/assessment-plans/.keep b/docs/compliance/assessment-plans/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/assessment-results/.keep b/docs/compliance/assessment-results/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/catalogs/.keep b/docs/compliance/catalogs/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/component-definitions/.keep b/docs/compliance/component-definitions/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/control-families.md b/docs/compliance/control-families.md
deleted file mode 100644
index 5fc5866b0..000000000
--- a/docs/compliance/control-families.md
+++ /dev/null
@@ -1,51 +0,0 @@
-# Control Families
-
-Below are a list of control families with relevant descriptions.
-
-## `ac-`: Access Control
-
-This family deals with account management, various levels of access to hardware and software, and access related notifications.
-
-## `ar-`, `ra-`, `tr-`, and `ul`: Privacy Impact and Risk Assessment, Privacy Notice, and Infromation Sharing with Third Parties
-
-These families contain controls around threat modeling, privacy impact, and vulnerability scanning. `ar` was the family name under rev. 4, and `ra` is the name under rev. 5, but these should be examined together when making changes that impact privacy or help reduce risk. 
-
-## `au-`: Audit and Accountability
-
-These controls will deal with anything around logging for events, record keeping, and formatting of logs.
-
-## `ca-`: Assessment, Authorization, and Monitoring
-
-A little meta, but this family deals with how we actively document security and compliance, where we keep POAMs, how we conduct pen testing, etc.
-
-## `cm-`: Configuration Management
-
-This family documents how we restrict softare usage, where we store configuration, and adhere to "law of least functionality" throughout our system. 
-
-## `cp-`: Contingency Planning
-
-This deals with how we handle our backups, disaster recovery, fallbacks, and any other sort of emergency planning. 
-
-## `di-`: Data Quality
-
-There is only one control for `di` and it broadly deals with handling of PII at the organization level. 
-
-## `ia-`: Identification and Authentication
-
-This family deals with restricting access to parts or whole of the system. You will find controls relating to MFA, account access, PIVs to access, etc. Unlike `ac-` controls, this deals with things like how we restrict admin access to our AWS accounts, which will probably be documented in the SSP.
-
-## `sa-`: System and Services Acquisition
-
-This family deals with how we document and monitoring the state of the system. Any information about static analysis and regular system testing will go here.
-
-## `sc-`: System and Communications Protection
-
-This family deals with a lot of hardware controls we can probably inherit from AWS. It also deals with network configuration though, which we will have to document. Things like DDoS protection, minimizing network access between hosts, and hardware separation are documented here. 
-
-## `si-`: System and Information Integrity
-
-This family will contain things like any software scanning for security issues and necessary patches. It also deals with how we handle errors and sanitize user inputs. 
-
-## `sr-`: Supply Chain Risk Management
-
-This family potentially has the most entangled set of controls with other systems in our boundary and will take communication with security and compliance partners to help understand how changes to this system impact SCRM. The controls here range from setting up a SCRM team to how we scan our software to mitigate risk.
\ No newline at end of file
diff --git a/docs/compliance/dist/assessment-plans/.keep b/docs/compliance/dist/assessment-plans/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/dist/assessment-results/.keep b/docs/compliance/dist/assessment-results/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/dist/catalogs/.keep b/docs/compliance/dist/catalogs/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/dist/component-definitions/.keep b/docs/compliance/dist/component-definitions/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/dist/plan-of-action-and-milestones/.keep b/docs/compliance/dist/plan-of-action-and-milestones/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/dist/profiles/.keep b/docs/compliance/dist/profiles/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/dist/system-security-plans/.keep b/docs/compliance/dist/system-security-plans/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-1.md b/docs/compliance/dist/system-security-plans/ato/ac-1.md
deleted file mode 100644
index fabf51a45..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found access control policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the access control policy and the associated access controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the access control policy and procedures; and
-
-- \[c\] Review and update the current access control:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Access control policy and procedures address the controls in the AC family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of access control policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies reflecting the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to access control policy and procedures include assessment or audit findings, security incidents or breaches, or changes in laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-an access control policy is developed and documented;
-the access control policy is disseminated to personnel or roles;
-access control procedures to facilitate the implementation of the access control policy and associated controls are developed and documented;
-the access control procedures are disseminated to personnel or roles;
-the No value found access control policy addresses purpose;
-the No value found access control policy addresses scope;
-the No value found access control policy addresses roles;
-the No value found access control policy addresses responsibilities;
-the No value found access control policy addresses management commitment;
-the No value found access control policy addresses coordination among organizational entities;
-the No value found access control policy addresses compliance;
-the No value found access control policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the access control policy and procedures;
-the current access control policy is reviewed and updated frequency;
-the current access control policy is reviewed and updated following events;
-the current access control procedures are reviewed and updated frequency;
-the current access control procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ac-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-11.1.md b/docs/compliance/dist/system-security-plans/ato/ac-11.1.md
deleted file mode 100644
index 79f0c2451..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-11.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-11.1 - \[catalog\] Pattern-hiding Displays
-
-## Control Statement
-
-Conceal, via the device lock, information previously visible on the display with a publicly viewable image.
-
-## Control guidance
-
-The pattern-hiding display can include static or dynamic images, such as patterns used with screen savers, photographic images, solid colors, clock, battery life indicator, or a blank screen with the caveat that controlled unclassified information is not displayed.
-
-## Control assessment-objective
-
-information previously visible on the display is concealed, via device lock, with a publicly viewable image.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-11.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-11.md b/docs/compliance/dist/system-security-plans/ato/ac-11.md
deleted file mode 100644
index 2f7c5e368..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-11.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-11 - \[catalog\] Device Lock
-
-## Control Statement
-
-- \[a\] Prevent further access to the system by No value found ; and
-
-- \[b\] Retain the device lock until the user reestablishes access using established identification and authentication procedures.
-
-## Control guidance
-
-Device locks are temporary actions taken to prevent logical access to organizational systems when users stop work and move away from the immediate vicinity of those systems but do not want to log out because of the temporary nature of their absences. Device locks can be implemented at the operating system level or at the application level. A proximity lock may be used to initiate the device lock (e.g., via a Bluetooth-enabled device or dongle). User-initiated device locking is behavior or policy-based and, as such, requires users to take physical action to initiate the device lock. Device locks are not an acceptable substitute for logging out of systems, such as when organizations require users to log out at the end of workdays.
-
-## Control assessment-objective
-
-further access to the system is prevented by No value found;
-device lock is retained until the user re-establishes access using established identification and authentication procedures.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-11_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-11_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-12.md b/docs/compliance/dist/system-security-plans/ato/ac-12.md
deleted file mode 100644
index a2d3c8f3a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-12.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-12 - \[catalog\] Session Termination
-
-## Control Statement
-
-Automatically terminate a user session after conditions or trigger events.
-
-## Control guidance
-
-Session termination addresses the termination of user-initiated logical sessions (in contrast to [SC-10](#sc-10) , which addresses the termination of network connections associated with communications sessions (i.e., network disconnect)). A logical session (for local, network, and remote access) is initiated whenever a user (or process acting on behalf of a user) accesses an organizational system. Such user sessions can be terminated without terminating network sessions. Session termination ends all processes associated with a user’s logical session except for those processes that are specifically created by the user (i.e., session owner) to continue after the session is terminated. Conditions or trigger events that require automatic termination of the session include organization-defined periods of user inactivity, targeted responses to certain types of incidents, or time-of-day restrictions on system use.
-
-## Control assessment-objective
-
-a user session is automatically terminated after conditions or trigger events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-12
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-14.md b/docs/compliance/dist/system-security-plans/ato/ac-14.md
deleted file mode 100644
index 616b0428c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-14.md
+++ /dev/null
@@ -1,47 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-14 - \[catalog\] Permitted Actions Without Identification or Authentication
-
-## Control Statement
-
-- \[a\] Identify user actions that can be performed on the system without identification or authentication consistent with organizational mission and business functions; and
-
-- \[b\] Document and provide supporting rationale in the security plan for the system, user actions not requiring identification or authentication.
-
-## Control guidance
-
-Specific user actions may be permitted without identification or authentication if organizations determine that identification and authentication are not required for the specified user actions. Organizations may allow a limited number of user actions without identification or authentication, including when individuals access public websites or other publicly accessible federal systems, when individuals use mobile phones to receive calls, or when facsimiles are received. Organizations identify actions that normally require identification or authentication but may, under certain circumstances, allow identification or authentication mechanisms to be bypassed. Such bypasses may occur, for example, via a software-readable physical switch that commands bypass of the logon functionality and is protected from accidental or unmonitored use. Permitting actions without identification or authentication does not apply to situations where identification and authentication have already occurred and are not repeated but rather to situations where identification and authentication have not yet occurred. Organizations may decide that there are no user actions that can be performed on organizational systems without identification and authentication, and therefore, the value for the assignment operation can be "none."
-
-## Control assessment-objective
-
-user actions that can be performed on the system without identification or authentication consistent with organizational mission and business functions are identified;
-user actions not requiring identification or authentication are documented in the security plan for the system;
-a rationale for user actions not requiring identification or authentication is provided in the security plan for the system.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-14_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-14_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-17.1.md b/docs/compliance/dist/system-security-plans/ato/ac-17.1.md
deleted file mode 100644
index 387eb867e..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-17.1.md
+++ /dev/null
@@ -1,29 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ac-17.1 - \[catalog\] Monitoring and Control
-
-## Control Statement
-
-Employ automated mechanisms to monitor and control remote access methods.
-
-## Control guidance
-
-Monitoring and control of remote access methods allows organizations to detect attacks and help ensure compliance with remote access policies by auditing the connection activities of remote users on a variety of system components, including servers, notebook computers, workstations, smart phones, and tablets. Audit logging for remote access is enforced by [AU-2](#au-2) . Audit events are defined in [AU-2a](#au-2_smt.a).
-
-## Control assessment-objective
-
-automated mechanisms are employed to monitor remote access methods;
-automated mechanisms are employed to control remote access methods.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-cloud.gov logs all remote access to applications and application instances, and makes those events available for audit.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-17.2.md b/docs/compliance/dist/system-security-plans/ato/ac-17.2.md
deleted file mode 100644
index af0b9cac6..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-17.2.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ac-17.2 - \[catalog\] Protection of Confidentiality and Integrity Using Encryption
-
-## Control Statement
-
-Implement cryptographic mechanisms to protect the confidentiality and integrity of remote access sessions.
-
-## Control guidance
-
-Virtual private networks can be used to protect the confidentiality and integrity of remote access sessions. Transport Layer Security (TLS) is an example of a cryptographic protocol that provides end-to-end communications security over networks and is used for Internet communications and online transactions.
-
-## Control assessment-objective
-
-cryptographic mechanisms are implemented to protect the confidentiality and integrity of remote access sessions.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-All remote access to cloud.gov-hosted applications happens over TLS and access to application instances happens via SSH.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-17.3.md b/docs/compliance/dist/system-security-plans/ato/ac-17.3.md
deleted file mode 100644
index 53e95a2c9..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-17.3.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ac-17.3 - \[catalog\] Managed Access Control Points
-
-## Control Statement
-
-Route remote accesses through authorized and managed network access control points.
-
-## Control guidance
-
-Organizations consider the Trusted Internet Connections (TIC) initiative [DHS TIC](#4f42ee6e-86cc-403b-a51f-76c2b4f81b54) requirements for external network connections since limiting the number of access control points for remote access reduces attack surfaces.
-
-## Control assessment-objective
-
-remote accesses are routed through authorized and managed network access control points.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-All remote access to cloud.gov-hosted applications passes through virtual AWS internet gateways, whose configuration is managed by the cloud.gov operations team. For information about customer network interconnections, see CA-3 (3).
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-17.4.md b/docs/compliance/dist/system-security-plans/ato/ac-17.4.md
deleted file mode 100644
index 4ae7e22de..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-17.4.md
+++ /dev/null
@@ -1,49 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-17.4 - \[catalog\] Privileged Commands and Access
-
-## Control Statement
-
-- \[a\] Authorize the execution of privileged commands and access to security-relevant information via remote access only in a format that provides assessable evidence and for the following needs: organization-defined needs ; and
-
-- \[b\] Document the rationale for remote access in the security plan for the system.
-
-## Control guidance
-
-Remote access to systems represents a significant potential vulnerability that can be exploited by adversaries. As such, restricting the execution of privileged commands and access to security-relevant information via remote access reduces the exposure of the organization and the susceptibility to threats by adversaries to the remote access capability.
-
-## Control assessment-objective
-
-the execution of privileged commands via remote access is authorized only in a format that provides assessable evidence;
-access to security-relevant information via remote access is authorized only in a format that provides assessable evidence;
-the execution of privileged commands via remote access is authorized only for the following needs: needs requiring remote access;
-access to security-relevant information via remote access is authorized only for the following needs: needs requiring remote access;
-the rationale for remote access is documented in the security plan for the system.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item ac-17.4_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item ac-17.4_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-17.md b/docs/compliance/dist/system-security-plans/ato/ac-17.md
deleted file mode 100644
index 4656e71b7..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-17.md
+++ /dev/null
@@ -1,48 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-17 - \[catalog\] Remote Access
-
-## Control Statement
-
-- \[a\] Establish and document usage restrictions, configuration/connection requirements, and implementation guidance for each type of remote access allowed; and
-
-- \[b\] Authorize each type of remote access to the system prior to allowing such connections.
-
-## Control guidance
-
-Remote access is access to organizational systems (or processes acting on behalf of users) that communicate through external networks such as the Internet. Types of remote access include dial-up, broadband, and wireless. Organizations use encrypted virtual private networks (VPNs) to enhance confidentiality and integrity for remote connections. The use of encrypted VPNs provides sufficient assurance to the organization that it can effectively treat such connections as internal networks if the cryptographic mechanisms used are implemented in accordance with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Still, VPN connections traverse external networks, and the encrypted VPN does not enhance the availability of remote connections. VPNs with encrypted tunnels can also affect the ability to adequately monitor network communications traffic for malicious code. Remote access controls apply to systems other than public web servers or systems designed for public access. Authorization of each remote access type addresses authorization prior to allowing remote access without specifying the specific formats for such authorization. While organizations may use information exchange and system connection security agreements to manage remote access connections to other systems, such agreements are addressed as part of [CA-3](#ca-3) . Enforcing access restrictions for remote access is addressed via [AC-3](#ac-3).
-
-## Control assessment-objective
-
-usage restrictions are established and documented for each type of remote access allowed;
-configuration/connection requirements are established and documented for each type of remote access allowed;
-implementation guidance is established and documented for each type of remote access allowed;
-each type of remote access to the system is authorized prior to allowing such connections.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-17_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-17_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-18.1.md b/docs/compliance/dist/system-security-plans/ato/ac-18.1.md
deleted file mode 100644
index 269c9d78c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-18.1.md
+++ /dev/null
@@ -1,29 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ac-18.1 - \[catalog\] Authentication and Encryption
-
-## Control Statement
-
-Protect wireless access to the system using authentication of No value found and encryption.
-
-## Control guidance
-
-Wireless networking capabilities represent a significant potential vulnerability that can be exploited by adversaries. To protect systems with wireless access points, strong authentication of users and devices along with strong encryption can reduce susceptibility to threats by adversaries involving wireless technologies.
-
-## Control assessment-objective
-
-wireless access to the system is protected using authentication of No value found;
-wireless access to the system is protected using encryption.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Since cloud.gov is completely virtualized within AWS, there are no wireless capabilities possible.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-18.3.md b/docs/compliance/dist/system-security-plans/ato/ac-18.3.md
deleted file mode 100644
index e96720f05..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-18.3.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-18.3 - \[catalog\] Disable Wireless Networking
-
-## Control Statement
-
-Disable, when not intended for use, wireless networking capabilities embedded within system components prior to issuance and deployment.
-
-## Control guidance
-
-Wireless networking capabilities that are embedded within system components represent a significant potential vulnerability that can be exploited by adversaries. Disabling wireless capabilities when not needed for essential organizational missions or functions can reduce susceptibility to threats by adversaries involving wireless technologies.
-
-## Control assessment-objective
-
-when not intended for use, wireless networking capabilities embedded within system components are disabled prior to issuance and deployment.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-18.3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-18.md b/docs/compliance/dist/system-security-plans/ato/ac-18.md
deleted file mode 100644
index 30bc7baad..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-18.md
+++ /dev/null
@@ -1,45 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ac-18 - \[catalog\] Wireless Access
-
-## Control Statement
-
-- \[a\] Establish configuration requirements, connection requirements, and implementation guidance for each type of wireless access; and
-
-- \[b\] Authorize each type of wireless access to the system prior to allowing such connections.
-
-## Control guidance
-
-Wireless technologies include microwave, packet radio (ultra-high frequency or very high frequency), 802.11x, and Bluetooth. Wireless networks use authentication protocols that provide authenticator protection and mutual authentication.
-
-## Control assessment-objective
-
-configuration requirements are established for each type of wireless access;
-connection requirements are established for each type of wireless access;
-implementation guidance is established for each type of wireless access;
-each type of wireless access to the system is authorized prior to allowing such connections.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Since cloud.gov is completely virtualized within AWS, there are no wireless capabilities possible.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Since cloud.gov is completely virtualized within AWS, there are no wireless capabilities possible.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-19.5.md b/docs/compliance/dist/system-security-plans/ato/ac-19.5.md
deleted file mode 100644
index 8bccc287e..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-19.5.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-19.5 - \[catalog\] Full Device or Container-based Encryption
-
-## Control Statement
-
-Employ No value found to protect the confidentiality and integrity of information on mobile devices.
-
-## Control guidance
-
-Container-based encryption provides a more fine-grained approach to data and information encryption on mobile devices, including encrypting selected data structures such as files, records, or fields.
-
-## Control assessment-objective
-
-No value found is employed to protect the confidentiality and integrity of information on mobile devices.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-19.5
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-19.md b/docs/compliance/dist/system-security-plans/ato/ac-19.md
deleted file mode 100644
index 478c53cc4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-19.md
+++ /dev/null
@@ -1,52 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-19 - \[catalog\] Access Control for Mobile Devices
-
-## Control Statement
-
-- \[a\] Establish configuration requirements, connection requirements, and implementation guidance for organization-controlled mobile devices, to include when such devices are outside of controlled areas; and
-
-- \[b\] Authorize the connection of mobile devices to organizational systems.
-
-## Control guidance
-
-A mobile device is a computing device that has a small form factor such that it can easily be carried by a single individual; is designed to operate without a physical connection; possesses local, non-removable or removable data storage; and includes a self-contained power source. Mobile device functionality may also include voice communication capabilities, on-board sensors that allow the device to capture information, and/or built-in features for synchronizing local data with remote locations. Examples include smart phones and tablets. Mobile devices are typically associated with a single individual. The processing, storage, and transmission capability of the mobile device may be comparable to or merely a subset of notebook/desktop systems, depending on the nature and intended purpose of the device. Protection and control of mobile devices is behavior or policy-based and requires users to take physical action to protect and control such devices when outside of controlled areas. Controlled areas are spaces for which organizations provide physical or procedural controls to meet the requirements established for protecting information and systems.
-
-Due to the large variety of mobile devices with different characteristics and capabilities, organizational restrictions may vary for the different classes or types of such devices. Usage restrictions and specific implementation guidance for mobile devices include configuration management, device identification and authentication, implementation of mandatory protective software, scanning devices for malicious code, updating virus protection software, scanning for critical software updates and patches, conducting primary operating system (and possibly other resident software) integrity checks, and disabling unnecessary hardware.
-
-Usage restrictions and authorization to connect may vary among organizational systems. For example, the organization may authorize the connection of mobile devices to its network and impose a set of usage restrictions, while a system owner may withhold authorization for mobile device connection to specific applications or impose additional usage restrictions before allowing mobile device connections to a system. Adequate security for mobile devices goes beyond the requirements specified in [AC-19](#ac-19) . Many safeguards for mobile devices are reflected in other controls. [AC-20](#ac-20) addresses mobile devices that are not organization-controlled.
-
-## Control assessment-objective
-
-configuration requirements are established for organization-controlled mobile devices, including when such devices are outside of the controlled area;
-connection requirements are established for organization-controlled mobile devices, including when such devices are outside of the controlled area;
-implementation guidance is established for organization-controlled mobile devices, including when such devices are outside of the controlled area;
-the connection of mobile devices to organizational systems is authorized.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-19_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-19_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-2.1.md b/docs/compliance/dist/system-security-plans/ato/ac-2.1.md
deleted file mode 100644
index 33dd7dc4e..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-2.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-2.1 - \[catalog\] Automated System Account Management
-
-## Control Statement
-
-Support the management of system accounts using automated mechanisms.
-
-## Control guidance
-
-Automated system account management includes using automated mechanisms to create, enable, modify, disable, and remove accounts; notify account managers when an account is created, enabled, modified, disabled, or removed, or when users are terminated or transferred; monitor system account usage; and report atypical system account usage. Automated mechanisms can include internal system functions and email, telephonic, and text messaging notifications.
-
-## Control assessment-objective
-
-the management of system accounts is supported using automated mechanisms.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-2.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-2.13.md b/docs/compliance/dist/system-security-plans/ato/ac-2.13.md
deleted file mode 100644
index 7f47f5940..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-2.13.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-2.13 - \[catalog\] Disable Accounts for High-risk Individuals
-
-## Control Statement
-
-Disable accounts of individuals within time period of discovery of significant risks.
-
-## Control guidance
-
-Users who pose a significant security and/or privacy risk include individuals for whom reliable evidence indicates either the intention to use authorized access to systems to cause harm or through whom adversaries will cause harm. Such harm includes adverse impacts to organizational operations, organizational assets, individuals, other organizations, or the Nation. Close coordination among system administrators, legal staff, human resource managers, and authorizing officials is essential when disabling system accounts for high-risk individuals.
-
-## Control assessment-objective
-
-accounts of individuals are disabled within time period of discovery of significant risks.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-2.13
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-2.2.md b/docs/compliance/dist/system-security-plans/ato/ac-2.2.md
deleted file mode 100644
index efaf5cebc..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-2.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-2.2 - \[catalog\] Automated Temporary and Emergency Account Management
-
-## Control Statement
-
-Automatically No value found temporary and emergency accounts after time period.
-
-## Control guidance
-
-Management of temporary and emergency accounts includes the removal or disabling of such accounts automatically after a predefined time period rather than at the convenience of the system administrator. Automatic removal or disabling of accounts provides a more consistent implementation.
-
-## Control assessment-objective
-
-temporary and emergency accounts are automatically No value found after time period.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-2.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-2.3.md b/docs/compliance/dist/system-security-plans/ato/ac-2.3.md
deleted file mode 100644
index 8ab08681c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-2.3.md
+++ /dev/null
@@ -1,66 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-2.3 - \[catalog\] Disable Accounts
-
-## Control Statement
-
-Disable accounts within time period when the accounts:
-
-- \[a\] Have expired;
-
-- \[b\] Are no longer associated with a user or individual;
-
-- \[c\] Are in violation of organizational policy; or
-
-- \[d\] Have been inactive for time period.
-
-## Control guidance
-
-Disabling expired, inactive, or otherwise anomalous accounts supports the concepts of least privilege and least functionality which reduce the attack surface of the system.
-
-## Control assessment-objective
-
-accounts are disabled within time period when the accounts have expired;
-accounts are disabled within time period when the accounts are no longer associated with a user or individual;
-accounts are disabled within time period when the accounts are in violation of organizational policy;
-accounts are disabled within time period when the accounts have been inactive for time period.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item ac-2.3_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item ac-2.3_smt.b
-
-______________________________________________________________________
-
-## Implementation (c)
-
-Add control implementation description here for item ac-2.3_smt.c
-
-______________________________________________________________________
-
-## Implementation (d)
-
-Add control implementation description here for item ac-2.3_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-2.4.md b/docs/compliance/dist/system-security-plans/ato/ac-2.4.md
deleted file mode 100644
index 666214550..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-2.4.md
+++ /dev/null
@@ -1,35 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-2.4 - \[catalog\] Automated Audit Actions
-
-## Control Statement
-
-Automatically audit account creation, modification, enabling, disabling, and removal actions.
-
-## Control guidance
-
-Account management audit records are defined in accordance with [AU-2](#au-2) and reviewed, analyzed, and reported in accordance with [AU-6](#au-6).
-
-## Control assessment-objective
-
-account creation is automatically audited;
-account modification is automatically audited;
-account enabling is automatically audited;
-account disabling is automatically audited;
-account removal actions are automatically audited.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-2.4
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-2.5.md b/docs/compliance/dist/system-security-plans/ato/ac-2.5.md
deleted file mode 100644
index 13bf1071d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-2.5.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-2.5 - \[catalog\] Inactivity Logout
-
-## Control Statement
-
-Require that users log out when time period of expected inactivity or description of when to log out.
-
-## Control guidance
-
-Inactivity logout is behavior- or policy-based and requires users to take physical action to log out when they are expecting inactivity longer than the defined period. Automatic enforcement of inactivity logout is addressed by [AC-11](#ac-11).
-
-## Control assessment-objective
-
-users are required to log out when time period of expected inactivity or description of when to log out.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-2.5
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-2.md b/docs/compliance/dist/system-security-plans/ato/ac-2.md
deleted file mode 100644
index 60e158f42..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-2.md
+++ /dev/null
@@ -1,166 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-2 - \[catalog\] Account Management
-
-## Control Statement
-
-- \[a\] Define and document the types of accounts allowed and specifically prohibited for use within the system;
-
-- \[b\] Assign account managers;
-
-- \[c\] Require prerequisites and criteria for group and role membership;
-
-- \[d\] Specify:
-
-  - \[1\] Authorized users of the system;
-  - \[2\] Group and role membership; and
-  - \[3\] Access authorizations (i.e., privileges) and attributes (as required) for each account;
-
-- \[e\] Require approvals by personnel or roles for requests to create accounts;
-
-- \[f\] Create, enable, modify, disable, and remove accounts in accordance with policy, procedures, prerequisites, and criteria;
-
-- \[g\] Monitor the use of accounts;
-
-- \[h\] Notify account managers and personnel or roles within:
-
-  - \[1\]  time period when accounts are no longer required;
-  - \[2\]  time period when users are terminated or transferred; and
-  - \[3\]  time period when system usage or need-to-know changes for an individual;
-
-- \[i\] Authorize access to the system based on:
-
-  - \[1\] A valid access authorization;
-  - \[2\] Intended system usage; and
-  - \[3\]  attributes (as required);
-
-- \[j\] Review accounts for compliance with account management requirements frequency;
-
-- \[k\] Establish and implement a process for changing shared or group account authenticators (if deployed) when individuals are removed from the group; and
-
-- \[l\] Align account management processes with personnel termination and transfer processes.
-
-## Control guidance
-
-Examples of system account types include individual, shared, group, system, guest, anonymous, emergency, developer, temporary, and service. Identification of authorized system users and the specification of access privileges reflect the requirements in other controls in the security plan. Users requiring administrative privileges on system accounts receive additional scrutiny by organizational personnel responsible for approving such accounts and privileged access, including system owner, mission or business owner, senior agency information security officer, or senior agency official for privacy. Types of accounts that organizations may wish to prohibit due to increased risk include shared, group, emergency, anonymous, temporary, and guest accounts.
-
-Where access involves personally identifiable information, security programs collaborate with the senior agency official for privacy to establish the specific conditions for group and role membership; specify authorized users, group and role membership, and access authorizations for each account; and create, adjust, or remove system accounts in accordance with organizational policies. Policies can include such information as account expiration dates or other factors that trigger the disabling of accounts. Organizations may choose to define access privileges or other attributes by account, type of account, or a combination of the two. Examples of other attributes required for authorizing access include restrictions on time of day, day of week, and point of origin. In defining other system account attributes, organizations consider system-related requirements and mission/business requirements. Failure to consider these factors could affect system availability.
-
-Temporary and emergency accounts are intended for short-term use. Organizations establish temporary accounts as part of normal account activation procedures when there is a need for short-term accounts without the demand for immediacy in account activation. Organizations establish emergency accounts in response to crisis situations and with the need for rapid account activation. Therefore, emergency account activation may bypass normal account authorization processes. Emergency and temporary accounts are not to be confused with infrequently used accounts, including local logon accounts used for special tasks or when network resources are unavailable (may also be known as accounts of last resort). Such accounts remain available and are not subject to automatic disabling or removal dates. Conditions for disabling or deactivating accounts include when shared/group, emergency, or temporary accounts are no longer required and when individuals are transferred or terminated. Changing shared/group authenticators when members leave the group is intended to ensure that former group members do not retain access to the shared or group account. Some types of system accounts may require specialized training.
-
-## Control assessment-objective
-
-account types allowed for use within the system are defined and documented;
-account types specifically prohibited for use within the system are defined and documented;
-account managers are assigned;
-prerequisites and criteria for group and role membership are required;
-authorized users of the system are specified;
-group and role membership are specified;
-access authorizations (i.e., privileges) are specified for each account;
-attributes (as required) are specified for each account;
-approvals are required by personnel or roles for requests to create accounts;
-accounts are created in accordance with policy, procedures, prerequisites, and criteria;
-accounts are enabled in accordance with policy, procedures, prerequisites, and criteria;
-accounts are modified in accordance with policy, procedures, prerequisites, and criteria;
-accounts are disabled in accordance with policy, procedures, prerequisites, and criteria;
-accounts are removed in accordance with policy, procedures, prerequisites, and criteria;
-the use of accounts is monitored;
-account managers and personnel or roles are notified within time period when accounts are no longer required;
-account managers and personnel or roles are notified within time period when users are terminated or transferred;
-account managers and personnel or roles are notified within time period when system usage or the need to know changes for an individual;
-access to the system is authorized based on a valid access authorization;
-access to the system is authorized based on intended system usage;
-access to the system is authorized based on attributes (as required);
-accounts are reviewed for compliance with account management requirements frequency;
-a process is established for changing shared or group account authenticators (if deployed) when individuals are removed from the group;
-a process is implemented for changing shared or group account authenticators (if deployed) when individuals are removed from the group;
-account management processes are aligned with personnel termination processes;
-account management processes are aligned with personnel transfer processes.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-2_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ac-2_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ac-2_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item ac-2_smt.e
-
-______________________________________________________________________
-
-## Implementation f.
-
-Add control implementation description here for item ac-2_smt.f
-
-______________________________________________________________________
-
-## Implementation g.
-
-Add control implementation description here for item ac-2_smt.g
-
-______________________________________________________________________
-
-## Implementation h.
-
-Add control implementation description here for item ac-2_smt.h
-
-______________________________________________________________________
-
-## Implementation i.
-
-Add control implementation description here for item ac-2_smt.i
-
-______________________________________________________________________
-
-## Implementation j.
-
-Add control implementation description here for item ac-2_smt.j
-
-______________________________________________________________________
-
-## Implementation k.
-
-Add control implementation description here for item ac-2_smt.k
-
-______________________________________________________________________
-
-## Implementation l.
-
-Add control implementation description here for item ac-2_smt.l
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-20.1.md b/docs/compliance/dist/system-security-plans/ato/ac-20.1.md
deleted file mode 100644
index 5ff88b3bf..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-20.1.md
+++ /dev/null
@@ -1,48 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-20.1 - \[catalog\] Limits on Authorized Use
-
-## Control Statement
-
-Permit authorized individuals to use an external system to access the system or to process, store, or transmit organization-controlled information only after:
-
-- \[a\] Verification of the implementation of controls on the external system as specified in the organization’s security and privacy policies and security and privacy plans; or
-
-- \[b\] Retention of approved system connection or processing agreements with the organizational entity hosting the external system.
-
-## Control guidance
-
-Limiting authorized use recognizes circumstances where individuals using external systems may need to access organizational systems. Organizations need assurance that the external systems contain the necessary controls so as not to compromise, damage, or otherwise harm organizational systems. Verification that the required controls have been implemented can be achieved by external, independent assessments, attestations, or other means, depending on the confidence level required by organizations.
-
-## Control assessment-objective
-
-authorized individuals are permitted to use an external system to access the system or to process, store, or transmit organization-controlled information only after verification of the implementation of controls on the external system as specified in the organization’s security and privacy policies and security and privacy plans (if applicable);
-authorized individuals are permitted to use an external system to access the system or to process, store, or transmit organization-controlled information only after retention of approved system connection or processing agreements with the organizational entity hosting the external system (if applicable).
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item ac-20.1_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item ac-20.1_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-20.2.md b/docs/compliance/dist/system-security-plans/ato/ac-20.2.md
deleted file mode 100644
index ff14d88d9..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-20.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-20.2 - \[catalog\] Portable Storage Devices — Restricted Use
-
-## Control Statement
-
-Restrict the use of organization-controlled portable storage devices by authorized individuals on external systems using restrictions.
-
-## Control guidance
-
-Limits on the use of organization-controlled portable storage devices in external systems include restrictions on how the devices may be used and under what conditions the devices may be used.
-
-## Control assessment-objective
-
-the use of organization-controlled portable storage devices by authorized individuals is restricted on external systems using restrictions.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-20.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-20.md b/docs/compliance/dist/system-security-plans/ato/ac-20.md
deleted file mode 100644
index 9cad397b0..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-20.md
+++ /dev/null
@@ -1,54 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-20 - \[catalog\] Use of External Systems
-
-## Control Statement
-
-- \[a\]  No value found , consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems, allowing authorized individuals to:
-
-  - \[1\] Access the system from external systems; and
-  - \[2\] Process, store, or transmit organization-controlled information using external systems; or
-
-- \[b\] Prohibit the use of prohibited types of external systems.
-
-## Control guidance
-
-External systems are systems that are used by but not part of organizational systems, and for which the organization has no direct control over the implementation of required controls or the assessment of control effectiveness. External systems include personally owned systems, components, or devices; privately owned computing and communications devices in commercial or public facilities; systems owned or controlled by nonfederal organizations; systems managed by contractors; and federal information systems that are not owned by, operated by, or under the direct supervision or authority of the organization. External systems also include systems owned or operated by other components within the same organization and systems within the organization with different authorization boundaries. Organizations have the option to prohibit the use of any type of external system or prohibit the use of specified types of external systems, (e.g., prohibit the use of any external system that is not organizationally owned or prohibit the use of personally-owned systems).
-
-For some external systems (i.e., systems operated by other organizations), the trust relationships that have been established between those organizations and the originating organization may be such that no explicit terms and conditions are required. Systems within these organizations may not be considered external. These situations occur when, for example, there are pre-existing information exchange agreements (either implicit or explicit) established between organizations or components or when such agreements are specified by applicable laws, executive orders, directives, regulations, policies, or standards. Authorized individuals include organizational personnel, contractors, or other individuals with authorized access to organizational systems and over which organizations have the authority to impose specific rules of behavior regarding system access. Restrictions that organizations impose on authorized individuals need not be uniform, as the restrictions may vary depending on trust relationships between organizations. Therefore, organizations may choose to impose different security restrictions on contractors than on state, local, or tribal governments.
-
-External systems used to access public interfaces to organizational systems are outside the scope of [AC-20](#ac-20) . Organizations establish specific terms and conditions for the use of external systems in accordance with organizational security policies and procedures. At a minimum, terms and conditions address the specific types of applications that can be accessed on organizational systems from external systems and the highest security category of information that can be processed, stored, or transmitted on external systems. If the terms and conditions with the owners of the external systems cannot be established, organizations may impose restrictions on organizational personnel using those external systems.
-
-## Control assessment-objective
-
-No value found is/are consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems, allowing authorized individuals to access the system from external systems (if applicable);
-No value found is/are consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems, allowing authorized individuals to process, store, or transmit organization-controlled information using external systems (if applicable);
-the use of prohibited types of external systems is prohibited (if applicable).
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-20_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-20_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-21.md b/docs/compliance/dist/system-security-plans/ato/ac-21.md
deleted file mode 100644
index d7ec778c6..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-21.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-21 - \[catalog\] Information Sharing
-
-## Control Statement
-
-- \[a\] Enable authorized users to determine whether access authorizations assigned to a sharing partner match the information’s access and use restrictions for information-sharing circumstances ; and
-
-- \[b\] Employ automated mechanisms to assist users in making information sharing and collaboration decisions.
-
-## Control guidance
-
-Information sharing applies to information that may be restricted in some manner based on some formal or administrative determination. Examples of such information include, contract-sensitive information, classified information related to special access programs or compartments, privileged information, proprietary information, and personally identifiable information. Security and privacy risk assessments as well as applicable laws, regulations, and policies can provide useful inputs to these determinations. Depending on the circumstances, sharing partners may be defined at the individual, group, or organizational level. Information may be defined by content, type, security category, or special access program or compartment. Access restrictions may include non-disclosure agreements (NDA). Information flow techniques and security attributes may be used to provide automated assistance to users making sharing and collaboration decisions.
-
-## Control assessment-objective
-
-authorized users are enabled to determine whether access authorizations assigned to a sharing partner match the information’s access and use restrictions for information-sharing circumstances;
-automated mechanisms are employed to assist users in making information-sharing and collaboration decisions.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-21_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-21_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-22.md b/docs/compliance/dist/system-security-plans/ato/ac-22.md
deleted file mode 100644
index e9ceed1bc..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-22.md
+++ /dev/null
@@ -1,65 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-22 - \[catalog\] Publicly Accessible Content
-
-## Control Statement
-
-- \[a\] Designate individuals authorized to make information publicly accessible;
-
-- \[b\] Train authorized individuals to ensure that publicly accessible information does not contain nonpublic information;
-
-- \[c\] Review the proposed content of information prior to posting onto the publicly accessible system to ensure that nonpublic information is not included; and
-
-- \[d\] Review the content on the publicly accessible system for nonpublic information frequency and remove such information, if discovered.
-
-## Control guidance
-
-In accordance with applicable laws, executive orders, directives, policies, regulations, standards, and guidelines, the public is not authorized to have access to nonpublic information, including information protected under the [PRIVACT](#18e71fec-c6fd-475a-925a-5d8495cf8455) and proprietary information. Publicly accessible content addresses systems that are controlled by the organization and accessible to the public, typically without identification or authentication. Posting information on non-organizational systems (e.g., non-organizational public websites, forums, and social media) is covered by organizational policy. While organizations may have individuals who are responsible for developing and implementing policies about the information that can be made publicly accessible, publicly accessible content addresses the management of the individuals who make such information publicly accessible.
-
-## Control assessment-objective
-
-designated individuals are authorized to make information publicly accessible;
-authorized individuals are trained to ensure that publicly accessible information does not contain non-public information;
-the proposed content of information is reviewed prior to posting onto the publicly accessible system to ensure that non-public information is not included;
-the content on the publicly accessible system is reviewed for non-public information frequency;
-non-public information is removed from the publicly accessible system, if discovered.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-22_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-22_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ac-22_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ac-22_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-3.md b/docs/compliance/dist/system-security-plans/ato/ac-3.md
deleted file mode 100644
index d3e47e1e2..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-3.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-3 - \[catalog\] Access Enforcement
-
-## Control Statement
-
-Enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies.
-
-## Control guidance
-
-Access control policies control access between active entities or subjects (i.e., users or processes acting on behalf of users) and passive entities or objects (i.e., devices, files, records, domains) in organizational systems. In addition to enforcing authorized access at the system level and recognizing that systems can host many applications and services in support of mission and business functions, access enforcement mechanisms can also be employed at the application and service level to provide increased information security and privacy. In contrast to logical access controls that are implemented within the system, physical access controls are addressed by the controls in the Physical and Environmental Protection ( [PE](#pe) ) family.
-
-## Control assessment-objective
-
-approved authorizations for logical access to information and system resources are enforced in accordance with applicable access control policies.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-4.md b/docs/compliance/dist/system-security-plans/ato/ac-4.md
deleted file mode 100644
index 260f2858b..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-4.md
+++ /dev/null
@@ -1,33 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-4 - \[catalog\] Information Flow Enforcement
-
-## Control Statement
-
-Enforce approved authorizations for controlling the flow of information within the system and between connected systems based on information flow control policies.
-
-## Control guidance
-
-Information flow control regulates where information can travel within a system and between systems (in contrast to who is allowed to access the information) and without regard to subsequent accesses to that information. Flow control restrictions include blocking external traffic that claims to be from within the organization, keeping export-controlled information from being transmitted in the clear to the Internet, restricting web requests that are not from the internal web proxy server, and limiting information transfers between organizations based on data structures and content. Transferring information between organizations may require an agreement specifying how the information flow is enforced (see [CA-3](#ca-3) ). Transferring information between systems in different security or privacy domains with different security or privacy policies introduces the risk that such transfers violate one or more domain security or privacy policies. In such situations, information owners/stewards provide guidance at designated policy enforcement points between connected systems. Organizations consider mandating specific architectural solutions to enforce specific security and privacy policies. Enforcement includes prohibiting information transfers between connected systems (i.e., allowing access only), verifying write permissions before accepting information from another security or privacy domain or connected system, employing hardware mechanisms to enforce one-way information flows, and implementing trustworthy regrading mechanisms to reassign security or privacy attributes and labels.
-
-Organizations commonly employ information flow control policies and enforcement mechanisms to control the flow of information between designated sources and destinations within systems and between connected systems. Flow control is based on the characteristics of the information and/or the information path. Enforcement occurs, for example, in boundary protection devices that employ rule sets or establish configuration settings that restrict system services, provide a packet-filtering capability based on header information, or provide a message-filtering capability based on message content. Organizations also consider the trustworthiness of filtering and/or inspection mechanisms (i.e., hardware, firmware, and software components) that are critical to information flow enforcement. Control enhancements 3 through 32 primarily address cross-domain solution needs that focus on more advanced filtering techniques, in-depth analysis, and stronger flow enforcement mechanisms implemented in cross-domain products, such as high-assurance guards. Such capabilities are generally not available in commercial off-the-shelf products. Information flow enforcement also applies to control plane traffic (e.g., routing and DNS).
-
-## Control assessment-objective
-
-approved authorizations are enforced for controlling the flow of information within the system and between connected systems based on information flow control policies.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-4
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-5.md b/docs/compliance/dist/system-security-plans/ato/ac-5.md
deleted file mode 100644
index 16663af6c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-5.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-5 - \[catalog\] Separation of Duties
-
-## Control Statement
-
-- \[a\] Identify and document duties of individuals ; and
-
-- \[b\] Define system access authorizations to support separation of duties.
-
-## Control guidance
-
-Separation of duties addresses the potential for abuse of authorized privileges and helps to reduce the risk of malevolent activity without collusion. Separation of duties includes dividing mission or business functions and support functions among different individuals or roles, conducting system support functions with different individuals, and ensuring that security personnel who administer access control functions do not also administer audit functions. Because separation of duty violations can span systems and application domains, organizations consider the entirety of systems and system components when developing policy on separation of duties. Separation of duties is enforced through the account management activities in [AC-2](#ac-2) , access control mechanisms in [AC-3](#ac-3) , and identity management activities in [IA-2](#ia-2), [IA-4](#ia-4) , and [IA-12](#ia-12).
-
-## Control assessment-objective
-
-duties of individuals are identified and documented;
-system access authorizations to support separation of duties are defined.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-5_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-5_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-6.1.md b/docs/compliance/dist/system-security-plans/ato/ac-6.1.md
deleted file mode 100644
index fa42b53ca..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-6.1.md
+++ /dev/null
@@ -1,50 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-6.1 - \[catalog\] Authorize Access to Security Functions
-
-## Control Statement
-
-Authorize access for individuals and roles to:
-
-- \[a\]  organization-defined security functions (deployed in hardware, software, and firmware) ; and
-
-- \[b\]  security-relevant information.
-
-## Control guidance
-
-Security functions include establishing system accounts, configuring access authorizations (i.e., permissions, privileges), configuring settings for events to be audited, and establishing intrusion detection parameters. Security-relevant information includes filtering rules for routers or firewalls, configuration parameters for security services, cryptographic key management information, and access control lists. Authorized personnel include security administrators, system administrators, system security officers, system programmers, and other privileged users.
-
-## Control assessment-objective
-
-access is authorized for individuals and roles to security functions (deployed in hardware);
-access is authorized for individuals and roles to security functions (deployed in software);
-access is authorized for individuals and roles to security functions (deployed in firmware);
-access is authorized for individuals and roles to security-relevant information.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item ac-6.1_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item ac-6.1_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-6.10.md b/docs/compliance/dist/system-security-plans/ato/ac-6.10.md
deleted file mode 100644
index a2c50723a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-6.10.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ac-6.10 - \[catalog\] Prohibit Non-privileged Users from Executing Privileged Functions
-
-## Control Statement
-
-Prevent non-privileged users from executing privileged functions.
-
-## Control guidance
-
-Privileged functions include disabling, circumventing, or altering implemented security or privacy controls, establishing system accounts, performing system integrity checks, and administering cryptographic key management activities. Non-privileged users are individuals who do not possess appropriate authorizations. Privileged functions that require protection from non-privileged users include circumventing intrusion detection and prevention mechanisms or malicious code protection mechanisms. Preventing non-privileged users from executing privileged functions is enforced by [AC-3](#ac-3).
-
-## Control assessment-objective
-
-non-privileged users are prevented from executing privileged functions.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-The cloud.gov role-based access control system prevents non-privileged users from executing privileged functions.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-6.2.md b/docs/compliance/dist/system-security-plans/ato/ac-6.2.md
deleted file mode 100644
index 50ee25c6f..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-6.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-6.2 - \[catalog\] Non-privileged Access for Nonsecurity Functions
-
-## Control Statement
-
-Require that users of system accounts (or roles) with access to security functions or security-relevant information use non-privileged accounts or roles, when accessing nonsecurity functions.
-
-## Control guidance
-
-Requiring the use of non-privileged accounts when accessing nonsecurity functions limits exposure when operating from within privileged accounts or roles. The inclusion of roles addresses situations where organizations implement access control policies, such as role-based access control, and where a change of role provides the same degree of assurance in the change of access authorizations for the user and the processes acting on behalf of the user as would be provided by a change between a privileged and non-privileged account.
-
-## Control assessment-objective
-
-users of system accounts (or roles) with access to security functions or security-relevant information are required to use non-privileged accounts or roles when accessing non-security functions.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-6.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-6.5.md b/docs/compliance/dist/system-security-plans/ato/ac-6.5.md
deleted file mode 100644
index 76d9af79b..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-6.5.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-6.5 - \[catalog\] Privileged Accounts
-
-## Control Statement
-
-Restrict privileged accounts on the system to personnel or roles.
-
-## Control guidance
-
-Privileged accounts, including super user accounts, are typically described as system administrator for various types of commercial off-the-shelf operating systems. Restricting privileged accounts to specific personnel or roles prevents day-to-day users from accessing privileged information or privileged functions. Organizations may differentiate in the application of restricting privileged accounts between allowed privileges for local accounts and for domain accounts provided that they retain the ability to control system configurations for key parameters and as otherwise necessary to sufficiently mitigate risk.
-
-## Control assessment-objective
-
-privileged accounts on the system are restricted to personnel or roles.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-6.5
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-6.7.md b/docs/compliance/dist/system-security-plans/ato/ac-6.7.md
deleted file mode 100644
index 774acb578..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-6.7.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-6.7 - \[catalog\] Review of User Privileges
-
-## Control Statement
-
-- \[a\] Review frequency the privileges assigned to roles and classes to validate the need for such privileges; and
-
-- \[b\] Reassign or remove privileges, if necessary, to correctly reflect organizational mission and business needs.
-
-## Control guidance
-
-The need for certain assigned user privileges may change over time to reflect changes in organizational mission and business functions, environments of operation, technologies, or threats. A periodic review of assigned user privileges is necessary to determine if the rationale for assigning such privileges remains valid. If the need cannot be revalidated, organizations take appropriate corrective actions.
-
-## Control assessment-objective
-
-privileges assigned to roles and classes are reviewed frequency to validate the need for such privileges;
-privileges are reassigned or removed, if necessary, to correctly reflect organizational mission and business needs.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item ac-6.7_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item ac-6.7_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-6.9.md b/docs/compliance/dist/system-security-plans/ato/ac-6.9.md
deleted file mode 100644
index 4727d67a0..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-6.9.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ac-6.9 - \[catalog\] Log Use of Privileged Functions
-
-## Control Statement
-
-Log the execution of privileged functions.
-
-## Control guidance
-
-The misuse of privileged functions, either intentionally or unintentionally by authorized users or by unauthorized external entities that have compromised system accounts, is a serious and ongoing concern and can have significant adverse impacts on organizations. Logging and analyzing the use of privileged functions is one way to detect such misuse and, in doing so, help mitigate the risk from insider threats and the advanced persistent threat.
-
-## Control assessment-objective
-
-the execution of privileged functions is logged.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-cloud.gov automatically logs privileged actions taken within cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-6.md b/docs/compliance/dist/system-security-plans/ato/ac-6.md
deleted file mode 100644
index 1c418c256..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-6.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-6 - \[catalog\] Least Privilege
-
-## Control Statement
-
-Employ the principle of least privilege, allowing only authorized accesses for users (or processes acting on behalf of users) that are necessary to accomplish assigned organizational tasks.
-
-## Control guidance
-
-Organizations employ least privilege for specific duties and systems. The principle of least privilege is also applied to system processes, ensuring that the processes have access to systems and operate at privilege levels no higher than necessary to accomplish organizational missions or business functions. Organizations consider the creation of additional processes, roles, and accounts as necessary to achieve least privilege. Organizations apply least privilege to the development, implementation, and operation of organizational systems.
-
-## Control assessment-objective
-
-the principle of least privilege is employed, allowing only authorized accesses for users (or processes acting on behalf of users) that are necessary to accomplish assigned organizational tasks.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ac-6
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-7.md b/docs/compliance/dist/system-security-plans/ato/ac-7.md
deleted file mode 100644
index 57f47af03..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-7.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-7 - \[catalog\] Unsuccessful Logon Attempts
-
-## Control Statement
-
-- \[a\] Enforce a limit of number consecutive invalid logon attempts by a user during a time period ; and
-
-- \[b\] Automatically No value found when the maximum number of unsuccessful attempts is exceeded.
-
-## Control guidance
-
-The need to limit unsuccessful logon attempts and take subsequent action when the maximum number of attempts is exceeded applies regardless of whether the logon occurs via a local or network connection. Due to the potential for denial of service, automatic lockouts initiated by systems are usually temporary and automatically release after a predetermined, organization-defined time period. If a delay algorithm is selected, organizations may employ different algorithms for different components of the system based on the capabilities of those components. Responses to unsuccessful logon attempts may be implemented at the operating system and the application levels. Organization-defined actions that may be taken when the number of allowed consecutive invalid logon attempts is exceeded include prompting the user to answer a secret question in addition to the username and password, invoking a lockdown mode with limited user capabilities (instead of full lockout), allowing users to only logon from specified Internet Protocol (IP) addresses, requiring a CAPTCHA to prevent automated attacks, or applying user profiles such as location, time of day, IP address, device, or Media Access Control (MAC) address. If automatic system lockout or execution of a delay algorithm is not implemented in support of the availability objective, organizations consider a combination of other actions to help prevent brute force attacks. In addition to the above, organizations can prompt users to respond to a secret question before the number of allowed unsuccessful logon attempts is exceeded. Automatically unlocking an account after a specified period of time is generally not permitted. However, exceptions may be required based on operational mission or need.
-
-## Control assessment-objective
-
-a limit of number consecutive invalid logon attempts by a user during time period is enforced;
-automatically No value found when the maximum number of unsuccessful attempts is exceeded.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-7_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-7_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ac-8.md b/docs/compliance/dist/system-security-plans/ato/ac-8.md
deleted file mode 100644
index e823c916b..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ac-8.md
+++ /dev/null
@@ -1,70 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ac-8 - \[catalog\] System Use Notification
-
-## Control Statement
-
-- \[a\] Display system use notification to users before granting access to the system that provides privacy and security notices consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines and state that:
-
-  - \[1\] Users are accessing a U.S. Government system;
-  - \[2\] System usage may be monitored, recorded, and subject to audit;
-  - \[3\] Unauthorized use of the system is prohibited and subject to criminal and civil penalties; and
-  - \[4\] Use of the system indicates consent to monitoring and recording;
-
-- \[b\] Retain the notification message or banner on the screen until users acknowledge the usage conditions and take explicit actions to log on to or further access the system; and
-
-- \[c\] For publicly accessible systems:
-
-  - \[1\] Display system use information conditions , before granting further access to the publicly accessible system;
-  - \[2\] Display references, if any, to monitoring, recording, or auditing that are consistent with privacy accommodations for such systems that generally prohibit those activities; and
-  - \[3\] Include a description of the authorized uses of the system.
-
-## Control guidance
-
-System use notifications can be implemented using messages or warning banners displayed before individuals log in to systems. System use notifications are used only for access via logon interfaces with human users. Notifications are not required when human interfaces do not exist. Based on an assessment of risk, organizations consider whether or not a secondary system use notification is needed to access applications or other system resources after the initial network logon. Organizations consider system use notification messages or banners displayed in multiple languages based on organizational needs and the demographics of system users. Organizations consult with the privacy office for input regarding privacy messaging and the Office of the General Counsel or organizational equivalent for legal review and approval of warning banner content.
-
-## Control assessment-objective
-
-system use notification is displayed to users before granting access to the system that provides privacy and security notices consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the system use notification states that users are accessing a U.S. Government system;
-the system use notification states that system usage may be monitored, recorded, and subject to audit;
-the system use notification states that unauthorized use of the system is prohibited and subject to criminal and civil penalties; and
-the system use notification states that use of the system indicates consent to monitoring and recording;
-the notification message or banner is retained on the screen until users acknowledge the usage conditions and take explicit actions to log on to or further access the system;
-for publicly accessible systems, system use information conditions is displayed before granting further access to the publicly accessible system;
-for publicly accessible systems, any references to monitoring, recording, or auditing that are consistent with privacy accommodations for such systems that generally prohibit those activities are displayed;
-for publicly accessible systems, a description of the authorized uses of the system is included.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ac-8_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ac-8_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ac-8_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/at-1.md b/docs/compliance/dist/system-security-plans/ato/at-1.md
deleted file mode 100644
index a351a82b6..000000000
--- a/docs/compliance/dist/system-security-plans/ato/at-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# at-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found awareness and training policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the awareness and training policy and the associated awareness and training controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the awareness and training policy and procedures; and
-
-- \[c\] Review and update the current awareness and training:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Awareness and training policy and procedures address the controls in the AT family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of awareness and training policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to awareness and training policy and procedures include assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-an awareness and training policy is developed and documented;
-the awareness and training policy is disseminated to personnel or roles;
-awareness and training procedures to facilitate the implementation of the awareness and training policy and associated access controls are developed and documented;
-the awareness and training procedures are disseminated to personnel or roles.
-the No value found awareness and training policy addresses purpose;
-the No value found awareness and training policy addresses scope;
-the No value found awareness and training policy addresses roles;
-the No value found awareness and training policy addresses responsibilities;
-the No value found awareness and training policy addresses management commitment;
-the No value found awareness and training policy addresses coordination among organizational entities;
-the No value found awareness and training policy addresses compliance; and
-the No value found awareness and training policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines; and
-the official is designated to manage the development, documentation, and dissemination of the awareness and training policy and procedures;
-the current awareness and training policy is reviewed and updated frequency;
-the current awareness and training policy is reviewed and updated following events;
-the current awareness and training procedures are reviewed and updated frequency;
-the current awareness and training procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item at-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item at-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item at-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/at-2.2.md b/docs/compliance/dist/system-security-plans/ato/at-2.2.md
deleted file mode 100644
index 6db67005d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/at-2.2.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# at-2.2 - \[catalog\] Insider Threat
-
-## Control Statement
-
-Provide literacy training on recognizing and reporting potential indicators of insider threat.
-
-## Control guidance
-
-Potential indicators and possible precursors of insider threat can include behaviors such as inordinate, long-term job dissatisfaction; attempts to gain access to information not required for job performance; unexplained access to financial resources; bullying or harassment of fellow employees; workplace violence; and other serious violations of policies, procedures, directives, regulations, rules, or practices. Literacy training includes how to communicate the concerns of employees and management regarding potential indicators of insider threat through channels established by the organization and in accordance with established policies and procedures. Organizations may consider tailoring insider threat awareness topics to the role. For example, training for managers may be focused on changes in the behavior of team members, while training for employees may be focused on more general observations.
-
-## Control assessment-objective
-
-literacy training on recognizing potential indicators of insider threat is provided;
-literacy training on reporting potential indicators of insider threat is provided.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control at-2.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/at-2.3.md b/docs/compliance/dist/system-security-plans/ato/at-2.3.md
deleted file mode 100644
index b58fa1313..000000000
--- a/docs/compliance/dist/system-security-plans/ato/at-2.3.md
+++ /dev/null
@@ -1,34 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# at-2.3 - \[catalog\] Social Engineering and Mining
-
-## Control Statement
-
-Provide literacy training on recognizing and reporting potential and actual instances of social engineering and social mining.
-
-## Control guidance
-
-Social engineering is an attempt to trick an individual into revealing information or taking an action that can be used to breach, compromise, or otherwise adversely impact a system. Social engineering includes phishing, pretexting, impersonation, baiting, quid pro quo, thread-jacking, social media exploitation, and tailgating. Social mining is an attempt to gather information about the organization that may be used to support future attacks. Literacy training includes information on how to communicate the concerns of employees and management regarding potential and actual instances of social engineering and data mining through organizational channels based on established policies and procedures.
-
-## Control assessment-objective
-
-literacy training on recognizing potential and actual instances of social engineering is provided;
-literacy training on reporting potential and actual instances of social engineering is provided;
-literacy training on recognizing potential and actual instances of social mining is provided;
-literacy training on reporting potential and actual instances of social mining is provided.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control at-2.3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/at-2.md b/docs/compliance/dist/system-security-plans/ato/at-2.md
deleted file mode 100644
index 26f59873a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/at-2.md
+++ /dev/null
@@ -1,75 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# at-2 - \[catalog\] Literacy Training and Awareness
-
-## Control Statement
-
-- \[a\] Provide security and privacy literacy training to system users (including managers, senior executives, and contractors):
-
-  - \[1\] As part of initial training for new users and organization-defined frequency thereafter; and
-  - \[2\] When required by system changes or following organization-defined events;
-
-- \[b\] Employ the following techniques to increase the security and privacy awareness of system users awareness techniques;
-
-- \[c\] Update literacy training and awareness content frequency and following events ; and
-
-- \[d\] Incorporate lessons learned from internal or external security incidents or breaches into literacy training and awareness techniques.
-
-## Control guidance
-
-Organizations provide basic and advanced levels of literacy training to system users, including measures to test the knowledge level of users. Organizations determine the content of literacy training and awareness based on specific organizational requirements, the systems to which personnel have authorized access, and work environments (e.g., telework). The content includes an understanding of the need for security and privacy as well as actions by users to maintain security and personal privacy and to respond to suspected incidents. The content addresses the need for operations security and the handling of personally identifiable information.
-
-Awareness techniques include displaying posters, offering supplies inscribed with security and privacy reminders, displaying logon screen messages, generating email advisories or notices from organizational officials, and conducting awareness events. Literacy training after the initial training described in [AT-2a.1](#at-2_smt.a.1) is conducted at a minimum frequency consistent with applicable laws, directives, regulations, and policies. Subsequent literacy training may be satisfied by one or more short ad hoc sessions and include topical information on recent attack schemes, changes to organizational security and privacy policies, revised security and privacy expectations, or a subset of topics from the initial training. Updating literacy training and awareness content on a regular basis helps to ensure that the content remains relevant. Events that may precipitate an update to literacy training and awareness content include, but are not limited to, assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.
-
-## Control assessment-objective
-
-security literacy training is provided to system users (including managers, senior executives, and contractors) as part of initial training for new users;
-privacy literacy training is provided to system users (including managers, senior executives, and contractors) as part of initial training for new users;
-security literacy training is provided to system users (including managers, senior executives, and contractors) frequency thereafter;
-privacy literacy training is provided to system users (including managers, senior executives, and contractors) frequency thereafter;
-security literacy training is provided to system users (including managers, senior executives, and contractors) when required by system changes or following events;
-privacy literacy training is provided to system users (including managers, senior executives, and contractors) when required by system changes or following events;
-awareness techniques are employed to increase the security and privacy awareness of system users;
-literacy training and awareness content is updated frequency;
-literacy training and awareness content is updated following events;
-lessons learned from internal or external security incidents or breaches are incorporated into literacy training and awareness techniques.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item at-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item at-2_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item at-2_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item at-2_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/at-3.md b/docs/compliance/dist/system-security-plans/ato/at-3.md
deleted file mode 100644
index 7aaa524ae..000000000
--- a/docs/compliance/dist/system-security-plans/ato/at-3.md
+++ /dev/null
@@ -1,66 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# at-3 - \[catalog\] Role-based Training
-
-## Control Statement
-
-- \[a\] Provide role-based security and privacy training to personnel with the following roles and responsibilities: organization-defined roles and responsibilities:
-
-  - \[1\] Before authorizing access to the system, information, or performing assigned duties, and frequency thereafter; and
-  - \[2\] When required by system changes;
-
-- \[b\] Update role-based training content frequency and following events ; and
-
-- \[c\] Incorporate lessons learned from internal or external security incidents or breaches into role-based training.
-
-## Control guidance
-
-Organizations determine the content of training based on the assigned roles and responsibilities of individuals as well as the security and privacy requirements of organizations and the systems to which personnel have authorized access, including technical training specifically tailored for assigned duties. Roles that may require role-based training include senior leaders or management officials (e.g., head of agency/chief executive officer, chief information officer, senior accountable official for risk management, senior agency information security officer, senior agency official for privacy), system owners; authorizing officials; system security officers; privacy officers; acquisition and procurement officials; enterprise architects; systems engineers; software developers; systems security engineers; privacy engineers; system, network, and database administrators; auditors; personnel conducting configuration management activities; personnel performing verification and validation activities; personnel with access to system-level software; control assessors; personnel with contingency planning and incident response duties; personnel with privacy management responsibilities; and personnel with access to personally identifiable information.
-
-Comprehensive role-based training addresses management, operational, and technical roles and responsibilities covering physical, personnel, and technical controls. Role-based training also includes policies, procedures, tools, methods, and artifacts for the security and privacy roles defined. Organizations provide the training necessary for individuals to fulfill their responsibilities related to operations and supply chain risk management within the context of organizational security and privacy programs. Role-based training also applies to contractors who provide services to federal agencies. Types of training include web-based and computer-based training, classroom-style training, and hands-on training (including micro-training). Updating role-based training on a regular basis helps to ensure that the content remains relevant and effective. Events that may precipitate an update to role-based training content include, but are not limited to, assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.
-
-## Control assessment-objective
-
-role-based security training is provided to roles and responsibilities before authorizing access to the system, information, or performing assigned duties;
-role-based privacy training is provided to roles and responsibilities before authorizing access to the system, information, or performing assigned duties;
-role-based security training is provided to roles and responsibilities frequency thereafter;
-role-based privacy training is provided to roles and responsibilities frequency thereafter;
-role-based security training is provided to personnel with assigned security roles and responsibilities when required by system changes;
-role-based privacy training is provided to personnel with assigned security roles and responsibilities when required by system changes;
-role-based training content is updated frequency;
-role-based training content is updated following events;
-lessons learned from internal or external security incidents or breaches are incorporated into role-based training.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item at-3_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item at-3_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item at-3_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/at-4.md b/docs/compliance/dist/system-security-plans/ato/at-4.md
deleted file mode 100644
index 77f565e88..000000000
--- a/docs/compliance/dist/system-security-plans/ato/at-4.md
+++ /dev/null
@@ -1,47 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# at-4 - \[catalog\] Training Records
-
-## Control Statement
-
-- \[a\] Document and monitor information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy training; and
-
-- \[b\] Retain individual training records for time period.
-
-## Control guidance
-
-Documentation for specialized training may be maintained by individual supervisors at the discretion of the organization. The National Archives and Records Administration provides guidance on records retention for federal agencies.
-
-## Control assessment-objective
-
-information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy training, are documented;
-information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy training, are monitored;
-individual training records are retained for time period.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item at-4_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item at-4_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-1.md b/docs/compliance/dist/system-security-plans/ato/au-1.md
deleted file mode 100644
index 8fe2073a8..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found audit and accountability policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the audit and accountability policy and the associated audit and accountability controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the audit and accountability policy and procedures; and
-
-- \[c\] Review and update the current audit and accountability:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Audit and accountability policy and procedures address the controls in the AU family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of audit and accountability policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to audit and accountability policy and procedures include assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-an audit and accountability policy is developed and documented;
-the audit and accountability policy is disseminated to personnel or roles;
-audit and accountability procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls are developed and documented;
-the audit and accountability procedures are disseminated to personnel or roles;
-the No value found of the audit and accountability policy addresses purpose;
-the No value found of the audit and accountability policy addresses scope;
-the No value found of the audit and accountability policy addresses roles;
-the No value found of the audit and accountability policy addresses responsibilities;
-the No value found of the audit and accountability policy addresses management commitment;
-the No value found of the audit and accountability policy addresses coordination among organizational entities;
-the No value found of the audit and accountability policy addresses compliance;
-the No value found of the audit and accountability policy is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the audit and accountability policy and procedures;
-the current audit and accountability policy is reviewed and updated frequency;
-the current audit and accountability policy is reviewed and updated following events;
-the current audit and accountability procedures are reviewed and updated frequency;
-the current audit and accountability procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item au-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item au-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item au-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-11.md b/docs/compliance/dist/system-security-plans/ato/au-11.md
deleted file mode 100644
index f46d521e6..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-11.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-11 - \[catalog\] Audit Record Retention
-
-## Control Statement
-
-Retain audit records for time period to provide support for after-the-fact investigations of incidents and to meet regulatory and organizational information retention requirements.
-
-## Control guidance
-
-Organizations retain audit records until it is determined that the records are no longer needed for administrative, legal, audit, or other operational purposes. This includes the retention and availability of audit records relative to Freedom of Information Act (FOIA) requests, subpoenas, and law enforcement actions. Organizations develop standard categories of audit records relative to such types of actions and standard response processes for each type of action. The National Archives and Records Administration (NARA) General Records Schedules provide federal policy on records retention.
-
-## Control assessment-objective
-
-audit records are retained for time period to provide support for after-the-fact investigations of incidents and to meet regulatory and organizational information retention requirements.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control au-11
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-12.md b/docs/compliance/dist/system-security-plans/ato/au-12.md
deleted file mode 100644
index b40061d16..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-12.md
+++ /dev/null
@@ -1,55 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-12 - \[catalog\] Audit Record Generation
-
-## Control Statement
-
-- \[a\] Provide audit record generation capability for the event types the system is capable of auditing as defined in [AU-2a](#au-2_smt.a) on system components;
-
-- \[b\] Allow personnel or roles to select the event types that are to be logged by specific components of the system; and
-
-- \[c\] Generate audit records for the event types defined in [AU-2c](#au-2_smt.c) that include the audit record content defined in [AU-3](#au-3).
-
-## Control guidance
-
-Audit records can be generated from many different system components. The event types specified in [AU-2d](#au-2_smt.d) are the event types for which audit logs are to be generated and are a subset of all event types for which the system can generate audit records.
-
-## Control assessment-objective
-
-audit record generation capability for the event types the system is capable of auditing (defined in AU-02_ODP[01]) is provided by system components;
-personnel or roles is/are allowed to select the event types that are to be logged by specific components of the system;
-audit records for the event types defined in AU-02_ODP[02] that include the audit record content defined in AU-03 are generated.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item au-12_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item au-12_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item au-12_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-2.md b/docs/compliance/dist/system-security-plans/ato/au-2.md
deleted file mode 100644
index 3bc19e580..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-2.md
+++ /dev/null
@@ -1,78 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-2 - \[catalog\] Event Logging
-
-## Control Statement
-
-- \[a\] Identify the types of events that the system is capable of logging in support of the audit function: event types;
-
-- \[b\] Coordinate the event logging function with other organizational entities requiring audit-related information to guide and inform the selection criteria for events to be logged;
-
-- \[c\] Specify the following event types for logging within the system: organization-defined event types (subset of the event types defined in [AU-2a.](#au-2_smt.a)) along with the frequency of (or situation requiring) logging for each identified event type;
-
-- \[d\] Provide a rationale for why the event types selected for logging are deemed to be adequate to support after-the-fact investigations of incidents; and
-
-- \[e\] Review and update the event types selected for logging frequency.
-
-## Control guidance
-
-An event is an observable occurrence in a system. The types of events that require logging are those events that are significant and relevant to the security of systems and the privacy of individuals. Event logging also supports specific monitoring and auditing needs. Event types include password changes, failed logons or failed accesses related to systems, security or privacy attribute changes, administrative privilege usage, PIV credential usage, data action changes, query parameters, or external credential usage. In determining the set of event types that require logging, organizations consider the monitoring and auditing appropriate for each of the controls to be implemented. For completeness, event logging includes all protocols that are operational and supported by the system.
-
-To balance monitoring and auditing requirements with other system needs, event logging requires identifying the subset of event types that are logged at a given point in time. For example, organizations may determine that systems need the capability to log every file access successful and unsuccessful, but not activate that capability except for specific circumstances due to the potential burden on system performance. The types of events that organizations desire to be logged may change. Reviewing and updating the set of logged events is necessary to help ensure that the events remain relevant and continue to support the needs of the organization. Organizations consider how the types of logging events can reveal information about individuals that may give rise to privacy risk and how best to mitigate such risks. For example, there is the potential to reveal personally identifiable information in the audit trail, especially if the logging event is based on patterns or time of usage.
-
-Event logging requirements, including the need to log specific event types, may be referenced in other controls and control enhancements. These include [AC-2(4)](#ac-2.4), [AC-3(10)](#ac-3.10), [AC-6(9)](#ac-6.9), [AC-17(1)](#ac-17.1), [CM-3f](#cm-3_smt.f), [CM-5(1)](#cm-5.1), [IA-3(3)(b)](#ia-3.3_smt.b), [MA-4(1)](#ma-4.1), [MP-4(2)](#mp-4.2), [PE-3](#pe-3), [PM-21](#pm-21), [PT-7](#pt-7), [RA-8](#ra-8), [SC-7(9)](#sc-7.9), [SC-7(15)](#sc-7.15), [SI-3(8)](#si-3.8), [SI-4(22)](#si-4.22), [SI-7(8)](#si-7.8) , and [SI-10(1)](#si-10.1) . Organizations include event types that are required by applicable laws, executive orders, directives, policies, regulations, standards, and guidelines. Audit records can be generated at various levels, including at the packet level as information traverses the network. Selecting the appropriate level of event logging is an important part of a monitoring and auditing capability and can identify the root causes of problems. When defining event types, organizations consider the logging necessary to cover related event types, such as the steps in distributed, transaction-based processes and the actions that occur in service-oriented architectures.
-
-## Control assessment-objective
-
-event types that the system is capable of logging are identified in support of the audit logging function;
-the event logging function is coordinated with other organizational entities requiring audit-related information to guide and inform the selection criteria for events to be logged;
-event types (subset of AU-02_ODP[01]) are specified for logging within the system;
-the specified event types are logged within the system frequency or situation;
-a rationale is provided for why the event types selected for logging are deemed to be adequate to support after-the-fact investigations of incidents;
-the event types selected for logging are reviewed and updated frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item au-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item au-2_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item au-2_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item au-2_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item au-2_smt.e
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-3.1.md b/docs/compliance/dist/system-security-plans/ato/au-3.1.md
deleted file mode 100644
index 736cafd69..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-3.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-3.1 - \[catalog\] Additional Audit Information
-
-## Control Statement
-
-Generate audit records containing the following additional information: additional information.
-
-## Control guidance
-
-The ability to add information generated in audit records is dependent on system functionality to configure the audit record content. Organizations may consider additional information in audit records including, but not limited to, access control or flow control rules invoked and individual identities of group account users. Organizations may also consider limiting additional audit record information to only information that is explicitly needed for audit requirements. This facilitates the use of audit trails and audit logs by not including information in audit records that could potentially be misleading, make it more difficult to locate information of interest, or increase the risk to individuals' privacy.
-
-## Control assessment-objective
-
-generated audit records contain the following additional information.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control au-3.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-3.md b/docs/compliance/dist/system-security-plans/ato/au-3.md
deleted file mode 100644
index 09bfc89ef..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-3.md
+++ /dev/null
@@ -1,84 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-3 - \[catalog\] Content of Audit Records
-
-## Control Statement
-
-Ensure that audit records contain information that establishes the following:
-
-- \[a\] What type of event occurred;
-
-- \[b\] When the event occurred;
-
-- \[c\] Where the event occurred;
-
-- \[d\] Source of the event;
-
-- \[e\] Outcome of the event; and
-
-- \[f\] Identity of any individuals, subjects, or objects/entities associated with the event.
-
-## Control guidance
-
-Audit record content that may be necessary to support the auditing function includes event descriptions (item a), time stamps (item b), source and destination addresses (item c), user or process identifiers (items d and f), success or fail indications (item e), and filenames involved (items a, c, e, and f) . Event outcomes include indicators of event success or failure and event-specific results, such as the system security and privacy posture after the event occurred. Organizations consider how audit records can reveal information about individuals that may give rise to privacy risks and how best to mitigate such risks. For example, there is the potential to reveal personally identifiable information in the audit trail, especially if the trail records inputs or is based on patterns or time of usage.
-
-## Control assessment-objective
-
-audit records contain information that establishes what type of event occurred;
-audit records contain information that establishes when the event occurred;
-audit records contain information that establishes where the event occurred;
-audit records contain information that establishes the source of the event;
-audit records contain information that establishes the outcome of the event;
-audit records contain information that establishes the identity of any individuals, subjects, or objects/entities associated with the event.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item au-3_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item au-3_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item au-3_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item au-3_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item au-3_smt.e
-
-______________________________________________________________________
-
-## Implementation f.
-
-Add control implementation description here for item au-3_smt.f
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-4.md b/docs/compliance/dist/system-security-plans/ato/au-4.md
deleted file mode 100644
index c63702090..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-4.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# au-4 - \[catalog\] Audit Log Storage Capacity
-
-## Control Statement
-
-Allocate audit log storage capacity to accommodate audit log retention requirements.
-
-## Control guidance
-
-Organizations consider the types of audit logging to be performed and the audit log processing requirements when allocating audit log storage capacity. Allocating sufficient audit log storage capacity reduces the likelihood of such capacity being exceeded and resulting in the potential loss or reduction of audit logging capability.
-
-## Control assessment-objective
-
-audit log storage capacity is allocated to accommodate audit log retention requirements.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-cloud.gov ensures sufficient capacity for application logging from tenant applications. 
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-5.md b/docs/compliance/dist/system-security-plans/ato/au-5.md
deleted file mode 100644
index aa6f11c3a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-5.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-5 - \[catalog\] Response to Audit Logging Process Failures
-
-## Control Statement
-
-- \[a\] Alert personnel or roles within time period in the event of an audit logging process failure; and
-
-- \[b\] Take the following additional actions: additional actions.
-
-## Control guidance
-
-Audit logging process failures include software and hardware errors, failures in audit log capturing mechanisms, and reaching or exceeding audit log storage capacity. Organization-defined actions include overwriting oldest audit records, shutting down the system, and stopping the generation of audit records. Organizations may choose to define additional actions for audit logging process failures based on the type of failure, the location of the failure, the severity of the failure, or a combination of such factors. When the audit logging process failure is related to storage, the response is carried out for the audit log storage repository (i.e., the distinct system component where the audit logs are stored), the system on which the audit logs reside, the total audit log storage capacity of the organization (i.e., all audit log storage repositories combined), or all three. Organizations may decide to take no additional actions after alerting designated roles or personnel.
-
-## Control assessment-objective
-
-personnel or roles are alerted in the event of an audit logging process failure within time period;
-additional actions are taken in the event of an audit logging process failure.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item au-5_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item au-5_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-6.1.md b/docs/compliance/dist/system-security-plans/ato/au-6.1.md
deleted file mode 100644
index 699fc23c8..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-6.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-6.1 - \[catalog\] Automated Process Integration
-
-## Control Statement
-
-Integrate audit record review, analysis, and reporting processes using automated mechanisms.
-
-## Control guidance
-
-Organizational processes that benefit from integrated audit record review, analysis, and reporting include incident response, continuous monitoring, contingency planning, investigation and response to suspicious activities, and Inspector General audits.
-
-## Control assessment-objective
-
-audit record review, analysis, and reporting processes are integrated using automated mechanisms.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control au-6.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-6.3.md b/docs/compliance/dist/system-security-plans/ato/au-6.3.md
deleted file mode 100644
index fd14eacb3..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-6.3.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-6.3 - \[catalog\] Correlate Audit Record Repositories
-
-## Control Statement
-
-Analyze and correlate audit records across different repositories to gain organization-wide situational awareness.
-
-## Control guidance
-
-Organization-wide situational awareness includes awareness across all three levels of risk management (i.e., organizational level, mission/business process level, and information system level) and supports cross-organization awareness.
-
-## Control assessment-objective
-
-audit records across different repositories are analyzed and correlated to gain organization-wide situational awareness.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control au-6.3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-6.md b/docs/compliance/dist/system-security-plans/ato/au-6.md
deleted file mode 100644
index b95189303..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-6.md
+++ /dev/null
@@ -1,55 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-6 - \[catalog\] Audit Record Review, Analysis, and Reporting
-
-## Control Statement
-
-- \[a\] Review and analyze system audit records frequency for indications of inappropriate or unusual activity and the potential impact of the inappropriate or unusual activity;
-
-- \[b\] Report findings to personnel or roles ; and
-
-- \[c\] Adjust the level of audit record review, analysis, and reporting within the system when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.
-
-## Control guidance
-
-Audit record review, analysis, and reporting covers information security- and privacy-related logging performed by organizations, including logging that results from the monitoring of account usage, remote access, wireless connectivity, mobile device connection, configuration settings, system component inventory, use of maintenance tools and non-local maintenance, physical access, temperature and humidity, equipment delivery and removal, communications at system interfaces, and use of mobile code or Voice over Internet Protocol (VoIP). Findings can be reported to organizational entities that include the incident response team, help desk, and security or privacy offices. If organizations are prohibited from reviewing and analyzing audit records or unable to conduct such activities, the review or analysis may be carried out by other organizations granted such authority. The frequency, scope, and/or depth of the audit record review, analysis, and reporting may be adjusted to meet organizational needs based on new information received.
-
-## Control assessment-objective
-
-system audit records are reviewed and analyzed frequency for indications of inappropriate or unusual activity and the potential impact of the inappropriate or unusual activity;
-findings are reported to personnel or roles;
-the level of audit record review, analysis, and reporting within the system is adjusted when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item au-6_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item au-6_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item au-6_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-7.1.md b/docs/compliance/dist/system-security-plans/ato/au-7.1.md
deleted file mode 100644
index 6c5283374..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-7.1.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-7.1 - \[catalog\] Automatic Processing
-
-## Control Statement
-
-Provide and implement the capability to process, sort, and search audit records for events of interest based on the following content: fields within audit records.
-
-## Control guidance
-
-Events of interest can be identified by the content of audit records, including system resources involved, information objects accessed, identities of individuals, event types, event locations, event dates and times, Internet Protocol addresses involved, or event success or failure. Organizations may define event criteria to any degree of granularity required, such as locations selectable by a general networking location or by specific system component.
-
-## Control assessment-objective
-
-the capability to process, sort, and search audit records for events of interest based on fields within audit records are provided;
-the capability to process, sort, and search audit records for events of interest based on fields within audit records are implemented.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control au-7.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-7.md b/docs/compliance/dist/system-security-plans/ato/au-7.md
deleted file mode 100644
index b69b49fee..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-7.md
+++ /dev/null
@@ -1,50 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-7 - \[catalog\] Audit Record Reduction and Report Generation
-
-## Control Statement
-
-Provide and implement an audit record reduction and report generation capability that:
-
-- \[a\] Supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents; and
-
-- \[b\] Does not alter the original content or time ordering of audit records.
-
-## Control guidance
-
-Audit record reduction is a process that manipulates collected audit log information and organizes it into a summary format that is more meaningful to analysts. Audit record reduction and report generation capabilities do not always emanate from the same system or from the same organizational entities that conduct audit logging activities. The audit record reduction capability includes modern data mining techniques with advanced data filters to identify anomalous behavior in audit records. The report generation capability provided by the system can generate customizable reports. Time ordering of audit records can be an issue if the granularity of the timestamp in the record is insufficient.
-
-## Control assessment-objective
-
-an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents;
-an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents;
-an audit record reduction and report generation capability is provided that does not alter the original content or time ordering of audit records;
-an audit record reduction and report generation capability is implemented that does not alter the original content or time ordering of audit records.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item au-7_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item au-7_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-8.md b/docs/compliance/dist/system-security-plans/ato/au-8.md
deleted file mode 100644
index 3a923d0fa..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-8.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-8 - \[catalog\] Time Stamps
-
-## Control Statement
-
-- \[a\] Use internal system clocks to generate time stamps for audit records; and
-
-- \[b\] Record time stamps for audit records that meet granularity of time measurement and that use Coordinated Universal Time, have a fixed local time offset from Coordinated Universal Time, or that include the local time offset as part of the time stamp.
-
-## Control guidance
-
-Time stamps generated by the system include date and time. Time is commonly expressed in Coordinated Universal Time (UTC), a modern continuation of Greenwich Mean Time (GMT), or local time with an offset from UTC. Granularity of time measurements refers to the degree of synchronization between system clocks and reference clocks (e.g., clocks synchronizing within hundreds of milliseconds or tens of milliseconds). Organizations may define different time granularities for different system components. Time service can be critical to other security capabilities such as access control and identification and authentication, depending on the nature of the mechanisms used to support those capabilities.
-
-## Control assessment-objective
-
-internal system clocks are used to generate timestamps for audit records;
-timestamps are recorded for audit records that meet granularity of time measurement and that use Coordinated Universal Time, have a fixed local time offset from Coordinated Universal Time, or include the local time offset as part of the timestamp.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item au-8_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item au-8_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-9.4.md b/docs/compliance/dist/system-security-plans/ato/au-9.4.md
deleted file mode 100644
index 96840ccfe..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-9.4.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-9.4 - \[catalog\] Access by Subset of Privileged Users
-
-## Control Statement
-
-Authorize access to management of audit logging functionality to only subset of privileged users or roles.
-
-## Control guidance
-
-Individuals or roles with privileged access to a system and who are also the subject of an audit by that system may affect the reliability of the audit information by inhibiting audit activities or modifying audit records. Requiring privileged access to be further defined between audit-related privileges and other privileges limits the number of users or roles with audit-related privileges.
-
-## Control assessment-objective
-
-access to management of audit logging functionality is authorized only to subset of privileged users or roles.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control au-9.4
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/au-9.md b/docs/compliance/dist/system-security-plans/ato/au-9.md
deleted file mode 100644
index 5352e691c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/au-9.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# au-9 - \[catalog\] Protection of Audit Information
-
-## Control Statement
-
-- \[a\] Protect audit information and audit logging tools from unauthorized access, modification, and deletion; and
-
-- \[b\] Alert personnel or roles upon detection of unauthorized access, modification, or deletion of audit information.
-
-## Control guidance
-
-Audit information includes all information needed to successfully audit system activity, such as audit records, audit log settings, audit reports, and personally identifiable information. Audit logging tools are those programs and devices used to conduct system audit and logging activities. Protection of audit information focuses on technical protection and limits the ability to access and execute audit logging tools to authorized individuals. Physical protection of audit information is addressed by both media protection controls and physical and environmental protection controls.
-
-## Control assessment-objective
-
-audit information and audit logging tools are protected from unauthorized access, modification, and deletion;
-personnel or roles are alerted upon detection of unauthorized access, modification, or deletion of audit information.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item au-9_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item au-9_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ca-1.md b/docs/compliance/dist/system-security-plans/ato/ca-1.md
deleted file mode 100644
index 32b928571..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ca-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ca-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found assessment, authorization, and monitoring policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the assessment, authorization, and monitoring policy and the associated assessment, authorization, and monitoring controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the assessment, authorization, and monitoring policy and procedures; and
-
-- \[c\] Review and update the current assessment, authorization, and monitoring:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Assessment, authorization, and monitoring policy and procedures address the controls in the CA family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of assessment, authorization, and monitoring policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to assessment, authorization, and monitoring policy and procedures include assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-an assessment, authorization, and monitoring policy is developed and documented;
-the assessment, authorization, and monitoring policy is disseminated to personnel or roles;
-assessment, authorization, and monitoring procedures to facilitate the implementation of the assessment, authorization, and monitoring policy and associated assessment, authorization, and monitoring controls are developed and documented;
-the assessment, authorization, and monitoring procedures are disseminated to personnel or roles;
-the No value found assessment, authorization, and monitoring policy addresses purpose;
-the No value found assessment, authorization, and monitoring policy addresses scope;[03] SELECTED PARAMETER(S)> assessment, authorization, and monitoring policy addresses scope;
-the No value found assessment, authorization, and monitoring policy addresses roles;[03] SELECTED PARAMETER(S)> assessment, authorization, and monitoring policy addresses roles;
-the No value found assessment, authorization, and monitoring policy addresses responsibilities;
-the No value found assessment, authorization, and monitoring policy addresses management commitment;
-the No value found assessment, authorization, and monitoring policy addresses coordination among organizational entities;
-the No value found assessment, authorization, and monitoring policy addresses compliance;
-the No value found assessment, authorization, and monitoring policy is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the assessment, authorization, and monitoring policy and procedures;
-the current assessment, authorization, and monitoring policy is reviewed and updated frequency;
-the current assessment, authorization, and monitoring policy is reviewed and updated following events;
-the current assessment, authorization, and monitoring procedures are reviewed and updated frequency;
-the current assessment, authorization, and monitoring procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ca-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ca-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ca-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ca-2.1.md b/docs/compliance/dist/system-security-plans/ato/ca-2.1.md
deleted file mode 100644
index 0ed372a09..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ca-2.1.md
+++ /dev/null
@@ -1,35 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ca-2.1 - \[catalog\] Independent Assessors
-
-## Control Statement
-
-Employ independent assessors or assessment teams to conduct control assessments.
-
-## Control guidance
-
-Independent assessors or assessment teams are individuals or groups who conduct impartial assessments of systems. Impartiality means that assessors are free from any perceived or actual conflicts of interest regarding the development, operation, sustainment, or management of the systems under assessment or the determination of control effectiveness. To achieve impartiality, assessors do not create a mutual or conflicting interest with the organizations where the assessments are being conducted, assess their own work, act as management or employees of the organizations they are serving, or place themselves in positions of advocacy for the organizations acquiring their services.
-
-Independent assessments can be obtained from elements within organizations or be contracted to public or private sector entities outside of organizations. Authorizing officials determine the required level of independence based on the security categories of systems and/or the risk to organizational operations, organizational assets, or individuals. Authorizing officials also determine if the level of assessor independence provides sufficient assurance that the results are sound and can be used to make credible, risk-based decisions. Assessor independence determination includes whether contracted assessment services have sufficient independence, such as when system owners are not directly involved in contracting processes or cannot influence the impartiality of the assessors conducting the assessments. During the system design and development phase, having independent assessors is analogous to having independent SMEs involved in design reviews.
-
-When organizations that own the systems are small or the structures of the organizations require that assessments be conducted by individuals that are in the developmental, operational, or management chain of the system owners, independence in assessment processes can be achieved by ensuring that assessment results are carefully reviewed and analyzed by independent teams of experts to validate the completeness, accuracy, integrity, and reliability of the results. Assessments performed for purposes other than to support authorization decisions are more likely to be useable for such decisions when performed by assessors with sufficient independence, thereby reducing the need to repeat assessments.
-
-## Control assessment-objective
-
-independent assessors or assessment teams are employed to conduct control assessments.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ca-2.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ca-2.md b/docs/compliance/dist/system-security-plans/ato/ca-2.md
deleted file mode 100644
index 8a73a30f2..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ca-2.md
+++ /dev/null
@@ -1,99 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ca-2 - \[catalog\] Control Assessments
-
-## Control Statement
-
-- \[a\] Select the appropriate assessor or assessment team for the type of assessment to be conducted;
-
-- \[b\] Develop a control assessment plan that describes the scope of the assessment including:
-
-  - \[1\] Controls and control enhancements under assessment;
-  - \[2\] Assessment procedures to be used to determine control effectiveness; and
-  - \[3\] Assessment environment, assessment team, and assessment roles and responsibilities;
-
-- \[c\] Ensure the control assessment plan is reviewed and approved by the authorizing official or designated representative prior to conducting the assessment;
-
-- \[d\] Assess the controls in the system and its environment of operation assessment frequency to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting established security and privacy requirements;
-
-- \[e\] Produce a control assessment report that document the results of the assessment; and
-
-- \[f\] Provide the results of the control assessment to individuals or roles.
-
-## Control guidance
-
-Organizations ensure that control assessors possess the required skills and technical expertise to develop effective assessment plans and to conduct assessments of system-specific, hybrid, common, and program management controls, as appropriate. The required skills include general knowledge of risk management concepts and approaches as well as comprehensive knowledge of and experience with the hardware, software, and firmware system components implemented.
-
-Organizations assess controls in systems and the environments in which those systems operate as part of initial and ongoing authorizations, continuous monitoring, FISMA annual assessments, system design and development, systems security engineering, privacy engineering, and the system development life cycle. Assessments help to ensure that organizations meet information security and privacy requirements, identify weaknesses and deficiencies in the system design and development process, provide essential information needed to make risk-based decisions as part of authorization processes, and comply with vulnerability mitigation procedures. Organizations conduct assessments on the implemented controls as documented in security and privacy plans. Assessments can also be conducted throughout the system development life cycle as part of systems engineering and systems security engineering processes. The design for controls can be assessed as RFPs are developed, responses assessed, and design reviews conducted. If a design to implement controls and subsequent implementation in accordance with the design are assessed during development, the final control testing can be a simple confirmation utilizing previously completed control assessment and aggregating the outcomes.
-
-Organizations may develop a single, consolidated security and privacy assessment plan for the system or maintain separate plans. A consolidated assessment plan clearly delineates the roles and responsibilities for control assessment. If multiple organizations participate in assessing a system, a coordinated approach can reduce redundancies and associated costs.
-
-Organizations can use other types of assessment activities, such as vulnerability scanning and system monitoring, to maintain the security and privacy posture of systems during the system life cycle. Assessment reports document assessment results in sufficient detail, as deemed necessary by organizations, to determine the accuracy and completeness of the reports and whether the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting requirements. Assessment results are provided to the individuals or roles appropriate for the types of assessments being conducted. For example, assessments conducted in support of authorization decisions are provided to authorizing officials, senior agency officials for privacy, senior agency information security officers, and authorizing official designated representatives.
-
-To satisfy annual assessment requirements, organizations can use assessment results from the following sources: initial or ongoing system authorizations, continuous monitoring, systems engineering processes, or system development life cycle activities. Organizations ensure that assessment results are current, relevant to the determination of control effectiveness, and obtained with the appropriate level of assessor independence. Existing control assessment results can be reused to the extent that the results are still valid and can also be supplemented with additional assessments as needed. After the initial authorizations, organizations assess controls during continuous monitoring. Organizations also establish the frequency for ongoing assessments in accordance with organizational continuous monitoring strategies. External audits, including audits by external entities such as regulatory agencies, are outside of the scope of [CA-2](#ca-2).
-
-## Control assessment-objective
-
-an appropriate assessor or assessment team is selected for the type of assessment to be conducted;
-a control assessment plan is developed that describes the scope of the assessment, including controls and control enhancements under assessment;
-a control assessment plan is developed that describes the scope of the assessment, including assessment procedures to be used to determine control effectiveness;
-a control assessment plan is developed that describes the scope of the assessment, including the assessment environment;
-a control assessment plan is developed that describes the scope of the assessment, including the assessment team;
-a control assessment plan is developed that describes the scope of the assessment, including assessment roles and responsibilities;
-the control assessment plan is reviewed and approved by the authorizing official or designated representative prior to conducting the assessment;
-controls are assessed in the system and its environment of operation assessment frequency to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting established security requirements;
-controls are assessed in the system and its environment of operation assessment frequency to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting established privacy requirements;
-a control assessment report is produced that documents the results of the assessment;
-the results of the control assessment are provided to individuals or roles.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ca-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ca-2_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ca-2_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ca-2_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item ca-2_smt.e
-
-______________________________________________________________________
-
-## Implementation f.
-
-Add control implementation description here for item ca-2_smt.f
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ca-3.md b/docs/compliance/dist/system-security-plans/ato/ca-3.md
deleted file mode 100644
index 4121a46ed..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ca-3.md
+++ /dev/null
@@ -1,62 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ca-3 - \[catalog\] Information Exchange
-
-## Control Statement
-
-- \[a\] Approve and manage the exchange of information between the system and other systems using No value found;
-
-- \[b\] Document, as part of each exchange agreement, the interface characteristics, security and privacy requirements, controls, and responsibilities for each system, and the impact level of the information communicated; and
-
-- \[c\] Review and update the agreements frequency.
-
-## Control guidance
-
-System information exchange requirements apply to information exchanges between two or more systems. System information exchanges include connections via leased lines or virtual private networks, connections to internet service providers, database sharing or exchanges of database transaction information, connections and exchanges with cloud services, exchanges via web-based services, or exchanges of files via file transfer protocols, network protocols (e.g., IPv4, IPv6), email, or other organization-to-organization communications. Organizations consider the risk related to new or increased threats that may be introduced when systems exchange information with other systems that may have different security and privacy requirements and controls. This includes systems within the same organization and systems that are external to the organization. A joint authorization of the systems exchanging information, as described in [CA-6(1)](#ca-6.1) or [CA-6(2)](#ca-6.2) , may help to communicate and reduce risk.
-
-Authorizing officials determine the risk associated with system information exchange and the controls needed for appropriate risk mitigation. The types of agreements selected are based on factors such as the impact level of the information being exchanged, the relationship between the organizations exchanging information (e.g., government to government, government to business, business to business, government or business to service provider, government or business to individual), or the level of access to the organizational system by users of the other system. If systems that exchange information have the same authorizing official, organizations need not develop agreements. Instead, the interface characteristics between the systems (e.g., how the information is being exchanged. how the information is protected) are described in the respective security and privacy plans. If the systems that exchange information have different authorizing officials within the same organization, the organizations can develop agreements or provide the same information that would be provided in the appropriate agreement type from [CA-3a](#ca-3_smt.a) in the respective security and privacy plans for the systems. Organizations may incorporate agreement information into formal contracts, especially for information exchanges established between federal agencies and nonfederal organizations (including service providers, contractors, system developers, and system integrators). Risk considerations include systems that share the same networks.
-
-## Control assessment-objective
-
-the exchange of information between the system and other systems is approved and managed using No value found;
-the interface characteristics are documented as part of each exchange agreement;
-security requirements are documented as part of each exchange agreement;
-privacy requirements are documented as part of each exchange agreement;
-controls are documented as part of each exchange agreement;
-responsibilities for each system are documented as part of each exchange agreement;
-the impact level of the information communicated is documented as part of each exchange agreement;
-agreements are reviewed and updated frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ca-3_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ca-3_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ca-3_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ca-5.md b/docs/compliance/dist/system-security-plans/ato/ca-5.md
deleted file mode 100644
index b0a693f8a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ca-5.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ca-5 - \[catalog\] Plan of Action and Milestones
-
-## Control Statement
-
-- \[a\] Develop a plan of action and milestones for the system to document the planned remediation actions of the organization to correct weaknesses or deficiencies noted during the assessment of the controls and to reduce or eliminate known vulnerabilities in the system; and
-
-- \[b\] Update existing plan of action and milestones frequency based on the findings from control assessments, independent audits or reviews, and continuous monitoring activities.
-
-## Control guidance
-
-Plans of action and milestones are useful for any type of organization to track planned remedial actions. Plans of action and milestones are required in authorization packages and subject to federal reporting requirements established by OMB.
-
-## Control assessment-objective
-
-a plan of action and milestones for the system is developed to document the planned remediation actions of the organization to correct weaknesses or deficiencies noted during the assessment of the controls and to reduce or eliminate known vulnerabilities in the system;
-existing plan of action and milestones are updated frequency based on the findings from control assessments, independent audits or reviews, and continuous monitoring activities.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ca-5_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ca-5_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ca-6.md b/docs/compliance/dist/system-security-plans/ato/ca-6.md
deleted file mode 100644
index 1912fc310..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ca-6.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ca-6 - \[catalog\] Authorization
-
-## Control Statement
-
-- \[a\] Assign a senior official as the authorizing official for the system;
-
-- \[b\] Assign a senior official as the authorizing official for common controls available for inheritance by organizational systems;
-
-- \[c\] Ensure that the authorizing official for the system, before commencing operations:
-
-  - \[1\] Accepts the use of common controls inherited by the system; and
-  - \[2\] Authorizes the system to operate;
-
-- \[d\] Ensure that the authorizing official for common controls authorizes the use of those controls for inheritance by organizational systems;
-
-- \[e\] Update the authorizations frequency.
-
-## Control guidance
-
-Authorizations are official management decisions by senior officials to authorize operation of systems, authorize the use of common controls for inheritance by organizational systems, and explicitly accept the risk to organizational operations and assets, individuals, other organizations, and the Nation based on the implementation of agreed-upon controls. Authorizing officials provide budgetary oversight for organizational systems and common controls or assume responsibility for the mission and business functions supported by those systems or common controls. The authorization process is a federal responsibility, and therefore, authorizing officials must be federal employees. Authorizing officials are both responsible and accountable for security and privacy risks associated with the operation and use of organizational systems. Nonfederal organizations may have similar processes to authorize systems and senior officials that assume the authorization role and associated responsibilities.
-
-Authorizing officials issue ongoing authorizations of systems based on evidence produced from implemented continuous monitoring programs. Robust continuous monitoring programs reduce the need for separate reauthorization processes. Through the employment of comprehensive continuous monitoring processes, the information contained in authorization packages (i.e., security and privacy plans, assessment reports, and plans of action and milestones) is updated on an ongoing basis. This provides authorizing officials, common control providers, and system owners with an up-to-date status of the security and privacy posture of their systems, controls, and operating environments. To reduce the cost of reauthorization, authorizing officials can leverage the results of continuous monitoring processes to the maximum extent possible as the basis for rendering reauthorization decisions.
-
-## Control assessment-objective
-
-a senior official is assigned as the authorizing official for the system;
-a senior official is assigned as the authorizing official for common controls available for inheritance by organizational systems;
-before commencing operations, the authorizing official for the system accepts the use of common controls inherited by the system;
-before commencing operations, the authorizing official for the system authorizes the system to operate;
-the authorizing official for common controls authorizes the use of those controls for inheritance by organizational systems;
-the authorizations are updated frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ca-6_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ca-6_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ca-6_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ca-6_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item ca-6_smt.e
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ca-7.1.md b/docs/compliance/dist/system-security-plans/ato/ca-7.1.md
deleted file mode 100644
index df84c00f2..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ca-7.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ca-7.1 - \[catalog\] Independent Assessment
-
-## Control Statement
-
-Employ independent assessors or assessment teams to monitor the controls in the system on an ongoing basis.
-
-## Control guidance
-
-Organizations maximize the value of control assessments by requiring that assessments be conducted by assessors with appropriate levels of independence. The level of required independence is based on organizational continuous monitoring strategies. Assessor independence provides a degree of impartiality to the monitoring process. To achieve such impartiality, assessors do not create a mutual or conflicting interest with the organizations where the assessments are being conducted, assess their own work, act as management or employees of the organizations they are serving, or place themselves in advocacy positions for the organizations acquiring their services.
-
-## Control assessment-objective
-
-independent assessors or assessment teams are employed to monitor the controls in the system on an ongoing basis.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ca-7.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ca-7.4.md b/docs/compliance/dist/system-security-plans/ato/ca-7.4.md
deleted file mode 100644
index d40d394b7..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ca-7.4.md
+++ /dev/null
@@ -1,58 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ca-7.4 - \[catalog\] Risk Monitoring
-
-## Control Statement
-
-Ensure risk monitoring is an integral part of the continuous monitoring strategy that includes the following:
-
-- \[a\] Effectiveness monitoring;
-
-- \[b\] Compliance monitoring; and
-
-- \[c\] Change monitoring.
-
-## Control guidance
-
-Risk monitoring is informed by the established organizational risk tolerance. Effectiveness monitoring determines the ongoing effectiveness of the implemented risk response measures. Compliance monitoring verifies that required risk response measures are implemented. It also verifies that security and privacy requirements are satisfied. Change monitoring identifies changes to organizational systems and environments of operation that may affect security and privacy risk.
-
-## Control assessment-objective
-
-risk monitoring is an integral part of the continuous monitoring strategy;
-effectiveness monitoring is included in risk monitoring;
-compliance monitoring is included in risk monitoring;
-change monitoring is included in risk monitoring.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item ca-7.4_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item ca-7.4_smt.b
-
-______________________________________________________________________
-
-## Implementation (c)
-
-Add control implementation description here for item ca-7.4_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ca-7.md b/docs/compliance/dist/system-security-plans/ato/ca-7.md
deleted file mode 100644
index 3f5e650a5..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ca-7.md
+++ /dev/null
@@ -1,99 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ca-7 - \[catalog\] Continuous Monitoring
-
-## Control Statement
-
-Develop a system-level continuous monitoring strategy and implement continuous monitoring in accordance with the organization-level continuous monitoring strategy that includes:
-
-- \[a\] Establishing the following system-level metrics to be monitored: system-level metrics;
-
-- \[b\] Establishing frequencies for monitoring and frequencies for assessment of control effectiveness;
-
-- \[c\] Ongoing control assessments in accordance with the continuous monitoring strategy;
-
-- \[d\] Ongoing monitoring of system and organization-defined metrics in accordance with the continuous monitoring strategy;
-
-- \[e\] Correlation and analysis of information generated by control assessments and monitoring;
-
-- \[f\] Response actions to address results of the analysis of control assessment and monitoring information; and
-
-- \[g\] Reporting the security and privacy status of the system to organization-defined personnel or roles organization-defined frequency.
-
-## Control guidance
-
-Continuous monitoring at the system level facilitates ongoing awareness of the system security and privacy posture to support organizational risk management decisions. The terms "continuous" and "ongoing" imply that organizations assess and monitor their controls and risks at a frequency sufficient to support risk-based decisions. Different types of controls may require different monitoring frequencies. The results of continuous monitoring generate risk response actions by organizations. When monitoring the effectiveness of multiple controls that have been grouped into capabilities, a root-cause analysis may be needed to determine the specific control that has failed. Continuous monitoring programs allow organizations to maintain the authorizations of systems and common controls in highly dynamic environments of operation with changing mission and business needs, threats, vulnerabilities, and technologies. Having access to security and privacy information on a continuing basis through reports and dashboards gives organizational officials the ability to make effective and timely risk management decisions, including ongoing authorization decisions.
-
-Automation supports more frequent updates to hardware, software, and firmware inventories, authorization packages, and other system information. Effectiveness is further enhanced when continuous monitoring outputs are formatted to provide information that is specific, measurable, actionable, relevant, and timely. Continuous monitoring activities are scaled in accordance with the security categories of systems. Monitoring requirements, including the need for specific monitoring, may be referenced in other controls and control enhancements, such as [AC-2g](#ac-2_smt.g), [AC-2(7)](#ac-2.7), [AC-2(12)(a)](#ac-2.12_smt.a), [AC-2(7)(b)](#ac-2.7_smt.b), [AC-2(7)(c)](#ac-2.7_smt.c), [AC-17(1)](#ac-17.1), [AT-4a](#at-4_smt.a), [AU-13](#au-13), [AU-13(1)](#au-13.1), [AU-13(2)](#au-13.2), [CM-3f](#cm-3_smt.f), [CM-6d](#cm-6_smt.d), [CM-11c](#cm-11_smt.c), [IR-5](#ir-5), [MA-2b](#ma-2_smt.b), [MA-3a](#ma-3_smt.a), [MA-4a](#ma-4_smt.a), [PE-3d](#pe-3_smt.d), [PE-6](#pe-6), [PE-14b](#pe-14_smt.b), [PE-16](#pe-16), [PE-20](#pe-20), [PM-6](#pm-6), [PM-23](#pm-23), [PM-31](#pm-31), [PS-7e](#ps-7_smt.e), [SA-9c](#sa-9_smt.c), [SR-4](#sr-4), [SC-5(3)(b)](#sc-5.3_smt.b), [SC-7a](#sc-7_smt.a), [SC-7(24)(b)](#sc-7.24_smt.b), [SC-18b](#sc-18_smt.b), [SC-43b](#sc-43_smt.b) , and [SI-4](#si-4).
-
-## Control assessment-objective
-
-a system-level continuous monitoring strategy is developed;
-system-level continuous monitoring is implemented in accordance with the organization-level continuous monitoring strategy;
-system-level continuous monitoring includes establishment of the following system-level metrics to be monitored: system-level metrics;
-system-level continuous monitoring includes established frequencies for monitoring;
-system-level continuous monitoring includes established frequencies for assessment of control effectiveness;
-system-level continuous monitoring includes ongoing control assessments in accordance with the continuous monitoring strategy;
-system-level continuous monitoring includes ongoing monitoring of system and organization-defined metrics in accordance with the continuous monitoring strategy;
-system-level continuous monitoring includes correlation and analysis of information generated by control assessments and monitoring;
-system-level continuous monitoring includes response actions to address the results of the analysis of control assessment and monitoring information;
-system-level continuous monitoring includes reporting the security status of the system to personnel or roles frequency;
-system-level continuous monitoring includes reporting the privacy status of the system to personnel or roles frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ca-7_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ca-7_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ca-7_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ca-7_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item ca-7_smt.e
-
-______________________________________________________________________
-
-## Implementation f.
-
-Add control implementation description here for item ca-7_smt.f
-
-______________________________________________________________________
-
-## Implementation g.
-
-Add control implementation description here for item ca-7_smt.g
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ca-9.md b/docs/compliance/dist/system-security-plans/ato/ca-9.md
deleted file mode 100644
index f4cbc125e..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ca-9.md
+++ /dev/null
@@ -1,67 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ca-9 - \[catalog\] Internal System Connections
-
-## Control Statement
-
-- \[a\] Authorize internal connections of system components to the system;
-
-- \[b\] Document, for each internal connection, the interface characteristics, security and privacy requirements, and the nature of the information communicated;
-
-- \[c\] Terminate internal system connections after conditions ; and
-
-- \[d\] Review frequency the continued need for each internal connection.
-
-## Control guidance
-
-Internal system connections are connections between organizational systems and separate constituent system components (i.e., connections between components that are part of the same system) including components used for system development. Intra-system connections include connections with mobile devices, notebook and desktop computers, tablets, printers, copiers, facsimile machines, scanners, sensors, and servers. Instead of authorizing each internal system connection individually, organizations can authorize internal connections for a class of system components with common characteristics and/or configurations, including printers, scanners, and copiers with a specified processing, transmission, and storage capability or smart phones and tablets with a specific baseline configuration. The continued need for an internal system connection is reviewed from the perspective of whether it provides support for organizational missions or business functions.
-
-## Control assessment-objective
-
-internal connections of system components to the system are authorized;
-for each internal connection, the interface characteristics are documented;
-for each internal connection, the security requirements are documented;
-for each internal connection, the privacy requirements are documented;
-for each internal connection, the nature of the information communicated is documented;
-internal system connections are terminated after conditions;
-the continued need for each internal connection is reviewed frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ca-9_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ca-9_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ca-9_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ca-9_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-1.md b/docs/compliance/dist/system-security-plans/ato/cm-1.md
deleted file mode 100644
index 9805a6afa..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found configuration management policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the configuration management policy and the associated configuration management controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the configuration management policy and procedures; and
-
-- \[c\] Review and update the current configuration management:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Configuration management policy and procedures address the controls in the CM family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of configuration management policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission/business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to configuration management policy and procedures include, but are not limited to, assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a configuration management policy is developed and documented;
-the configuration management policy is disseminated to personnel or roles;
-configuration management procedures to facilitate the implementation of the configuration management policy and associated configuration management controls are developed and documented;
-the configuration management procedures are disseminated to personnel or roles;
-the No value found of the configuration management policy addresses purpose;
-the No value found of the configuration management policy addresses scope;
-the No value found of the configuration management policy addresses roles;
-the No value found of the configuration management policy addresses responsibilities;
-the No value found of the configuration management policy addresses management commitment;
-the No value found of the configuration management policy addresses coordination among organizational entities;
-the No value found of the configuration management policy addresses compliance;
-the configuration management policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the configuration management policy and procedures;
-the current configuration management policy is reviewed and updated frequency;
-the current configuration management policy is reviewed and updated following events;
-the current configuration management procedures are reviewed and updated frequency;
-the current configuration management procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cm-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cm-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cm-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-10.md b/docs/compliance/dist/system-security-plans/ato/cm-10.md
deleted file mode 100644
index d4190bab8..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-10.md
+++ /dev/null
@@ -1,55 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-10 - \[catalog\] Software Usage Restrictions
-
-## Control Statement
-
-- \[a\] Use software and associated documentation in accordance with contract agreements and copyright laws;
-
-- \[b\] Track the use of software and associated documentation protected by quantity licenses to control copying and distribution; and
-
-- \[c\] Control and document the use of peer-to-peer file sharing technology to ensure that this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.
-
-## Control guidance
-
-Software license tracking can be accomplished by manual or automated methods, depending on organizational needs. Examples of contract agreements include software license agreements and non-disclosure agreements.
-
-## Control assessment-objective
-
-software and associated documentation are used in accordance with contract agreements and copyright laws;
-the use of software and associated documentation protected by quantity licenses is tracked to control copying and distribution;
-the use of peer-to-peer file sharing technology is controlled and documented to ensure that peer-to-peer file sharing is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cm-10_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cm-10_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cm-10_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-11.md b/docs/compliance/dist/system-security-plans/ato/cm-11.md
deleted file mode 100644
index 117496c9c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-11.md
+++ /dev/null
@@ -1,55 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-11 - \[catalog\] User-installed Software
-
-## Control Statement
-
-- \[a\] Establish policies governing the installation of software by users;
-
-- \[b\] Enforce software installation policies through the following methods: methods ; and
-
-- \[c\] Monitor policy compliance frequency.
-
-## Control guidance
-
-If provided the necessary privileges, users can install software in organizational systems. To maintain control over the software installed, organizations identify permitted and prohibited actions regarding software installation. Permitted software installations include updates and security patches to existing software and downloading new applications from organization-approved "app stores." Prohibited software installations include software with unknown or suspect pedigrees or software that organizations consider potentially malicious. Policies selected for governing user-installed software are organization-developed or provided by some external entity. Policy enforcement methods can include procedural methods and automated methods.
-
-## Control assessment-objective
-
-policies governing the installation of software by users are established;
-software installation policies are enforced through methods;
-compliance with policies is monitored frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cm-11_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cm-11_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cm-11_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-12.1.md b/docs/compliance/dist/system-security-plans/ato/cm-12.1.md
deleted file mode 100644
index 46014b99c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-12.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-12.1 - \[catalog\] Automated Tools to Support Information Location
-
-## Control Statement
-
-Use automated tools to identify information by information type on system components to ensure controls are in place to protect organizational information and individual privacy.
-
-## Control guidance
-
-The use of automated tools helps to increase the effectiveness and efficiency of the information location capability implemented within the system. Automation also helps organizations manage the data produced during information location activities and share such information across the organization. The output of automated information location tools can be used to guide and inform system architecture and design decisions.
-
-## Control assessment-objective
-
-automated tools are used to identify information by information type on system components to ensure that controls are in place to protect organizational information and individual privacy.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cm-12.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-12.md b/docs/compliance/dist/system-security-plans/ato/cm-12.md
deleted file mode 100644
index cafdd8262..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-12.md
+++ /dev/null
@@ -1,59 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-12 - \[catalog\] Information Location
-
-## Control Statement
-
-- \[a\] Identify and document the location of information and the specific system components on which the information is processed and stored;
-
-- \[b\] Identify and document the users who have access to the system and system components where the information is processed and stored; and
-
-- \[c\] Document changes to the location (i.e., system or system components) where the information is processed and stored.
-
-## Control guidance
-
-Information location addresses the need to understand where information is being processed and stored. Information location includes identifying where specific information types and information reside in system components and how information is being processed so that information flow can be understood and adequate protection and policy management provided for such information and system components. The security category of the information is also a factor in determining the controls necessary to protect the information and the system component where the information resides (see [FIPS 199](#628d22a1-6a11-4784-bc59-5cd9497b5445) ). The location of the information and system components is also a factor in the architecture and design of the system (see [SA-4](#sa-4), [SA-8](#sa-8), [SA-17](#sa-17)).
-
-## Control assessment-objective
-
-the location of information is identified and documented;
-the specific system components on which information is processed are identified and documented;
-the specific system components on which information is stored are identified and documented;
-the users who have access to the system and system components where information is processed are identified and documented;
-the users who have access to the system and system components where information is stored are identified and documented;
-changes to the location (i.e., system or system components) where information is processed are documented;
-changes to the location (i.e., system or system components) where information is stored are documented.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cm-12_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cm-12_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cm-12_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-2.2.md b/docs/compliance/dist/system-security-plans/ato/cm-2.2.md
deleted file mode 100644
index ef747c19e..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-2.2.md
+++ /dev/null
@@ -1,34 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-2.2 - \[catalog\] Automation Support for Accuracy and Currency
-
-## Control Statement
-
-Maintain the currency, completeness, accuracy, and availability of the baseline configuration of the system using automated mechanisms.
-
-## Control guidance
-
-Automated mechanisms that help organizations maintain consistent baseline configurations for systems include configuration management tools, hardware, software, firmware inventory tools, and network management tools. Automated tools can be used at the organization level, mission and business process level, or system level on workstations, servers, notebook computers, network components, or mobile devices. Tools can be used to track version numbers on operating systems, applications, types of software installed, and current patch levels. Automation support for accuracy and currency can be satisfied by the implementation of [CM-8(2)](#cm-8.2) for organizations that combine system component inventory and baseline configuration activities.
-
-## Control assessment-objective
-
-the currency of the baseline configuration of the system is maintained using automated mechanisms;
-the completeness of the baseline configuration of the system is maintained using automated mechanisms;
-the accuracy of the baseline configuration of the system is maintained using automated mechanisms;
-the availability of the baseline configuration of the system is maintained using automated mechanisms.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cm-2.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-2.3.md b/docs/compliance/dist/system-security-plans/ato/cm-2.3.md
deleted file mode 100644
index 14784d13d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-2.3.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-2.3 - \[catalog\] Retention of Previous Configurations
-
-## Control Statement
-
-Retain number of previous versions of baseline configurations of the system to support rollback.
-
-## Control guidance
-
-Retaining previous versions of baseline configurations to support rollback include hardware, software, firmware, configuration files, configuration records, and associated documentation.
-
-## Control assessment-objective
-
-number of previous baseline configuration version(s) of the system is/are retained to support rollback.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cm-2.3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-2.7.md b/docs/compliance/dist/system-security-plans/ato/cm-2.7.md
deleted file mode 100644
index 8474caa83..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-2.7.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-2.7 - \[catalog\] Configure Systems and Components for High-risk Areas
-
-## Control Statement
-
-- \[a\] Issue systems or system components with configurations to individuals traveling to locations that the organization deems to be of significant risk; and
-
-- \[b\] Apply the following controls to the systems or components when the individuals return from travel: controls.
-
-## Control guidance
-
-When it is known that systems or system components will be in high-risk areas external to the organization, additional controls may be implemented to counter the increased threat in such areas. For example, organizations can take actions for notebook computers used by individuals departing on and returning from travel. Actions include determining the locations that are of concern, defining the required configurations for the components, ensuring that components are configured as intended before travel is initiated, and applying controls to the components after travel is completed. Specially configured notebook computers include computers with sanitized hard drives, limited applications, and more stringent configuration settings. Controls applied to mobile devices upon return from travel include examining the mobile device for signs of physical tampering and purging and reimaging disk drives. Protecting information that resides on mobile devices is addressed in the [MP](#mp) (Media Protection) family.
-
-## Control assessment-objective
-
-systems or system components with configurations are issued to individuals traveling to locations that the organization deems to be of significant risk;
-controls are applied to the systems or system components when the individuals return from travel.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item cm-2.7_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item cm-2.7_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-2.md b/docs/compliance/dist/system-security-plans/ato/cm-2.md
deleted file mode 100644
index 63b88c091..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-2.md
+++ /dev/null
@@ -1,53 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-2 - \[catalog\] Baseline Configuration
-
-## Control Statement
-
-- \[a\] Develop, document, and maintain under configuration control, a current baseline configuration of the system; and
-
-- \[b\] Review and update the baseline configuration of the system:
-
-  - \[1\]  frequency;
-  - \[2\] When required due to circumstances ; and
-  - \[3\] When system components are installed or upgraded.
-
-## Control guidance
-
-Baseline configurations for systems and system components include connectivity, operational, and communications aspects of systems. Baseline configurations are documented, formally reviewed, and agreed-upon specifications for systems or configuration items within those systems. Baseline configurations serve as a basis for future builds, releases, or changes to systems and include security and privacy control implementations, operational procedures, information about system components, network topology, and logical placement of components in the system architecture. Maintaining baseline configurations requires creating new baselines as organizational systems change over time. Baseline configurations of systems reflect the current enterprise architecture.
-
-## Control assessment-objective
-
-a current baseline configuration of the system is developed and documented;
-a current baseline configuration of the system is maintained under configuration control;
-the baseline configuration of the system is reviewed and updated frequency;
-the baseline configuration of the system is reviewed and updated when required due to circumstances;
-the baseline configuration of the system is reviewed and updated when system components are installed or upgraded.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cm-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cm-2_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-3.2.md b/docs/compliance/dist/system-security-plans/ato/cm-3.2.md
deleted file mode 100644
index fb6bb575d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-3.2.md
+++ /dev/null
@@ -1,33 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-3.2 - \[catalog\] Testing, Validation, and Documentation of Changes
-
-## Control Statement
-
-Test, validate, and document changes to the system before finalizing the implementation of the changes.
-
-## Control guidance
-
-Changes to systems include modifications to hardware, software, or firmware components and configuration settings defined in [CM-6](#cm-6) . Organizations ensure that testing does not interfere with system operations that support organizational mission and business functions. Individuals or groups conducting tests understand security and privacy policies and procedures, system security and privacy policies and procedures, and the health, safety, and environmental risks associated with specific facilities or processes. Operational systems may need to be taken offline, or replicated to the extent feasible, before testing can be conducted. If systems must be taken offline for testing, the tests are scheduled to occur during planned system outages whenever possible. If the testing cannot be conducted on operational systems, organizations employ compensating controls.
-
-## Control assessment-objective
-
-changes to the system are tested before finalizing the implementation of the changes;
-changes to the system are validated before finalizing the implementation of the changes;
-changes to the system are documented before finalizing the implementation of the changes.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cm-3.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-3.4.md b/docs/compliance/dist/system-security-plans/ato/cm-3.4.md
deleted file mode 100644
index 616efb95a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-3.4.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-3.4 - \[catalog\] Security and Privacy Representatives
-
-## Control Statement
-
-Require organization-defined security and privacy representatives to be members of the configuration change control element.
-
-## Control guidance
-
-Information security and privacy representatives include system security officers, senior agency information security officers, senior agency officials for privacy, or system privacy officers. Representation by personnel with information security and privacy expertise is important because changes to system configurations can have unintended side effects, some of which may be security- or privacy-relevant. Detecting such changes early in the process can help avoid unintended, negative consequences that could ultimately affect the security and privacy posture of systems. The configuration change control element referred to in the second organization-defined parameter reflects the change control elements defined by organizations in [CM-3g](#cm-3_smt.g).
-
-## Control assessment-objective
-
-security representatives are required to be members of the configuration change control element;
-privacy representatives are required to be members of the configuration change control element.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cm-3.4
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-3.md b/docs/compliance/dist/system-security-plans/ato/cm-3.md
deleted file mode 100644
index 1af65b31a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-3.md
+++ /dev/null
@@ -1,94 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-3 - \[catalog\] Configuration Change Control
-
-## Control Statement
-
-- \[a\] Determine and document the types of changes to the system that are configuration-controlled;
-
-- \[b\] Review proposed configuration-controlled changes to the system and approve or disapprove such changes with explicit consideration for security and privacy impact analyses;
-
-- \[c\] Document configuration change decisions associated with the system;
-
-- \[d\] Implement approved configuration-controlled changes to the system;
-
-- \[e\] Retain records of configuration-controlled changes to the system for time period;
-
-- \[f\] Monitor and review activities associated with configuration-controlled changes to the system; and
-
-- \[g\] Coordinate and provide oversight for configuration change control activities through configuration change control element that convenes No value found.
-
-## Control guidance
-
-Configuration change control for organizational systems involves the systematic proposal, justification, implementation, testing, review, and disposition of system changes, including system upgrades and modifications. Configuration change control includes changes to baseline configurations, configuration items of systems, operational procedures, configuration settings for system components, remediate vulnerabilities, and unscheduled or unauthorized changes. Processes for managing configuration changes to systems include Configuration Control Boards or Change Advisory Boards that review and approve proposed changes. For changes that impact privacy risk, the senior agency official for privacy updates privacy impact assessments and system of records notices. For new systems or major upgrades, organizations consider including representatives from the development organizations on the Configuration Control Boards or Change Advisory Boards. Auditing of changes includes activities before and after changes are made to systems and the auditing activities required to implement such changes. See also [SA-10](#sa-10).
-
-## Control assessment-objective
-
-the types of changes to the system that are configuration-controlled are determined and documented;
-proposed configuration-controlled changes to the system are reviewed;
-proposed configuration-controlled changes to the system are approved or disapproved with explicit consideration for security and privacy impact analyses;
-configuration change decisions associated with the system are documented;
-approved configuration-controlled changes to the system are implemented;
-records of configuration-controlled changes to the system are retained for time period;
-activities associated with configuration-controlled changes to the system are monitored;
-activities associated with configuration-controlled changes to the system are reviewed;
-configuration change control activities are coordinated and overseen by configuration change control element;
-the configuration control element convenes No value found.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cm-3_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cm-3_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cm-3_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item cm-3_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item cm-3_smt.e
-
-______________________________________________________________________
-
-## Implementation f.
-
-Add control implementation description here for item cm-3_smt.f
-
-______________________________________________________________________
-
-## Implementation g.
-
-Add control implementation description here for item cm-3_smt.g
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-4.2.md b/docs/compliance/dist/system-security-plans/ato/cm-4.2.md
deleted file mode 100644
index 563fa67d0..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-4.2.md
+++ /dev/null
@@ -1,36 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-4.2 - \[catalog\] Verification of Controls
-
-## Control Statement
-
-After system changes, verify that the impacted controls are implemented correctly, operating as intended, and producing the desired outcome with regard to meeting the security and privacy requirements for the system.
-
-## Control guidance
-
-Implementation in this context refers to installing changed code in the operational system that may have an impact on security or privacy controls.
-
-## Control assessment-objective
-
-the impacted controls are implemented correctly with regard to meeting the security requirements for the system after system changes;
-the impacted controls are implemented correctly with regard to meeting the privacy requirements for the system after system changes;
-the impacted controls are operating as intended with regard to meeting the security requirements for the system after system changes;
-the impacted controls are operating as intended with regard to meeting the privacy requirements for the system after system changes;
-the impacted controls are producing the desired outcome with regard to meeting the security requirements for the system after system changes;
-the impacted controls are producing the desired outcome with regard to meeting the privacy requirements for the system after system changes.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cm-4.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-4.md b/docs/compliance/dist/system-security-plans/ato/cm-4.md
deleted file mode 100644
index a3994becd..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-4.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-4 - \[catalog\] Impact Analyses
-
-## Control Statement
-
-Analyze changes to the system to determine potential security and privacy impacts prior to change implementation.
-
-## Control guidance
-
-Organizational personnel with security or privacy responsibilities conduct impact analyses. Individuals conducting impact analyses possess the necessary skills and technical expertise to analyze the changes to systems as well as the security or privacy ramifications. Impact analyses include reviewing security and privacy plans, policies, and procedures to understand control requirements; reviewing system design documentation and operational procedures to understand control implementation and how specific system changes might affect the controls; reviewing the impact of changes on organizational supply chain partners with stakeholders; and determining how potential changes to a system create new risks to the privacy of individuals and the ability of implemented controls to mitigate those risks. Impact analyses also include risk assessments to understand the impact of the changes and determine if additional controls are required.
-
-## Control assessment-objective
-
-changes to the system are analyzed to determine potential security impacts prior to change implementation;
-changes to the system are analyzed to determine potential privacy impacts prior to change implementation.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cm-4
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-5.md b/docs/compliance/dist/system-security-plans/ato/cm-5.md
deleted file mode 100644
index 688be8c44..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-5.md
+++ /dev/null
@@ -1,35 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# cm-5 - \[catalog\] Access Restrictions for Change
-
-## Control Statement
-
-Define, document, approve, and enforce physical and logical access restrictions associated with changes to the system.
-
-## Control guidance
-
-Changes to the hardware, software, or firmware components of systems or the operational procedures related to the system can potentially have significant effects on the security of the systems or individuals’ privacy. Therefore, organizations permit only qualified and authorized individuals to access systems for purposes of initiating changes. Access restrictions include physical and logical access controls (see [AC-3](#ac-3) and [PE-3](#pe-3) ), software libraries, workflow automation, media libraries, abstract layers (i.e., changes implemented into external interfaces rather than directly into systems), and change windows (i.e., changes occur only during specified times).
-
-## Control assessment-objective
-
-physical access restrictions associated with changes to the system are defined and documented;
-physical access restrictions associated with changes to the system are approved;
-physical access restrictions associated with changes to the system are enforced;
-logical access restrictions associated with changes to the system are defined and documented;
-logical access restrictions associated with changes to the system are approved;
-logical access restrictions associated with changes to the system are enforced.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-We inherit all of this from cloud.gov. 
-
-cloud.gov enforces restrictions on available actions according to the system-provided org and space roles. All actions are logged and available to customers for auditing purposes.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-6.md b/docs/compliance/dist/system-security-plans/ato/cm-6.md
deleted file mode 100644
index 1cc6d02f5..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-6.md
+++ /dev/null
@@ -1,70 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-6 - \[catalog\] Configuration Settings
-
-## Control Statement
-
-- \[a\] Establish and document configuration settings for components employed within the system that reflect the most restrictive mode consistent with operational requirements using common secure configurations;
-
-- \[b\] Implement the configuration settings;
-
-- \[c\] Identify, document, and approve any deviations from established configuration settings for system components based on operational requirements ; and
-
-- \[d\] Monitor and control changes to the configuration settings in accordance with organizational policies and procedures.
-
-## Control guidance
-
-Configuration settings are the parameters that can be changed in the hardware, software, or firmware components of the system that affect the security and privacy posture or functionality of the system. Information technology products for which configuration settings can be defined include mainframe computers, servers, workstations, operating systems, mobile devices, input/output devices, protocols, and applications. Parameters that impact the security posture of systems include registry settings; account, file, or directory permission settings; and settings for functions, protocols, ports, services, and remote connections. Privacy parameters are parameters impacting the privacy posture of systems, including the parameters required to satisfy other privacy controls. Privacy parameters include settings for access controls, data processing preferences, and processing and retention permissions. Organizations establish organization-wide configuration settings and subsequently derive specific configuration settings for systems. The established settings become part of the configuration baseline for the system.
-
-Common secure configurations (also known as security configuration checklists, lockdown and hardening guides, and security reference guides) provide recognized, standardized, and established benchmarks that stipulate secure configuration settings for information technology products and platforms as well as instructions for configuring those products or platforms to meet operational requirements. Common secure configurations can be developed by a variety of organizations, including information technology product developers, manufacturers, vendors, federal agencies, consortia, academia, industry, and other organizations in the public and private sectors.
-
-Implementation of a common secure configuration may be mandated at the organization level, mission and business process level, system level, or at a higher level, including by a regulatory agency. Common secure configurations include the United States Government Configuration Baseline [USGCB](#98498928-3ca3-44b3-8b1e-f48685373087) and security technical implementation guides (STIGs), which affect the implementation of [CM-6](#cm-6) and other controls such as [AC-19](#ac-19) and [CM-7](#cm-7) . The Security Content Automation Protocol (SCAP) and the defined standards within the protocol provide an effective method to uniquely identify, track, and control configuration settings.
-
-## Control assessment-objective
-
-configuration settings that reflect the most restrictive mode consistent with operational requirements are established and documented for components employed within the system using common secure configurations;
-the configuration settings documented in CM-06a are implemented;
-any deviations from established configuration settings for system components are identified and documented based on operational requirements;
-any deviations from established configuration settings for system components are approved;
-changes to the configuration settings are monitored in accordance with organizational policies and procedures;
-changes to the configuration settings are controlled in accordance with organizational policies and procedures.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cm-6_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cm-6_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cm-6_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item cm-6_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-7.1.md b/docs/compliance/dist/system-security-plans/ato/cm-7.1.md
deleted file mode 100644
index ea198508a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-7.1.md
+++ /dev/null
@@ -1,50 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-7.1 - \[catalog\] Periodic Review
-
-## Control Statement
-
-- \[a\] Review the system frequency to identify unnecessary and/or nonsecure functions, ports, protocols, software, and services; and
-
-- \[b\] Disable or remove organization-defined functions, ports, protocols, software, and services within the system deemed to be unnecessary and/or nonsecure.
-
-## Control guidance
-
-Organizations review functions, ports, protocols, and services provided by systems or system components to determine the functions and services that are candidates for elimination. Such reviews are especially important during transition periods from older technologies to newer technologies (e.g., transition from IPv4 to IPv6). These technology transitions may require implementing the older and newer technologies simultaneously during the transition period and returning to minimum essential functions, ports, protocols, and services at the earliest opportunity. Organizations can either decide the relative security of the function, port, protocol, and/or service or base the security decision on the assessment of other entities. Unsecure protocols include Bluetooth, FTP, and peer-to-peer networking.
-
-## Control assessment-objective
-
-the system is reviewed frequency to identify unnecessary and/or non-secure functions, ports, protocols, software, and services:
-functions deemed to be unnecessary and/or non-secure are disabled or removed;
-ports deemed to be unnecessary and/or non-secure are disabled or removed;
-protocols deemed to be unnecessary and/or non-secure are disabled or removed;
-software deemed to be unnecessary and/or non-secure is disabled or removed;
-services deemed to be unnecessary and/or non-secure are disabled or removed.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item cm-7.1_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item cm-7.1_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-7.2.md b/docs/compliance/dist/system-security-plans/ato/cm-7.2.md
deleted file mode 100644
index 285ed671c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-7.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-7.2 - \[catalog\] Prevent Program Execution
-
-## Control Statement
-
-Prevent program execution in accordance with No value found.
-
-## Control guidance
-
-Prevention of program execution addresses organizational policies, rules of behavior, and/or access agreements that restrict software usage and the terms and conditions imposed by the developer or manufacturer, including software licensing and copyrights. Restrictions include prohibiting auto-execute features, restricting roles allowed to approve program execution, permitting or prohibiting specific software programs, or restricting the number of program instances executed at the same time.
-
-## Control assessment-objective
-
-program execution is prevented in accordance with No value found.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cm-7.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-7.5.md b/docs/compliance/dist/system-security-plans/ato/cm-7.5.md
deleted file mode 100644
index 9967a5872..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-7.5.md
+++ /dev/null
@@ -1,55 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-7.5 - \[catalog\] Authorized Software — Allow-by-exception
-
-## Control Statement
-
-- \[a\] Identify software programs;
-
-- \[b\] Employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the system; and
-
-- \[c\] Review and update the list of authorized software programs frequency.
-
-## Control guidance
-
-Authorized software programs can be limited to specific versions or from a specific source. To facilitate a comprehensive authorized software process and increase the strength of protection for attacks that bypass application level authorized software, software programs may be decomposed into and monitored at different levels of detail. These levels include applications, application programming interfaces, application modules, scripts, system processes, system services, kernel functions, registries, drivers, and dynamic link libraries. The concept of permitting the execution of authorized software may also be applied to user actions, system ports and protocols, IP addresses/ranges, websites, and MAC addresses. Organizations consider verifying the integrity of authorized software programs using digital signatures, cryptographic checksums, or hash functions. Verification of authorized software can occur either prior to execution or at system startup. The identification of authorized URLs for websites is addressed in [CA-3(5)](#ca-3.5) and [SC-7](#sc-7).
-
-## Control assessment-objective
-
-software programs are identified;
-a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the system is employed;
-the list of authorized software programs is reviewed and updated frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item cm-7.5_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item cm-7.5_smt.b
-
-______________________________________________________________________
-
-## Implementation (c)
-
-Add control implementation description here for item cm-7.5_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-7.md b/docs/compliance/dist/system-security-plans/ato/cm-7.md
deleted file mode 100644
index 5fc6cd32d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-7.md
+++ /dev/null
@@ -1,50 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-7 - \[catalog\] Least Functionality
-
-## Control Statement
-
-- \[a\] Configure the system to provide only mission-essential capabilities ; and
-
-- \[b\] Prohibit or restrict the use of the following functions, ports, protocols, software, and/or services: organization-defined prohibited or restricted functions, system ports, protocols, software, and/or services.
-
-## Control guidance
-
-Systems provide a wide variety of functions and services. Some of the functions and services routinely provided by default may not be necessary to support essential organizational missions, functions, or operations. Additionally, it is sometimes convenient to provide multiple services from a single system component, but doing so increases risk over limiting the services provided by that single component. Where feasible, organizations limit component functionality to a single function per component. Organizations consider removing unused or unnecessary software and disabling unused or unnecessary physical and logical ports and protocols to prevent unauthorized connection of components, transfer of information, and tunneling. Organizations employ network scanning tools, intrusion detection and prevention systems, and end-point protection technologies, such as firewalls and host-based intrusion detection systems, to identify and prevent the use of prohibited functions, protocols, ports, and services. Least functionality can also be achieved as part of the fundamental design and development of the system (see [SA-8](#sa-8), [SC-2](#sc-2) , and [SC-3](#sc-3)).
-
-## Control assessment-objective
-
-the system is configured to provide only mission-essential capabilities;
-the use of functions is prohibited or restricted;
-the use of ports is prohibited or restricted;
-the use of protocols is prohibited or restricted;
-the use of software is prohibited or restricted;
-the use of services is prohibited or restricted.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cm-7_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cm-7_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-8.1.md b/docs/compliance/dist/system-security-plans/ato/cm-8.1.md
deleted file mode 100644
index 9c7fad9da..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-8.1.md
+++ /dev/null
@@ -1,33 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-8.1 - \[catalog\] Updates During Installation and Removal
-
-## Control Statement
-
-Update the inventory of system components as part of component installations, removals, and system updates.
-
-## Control guidance
-
-Organizations can improve the accuracy, completeness, and consistency of system component inventories if the inventories are updated as part of component installations or removals or during general system updates. If inventories are not updated at these key times, there is a greater likelihood that the information will not be appropriately captured and documented. System updates include hardware, software, and firmware components.
-
-## Control assessment-objective
-
-the inventory of system components is updated as part of component installations;
-the inventory of system components is updated as part of component removals;
-the inventory of system components is updated as part of system updates.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cm-8.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-8.3.md b/docs/compliance/dist/system-security-plans/ato/cm-8.3.md
deleted file mode 100644
index 62b1c8f83..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-8.3.md
+++ /dev/null
@@ -1,50 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-8.3 - \[catalog\] Automated Unauthorized Component Detection
-
-## Control Statement
-
-- \[a\] Detect the presence of unauthorized hardware, software, and firmware components within the system using organization-defined automated mechanisms frequency ; and
-
-- \[b\] Take the following actions when unauthorized components are detected: No value found.
-
-## Control guidance
-
-Automated unauthorized component detection is applied in addition to the monitoring for unauthorized remote connections and mobile devices. Monitoring for unauthorized system components may be accomplished on an ongoing basis or by the periodic scanning of systems for that purpose. Automated mechanisms may also be used to prevent the connection of unauthorized components (see [CM-7(9)](#cm-7.9) ). Automated mechanisms can be implemented in systems or in separate system components. When acquiring and implementing automated mechanisms, organizations consider whether such mechanisms depend on the ability of the system component to support an agent or supplicant in order to be detected since some types of components do not have or cannot support agents (e.g., IoT devices, sensors). Isolation can be achieved , for example, by placing unauthorized system components in separate domains or subnets or quarantining such components. This type of component isolation is commonly referred to as "sandboxing."
-
-## Control assessment-objective
-
-the presence of unauthorized hardware within the system is detected using automated mechanisms frequency;
-the presence of unauthorized software within the system is detected using automated mechanisms frequency;
-the presence of unauthorized firmware within the system is detected using automated mechanisms frequency;
-No value found are taken when unauthorized hardware is detected;
-No value found are taken when unauthorized software is detected;
-No value found are taken when unauthorized firmware is detected.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item cm-8.3_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item cm-8.3_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-8.md b/docs/compliance/dist/system-security-plans/ato/cm-8.md
deleted file mode 100644
index 622517241..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-8.md
+++ /dev/null
@@ -1,58 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-8 - \[catalog\] System Component Inventory
-
-## Control Statement
-
-- \[a\] Develop and document an inventory of system components that:
-
-  - \[1\] Accurately reflects the system;
-  - \[2\] Includes all components within the system;
-  - \[3\] Does not include duplicate accounting of components or components assigned to any other system;
-  - \[4\] Is at the level of granularity deemed necessary for tracking and reporting; and
-  - \[5\] Includes the following information to achieve system component accountability: information ; and
-
-- \[b\] Review and update the system component inventory frequency.
-
-## Control guidance
-
-System components are discrete, identifiable information technology assets that include hardware, software, and firmware. Organizations may choose to implement centralized system component inventories that include components from all organizational systems. In such situations, organizations ensure that the inventories include system-specific information required for component accountability. The information necessary for effective accountability of system components includes the system name, software owners, software version numbers, hardware inventory specifications, software license information, and for networked components, the machine names and network addresses across all implemented protocols (e.g., IPv4, IPv6). Inventory specifications include date of receipt, cost, model, serial number, manufacturer, supplier information, component type, and physical location.
-
-Preventing duplicate accounting of system components addresses the lack of accountability that occurs when component ownership and system association is not known, especially in large or complex connected systems. Effective prevention of duplicate accounting of system components necessitates use of a unique identifier for each component. For software inventory, centrally managed software that is accessed via other systems is addressed as a component of the system on which it is installed and managed. Software installed on multiple organizational systems and managed at the system level is addressed for each individual system and may appear more than once in a centralized component inventory, necessitating a system association for each software instance in the centralized inventory to avoid duplicate accounting of components. Scanning systems implementing multiple network protocols (e.g., IPv4 and IPv6) can result in duplicate components being identified in different address spaces. The implementation of [CM-8(7)](#cm-8.7) can help to eliminate duplicate accounting of components.
-
-## Control assessment-objective
-
-an inventory of system components that accurately reflects the system is developed and documented;
-an inventory of system components that includes all components within the system is developed and documented;
-an inventory of system components that does not include duplicate accounting of components or components assigned to any other system is developed and documented;
-an inventory of system components that is at the level of granularity deemed necessary for tracking and reporting is developed and documented;
-an inventory of system components that includes information is developed and documented;
-the system component inventory is reviewed and updated frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cm-8_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cm-8_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cm-9.md b/docs/compliance/dist/system-security-plans/ato/cm-9.md
deleted file mode 100644
index a72a70e3d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cm-9.md
+++ /dev/null
@@ -1,86 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cm-9 - \[catalog\] Configuration Management Plan
-
-## Control Statement
-
-Develop, document, and implement a configuration management plan for the system that:
-
-- \[a\] Addresses roles, responsibilities, and configuration management processes and procedures;
-
-- \[b\] Establishes a process for identifying configuration items throughout the system development life cycle and for managing the configuration of the configuration items;
-
-- \[c\] Defines the configuration items for the system and places the configuration items under configuration management;
-
-- \[d\] Is reviewed and approved by personnel or roles ; and
-
-- \[e\] Protects the configuration management plan from unauthorized disclosure and modification.
-
-## Control guidance
-
-Configuration management activities occur throughout the system development life cycle. As such, there are developmental configuration management activities (e.g., the control of code and software libraries) and operational configuration management activities (e.g., control of installed components and how the components are configured). Configuration management plans satisfy the requirements in configuration management policies while being tailored to individual systems. Configuration management plans define processes and procedures for how configuration management is used to support system development life cycle activities.
-
-Configuration management plans are generated during the development and acquisition stage of the system development life cycle. The plans describe how to advance changes through change management processes; update configuration settings and baselines; maintain component inventories; control development, test, and operational environments; and develop, release, and update key documents.
-
-Organizations can employ templates to help ensure the consistent and timely development and implementation of configuration management plans. Templates can represent a configuration management plan for the organization with subsets of the plan implemented on a system by system basis. Configuration management approval processes include the designation of key stakeholders responsible for reviewing and approving proposed changes to systems, and personnel who conduct security and privacy impact analyses prior to the implementation of changes to the systems. Configuration items are the system components, such as the hardware, software, firmware, and documentation to be configuration-managed. As systems continue through the system development life cycle, new configuration items may be identified, and some existing configuration items may no longer need to be under configuration control.
-
-## Control assessment-objective
-
-a configuration management plan for the system is developed and documented;
-a configuration management plan for the system is implemented;
-the configuration management plan addresses roles;
-the configuration management plan addresses responsibilities;
-the configuration management plan addresses configuration management processes and procedures;
-the configuration management plan establishes a process for identifying configuration items throughout the system development life cycle;
-the configuration management plan establishes a process for managing the configuration of the configuration items;
-the configuration management plan defines the configuration items for the system;
-the configuration management plan places the configuration items under configuration management;
-the configuration management plan is reviewed and approved by personnel or roles;
-the configuration management plan is protected from unauthorized disclosure;
-the configuration management plan is protected from unauthorized modification.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cm-9_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cm-9_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cm-9_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item cm-9_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item cm-9_smt.e
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-1.md b/docs/compliance/dist/system-security-plans/ato/cp-1.md
deleted file mode 100644
index 3d47b6573..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found contingency planning policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the contingency planning policy and the associated contingency planning controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the contingency planning policy and procedures; and
-
-- \[c\] Review and update the current contingency planning:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Contingency planning policy and procedures address the controls in the CP family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of contingency planning policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to contingency planning policy and procedures include assessment or audit findings, security incidents or breaches, or changes in laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a contingency planning policy is developed and documented;
-the contingency planning policy is disseminated to personnel or roles;
-contingency planning procedures to facilitate the implementation of the contingency planning policy and associated contingency planning controls are developed and documented;
-the contingency planning procedures are disseminated to personnel or roles;
-the No value found contingency planning policy addresses purpose;
-the No value found contingency planning policy addresses scope;
-the No value found contingency planning policy addresses roles;
-the No value found contingency planning policy addresses responsibilities;
-the No value found contingency planning policy addresses management commitment;
-the No value found contingency planning policy addresses coordination among organizational entities;
-the No value found contingency planning policy addresses compliance;
-the No value found contingency planning policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the contingency planning policy and procedures;
-the current contingency planning policy is reviewed and updated frequency;
-the current contingency planning policy is reviewed and updated following events;
-the current contingency planning procedures are reviewed and updated frequency;
-the current contingency planning procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cp-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cp-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cp-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-10.2.md b/docs/compliance/dist/system-security-plans/ato/cp-10.2.md
deleted file mode 100644
index ea7d7ae0a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-10.2.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# cp-10.2 - \[catalog\] Transaction Recovery
-
-## Control Statement
-
-Implement transaction recovery for systems that are transaction-based.
-
-## Control guidance
-
-Transaction-based systems include database management systems and transaction processing systems. Mechanisms supporting transaction recovery include transaction rollback and transaction journaling.
-
-## Control assessment-objective
-
-transaction recovery is implemented for systems that are transaction-based.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-In accordance with application owner SLAs established with cloud.gov. 
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-10.md b/docs/compliance/dist/system-security-plans/ato/cp-10.md
deleted file mode 100644
index f0eaf6cdd..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-10.md
+++ /dev/null
@@ -1,29 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# cp-10 - \[catalog\] System Recovery and Reconstitution
-
-## Control Statement
-
-Provide for the recovery and reconstitution of the system to a known state within organization-defined time period consistent with recovery time and recovery point objectives after a disruption, compromise, or failure.
-
-## Control guidance
-
-Recovery is executing contingency plan activities to restore organizational mission and business functions. Reconstitution takes place following recovery and includes activities for returning systems to fully operational states. Recovery and reconstitution operations reflect mission and business priorities; recovery point, recovery time, and reconstitution objectives; and organizational metrics consistent with contingency plan requirements. Reconstitution includes the deactivation of interim system capabilities that may have been needed during recovery operations. Reconstitution also includes assessments of fully restored system capabilities, reestablishment of continuous monitoring activities, system reauthorization (if required), and activities to prepare the system and organization for future disruptions, breaches, compromises, or failures. Recovery and reconstitution capabilities can include automated mechanisms and manual procedures. Organizations establish recovery time and recovery point objectives as part of contingency planning.
-
-## Control assessment-objective
-
-the recovery of the system to a known state is provided within time period after a disruption, compromise, or failure;
-a reconstitution of the system to a known state is provided within time period after a disruption, compromise, or failure.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-In accordance with application owner SLAs established with cloud.gov. 
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-2.1.md b/docs/compliance/dist/system-security-plans/ato/cp-2.1.md
deleted file mode 100644
index 97202e52a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-2.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-2.1 - \[catalog\] Coordinate with Related Plans
-
-## Control Statement
-
-Coordinate contingency plan development with organizational elements responsible for related plans.
-
-## Control guidance
-
-Plans that are related to contingency plans include Business Continuity Plans, Disaster Recovery Plans, Critical Infrastructure Plans, Continuity of Operations Plans, Crisis Communications Plans, Insider Threat Implementation Plans, Data Breach Response Plans, Cyber Incident Response Plans, Breach Response Plans, and Occupant Emergency Plans.
-
-## Control assessment-objective
-
-contingency plan development is coordinated with organizational elements responsible for related plans.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cp-2.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-2.3.md b/docs/compliance/dist/system-security-plans/ato/cp-2.3.md
deleted file mode 100644
index 0bcf4b262..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-2.3.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-2.3 - \[catalog\] Resume Mission and Business Functions
-
-## Control Statement
-
-Plan for the resumption of No value found mission and business functions within time period of contingency plan activation.
-
-## Control guidance
-
-Organizations may choose to conduct contingency planning activities to resume mission and business functions as part of business continuity planning or as part of business impact analyses. Organizations prioritize the resumption of mission and business functions. The time period for resuming mission and business functions may be dependent on the severity and extent of the disruptions to the system and its supporting infrastructure.
-
-## Control assessment-objective
-
-the resumption of No value found mission and business functions are planned for within time period of contingency plan activation.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cp-2.3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-2.8.md b/docs/compliance/dist/system-security-plans/ato/cp-2.8.md
deleted file mode 100644
index a3d3ca80f..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-2.8.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-2.8 - \[catalog\] Identify Critical Assets
-
-## Control Statement
-
-Identify critical system assets supporting No value found mission and business functions.
-
-## Control guidance
-
-Organizations may choose to identify critical assets as part of criticality analysis, business continuity planning, or business impact analyses. Organizations identify critical system assets so that additional controls can be employed (beyond the controls routinely implemented) to help ensure that organizational mission and business functions can continue to be conducted during contingency operations. The identification of critical information assets also facilitates the prioritization of organizational resources. Critical system assets include technical and operational aspects. Technical aspects include system components, information technology services, information technology products, and mechanisms. Operational aspects include procedures (i.e., manually executed operations) and personnel (i.e., individuals operating technical controls and/or executing manual procedures). Organizational program protection plans can assist in identifying critical assets. If critical assets are resident within or supported by external service providers, organizations consider implementing [CP-2(7)](#cp-2.7) as a control enhancement.
-
-## Control assessment-objective
-
-critical system assets supporting No value found mission and business functions are identified.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cp-2.8
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-2.md b/docs/compliance/dist/system-security-plans/ato/cp-2.md
deleted file mode 100644
index 28f03ea37..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-2.md
+++ /dev/null
@@ -1,126 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-2 - \[catalog\] Contingency Plan
-
-## Control Statement
-
-- \[a\] Develop a contingency plan for the system that:
-
-  - \[1\] Identifies essential mission and business functions and associated contingency requirements;
-  - \[2\] Provides recovery objectives, restoration priorities, and metrics;
-  - \[3\] Addresses contingency roles, responsibilities, assigned individuals with contact information;
-  - \[4\] Addresses maintaining essential mission and business functions despite a system disruption, compromise, or failure;
-  - \[5\] Addresses eventual, full system restoration without deterioration of the controls originally planned and implemented;
-  - \[6\] Addresses the sharing of contingency information; and
-  - \[7\] Is reviewed and approved by organization-defined personnel or roles;
-
-- \[b\] Distribute copies of the contingency plan to organization-defined key contingency personnel (identified by name and/or by role) and organizational elements;
-
-- \[c\] Coordinate contingency planning activities with incident handling activities;
-
-- \[d\] Review the contingency plan for the system frequency;
-
-- \[e\] Update the contingency plan to address changes to the organization, system, or environment of operation and problems encountered during contingency plan implementation, execution, or testing;
-
-- \[f\] Communicate contingency plan changes to organization-defined key contingency personnel (identified by name and/or by role) and organizational elements;
-
-- \[g\] Incorporate lessons learned from contingency plan testing, training, or actual contingency activities into contingency testing and training; and
-
-- \[h\] Protect the contingency plan from unauthorized disclosure and modification.
-
-## Control guidance
-
-Contingency planning for systems is part of an overall program for achieving continuity of operations for organizational mission and business functions. Contingency planning addresses system restoration and implementation of alternative mission or business processes when systems are compromised or breached. Contingency planning is considered throughout the system development life cycle and is a fundamental part of the system design. Systems can be designed for redundancy, to provide backup capabilities, and for resilience. Contingency plans reflect the degree of restoration required for organizational systems since not all systems need to fully recover to achieve the level of continuity of operations desired. System recovery objectives reflect applicable laws, executive orders, directives, regulations, policies, standards, guidelines, organizational risk tolerance, and system impact level.
-
-Actions addressed in contingency plans include orderly system degradation, system shutdown, fallback to a manual mode, alternate information flows, and operating in modes reserved for when systems are under attack. By coordinating contingency planning with incident handling activities, organizations ensure that the necessary planning activities are in place and activated in the event of an incident. Organizations consider whether continuity of operations during an incident conflicts with the capability to automatically disable the system, as specified in [IR-4(5)](#ir-4.5) . Incident response planning is part of contingency planning for organizations and is addressed in the [IR](#ir) (Incident Response) family.
-
-## Control assessment-objective
-
-a contingency plan for the system is developed that identifies essential mission and business functions and associated contingency requirements;
-a contingency plan for the system is developed that provides recovery objectives;
-a contingency plan for the system is developed that provides restoration priorities;
-a contingency plan for the system is developed that provides metrics;
-a contingency plan for the system is developed that addresses contingency roles;
-a contingency plan for the system is developed that addresses contingency responsibilities;
-a contingency plan for the system is developed that addresses assigned individuals with contact information;
-a contingency plan for the system is developed that addresses maintaining essential mission and business functions despite a system disruption, compromise, or failure;
-a contingency plan for the system is developed that addresses eventual, full-system restoration without deterioration of the controls originally planned and implemented;
-a contingency plan for the system is developed that addresses the sharing of contingency information;
-a contingency plan for the system is developed that is reviewed by personnel or roles;
-a contingency plan for the system is developed that is approved by personnel or roles;
-copies of the contingency plan are distributed to key contingency personnel;
-copies of the contingency plan are distributed to organizational elements;
-contingency planning activities are coordinated with incident handling activities;
-the contingency plan for the system is reviewed frequency;
-the contingency plan is updated to address changes to the organization, system, or environment of operation;
-the contingency plan is updated to address problems encountered during contingency plan implementation, execution, or testing;
-contingency plan changes are communicated to key contingency personnel;
-contingency plan changes are communicated to organizational elements;
-lessons learned from contingency plan testing or actual contingency activities are incorporated into contingency testing;
-lessons learned from contingency plan training or actual contingency activities are incorporated into contingency testing and training;
-the contingency plan is protected from unauthorized disclosure;
-the contingency plan is protected from unauthorized modification.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cp-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cp-2_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cp-2_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item cp-2_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item cp-2_smt.e
-
-______________________________________________________________________
-
-## Implementation f.
-
-Add control implementation description here for item cp-2_smt.f
-
-______________________________________________________________________
-
-## Implementation g.
-
-Add control implementation description here for item cp-2_smt.g
-
-______________________________________________________________________
-
-## Implementation h.
-
-Add control implementation description here for item cp-2_smt.h
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-3.md b/docs/compliance/dist/system-security-plans/ato/cp-3.md
deleted file mode 100644
index b02c97ef4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-3.md
+++ /dev/null
@@ -1,53 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-3 - \[catalog\] Contingency Training
-
-## Control Statement
-
-- \[a\] Provide contingency training to system users consistent with assigned roles and responsibilities:
-
-  - \[1\] Within time period of assuming a contingency role or responsibility;
-  - \[2\] When required by system changes; and
-  - \[3\]  frequency thereafter; and
-
-- \[b\] Review and update contingency training content frequency and following events.
-
-## Control guidance
-
-Contingency training provided by organizations is linked to the assigned roles and responsibilities of organizational personnel to ensure that the appropriate content and level of detail is included in such training. For example, some individuals may only need to know when and where to report for duty during contingency operations and if normal duties are affected; system administrators may require additional training on how to establish systems at alternate processing and storage sites; and organizational officials may receive more specific training on how to conduct mission-essential functions in designated off-site locations and how to establish communications with other governmental entities for purposes of coordination on contingency-related activities. Training for contingency roles or responsibilities reflects the specific continuity requirements in the contingency plan. Events that may precipitate an update to contingency training content include, but are not limited to, contingency plan testing or an actual contingency (lessons learned), assessment or audit findings, security incidents or breaches, or changes in laws, executive orders, directives, regulations, policies, standards, and guidelines. At the discretion of the organization, participation in a contingency plan test or exercise, including lessons learned sessions subsequent to the test or exercise, may satisfy contingency plan training requirements.
-
-## Control assessment-objective
-
-contingency training is provided to system users consistent with assigned roles and responsibilities within time period of assuming a contingency role or responsibility;
-contingency training is provided to system users consistent with assigned roles and responsibilities when required by system changes;
-contingency training is provided to system users consistent with assigned roles and responsibilities frequency thereafter;
-the contingency plan training content is reviewed and updated frequency;
-the contingency plan training content is reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cp-3_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cp-3_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-4.1.md b/docs/compliance/dist/system-security-plans/ato/cp-4.1.md
deleted file mode 100644
index a433f5fd5..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-4.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-4.1 - \[catalog\] Coordinate with Related Plans
-
-## Control Statement
-
-Coordinate contingency plan testing with organizational elements responsible for related plans.
-
-## Control guidance
-
-Plans related to contingency planning for organizational systems include Business Continuity Plans, Disaster Recovery Plans, Continuity of Operations Plans, Crisis Communications Plans, Critical Infrastructure Plans, Cyber Incident Response Plans, and Occupant Emergency Plans. Coordination of contingency plan testing does not require organizations to create organizational elements to handle related plans or to align such elements with specific plans. However, it does require that if such organizational elements are responsible for related plans, organizations coordinate with those elements.
-
-## Control assessment-objective
-
-contingency plan testing is coordinated with organizational elements responsible for related plans.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cp-4.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-4.md b/docs/compliance/dist/system-security-plans/ato/cp-4.md
deleted file mode 100644
index 95a93af0c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-4.md
+++ /dev/null
@@ -1,57 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-4 - \[catalog\] Contingency Plan Testing
-
-## Control Statement
-
-- \[a\] Test the contingency plan for the system frequency using the following tests to determine the effectiveness of the plan and the readiness to execute the plan: organization-defined tests.
-
-- \[b\] Review the contingency plan test results; and
-
-- \[c\] Initiate corrective actions, if needed.
-
-## Control guidance
-
-Methods for testing contingency plans to determine the effectiveness of the plans and identify potential weaknesses include checklists, walk-through and tabletop exercises, simulations (parallel or full interrupt), and comprehensive exercises. Organizations conduct testing based on the requirements in contingency plans and include a determination of the effects on organizational operations, assets, and individuals due to contingency operations. Organizations have flexibility and discretion in the breadth, depth, and timelines of corrective actions.
-
-## Control assessment-objective
-
-the contingency plan for the system is tested frequency;
-tests are used to determine the effectiveness of the plan;
-tests are used to determine the readiness to execute the plan;
-the contingency plan test results are reviewed;
-corrective actions are initiated, if needed.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cp-4_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cp-4_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cp-4_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-6.1.md b/docs/compliance/dist/system-security-plans/ato/cp-6.1.md
deleted file mode 100644
index 301761f8d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-6.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-6.1 - \[catalog\] Separation from Primary Site
-
-## Control Statement
-
-Identify an alternate storage site that is sufficiently separated from the primary storage site to reduce susceptibility to the same threats.
-
-## Control guidance
-
-Threats that affect alternate storage sites are defined in organizational risk assessments and include natural disasters, structural failures, hostile attacks, and errors of omission or commission. Organizations determine what is considered a sufficient degree of separation between primary and alternate storage sites based on the types of threats that are of concern. For threats such as hostile attacks, the degree of separation between sites is less relevant.
-
-## Control assessment-objective
-
-an alternate storage site that is sufficiently separated from the primary storage site is identified to reduce susceptibility to the same threats.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cp-6.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-6.3.md b/docs/compliance/dist/system-security-plans/ato/cp-6.3.md
deleted file mode 100644
index 54c84b9ae..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-6.3.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-6.3 - \[catalog\] Accessibility
-
-## Control Statement
-
-Identify potential accessibility problems to the alternate storage site in the event of an area-wide disruption or disaster and outline explicit mitigation actions.
-
-## Control guidance
-
-Area-wide disruptions refer to those types of disruptions that are broad in geographic scope with such determinations made by organizations based on organizational assessments of risk. Explicit mitigation actions include duplicating backup information at other alternate storage sites if access problems occur at originally designated alternate sites or planning for physical access to retrieve backup information if electronic accessibility to the alternate site is disrupted.
-
-## Control assessment-objective
-
-potential accessibility problems to the alternate storage site in the event of an area-wide disruption or disaster are identified;
-explicit mitigation actions to address identified accessibility problems are outlined.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cp-6.3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-6.md b/docs/compliance/dist/system-security-plans/ato/cp-6.md
deleted file mode 100644
index 7e182a9a3..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-6.md
+++ /dev/null
@@ -1,47 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-6 - \[catalog\] Alternate Storage Site
-
-## Control Statement
-
-- \[a\] Establish an alternate storage site, including necessary agreements to permit the storage and retrieval of system backup information; and
-
-- \[b\] Ensure that the alternate storage site provides controls equivalent to that of the primary site.
-
-## Control guidance
-
-Alternate storage sites are geographically distinct from primary storage sites and maintain duplicate copies of information and data if the primary storage site is not available. Similarly, alternate processing sites provide processing capability if the primary processing site is not available. Geographically distributed architectures that support contingency requirements may be considered alternate storage sites. Items covered by alternate storage site agreements include environmental conditions at the alternate sites, access rules for systems and facilities, physical and environmental protection requirements, and coordination of delivery and retrieval of backup media. Alternate storage sites reflect the requirements in contingency plans so that organizations can maintain essential mission and business functions despite compromise, failure, or disruption in organizational systems.
-
-## Control assessment-objective
-
-an alternate storage site is established;
-establishment of the alternate storage site includes necessary agreements to permit the storage and retrieval of system backup information;
-the alternate storage site provides controls equivalent to that of the primary site.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cp-6_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cp-6_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-7.1.md b/docs/compliance/dist/system-security-plans/ato/cp-7.1.md
deleted file mode 100644
index e66192bd7..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-7.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-7.1 - \[catalog\] Separation from Primary Site
-
-## Control Statement
-
-Identify an alternate processing site that is sufficiently separated from the primary processing site to reduce susceptibility to the same threats.
-
-## Control guidance
-
-Threats that affect alternate processing sites are defined in organizational assessments of risk and include natural disasters, structural failures, hostile attacks, and errors of omission or commission. Organizations determine what is considered a sufficient degree of separation between primary and alternate processing sites based on the types of threats that are of concern. For threats such as hostile attacks, the degree of separation between sites is less relevant.
-
-## Control assessment-objective
-
-an alternate processing site that is sufficiently separated from the primary processing site to reduce susceptibility to the same threats is identified.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cp-7.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-7.2.md b/docs/compliance/dist/system-security-plans/ato/cp-7.2.md
deleted file mode 100644
index 3265293a4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-7.2.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-7.2 - \[catalog\] Accessibility
-
-## Control Statement
-
-Identify potential accessibility problems to alternate processing sites in the event of an area-wide disruption or disaster and outlines explicit mitigation actions.
-
-## Control guidance
-
-Area-wide disruptions refer to those types of disruptions that are broad in geographic scope with such determinations made by organizations based on organizational assessments of risk.
-
-## Control assessment-objective
-
-potential accessibility problems to alternate processing sites in the event of an area-wide disruption or disaster are identified;
-explicit mitigation actions to address identified accessibility problems are outlined.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cp-7.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-7.3.md b/docs/compliance/dist/system-security-plans/ato/cp-7.3.md
deleted file mode 100644
index aae05a8eb..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-7.3.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-7.3 - \[catalog\] Priority of Service
-
-## Control Statement
-
-Develop alternate processing site agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives).
-
-## Control guidance
-
-Priority of service agreements refer to negotiated agreements with service providers that ensure that organizations receive priority treatment consistent with their availability requirements and the availability of information resources for logical alternate processing and/or at the physical alternate processing site. Organizations establish recovery time objectives as part of contingency planning.
-
-## Control assessment-objective
-
-alternate processing site agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives) are developed.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cp-7.3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-7.md b/docs/compliance/dist/system-security-plans/ato/cp-7.md
deleted file mode 100644
index 0b525e1d6..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-7.md
+++ /dev/null
@@ -1,56 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-7 - \[catalog\] Alternate Processing Site
-
-## Control Statement
-
-- \[a\] Establish an alternate processing site, including necessary agreements to permit the transfer and resumption of system operations for essential mission and business functions within time period when the primary processing capabilities are unavailable;
-
-- \[b\] Make available at the alternate processing site, the equipment and supplies required to transfer and resume operations or put contracts in place to support delivery to the site within the organization-defined time period for transfer and resumption; and
-
-- \[c\] Provide controls at the alternate processing site that are equivalent to those at the primary site.
-
-## Control guidance
-
-Alternate processing sites are geographically distinct from primary processing sites and provide processing capability if the primary processing site is not available. The alternate processing capability may be addressed using a physical processing site or other alternatives, such as failover to a cloud-based service provider or other internally or externally provided processing service. Geographically distributed architectures that support contingency requirements may also be considered alternate processing sites. Controls that are covered by alternate processing site agreements include the environmental conditions at alternate sites, access rules, physical and environmental protection requirements, and the coordination for the transfer and assignment of personnel. Requirements are allocated to alternate processing sites that reflect the requirements in contingency plans to maintain essential mission and business functions despite disruption, compromise, or failure in organizational systems.
-
-## Control assessment-objective
-
-an alternate processing site, including necessary agreements to permit the transfer and resumption of system operations for essential mission and business functions, is established within time period when the primary processing capabilities are unavailable;
-the equipment and supplies required to transfer operations are made available at the alternate processing site or if contracts are in place to support delivery to the site within time period for transfer;
-the equipment and supplies required to resume operations are made available at the alternate processing site or if contracts are in place to support delivery to the site within time period for resumption;
-controls provided at the alternate processing site are equivalent to those at the primary site.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cp-7_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cp-7_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cp-7_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-8.1.md b/docs/compliance/dist/system-security-plans/ato/cp-8.1.md
deleted file mode 100644
index 7881ae8de..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-8.1.md
+++ /dev/null
@@ -1,42 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# cp-8.1 - \[catalog\] Priority of Service Provisions
-
-## Control Statement
-
-- \[a\] Develop primary and alternate telecommunications service agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives); and
-
-- \[b\] Request Telecommunications Service Priority for all telecommunications services used for national security emergency preparedness if the primary and/or alternate telecommunications services are provided by a common carrier.
-
-## Control guidance
-
-Organizations consider the potential mission or business impact in situations where telecommunications service providers are servicing other organizations with similar priority of service provisions. Telecommunications Service Priority (TSP) is a Federal Communications Commission (FCC) program that directs telecommunications service providers (e.g., wireline and wireless phone companies) to give preferential treatment to users enrolled in the program when they need to add new lines or have their lines restored following a disruption of service, regardless of the cause. The FCC sets the rules and policies for the TSP program, and the Department of Homeland Security manages the TSP program. The TSP program is always in effect and not contingent on a major disaster or attack taking place. Federal sponsorship is required to enroll in the TSP program.
-
-## Control assessment-objective
-
-primary telecommunications service agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives) are developed;
-alternate telecommunications service agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives) are developed;
-Telecommunications Service Priority is requested for all telecommunications services used for national security emergency preparedness if the primary and/or alternate telecommunications services are provided by a common carrier.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-cloud.gov leverages redundant telecommunications services from AWS GovCloud.
-______________________________________________________________________
-
-## Implementation (b)
-
-cloud.gov leverages redundant telecommunications services from AWS GovCloud.
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-8.2.md b/docs/compliance/dist/system-security-plans/ato/cp-8.2.md
deleted file mode 100644
index 39b34d2cf..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-8.2.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# cp-8.2 - \[catalog\] Single Points of Failure
-
-## Control Statement
-
-Obtain alternate telecommunications services to reduce the likelihood of sharing a single point of failure with primary telecommunications services.
-
-## Control guidance
-
-In certain circumstances, telecommunications service providers or services may share the same physical lines, which increases the vulnerability of a single failure point. It is important to have provider transparency for the actual physical transmission capability for telecommunication services.
-
-## Control assessment-objective
-
-alternate telecommunications services to reduce the likelihood of sharing a single point of failure with primary telecommunications services are obtained.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-cloud.gov leverages redundant telecommunications services from AWS GovCloud.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-8.md b/docs/compliance/dist/system-security-plans/ato/cp-8.md
deleted file mode 100644
index 039aa3efe..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-8.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# cp-8 - \[catalog\] Telecommunications Services
-
-## Control Statement
-
-Establish alternate telecommunications services, including necessary agreements to permit the resumption of system operations for essential mission and business functions within time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.
-
-## Control guidance
-
-Telecommunications services (for data and voice) for primary and alternate processing and storage sites are in scope for [CP-8](#cp-8) . Alternate telecommunications services reflect the continuity requirements in contingency plans to maintain essential mission and business functions despite the loss of primary telecommunications services. Organizations may specify different time periods for primary or alternate sites. Alternate telecommunications services include additional organizational or commercial ground-based circuits or lines, network-based approaches to telecommunications, or the use of satellites. Organizations consider factors such as availability, quality of service, and access when entering into alternate telecommunications agreements.
-
-## Control assessment-objective
-
-alternate telecommunications services, including necessary agreements to permit the resumption of system operations , are established for essential mission and business functions within time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-cloud.gov leverages redundant telecommunications services from AWS GovCloud.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-9.1.md b/docs/compliance/dist/system-security-plans/ato/cp-9.1.md
deleted file mode 100644
index 46957706d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-9.1.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-9.1 - \[catalog\] Testing for Reliability and Integrity
-
-## Control Statement
-
-Test backup information organization-defined frequency to verify media reliability and information integrity.
-
-## Control guidance
-
-Organizations need assurance that backup information can be reliably retrieved. Reliability pertains to the systems and system components where the backup information is stored, the operations used to retrieve the information, and the integrity of the information being retrieved. Independent and specialized tests can be used for each of the aspects of reliability. For example, decrypting and transporting (or transmitting) a random sample of backup files from the alternate storage or backup site and comparing the information to the same information at the primary processing site can provide such assurance.
-
-## Control assessment-objective
-
-backup information is tested frequency to verify media reliability;
-backup information is tested frequency to verify information integrity.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cp-9.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-9.8.md b/docs/compliance/dist/system-security-plans/ato/cp-9.8.md
deleted file mode 100644
index 6ab1bf409..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-9.8.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-9.8 - \[catalog\] Cryptographic Protection
-
-## Control Statement
-
-Implement cryptographic mechanisms to prevent unauthorized disclosure and modification of backup information.
-
-## Control guidance
-
-The selection of cryptographic mechanisms is based on the need to protect the confidentiality and integrity of backup information. The strength of mechanisms selected is commensurate with the security category or classification of the information. Cryptographic protection applies to system backup information in storage at both primary and alternate locations. Organizations that implement cryptographic mechanisms to protect information at rest also consider cryptographic key management solutions.
-
-## Control assessment-objective
-
-cryptographic mechanisms are implemented to prevent unauthorized disclosure and modification of backup information.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control cp-9.8
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/cp-9.md b/docs/compliance/dist/system-security-plans/ato/cp-9.md
deleted file mode 100644
index 1625630c4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/cp-9.md
+++ /dev/null
@@ -1,66 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# cp-9 - \[catalog\] System Backup
-
-## Control Statement
-
-- \[a\] Conduct backups of user-level information contained in system components frequency;
-
-- \[b\] Conduct backups of system-level information contained in the system frequency;
-
-- \[c\] Conduct backups of system documentation, including security- and privacy-related documentation frequency ; and
-
-- \[d\] Protect the confidentiality, integrity, and availability of backup information.
-
-## Control guidance
-
-System-level information includes system state information, operating system software, middleware, application software, and licenses. User-level information includes information other than system-level information. Mechanisms employed to protect the integrity of system backups include digital signatures and cryptographic hashes. Protection of system backup information while in transit is addressed by [MP-5](#mp-5) and [SC-8](#sc-8) . System backups reflect the requirements in contingency plans as well as other organizational requirements for backing up information. Organizations may be subject to laws, executive orders, directives, regulations, or policies with requirements regarding specific categories of information (e.g., personal health information). Organizational personnel consult with the senior agency official for privacy and legal counsel regarding such requirements.
-
-## Control assessment-objective
-
-backups of user-level information contained in system components are conducted frequency;
-backups of system-level information contained in the system are conducted frequency;
-backups of system documentation, including security- and privacy-related documentation are conducted frequency;
-the confidentiality of backup information is protected;
-the integrity of backup information is protected;
-the availability of backup information is protected.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item cp-9_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item cp-9_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item cp-9_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item cp-9_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-1.md b/docs/compliance/dist/system-security-plans/ato/ia-1.md
deleted file mode 100644
index 3701ae968..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found identification and authentication policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the identification and authentication policy and the associated identification and authentication controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the identification and authentication policy and procedures; and
-
-- \[c\] Review and update the current identification and authentication:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Identification and authentication policy and procedures address the controls in the IA family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of identification and authentication policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to identification and authentication policy and procedures include assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-an identification and authentication policy is developed and documented;
-the identification and authentication policy is disseminated to personnel or roles;
-identification and authentication procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls are developed and documented;
-the identification and authentication procedures are disseminated to personnel or roles;
-the No value found identification and authentication policy addresses purpose;
-the No value found identification and authentication policy addresses scope;
-the No value found identification and authentication policy addresses roles;
-the No value found identification and authentication policy addresses responsibilities;
-the No value found identification and authentication policy addresses management commitment;
-the No value found identification and authentication policy addresses coordination among organizational entities;
-the No value found identification and authentication policy addresses compliance;
-the No value found identification and authentication policy is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the identification and authentication policy and procedures;
-the current identification and authentication policy is reviewed and updated frequency;
-the current identification and authentication policy is reviewed and updated following events;
-the current identification and authentication procedures are reviewed and updated frequency;
-the current identification and authentication procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ia-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ia-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ia-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-11.md b/docs/compliance/dist/system-security-plans/ato/ia-11.md
deleted file mode 100644
index 4cbbf6b99..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-11.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-11 - \[catalog\] Re-authentication
-
-## Control Statement
-
-Require users to re-authenticate when circumstances or situations.
-
-## Control guidance
-
-In addition to the re-authentication requirements associated with device locks, organizations may require re-authentication of individuals in certain situations, including when roles, authenticators or credentials change, when security categories of systems change, when the execution of privileged functions occurs, after a fixed time period, or periodically.
-
-## Control assessment-objective
-
-users are required to re-authenticate when circumstances or situations.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-11
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-12.2.md b/docs/compliance/dist/system-security-plans/ato/ia-12.2.md
deleted file mode 100644
index ec23fb69e..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-12.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-12.2 - \[catalog\] Identity Evidence
-
-## Control Statement
-
-Require evidence of individual identification be presented to the registration authority.
-
-## Control guidance
-
-Identity evidence, such as documentary evidence or a combination of documents and biometrics, reduces the likelihood of individuals using fraudulent identification to establish an identity or at least increases the work factor of potential adversaries. The forms of acceptable evidence are consistent with the risks to the systems, roles, and privileges associated with the user’s account.
-
-## Control assessment-objective
-
-evidence of individual identification is presented to the registration authority.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-12.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-12.3.md b/docs/compliance/dist/system-security-plans/ato/ia-12.3.md
deleted file mode 100644
index 36d3efc09..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-12.3.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-12.3 - \[catalog\] Identity Evidence Validation and Verification
-
-## Control Statement
-
-Require that the presented identity evidence be validated and verified through methods of validation and verification.
-
-## Control guidance
-
-Validation and verification of identity evidence increases the assurance that accounts and identifiers are being established for the correct user and authenticators are being bound to that user. Validation refers to the process of confirming that the evidence is genuine and authentic, and the data contained in the evidence is correct, current, and related to an individual. Verification confirms and establishes a linkage between the claimed identity and the actual existence of the user presenting the evidence. Acceptable methods for validating and verifying identity evidence are consistent with the risks to the systems, roles, and privileges associated with the users account.
-
-## Control assessment-objective
-
-the presented identity evidence is validated and verified through methods of validation and verification.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-12.3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-12.5.md b/docs/compliance/dist/system-security-plans/ato/ia-12.5.md
deleted file mode 100644
index a2ff04db9..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-12.5.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-12.5 - \[catalog\] Address Confirmation
-
-## Control Statement
-
-Require that a No value found be delivered through an out-of-band channel to verify the users address (physical or digital) of record.
-
-## Control guidance
-
-To make it more difficult for adversaries to pose as legitimate users during the identity proofing process, organizations can use out-of-band methods to ensure that the individual associated with an address of record is the same individual that participated in the registration. Confirmation can take the form of a temporary enrollment code or a notice of proofing. The delivery address for these artifacts is obtained from records and not self-asserted by the user. The address can include a physical or digital address. A home address is an example of a physical address. Email addresses and telephone numbers are examples of digital addresses.
-
-## Control assessment-objective
-
-a No value found is delivered through an out-of-band channel to verify the user’s address (physical or digital) of record.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-12.5
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-12.md b/docs/compliance/dist/system-security-plans/ato/ia-12.md
deleted file mode 100644
index a22f230f8..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-12.md
+++ /dev/null
@@ -1,57 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-12 - \[catalog\] Identity Proofing
-
-## Control Statement
-
-- \[a\] Identity proof users that require accounts for logical access to systems based on appropriate identity assurance level requirements as specified in applicable standards and guidelines;
-
-- \[b\] Resolve user identities to a unique individual; and
-
-- \[c\] Collect, validate, and verify identity evidence.
-
-## Control guidance
-
-Identity proofing is the process of collecting, validating, and verifying a user’s identity information for the purposes of establishing credentials for accessing a system. Identity proofing is intended to mitigate threats to the registration of users and the establishment of their accounts. Standards and guidelines specifying identity assurance levels for identity proofing include [SP 800-63-3](#737513fa-6758-403f-831d-5ddab5e23cb3) and [SP 800-63A](#9099ed2c-922a-493d-bcb4-d896192243ff) . Organizations may be subject to laws, executive orders, directives, regulations, or policies that address the collection of identity evidence. Organizational personnel consult with the senior agency official for privacy and legal counsel regarding such requirements.
-
-## Control assessment-objective
-
-users who require accounts for logical access to systems based on appropriate identity assurance level requirements as specified in applicable standards and guidelines are identity proofed;
-user identities are resolved to a unique individual;
-identity evidence is collected;
-identity evidence is validated;
-identity evidence is verified.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ia-12_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ia-12_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ia-12_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-2.1.md b/docs/compliance/dist/system-security-plans/ato/ia-2.1.md
deleted file mode 100644
index 5c1f035b7..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-2.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-2.1 - \[catalog\] Multi-factor Authentication to Privileged Accounts
-
-## Control Statement
-
-Implement multi-factor authentication for access to privileged accounts.
-
-## Control guidance
-
-Multi-factor authentication requires the use of two or more different factors to achieve authentication. The authentication factors are defined as follows: something you know (e.g., a personal identification number [PIN]), something you have (e.g., a physical authenticator such as a cryptographic private key), or something you are (e.g., a biometric). Multi-factor authentication solutions that feature physical authenticators include hardware authenticators that provide time-based or challenge-response outputs and smart cards such as the U.S. Government Personal Identity Verification (PIV) card or the Department of Defense (DoD) Common Access Card (CAC). In addition to authenticating users at the system level (i.e., at logon), organizations may employ authentication mechanisms at the application level, at their discretion, to provide increased security. Regardless of the type of access (i.e., local, network, remote), privileged accounts are authenticated using multi-factor options appropriate for the level of risk. Organizations can add additional security measures, such as additional or more rigorous authentication mechanisms, for specific types of access.
-
-## Control assessment-objective
-
-multi-factor authentication is implemented for access to privileged accounts.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-2.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-2.12.md b/docs/compliance/dist/system-security-plans/ato/ia-2.12.md
deleted file mode 100644
index 456249e16..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-2.12.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-2.12 - \[catalog\] Acceptance of PIV Credentials
-
-## Control Statement
-
-Accept and electronically verify Personal Identity Verification-compliant credentials.
-
-## Control guidance
-
-Acceptance of Personal Identity Verification (PIV)-compliant credentials applies to organizations implementing logical access control and physical access control systems. PIV-compliant credentials are those credentials issued by federal agencies that conform to FIPS Publication 201 and supporting guidance documents. The adequacy and reliability of PIV card issuers are authorized using [SP 800-79-2](#10963761-58fc-4b20-b3d6-b44a54daba03) . Acceptance of PIV-compliant credentials includes derived PIV credentials, the use of which is addressed in [SP 800-166](#e8552d48-cf41-40aa-8b06-f45f7fb4706c) . The DOD Common Access Card (CAC) is an example of a PIV credential.
-
-## Control assessment-objective
-
-Personal Identity Verification-compliant credentials are accepted and electronically verified.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-2.12
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-2.2.md b/docs/compliance/dist/system-security-plans/ato/ia-2.2.md
deleted file mode 100644
index c23119de7..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-2.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-2.2 - \[catalog\] Multi-factor Authentication to Non-privileged Accounts
-
-## Control Statement
-
-Implement multi-factor authentication for access to non-privileged accounts.
-
-## Control guidance
-
-Multi-factor authentication requires the use of two or more different factors to achieve authentication. The authentication factors are defined as follows: something you know (e.g., a personal identification number [PIN]), something you have (e.g., a physical authenticator such as a cryptographic private key), or something you are (e.g., a biometric). Multi-factor authentication solutions that feature physical authenticators include hardware authenticators that provide time-based or challenge-response outputs and smart cards such as the U.S. Government Personal Identity Verification card or the DoD Common Access Card. In addition to authenticating users at the system level, organizations may also employ authentication mechanisms at the application level, at their discretion, to provide increased information security. Regardless of the type of access (i.e., local, network, remote), non-privileged accounts are authenticated using multi-factor options appropriate for the level of risk. Organizations can provide additional security measures, such as additional or more rigorous authentication mechanisms, for specific types of access.
-
-## Control assessment-objective
-
-multi-factor authentication for access to non-privileged accounts is implemented.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-2.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-2.8.md b/docs/compliance/dist/system-security-plans/ato/ia-2.8.md
deleted file mode 100644
index cd66543eb..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-2.8.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-2.8 - \[catalog\] Access to Accounts — Replay Resistant
-
-## Control Statement
-
-Implement replay-resistant authentication mechanisms for access to No value found.
-
-## Control guidance
-
-Authentication processes resist replay attacks if it is impractical to achieve successful authentications by replaying previous authentication messages. Replay-resistant techniques include protocols that use nonces or challenges such as time synchronous or cryptographic authenticators.
-
-## Control assessment-objective
-
-replay-resistant authentication mechanisms for access to No value found are implemented.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-2.8
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-2.md b/docs/compliance/dist/system-security-plans/ato/ia-2.md
deleted file mode 100644
index d1d810014..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-2.md
+++ /dev/null
@@ -1,36 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-2 - \[catalog\] Identification and Authentication (Organizational Users)
-
-## Control Statement
-
-Uniquely identify and authenticate organizational users and associate that unique identification with processes acting on behalf of those users.
-
-## Control guidance
-
-Organizations can satisfy the identification and authentication requirements by complying with the requirements in [HSPD 12](#f16e438e-7114-4144-bfe2-2dfcad8cb2d0) . Organizational users include employees or individuals who organizations consider to have an equivalent status to employees (e.g., contractors and guest researchers). Unique identification and authentication of users applies to all accesses other than those that are explicitly identified in [AC-14](#ac-14) and that occur through the authorized use of group authenticators without individual authentication. Since processes execute on behalf of groups and roles, organizations may require unique identification of individuals in group accounts or for detailed accountability of individual activity.
-
-Organizations employ passwords, physical authenticators, or biometrics to authenticate user identities or, in the case of multi-factor authentication, some combination thereof. Access to organizational systems is defined as either local access or network access. Local access is any access to organizational systems by users or processes acting on behalf of users, where access is obtained through direct connections without the use of networks. Network access is access to organizational systems by users (or processes acting on behalf of users) where access is obtained through network connections (i.e., nonlocal accesses). Remote access is a type of network access that involves communication through external networks. Internal networks include local area networks and wide area networks.
-
-The use of encrypted virtual private networks for network connections between organization-controlled endpoints and non-organization-controlled endpoints may be treated as internal networks with respect to protecting the confidentiality and integrity of information traversing the network. Identification and authentication requirements for non-organizational users are described in [IA-8](#ia-8).
-
-## Control assessment-objective
-
-organizational users are uniquely identified and authenticated;
-the unique identification of authenticated organizational users is associated with processes acting on behalf of those users.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-3.md b/docs/compliance/dist/system-security-plans/ato/ia-3.md
deleted file mode 100644
index e596ee591..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-3.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-3 - \[catalog\] Device Identification and Authentication
-
-## Control Statement
-
-Uniquely identify and authenticate devices and/or types of devices before establishing a No value found connection.
-
-## Control guidance
-
-Devices that require unique device-to-device identification and authentication are defined by type, device, or a combination of type and device. Organization-defined device types include devices that are not owned by the organization. Systems use shared known information (e.g., Media Access Control [MAC], Transmission Control Protocol/Internet Protocol [TCP/IP] addresses) for device identification or organizational authentication solutions (e.g., Institute of Electrical and Electronics Engineers (IEEE) 802.1x and Extensible Authentication Protocol [EAP], RADIUS server with EAP-Transport Layer Security [TLS] authentication, Kerberos) to identify and authenticate devices on local and wide area networks. Organizations determine the required strength of authentication mechanisms based on the security categories of systems and mission or business requirements. Because of the challenges of implementing device authentication on a large scale, organizations can restrict the application of the control to a limited number/type of devices based on mission or business needs.
-
-## Control assessment-objective
-
-devices and/or types of devices are uniquely identified and authenticated before establishing a No value found connection.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-4.4.md b/docs/compliance/dist/system-security-plans/ato/ia-4.4.md
deleted file mode 100644
index 4011fbf04..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-4.4.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-4.4 - \[catalog\] Identify User Status
-
-## Control Statement
-
-Manage individual identifiers by uniquely identifying each individual as characteristics.
-
-## Control guidance
-
-Characteristics that identify the status of individuals include contractors, foreign nationals, and non-organizational users. Identifying the status of individuals by these characteristics provides additional information about the people with whom organizational personnel are communicating. For example, it might be useful for a government employee to know that one of the individuals on an email message is a contractor.
-
-## Control assessment-objective
-
-individual identifiers are managed by uniquely identifying each individual as characteristics.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-4.4
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-4.md b/docs/compliance/dist/system-security-plans/ato/ia-4.md
deleted file mode 100644
index 1a910be3e..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-4.md
+++ /dev/null
@@ -1,66 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-4 - \[catalog\] Identifier Management
-
-## Control Statement
-
-Manage system identifiers by:
-
-- \[a\] Receiving authorization from personnel or roles to assign an individual, group, role, service, or device identifier;
-
-- \[b\] Selecting an identifier that identifies an individual, group, role, service, or device;
-
-- \[c\] Assigning the identifier to the intended individual, group, role, service, or device; and
-
-- \[d\] Preventing reuse of identifiers for time period.
-
-## Control guidance
-
-Common device identifiers include Media Access Control (MAC) addresses, Internet Protocol (IP) addresses, or device-unique token identifiers. The management of individual identifiers is not applicable to shared system accounts. Typically, individual identifiers are the usernames of the system accounts assigned to those individuals. In such instances, the account management activities of [AC-2](#ac-2) use account names provided by [IA-4](#ia-4) . Identifier management also addresses individual identifiers not necessarily associated with system accounts. Preventing the reuse of identifiers implies preventing the assignment of previously used individual, group, role, service, or device identifiers to different individuals, groups, roles, services, or devices.
-
-## Control assessment-objective
-
-system identifiers are managed by receiving authorization from personnel or roles to assign to an individual, group, role, or device identifier;
-system identifiers are managed by selecting an identifier that identifies an individual, group, role, service, or device;
-system identifiers are managed by assigning the identifier to the intended individual, group, role, service, or device;
-system identifiers are managed by preventing reuse of identifiers for time period.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ia-4_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ia-4_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ia-4_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ia-4_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-5.1.md b/docs/compliance/dist/system-security-plans/ato/ia-5.1.md
deleted file mode 100644
index 674006253..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-5.1.md
+++ /dev/null
@@ -1,102 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-5.1 - \[catalog\] Password-based Authentication
-
-## Control Statement
-
-For password-based authentication:
-
-- \[a\] Maintain a list of commonly-used, expected, or compromised passwords and update the list frequency and when organizational passwords are suspected to have been compromised directly or indirectly;
-
-- \[b\] Verify, when users create or update passwords, that the passwords are not found on the list of commonly-used, expected, or compromised passwords in IA-5(1)(a);
-
-- \[c\] Transmit passwords only over cryptographically-protected channels;
-
-- \[d\] Store passwords using an approved salted key derivation function, preferably using a keyed hash;
-
-- \[e\] Require immediate selection of a new password upon account recovery;
-
-- \[f\] Allow user selection of long passwords and passphrases, including spaces and all printable characters;
-
-- \[g\] Employ automated tools to assist the user in selecting strong password authenticators; and
-
-- \[h\] Enforce the following composition and complexity rules: composition and complexity rules.
-
-## Control guidance
-
-Password-based authentication applies to passwords regardless of whether they are used in single-factor or multi-factor authentication. Long passwords or passphrases are preferable over shorter passwords. Enforced composition rules provide marginal security benefits while decreasing usability. However, organizations may choose to establish certain rules for password generation (e.g., minimum character length for long passwords) under certain circumstances and can enforce this requirement in IA-5(1)(h). Account recovery can occur, for example, in situations when a password is forgotten. Cryptographically protected passwords include salted one-way cryptographic hashes of passwords. The list of commonly used, compromised, or expected passwords includes passwords obtained from previous breach corpuses, dictionary words, and repetitive or sequential characters. The list includes context-specific words, such as the name of the service, username, and derivatives thereof.
-
-## Control assessment-objective
-
-for password-based authentication, a list of commonly used, expected, or compromised passwords is maintained and updated frequency and when organizational passwords are suspected to have been compromised directly or indirectly;
-for password-based authentication when passwords are created or updated by users, the passwords are verified not to be found on the list of commonly used, expected, or compromised passwords in IA-05(01)(a);
-for password-based authentication, passwords are only transmitted over cryptographically protected channels;
-for password-based authentication, passwords are stored using an approved salted key derivation function, preferably using a keyed hash;
-for password-based authentication, immediate selection of a new password is required upon account recovery;
-for password-based authentication, user selection of long passwords and passphrases is allowed, including spaces and all printable characters;
-for password-based authentication, automated tools are employed to assist the user in selecting strong password authenticators;
-for password-based authentication, composition and complexity rules are enforced.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item ia-5.1_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item ia-5.1_smt.b
-
-______________________________________________________________________
-
-## Implementation (c)
-
-Add control implementation description here for item ia-5.1_smt.c
-
-______________________________________________________________________
-
-## Implementation (d)
-
-Add control implementation description here for item ia-5.1_smt.d
-
-______________________________________________________________________
-
-## Implementation (e)
-
-Add control implementation description here for item ia-5.1_smt.e
-
-______________________________________________________________________
-
-## Implementation (f)
-
-Add control implementation description here for item ia-5.1_smt.f
-
-______________________________________________________________________
-
-## Implementation (g)
-
-Add control implementation description here for item ia-5.1_smt.g
-
-______________________________________________________________________
-
-## Implementation (h)
-
-Add control implementation description here for item ia-5.1_smt.h
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-5.2.md b/docs/compliance/dist/system-security-plans/ato/ia-5.2.md
deleted file mode 100644
index 5a45e71f0..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-5.2.md
+++ /dev/null
@@ -1,54 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-5.2 - \[catalog\] Public Key-based Authentication
-
-## Control Statement
-
-- \[a\] For public key-based authentication:
-
-  - \[1\] Enforce authorized access to the corresponding private key; and
-  - \[2\] Map the authenticated identity to the account of the individual or group; and
-
-- \[b\] When public key infrastructure (PKI) is used:
-
-  - \[1\] Validate certificates by constructing and verifying a certification path to an accepted trust anchor, including checking certificate status information; and
-  - \[2\] Implement a local cache of revocation data to support path discovery and validation.
-
-## Control guidance
-
-Public key cryptography is a valid authentication mechanism for individuals, machines, and devices. For PKI solutions, status information for certification paths includes certificate revocation lists or certificate status protocol responses. For PIV cards, certificate validation involves the construction and verification of a certification path to the Common Policy Root trust anchor, which includes certificate policy processing. Implementing a local cache of revocation data to support path discovery and validation also supports system availability in situations where organizations are unable to access revocation information via the network.
-
-## Control assessment-objective
-
-authorized access to the corresponding private key is enforced for public key-based authentication;
-the authenticated identity is mapped to the account of the individual or group for public key-based authentication;
-when public key infrastructure (PKI) is used, certificates are validated by constructing and verifying a certification path to an accepted trust anchor, including checking certificate status information;
-when public key infrastructure (PKI) is used, a local cache of revocation data is implemented to support path discovery and validation.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item ia-5.2_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item ia-5.2_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-5.6.md b/docs/compliance/dist/system-security-plans/ato/ia-5.6.md
deleted file mode 100644
index 930fa2dee..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-5.6.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-5.6 - \[catalog\] Protection of Authenticators
-
-## Control Statement
-
-Protect authenticators commensurate with the security category of the information to which use of the authenticator permits access.
-
-## Control guidance
-
-For systems that contain multiple security categories of information without reliable physical or logical separation between categories, authenticators used to grant access to the systems are protected commensurate with the highest security category of information on the systems. Security categories of information are determined as part of the security categorization process.
-
-## Control assessment-objective
-
-authenticators are protected commensurate with the security category of the information to which use of the authenticator permits access.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-5.6
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-5.md b/docs/compliance/dist/system-security-plans/ato/ia-5.md
deleted file mode 100644
index 784e82e31..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-5.md
+++ /dev/null
@@ -1,114 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-5 - \[catalog\] Authenticator Management
-
-## Control Statement
-
-Manage system authenticators by:
-
-- \[a\] Verifying, as part of the initial authenticator distribution, the identity of the individual, group, role, service, or device receiving the authenticator;
-
-- \[b\] Establishing initial authenticator content for any authenticators issued by the organization;
-
-- \[c\] Ensuring that authenticators have sufficient strength of mechanism for their intended use;
-
-- \[d\] Establishing and implementing administrative procedures for initial authenticator distribution, for lost or compromised or damaged authenticators, and for revoking authenticators;
-
-- \[e\] Changing default authenticators prior to first use;
-
-- \[f\] Changing or refreshing authenticators time period by authenticator type or when events occur;
-
-- \[g\] Protecting authenticator content from unauthorized disclosure and modification;
-
-- \[h\] Requiring individuals to take, and having devices implement, specific controls to protect authenticators; and
-
-- \[i\] Changing authenticators for group or role accounts when membership to those accounts changes.
-
-## Control guidance
-
-Authenticators include passwords, cryptographic devices, biometrics, certificates, one-time password devices, and ID badges. Device authenticators include certificates and passwords. Initial authenticator content is the actual content of the authenticator (e.g., the initial password). In contrast, the requirements for authenticator content contain specific criteria or characteristics (e.g., minimum password length). Developers may deliver system components with factory default authentication credentials (i.e., passwords) to allow for initial installation and configuration. Default authentication credentials are often well known, easily discoverable, and present a significant risk. The requirement to protect individual authenticators may be implemented via control [PL-4](#pl-4) or [PS-6](#ps-6) for authenticators in the possession of individuals and by controls [AC-3](#ac-3), [AC-6](#ac-6) , and [SC-28](#sc-28) for authenticators stored in organizational systems, including passwords stored in hashed or encrypted formats or files containing encrypted or hashed passwords accessible with administrator privileges.
-
-Systems support authenticator management by organization-defined settings and restrictions for various authenticator characteristics (e.g., minimum password length, validation time window for time synchronous one-time tokens, and number of allowed rejections during the verification stage of biometric authentication). Actions can be taken to safeguard individual authenticators, including maintaining possession of authenticators, not sharing authenticators with others, and immediately reporting lost, stolen, or compromised authenticators. Authenticator management includes issuing and revoking authenticators for temporary access when no longer needed.
-
-## Control assessment-objective
-
-system authenticators are managed through the verification of the identity of the individual, group, role, service, or device receiving the authenticator as part of the initial authenticator distribution;
-system authenticators are managed through the establishment of initial authenticator content for any authenticators issued by the organization;
-system authenticators are managed to ensure that authenticators have sufficient strength of mechanism for their intended use;
-system authenticators are managed through the establishment and implementation of administrative procedures for initial authenticator distribution; lost, compromised, or damaged authenticators; and the revocation of authenticators;
-system authenticators are managed through the change of default authenticators prior to first use;
-system authenticators are managed through the change or refreshment of authenticators time period by authenticator type or when events occur;
-system authenticators are managed through the protection of authenticator content from unauthorized disclosure and modification;
-system authenticators are managed through the requirement for individuals to take specific controls to protect authenticators;
-system authenticators are managed through the requirement for devices to implement specific controls to protect authenticators;
-system authenticators are managed through the change of authenticators for group or role accounts when membership to those accounts changes.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ia-5_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ia-5_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ia-5_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ia-5_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item ia-5_smt.e
-
-______________________________________________________________________
-
-## Implementation f.
-
-Add control implementation description here for item ia-5_smt.f
-
-______________________________________________________________________
-
-## Implementation g.
-
-Add control implementation description here for item ia-5_smt.g
-
-______________________________________________________________________
-
-## Implementation h.
-
-Add control implementation description here for item ia-5_smt.h
-
-______________________________________________________________________
-
-## Implementation i.
-
-Add control implementation description here for item ia-5_smt.i
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-6.md b/docs/compliance/dist/system-security-plans/ato/ia-6.md
deleted file mode 100644
index a3f5e8780..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-6.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-6 - \[catalog\] Authentication Feedback
-
-## Control Statement
-
-Obscure feedback of authentication information during the authentication process to protect the information from possible exploitation and use by unauthorized individuals.
-
-## Control guidance
-
-Authentication feedback from systems does not provide information that would allow unauthorized individuals to compromise authentication mechanisms. For some types of systems, such as desktops or notebooks with relatively large monitors, the threat (referred to as shoulder surfing) may be significant. For other types of systems, such as mobile devices with small displays, the threat may be less significant and is balanced against the increased likelihood of typographic input errors due to small keyboards. Thus, the means for obscuring authentication feedback is selected accordingly. Obscuring authentication feedback includes displaying asterisks when users type passwords into input devices or displaying feedback for a very limited time before obscuring it.
-
-## Control assessment-objective
-
-the feedback of authentication information is obscured during the authentication process to protect the information from possible exploitation and use by unauthorized individuals.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-6
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-7.md b/docs/compliance/dist/system-security-plans/ato/ia-7.md
deleted file mode 100644
index 30cb866c3..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-7.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-7 - \[catalog\] Cryptographic Module Authentication
-
-## Control Statement
-
-Implement mechanisms for authentication to a cryptographic module that meet the requirements of applicable laws, executive orders, directives, policies, regulations, standards, and guidelines for such authentication.
-
-## Control guidance
-
-Authentication mechanisms may be required within a cryptographic module to authenticate an operator accessing the module and to verify that the operator is authorized to assume the requested role and perform services within that role.
-
-## Control assessment-objective
-
-mechanisms for authentication to a cryptographic module are implemented that meet the requirements of applicable laws, executive orders, directives, policies, regulations, standards, and guidelines for such authentication.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-7
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-8.1.md b/docs/compliance/dist/system-security-plans/ato/ia-8.1.md
deleted file mode 100644
index 1e6a7cfd9..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-8.1.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-8.1 - \[catalog\] Acceptance of PIV Credentials from Other Agencies
-
-## Control Statement
-
-Accept and electronically verify Personal Identity Verification-compliant credentials from other federal agencies.
-
-## Control guidance
-
-Acceptance of Personal Identity Verification (PIV) credentials from other federal agencies applies to both logical and physical access control systems. PIV credentials are those credentials issued by federal agencies that conform to FIPS Publication 201 and supporting guidelines. The adequacy and reliability of PIV card issuers are addressed and authorized using [SP 800-79-2](#10963761-58fc-4b20-b3d6-b44a54daba03).
-
-## Control assessment-objective
-
-Personal Identity Verification-compliant credentials from other federal agencies are accepted;
-Personal Identity Verification-compliant credentials from other federal agencies are electronically verified.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-8.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-8.2.md b/docs/compliance/dist/system-security-plans/ato/ia-8.2.md
deleted file mode 100644
index c44c7633a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-8.2.md
+++ /dev/null
@@ -1,47 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-8.2 - \[catalog\] Acceptance of External Authenticators
-
-## Control Statement
-
-- \[a\] Accept only external authenticators that are NIST-compliant; and
-
-- \[b\] Document and maintain a list of accepted external authenticators.
-
-## Control guidance
-
-Acceptance of only NIST-compliant external authenticators applies to organizational systems that are accessible to the public (e.g., public-facing websites). External authenticators are issued by nonfederal government entities and are compliant with [SP 800-63B](#e59c5a7c-8b1f-49ca-8de0-6ee0882180ce) . Approved external authenticators meet or exceed the minimum Federal Government-wide technical, security, privacy, and organizational maturity requirements. Meeting or exceeding Federal requirements allows Federal Government relying parties to trust external authenticators in connection with an authentication transaction at a specified authenticator assurance level.
-
-## Control assessment-objective
-
-only external authenticators that are NIST-compliant are accepted;
-a list of accepted external authenticators is documented;
-a list of accepted external authenticators is maintained.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item ia-8.2_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item ia-8.2_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-8.4.md b/docs/compliance/dist/system-security-plans/ato/ia-8.4.md
deleted file mode 100644
index bc2f5e67c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-8.4.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-8.4 - \[catalog\] Use of Defined Profiles
-
-## Control Statement
-
-Conform to the following profiles for identity management identity management profiles.
-
-## Control guidance
-
-Organizations define profiles for identity management based on open identity management standards. To ensure that open identity management standards are viable, robust, reliable, sustainable, and interoperable as documented, the Federal Government assesses and scopes the standards and technology implementations against applicable laws, executive orders, directives, policies, regulations, standards, and guidelines.
-
-## Control assessment-objective
-
-there is conformance with identity management profiles for identity management.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-8.4
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ia-8.md b/docs/compliance/dist/system-security-plans/ato/ia-8.md
deleted file mode 100644
index 070ea32f0..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ia-8.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ia-8 - \[catalog\] Identification and Authentication (Non-organizational Users)
-
-## Control Statement
-
-Uniquely identify and authenticate non-organizational users or processes acting on behalf of non-organizational users.
-
-## Control guidance
-
-Non-organizational users include system users other than organizational users explicitly covered by [IA-2](#ia-2) . Non-organizational users are uniquely identified and authenticated for accesses other than those explicitly identified and documented in [AC-14](#ac-14) . Identification and authentication of non-organizational users accessing federal systems may be required to protect federal, proprietary, or privacy-related information (with exceptions noted for national security systems). Organizations consider many factors—including security, privacy, scalability, and practicality—when balancing the need to ensure ease of use for access to federal information and systems with the need to protect and adequately mitigate risk.
-
-## Control assessment-objective
-
-non-organizational users or processes acting on behalf of non-organizational users are uniquely identified and authenticated.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ia-8
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-1.md b/docs/compliance/dist/system-security-plans/ato/ir-1.md
deleted file mode 100644
index 47729c8f3..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found incident response policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the incident response policy and the associated incident response controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the incident response policy and procedures; and
-
-- \[c\] Review and update the current incident response:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Incident response policy and procedures address the controls in the IR family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of incident response policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to incident response policy and procedures include assessment or audit findings, security incidents or breaches, or changes in laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-an incident response policy is developed and documented;
-the incident response policy is disseminated to personnel or roles;
-incident response procedures to facilitate the implementation of the incident response policy and associated incident response controls are developed and documented;
-the incident response procedures are disseminated to personnel or roles;
-the No value found incident response policy addresses purpose;
-the No value found incident response policy addresses scope;
-the No value found incident response policy addresses roles;
-the No value found incident response policy addresses responsibilities;
-the No value found incident response policy addresses management commitment;
-the No value found incident response policy addresses coordination among organizational entities;
-the No value found incident response policy addresses compliance;
-the No value found incident response policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the incident response policy and procedures;
-the current incident response policy is reviewed and updated frequency;
-the current incident response policy is reviewed and updated following events;
-the current incident response procedures are reviewed and updated frequency;
-the current incident response procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ir-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ir-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ir-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-2.md b/docs/compliance/dist/system-security-plans/ato/ir-2.md
deleted file mode 100644
index a36745423..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-2.md
+++ /dev/null
@@ -1,53 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-2 - \[catalog\] Incident Response Training
-
-## Control Statement
-
-- \[a\] Provide incident response training to system users consistent with assigned roles and responsibilities:
-
-  - \[1\] Within time period of assuming an incident response role or responsibility or acquiring system access;
-  - \[2\] When required by system changes; and
-  - \[3\]  frequency thereafter; and
-
-- \[b\] Review and update incident response training content frequency and following events.
-
-## Control guidance
-
-Incident response training is associated with the assigned roles and responsibilities of organizational personnel to ensure that the appropriate content and level of detail are included in such training. For example, users may only need to know who to call or how to recognize an incident; system administrators may require additional training on how to handle incidents; and incident responders may receive more specific training on forensics, data collection techniques, reporting, system recovery, and system restoration. Incident response training includes user training in identifying and reporting suspicious activities from external and internal sources. Incident response training for users may be provided as part of [AT-2](#at-2) or [AT-3](#at-3) . Events that may precipitate an update to incident response training content include, but are not limited to, incident response plan testing or response to an actual incident (lessons learned), assessment or audit findings, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.
-
-## Control assessment-objective
-
-incident response training is provided to system users consistent with assigned roles and responsibilities within time period of assuming an incident response role or responsibility or acquiring system access;
-incident response training is provided to system users consistent with assigned roles and responsibilities when required by system changes;
-incident response training is provided to system users consistent with assigned roles and responsibilities frequency thereafter;
-incident response training content is reviewed and updated frequency;
-incident response training content is reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ir-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ir-2_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-3.2.md b/docs/compliance/dist/system-security-plans/ato/ir-3.2.md
deleted file mode 100644
index 6a58d34d4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-3.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-3.2 - \[catalog\] Coordination with Related Plans
-
-## Control Statement
-
-Coordinate incident response testing with organizational elements responsible for related plans.
-
-## Control guidance
-
-Organizational plans related to incident response testing include business continuity plans, disaster recovery plans, continuity of operations plans, contingency plans, crisis communications plans, critical infrastructure plans, and occupant emergency plans.
-
-## Control assessment-objective
-
-incident response testing is coordinated with organizational elements responsible for related plans.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ir-3.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-3.md b/docs/compliance/dist/system-security-plans/ato/ir-3.md
deleted file mode 100644
index 740a83468..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-3.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-3 - \[catalog\] Incident Response Testing
-
-## Control Statement
-
-Test the effectiveness of the incident response capability for the system frequency using the following tests: tests.
-
-## Control guidance
-
-Organizations test incident response capabilities to determine their effectiveness and identify potential weaknesses or deficiencies. Incident response testing includes the use of checklists, walk-through or tabletop exercises, and simulations (parallel or full interrupt). Incident response testing can include a determination of the effects on organizational operations and assets and individuals due to incident response. The use of qualitative and quantitative data aids in determining the effectiveness of incident response processes.
-
-## Control assessment-objective
-
-the effectiveness of the incident response capability for the system is tested frequency using tests.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ir-3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-4.1.md b/docs/compliance/dist/system-security-plans/ato/ir-4.1.md
deleted file mode 100644
index abf3476bc..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-4.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-4.1 - \[catalog\] Automated Incident Handling Processes
-
-## Control Statement
-
-Support the incident handling process using automated mechanisms.
-
-## Control guidance
-
-Automated mechanisms that support incident handling processes include online incident management systems and tools that support the collection of live response data, full network packet capture, and forensic analysis.
-
-## Control assessment-objective
-
-the incident handling process is supported using automated mechanisms.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ir-4.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-4.md b/docs/compliance/dist/system-security-plans/ato/ir-4.md
deleted file mode 100644
index 091a4a979..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-4.md
+++ /dev/null
@@ -1,73 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-4 - \[catalog\] Incident Handling
-
-## Control Statement
-
-- \[a\] Implement an incident handling capability for incidents that is consistent with the incident response plan and includes preparation, detection and analysis, containment, eradication, and recovery;
-
-- \[b\] Coordinate incident handling activities with contingency planning activities;
-
-- \[c\] Incorporate lessons learned from ongoing incident handling activities into incident response procedures, training, and testing, and implement the resulting changes accordingly; and
-
-- \[d\] Ensure the rigor, intensity, scope, and results of incident handling activities are comparable and predictable across the organization.
-
-## Control guidance
-
-Organizations recognize that incident response capabilities are dependent on the capabilities of organizational systems and the mission and business processes being supported by those systems. Organizations consider incident response as part of the definition, design, and development of mission and business processes and systems. Incident-related information can be obtained from a variety of sources, including audit monitoring, physical access monitoring, and network monitoring; user or administrator reports; and reported supply chain events. An effective incident handling capability includes coordination among many organizational entities (e.g., mission or business owners, system owners, authorizing officials, human resources offices, physical security offices, personnel security offices, legal departments, risk executive [function], operations personnel, procurement offices). Suspected security incidents include the receipt of suspicious email communications that can contain malicious code. Suspected supply chain incidents include the insertion of counterfeit hardware or malicious code into organizational systems or system components. For federal agencies, an incident that involves personally identifiable information is considered a breach. A breach results in unauthorized disclosure, the loss of control, unauthorized acquisition, compromise, or a similar occurrence where a person other than an authorized user accesses or potentially accesses personally identifiable information or an authorized user accesses or potentially accesses such information for other than authorized purposes.
-
-## Control assessment-objective
-
-an incident handling capability for incidents is implemented that is consistent with the incident response plan;
-the incident handling capability for incidents includes preparation;
-the incident handling capability for incidents includes detection and analysis;
-the incident handling capability for incidents includes containment;
-the incident handling capability for incidents includes eradication;
-the incident handling capability for incidents includes recovery;
-incident handling activities are coordinated with contingency planning activities;
-lessons learned from ongoing incident handling activities are incorporated into incident response procedures, training, and testing;
-the changes resulting from the incorporated lessons learned are implemented accordingly;
-the rigor of incident handling activities is comparable and predictable across the organization;
-the intensity of incident handling activities is comparable and predictable across the organization;
-the scope of incident handling activities is comparable and predictable across the organization;
-the results of incident handling activities are comparable and predictable across the organization.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ir-4_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ir-4_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ir-4_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ir-4_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-5.md b/docs/compliance/dist/system-security-plans/ato/ir-5.md
deleted file mode 100644
index fd8660418..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-5.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-5 - \[catalog\] Incident Monitoring
-
-## Control Statement
-
-Track and document incidents.
-
-## Control guidance
-
-Documenting incidents includes maintaining records about each incident, the status of the incident, and other pertinent information necessary for forensics as well as evaluating incident details, trends, and handling. Incident information can be obtained from a variety of sources, including network monitoring, incident reports, incident response teams, user complaints, supply chain partners, audit monitoring, physical access monitoring, and user and administrator reports. [IR-4](#ir-4) provides information on the types of incidents that are appropriate for monitoring.
-
-## Control assessment-objective
-
-incidents are tracked;
-incidents are documented.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ir-5
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-6.1.md b/docs/compliance/dist/system-security-plans/ato/ir-6.1.md
deleted file mode 100644
index 1c97e2d8b..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-6.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-6.1 - \[catalog\] Automated Reporting
-
-## Control Statement
-
-Report incidents using automated mechanisms.
-
-## Control guidance
-
-The recipients of incident reports are specified in [IR-6b](#ir-6_smt.b) . Automated reporting mechanisms include email, posting on websites (with automatic updates), and automated incident response tools and programs.
-
-## Control assessment-objective
-
-incidents are reported using automated mechanisms.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ir-6.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-6.3.md b/docs/compliance/dist/system-security-plans/ato/ir-6.3.md
deleted file mode 100644
index 4a3e7dced..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-6.3.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-6.3 - \[catalog\] Supply Chain Coordination
-
-## Control Statement
-
-Provide incident information to the provider of the product or service and other organizations involved in the supply chain or supply chain governance for systems or system components related to the incident.
-
-## Control guidance
-
-Organizations involved in supply chain activities include product developers, system integrators, manufacturers, packagers, assemblers, distributors, vendors, and resellers. Entities that provide supply chain governance include the Federal Acquisition Security Council (FASC). Supply chain incidents include compromises or breaches that involve information technology products, system components, development processes or personnel, distribution processes, or warehousing facilities. Organizations determine the appropriate information to share and consider the value gained from informing external organizations about supply chain incidents, including the ability to improve processes or to identify the root cause of an incident.
-
-## Control assessment-objective
-
-incident information is provided to the provider of the product or service and other organizations involved in the supply chain or supply chain governance for systems or system components related to the incident.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ir-6.3
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-6.md b/docs/compliance/dist/system-security-plans/ato/ir-6.md
deleted file mode 100644
index 810c60030..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-6.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-6 - \[catalog\] Incident Reporting
-
-## Control Statement
-
-- \[a\] Require personnel to report suspected incidents to the organizational incident response capability within time period ; and
-
-- \[b\] Report incident information to authorities.
-
-## Control guidance
-
-The types of incidents reported, the content and timeliness of the reports, and the designated reporting authorities reflect applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Incident information can inform risk assessments, control effectiveness assessments, security requirements for acquisitions, and selection criteria for technology products.
-
-## Control assessment-objective
-
-personnel is/are required to report suspected incidents to the organizational incident response capability within time period;
-incident information is reported to authorities.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ir-6_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ir-6_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-7.1.md b/docs/compliance/dist/system-security-plans/ato/ir-7.1.md
deleted file mode 100644
index c8a4676ff..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-7.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-7.1 - \[catalog\] Automation Support for Availability of Information and Support
-
-## Control Statement
-
-Increase the availability of incident response information and support using automated mechanisms.
-
-## Control guidance
-
-Automated mechanisms can provide a push or pull capability for users to obtain incident response assistance. For example, individuals may have access to a website to query the assistance capability, or the assistance capability can proactively send incident response information to users (general distribution or targeted) as part of increasing understanding of current response capabilities and support.
-
-## Control assessment-objective
-
-the availability of incident response information and support is increased using automated mechanisms.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ir-7.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-7.md b/docs/compliance/dist/system-security-plans/ato/ir-7.md
deleted file mode 100644
index 19a9ab7c1..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-7.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-7 - \[catalog\] Incident Response Assistance
-
-## Control Statement
-
-Provide an incident response support resource, integral to the organizational incident response capability, that offers advice and assistance to users of the system for the handling and reporting of incidents.
-
-## Control guidance
-
-Incident response support resources provided by organizations include help desks, assistance groups, automated ticketing systems to open and track incident response tickets, and access to forensics services or consumer redress services, when required.
-
-## Control assessment-objective
-
-an incident response support resource, integral to the organizational incident response capability, is provided;
-the incident response support resource offers advice and assistance to users of the system for the response and reporting of incidents.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ir-7
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ir-8.md b/docs/compliance/dist/system-security-plans/ato/ir-8.md
deleted file mode 100644
index fca22c0f3..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ir-8.md
+++ /dev/null
@@ -1,96 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ir-8 - \[catalog\] Incident Response Plan
-
-## Control Statement
-
-- \[a\] Develop an incident response plan that:
-
-  - \[1\] Provides the organization with a roadmap for implementing its incident response capability;
-  - \[2\] Describes the structure and organization of the incident response capability;
-  - \[3\] Provides a high-level approach for how the incident response capability fits into the overall organization;
-  - \[4\] Meets the unique requirements of the organization, which relate to mission, size, structure, and functions;
-  - \[5\] Defines reportable incidents;
-  - \[6\] Provides metrics for measuring the incident response capability within the organization;
-  - \[7\] Defines the resources and management support needed to effectively maintain and mature an incident response capability;
-  - \[8\] Addresses the sharing of incident information;
-  - \[9\] Is reviewed and approved by personnel or roles frequency ; and
-  - \[10\] Explicitly designates responsibility for incident response to entities, personnel, or roles.
-
-- \[b\] Distribute copies of the incident response plan to incident response personnel;
-
-- \[c\] Update the incident response plan to address system and organizational changes or problems encountered during plan implementation, execution, or testing;
-
-- \[d\] Communicate incident response plan changes to organization-defined incident response personnel (identified by name and/or by role) and organizational elements ; and
-
-- \[e\] Protect the incident response plan from unauthorized disclosure and modification.
-
-## Control guidance
-
-It is important that organizations develop and implement a coordinated approach to incident response. Organizational mission and business functions determine the structure of incident response capabilities. As part of the incident response capabilities, organizations consider the coordination and sharing of information with external organizations, including external service providers and other organizations involved in the supply chain. For incidents involving personally identifiable information (i.e., breaches), include a process to determine whether notice to oversight organizations or affected individuals is appropriate and provide that notice accordingly.
-
-## Control assessment-objective
-
-an incident response plan is developed that provides the organization with a roadmap for implementing its incident response capability;
-an incident response plan is developed that describes the structure and organization of the incident response capability;
-an incident response plan is developed that provides a high-level approach for how the incident response capability fits into the overall organization;
-an incident response plan is developed that meets the unique requirements of the organization with regard to mission, size, structure, and functions;
-an incident response plan is developed that defines reportable incidents;
-an incident response plan is developed that provides metrics for measuring the incident response capability within the organization;
-an incident response plan is developed that defines the resources and management support needed to effectively maintain and mature an incident response capability;
-an incident response plan is developed that addresses the sharing of incident information;
-an incident response plan is developed that is reviewed and approved by personnel or roles frequency;
-an incident response plan is developed that explicitly designates responsibility for incident response to entities, personnel, or roles.
-copies of the incident response plan are distributed to incident response personnel;
-copies of the incident response plan are distributed to organizational elements;
-the incident response plan is updated to address system and organizational changes or problems encountered during plan implementation, execution, or testing;
-incident response plan changes are communicated to incident response personnel;
-incident response plan changes are communicated to organizational elements;
-the incident response plan is protected from unauthorized disclosure;
-the incident response plan is protected from unauthorized modification.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ir-8_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ir-8_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ir-8_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ir-8_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item ir-8_smt.e
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ma-1.md b/docs/compliance/dist/system-security-plans/ato/ma-1.md
deleted file mode 100644
index 094f4f39c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ma-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ma-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found maintenance policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the maintenance policy and the associated maintenance controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the maintenance policy and procedures; and
-
-- \[c\] Review and update the current maintenance:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Maintenance policy and procedures address the controls in the MA family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of maintenance policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to maintenance policy and procedures assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a maintenance policy is developed and documented;
-the maintenance policy is disseminated to personnel or roles;
-maintenance procedures to facilitate the implementation of the maintenance policy and associated maintenance controls are developed and documented;
-the maintenance procedures are disseminated to personnel or roles;
-the No value found maintenance policy addresses purpose;
-the No value found maintenance policy addresses scope;
-the No value found maintenance policy addresses roles;
-the No value found maintenance policy addresses responsibilities;
-the No value found maintenance policy addresses management commitment;
-the No value found maintenance policy addresses coordination among organizational entities;
-the No value found maintenance policy addresses compliance;
-the No value found maintenance policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the maintenance policy and procedures;
-the current maintenance policy is reviewed and updated frequency;
-the current maintenance policy is reviewed and updated following events;
-the current maintenance procedures are reviewed and updated frequency;
-the current maintenance procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ma-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ma-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ma-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ma-2.md b/docs/compliance/dist/system-security-plans/ato/ma-2.md
deleted file mode 100644
index 42dfaf5b9..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ma-2.md
+++ /dev/null
@@ -1,82 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ma-2 - \[catalog\] Controlled Maintenance
-
-## Control Statement
-
-- \[a\] Schedule, document, and review records of maintenance, repair, and replacement on system components in accordance with manufacturer or vendor specifications and/or organizational requirements;
-
-- \[b\] Approve and monitor all maintenance activities, whether performed on site or remotely and whether the system or system components are serviced on site or removed to another location;
-
-- \[c\] Require that personnel or roles explicitly approve the removal of the system or system components from organizational facilities for off-site maintenance, repair, or replacement;
-
-- \[d\] Sanitize equipment to remove the following information from associated media prior to removal from organizational facilities for off-site maintenance, repair, or replacement: information;
-
-- \[e\] Check all potentially impacted controls to verify that the controls are still functioning properly following maintenance, repair, or replacement actions; and
-
-- \[f\] Include the following information in organizational maintenance records: information.
-
-## Control guidance
-
-Controlling system maintenance addresses the information security aspects of the system maintenance program and applies to all types of maintenance to system components conducted by local or nonlocal entities. Maintenance includes peripherals such as scanners, copiers, and printers. Information necessary for creating effective maintenance records includes the date and time of maintenance, a description of the maintenance performed, names of the individuals or group performing the maintenance, name of the escort, and system components or equipment that are removed or replaced. Organizations consider supply chain-related risks associated with replacement components for systems.
-
-## Control assessment-objective
-
-maintenance, repair, and replacement of system components are scheduled in accordance with manufacturer or vendor specifications and/or organizational requirements;
-maintenance, repair, and replacement of system components are documented in accordance with manufacturer or vendor specifications and/or organizational requirements;
-records of maintenance, repair, and replacement of system components are reviewed in accordance with manufacturer or vendor specifications and/or organizational requirements;
-all maintenance activities, whether performed on site or remotely and whether the system or system components are serviced on site or removed to another location, are approved;
-all maintenance activities, whether performed on site or remotely and whether the system or system components are serviced on site or removed to another location, are monitored;
-personnel or roles is/are required to explicitly approve the removal of the system or system components from organizational facilities for off-site maintenance, repair, or replacement;
-equipment is sanitized to remove information from associated media prior to removal from organizational facilities for off-site maintenance, repair, or replacement;
-all potentially impacted controls are checked to verify that the controls are still functioning properly following maintenance, repair, or replacement actions;
-information is included in organizational maintenance records.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation c.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation d.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation e.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation f.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ma-3.1.md b/docs/compliance/dist/system-security-plans/ato/ma-3.1.md
deleted file mode 100644
index 58e253985..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ma-3.1.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ma-3.1 - \[catalog\] Inspect Tools
-
-## Control Statement
-
-Inspect the maintenance tools used by maintenance personnel for improper or unauthorized modifications.
-
-## Control guidance
-
-Maintenance tools can be directly brought into a facility by maintenance personnel or downloaded from a vendor’s website. If, upon inspection of the maintenance tools, organizations determine that the tools have been modified in an improper manner or the tools contain malicious code, the incident is handled consistent with organizational policies and procedures for incident handling.
-
-## Control assessment-objective
-
-maintenance tools used by maintenance personnel are inspected for improper or unauthorized modifications.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ma-3.2.md b/docs/compliance/dist/system-security-plans/ato/ma-3.2.md
deleted file mode 100644
index 6c0b9e20b..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ma-3.2.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ma-3.2 - \[catalog\] Inspect Media
-
-## Control Statement
-
-Check media containing diagnostic and test programs for malicious code before the media are used in the system.
-
-## Control guidance
-
-If, upon inspection of media containing maintenance, diagnostic, and test programs, organizations determine that the media contains malicious code, the incident is handled consistent with organizational incident handling policies and procedures.
-
-## Control assessment-objective
-
-media containing diagnostic and test programs are checked for malicious code before the media are used in the system.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ma-3.3.md b/docs/compliance/dist/system-security-plans/ato/ma-3.3.md
deleted file mode 100644
index 18976dcdb..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ma-3.3.md
+++ /dev/null
@@ -1,63 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ma-3.3 - \[catalog\] Prevent Unauthorized Removal
-
-## Control Statement
-
-Prevent the removal of maintenance equipment containing organizational information by:
-
-- \[a\] Verifying that there is no organizational information contained on the equipment;
-
-- \[b\] Sanitizing or destroying the equipment;
-
-- \[c\] Retaining the equipment within the facility; or
-
-- \[d\] Obtaining an exemption from personnel or roles explicitly authorizing removal of the equipment from the facility.
-
-## Control guidance
-
-Organizational information includes all information owned by organizations and any information provided to organizations for which the organizations serve as information stewards.
-
-## Control assessment-objective
-
-the removal of maintenance equipment containing organizational information is prevented by verifying that there is no organizational information contained on the equipment; or
-the removal of maintenance equipment containing organizational information is prevented by sanitizing or destroying the equipment; or
-the removal of maintenance equipment containing organizational information is prevented by retaining the equipment within the facility; or
-the removal of maintenance equipment containing organizational information is prevented by obtaining an exemption from personnel or roles explicitly authorizing removal of the equipment from the facility.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation (c)
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation (d)
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ma-3.md b/docs/compliance/dist/system-security-plans/ato/ma-3.md
deleted file mode 100644
index 1e7fe5840..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ma-3.md
+++ /dev/null
@@ -1,45 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ma-3 - \[catalog\] Maintenance Tools
-
-## Control Statement
-
-- \[a\] Approve, control, and monitor the use of system maintenance tools; and
-
-- \[b\] Review previously approved system maintenance tools frequency.
-
-## Control guidance
-
-Approving, controlling, monitoring, and reviewing maintenance tools address security-related issues associated with maintenance tools that are not within system authorization boundaries and are used specifically for diagnostic and repair actions on organizational systems. Organizations have flexibility in determining roles for the approval of maintenance tools and how that approval is documented. A periodic review of maintenance tools facilitates the withdrawal of approval for outdated, unsupported, irrelevant, or no-longer-used tools. Maintenance tools can include hardware, software, and firmware items and may be pre-installed, brought in with maintenance personnel on media, cloud-based, or downloaded from a website. Such tools can be vehicles for transporting malicious code, either intentionally or unintentionally, into a facility and subsequently into systems. Maintenance tools can include hardware and software diagnostic test equipment and packet sniffers. The hardware and software components that support maintenance and are a part of the system (including the software implementing utilities such as "ping," "ls," "ipconfig," or the hardware and software implementing the monitoring port of an Ethernet switch) are not addressed by maintenance tools.
-
-## Control assessment-objective
-
-the use of system maintenance tools is approved;
-the use of system maintenance tools is controlled;
-the use of system maintenance tools is monitored;
-previously approved system maintenance tools are reviewed frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ma-4.md b/docs/compliance/dist/system-security-plans/ato/ma-4.md
deleted file mode 100644
index de8ba499e..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ma-4.md
+++ /dev/null
@@ -1,73 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ma-4 - \[catalog\] Nonlocal Maintenance
-
-## Control Statement
-
-- \[a\] Approve and monitor nonlocal maintenance and diagnostic activities;
-
-- \[b\] Allow the use of nonlocal maintenance and diagnostic tools only as consistent with organizational policy and documented in the security plan for the system;
-
-- \[c\] Employ strong authentication in the establishment of nonlocal maintenance and diagnostic sessions;
-
-- \[d\] Maintain records for nonlocal maintenance and diagnostic activities; and
-
-- \[e\] Terminate session and network connections when nonlocal maintenance is completed.
-
-## Control guidance
-
-Nonlocal maintenance and diagnostic activities are conducted by individuals who communicate through either an external or internal network. Local maintenance and diagnostic activities are carried out by individuals who are physically present at the system location and not communicating across a network connection. Authentication techniques used to establish nonlocal maintenance and diagnostic sessions reflect the network access requirements in [IA-2](#ia-2) . Strong authentication requires authenticators that are resistant to replay attacks and employ multi-factor authentication. Strong authenticators include PKI where certificates are stored on a token protected by a password, passphrase, or biometric. Enforcing requirements in [MA-4](#ma-4) is accomplished, in part, by other controls. [SP 800-63B](#e59c5a7c-8b1f-49ca-8de0-6ee0882180ce) provides additional guidance on strong authentication and authenticators.
-
-## Control assessment-objective
-
-nonlocal maintenance and diagnostic activities are approved;
-nonlocal maintenance and diagnostic activities are monitored;
-the use of nonlocal maintenance and diagnostic tools are allowed only as consistent with organizational policy;
-the use of nonlocal maintenance and diagnostic tools are documented in the security plan for the system;
-strong authentication is employed in the establishment of nonlocal maintenance and diagnostic sessions;
-records for nonlocal maintenance and diagnostic activities are maintained;
-session connections are terminated when nonlocal maintenance is completed;
-network connections are terminated when nonlocal maintenance is completed.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation c.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation d.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation e.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ma-5.md b/docs/compliance/dist/system-security-plans/ato/ma-5.md
deleted file mode 100644
index 859abc349..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ma-5.md
+++ /dev/null
@@ -1,53 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ma-5 - \[catalog\] Maintenance Personnel
-
-## Control Statement
-
-- \[a\] Establish a process for maintenance personnel authorization and maintain a list of authorized maintenance organizations or personnel;
-
-- \[b\] Verify that non-escorted personnel performing maintenance on the system possess the required access authorizations; and
-
-- \[c\] Designate organizational personnel with required access authorizations and technical competence to supervise the maintenance activities of personnel who do not possess the required access authorizations.
-
-## Control guidance
-
-Maintenance personnel refers to individuals who perform hardware or software maintenance on organizational systems, while [PE-2](#pe-2) addresses physical access for individuals whose maintenance duties place them within the physical protection perimeter of the systems. Technical competence of supervising individuals relates to the maintenance performed on the systems, while having required access authorizations refers to maintenance on and near the systems. Individuals not previously identified as authorized maintenance personnel—such as information technology manufacturers, vendors, systems integrators, and consultants—may require privileged access to organizational systems, such as when they are required to conduct maintenance activities with little or no notice. Based on organizational assessments of risk, organizations may issue temporary credentials to these individuals. Temporary credentials may be for one-time use or for very limited time periods.
-
-## Control assessment-objective
-
-a process for maintenance personnel authorization is established;
-a list of authorized maintenance organizations or personnel is maintained;
-non-escorted personnel performing maintenance on the system possess the required access authorizations;
-organizational personnel with required access authorizations and technical competence is/are designated to supervise the maintenance activities of personnel who do not possess the required access authorizations.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation c.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ma-6.md b/docs/compliance/dist/system-security-plans/ato/ma-6.md
deleted file mode 100644
index 7e09e4861..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ma-6.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# ma-6 - \[catalog\] Timely Maintenance
-
-## Control Statement
-
-Obtain maintenance support and/or spare parts for system components within time period of failure.
-
-## Control guidance
-
-Organizations specify the system components that result in increased risk to organizational operations and assets, individuals, other organizations, or the Nation when the functionality provided by those components is not operational. Organizational actions to obtain maintenance support include having appropriate contracts in place.
-
-## Control assessment-objective
-
-maintenance support and/or spare parts are obtained for system components within time period of failure.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/mp-1.md b/docs/compliance/dist/system-security-plans/ato/mp-1.md
deleted file mode 100644
index 50b15d751..000000000
--- a/docs/compliance/dist/system-security-plans/ato/mp-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# mp-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found media protection policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the media protection policy and the associated media protection controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the media protection policy and procedures; and
-
-- \[c\] Review and update the current media protection:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Media protection policy and procedures address the controls in the MP family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of media protection policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to media protection policy and procedures include assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a media protection policy is developed and documented;
-the media protection policy is disseminated to personnel or roles;
-media protection procedures to facilitate the implementation of the media protection policy and associated media protection controls are developed and documented;
-the media protection procedures are disseminated to personnel or roles;
-the No value found media protection policy addresses purpose;
-the No value found media protection policy addresses scope;
-the No value found media protection policy addresses roles;
-the No value found media protection policy addresses responsibilities;
-the No value found media protection policy addresses management commitment;
-the No value found media protection policy addresses coordination among organizational entities;
-the No value found media protection policy compliance;
-the media protection policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the media protection policy and procedures.
-the current media protection policy is reviewed and updated frequency;
-the current media protection policy is reviewed and updated following events;
-the current media protection procedures are reviewed and updated frequency;
-the current media protection procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item mp-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item mp-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item mp-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/mp-2.md b/docs/compliance/dist/system-security-plans/ato/mp-2.md
deleted file mode 100644
index 67d51cba0..000000000
--- a/docs/compliance/dist/system-security-plans/ato/mp-2.md
+++ /dev/null
@@ -1,29 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# mp-2 - \[catalog\] Media Access
-
-## Control Statement
-
-Restrict access to organization-defined types of digital and/or non-digital media to organization-defined personnel or roles.
-
-## Control guidance
-
-System media includes digital and non-digital media. Digital media includes flash drives, diskettes, magnetic tapes, external or removable hard disk drives (e.g., solid state, magnetic), compact discs, and digital versatile discs. Non-digital media includes paper and microfilm. Denying access to patient medical records in a community hospital unless the individuals seeking access to such records are authorized healthcare providers is an example of restricting access to non-digital media. Limiting access to the design specifications stored on compact discs in the media library to individuals on the system development team is an example of restricting access to digital media.
-
-## Control assessment-objective
-
-access to types of digital media is restricted to personnel or roles;
-access to types of non-digital media is restricted to personnel or roles.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/mp-3.md b/docs/compliance/dist/system-security-plans/ato/mp-3.md
deleted file mode 100644
index e5f916772..000000000
--- a/docs/compliance/dist/system-security-plans/ato/mp-3.md
+++ /dev/null
@@ -1,43 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# mp-3 - \[catalog\] Media Marking
-
-## Control Statement
-
-- \[a\] Mark system media indicating the distribution limitations, handling caveats, and applicable security markings (if any) of the information; and
-
-- \[b\] Exempt types of media exempted from marking from marking if the media remain within controlled areas.
-
-## Control guidance
-
-Security marking refers to the application or use of human-readable security attributes. Digital media includes diskettes, magnetic tapes, external or removable hard disk drives (e.g., solid state, magnetic), flash drives, compact discs, and digital versatile discs. Non-digital media includes paper and microfilm. Controlled unclassified information is defined by the National Archives and Records Administration along with the appropriate safeguarding and dissemination requirements for such information and is codified in [32 CFR 2002](#91f992fb-f668-4c91-a50f-0f05b95ccee3) . Security markings are generally not required for media that contains information determined by organizations to be in the public domain or to be publicly releasable. Some organizations may require markings for public information indicating that the information is publicly releasable. System media marking reflects applicable laws, executive orders, directives, policies, regulations, standards, and guidelines.
-
-## Control assessment-objective
-
-system media is marked to indicate distribution limitations, handling caveats, and applicable security markings (if any) of the information;
-types of media exempted from marking remain within controlled areas.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/mp-4.md b/docs/compliance/dist/system-security-plans/ato/mp-4.md
deleted file mode 100644
index 04dc7d23f..000000000
--- a/docs/compliance/dist/system-security-plans/ato/mp-4.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# mp-4 - \[catalog\] Media Storage
-
-## Control Statement
-
-- \[a\] Physically control and securely store organization-defined types of digital and/or non-digital media within organization-defined controlled areas ; and
-
-- \[b\] Protect system media types defined in MP-4a until the media are destroyed or sanitized using approved equipment, techniques, and procedures.
-
-## Control guidance
-
-System media includes digital and non-digital media. Digital media includes flash drives, diskettes, magnetic tapes, external or removable hard disk drives (e.g., solid state, magnetic), compact discs, and digital versatile discs. Non-digital media includes paper and microfilm. Physically controlling stored media includes conducting inventories, ensuring procedures are in place to allow individuals to check out and return media to the library, and maintaining accountability for stored media. Secure storage includes a locked drawer, desk, or cabinet or a controlled media library. The type of media storage is commensurate with the security category or classification of the information on the media. Controlled areas are spaces that provide physical and procedural controls to meet the requirements established for protecting information and systems. Fewer controls may be needed for media that contains information determined to be in the public domain, publicly releasable, or have limited adverse impacts on organizations, operations, or individuals if accessed by other than authorized personnel. In these situations, physical access controls provide adequate protection.
-
-## Control assessment-objective
-
-types of digital media are physically controlled;
-types of non-digital media are physically controlled;
-types of digital media are securely stored within controlled areas;
-types of non-digital media are securely stored within controlled areas;
-system media types (defined in MP-04_ODP[01], MP-04_ODP[02], MP-04_ODP[03], MP-04_ODP[04]) are protected until the media are destroyed or sanitized using approved equipment, techniques, and procedures.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/mp-5.md b/docs/compliance/dist/system-security-plans/ato/mp-5.md
deleted file mode 100644
index a473caf15..000000000
--- a/docs/compliance/dist/system-security-plans/ato/mp-5.md
+++ /dev/null
@@ -1,63 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# mp-5 - \[catalog\] Media Transport
-
-## Control Statement
-
-- \[a\] Protect and control types of system media during transport outside of controlled areas using organization-defined controls;
-
-- \[b\] Maintain accountability for system media during transport outside of controlled areas;
-
-- \[c\] Document activities associated with the transport of system media; and
-
-- \[d\] Restrict the activities associated with the transport of system media to authorized personnel.
-
-## Control guidance
-
-System media includes digital and non-digital media. Digital media includes flash drives, diskettes, magnetic tapes, external or removable hard disk drives (e.g., solid state and magnetic), compact discs, and digital versatile discs. Non-digital media includes microfilm and paper. Controlled areas are spaces for which organizations provide physical or procedural controls to meet requirements established for protecting information and systems. Controls to protect media during transport include cryptography and locked containers. Cryptographic mechanisms can provide confidentiality and integrity protections depending on the mechanisms implemented. Activities associated with media transport include releasing media for transport, ensuring that media enters the appropriate transport processes, and the actual transport. Authorized transport and courier personnel may include individuals external to the organization. Maintaining accountability of media during transport includes restricting transport activities to authorized personnel and tracking and/or obtaining records of transport activities as the media moves through the transportation system to prevent and detect loss, destruction, or tampering. Organizations establish documentation requirements for activities associated with the transport of system media in accordance with organizational assessments of risk. Organizations maintain the flexibility to define record-keeping methods for the different types of media transport as part of a system of transport-related records.
-
-## Control assessment-objective
-
-types of system media are protected during transport outside of controlled areas using controls;
-types of system media are controlled during transport outside of controlled areas using controls;
-accountability for system media is maintained during transport outside of controlled areas;
-activities associated with the transport of system media are documented;
-personnel authorized to conduct media transport activities is/are identified;
-activities associated with the transport of system media are restricted to identified authorized personnel.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation c.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation d.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/mp-6.md b/docs/compliance/dist/system-security-plans/ato/mp-6.md
deleted file mode 100644
index 36a1638ef..000000000
--- a/docs/compliance/dist/system-security-plans/ato/mp-6.md
+++ /dev/null
@@ -1,45 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# mp-6 - \[catalog\] Media Sanitization
-
-## Control Statement
-
-- \[a\] Sanitize organization-defined system media prior to disposal, release out of organizational control, or release for reuse using organization-defined sanitization techniques and procedures ; and
-
-- \[b\] Employ sanitization mechanisms with the strength and integrity commensurate with the security category or classification of the information.
-
-## Control guidance
-
-Media sanitization applies to all digital and non-digital system media subject to disposal or reuse, whether or not the media is considered removable. Examples include digital media in scanners, copiers, printers, notebook computers, workstations, network components, mobile devices, and non-digital media (e.g., paper and microfilm). The sanitization process removes information from system media such that the information cannot be retrieved or reconstructed. Sanitization techniques—including clearing, purging, cryptographic erase, de-identification of personally identifiable information, and destruction—prevent the disclosure of information to unauthorized individuals when such media is reused or released for disposal. Organizations determine the appropriate sanitization methods, recognizing that destruction is sometimes necessary when other methods cannot be applied to media requiring sanitization. Organizations use discretion on the employment of approved sanitization techniques and procedures for media that contains information deemed to be in the public domain or publicly releasable or information deemed to have no adverse impact on organizations or individuals if released for reuse or disposal. Sanitization of non-digital media includes destruction, removing a classified appendix from an otherwise unclassified document, or redacting selected sections or words from a document by obscuring the redacted sections or words in a manner equivalent in effectiveness to removing them from the document. NSA standards and policies control the sanitization process for media that contains classified information. NARA policies control the sanitization process for controlled unclassified information.
-
-## Control assessment-objective
-
-system media is sanitized using sanitization techniques and procedures prior to disposal;
-system media is sanitized using sanitization techniques and procedures prior to release from organizational control;
-system media is sanitized using sanitization techniques and procedures prior to release for reuse;
-sanitization mechanisms with strength and integrity commensurate with the security category or classification of the information are employed.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/mp-7.md b/docs/compliance/dist/system-security-plans/ato/mp-7.md
deleted file mode 100644
index 86b999876..000000000
--- a/docs/compliance/dist/system-security-plans/ato/mp-7.md
+++ /dev/null
@@ -1,43 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# mp-7 - \[catalog\] Media Use
-
-## Control Statement
-
-- \[a\]  No value found the use of types of system media on systems or system components using controls ; and
-
-- \[b\] Prohibit the use of portable storage devices in organizational systems when such devices have no identifiable owner.
-
-## Control guidance
-
-System media includes both digital and non-digital media. Digital media includes diskettes, magnetic tapes, flash drives, compact discs, digital versatile discs, and removable hard disk drives. Non-digital media includes paper and microfilm. Media use protections also apply to mobile devices with information storage capabilities. In contrast to [MP-2](#mp-2) , which restricts user access to media, MP-7 restricts the use of certain types of media on systems, for example, restricting or prohibiting the use of flash drives or external hard disk drives. Organizations use technical and nontechnical controls to restrict the use of system media. Organizations may restrict the use of portable storage devices, for example, by using physical cages on workstations to prohibit access to certain external ports or disabling or removing the ability to insert, read, or write to such devices. Organizations may also limit the use of portable storage devices to only approved devices, including devices provided by the organization, devices provided by other approved organizations, and devices that are not personally owned. Finally, organizations may restrict the use of portable storage devices based on the type of device, such as by prohibiting the use of writeable, portable storage devices and implementing this restriction by disabling or removing the capability to write to such devices. Requiring identifiable owners for storage devices reduces the risk of using such devices by allowing organizations to assign responsibility for addressing known vulnerabilities in the devices.
-
-## Control assessment-objective
-
-the use of types of system media is No value found on systems or system components using controls;
-the use of portable storage devices in organizational systems is prohibited when such devices have no identifiable owner.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-1.md b/docs/compliance/dist/system-security-plans/ato/pe-1.md
deleted file mode 100644
index 68c4050bf..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-1.md
+++ /dev/null
@@ -1,76 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found physical and environmental protection policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the physical and environmental protection policy and the associated physical and environmental protection controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the physical and environmental protection policy and procedures; and
-
-- \[c\] Review and update the current physical and environmental protection:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Physical and environmental protection policy and procedures address the controls in the PE family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of physical and environmental protection policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to physical and environmental protection policy and procedures include assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a physical and environmental protection policy is developed and documented;
-the physical and environmental protection policy is disseminated to personnel or roles;
-physical and environmental protection procedures to facilitate the implementation of the physical and environmental protection policy and associated physical and environmental protection controls are developed and documented;
-the physical and environmental protection procedures are disseminated to personnel or roles;
-the No value found physical and environmental protection policy addresses purpose;
-the No value found physical and environmental protection policy addresses scope;
-the No value found physical and environmental protection policy addresses roles;
-the No value found physical and environmental protection policy addresses responsibilities;
-the No value found physical and environmental protection policy addresses management commitment;
-the No value found physical and environmental protection policy addresses coordination among organizational entities;
-the No value found physical and environmental protection policy addresses compliance;
-the No value found physical and environmental protection policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the physical and environmental protection policy and procedures;
-the current physical and environmental protection policy is reviewed and updated frequency;
-the current physical and environmental protection policy is reviewed and updated following events;
-the current physical and environmental protection procedures are reviewed and updated frequency;
-the current physical and environmental protection procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation c.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-10.md b/docs/compliance/dist/system-security-plans/ato/pe-10.md
deleted file mode 100644
index af6ec85e4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-10.md
+++ /dev/null
@@ -1,52 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-10 - \[catalog\] Emergency Shutoff
-
-## Control Statement
-
-- \[a\] Provide the capability of shutting off power to system or individual system components in emergency situations;
-
-- \[b\] Place emergency shutoff switches or devices in location to facilitate access for authorized personnel; and
-
-- \[c\] Protect emergency power shutoff capability from unauthorized activation.
-
-## Control guidance
-
-Emergency power shutoff primarily applies to organizational facilities that contain concentrations of system resources, including data centers, mainframe computer rooms, server rooms, and areas with computer-controlled machinery.
-
-## Control assessment-objective
-
-the capability to shut off power to system or individual system components in emergency situations is provided;
-emergency shutoff switches or devices are placed in location to facilitate access for authorized personnel;
-the emergency power shutoff capability is protected from unauthorized activation.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation c.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-11.md b/docs/compliance/dist/system-security-plans/ato/pe-11.md
deleted file mode 100644
index dc2a1d3ab..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-11.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-11 - \[catalog\] Emergency Power
-
-## Control Statement
-
-Provide an uninterruptible power supply to facilitate No value found in the event of a primary power source loss.
-
-## Control guidance
-
-An uninterruptible power supply (UPS) is an electrical system or mechanism that provides emergency power when there is a failure of the main power source. A UPS is typically used to protect computers, data centers, telecommunication equipment, or other electrical equipment where an unexpected power disruption could cause injuries, fatalities, serious mission or business disruption, or loss of data or information. A UPS differs from an emergency power system or backup generator in that the UPS provides near-instantaneous protection from unanticipated power interruptions from the main power source by providing energy stored in batteries, supercapacitors, or flywheels. The battery duration of a UPS is relatively short but provides sufficient time to start a standby power source, such as a backup generator, or properly shut down the system.
-
-## Control assessment-objective
-
-an uninterruptible power supply is provided to facilitate No value found in the event of a primary power source loss.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-12.md b/docs/compliance/dist/system-security-plans/ato/pe-12.md
deleted file mode 100644
index 146b0a2d4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-12.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-12 - \[catalog\] Emergency Lighting
-
-## Control Statement
-
-Employ and maintain automatic emergency lighting for the system that activates in the event of a power outage or disruption and that covers emergency exits and evacuation routes within the facility.
-
-## Control guidance
-
-The provision of emergency lighting applies primarily to organizational facilities that contain concentrations of system resources, including data centers, server rooms, and mainframe computer rooms. Emergency lighting provisions for the system are described in the contingency plan for the organization. If emergency lighting for the system fails or cannot be provided, organizations consider alternate processing sites for power-related contingencies.
-
-## Control assessment-objective
-
-automatic emergency lighting that activates in the event of a power outage or disruption is employed for the system;
-automatic emergency lighting that activates in the event of a power outage or disruption is maintained for the system;
-automatic emergency lighting for the system covers emergency exits within the facility;
-automatic emergency lighting for the system covers evacuation routes within the facility.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-13.1.md b/docs/compliance/dist/system-security-plans/ato/pe-13.1.md
deleted file mode 100644
index c50aab3f5..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-13.1.md
+++ /dev/null
@@ -1,30 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-13.1 - \[catalog\] Detection Systems — Automatic Activation and Notification
-
-## Control Statement
-
-Employ fire detection systems that activate automatically and notify personnel or roles and emergency responders in the event of a fire.
-
-## Control guidance
-
-Organizations can identify personnel, roles, and emergency responders if individuals on the notification list need to have access authorizations or clearances (e.g., to enter to facilities where access is restricted due to the classification or impact level of information within the facility). Notification mechanisms may require independent energy sources to ensure that the notification capability is not adversely affected by the fire.
-
-## Control assessment-objective
-
-fire detection systems that activate automatically are employed in the event of a fire;
-fire detection systems that notify personnel or roles automatically are employed in the event of a fire;
-fire detection systems that notify emergency responders automatically are employed in the event of a fire.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-13.md b/docs/compliance/dist/system-security-plans/ato/pe-13.md
deleted file mode 100644
index f78b0360e..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-13.md
+++ /dev/null
@@ -1,33 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-13 - \[catalog\] Fire Protection
-
-## Control Statement
-
-Employ and maintain fire detection and suppression systems that are supported by an independent energy source.
-
-## Control guidance
-
-The provision of fire detection and suppression systems applies primarily to organizational facilities that contain concentrations of system resources, including data centers, server rooms, and mainframe computer rooms. Fire detection and suppression systems that may require an independent energy source include sprinkler systems and smoke detectors. An independent energy source is an energy source, such as a microgrid, that is separate, or can be separated, from the energy sources providing power for the other parts of the facility.
-
-## Control assessment-objective
-
-fire detection systems are employed;
-employed fire detection systems are supported by an independent energy source;
-employed fire detection systems are maintained;
-fire suppression systems are employed;
-employed fire suppression systems are supported by an independent energy source;
-employed fire suppression systems are maintained.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-14.md b/docs/compliance/dist/system-security-plans/ato/pe-14.md
deleted file mode 100644
index fcd0e5e90..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-14.md
+++ /dev/null
@@ -1,43 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-14 - \[catalog\] Environmental Controls
-
-## Control Statement
-
-- \[a\] Maintain No value found levels within the facility where the system resides at acceptable levels ; and
-
-- \[b\] Monitor environmental control levels frequency.
-
-## Control guidance
-
-The provision of environmental controls applies primarily to organizational facilities that contain concentrations of system resources (e.g., data centers, mainframe computer rooms, and server rooms). Insufficient environmental controls, especially in very harsh environments, can have a significant adverse impact on the availability of systems and system components that are needed to support organizational mission and business functions.
-
-## Control assessment-objective
-
-No value found levels are maintained at acceptable levels within the facility where the system resides;
-environmental control levels are monitored frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-15.md b/docs/compliance/dist/system-security-plans/ato/pe-15.md
deleted file mode 100644
index e602f1e2c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-15.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-15 - \[catalog\] Water Damage Protection
-
-## Control Statement
-
-Protect the system from damage resulting from water leakage by providing master shutoff or isolation valves that are accessible, working properly, and known to key personnel.
-
-## Control guidance
-
-The provision of water damage protection primarily applies to organizational facilities that contain concentrations of system resources, including data centers, server rooms, and mainframe computer rooms. Isolation valves can be employed in addition to or in lieu of master shutoff valves to shut off water supplies in specific areas of concern without affecting entire organizations.
-
-## Control assessment-objective
-
-the system is protected from damage resulting from water leakage by providing master shutoff or isolation valves;
-the master shutoff or isolation valves are accessible;
-the master shutoff or isolation valves are working properly;
-the master shutoff or isolation valves are known to key personnel.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-16.md b/docs/compliance/dist/system-security-plans/ato/pe-16.md
deleted file mode 100644
index 792a1d841..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-16.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-16 - \[catalog\] Delivery and Removal
-
-## Control Statement
-
-- \[a\] Authorize and control organization-defined types of system components entering and exiting the facility; and
-
-- \[b\] Maintain records of the system components.
-
-## Control guidance
-
-Enforcing authorizations for entry and exit of system components may require restricting access to delivery areas and isolating the areas from the system and media libraries.
-
-## Control assessment-objective
-
-types of system components are authorized when entering the facility;
-types of system components are controlled when entering the facility;
-types of system components are authorized when exiting the facility;
-types of system components are controlled when exiting the facility;
-records of the system components are maintained.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-17.md b/docs/compliance/dist/system-security-plans/ato/pe-17.md
deleted file mode 100644
index 9d7070f81..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-17.md
+++ /dev/null
@@ -1,62 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
----
-
-# pe-17 - \[catalog\] Alternate Work Site
-
-## Control Statement
-
-- \[a\] Determine and document the alternate work sites allowed for use by employees;
-
-- \[b\] Employ the following controls at alternate work sites: controls;
-
-- \[c\] Assess the effectiveness of controls at alternate work sites; and
-
-- \[d\] Provide a means for employees to communicate with information security and privacy personnel in case of incidents.
-
-## Control guidance
-
-Alternate work sites include government facilities or the private residences of employees. While distinct from alternative processing sites, alternate work sites can provide readily available alternate locations during contingency operations. Organizations can define different sets of controls for specific alternate work sites or types of sites depending on the work-related activities conducted at the sites. Implementing and assessing the effectiveness of organization-defined controls and providing a means to communicate incidents at alternate work sites supports the contingency planning activities of organizations.
-
-## Control assessment-objective
-
-alternate work sites are determined and documented;
-controls are employed at alternate work sites;
-the effectiveness of controls at alternate work sites is assessed;
-a means for employees to communicate with information security and privacy personnel in case of incidents is provided.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation c.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation d.
-
-CISA provides devices for communication between employees. 
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-2.md b/docs/compliance/dist/system-security-plans/ato/pe-2.md
deleted file mode 100644
index cb8b73f56..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-2.md
+++ /dev/null
@@ -1,63 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-2 - \[catalog\] Physical Access Authorizations
-
-## Control Statement
-
-- \[a\] Develop, approve, and maintain a list of individuals with authorized access to the facility where the system resides;
-
-- \[b\] Issue authorization credentials for facility access;
-
-- \[c\] Review the access list detailing authorized facility access by individuals frequency ; and
-
-- \[d\] Remove individuals from the facility access list when access is no longer required.
-
-## Control guidance
-
-Physical access authorizations apply to employees and visitors. Individuals with permanent physical access authorization credentials are not considered visitors. Authorization credentials include ID badges, identification cards, and smart cards. Organizations determine the strength of authorization credentials needed consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Physical access authorizations may not be necessary to access certain areas within facilities that are designated as publicly accessible.
-
-## Control assessment-objective
-
-a list of individuals with authorized access to the facility where the system resides has been developed;
-the list of individuals with authorized access to the facility where the system resides has been approved;
-the list of individuals with authorized access to the facility where the system resides has been maintained;
-authorization credentials are issued for facility access;
-the access list detailing authorized facility access by individuals is reviewed frequency;
-individuals are removed from the facility access list when access is no longer required.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation c.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation d.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-3.md b/docs/compliance/dist/system-security-plans/ato/pe-3.md
deleted file mode 100644
index e8fcfc666..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-3.md
+++ /dev/null
@@ -1,96 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-3 - \[catalog\] Physical Access Control
-
-## Control Statement
-
-- \[a\] Enforce physical access authorizations at entry and exit points by:
-
-  - \[1\] Verifying individual access authorizations before granting access to the facility; and
-  - \[2\] Controlling ingress and egress to the facility using No value found;
-
-- \[b\] Maintain physical access audit logs for entry or exit points;
-
-- \[c\] Control access to areas within the facility designated as publicly accessible by implementing the following controls: physical access controls;
-
-- \[d\] Escort visitors and control visitor activity circumstances;
-
-- \[e\] Secure keys, combinations, and other physical access devices;
-
-- \[f\] Inventory physical access devices every frequency ; and
-
-- \[g\] Change combinations and keys organization-defined frequency and/or when keys are lost, combinations are compromised, or when individuals possessing the keys or combinations are transferred or terminated.
-
-## Control guidance
-
-Physical access control applies to employees and visitors. Individuals with permanent physical access authorizations are not considered visitors. Physical access controls for publicly accessible areas may include physical access control logs/records, guards, or physical access devices and barriers to prevent movement from publicly accessible areas to non-public areas. Organizations determine the types of guards needed, including professional security staff, system users, or administrative staff. Physical access devices include keys, locks, combinations, biometric readers, and card readers. Physical access control systems comply with applicable laws, executive orders, directives, policies, regulations, standards, and guidelines. Organizations have flexibility in the types of audit logs employed. Audit logs can be procedural, automated, or some combination thereof. Physical access points can include facility access points, interior access points to systems that require supplemental access controls, or both. Components of systems may be in areas designated as publicly accessible with organizations controlling access to the components.
-
-## Control assessment-objective
-
-physical access authorizations are enforced at entry and exit points by verifying individual access authorizations before granting access to the facility;
-physical access authorizations are enforced at entry and exit points by controlling ingress and egress to the facility using No value found;
-physical access audit logs are maintained for entry or exit points;
-access to areas within the facility designated as publicly accessible are maintained by implementing physical access controls;
-visitors are escorted;
-visitor activity is controlled circumstances;
-keys are secured;
-combinations are secured;
-other physical access devices are secured;
-physical access devices are inventoried frequency;
-combinations are changed frequency , when combinations are compromised, or when individuals possessing the combinations are transferred or terminated;
-keys are changed frequency , when keys are lost, or when individuals possessing the keys are transferred or terminated.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation c.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation d.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation e.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation f.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation g.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-4.md b/docs/compliance/dist/system-security-plans/ato/pe-4.md
deleted file mode 100644
index 4d94ea663..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-4.md
+++ /dev/null
@@ -1,27 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-4 - \[catalog\] Access Control for Transmission
-
-## Control Statement
-
-Control physical access to system distribution and transmission lines within organizational facilities using security controls.
-
-## Control guidance
-
-Security controls applied to system distribution and transmission lines prevent accidental damage, disruption, and physical tampering. Such controls may also be necessary to prevent eavesdropping or modification of unencrypted transmissions. Security controls used to control physical access to system distribution and transmission lines include disconnected or locked spare jacks, locked wiring closets, protection of cabling by conduit or cable trays, and wiretapping sensors.
-
-## Control assessment-objective
-
-physical access to system distribution and transmission lines within organizational facilities is controlled using security controls.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-5.md b/docs/compliance/dist/system-security-plans/ato/pe-5.md
deleted file mode 100644
index cee62594d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-5.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-5 - \[catalog\] Access Control for Output Devices
-
-## Control Statement
-
-Control physical access to output from output devices to prevent unauthorized individuals from obtaining the output.
-
-## Control guidance
-
-Controlling physical access to output devices includes placing output devices in locked rooms or other secured areas with keypad or card reader access controls and allowing access to authorized individuals only, placing output devices in locations that can be monitored by personnel, installing monitor or screen filters, and using headphones. Examples of output devices include monitors, printers, scanners, audio devices, facsimile machines, and copiers.
-
-## Control assessment-objective
-
-physical access to output from output devices is controlled to prevent unauthorized individuals from obtaining the output.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-6.1.md b/docs/compliance/dist/system-security-plans/ato/pe-6.1.md
deleted file mode 100644
index 2082e860b..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-6.1.md
+++ /dev/null
@@ -1,29 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-6.1 - \[catalog\] Intrusion Alarms and Surveillance Equipment
-
-## Control Statement
-
-Monitor physical access to the facility where the system resides using physical intrusion alarms and surveillance equipment.
-
-## Control guidance
-
-Physical intrusion alarms can be employed to alert security personnel when unauthorized access to the facility is attempted. Alarm systems work in conjunction with physical barriers, physical access control systems, and security guards by triggering a response when these other forms of security have been compromised or breached. Physical intrusion alarms can include different types of sensor devices, such as motion sensors, contact sensors, and broken glass sensors. Surveillance equipment includes video cameras installed at strategic locations throughout the facility.
-
-## Control assessment-objective
-
-physical access to the facility where the system resides is monitored using physical intrusion alarms;
-physical access to the facility where the system resides is monitored using physical surveillance equipment.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-6.md b/docs/compliance/dist/system-security-plans/ato/pe-6.md
deleted file mode 100644
index ceff39555..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-6.md
+++ /dev/null
@@ -1,54 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-6 - \[catalog\] Monitoring Physical Access
-
-## Control Statement
-
-- \[a\] Monitor physical access to the facility where the system resides to detect and respond to physical security incidents;
-
-- \[b\] Review physical access logs frequency and upon occurrence of events ; and
-
-- \[c\] Coordinate results of reviews and investigations with the organizational incident response capability.
-
-## Control guidance
-
-Physical access monitoring includes publicly accessible areas within organizational facilities. Examples of physical access monitoring include the employment of guards, video surveillance equipment (i.e., cameras), and sensor devices. Reviewing physical access logs can help identify suspicious activity, anomalous events, or potential threats. The reviews can be supported by audit logging controls, such as [AU-2](#au-2) , if the access logs are part of an automated system. Organizational incident response capabilities include investigations of physical security incidents and responses to the incidents. Incidents include security violations or suspicious physical access activities. Suspicious physical access activities include accesses outside of normal work hours, repeated accesses to areas not normally accessed, accesses for unusual lengths of time, and out-of-sequence accesses.
-
-## Control assessment-objective
-
-physical access to the facility where the system resides is monitored to detect and respond to physical security incidents;
-physical access logs are reviewed frequency;
-physical access logs are reviewed upon occurrence of events;
-results of reviews are coordinated with organizational incident response capabilities;
-results of investigations are coordinated with organizational incident response capabilities.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation c.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-8.md b/docs/compliance/dist/system-security-plans/ato/pe-8.md
deleted file mode 100644
index 787b8d109..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-8.md
+++ /dev/null
@@ -1,52 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-8 - \[catalog\] Visitor Access Records
-
-## Control Statement
-
-- \[a\] Maintain visitor access records to the facility where the system resides for time period;
-
-- \[b\] Review visitor access records frequency ; and
-
-- \[c\] Report anomalies in visitor access records to personnel.
-
-## Control guidance
-
-Visitor access records include the names and organizations of individuals visiting, visitor signatures, forms of identification, dates of access, entry and departure times, purpose of visits, and the names and organizations of individuals visited. Access record reviews determine if access authorizations are current and are still required to support organizational mission and business functions. Access records are not required for publicly accessible areas.
-
-## Control assessment-objective
-
-visitor access records for the facility where the system resides are maintained for time period;
-visitor access records are reviewed frequency;
-visitor access records anomalies are reported to personnel.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation b.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
-
-## Implementation c.
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pe-9.md b/docs/compliance/dist/system-security-plans/ato/pe-9.md
deleted file mode 100644
index d83c846a2..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pe-9.md
+++ /dev/null
@@ -1,29 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# pe-9 - \[catalog\] Power Equipment and Cabling
-
-## Control Statement
-
-Protect power equipment and power cabling for the system from damage and destruction.
-
-## Control guidance
-
-Organizations determine the types of protection necessary for the power equipment and cabling employed at different locations that are both internal and external to organizational facilities and environments of operation. Types of power equipment and cabling include internal cabling and uninterruptable power sources in offices or data centers, generators and power cabling outside of buildings, and power sources for self-contained components such as satellites, vehicles, and other deployable systems.
-
-## Control assessment-objective
-
-power equipment for the system is protected from damage and destruction;
-power cabling for the system is protected from damage and destruction.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pl-1.md b/docs/compliance/dist/system-security-plans/ato/pl-1.md
deleted file mode 100644
index 524f5d69a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pl-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# pl-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found planning policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the planning policy and the associated planning controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the planning policy and procedures; and
-
-- \[c\] Review and update the current planning:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Planning policy and procedures for the controls in the PL family implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on their development. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission level or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission/business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to planning policy and procedures include, but are not limited to, assessment or audit findings, security incidents or breaches, or changes in laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a planning policy is developed and documented.
-the planning policy is disseminated to personnel or roles;
-planning procedures to facilitate the implementation of the planning policy and associated planning controls are developed and documented;
-the planning procedures are disseminated to personnel or roles;
-the No value found planning policy addresses purpose;
-the No value found planning policy addresses scope;
-the No value found planning policy addresses roles;
-the No value found planning policy addresses responsibilities;
-the No value found planning policy addresses management commitment;
-the No value found planning policy addresses coordination among organizational entities;
-the No value found planning policy addresses compliance;
-the No value found planning policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the planning policy and procedures;
-the current planning policy is reviewed and updated frequency;
-the current planning policy is reviewed and updated following events;
-the current planning procedures are reviewed and updated frequency;
-the current planning procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item pl-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item pl-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item pl-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pl-10.md b/docs/compliance/dist/system-security-plans/ato/pl-10.md
deleted file mode 100644
index 9b52387f6..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pl-10.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# pl-10 - \[catalog\] Baseline Selection
-
-## Control Statement
-
-Select a control baseline for the system.
-
-## Control guidance
-
-Control baselines are predefined sets of controls specifically assembled to address the protection needs of a group, organization, or community of interest. Controls are chosen for baselines to either satisfy mandates imposed by laws, executive orders, directives, regulations, policies, standards, and guidelines or address threats common to all users of the baseline under the assumptions specific to the baseline. Baselines represent a starting point for the protection of individuals’ privacy, information, and information systems with subsequent tailoring actions to manage risk in accordance with mission, business, or other constraints (see [PL-11](#pl-11) ). Federal control baselines are provided in [SP 800-53B](#46d9e201-840e-440e-987c-2c773333c752) . The selection of a control baseline is determined by the needs of stakeholders. Stakeholder needs consider mission and business requirements as well as mandates imposed by applicable laws, executive orders, directives, policies, regulations, standards, and guidelines. For example, the control baselines in [SP 800-53B](#46d9e201-840e-440e-987c-2c773333c752) are based on the requirements from [FISMA](#0c67b2a9-bede-43d2-b86d-5f35b8be36e9) and [PRIVACT](#18e71fec-c6fd-475a-925a-5d8495cf8455) . The requirements, along with the NIST standards and guidelines implementing the legislation, direct organizations to select one of the control baselines after the reviewing the information types and the information that is processed, stored, and transmitted on the system; analyzing the potential adverse impact of the loss or compromise of the information or system on the organization’s operations and assets, individuals, other organizations, or the Nation; and considering the results from system and organizational risk assessments. [CNSSI 1253](#4e4fbc93-333d-45e6-a875-de36b878b6b9) provides guidance on control baselines for national security systems.
-
-## Control assessment-objective
-
-a control baseline for the system is selected.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control pl-10
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pl-11.md b/docs/compliance/dist/system-security-plans/ato/pl-11.md
deleted file mode 100644
index b72ca1dc2..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pl-11.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# pl-11 - \[catalog\] Baseline Tailoring
-
-## Control Statement
-
-Tailor the selected control baseline by applying specified tailoring actions.
-
-## Control guidance
-
-The concept of tailoring allows organizations to specialize or customize a set of baseline controls by applying a defined set of tailoring actions. Tailoring actions facilitate such specialization and customization by allowing organizations to develop security and privacy plans that reflect their specific mission and business functions, the environments where their systems operate, the threats and vulnerabilities that can affect their systems, and any other conditions or situations that can impact their mission or business success. Tailoring guidance is provided in [SP 800-53B](#46d9e201-840e-440e-987c-2c773333c752) . Tailoring a control baseline is accomplished by identifying and designating common controls, applying scoping considerations, selecting compensating controls, assigning values to control parameters, supplementing the control baseline with additional controls as needed, and providing information for control implementation. The general tailoring actions in [SP 800-53B](#46d9e201-840e-440e-987c-2c773333c752) can be supplemented with additional actions based on the needs of organizations. Tailoring actions can be applied to the baselines in [SP 800-53B](#46d9e201-840e-440e-987c-2c773333c752) in accordance with the security and privacy requirements from [FISMA](#0c67b2a9-bede-43d2-b86d-5f35b8be36e9), [PRIVACT](#18e71fec-c6fd-475a-925a-5d8495cf8455) , and [OMB A-130](#27847491-5ce1-4f6a-a1e4-9e483782f0ef) . Alternatively, other communities of interest adopting different control baselines can apply the tailoring actions in [SP 800-53B](#46d9e201-840e-440e-987c-2c773333c752) to specialize or customize the controls that represent the specific needs and concerns of those entities.
-
-## Control assessment-objective
-
-the selected control baseline is tailored by applying specified tailoring actions.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control pl-11
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pl-2.md b/docs/compliance/dist/system-security-plans/ato/pl-2.md
deleted file mode 100644
index ebbf58aa5..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pl-2.md
+++ /dev/null
@@ -1,128 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# pl-2 - \[catalog\] System Security and Privacy Plans
-
-## Control Statement
-
-- \[a\] Develop security and privacy plans for the system that:
-
-  - \[1\] Are consistent with the organization’s enterprise architecture;
-  - \[2\] Explicitly define the constituent system components;
-  - \[3\] Describe the operational context of the system in terms of mission and business processes;
-  - \[4\] Identify the individuals that fulfill system roles and responsibilities;
-  - \[5\] Identify the information types processed, stored, and transmitted by the system;
-  - \[6\] Provide the security categorization of the system, including supporting rationale;
-  - \[7\] Describe any specific threats to the system that are of concern to the organization;
-  - \[8\] Provide the results of a privacy risk assessment for systems processing personally identifiable information;
-  - \[9\] Describe the operational environment for the system and any dependencies on or connections to other systems or system components;
-  - \[10\] Provide an overview of the security and privacy requirements for the system;
-  - \[11\] Identify any relevant control baselines or overlays, if applicable;
-  - \[12\] Describe the controls in place or planned for meeting the security and privacy requirements, including a rationale for any tailoring decisions;
-  - \[13\] Include risk determinations for security and privacy architecture and design decisions;
-  - \[14\] Include security- and privacy-related activities affecting the system that require planning and coordination with individuals or groups ; and
-  - \[15\] Are reviewed and approved by the authorizing official or designated representative prior to plan implementation.
-
-- \[b\] Distribute copies of the plans and communicate subsequent changes to the plans to personnel or roles;
-
-- \[c\] Review the plans frequency;
-
-- \[d\] Update the plans to address changes to the system and environment of operation or problems identified during plan implementation or control assessments; and
-
-- \[e\] Protect the plans from unauthorized disclosure and modification.
-
-## Control guidance
-
-System security and privacy plans are scoped to the system and system components within the defined authorization boundary and contain an overview of the security and privacy requirements for the system and the controls selected to satisfy the requirements. The plans describe the intended application of each selected control in the context of the system with a sufficient level of detail to correctly implement the control and to subsequently assess the effectiveness of the control. The control documentation describes how system-specific and hybrid controls are implemented and the plans and expectations regarding the functionality of the system. System security and privacy plans can also be used in the design and development of systems in support of life cycle-based security and privacy engineering processes. System security and privacy plans are living documents that are updated and adapted throughout the system development life cycle (e.g., during capability determination, analysis of alternatives, requests for proposal, and design reviews). [Section 2.1](#c3397cc9-83c6-4459-adb2-836739dc1b94) describes the different types of requirements that are relevant to organizations during the system development life cycle and the relationship between requirements and controls.
-
-Organizations may develop a single, integrated security and privacy plan or maintain separate plans. Security and privacy plans relate security and privacy requirements to a set of controls and control enhancements. The plans describe how the controls and control enhancements meet the security and privacy requirements but do not provide detailed, technical descriptions of the design or implementation of the controls and control enhancements. Security and privacy plans contain sufficient information (including specifications of control parameter values for selection and assignment operations explicitly or by reference) to enable a design and implementation that is unambiguously compliant with the intent of the plans and subsequent determinations of risk to organizational operations and assets, individuals, other organizations, and the Nation if the plan is implemented.
-
-Security and privacy plans need not be single documents. The plans can be a collection of various documents, including documents that already exist. Effective security and privacy plans make extensive use of references to policies, procedures, and additional documents, including design and implementation specifications where more detailed information can be obtained. The use of references helps reduce the documentation associated with security and privacy programs and maintains the security- and privacy-related information in other established management and operational areas, including enterprise architecture, system development life cycle, systems engineering, and acquisition. Security and privacy plans need not contain detailed contingency plan or incident response plan information but can instead provide—explicitly or by reference—sufficient information to define what needs to be accomplished by those plans.
-
-Security- and privacy-related activities that may require coordination and planning with other individuals or groups within the organization include assessments, audits, inspections, hardware and software maintenance, acquisition and supply chain risk management, patch management, and contingency plan testing. Planning and coordination include emergency and nonemergency (i.e., planned or non-urgent unplanned) situations. The process defined by organizations to plan and coordinate security- and privacy-related activities can also be included in other documents, as appropriate.
-
-## Control assessment-objective
-
-a security plan for the system is developed that is consistent with the organization’s enterprise architecture;
-a privacy plan for the system is developed that is consistent with the organization’s enterprise architecture;
-a security plan for the system is developed that explicitly defines the constituent system components;
-a privacy plan for the system is developed that explicitly defines the constituent system components;
-a security plan for the system is developed that describes the operational context of the system in terms of mission and business processes;
-a privacy plan for the system is developed that describes the operational context of the system in terms of mission and business processes;
-a security plan for the system is developed that identifies the individuals that fulfill system roles and responsibilities;
-a privacy plan for the system is developed that identifies the individuals that fulfill system roles and responsibilities;
-a security plan for the system is developed that identifies the information types processed, stored, and transmitted by the system;
-a privacy plan for the system is developed that identifies the information types processed, stored, and transmitted by the system;
-a security plan for the system is developed that provides the security categorization of the system, including supporting rationale;
-a privacy plan for the system is developed that provides the security categorization of the system, including supporting rationale;
-a security plan for the system is developed that describes any specific threats to the system that are of concern to the organization;
-a privacy plan for the system is developed that describes any specific threats to the system that are of concern to the organization;
-a security plan for the system is developed that provides the results of a privacy risk assessment for systems processing personally identifiable information;
-a privacy plan for the system is developed that provides the results of a privacy risk assessment for systems processing personally identifiable information;
-a security plan for the system is developed that describes the operational environment for the system and any dependencies on or connections to other systems or system components;
-a privacy plan for the system is developed that describes the operational environment for the system and any dependencies on or connections to other systems or system components;
-a security plan for the system is developed that provides an overview of the security requirements for the system;
-a privacy plan for the system is developed that provides an overview of the privacy requirements for the system;
-a security plan for the system is developed that identifies any relevant control baselines or overlays, if applicable;
-a privacy plan for the system is developed that identifies any relevant control baselines or overlays, if applicable;
-a security plan for the system is developed that describes the controls in place or planned for meeting the security requirements, including rationale for any tailoring decisions;
-a privacy plan for the system is developed that describes the controls in place or planned for meeting the privacy requirements, including rationale for any tailoring decisions;
-a security plan for the system is developed that includes risk determinations for security architecture and design decisions;
-a privacy plan for the system is developed that includes risk determinations for privacy architecture and design decisions;
-a security plan for the system is developed that includes security-related activities affecting the system that require planning and coordination with individuals or groups;
-a privacy plan for the system is developed that includes privacy-related activities affecting the system that require planning and coordination with individuals or groups;
-a security plan for the system is developed that is reviewed and approved by the authorizing official or designated representative prior to plan implementation;
-a privacy plan for the system is developed that is reviewed and approved by the authorizing official or designated representative prior to plan implementation.
-copies of the plans are distributed to personnel or roles;
-subsequent changes to the plans are communicated to personnel or roles;
-plans are reviewed frequency;
-plans are updated to address changes to the system and environment of operations;
-plans are updated to address problems identified during the plan implementation;
-plans are updated to address problems identified during control assessments;
-plans are protected from unauthorized disclosure;
-plans are protected from unauthorized modification.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item pl-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item pl-2_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item pl-2_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item pl-2_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item pl-2_smt.e
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pl-4.1.md b/docs/compliance/dist/system-security-plans/ato/pl-4.1.md
deleted file mode 100644
index c348d80de..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pl-4.1.md
+++ /dev/null
@@ -1,57 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# pl-4.1 - \[catalog\] Social Media and External Site/Application Usage Restrictions
-
-## Control Statement
-
-Include in the rules of behavior, restrictions on:
-
-- \[a\] Use of social media, social networking sites, and external sites/applications;
-
-- \[b\] Posting organizational information on public websites; and
-
-- \[c\] Use of organization-provided identifiers (e.g., email addresses) and authentication secrets (e.g., passwords) for creating accounts on external sites/applications.
-
-## Control guidance
-
-Social media, social networking, and external site/application usage restrictions address rules of behavior related to the use of social media, social networking, and external sites when organizational personnel are using such sites for official duties or in the conduct of official business, when organizational information is involved in social media and social networking transactions, and when personnel access social media and networking sites from organizational systems. Organizations also address specific rules that prevent unauthorized entities from obtaining non-public organizational information from social media and networking sites either directly or through inference. Non-public information includes personally identifiable information and system account information.
-
-## Control assessment-objective
-
-the rules of behavior include restrictions on the use of social media, social networking sites, and external sites/applications;
-the rules of behavior include restrictions on posting organizational information on public websites;
-the rules of behavior include restrictions on the use of organization-provided identifiers (e.g., email addresses) and authentication secrets (e.g., passwords) for creating accounts on external sites/applications.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item pl-4.1_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item pl-4.1_smt.b
-
-______________________________________________________________________
-
-## Implementation (c)
-
-Add control implementation description here for item pl-4.1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pl-4.md b/docs/compliance/dist/system-security-plans/ato/pl-4.md
deleted file mode 100644
index 00234b5df..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pl-4.md
+++ /dev/null
@@ -1,65 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# pl-4 - \[catalog\] Rules of Behavior
-
-## Control Statement
-
-- \[a\] Establish and provide to individuals requiring access to the system, the rules that describe their responsibilities and expected behavior for information and system usage, security, and privacy;
-
-- \[b\] Receive a documented acknowledgment from such individuals, indicating that they have read, understand, and agree to abide by the rules of behavior, before authorizing access to information and the system;
-
-- \[c\] Review and update the rules of behavior frequency ; and
-
-- \[d\] Require individuals who have acknowledged a previous version of the rules of behavior to read and re-acknowledge No value found.
-
-## Control guidance
-
-Rules of behavior represent a type of access agreement for organizational users. Other types of access agreements include nondisclosure agreements, conflict-of-interest agreements, and acceptable use agreements (see [PS-6](#ps-6) ). Organizations consider rules of behavior based on individual user roles and responsibilities and differentiate between rules that apply to privileged users and rules that apply to general users. Establishing rules of behavior for some types of non-organizational users, including individuals who receive information from federal systems, is often not feasible given the large number of such users and the limited nature of their interactions with the systems. Rules of behavior for organizational and non-organizational users can also be established in [AC-8](#ac-8) . The related controls section provides a list of controls that are relevant to organizational rules of behavior. [PL-4b](#pl-4_smt.b) , the documented acknowledgment portion of the control, may be satisfied by the literacy training and awareness and role-based training programs conducted by organizations if such training includes rules of behavior. Documented acknowledgements for rules of behavior include electronic or physical signatures and electronic agreement check boxes or radio buttons.
-
-## Control assessment-objective
-
-rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are established for individuals requiring access to the system;
-rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are provided to individuals requiring access to the system;
-before authorizing access to information and the system, a documented acknowledgement from such individuals indicating that they have read, understand, and agree to abide by the rules of behavior is received;
-rules of behavior are reviewed and updated frequency;
-individuals who have acknowledged a previous version of the rules of behavior are required to read and reacknowledge No value found.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item pl-4_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item pl-4_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item pl-4_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item pl-4_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/pl-8.md b/docs/compliance/dist/system-security-plans/ato/pl-8.md
deleted file mode 100644
index b3a343f23..000000000
--- a/docs/compliance/dist/system-security-plans/ato/pl-8.md
+++ /dev/null
@@ -1,76 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# pl-8 - \[catalog\] Security and Privacy Architectures
-
-## Control Statement
-
-- \[a\] Develop security and privacy architectures for the system that:
-
-  - \[1\] Describe the requirements and approach to be taken for protecting the confidentiality, integrity, and availability of organizational information;
-  - \[2\] Describe the requirements and approach to be taken for processing personally identifiable information to minimize privacy risk to individuals;
-  - \[3\] Describe how the architectures are integrated into and support the enterprise architecture; and
-  - \[4\] Describe any assumptions about, and dependencies on, external systems and services;
-
-- \[b\] Review and update the architectures frequency to reflect changes in the enterprise architecture; and
-
-- \[c\] Reflect planned architecture changes in security and privacy plans, Concept of Operations (CONOPS), criticality analysis, organizational procedures, and procurements and acquisitions.
-
-## Control guidance
-
-The security and privacy architectures at the system level are consistent with the organization-wide security and privacy architectures described in [PM-7](#pm-7) , which are integral to and developed as part of the enterprise architecture. The architectures include an architectural description, the allocation of security and privacy functionality (including controls), security- and privacy-related information for external interfaces, information being exchanged across the interfaces, and the protection mechanisms associated with each interface. The architectures can also include other information, such as user roles and the access privileges assigned to each role; security and privacy requirements; types of information processed, stored, and transmitted by the system; supply chain risk management requirements; restoration priorities of information and system services; and other protection needs.
-
- [SP 800-160-1](#e3cc0520-a366-4fc9-abc2-5272db7e3564) provides guidance on the use of security architectures as part of the system development life cycle process. [OMB M-19-03](#c5e11048-1d38-4af3-b00b-0d88dc26860c) requires the use of the systems security engineering concepts described in [SP 800-160-1](#e3cc0520-a366-4fc9-abc2-5272db7e3564) for high value assets. Security and privacy architectures are reviewed and updated throughout the system development life cycle, from analysis of alternatives through review of the proposed architecture in the RFP responses to the design reviews before and during implementation (e.g., during preliminary design reviews and critical design reviews).
-
-In today’s modern computing architectures, it is becoming less common for organizations to control all information resources. There may be key dependencies on external information services and service providers. Describing such dependencies in the security and privacy architectures is necessary for developing a comprehensive mission and business protection strategy. Establishing, developing, documenting, and maintaining under configuration control a baseline configuration for organizational systems is critical to implementing and maintaining effective architectures. The development of the architectures is coordinated with the senior agency information security officer and the senior agency official for privacy to ensure that the controls needed to support security and privacy requirements are identified and effectively implemented. In many circumstances, there may be no distinction between the security and privacy architecture for a system. In other circumstances, security objectives may be adequately satisfied, but privacy objectives may only be partially satisfied by the security requirements. In these cases, consideration of the privacy requirements needed to achieve satisfaction will result in a distinct privacy architecture. The documentation, however, may simply reflect the combined architectures.
-
- [PL-8](#pl-8) is primarily directed at organizations to ensure that architectures are developed for the system and, moreover, that the architectures are integrated with or tightly coupled to the enterprise architecture. In contrast, [SA-17](#sa-17) is primarily directed at the external information technology product and system developers and integrators. [SA-17](#sa-17) , which is complementary to [PL-8](#pl-8) , is selected when organizations outsource the development of systems or components to external entities and when there is a need to demonstrate consistency with the organization’s enterprise architecture and security and privacy architectures.
-
-## Control assessment-objective
-
-a security architecture for the system describes the requirements and approach to be taken for protecting the confidentiality, integrity, and availability of organizational information;
-a privacy architecture describes the requirements and approach to be taken for processing personally identifiable information to minimize privacy risk to individuals;
-a security architecture for the system describes how the architecture is integrated into and supports the enterprise architecture;
-a privacy architecture for the system describes how the architecture is integrated into and supports the enterprise architecture;
-a security architecture for the system describes any assumptions about and dependencies on external systems and services;
-a privacy architecture for the system describes any assumptions about and dependencies on external systems and services;
-changes in the enterprise architecture are reviewed and updated frequency to reflect changes in the enterprise architecture;
-planned architecture changes are reflected in the security plan;
-planned architecture changes are reflected in the privacy plan;
-planned architecture changes are reflected in the Concept of Operations (CONOPS);
-planned architecture changes are reflected in criticality analysis;
-planned architecture changes are reflected in organizational procedures;
-planned architecture changes are reflected in procurements and acquisitions.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item pl-8_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item pl-8_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item pl-8_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ps-1.md b/docs/compliance/dist/system-security-plans/ato/ps-1.md
deleted file mode 100644
index 62f4e11f7..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ps-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ps-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found personnel security policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the personnel security policy and the associated personnel security controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the personnel security policy and procedures; and
-
-- \[c\] Review and update the current personnel security:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Personnel security policy and procedures for the controls in the PS family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on their development. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission level or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies reflecting the complex nature of organizations. Procedures can be established for security and privacy programs, for mission/business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to personnel security policy and procedures include, but are not limited to, assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a personnel security policy is developed and documented;
-the personnel security policy is disseminated to personnel or roles;
-personnel security procedures to facilitate the implementation of the personnel security policy and associated personnel security controls are developed and documented;
-the personnel security procedures are disseminated to personnel or roles;
-the No value found personnel security policy addresses purpose;
-the No value found personnel security policy addresses scope;
-the No value found personnel security policy addresses roles;
-the No value found personnel security policy addresses responsibilities;
-the No value found personnel security policy addresses management commitment;
-the No value found personnel security policy addresses coordination among organizational entities;
-the No value found personnel security policy addresses compliance;
-the No value found personnel security policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the personnel security policy and procedures;
-the current personnel security policy is reviewed and updated frequency;
-the current personnel security policy is reviewed and updated following events;
-the current personnel security procedures are reviewed and updated frequency;
-the current personnel security procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ps-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ps-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ps-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ps-2.md b/docs/compliance/dist/system-security-plans/ato/ps-2.md
deleted file mode 100644
index 5e380e886..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ps-2.md
+++ /dev/null
@@ -1,55 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ps-2 - \[catalog\] Position Risk Designation
-
-## Control Statement
-
-- \[a\] Assign a risk designation to all organizational positions;
-
-- \[b\] Establish screening criteria for individuals filling those positions; and
-
-- \[c\] Review and update position risk designations frequency.
-
-## Control guidance
-
-Position risk designations reflect Office of Personnel Management (OPM) policy and guidance. Proper position designation is the foundation of an effective and consistent suitability and personnel security program. The Position Designation System (PDS) assesses the duties and responsibilities of a position to determine the degree of potential damage to the efficiency or integrity of the service due to misconduct of an incumbent of a position and establishes the risk level of that position. The PDS assessment also determines if the duties and responsibilities of the position present the potential for position incumbents to bring about a material adverse effect on national security and the degree of that potential effect, which establishes the sensitivity level of a position. The results of the assessment determine what level of investigation is conducted for a position. Risk designations can guide and inform the types of authorizations that individuals receive when accessing organizational information and information systems. Position screening criteria include explicit information security role appointment requirements. Parts 1400 and 731 of Title 5, Code of Federal Regulations, establish the requirements for organizations to evaluate relevant covered positions for a position sensitivity and position risk designation commensurate with the duties and responsibilities of those positions.
-
-## Control assessment-objective
-
-a risk designation is assigned to all organizational positions;
-screening criteria are established for individuals filling organizational positions;
-position risk designations are reviewed and updated frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ps-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ps-2_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ps-2_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ps-3.md b/docs/compliance/dist/system-security-plans/ato/ps-3.md
deleted file mode 100644
index 13112b58d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ps-3.md
+++ /dev/null
@@ -1,47 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ps-3 - \[catalog\] Personnel Screening
-
-## Control Statement
-
-- \[a\] Screen individuals prior to authorizing access to the system; and
-
-- \[b\] Rescreen individuals in accordance with organization-defined conditions requiring rescreening and, where rescreening is so indicated, the frequency of rescreening.
-
-## Control guidance
-
-Personnel screening and rescreening activities reflect applicable laws, executive orders, directives, regulations, policies, standards, guidelines, and specific criteria established for the risk designations of assigned positions. Examples of personnel screening include background investigations and agency checks. Organizations may define different rescreening conditions and frequencies for personnel accessing systems based on types of information processed, stored, or transmitted by the systems.
-
-## Control assessment-objective
-
-individuals are screened prior to authorizing access to the system;
-individuals are rescreened in accordance with conditions requiring rescreening;
-where rescreening is so indicated, individuals are rescreened frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ps-3_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ps-3_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ps-4.md b/docs/compliance/dist/system-security-plans/ato/ps-4.md
deleted file mode 100644
index 98675dd73..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ps-4.md
+++ /dev/null
@@ -1,75 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ps-4 - \[catalog\] Personnel Termination
-
-## Control Statement
-
-Upon termination of individual employment:
-
-- \[a\] Disable system access within time period;
-
-- \[b\] Terminate or revoke any authenticators and credentials associated with the individual;
-
-- \[c\] Conduct exit interviews that include a discussion of information security topics;
-
-- \[d\] Retrieve all security-related organizational system-related property; and
-
-- \[e\] Retain access to organizational information and systems formerly controlled by terminated individual.
-
-## Control guidance
-
-System property includes hardware authentication tokens, system administration technical manuals, keys, identification cards, and building passes. Exit interviews ensure that terminated individuals understand the security constraints imposed by being former employees and that proper accountability is achieved for system-related property. Security topics at exit interviews include reminding individuals of nondisclosure agreements and potential limitations on future employment. Exit interviews may not always be possible for some individuals, including in cases related to the unavailability of supervisors, illnesses, or job abandonment. Exit interviews are important for individuals with security clearances. The timely execution of termination actions is essential for individuals who have been terminated for cause. In certain situations, organizations consider disabling the system accounts of individuals who are being terminated prior to the individuals being notified.
-
-## Control assessment-objective
-
-upon termination of individual employment, system access is disabled within time period;
-upon termination of individual employment, any authenticators and credentials are terminated or revoked;
-upon termination of individual employment, exit interviews that include a discussion of information security topics are conducted;
-upon termination of individual employment, all security-related organizational system-related property is retrieved;
-upon termination of individual employment, access to organizational information and systems formerly controlled by the terminated individual are retained.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ps-4_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ps-4_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ps-4_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ps-4_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item ps-4_smt.e
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ps-5.md b/docs/compliance/dist/system-security-plans/ato/ps-5.md
deleted file mode 100644
index 76ab164c8..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ps-5.md
+++ /dev/null
@@ -1,64 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ps-5 - \[catalog\] Personnel Transfer
-
-## Control Statement
-
-- \[a\] Review and confirm ongoing operational need for current logical and physical access authorizations to systems and facilities when individuals are reassigned or transferred to other positions within the organization;
-
-- \[b\] Initiate transfer or reassignment actions within time period following the formal transfer action;
-
-- \[c\] Modify access authorization as needed to correspond with any changes in operational need due to reassignment or transfer; and
-
-- \[d\] Notify personnel or roles within time period.
-
-## Control guidance
-
-Personnel transfer applies when reassignments or transfers of individuals are permanent or of such extended duration as to make the actions warranted. Organizations define actions appropriate for the types of reassignments or transfers, whether permanent or extended. Actions that may be required for personnel transfers or reassignments to other positions within organizations include returning old and issuing new keys, identification cards, and building passes; closing system accounts and establishing new accounts; changing system access authorizations (i.e., privileges); and providing for access to official records to which individuals had access at previous work locations and in previous system accounts.
-
-## Control assessment-objective
-
-the ongoing operational need for current logical and physical access authorizations to systems and facilities are reviewed and confirmed when individuals are reassigned or transferred to other positions within the organization;
-transfer or reassignment actions are initiated within time period following the formal transfer action;
-access authorization is modified as needed to correspond with any changes in operational need due to reassignment or transfer;
-personnel or roles are notified within time period.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ps-5_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ps-5_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ps-5_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ps-5_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ps-6.md b/docs/compliance/dist/system-security-plans/ato/ps-6.md
deleted file mode 100644
index 52e4e3742..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ps-6.md
+++ /dev/null
@@ -1,59 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ps-6 - \[catalog\] Access Agreements
-
-## Control Statement
-
-- \[a\] Develop and document access agreements for organizational systems;
-
-- \[b\] Review and update the access agreements frequency ; and
-
-- \[c\] Verify that individuals requiring access to organizational information and systems:
-
-  - \[1\] Sign appropriate access agreements prior to being granted access; and
-  - \[2\] Re-sign access agreements to maintain access to organizational systems when access agreements have been updated or frequency.
-
-## Control guidance
-
-Access agreements include nondisclosure agreements, acceptable use agreements, rules of behavior, and conflict-of-interest agreements. Signed access agreements include an acknowledgement that individuals have read, understand, and agree to abide by the constraints associated with organizational systems to which access is authorized. Organizations can use electronic signatures to acknowledge access agreements unless specifically prohibited by organizational policy.
-
-## Control assessment-objective
-
-access agreements are developed and documented for organizational systems;
-the access agreements are reviewed and updated frequency;
-individuals requiring access to organizational information and systems sign appropriate access agreements prior to being granted access;
-individuals requiring access to organizational information and systems re-sign access agreements to maintain access to organizational systems when access agreements have been updated or frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ps-6_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ps-6_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ps-6_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ps-7.md b/docs/compliance/dist/system-security-plans/ato/ps-7.md
deleted file mode 100644
index df4c7ca3a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ps-7.md
+++ /dev/null
@@ -1,73 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ps-7 - \[catalog\] External Personnel Security
-
-## Control Statement
-
-- \[a\] Establish personnel security requirements, including security roles and responsibilities for external providers;
-
-- \[b\] Require external providers to comply with personnel security policies and procedures established by the organization;
-
-- \[c\] Document personnel security requirements;
-
-- \[d\] Require external providers to notify personnel or roles of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges, or who have system privileges within time period ; and
-
-- \[e\] Monitor provider compliance with personnel security requirements.
-
-## Control guidance
-
-External provider refers to organizations other than the organization operating or acquiring the system. External providers include service bureaus, contractors, and other organizations that provide system development, information technology services, testing or assessment services, outsourced applications, and network/security management. Organizations explicitly include personnel security requirements in acquisition-related documents. External providers may have personnel working at organizational facilities with credentials, badges, or system privileges issued by organizations. Notifications of external personnel changes ensure the appropriate termination of privileges and credentials. Organizations define the transfers and terminations deemed reportable by security-related characteristics that include functions, roles, and the nature of credentials or privileges associated with transferred or terminated individuals.
-
-## Control assessment-objective
-
-personnel security requirements are established, including security roles and responsibilities for external providers;
-external providers are required to comply with personnel security policies and procedures established by the organization;
-personnel security requirements are documented;
-external providers are required to notify personnel or roles of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges or who have system privileges within time period;
-provider compliance with personnel security requirements is monitored.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ps-7_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ps-7_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ps-7_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ps-7_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item ps-7_smt.e
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ps-8.md b/docs/compliance/dist/system-security-plans/ato/ps-8.md
deleted file mode 100644
index 141e224b2..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ps-8.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ps-8 - \[catalog\] Personnel Sanctions
-
-## Control Statement
-
-- \[a\] Employ a formal sanctions process for individuals failing to comply with established information security and privacy policies and procedures; and
-
-- \[b\] Notify personnel or roles within time period when a formal employee sanctions process is initiated, identifying the individual sanctioned and the reason for the sanction.
-
-## Control guidance
-
-Organizational sanctions reflect applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Sanctions processes are described in access agreements and can be included as part of general personnel policies for organizations and/or specified in security and privacy policies. Organizations consult with the Office of the General Counsel regarding matters of employee sanctions.
-
-## Control assessment-objective
-
-a formal sanctions process is employed for individuals failing to comply with established information security and privacy policies and procedures;
-personnel or roles is/are notified within time period when a formal employee sanctions process is initiated, identifying the individual sanctioned and the reason for the sanction.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ps-8_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ps-8_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ps-9.md b/docs/compliance/dist/system-security-plans/ato/ps-9.md
deleted file mode 100644
index 8a1856da8..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ps-9.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ps-9 - \[catalog\] Position Descriptions
-
-## Control Statement
-
-Incorporate security and privacy roles and responsibilities into organizational position descriptions.
-
-## Control guidance
-
-Specification of security and privacy roles in individual organizational position descriptions facilitates clarity in understanding the security or privacy responsibilities associated with the roles and the role-based security and privacy training requirements for the roles.
-
-## Control assessment-objective
-
-security roles and responsibilities are incorporated into organizational position descriptions;
-privacy roles and responsibilities are incorporated into organizational position descriptions.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ps-9
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ra-1.md b/docs/compliance/dist/system-security-plans/ato/ra-1.md
deleted file mode 100644
index fb3e108d1..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ra-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ra-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found risk assessment policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the risk assessment policy and the associated risk assessment controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the risk assessment policy and procedures; and
-
-- \[c\] Review and update the current risk assessment:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Risk assessment policy and procedures address the controls in the RA family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of risk assessment policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies reflecting the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to risk assessment policy and procedures include assessment or audit findings, security incidents or breaches, or changes in laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a risk assessment policy is developed and documented;
-the risk assessment policy is disseminated to personnel or roles;
-risk assessment procedures to facilitate the implementation of the risk assessment policy and associated risk assessment controls are developed and documented;
-the risk assessment procedures are disseminated to personnel or roles;
-the No value found risk assessment policy addresses purpose;
-the No value found risk assessment policy addresses scope;
-the No value found risk assessment policy addresses roles;
-the No value found risk assessment policy addresses responsibilities;
-the No value found risk assessment policy addresses management commitment;
-the No value found risk assessment policy addresses coordination among organizational entities;
-the No value found risk assessment policy addresses compliance;
-the No value found risk assessment policy is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the risk assessment policy and procedures;
-the current risk assessment policy is reviewed and updated frequency;
-the current risk assessment policy is reviewed and updated following events;
-the current risk assessment procedures are reviewed and updated frequency;
-the current risk assessment procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ra-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ra-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ra-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ra-2.md b/docs/compliance/dist/system-security-plans/ato/ra-2.md
deleted file mode 100644
index a9e131e6a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ra-2.md
+++ /dev/null
@@ -1,59 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ra-2 - \[catalog\] Security Categorization
-
-## Control Statement
-
-- \[a\] Categorize the system and information it processes, stores, and transmits;
-
-- \[b\] Document the security categorization results, including supporting rationale, in the security plan for the system; and
-
-- \[c\] Verify that the authorizing official or authorizing official designated representative reviews and approves the security categorization decision.
-
-## Control guidance
-
-Security categories describe the potential adverse impacts or negative consequences to organizational operations, organizational assets, and individuals if organizational information and systems are compromised through a loss of confidentiality, integrity, or availability. Security categorization is also a type of asset loss characterization in systems security engineering processes that is carried out throughout the system development life cycle. Organizations can use privacy risk assessments or privacy impact assessments to better understand the potential adverse effects on individuals. [CNSSI 1253](#4e4fbc93-333d-45e6-a875-de36b878b6b9) provides additional guidance on categorization for national security systems.
-
-Organizations conduct the security categorization process as an organization-wide activity with the direct involvement of chief information officers, senior agency information security officers, senior agency officials for privacy, system owners, mission and business owners, and information owners or stewards. Organizations consider the potential adverse impacts to other organizations and, in accordance with [USA PATRIOT](#13f0c39d-eaf7-417a-baef-69a041878bb5) and Homeland Security Presidential Directives, potential national-level adverse impacts.
-
-Security categorization processes facilitate the development of inventories of information assets and, along with [CM-8](#cm-8) , mappings to specific system components where information is processed, stored, or transmitted. The security categorization process is revisited throughout the system development life cycle to ensure that the security categories remain accurate and relevant.
-
-## Control assessment-objective
-
-the system and the information it processes, stores, and transmits are categorized;
-the security categorization results, including supporting rationale, are documented in the security plan for the system;
-the authorizing official or authorizing official designated representative reviews and approves the security categorization decision.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ra-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ra-2_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ra-2_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ra-3.1.md b/docs/compliance/dist/system-security-plans/ato/ra-3.1.md
deleted file mode 100644
index 24b519a13..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ra-3.1.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ra-3.1 - \[catalog\] Supply Chain Risk Assessment
-
-## Control Statement
-
-- \[a\] Assess supply chain risks associated with systems, system components, and system services ; and
-
-- \[b\] Update the supply chain risk assessment frequency , when there are significant changes to the relevant supply chain, or when changes to the system, environments of operation, or other conditions may necessitate a change in the supply chain.
-
-## Control guidance
-
-Supply chain-related events include disruption, use of defective components, insertion of counterfeits, theft, malicious development practices, improper delivery practices, and insertion of malicious code. These events can have a significant impact on the confidentiality, integrity, or availability of a system and its information and, therefore, can also adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation. The supply chain-related events may be unintentional or malicious and can occur at any point during the system life cycle. An analysis of supply chain risk can help an organization identify systems or components for which additional supply chain risk mitigations are required.
-
-## Control assessment-objective
-
-supply chain risks associated with systems, system components, and system services are assessed;
-the supply chain risk assessment is updated frequency , when there are significant changes to the relevant supply chain, or when changes to the system, environments of operation, or other conditions may necessitate a change in the supply chain.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item ra-3.1_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item ra-3.1_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ra-3.md b/docs/compliance/dist/system-security-plans/ato/ra-3.md
deleted file mode 100644
index 9e9a8ac2c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ra-3.md
+++ /dev/null
@@ -1,92 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ra-3 - \[catalog\] Risk Assessment
-
-## Control Statement
-
-- \[a\] Conduct a risk assessment, including:
-
-  - \[1\] Identifying threats to and vulnerabilities in the system;
-  - \[2\] Determining the likelihood and magnitude of harm from unauthorized access, use, disclosure, disruption, modification, or destruction of the system, the information it processes, stores, or transmits, and any related information; and
-  - \[3\] Determining the likelihood and impact of adverse effects on individuals arising from the processing of personally identifiable information;
-
-- \[b\] Integrate risk assessment results and risk management decisions from the organization and mission or business process perspectives with system-level risk assessments;
-
-- \[c\] Document risk assessment results in No value found;
-
-- \[d\] Review risk assessment results frequency;
-
-- \[e\] Disseminate risk assessment results to personnel or roles ; and
-
-- \[f\] Update the risk assessment frequency or when there are significant changes to the system, its environment of operation, or other conditions that may impact the security or privacy state of the system.
-
-## Control guidance
-
-Risk assessments consider threats, vulnerabilities, likelihood, and impact to organizational operations and assets, individuals, other organizations, and the Nation. Risk assessments also consider risk from external parties, including contractors who operate systems on behalf of the organization, individuals who access organizational systems, service providers, and outsourcing entities.
-
-Organizations can conduct risk assessments at all three levels in the risk management hierarchy (i.e., organization level, mission/business process level, or information system level) and at any stage in the system development life cycle. Risk assessments can also be conducted at various steps in the Risk Management Framework, including preparation, categorization, control selection, control implementation, control assessment, authorization, and control monitoring. Risk assessment is an ongoing activity carried out throughout the system development life cycle.
-
-Risk assessments can also address information related to the system, including system design, the intended use of the system, testing results, and supply chain-related information or artifacts. Risk assessments can play an important role in control selection processes, particularly during the application of tailoring guidance and in the earliest phases of capability determination.
-
-## Control assessment-objective
-
-a risk assessment is conducted to identify threats to and vulnerabilities in the system;
-a risk assessment is conducted to determine the likelihood and magnitude of harm from unauthorized access, use, disclosure, disruption, modification, or destruction of the system; the information it processes, stores, or transmits; and any related information;
-a risk assessment is conducted to determine the likelihood and impact of adverse effects on individuals arising from the processing of personally identifiable information;
-risk assessment results and risk management decisions from the organization and mission or business process perspectives are integrated with system-level risk assessments;
-risk assessment results are documented in No value found;
-risk assessment results are reviewed frequency;
-risk assessment results are disseminated to personnel or roles;
-the risk assessment is updated frequency or when there are significant changes to the system, its environment of operation, or other conditions that may impact the security or privacy state of the system.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ra-3_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ra-3_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ra-3_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ra-3_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item ra-3_smt.e
-
-______________________________________________________________________
-
-## Implementation f.
-
-Add control implementation description here for item ra-3_smt.f
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ra-5.11.md b/docs/compliance/dist/system-security-plans/ato/ra-5.11.md
deleted file mode 100644
index c07b29fb4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ra-5.11.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ra-5.11 - \[catalog\] Public Disclosure Program
-
-## Control Statement
-
-Establish a public reporting channel for receiving reports of vulnerabilities in organizational systems and system components.
-
-## Control guidance
-
-The reporting channel is publicly discoverable and contains clear language authorizing good-faith research and the disclosure of vulnerabilities to the organization. The organization does not condition its authorization on an expectation of indefinite non-disclosure to the public by the reporting entity but may request a specific time period to properly remediate the vulnerability.
-
-## Control assessment-objective
-
-a public reporting channel is established for receiving reports of vulnerabilities in organizational systems and system components.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ra-5.11
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ra-5.2.md b/docs/compliance/dist/system-security-plans/ato/ra-5.2.md
deleted file mode 100644
index c36b1395d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ra-5.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ra-5.2 - \[catalog\] Update Vulnerabilities to Be Scanned
-
-## Control Statement
-
-Update the system vulnerabilities to be scanned No value found.
-
-## Control guidance
-
-Due to the complexity of modern software, systems, and other factors, new vulnerabilities are discovered on a regular basis. It is important that newly discovered vulnerabilities are added to the list of vulnerabilities to be scanned to ensure that the organization can take steps to mitigate those vulnerabilities in a timely manner.
-
-## Control assessment-objective
-
-the system vulnerabilities to be scanned are updated No value found.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ra-5.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ra-5.5.md b/docs/compliance/dist/system-security-plans/ato/ra-5.5.md
deleted file mode 100644
index dd16ecfa8..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ra-5.5.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ra-5.5 - \[catalog\] Privileged Access
-
-## Control Statement
-
-Implement privileged access authorization to system components for vulnerability scanning activities.
-
-## Control guidance
-
-In certain situations, the nature of the vulnerability scanning may be more intrusive, or the system component that is the subject of the scanning may contain classified or controlled unclassified information, such as personally identifiable information. Privileged access authorization to selected system components facilitates more thorough vulnerability scanning and protects the sensitive nature of such scanning.
-
-## Control assessment-objective
-
-privileged access authorization is implemented to system components for vulnerability scanning activities.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ra-5.5
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ra-5.md b/docs/compliance/dist/system-security-plans/ato/ra-5.md
deleted file mode 100644
index 2623679d4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ra-5.md
+++ /dev/null
@@ -1,96 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ra-5 - \[catalog\] Vulnerability Monitoring and Scanning
-
-## Control Statement
-
-- \[a\] Monitor and scan for vulnerabilities in the system and hosted applications organization-defined frequency and/or randomly in accordance with organization-defined process and when new vulnerabilities potentially affecting the system are identified and reported;
-
-- \[b\] Employ vulnerability monitoring tools and techniques that facilitate interoperability among tools and automate parts of the vulnerability management process by using standards for:
-
-  - \[1\] Enumerating platforms, software flaws, and improper configurations;
-  - \[2\] Formatting checklists and test procedures; and
-  - \[3\] Measuring vulnerability impact;
-
-- \[c\] Analyze vulnerability scan reports and results from vulnerability monitoring;
-
-- \[d\] Remediate legitimate vulnerabilities response times in accordance with an organizational assessment of risk;
-
-- \[e\] Share information obtained from the vulnerability monitoring process and control assessments with personnel or roles to help eliminate similar vulnerabilities in other systems; and
-
-- \[f\] Employ vulnerability monitoring tools that include the capability to readily update the vulnerabilities to be scanned.
-
-## Control guidance
-
-Security categorization of information and systems guides the frequency and comprehensiveness of vulnerability monitoring (including scans). Organizations determine the required vulnerability monitoring for system components, ensuring that the potential sources of vulnerabilities—such as infrastructure components (e.g., switches, routers, guards, sensors), networked printers, scanners, and copiers—are not overlooked. The capability to readily update vulnerability monitoring tools as new vulnerabilities are discovered and announced and as new scanning methods are developed helps to ensure that new vulnerabilities are not missed by employed vulnerability monitoring tools. The vulnerability monitoring tool update process helps to ensure that potential vulnerabilities in the system are identified and addressed as quickly as possible. Vulnerability monitoring and analyses for custom software may require additional approaches, such as static analysis, dynamic analysis, binary analysis, or a hybrid of the three approaches. Organizations can use these analysis approaches in source code reviews and in a variety of tools, including web-based application scanners, static analysis tools, and binary analyzers.
-
-Vulnerability monitoring includes scanning for patch levels; scanning for functions, ports, protocols, and services that should not be accessible to users or devices; and scanning for flow control mechanisms that are improperly configured or operating incorrectly. Vulnerability monitoring may also include continuous vulnerability monitoring tools that use instrumentation to continuously analyze components. Instrumentation-based tools may improve accuracy and may be run throughout an organization without scanning. Vulnerability monitoring tools that facilitate interoperability include tools that are Security Content Automated Protocol (SCAP)-validated. Thus, organizations consider using scanning tools that express vulnerabilities in the Common Vulnerabilities and Exposures (CVE) naming convention and that employ the Open Vulnerability Assessment Language (OVAL) to determine the presence of vulnerabilities. Sources for vulnerability information include the Common Weakness Enumeration (CWE) listing and the National Vulnerability Database (NVD). Control assessments, such as red team exercises, provide additional sources of potential vulnerabilities for which to scan. Organizations also consider using scanning tools that express vulnerability impact by the Common Vulnerability Scoring System (CVSS).
-
-Vulnerability monitoring includes a channel and process for receiving reports of security vulnerabilities from the public at-large. Vulnerability disclosure programs can be as simple as publishing a monitored email address or web form that can receive reports, including notification authorizing good-faith research and disclosure of security vulnerabilities. Organizations generally expect that such research is happening with or without their authorization and can use public vulnerability disclosure channels to increase the likelihood that discovered vulnerabilities are reported directly to the organization for remediation.
-
-Organizations may also employ the use of financial incentives (also known as "bug bounties" ) to further encourage external security researchers to report discovered vulnerabilities. Bug bounty programs can be tailored to the organization’s needs. Bounties can be operated indefinitely or over a defined period of time and can be offered to the general public or to a curated group. Organizations may run public and private bounties simultaneously and could choose to offer partially credentialed access to certain participants in order to evaluate security vulnerabilities from privileged vantage points.
-
-## Control assessment-objective
-
-systems and hosted applications are monitored for vulnerabilities frequency and/or randomly in accordance with organization-defined process and when new vulnerabilities potentially affecting the system are identified and reported;
-systems and hosted applications are scanned for vulnerabilities frequency and/or randomly in accordance with organization-defined process and when new vulnerabilities potentially affecting the system are identified and reported;
-vulnerability monitoring tools and techniques are employed to facilitate interoperability among tools;
-vulnerability monitoring tools and techniques are employed to automate parts of the vulnerability management process by using standards for enumerating platforms, software flaws, and improper configurations;
-vulnerability monitoring tools and techniques are employed to facilitate interoperability among tools and to automate parts of the vulnerability management process by using standards for formatting checklists and test procedures;
-vulnerability monitoring tools and techniques are employed to facilitate interoperability among tools and to automate parts of the vulnerability management process by using standards for measuring vulnerability impact;
-vulnerability scan reports and results from vulnerability monitoring are analyzed;
-legitimate vulnerabilities are remediated response times in accordance with an organizational assessment of risk;
-information obtained from the vulnerability monitoring process and control assessments is shared with personnel or roles to help eliminate similar vulnerabilities in other systems;
-vulnerability monitoring tools that include the capability to readily update the vulnerabilities to be scanned are employed.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item ra-5_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item ra-5_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item ra-5_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item ra-5_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item ra-5_smt.e
-
-______________________________________________________________________
-
-## Implementation f.
-
-Add control implementation description here for item ra-5_smt.f
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ra-7.md b/docs/compliance/dist/system-security-plans/ato/ra-7.md
deleted file mode 100644
index 0a1571367..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ra-7.md
+++ /dev/null
@@ -1,34 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ra-7 - \[catalog\] Risk Response
-
-## Control Statement
-
-Respond to findings from security and privacy assessments, monitoring, and audits in accordance with organizational risk tolerance.
-
-## Control guidance
-
-Organizations have many options for responding to risk including mitigating risk by implementing new controls or strengthening existing controls, accepting risk with appropriate justification or rationale, sharing or transferring risk, or avoiding risk. The risk tolerance of the organization influences risk response decisions and actions. Risk response addresses the need to determine an appropriate response to risk before generating a plan of action and milestones entry. For example, the response may be to accept risk or reject risk, or it may be possible to mitigate the risk immediately so that a plan of action and milestones entry is not needed. However, if the risk response is to mitigate the risk, and the mitigation cannot be completed immediately, a plan of action and milestones entry is generated.
-
-## Control assessment-objective
-
-findings from security assessments are responded to in accordance with organizational risk tolerance;
-findings from privacy assessments are responded to in accordance with organizational risk tolerance;
-findings from monitoring are responded to in accordance with organizational risk tolerance;
-findings from audits are responded to in accordance with organizational risk tolerance.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ra-7
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/ra-9.md b/docs/compliance/dist/system-security-plans/ato/ra-9.md
deleted file mode 100644
index db86d1af2..000000000
--- a/docs/compliance/dist/system-security-plans/ato/ra-9.md
+++ /dev/null
@@ -1,35 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# ra-9 - \[catalog\] Criticality Analysis
-
-## Control Statement
-
-Identify critical system components and functions by performing a criticality analysis for systems, system components, or system services at decision points in the system development life cycle.
-
-## Control guidance
-
-Not all system components, functions, or services necessarily require significant protections. For example, criticality analysis is a key tenet of supply chain risk management and informs the prioritization of protection activities. The identification of critical system components and functions considers applicable laws, executive orders, regulations, directives, policies, standards, system functionality requirements, system and component interfaces, and system and component dependencies. Systems engineers conduct a functional decomposition of a system to identify mission-critical functions and components. The functional decomposition includes the identification of organizational missions supported by the system, decomposition into the specific functions to perform those missions, and traceability to the hardware, software, and firmware components that implement those functions, including when the functions are shared by many components within and external to the system.
-
-The operational environment of a system or a system component may impact the criticality, including the connections to and dependencies on cyber-physical systems, devices, system-of-systems, and outsourced IT services. System components that allow unmediated access to critical system components or functions are considered critical due to the inherent vulnerabilities that such components create. Component and function criticality are assessed in terms of the impact of a component or function failure on the organizational missions that are supported by the system that contains the components and functions.
-
-Criticality analysis is performed when an architecture or design is being developed, modified, or upgraded. If such analysis is performed early in the system development life cycle, organizations may be able to modify the system design to reduce the critical nature of these components and functions, such as by adding redundancy or alternate paths into the system design. Criticality analysis can also influence the protection measures required by development contractors. In addition to criticality analysis for systems, system components, and system services, criticality analysis of information is an important consideration. Such analysis is conducted as part of security categorization in [RA-2](#ra-2).
-
-## Control assessment-objective
-
-critical system components and functions are identified by performing a criticality analysis for systems, system components, or system services at decision points in the system development life cycle.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control ra-9
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-1.md b/docs/compliance/dist/system-security-plans/ato/sa-1.md
deleted file mode 100644
index e2873ff2b..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found system and services acquisition policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the system and services acquisition policy and the associated system and services acquisition controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the system and services acquisition policy and procedures; and
-
-- \[c\] Review and update the current system and services acquisition:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-System and services acquisition policy and procedures address the controls in the SA family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of system and services acquisition policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to system and services acquisition policy and procedures include assessment or audit findings, security incidents or breaches, or changes in laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a system and services acquisition policy is developed and documented;
-the system and services acquisition policy is disseminated to personnel or roles;
-system and services acquisition procedures to facilitate the implementation of the system and services acquisition policy and associated system and services acquisition controls are developed and documented;
-the system and services acquisition procedures are disseminated to personnel or roles;
-the No value found system and services acquisition policy addresses purpose;
-the No value found system and services acquisition policy addresses scope;
-the No value found system and services acquisition policy addresses roles;
-the No value found system and services acquisition policy addresses responsibilities;
-the No value found system and services acquisition policy addresses management commitment;
-the No value found system and services acquisition policy addresses coordination among organizational entities;
-the No value found system and services acquisition policy addresses compliance;
-the No value found system and services acquisition policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the system and services acquisition policy and procedures;
-the system and services acquisition policy is reviewed and updated frequency;
-the current system and services acquisition policy is reviewed and updated following events;
-the current system and services acquisition procedures are reviewed and updated frequency;
-the current system and services acquisition procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sa-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sa-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sa-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-10.md b/docs/compliance/dist/system-security-plans/ato/sa-10.md
deleted file mode 100644
index 7d15e700c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-10.md
+++ /dev/null
@@ -1,83 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-10 - \[catalog\] Developer Configuration Management
-
-## Control Statement
-
-Require the developer of the system, system component, or system service to:
-
-- \[a\] Perform configuration management during system, component, or service No value found;
-
-- \[b\] Document, manage, and control the integrity of changes to configuration items;
-
-- \[c\] Implement only organization-approved changes to the system, component, or service;
-
-- \[d\] Document approved changes to the system, component, or service and the potential security and privacy impacts of such changes; and
-
-- \[e\] Track security flaws and flaw resolution within the system, component, or service and report findings to personnel.
-
-## Control guidance
-
-Organizations consider the quality and completeness of configuration management activities conducted by developers as direct evidence of applying effective security controls. Controls include protecting the master copies of material used to generate security-relevant portions of the system hardware, software, and firmware from unauthorized modification or destruction. Maintaining the integrity of changes to the system, system component, or system service requires strict configuration control throughout the system development life cycle to track authorized changes and prevent unauthorized changes.
-
-The configuration items that are placed under configuration management include the formal model; the functional, high-level, and low-level design specifications; other design data; implementation documentation; source code and hardware schematics; the current running version of the object code; tools for comparing new versions of security-relevant hardware descriptions and source code with previous versions; and test fixtures and documentation. Depending on the mission and business needs of organizations and the nature of the contractual relationships in place, developers may provide configuration management support during the operations and maintenance stage of the system development life cycle.
-
-## Control assessment-objective
-
-the developer of the system, system component, or system service is required to perform configuration management during system, component, or service No value found;
-the developer of the system, system component, or system service is required to document the integrity of changes to configuration items;
-the developer of the system, system component, or system service is required to manage the integrity of changes to configuration items;
-the developer of the system, system component, or system service is required to control the integrity of changes to configuration items;
-the developer of the system, system component, or system service is required to implement only organization-approved changes to the system, component, or service;
-the developer of the system, system component, or system service is required to document approved changes to the system, component, or service;
-the developer of the system, system component, or system service is required to document the potential security impacts of approved changes;
-the developer of the system, system component, or system service is required to document the potential privacy impacts of approved changes;
-the developer of the system, system component, or system service is required to track security flaws within the system, component, or service;
-the developer of the system, system component, or system service is required to track security flaw resolutions within the system, component, or service;
-the developer of the system, system component, or system service is required to report findings to personnel.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sa-10_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sa-10_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sa-10_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item sa-10_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item sa-10_smt.e
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-11.md b/docs/compliance/dist/system-security-plans/ato/sa-11.md
deleted file mode 100644
index edcfd449f..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-11.md
+++ /dev/null
@@ -1,81 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-11 - \[catalog\] Developer Testing and Evaluation
-
-## Control Statement
-
-Require the developer of the system, system component, or system service, at all post-design stages of the system development life cycle, to:
-
-- \[a\] Develop and implement a plan for ongoing security and privacy control assessments;
-
-- \[b\] Perform No value found testing/evaluation frequency to conduct at depth and coverage;
-
-- \[c\] Produce evidence of the execution of the assessment plan and the results of the testing and evaluation;
-
-- \[d\] Implement a verifiable flaw remediation process; and
-
-- \[e\] Correct flaws identified during testing and evaluation.
-
-## Control guidance
-
-Developmental testing and evaluation confirms that the required controls are implemented correctly, operating as intended, enforcing the desired security and privacy policies, and meeting established security and privacy requirements. Security properties of systems and the privacy of individuals may be affected by the interconnection of system components or changes to those components. The interconnections or changes—including upgrading or replacing applications, operating systems, and firmware—may adversely affect previously implemented controls. Ongoing assessment during development allows for additional types of testing and evaluation that developers can conduct to reduce or eliminate potential flaws. Testing custom software applications may require approaches such as manual code review, security architecture review, and penetration testing, as well as and static analysis, dynamic analysis, binary analysis, or a hybrid of the three analysis approaches.
-
-Developers can use the analysis approaches, along with security instrumentation and fuzzing, in a variety of tools and in source code reviews. The security and privacy assessment plans include the specific activities that developers plan to carry out, including the types of analyses, testing, evaluation, and reviews of software and firmware components; the degree of rigor to be applied; the frequency of the ongoing testing and evaluation; and the types of artifacts produced during those processes. The depth of testing and evaluation refers to the rigor and level of detail associated with the assessment process. The coverage of testing and evaluation refers to the scope (i.e., number and type) of the artifacts included in the assessment process. Contracts specify the acceptance criteria for security and privacy assessment plans, flaw remediation processes, and the evidence that the plans and processes have been diligently applied. Methods for reviewing and protecting assessment plans, evidence, and documentation are commensurate with the security category or classification level of the system. Contracts may specify protection requirements for documentation.
-
-## Control assessment-objective
-
-the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to develop a plan for ongoing security assessments;
-the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a plan for ongoing security assessments;
-the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to develop a plan for privacy assessments;
-the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a plan for ongoing privacy assessments;
-the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to perform No value found testing/evaluation frequency to conduct at depth and coverage;
-the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to produce evidence of the execution of the assessment plan;
-the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to produce the results of the testing and evaluation;
-the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a verifiable flaw remediation process;
-the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to correct flaws identified during testing and evaluation.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sa-11_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sa-11_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sa-11_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item sa-11_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item sa-11_smt.e
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-15.3.md b/docs/compliance/dist/system-security-plans/ato/sa-15.3.md
deleted file mode 100644
index a84016b9f..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-15.3.md
+++ /dev/null
@@ -1,49 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-15.3 - \[catalog\] Criticality Analysis
-
-## Control Statement
-
-Require the developer of the system, system component, or system service to perform a criticality analysis:
-
-- \[a\] At the following decision points in the system development life cycle: decision points ; and
-
-- \[b\] At the following level of rigor: organization-defined breadth and depth of criticality analysis.
-
-## Control guidance
-
-Criticality analysis performed by the developer provides input to the criticality analysis performed by organizations. Developer input is essential to organizational criticality analysis because organizations may not have access to detailed design documentation for system components that are developed as commercial off-the-shelf products. Such design documentation includes functional specifications, high-level designs, low-level designs, source code, and hardware schematics. Criticality analysis is important for organizational systems that are designated as high value assets. High value assets can be moderate- or high-impact systems due to heightened adversarial interest or potential adverse effects on the federal enterprise. Developer input is especially important when organizations conduct supply chain criticality analyses.
-
-## Control assessment-objective
-
-the developer of the system, system component, or system service is required to perform a criticality analysis at decision points in the system development life cycle;
-the developer of the system, system component, or system service is required to perform a criticality analysis at the following rigor level: breadth;
-the developer of the system, system component, or system service is required to perform a criticality analysis at the following rigor level: depth .
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item sa-15.3_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item sa-15.3_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-15.md b/docs/compliance/dist/system-security-plans/ato/sa-15.md
deleted file mode 100644
index b0e225b42..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-15.md
+++ /dev/null
@@ -1,58 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-15 - \[catalog\] Development Process, Standards, and Tools
-
-## Control Statement
-
-- \[a\] Require the developer of the system, system component, or system service to follow a documented development process that:
-
-  - \[1\] Explicitly addresses security and privacy requirements;
-  - \[2\] Identifies the standards and tools used in the development process;
-  - \[3\] Documents the specific tool options and tool configurations used in the development process; and
-  - \[4\] Documents, manages, and ensures the integrity of changes to the process and/or tools used in development; and
-
-- \[b\] Review the development process, standards, tools, tool options, and tool configurations frequency to determine if the process, standards, tools, tool options and tool configurations selected and employed can satisfy the following security and privacy requirements: organization-defined security and privacy requirements.
-
-## Control guidance
-
-Development tools include programming languages and computer-aided design systems. Reviews of development processes include the use of maturity models to determine the potential effectiveness of such processes. Maintaining the integrity of changes to tools and processes facilitates effective supply chain risk assessment and mitigation. Such integrity requires configuration control throughout the system development life cycle to track authorized changes and prevent unauthorized changes.
-
-## Control assessment-objective
-
-the developer of the system, system component, or system service is required to follow a documented development process that explicitly addresses security requirements;
-the developer of the system, system component, or system service is required to follow a documented development process that explicitly addresses privacy requirements;
-the developer of the system, system component, or system service is required to follow a documented development process that identifies the standards used in the development process;
-the developer of the system, system component, or system service is required to follow a documented development process that identifies the tools used in the development process;
-the developer of the system, system component, or system service is required to follow a documented development process that documents the specific tool used in the development process;
-the developer of the system, system component, or system service is required to follow a documented development process that documents the specific tool configurations used in the development process;
-the developer of the system, system component, or system service is required to follow a documented development process that documents, manages, and ensures the integrity of changes to the process and/or tools used in development;
-the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed frequency to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy security requirements;
-the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed frequency to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy privacy requirements.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sa-15_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sa-15_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-2.md b/docs/compliance/dist/system-security-plans/ato/sa-2.md
deleted file mode 100644
index 06e848fe0..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-2.md
+++ /dev/null
@@ -1,58 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-2 - \[catalog\] Allocation of Resources
-
-## Control Statement
-
-- \[a\] Determine the high-level information security and privacy requirements for the system or system service in mission and business process planning;
-
-- \[b\] Determine, document, and allocate the resources required to protect the system or system service as part of the organizational capital planning and investment control process; and
-
-- \[c\] Establish a discrete line item for information security and privacy in organizational programming and budgeting documentation.
-
-## Control guidance
-
-Resource allocation for information security and privacy includes funding for system and services acquisition, sustainment, and supply chain-related risks throughout the system development life cycle.
-
-## Control assessment-objective
-
-the high-level information security requirements for the system or system service are determined in mission and business process planning;
-the high-level privacy requirements for the system or system service are determined in mission and business process planning;
-the resources required to protect the system or system service are determined and documented as part of the organizational capital planning and investment control process;
-the resources required to protect the system or system service are allocated as part of the organizational capital planning and investment control process;
-a discrete line item for information security is established in organizational programming and budgeting documentation;
-a discrete line item for privacy is established in organizational programming and budgeting documentation.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sa-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sa-2_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sa-2_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-22.md b/docs/compliance/dist/system-security-plans/ato/sa-22.md
deleted file mode 100644
index 619e6dfe2..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-22.md
+++ /dev/null
@@ -1,48 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-22 - \[catalog\] Unsupported System Components
-
-## Control Statement
-
-- \[a\] Replace system components when support for the components is no longer available from the developer, vendor, or manufacturer; or
-
-- \[b\] Provide the following options for alternative sources for continued support for unsupported components No value found.
-
-## Control guidance
-
-Support for system components includes software patches, firmware updates, replacement parts, and maintenance contracts. An example of unsupported components includes when vendors no longer provide critical software patches or product updates, which can result in an opportunity for adversaries to exploit weaknesses in the installed components. Exceptions to replacing unsupported system components include systems that provide critical mission or business capabilities where newer technologies are not available or where the systems are so isolated that installing replacement components is not an option.
-
-Alternative sources for support address the need to provide continued support for system components that are no longer supported by the original manufacturers, developers, or vendors when such components remain essential to organizational mission and business functions. If necessary, organizations can establish in-house support by developing customized patches for critical software components or, alternatively, obtain the services of external providers who provide ongoing support for the designated unsupported components through contractual relationships. Such contractual relationships can include open-source software value-added vendors. The increased risk of using unsupported system components can be mitigated, for example, by prohibiting the connection of such components to public or uncontrolled networks, or implementing other forms of isolation.
-
-## Control assessment-objective
-
-system components are replaced when support for the components is no longer available from the developer, vendor, or manufacturer;
-No value found provide options for alternative sources for continued support for unsupported components.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sa-22_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sa-22_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-3.md b/docs/compliance/dist/system-security-plans/ato/sa-3.md
deleted file mode 100644
index 2364de2a2..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-3.md
+++ /dev/null
@@ -1,70 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-3 - \[catalog\] System Development Life Cycle
-
-## Control Statement
-
-- \[a\] Acquire, develop, and manage the system using system-development life cycle that incorporates information security and privacy considerations;
-
-- \[b\] Define and document information security and privacy roles and responsibilities throughout the system development life cycle;
-
-- \[c\] Identify individuals having information security and privacy roles and responsibilities; and
-
-- \[d\] Integrate the organizational information security and privacy risk management process into system development life cycle activities.
-
-## Control guidance
-
-A system development life cycle process provides the foundation for the successful development, implementation, and operation of organizational systems. The integration of security and privacy considerations early in the system development life cycle is a foundational principle of systems security engineering and privacy engineering. To apply the required controls within the system development life cycle requires a basic understanding of information security and privacy, threats, vulnerabilities, adverse impacts, and risk to critical mission and business functions. The security engineering principles in [SA-8](#sa-8) help individuals properly design, code, and test systems and system components. Organizations include qualified personnel (e.g., senior agency information security officers, senior agency officials for privacy, security and privacy architects, and security and privacy engineers) in system development life cycle processes to ensure that established security and privacy requirements are incorporated into organizational systems. Role-based security and privacy training programs can ensure that individuals with key security and privacy roles and responsibilities have the experience, skills, and expertise to conduct assigned system development life cycle activities.
-
-The effective integration of security and privacy requirements into enterprise architecture also helps to ensure that important security and privacy considerations are addressed throughout the system life cycle and that those considerations are directly related to organizational mission and business processes. This process also facilitates the integration of the information security and privacy architectures into the enterprise architecture, consistent with the risk management strategy of the organization. Because the system development life cycle involves multiple organizations, (e.g., external suppliers, developers, integrators, service providers), acquisition and supply chain risk management functions and controls play significant roles in the effective management of the system during the life cycle.
-
-## Control assessment-objective
-
-the system is acquired, developed, and managed using system-development life cycle that incorporates information security considerations;
-the system is acquired, developed, and managed using system-development life cycle that incorporates privacy considerations;
-information security roles and responsibilities are defined and documented throughout the system development life cycle;
-privacy roles and responsibilities are defined and documented throughout the system development life cycle;
-individuals with information security roles and responsibilities are identified;
-individuals with privacy roles and responsibilities are identified;
-organizational information security risk management processes are integrated into system development life cycle activities;
-organizational privacy risk management processes are integrated into system development life cycle activities.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sa-3_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sa-3_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sa-3_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item sa-3_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-4.1.md b/docs/compliance/dist/system-security-plans/ato/sa-4.1.md
deleted file mode 100644
index 35597bffe..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-4.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-4.1 - \[catalog\] Functional Properties of Controls
-
-## Control Statement
-
-Require the developer of the system, system component, or system service to provide a description of the functional properties of the controls to be implemented.
-
-## Control guidance
-
-Functional properties of security and privacy controls describe the functionality (i.e., security or privacy capability, functions, or mechanisms) visible at the interfaces of the controls and specifically exclude functionality and data structures internal to the operation of the controls.
-
-## Control assessment-objective
-
-the developer of the system, system component, or system service is required to provide a description of the functional properties of the controls to be implemented.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sa-4.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-4.10.md b/docs/compliance/dist/system-security-plans/ato/sa-4.10.md
deleted file mode 100644
index b330a3be8..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-4.10.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-4.10 - \[catalog\] Use of Approved PIV Products
-
-## Control Statement
-
-Employ only information technology products on the FIPS 201-approved products list for Personal Identity Verification (PIV) capability implemented within organizational systems.
-
-## Control guidance
-
-Products on the FIPS 201-approved products list meet NIST requirements for Personal Identity Verification (PIV) of Federal Employees and Contractors. PIV cards are used for multi-factor authentication in systems and organizations.
-
-## Control assessment-objective
-
-only information technology products on the FIPS 201-approved products list for the Personal Identity Verification (PIV) capability implemented within organizational systems are employed.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sa-4.10
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-4.2.md b/docs/compliance/dist/system-security-plans/ato/sa-4.2.md
deleted file mode 100644
index 3918170c8..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-4.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-4.2 - \[catalog\] Design and Implementation Information for Controls
-
-## Control Statement
-
-Require the developer of the system, system component, or system service to provide design and implementation information for the controls that includes: No value found at level of detail.
-
-## Control guidance
-
-Organizations may require different levels of detail in the documentation for the design and implementation of controls in organizational systems, system components, or system services based on mission and business requirements, requirements for resiliency and trustworthiness, and requirements for analysis and testing. Systems can be partitioned into multiple subsystems. Each subsystem within the system can contain one or more modules. The high-level design for the system is expressed in terms of subsystems and the interfaces between subsystems providing security-relevant functionality. The low-level design for the system is expressed in terms of modules and the interfaces between modules providing security-relevant functionality. Design and implementation documentation can include manufacturer, version, serial number, verification hash signature, software libraries used, date of purchase or download, and the vendor or download source. Source code and hardware schematics are referred to as the implementation representation of the system.
-
-## Control assessment-objective
-
-the developer of the system, system component, or system service is required to provide design and implementation information for the controls that includes using No value found at level of detail.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sa-4.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-4.9.md b/docs/compliance/dist/system-security-plans/ato/sa-4.9.md
deleted file mode 100644
index e1500c409..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-4.9.md
+++ /dev/null
@@ -1,34 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-4.9 - \[catalog\] Functions, Ports, Protocols, and Services in Use
-
-## Control Statement
-
-Require the developer of the system, system component, or system service to identify the functions, ports, protocols, and services intended for organizational use.
-
-## Control guidance
-
-The identification of functions, ports, protocols, and services early in the system development life cycle (e.g., during the initial requirements definition and design stages) allows organizations to influence the design of the system, system component, or system service. This early involvement in the system development life cycle helps organizations avoid or minimize the use of functions, ports, protocols, or services that pose unnecessarily high risks and understand the trade-offs involved in blocking specific ports, protocols, or services or requiring system service providers to do so. Early identification of functions, ports, protocols, and services avoids costly retrofitting of controls after the system, component, or system service has been implemented. [SA-9](#sa-9) describes the requirements for external system services. Organizations identify which functions, ports, protocols, and services are provided from external sources.
-
-## Control assessment-objective
-
-the developer of the system, system component, or system service is required to identify the functions intended for organizational use;
-the developer of the system, system component, or system service is required to identify the ports intended for organizational use;
-the developer of the system, system component, or system service is required to identify the protocols intended for organizational use;
-the developer of the system, system component, or system service is required to identify the services intended for organizational use.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sa-4.9
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-4.md b/docs/compliance/dist/system-security-plans/ato/sa-4.md
deleted file mode 100644
index c10028ac4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-4.md
+++ /dev/null
@@ -1,122 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-4 - \[catalog\] Acquisition Process
-
-## Control Statement
-
-Include the following requirements, descriptions, and criteria, explicitly or by reference, using No value found in the acquisition contract for the system, system component, or system service:
-
-- \[a\] Security and privacy functional requirements;
-
-- \[b\] Strength of mechanism requirements;
-
-- \[c\] Security and privacy assurance requirements;
-
-- \[d\] Controls needed to satisfy the security and privacy requirements.
-
-- \[e\] Security and privacy documentation requirements;
-
-- \[f\] Requirements for protecting security and privacy documentation;
-
-- \[g\] Description of the system development environment and environment in which the system is intended to operate;
-
-- \[h\] Allocation of responsibility or identification of parties responsible for information security, privacy, and supply chain risk management; and
-
-- \[i\] Acceptance criteria.
-
-## Control guidance
-
-Security and privacy functional requirements are typically derived from the high-level security and privacy requirements described in [SA-2](#sa-2) . The derived requirements include security and privacy capabilities, functions, and mechanisms. Strength requirements associated with such capabilities, functions, and mechanisms include degree of correctness, completeness, resistance to tampering or bypass, and resistance to direct attack. Assurance requirements include development processes, procedures, and methodologies as well as the evidence from development and assessment activities that provide grounds for confidence that the required functionality is implemented and possesses the required strength of mechanism. [SP 800-160-1](#e3cc0520-a366-4fc9-abc2-5272db7e3564) describes the process of requirements engineering as part of the system development life cycle.
-
-Controls can be viewed as descriptions of the safeguards and protection capabilities appropriate for achieving the particular security and privacy objectives of the organization and for reflecting the security and privacy requirements of stakeholders. Controls are selected and implemented in order to satisfy system requirements and include developer and organizational responsibilities. Controls can include technical, administrative, and physical aspects. In some cases, the selection and implementation of a control may necessitate additional specification by the organization in the form of derived requirements or instantiated control parameter values. The derived requirements and control parameter values may be necessary to provide the appropriate level of implementation detail for controls within the system development life cycle.
-
-Security and privacy documentation requirements address all stages of the system development life cycle. Documentation provides user and administrator guidance for the implementation and operation of controls. The level of detail required in such documentation is based on the security categorization or classification level of the system and the degree to which organizations depend on the capabilities, functions, or mechanisms to meet risk response expectations. Requirements can include mandated configuration settings that specify allowed functions, ports, protocols, and services. Acceptance criteria for systems, system components, and system services are defined in the same manner as the criteria for any organizational acquisition or procurement.
-
-## Control assessment-objective
-
-security functional requirements, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-privacy functional requirements, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-strength of mechanism requirements, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-security assurance requirements, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-privacy assurance requirements, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-controls needed to satisfy the security requirements, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-controls needed to satisfy the privacy requirements, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-security documentation requirements, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-privacy documentation requirements, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-requirements for protecting security documentation, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-requirements for protecting privacy documentation, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-the description of the system development environment and environment in which the system is intended to operate, requirements, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-the allocation of responsibility or identification of parties responsible for information security requirements, descriptions, and criteria are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service;
-the allocation of responsibility or identification of parties responsible for privacy requirements, descriptions, and criteria are included explicitly or by reference using No value found;
-the allocation of responsibility or identification of parties responsible for supply chain risk management requirements, descriptions, and criteria are included explicitly or by reference using No value found;
-acceptance criteria requirements and descriptions are included explicitly or by reference using No value found in the acquisition contract for the system, system component, or system service.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sa-4_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sa-4_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sa-4_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item sa-4_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item sa-4_smt.e
-
-______________________________________________________________________
-
-## Implementation f.
-
-Add control implementation description here for item sa-4_smt.f
-
-______________________________________________________________________
-
-## Implementation g.
-
-Add control implementation description here for item sa-4_smt.g
-
-______________________________________________________________________
-
-## Implementation h.
-
-Add control implementation description here for item sa-4_smt.h
-
-______________________________________________________________________
-
-## Implementation i.
-
-Add control implementation description here for item sa-4_smt.i
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-5.md b/docs/compliance/dist/system-security-plans/ato/sa-5.md
deleted file mode 100644
index e04086f39..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-5.md
+++ /dev/null
@@ -1,88 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-5 - \[catalog\] System Documentation
-
-## Control Statement
-
-- \[a\] Obtain or develop administrator documentation for the system, system component, or system service that describes:
-
-  - \[1\] Secure configuration, installation, and operation of the system, component, or service;
-  - \[2\] Effective use and maintenance of security and privacy functions and mechanisms; and
-  - \[3\] Known vulnerabilities regarding configuration and use of administrative or privileged functions;
-
-- \[b\] Obtain or develop user documentation for the system, system component, or system service that describes:
-
-  - \[1\] User-accessible security and privacy functions and mechanisms and how to effectively use those functions and mechanisms;
-  - \[2\] Methods for user interaction, which enables individuals to use the system, component, or service in a more secure manner and protect individual privacy; and
-  - \[3\] User responsibilities in maintaining the security of the system, component, or service and privacy of individuals;
-
-- \[c\] Document attempts to obtain system, system component, or system service documentation when such documentation is either unavailable or nonexistent and take actions in response; and
-
-- \[d\] Distribute documentation to personnel or roles.
-
-## Control guidance
-
-System documentation helps personnel understand the implementation and operation of controls. Organizations consider establishing specific measures to determine the quality and completeness of the content provided. System documentation may be used to support the management of supply chain risk, incident response, and other functions. Personnel or roles that require documentation include system owners, system security officers, and system administrators. Attempts to obtain documentation include contacting manufacturers or suppliers and conducting web-based searches. The inability to obtain documentation may occur due to the age of the system or component or the lack of support from developers and contractors. When documentation cannot be obtained, organizations may need to recreate the documentation if it is essential to the implementation or operation of the controls. The protection provided for the documentation is commensurate with the security category or classification of the system. Documentation that addresses system vulnerabilities may require an increased level of protection. Secure operation of the system includes initially starting the system and resuming secure system operation after a lapse in system operation.
-
-## Control assessment-objective
-
-administrator documentation for the system, system component, or system service that describes the secure configuration of the system, component, or service is obtained or developed;
-administrator documentation for the system, system component, or system service that describes the secure installation of the system, component, or service is obtained or developed;
-administrator documentation for the system, system component, or system service that describes the secure operation of the system, component, or service is obtained or developed;
-administrator documentation for the system, system component, or system service that describes the effective use of security functions and mechanisms is obtained or developed;
-administrator documentation for the system, system component, or system service that describes the effective maintenance of security functions and mechanisms is obtained or developed;
-administrator documentation for the system, system component, or system service that describes the effective use of privacy functions and mechanisms is obtained or developed;
-administrator documentation for the system, system component, or system service that describes the effective maintenance of privacy functions and mechanisms is obtained or developed;
-administrator documentation for the system, system component, or system service that describes known vulnerabilities regarding the configuration of administrative or privileged functions is obtained or developed;
-administrator documentation for the system, system component, or system service that describes known vulnerabilities regarding the use of administrative or privileged functions is obtained or developed;
-user documentation for the system, system component, or system service that describes user-accessible security functions and mechanisms is obtained or developed;
-user documentation for the system, system component, or system service that describes how to effectively use those (user-accessible security) functions and mechanisms is obtained or developed;
-user documentation for the system, system component, or system service that describes user-accessible privacy functions and mechanisms is obtained or developed;
-user documentation for the system, system component, or system service that describes how to effectively use those (user-accessible privacy) functions and mechanisms is obtained or developed;
-user documentation for the system, system component, or system service that describes methods for user interaction, which enable individuals to use the system, component, or service in a more secure manner is obtained or developed;
-user documentation for the system, system component, or system service that describes methods for user interaction, which enable individuals to use the system, component, or service to protect individual privacy is obtained or developed;
-user documentation for the system, system component, or system service that describes user responsibilities for maintaining the security of the system, component, or service is obtained or developed;
-user documentation for the system, system component, or system service that describes user responsibilities for maintaining the privacy of individuals is obtained or developed;
-attempts to obtain system, system component, or system service documentation when such documentation is either unavailable or nonexistent is documented;
-after attempts to obtain system, system component, or system service documentation when such documentation is either unavailable or nonexistent, actions are taken in response;
-documentation is distributed to personnel or roles.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sa-5_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sa-5_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sa-5_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item sa-5_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-8.md b/docs/compliance/dist/system-security-plans/ato/sa-8.md
deleted file mode 100644
index 4d28aba4c..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-8.md
+++ /dev/null
@@ -1,44 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-8 - \[catalog\] Security and Privacy Engineering Principles
-
-## Control Statement
-
-Apply the following systems security and privacy engineering principles in the specification, design, development, implementation, and modification of the system and system components: organization-defined systems security and privacy engineering principles.
-
-## Control guidance
-
-Systems security and privacy engineering principles are closely related to and implemented throughout the system development life cycle (see [SA-3](#sa-3) ). Organizations can apply systems security and privacy engineering principles to new systems under development or to systems undergoing upgrades. For existing systems, organizations apply systems security and privacy engineering principles to system upgrades and modifications to the extent feasible, given the current state of hardware, software, and firmware components within those systems.
-
-The application of systems security and privacy engineering principles helps organizations develop trustworthy, secure, and resilient systems and reduces the susceptibility to disruptions, hazards, threats, and the creation of privacy problems for individuals. Examples of system security engineering principles include: developing layered protections; establishing security and privacy policies, architecture, and controls as the foundation for design and development; incorporating security and privacy requirements into the system development life cycle; delineating physical and logical security boundaries; ensuring that developers are trained on how to build secure software; tailoring controls to meet organizational needs; and performing threat modeling to identify use cases, threat agents, attack vectors and patterns, design patterns, and compensating controls needed to mitigate risk.
-
-Organizations that apply systems security and privacy engineering concepts and principles can facilitate the development of trustworthy, secure systems, system components, and system services; reduce risk to acceptable levels; and make informed risk management decisions. System security engineering principles can also be used to protect against certain supply chain risks, including incorporating tamper-resistant hardware into a design.
-
-## Control assessment-objective
-
-systems security engineering principles are applied in the specification of the system and system components;
-systems security engineering principles are applied in the design of the system and system components;
-systems security engineering principles are applied in the development of the system and system components;
-systems security engineering principles are applied in the implementation of the system and system components;
-systems security engineering principles are applied in the modification of the system and system components;
-privacy engineering principles are applied in the specification of the system and system components;
-privacy engineering principles are applied in the design of the system and system components;
-privacy engineering principles are applied in the development of the system and system components;
-privacy engineering principles are applied in the implementation of the system and system components;
-privacy engineering principles are applied in the modification of the system and system components.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sa-8
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-9.2.md b/docs/compliance/dist/system-security-plans/ato/sa-9.2.md
deleted file mode 100644
index 40d626ea4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-9.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-9.2 - \[catalog\] Identification of Functions, Ports, Protocols, and Services
-
-## Control Statement
-
-Require providers of the following external system services to identify the functions, ports, protocols, and other services required for the use of such services: external system services.
-
-## Control guidance
-
-Information from external service providers regarding the specific functions, ports, protocols, and services used in the provision of such services can be useful when the need arises to understand the trade-offs involved in restricting certain functions and services or blocking certain ports and protocols.
-
-## Control assessment-objective
-
-providers of external system services are required to identify the functions, ports, protocols, and other services required for the use of such services.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sa-9.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sa-9.md b/docs/compliance/dist/system-security-plans/ato/sa-9.md
deleted file mode 100644
index ed794c870..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sa-9.md
+++ /dev/null
@@ -1,58 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sa-9 - \[catalog\] External System Services
-
-## Control Statement
-
-- \[a\] Require that providers of external system services comply with organizational security and privacy requirements and employ the following controls: controls;
-
-- \[b\] Define and document organizational oversight and user roles and responsibilities with regard to external system services; and
-
-- \[c\] Employ the following processes, methods, and techniques to monitor control compliance by external service providers on an ongoing basis: processes, methods, and techniques.
-
-## Control guidance
-
-External system services are provided by an external provider, and the organization has no direct control over the implementation of the required controls or the assessment of control effectiveness. Organizations establish relationships with external service providers in a variety of ways, including through business partnerships, contracts, interagency agreements, lines of business arrangements, licensing agreements, joint ventures, and supply chain exchanges. The responsibility for managing risks from the use of external system services remains with authorizing officials. For services external to organizations, a chain of trust requires that organizations establish and retain a certain level of confidence that each provider in the consumer-provider relationship provides adequate protection for the services rendered. The extent and nature of this chain of trust vary based on relationships between organizations and the external providers. Organizations document the basis for the trust relationships so that the relationships can be monitored. External system services documentation includes government, service providers, end user security roles and responsibilities, and service-level agreements. Service-level agreements define the expectations of performance for implemented controls, describe measurable outcomes, and identify remedies and response requirements for identified instances of noncompliance.
-
-## Control assessment-objective
-
-providers of external system services comply with organizational security requirements;
-providers of external system services comply with organizational privacy requirements;
-providers of external system services employ controls;
-organizational oversight with regard to external system services are defined and documented;
-user roles and responsibilities with regard to external system services are defined and documented;
-processes, methods, and techniques are employed to monitor control compliance by external service providers on an ongoing basis.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sa-9_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sa-9_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sa-9_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-1.md b/docs/compliance/dist/system-security-plans/ato/sc-1.md
deleted file mode 100644
index 687df8b51..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found system and communications protection policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the system and communications protection policy and the associated system and communications protection controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the system and communications protection policy and procedures; and
-
-- \[c\] Review and update the current system and communications protection:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-System and communications protection policy and procedures address the controls in the SC family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of system and communications protection policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to system and communications protection policy and procedures include assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a system and communications protection policy is developed and documented;
-the system and communications protection policy is disseminated to personnel or roles;
-system and communications protection procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls are developed and documented;
-the system and communications protection procedures are disseminated to personnel or roles;
-the No value found system and communications protection policy addresses purpose;
-the No value found system and communications protection policy addresses scope;
-the No value found system and communications protection policy addresses roles;
-the No value found system and communications protection policy addresses responsibilities;
-the No value found system and communications protection policy addresses management commitment;
-the No value found system and communications protection policy addresses coordination among organizational entities;
-the No value found system and communications protection policy addresses compliance;
-the No value found system and communications protection policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the system and communications protection policy and procedures;
-the current system and communications protection policy is reviewed and updated frequency;
-the current system and communications protection policy is reviewed and updated following events;
-the current system and communications protection procedures are reviewed and updated frequency;
-the current system and communications protection procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sc-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sc-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sc-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-10.md b/docs/compliance/dist/system-security-plans/ato/sc-10.md
deleted file mode 100644
index d1963f1ae..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-10.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-10 - \[catalog\] Network Disconnect
-
-## Control Statement
-
-Terminate the network connection associated with a communications session at the end of the session or after time period of inactivity.
-
-## Control guidance
-
-Network disconnect applies to internal and external networks. Terminating network connections associated with specific communications sessions includes de-allocating TCP/IP address or port pairs at the operating system level and de-allocating the networking assignments at the application level if multiple application sessions are using a single operating system-level network connection. Periods of inactivity may be established by organizations and include time periods by type of network access or for specific network accesses.
-
-## Control assessment-objective
-
-the network connection associated with a communication session is terminated at the end of the session or after time period of inactivity.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sc-10
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-12.md b/docs/compliance/dist/system-security-plans/ato/sc-12.md
deleted file mode 100644
index 7eedeef78..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-12.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-12 - \[catalog\] Cryptographic Key Establishment and Management
-
-## Control Statement
-
-Establish and manage cryptographic keys when cryptography is employed within the system in accordance with the following key management requirements: requirements.
-
-## Control guidance
-
-Cryptographic key management and establishment can be performed using manual procedures or automated mechanisms with supporting manual procedures. Organizations define key management requirements in accordance with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines and specify appropriate options, parameters, and levels. Organizations manage trust stores to ensure that only approved trust anchors are part of such trust stores. This includes certificates with visibility external to organizational systems and certificates related to the internal operations of systems. [NIST CMVP](#1acdc775-aafb-4d11-9341-dc6a822e9d38) and [NIST CAVP](#84dc1b0c-acb7-4269-84c4-00dbabacd78c) provide additional information on validated cryptographic modules and algorithms that can be used in cryptographic key management and establishment.
-
-## Control assessment-objective
-
-cryptographic keys are established when cryptography is employed within the system in accordance with requirements;
-cryptographic keys are managed when cryptography is employed within the system in accordance with requirements.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sc-12
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-13.md b/docs/compliance/dist/system-security-plans/ato/sc-13.md
deleted file mode 100644
index 27ddf32cb..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-13.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-13 - \[catalog\] Cryptographic Protection
-
-## Control Statement
-
-- \[a\] Determine the cryptographic uses ; and
-
-- \[b\] Implement the following types of cryptography required for each specified cryptographic use: types of cryptography.
-
-## Control guidance
-
-Cryptography can be employed to support a variety of security solutions, including the protection of classified information and controlled unclassified information, the provision and implementation of digital signatures, and the enforcement of information separation when authorized individuals have the necessary clearances but lack the necessary formal access approvals. Cryptography can also be used to support random number and hash generation. Generally applicable cryptographic standards include FIPS-validated cryptography and NSA-approved cryptography. For example, organizations that need to protect classified information may specify the use of NSA-approved cryptography. Organizations that need to provision and implement digital signatures may specify the use of FIPS-validated cryptography. Cryptography is implemented in accordance with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.
-
-## Control assessment-objective
-
-cryptographic uses are identified;
-types of cryptography for each specified cryptographic use (defined in SC-13_ODP[01]) are implemented.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sc-13_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sc-13_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-15.md b/docs/compliance/dist/system-security-plans/ato/sc-15.md
deleted file mode 100644
index 247ea88ba..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-15.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-15 - \[catalog\] Collaborative Computing Devices and Applications
-
-## Control Statement
-
-- \[a\] Prohibit remote activation of collaborative computing devices and applications with the following exceptions: exceptions where remote activation is to be allowed ; and
-
-- \[b\] Provide an explicit indication of use to users physically present at the devices.
-
-## Control guidance
-
-Collaborative computing devices and applications include remote meeting devices and applications, networked white boards, cameras, and microphones. The explicit indication of use includes signals to users when collaborative computing devices and applications are activated.
-
-## Control assessment-objective
-
-remote activation of collaborative computing devices and applications is prohibited except exceptions where remote activation is to be allowed;
-an explicit indication of use is provided to users physically present at the devices.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sc-15_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sc-15_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-17.md b/docs/compliance/dist/system-security-plans/ato/sc-17.md
deleted file mode 100644
index 38e498350..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-17.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-17 - \[catalog\] Public Key Infrastructure Certificates
-
-## Control Statement
-
-- \[a\] Issue public key certificates under an certificate policy or obtain public key certificates from an approved service provider; and
-
-- \[b\] Include only approved trust anchors in trust stores or certificate stores managed by the organization.
-
-## Control guidance
-
-Public key infrastructure (PKI) certificates are certificates with visibility external to organizational systems and certificates related to the internal operations of systems, such as application-specific time services. In cryptographic systems with a hierarchical structure, a trust anchor is an authoritative source (i.e., a certificate authority) for which trust is assumed and not derived. A root certificate for a PKI system is an example of a trust anchor. A trust store or certificate store maintains a list of trusted root certificates.
-
-## Control assessment-objective
-
-public key certificates are issued under certificate policy , or public key certificates are obtained from an approved service provider;
-only approved trust anchors are included in trust stores or certificate stores managed by the organization.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sc-17_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sc-17_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-18.md b/docs/compliance/dist/system-security-plans/ato/sc-18.md
deleted file mode 100644
index 6c3490e75..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-18.md
+++ /dev/null
@@ -1,51 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-18 - \[catalog\] Mobile Code
-
-## Control Statement
-
-- \[a\] Define acceptable and unacceptable mobile code and mobile code technologies; and
-
-- \[b\] Authorize, monitor, and control the use of mobile code within the system.
-
-## Control guidance
-
-Mobile code includes any program, application, or content that can be transmitted across a network (e.g., embedded in an email, document, or website) and executed on a remote system. Decisions regarding the use of mobile code within organizational systems are based on the potential for the code to cause damage to the systems if used maliciously. Mobile code technologies include Java applets, JavaScript, HTML5, WebGL, and VBScript. Usage restrictions and implementation guidelines apply to both the selection and use of mobile code installed on servers and mobile code downloaded and executed on individual workstations and devices, including notebook computers and smart phones. Mobile code policy and procedures address specific actions taken to prevent the development, acquisition, and introduction of unacceptable mobile code within organizational systems, including requiring mobile code to be digitally signed by a trusted source.
-
-## Control assessment-objective
-
-acceptable mobile code is defined;
-unacceptable mobile code is defined;
-acceptable mobile code technologies are defined;
-unacceptable mobile code technologies are defined;
-the use of mobile code is authorized within the system;
-the use of mobile code is monitored within the system;
-the use of mobile code is controlled within the system.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sc-18_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sc-18_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-2.md b/docs/compliance/dist/system-security-plans/ato/sc-2.md
deleted file mode 100644
index 0681b364a..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-2 - \[catalog\] Separation of System and User Functionality
-
-## Control Statement
-
-Separate user functionality, including user interface services, from system management functionality.
-
-## Control guidance
-
-System management functionality includes functions that are necessary to administer databases, network components, workstations, or servers. These functions typically require privileged user access. The separation of user functions from system management functions is physical or logical. Organizations may separate system management functions from user functions by using different computers, instances of operating systems, central processing units, or network addresses; by employing virtualization techniques; or some combination of these or other methods. Separation of system management functions from user functions includes web administrative interfaces that employ separate authentication methods for users of any other system resources. Separation of system and user functions may include isolating administrative interfaces on different domains and with additional access controls. The separation of system and user functionality can be achieved by applying the systems security engineering design principles in [SA-8](#sa-8) , including [SA-8(1)](#sa-8.1), [SA-8(3)](#sa-8.3), [SA-8(4)](#sa-8.4), [SA-8(10)](#sa-8.10), [SA-8(12)](#sa-8.12), [SA-8(13)](#sa-8.13), [SA-8(14)](#sa-8.14) , and [SA-8(18)](#sa-8.18).
-
-## Control assessment-objective
-
-user functionality, including user interface services, is separated from system management functionality.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sc-2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-20.md b/docs/compliance/dist/system-security-plans/ato/sc-20.md
deleted file mode 100644
index 346b789fc..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-20.md
+++ /dev/null
@@ -1,48 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-20 - \[catalog\] Secure Name/Address Resolution Service (Authoritative Source)
-
-## Control Statement
-
-- \[a\] Provide additional data origin authentication and integrity verification artifacts along with the authoritative name resolution data the system returns in response to external name/address resolution queries; and
-
-- \[b\] Provide the means to indicate the security status of child zones and (if the child supports secure resolution services) to enable verification of a chain of trust among parent and child domains, when operating as part of a distributed, hierarchical namespace.
-
-## Control guidance
-
-Providing authoritative source information enables external clients, including remote Internet clients, to obtain origin authentication and integrity verification assurances for the host/service name to network address resolution information obtained through the service. Systems that provide name and address resolution services include domain name system (DNS) servers. Additional artifacts include DNS Security Extensions (DNSSEC) digital signatures and cryptographic keys. Authoritative data includes DNS resource records. The means for indicating the security status of child zones include the use of delegation signer resource records in the DNS. Systems that use technologies other than the DNS to map between host and service names and network addresses provide other means to assure the authenticity and integrity of response data.
-
-## Control assessment-objective
-
-additional data origin authentication is provided along with the authoritative name resolution data that the system returns in response to external name/address resolution queries;
-integrity verification artifacts are provided along with the authoritative name resolution data that the system returns in response to external name/address resolution queries;
-the means to indicate the security status of child zones (and if the child supports secure resolution services) is provided when operating as part of a distributed, hierarchical namespace;
-the means to enable verification of a chain of trust among parent and child domains when operating as part of a distributed, hierarchical namespace is provided.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sc-20_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sc-20_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-21.md b/docs/compliance/dist/system-security-plans/ato/sc-21.md
deleted file mode 100644
index 2776a8e21..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-21.md
+++ /dev/null
@@ -1,30 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# sc-21 - \[catalog\] Secure Name/Address Resolution Service (Recursive or Caching Resolver)
-
-## Control Statement
-
-Request and perform data origin authentication and data integrity verification on the name/address resolution responses the system receives from authoritative sources.
-
-## Control guidance
-
-Each client of name resolution services either performs this validation on its own or has authenticated channels to trusted validation providers. Systems that provide name and address resolution services for local clients include recursive resolving or caching domain name system (DNS) servers. DNS client resolvers either perform validation of DNSSEC signatures, or clients use authenticated channels to recursive resolvers that perform such validations. Systems that use technologies other than the DNS to map between host and service names and network addresses provide some other means to enable clients to verify the authenticity and integrity of response data.
-
-## Control assessment-objective
-
-data origin authentication is requested for the name/address resolution responses that the system receives from authoritative sources;
-data origin authentication is performed on the name/address resolution responses that the system receives from authoritative sources;
-data integrity verification is requested for the name/address resolution responses that the system receives from authoritative sources;
-data integrity verification is performed on the name/address resolution responses that the system receives from authoritative sources.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-22.md b/docs/compliance/dist/system-security-plans/ato/sc-22.md
deleted file mode 100644
index aaf61def2..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-22.md
+++ /dev/null
@@ -1,33 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-22 - \[catalog\] Architecture and Provisioning for Name/Address Resolution Service
-
-## Control Statement
-
-Ensure the systems that collectively provide name/address resolution service for an organization are fault-tolerant and implement internal and external role separation.
-
-## Control guidance
-
-Systems that provide name and address resolution services include domain name system (DNS) servers. To eliminate single points of failure in systems and enhance redundancy, organizations employ at least two authoritative domain name system servers—one configured as the primary server and the other configured as the secondary server. Additionally, organizations typically deploy the servers in two geographically separated network subnetworks (i.e., not located in the same physical facility). For role separation, DNS servers with internal roles only process name and address resolution requests from within organizations (i.e., from internal clients). DNS servers with external roles only process name and address resolution information requests from clients external to organizations (i.e., on external networks, including the Internet). Organizations specify clients that can access authoritative DNS servers in certain roles (e.g., by address ranges and explicit lists).
-
-## Control assessment-objective
-
-the systems that collectively provide name/address resolution services for an organization are fault-tolerant;
-the systems that collectively provide name/address resolution services for an organization implement internal role separation;
-the systems that collectively provide name/address resolution services for an organization implement external role separation.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sc-22
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-23.md b/docs/compliance/dist/system-security-plans/ato/sc-23.md
deleted file mode 100644
index c1d9a3291..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-23.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# sc-23 - \[catalog\] Session Authenticity
-
-## Control Statement
-
-Protect the authenticity of communications sessions.
-
-## Control guidance
-
-Protecting session authenticity addresses communications protection at the session level, not at the packet level. Such protection establishes grounds for confidence at both ends of communications sessions in the ongoing identities of other parties and the validity of transmitted information. Authenticity protection includes protecting against "man-in-the-middle" attacks, session hijacking, and the insertion of false information into sessions.
-
-## Control assessment-objective
-
-the authenticity of communication sessions is protected.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-28.1.md b/docs/compliance/dist/system-security-plans/ato/sc-28.1.md
deleted file mode 100644
index 7711808ad..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-28.1.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-28.1 - \[catalog\] Cryptographic Protection
-
-## Control Statement
-
-Implement cryptographic mechanisms to prevent unauthorized disclosure and modification of the following information at rest on system components or media: information.
-
-## Control guidance
-
-The selection of cryptographic mechanisms is based on the need to protect the confidentiality and integrity of organizational information. The strength of mechanism is commensurate with the security category or classification of the information. Organizations have the flexibility to encrypt information on system components or media or encrypt data structures, including files, records, or fields.
-
-## Control assessment-objective
-
-cryptographic mechanisms are implemented to prevent unauthorized disclosure of information at rest on system components or media;
-cryptographic mechanisms are implemented to prevent unauthorized modification of information at rest on system components or media.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sc-28.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-28.md b/docs/compliance/dist/system-security-plans/ato/sc-28.md
deleted file mode 100644
index 51742fff3..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-28.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-28 - \[catalog\] Protection of Information at Rest
-
-## Control Statement
-
-Protect the No value found of the following information at rest: information at rest.
-
-## Control guidance
-
-Information at rest refers to the state of information when it is not in process or in transit and is located on system components. Such components include internal or external hard disk drives, storage area network devices, or databases. However, the focus of protecting information at rest is not on the type of storage device or frequency of access but rather on the state of the information. Information at rest addresses the confidentiality and integrity of information and covers user information and system information. System-related information that requires protection includes configurations or rule sets for firewalls, intrusion detection and prevention systems, filtering routers, and authentication information. Organizations may employ different mechanisms to achieve confidentiality and integrity protections, including the use of cryptographic mechanisms and file share scanning. Integrity protection can be achieved, for example, by implementing write-once-read-many (WORM) technologies. When adequate protection of information at rest cannot otherwise be achieved, organizations may employ other controls, including frequent scanning to identify malicious code at rest and secure offline storage in lieu of online storage.
-
-## Control assessment-objective
-
-the No value found of information at rest is/are protected.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sc-28
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-39.md b/docs/compliance/dist/system-security-plans/ato/sc-39.md
deleted file mode 100644
index c359ccf93..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-39.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# sc-39 - \[catalog\] Process Isolation
-
-## Control Statement
-
-Maintain a separate execution domain for each executing system process.
-
-## Control guidance
-
-Systems can maintain separate execution domains for each executing process by assigning each process a separate address space. Each system process has a distinct address space so that communication between processes is performed in a manner controlled through the security functions, and one process cannot modify the executing code of another process. Maintaining separate execution domains for executing processes can be achieved, for example, by implementing separate address spaces. Process isolation technologies, including sandboxing or virtualization, logically separate software and firmware from other software, firmware, and data. Process isolation helps limit the access of potentially untrusted software to other system resources. The capability to maintain separate execution domains is available in commercial operating systems that employ multi-state processor technologies.
-
-## Control assessment-objective
-
-a separate execution domain is maintained for each executing system process.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-4.md b/docs/compliance/dist/system-security-plans/ato/sc-4.md
deleted file mode 100644
index d826a0751..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-4.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-4 - \[catalog\] Information in Shared System Resources
-
-## Control Statement
-
-Prevent unauthorized and unintended information transfer via shared system resources.
-
-## Control guidance
-
-Preventing unauthorized and unintended information transfer via shared system resources stops information produced by the actions of prior users or roles (or the actions of processes acting on behalf of prior users or roles) from being available to current users or roles (or current processes acting on behalf of current users or roles) that obtain access to shared system resources after those resources have been released back to the system. Information in shared system resources also applies to encrypted representations of information. In other contexts, control of information in shared system resources is referred to as object reuse and residual information protection. Information in shared system resources does not address information remanence, which refers to the residual representation of data that has been nominally deleted; covert channels (including storage and timing channels), where shared system resources are manipulated to violate information flow restrictions; or components within systems for which there are only single users or roles.
-
-## Control assessment-objective
-
-unauthorized information transfer via shared system resources is prevented;
-unintended information transfer via shared system resources is prevented.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sc-4
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-5.md b/docs/compliance/dist/system-security-plans/ato/sc-5.md
deleted file mode 100644
index 934ef7862..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-5.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-5 - \[catalog\] Denial-of-service Protection
-
-## Control Statement
-
-- \[a\]  No value found the effects of the following types of denial-of-service events: types of denial-of-service events ; and
-
-- \[b\] Employ the following controls to achieve the denial-of-service objective: controls by type of denial-of-service event.
-
-## Control guidance
-
-Denial-of-service events may occur due to a variety of internal and external causes, such as an attack by an adversary or a lack of planning to support organizational needs with respect to capacity and bandwidth. Such attacks can occur across a wide range of network protocols (e.g., IPv4, IPv6). A variety of technologies are available to limit or eliminate the origination and effects of denial-of-service events. For example, boundary protection devices can filter certain types of packets to protect system components on internal networks from being directly affected by or the source of denial-of-service attacks. Employing increased network capacity and bandwidth combined with service redundancy also reduces the susceptibility to denial-of-service events.
-
-## Control assessment-objective
-
-the effects of types of denial-of-service events are No value found;
-controls by type of denial-of-service event are employed to achieve the denial-of-service protection objective.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sc-5_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sc-5_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-7.3.md b/docs/compliance/dist/system-security-plans/ato/sc-7.3.md
deleted file mode 100644
index 7be5e4c47..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-7.3.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# sc-7.3 - \[catalog\] Access Points
-
-## Control Statement
-
-Limit the number of external network connections to the system.
-
-## Control guidance
-
-Limiting the number of external network connections facilitates monitoring of inbound and outbound communications traffic. The Trusted Internet Connection [DHS TIC](#4f42ee6e-86cc-403b-a51f-76c2b4f81b54) initiative is an example of a federal guideline that requires limits on the number of external network connections. Limiting the number of external network connections to the system is important during transition periods from older to newer technologies (e.g., transitioning from IPv4 to IPv6 network protocols). Such transitions may require implementing the older and newer technologies simultaneously during the transition period and thus increase the number of access points to the system.
-
-## Control assessment-objective
-
-the number of external network connections to the system is limited.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-cloud.gov controls and limits the set of networks that can be used to reach the customer application.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-7.4.md b/docs/compliance/dist/system-security-plans/ato/sc-7.4.md
deleted file mode 100644
index 6e4463863..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-7.4.md
+++ /dev/null
@@ -1,99 +0,0 @@
----
-implementation-status:
-  - c-partially-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# sc-7.4 - \[catalog\] External Telecommunications Services
-
-## Control Statement
-
-- \[a\] Implement a managed interface for each external telecommunication service;
-
-- \[b\] Establish a traffic flow policy for each managed interface;
-
-- \[c\] Protect the confidentiality and integrity of the information being transmitted across each interface;
-
-- \[d\] Document each exception to the traffic flow policy with a supporting mission or business need and duration of that need;
-
-- \[e\] Review exceptions to the traffic flow policy frequency and remove exceptions that are no longer supported by an explicit mission or business need;
-
-- \[f\] Prevent unauthorized exchange of control plane traffic with external networks;
-
-- \[g\] Publish information to enable remote networks to detect unauthorized control plane traffic from internal networks; and
-
-- \[h\] Filter unauthorized control plane traffic from external networks.
-
-## Control guidance
-
-External telecommunications services can provide data and/or voice communications services. Examples of control plane traffic include Border Gateway Protocol (BGP) routing, Domain Name System (DNS), and management protocols. See [SP 800-189](#f5edfe51-d1f2-422e-9b27-5d0e90b49c72) for additional information on the use of the resource public key infrastructure (RPKI) to protect BGP routes and detect unauthorized BGP announcements.
-
-## Control assessment-objective
-
-a managed interface is implemented for each external telecommunication service;
-a traffic flow policy is established for each managed interface;
-the confidentiality of the information being transmitted across each interface is protected;
-the integrity of the information being transmitted across each interface is protected;
-each exception to the traffic flow policy is documented with a supporting mission or business need and duration of that need;
-exceptions to the traffic flow policy are reviewed frequency;
-exceptions to the traffic flow policy that are no longer supported by an explicit mission or business need are removed;
-unauthorized exchanges of control plan traffic with external networks are prevented;
-information is published to enable remote networks to detect unauthorized control plane traffic from internal networks;
-unauthorized control plane traffic is filtered from external networks.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item sc-7.4_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-cloud.gov is responsible for monitoring, security, and policy enforcement for the configuration of external interfaces. 
-
-______________________________________________________________________
-
-## Implementation (c)
-
-cloud.gov is responsible for monitoring, security, and policy enforcement for the configuration of external interfaces. 
-
-______________________________________________________________________
-
-## Implementation (d)
-
-cloud.gov is responsible for monitoring, security, and policy enforcement for the configuration of external interfaces. 
-
-______________________________________________________________________
-
-## Implementation (e)
-
-cloud.gov is responsible for monitoring, security, and policy enforcement for the configuration of external interfaces. 
-
-______________________________________________________________________
-
-## Implementation (f)
-
-Add control implementation description here for item sc-7.4_smt.f
-
-______________________________________________________________________
-
-## Implementation (g)
-
-Add control implementation description here for item sc-7.4_smt.g
-
-______________________________________________________________________
-
-## Implementation (h)
-
-Add control implementation description here for item sc-7.4_smt.h
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-7.5.md b/docs/compliance/dist/system-security-plans/ato/sc-7.5.md
deleted file mode 100644
index dbea9e662..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-7.5.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-7.5 - \[catalog\] Deny by Default — Allow by Exception
-
-## Control Statement
-
-Deny network communications traffic by default and allow network communications traffic by exception No value found.
-
-## Control guidance
-
-Denying by default and allowing by exception applies to inbound and outbound network communications traffic. A deny-all, permit-by-exception network communications traffic policy ensures that only those system connections that are essential and approved are allowed. Deny by default, allow by exception also applies to a system that is connected to an external system.
-
-## Control assessment-objective
-
-network communications traffic is denied by default No value found;
-network communications traffic is allowed by exception No value found.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sc-7.5
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-7.7.md b/docs/compliance/dist/system-security-plans/ato/sc-7.7.md
deleted file mode 100644
index 7727f64bb..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-7.7.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-7.7 - \[catalog\] Split Tunneling for Remote Devices
-
-## Control Statement
-
-Prevent split tunneling for remote devices connecting to organizational systems unless the split tunnel is securely provisioned using safeguards.
-
-## Control guidance
-
-Split tunneling is the process of allowing a remote user or device to establish a non-remote connection with a system and simultaneously communicate via some other connection to a resource in an external network. This method of network access enables a user to access remote devices and simultaneously, access uncontrolled networks. Split tunneling might be desirable by remote users to communicate with local system resources, such as printers or file servers. However, split tunneling can facilitate unauthorized external connections, making the system vulnerable to attack and to exfiltration of organizational information. Split tunneling can be prevented by disabling configuration settings that allow such capability in remote devices and by preventing those configuration settings from being configurable by users. Prevention can also be achieved by the detection of split tunneling (or of configuration settings that allow split tunneling) in the remote device, and by prohibiting the connection if the remote device is using split tunneling. A virtual private network (VPN) can be used to securely provision a split tunnel. A securely provisioned VPN includes locking connectivity to exclusive, managed, and named environments, or to a specific set of pre-approved addresses, without user control.
-
-## Control assessment-objective
-
-split tunneling is prevented for remote devices connecting to organizational systems unless the split tunnel is securely provisioned using safeguards.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sc-7.7
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-7.8.md b/docs/compliance/dist/system-security-plans/ato/sc-7.8.md
deleted file mode 100644
index 3f388155e..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-7.8.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-7.8 - \[catalog\] Route Traffic to Authenticated Proxy Servers
-
-## Control Statement
-
-Route internal communications traffic to external networks through authenticated proxy servers at managed interfaces.
-
-## Control guidance
-
-External networks are networks outside of organizational control. A proxy server is a server (i.e., system or application) that acts as an intermediary for clients requesting system resources from non-organizational or other organizational servers. System resources that may be requested include files, connections, web pages, or services. Client requests established through a connection to a proxy server are assessed to manage complexity and provide additional protection by limiting direct connectivity. Web content filtering devices are one of the most common proxy servers that provide access to the Internet. Proxy servers can support the logging of Transmission Control Protocol sessions and the blocking of specific Uniform Resource Locators, Internet Protocol addresses, and domain names. Web proxies can be configured with organization-defined lists of authorized and unauthorized websites. Note that proxy servers may inhibit the use of virtual private networks (VPNs) and create the potential for "man-in-the-middle" attacks (depending on the implementation).
-
-## Control assessment-objective
-
-internal communications traffic is routed to external networks through authenticated proxy servers at managed interfaces.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sc-7.8
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-7.md b/docs/compliance/dist/system-security-plans/ato/sc-7.md
deleted file mode 100644
index 61b7dcf53..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-7.md
+++ /dev/null
@@ -1,58 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-7 - \[catalog\] Boundary Protection
-
-## Control Statement
-
-- \[a\] Monitor and control communications at the external managed interfaces to the system and at key internal managed interfaces within the system;
-
-- \[b\] Implement subnetworks for publicly accessible system components that are No value found separated from internal organizational networks; and
-
-- \[c\] Connect to external networks or systems only through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational security and privacy architecture.
-
-## Control guidance
-
-Managed interfaces include gateways, routers, firewalls, guards, network-based malicious code analysis, virtualization systems, or encrypted tunnels implemented within a security architecture. Subnetworks that are physically or logically separated from internal networks are referred to as demilitarized zones or DMZs. Restricting or prohibiting interfaces within organizational systems includes restricting external web traffic to designated web servers within managed interfaces, prohibiting external traffic that appears to be spoofing internal addresses, and prohibiting internal traffic that appears to be spoofing external addresses. [SP 800-189](#f5edfe51-d1f2-422e-9b27-5d0e90b49c72) provides additional information on source address validation techniques to prevent ingress and egress of traffic with spoofed addresses. Commercial telecommunications services are provided by network components and consolidated management systems shared by customers. These services may also include third party-provided access lines and other service elements. Such services may represent sources of increased risk despite contract security provisions. Boundary protection may be implemented as a common control for all or part of an organizational network such that the boundary to be protected is greater than a system-specific boundary (i.e., an authorization boundary).
-
-## Control assessment-objective
-
-communications at external managed interfaces to the system are monitored;
-communications at external managed interfaces to the system are controlled;
-communications at key internal managed interfaces within the system are monitored;
-communications at key internal managed interfaces within the system are controlled;
-subnetworks for publicly accessible system components are No value found separated from internal organizational networks;
-external networks or systems are only connected to through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational security and privacy architecture.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sc-7_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sc-7_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sc-7_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-8.1.md b/docs/compliance/dist/system-security-plans/ato/sc-8.1.md
deleted file mode 100644
index 11f7538b2..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-8.1.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# sc-8.1 - \[catalog\] Cryptographic Protection
-
-## Control Statement
-
-Implement cryptographic mechanisms to No value found during transmission.
-
-## Control guidance
-
-Encryption protects information from unauthorized disclosure and modification during transmission. Cryptographic mechanisms that protect the confidentiality and integrity of information during transmission include TLS and IPSec. Cryptographic mechanisms used to protect information integrity include cryptographic hash functions that have applications in digital signatures, checksums, and message authentication codes.
-
-## Control assessment-objective
-
-cryptographic mechanisms are implemented to No value found during transmission.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sc-8.md b/docs/compliance/dist/system-security-plans/ato/sc-8.md
deleted file mode 100644
index 8661ae092..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sc-8.md
+++ /dev/null
@@ -1,33 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sc-8 - \[catalog\] Transmission Confidentiality and Integrity
-
-## Control Statement
-
-Protect the No value found of transmitted information.
-
-## Control guidance
-
-Protecting the confidentiality and integrity of transmitted information applies to internal and external networks as well as any system components that can transmit information, including servers, notebook computers, desktop computers, mobile devices, printers, copiers, scanners, facsimile machines, and radios. Unprotected communication paths are exposed to the possibility of interception and modification. Protecting the confidentiality and integrity of information can be accomplished by physical or logical means. Physical protection can be achieved by using protected distribution systems. A protected distribution system is a wireline or fiber-optics telecommunications system that includes terminals and adequate electromagnetic, acoustical, electrical, and physical controls to permit its use for the unencrypted transmission of classified information. Logical protection can be achieved by employing encryption techniques.
-
-Organizations that rely on commercial providers who offer transmission services as commodity services rather than as fully dedicated services may find it difficult to obtain the necessary assurances regarding the implementation of needed controls for transmission confidentiality and integrity. In such situations, organizations determine what types of confidentiality or integrity services are available in standard, commercial telecommunications service packages. If it is not feasible to obtain the necessary controls and assurances of control effectiveness through appropriate contracting vehicles, organizations can implement appropriate compensating controls.
-
-## Control assessment-objective
-
-the No value found of transmitted information is/are protected.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sc-8
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-1.md b/docs/compliance/dist/system-security-plans/ato/si-1.md
deleted file mode 100644
index b97f62e22..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found system and information integrity policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the system and information integrity policy and the associated system and information integrity controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the system and information integrity policy and procedures; and
-
-- \[c\] Review and update the current system and information integrity:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-System and information integrity policy and procedures address the controls in the SI family that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of system and information integrity policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to system and information integrity policy and procedures include assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a system and information integrity policy is developed and documented;
-the system and information integrity policy is disseminated to personnel or roles;
-system and information integrity procedures to facilitate the implementation of the system and information integrity policy and associated system and information integrity controls are developed and documented;
-the system and information integrity procedures are disseminated to personnel or roles;
-the No value found system and information integrity policy addresses purpose;
-the No value found system and information integrity policy addresses scope;
-the No value found system and information integrity policy addresses roles;
-the No value found system and information integrity policy addresses responsibilities;
-the No value found system and information integrity policy addresses management commitment;
-the No value found system and information integrity policy addresses coordination among organizational entities;
-the No value found system and information integrity policy addresses compliance;
-the No value found system and information integrity policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the system and information integrity policy and procedures;
-the current system and information integrity policy is reviewed and updated frequency;
-the current system and information integrity policy is reviewed and updated following events;
-the current system and information integrity procedures are reviewed and updated frequency;
-the current system and information integrity procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item si-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item si-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item si-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-10.md b/docs/compliance/dist/system-security-plans/ato/si-10.md
deleted file mode 100644
index 88c7c8d6f..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-10.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-10 - \[catalog\] Information Input Validation
-
-## Control Statement
-
-Check the validity of the following information inputs: information inputs.
-
-## Control guidance
-
-Checking the valid syntax and semantics of system inputs—including character set, length, numerical range, and acceptable values—verifies that inputs match specified definitions for format and content. For example, if the organization specifies that numerical values between 1-100 are the only acceptable inputs for a field in a given application, inputs of "387," "abc," or "%K%" are invalid inputs and are not accepted as input to the system. Valid inputs are likely to vary from field to field within a software application. Applications typically follow well-defined protocols that use structured messages (i.e., commands or queries) to communicate between software modules or system components. Structured messages can contain raw or unstructured data interspersed with metadata or control information. If software applications use attacker-supplied inputs to construct structured messages without properly encoding such messages, then the attacker could insert malicious commands or special characters that can cause the data to be interpreted as control information or metadata. Consequently, the module or component that receives the corrupted output will perform the wrong operations or otherwise interpret the data incorrectly. Prescreening inputs prior to passing them to interpreters prevents the content from being unintentionally interpreted as commands. Input validation ensures accurate and correct inputs and prevents attacks such as cross-site scripting and a variety of injection attacks.
-
-## Control assessment-objective
-
-the validity of the information inputs is checked.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control si-10
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-11.md b/docs/compliance/dist/system-security-plans/ato/si-11.md
deleted file mode 100644
index c33ce7964..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-11.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-11 - \[catalog\] Error Handling
-
-## Control Statement
-
-- \[a\] Generate error messages that provide information necessary for corrective actions without revealing information that could be exploited; and
-
-- \[b\] Reveal error messages only to personnel or roles.
-
-## Control guidance
-
-Organizations consider the structure and content of error messages. The extent to which systems can handle error conditions is guided and informed by organizational policy and operational requirements. Exploitable information includes stack traces and implementation details; erroneous logon attempts with passwords mistakenly entered as the username; mission or business information that can be derived from, if not stated explicitly by, the information recorded; and personally identifiable information, such as account numbers, social security numbers, and credit card numbers. Error messages may also provide a covert channel for transmitting information.
-
-## Control assessment-objective
-
-error messages that provide the information necessary for corrective actions are generated without revealing information that could be exploited;
-error messages are revealed only to personnel or roles.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item si-11_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item si-11_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-12.md b/docs/compliance/dist/system-security-plans/ato/si-12.md
deleted file mode 100644
index f1661dee6..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-12.md
+++ /dev/null
@@ -1,34 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-12 - \[catalog\] Information Management and Retention
-
-## Control Statement
-
-Manage and retain information within the system and information output from the system in accordance with applicable laws, executive orders, directives, regulations, policies, standards, guidelines and operational requirements.
-
-## Control guidance
-
-Information management and retention requirements cover the full life cycle of information, in some cases extending beyond system disposal. Information to be retained may also include policies, procedures, plans, reports, data output from control implementation, and other types of administrative information. The National Archives and Records Administration (NARA) provides federal policy and guidance on records retention and schedules. If organizations have a records management office, consider coordinating with records management personnel. Records produced from the output of implemented controls that may require management and retention include, but are not limited to: All XX-1, [AC-6(9)](#ac-6.9), [AT-4](#at-4), [AU-12](#au-12), [CA-2](#ca-2), [CA-3](#ca-3), [CA-5](#ca-5), [CA-6](#ca-6), [CA-7](#ca-7), [CA-8](#ca-8), [CA-9](#ca-9), [CM-2](#cm-2), [CM-3](#cm-3), [CM-4](#cm-4), [CM-6](#cm-6), [CM-8](#cm-8), [CM-9](#cm-9), [CM-12](#cm-12), [CM-13](#cm-13), [CP-2](#cp-2), [IR-6](#ir-6), [IR-8](#ir-8), [MA-2](#ma-2), [MA-4](#ma-4), [PE-2](#pe-2), [PE-8](#pe-8), [PE-16](#pe-16), [PE-17](#pe-17), [PL-2](#pl-2), [PL-4](#pl-4), [PL-7](#pl-7), [PL-8](#pl-8), [PM-5](#pm-5), [PM-8](#pm-8), [PM-9](#pm-9), [PM-18](#pm-18), [PM-21](#pm-21), [PM-27](#pm-27), [PM-28](#pm-28), [PM-30](#pm-30), [PM-31](#pm-31), [PS-2](#ps-2), [PS-6](#ps-6), [PS-7](#ps-7), [PT-2](#pt-2), [PT-3](#pt-3), [PT-7](#pt-7), [RA-2](#ra-2), [RA-3](#ra-3), [RA-5](#ra-5), [RA-8](#ra-8), [SA-4](#sa-4), [SA-5](#sa-5), [SA-8](#sa-8), [SA-10](#sa-10), [SI-4](#si-4), [SR-2](#sr-2), [SR-4](#sr-4), [SR-8](#sr-8).
-
-## Control assessment-objective
-
-information within the system is managed in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements;
-information within the system is retained in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements;
-information output from the system is managed in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements;
-information output from the system is retained in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control si-12
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-16.md b/docs/compliance/dist/system-security-plans/ato/si-16.md
deleted file mode 100644
index 8a20773db..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-16.md
+++ /dev/null
@@ -1,28 +0,0 @@
----
-implementation-status:
-  - c-implemented
-control-origination:
-  - c-inherited-cloud-gov
----
-
-# si-16 - \[catalog\] Memory Protection
-
-## Control Statement
-
-Implement the following controls to protect the system memory from unauthorized code execution: controls.
-
-## Control guidance
-
-Some adversaries launch attacks with the intent of executing code in non-executable regions of memory or in memory locations that are prohibited. Controls employed to protect memory include data execution prevention and address space layout randomization. Data execution prevention controls can either be hardware-enforced or software-enforced with hardware enforcement providing the greater strength of mechanism.
-
-## Control assessment-objective
-
-controls are implemented to protect the system memory from unauthorized code execution.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Customer applications fully inherit this control from cloud.gov.
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-2.2.md b/docs/compliance/dist/system-security-plans/ato/si-2.2.md
deleted file mode 100644
index 0924c8689..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-2.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-2.2 - \[catalog\] Automated Flaw Remediation Status
-
-## Control Statement
-
-Determine if system components have applicable security-relevant software and firmware updates installed using automated mechanisms frequency.
-
-## Control guidance
-
-Automated mechanisms can track and determine the status of known flaws for system components.
-
-## Control assessment-objective
-
-system components have applicable security-relevant software and firmware updates installed frequency using automated mechanisms.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control si-2.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-2.md b/docs/compliance/dist/system-security-plans/ato/si-2.md
deleted file mode 100644
index 05080fdaa..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-2.md
+++ /dev/null
@@ -1,72 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-2 - \[catalog\] Flaw Remediation
-
-## Control Statement
-
-- \[a\] Identify, report, and correct system flaws;
-
-- \[b\] Test software and firmware updates related to flaw remediation for effectiveness and potential side effects before installation;
-
-- \[c\] Install security-relevant software and firmware updates within time period of the release of the updates; and
-
-- \[d\] Incorporate flaw remediation into the organizational configuration management process.
-
-## Control guidance
-
-The need to remediate system flaws applies to all types of software and firmware. Organizations identify systems affected by software flaws, including potential vulnerabilities resulting from those flaws, and report this information to designated organizational personnel with information security and privacy responsibilities. Security-relevant updates include patches, service packs, and malicious code signatures. Organizations also address flaws discovered during assessments, continuous monitoring, incident response activities, and system error handling. By incorporating flaw remediation into configuration management processes, required remediation actions can be tracked and verified.
-
-Organization-defined time periods for updating security-relevant software and firmware may vary based on a variety of risk factors, including the security category of the system, the criticality of the update (i.e., severity of the vulnerability related to the discovered flaw), the organizational risk tolerance, the mission supported by the system, or the threat environment. Some types of flaw remediation may require more testing than other types. Organizations determine the type of testing needed for the specific type of flaw remediation activity under consideration and the types of changes that are to be configuration-managed. In some situations, organizations may determine that the testing of software or firmware updates is not necessary or practical, such as when implementing simple malicious code signature updates. In testing decisions, organizations consider whether security-relevant software or firmware updates are obtained from authorized sources with appropriate digital signatures.
-
-## Control assessment-objective
-
-system flaws are identified;
-system flaws are reported;
-system flaws are corrected;
-software updates related to flaw remediation are tested for effectiveness before installation;
-software updates related to flaw remediation are tested for potential side effects before installation;
-firmware updates related to flaw remediation are tested for effectiveness before installation;
-firmware updates related to flaw remediation are tested for potential side effects before installation;
-security-relevant software updates are installed within time period of the release of the updates;
-security-relevant firmware updates are installed within time period of the release of the updates;
-flaw remediation is incorporated into the organizational configuration management process.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item si-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item si-2_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item si-2_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item si-2_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-3.md b/docs/compliance/dist/system-security-plans/ato/si-3.md
deleted file mode 100644
index 09f3aac61..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-3.md
+++ /dev/null
@@ -1,75 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-3 - \[catalog\] Malicious Code Protection
-
-## Control Statement
-
-- \[a\] Implement No value found malicious code protection mechanisms at system entry and exit points to detect and eradicate malicious code;
-
-- \[b\] Automatically update malicious code protection mechanisms as new releases are available in accordance with organizational configuration management policy and procedures;
-
-- \[c\] Configure malicious code protection mechanisms to:
-
-  - \[1\] Perform periodic scans of the system frequency and real-time scans of files from external sources at No value found as the files are downloaded, opened, or executed in accordance with organizational policy; and
-  - \[2\]  No value found ; and send alert to personnel or roles in response to malicious code detection; and
-
-- \[d\] Address the receipt of false positives during malicious code detection and eradication and the resulting potential impact on the availability of the system.
-
-## Control guidance
-
-System entry and exit points include firewalls, remote access servers, workstations, electronic mail servers, web servers, proxy servers, notebook computers, and mobile devices. Malicious code includes viruses, worms, Trojan horses, and spyware. Malicious code can also be encoded in various formats contained within compressed or hidden files or hidden in files using techniques such as steganography. Malicious code can be inserted into systems in a variety of ways, including by electronic mail, the world-wide web, and portable storage devices. Malicious code insertions occur through the exploitation of system vulnerabilities. A variety of technologies and methods exist to limit or eliminate the effects of malicious code.
-
-Malicious code protection mechanisms include both signature- and nonsignature-based technologies. Nonsignature-based detection mechanisms include artificial intelligence techniques that use heuristics to detect, analyze, and describe the characteristics or behavior of malicious code and to provide controls against such code for which signatures do not yet exist or for which existing signatures may not be effective. Malicious code for which active signatures do not yet exist or may be ineffective includes polymorphic malicious code (i.e., code that changes signatures when it replicates). Nonsignature-based mechanisms also include reputation-based technologies. In addition to the above technologies, pervasive configuration management, comprehensive software integrity controls, and anti-exploitation software may be effective in preventing the execution of unauthorized code. Malicious code may be present in commercial off-the-shelf software as well as custom-built software and could include logic bombs, backdoors, and other types of attacks that could affect organizational mission and business functions.
-
-In situations where malicious code cannot be detected by detection methods or technologies, organizations rely on other types of controls, including secure coding practices, configuration management and control, trusted procurement processes, and monitoring practices to ensure that software does not perform functions other than the functions intended. Organizations may determine that, in response to the detection of malicious code, different actions may be warranted. For example, organizations can define actions in response to malicious code detection during periodic scans, the detection of malicious downloads, or the detection of maliciousness when attempting to open or execute files.
-
-## Control assessment-objective
-
-No value found malicious code protection mechanisms are implemented at system entry and exit points to detect malicious code;
-No value found malicious code protection mechanisms are implemented at system entry and exit points to eradicate malicious code;
-malicious code protection mechanisms are updated automatically as new releases are available in accordance with organizational configuration management policy and procedures;
-malicious code protection mechanisms are configured to perform periodic scans of the system frequency;
-malicious code protection mechanisms are configured to perform real-time scans of files from external sources at No value found as the files are downloaded, opened, or executed in accordance with organizational policy;
-malicious code protection mechanisms are configured to No value found in response to malicious code detection;
-malicious code protection mechanisms are configured to send alerts to personnel or roles in response to malicious code detection;
-the receipt of false positives during malicious code detection and eradication and the resulting potential impact on the availability of the system are addressed.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item si-3_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item si-3_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item si-3_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item si-3_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-4.2.md b/docs/compliance/dist/system-security-plans/ato/si-4.2.md
deleted file mode 100644
index 8fb083d28..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-4.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-4.2 - \[catalog\] Automated Tools and Mechanisms for Real-time Analysis
-
-## Control Statement
-
-Employ automated tools and mechanisms to support near real-time analysis of events.
-
-## Control guidance
-
-Automated tools and mechanisms include host-based, network-based, transport-based, or storage-based event monitoring tools and mechanisms or security information and event management (SIEM) technologies that provide real-time analysis of alerts and notifications generated by organizational systems. Automated monitoring techniques can create unintended privacy risks because automated controls may connect to external or otherwise unrelated systems. The matching of records between these systems may create linkages with unintended consequences. Organizations assess and document these risks in their privacy impact assessment and make determinations that are in alignment with their privacy program plan.
-
-## Control assessment-objective
-
-automated tools and mechanisms are employed to support a near real-time analysis of events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control si-4.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-4.4.md b/docs/compliance/dist/system-security-plans/ato/si-4.4.md
deleted file mode 100644
index df5a7cde3..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-4.4.md
+++ /dev/null
@@ -1,48 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-4.4 - \[catalog\] Inbound and Outbound Communications Traffic
-
-## Control Statement
-
-- \[a\] Determine criteria for unusual or unauthorized activities or conditions for inbound and outbound communications traffic;
-
-- \[b\] Monitor inbound and outbound communications traffic organization-defined frequency for organization-defined unusual or unauthorized activities or conditions.
-
-## Control guidance
-
-Unusual or unauthorized activities or conditions related to system inbound and outbound communications traffic includes internal traffic that indicates the presence of malicious code or unauthorized use of legitimate code or credentials within organizational systems or propagating among system components, signaling to external systems, and the unauthorized exporting of information. Evidence of malicious code or unauthorized use of legitimate code or credentials is used to identify potentially compromised systems or system components.
-
-## Control assessment-objective
-
-criteria for unusual or unauthorized activities or conditions for inbound communications traffic are defined;
-criteria for unusual or unauthorized activities or conditions for outbound communications traffic are defined;
-inbound communications traffic is monitored frequency for unusual or unauthorized activities or conditions;
-outbound communications traffic is monitored frequency for unusual or unauthorized activities or conditions.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation (a)
-
-Add control implementation description here for item si-4.4_smt.a
-
-______________________________________________________________________
-
-## Implementation (b)
-
-Add control implementation description here for item si-4.4_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-4.5.md b/docs/compliance/dist/system-security-plans/ato/si-4.5.md
deleted file mode 100644
index 94f8d1dfe..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-4.5.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-4.5 - \[catalog\] System-generated Alerts
-
-## Control Statement
-
-Alert personnel or roles when the following system-generated indications of compromise or potential compromise occur: compromise indicators.
-
-## Control guidance
-
-Alerts may be generated from a variety of sources, including audit records or inputs from malicious code protection mechanisms, intrusion detection or prevention mechanisms, or boundary protection devices such as firewalls, gateways, and routers. Alerts can be automated and may be transmitted telephonically, by electronic mail messages, or by text messaging. Organizational personnel on the alert notification list can include system administrators, mission or business owners, system owners, information owners/stewards, senior agency information security officers, senior agency officials for privacy, system security officers, or privacy officers. In contrast to alerts generated by the system, alerts generated by organizations in [SI-4(12)](#si-4.12) focus on information sources external to the system, such as suspicious activity reports and reports on potential insider threats.
-
-## Control assessment-objective
-
-personnel or roles are alerted when system-generated compromise indicators occur.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control si-4.5
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-4.md b/docs/compliance/dist/system-security-plans/ato/si-4.md
deleted file mode 100644
index 7c284f603..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-4.md
+++ /dev/null
@@ -1,104 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-4 - \[catalog\] System Monitoring
-
-## Control Statement
-
-- \[a\] Monitor the system to detect:
-
-  - \[1\] Attacks and indicators of potential attacks in accordance with the following monitoring objectives: monitoring objectives ; and
-  - \[2\] Unauthorized local, network, and remote connections;
-
-- \[b\] Identify unauthorized use of the system through the following techniques and methods: techniques and methods;
-
-- \[c\] Invoke internal monitoring capabilities or deploy monitoring devices:
-
-  - \[1\] Strategically within the system to collect organization-determined essential information; and
-  - \[2\] At ad hoc locations within the system to track specific types of transactions of interest to the organization;
-
-- \[d\] Analyze detected events and anomalies;
-
-- \[e\] Adjust the level of system monitoring activity when there is a change in risk to organizational operations and assets, individuals, other organizations, or the Nation;
-
-- \[f\] Obtain legal opinion regarding system monitoring activities; and
-
-- \[g\] Provide system monitoring information to personnel or roles No value found.
-
-## Control guidance
-
-System monitoring includes external and internal monitoring. External monitoring includes the observation of events occurring at external interfaces to the system. Internal monitoring includes the observation of events occurring within the system. Organizations monitor systems by observing audit activities in real time or by observing other system aspects such as access patterns, characteristics of access, and other actions. The monitoring objectives guide and inform the determination of the events. System monitoring capabilities are achieved through a variety of tools and techniques, including intrusion detection and prevention systems, malicious code protection software, scanning tools, audit record monitoring software, and network monitoring software.
-
-Depending on the security architecture, the distribution and configuration of monitoring devices may impact throughput at key internal and external boundaries as well as at other locations across a network due to the introduction of network throughput latency. If throughput management is needed, such devices are strategically located and deployed as part of an established organization-wide security architecture. Strategic locations for monitoring devices include selected perimeter locations and near key servers and server farms that support critical applications. Monitoring devices are typically employed at the managed interfaces associated with controls [SC-7](#sc-7) and [AC-17](#ac-17) . The information collected is a function of the organizational monitoring objectives and the capability of systems to support such objectives. Specific types of transactions of interest include Hypertext Transfer Protocol (HTTP) traffic that bypasses HTTP proxies. System monitoring is an integral part of organizational continuous monitoring and incident response programs, and output from system monitoring serves as input to those programs. System monitoring requirements, including the need for specific types of system monitoring, may be referenced in other controls (e.g., [AC-2g](#ac-2_smt.g), [AC-2(7)](#ac-2.7), [AC-2(12)(a)](#ac-2.12_smt.a), [AC-17(1)](#ac-17.1), [AU-13](#au-13), [AU-13(1)](#au-13.1), [AU-13(2)](#au-13.2), [CM-3f](#cm-3_smt.f), [CM-6d](#cm-6_smt.d), [MA-3a](#ma-3_smt.a), [MA-4a](#ma-4_smt.a), [SC-5(3)(b)](#sc-5.3_smt.b), [SC-7a](#sc-7_smt.a), [SC-7(24)(b)](#sc-7.24_smt.b), [SC-18b](#sc-18_smt.b), [SC-43b](#sc-43_smt.b) ). Adjustments to levels of system monitoring are based on law enforcement information, intelligence information, or other sources of information. The legality of system monitoring activities is based on applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.
-
-## Control assessment-objective
-
-the system is monitored to detect attacks and indicators of potential attacks in accordance with monitoring objectives;
-the system is monitored to detect unauthorized local connections;
-the system is monitored to detect unauthorized network connections;
-the system is monitored to detect unauthorized remote connections;
-unauthorized use of the system is identified through techniques and methods;
-internal monitoring capabilities are invoked or monitoring devices are deployed strategically within the system to collect organization-determined essential information;
-internal monitoring capabilities are invoked or monitoring devices are deployed at ad hoc locations within the system to track specific types of transactions of interest to the organization;
-detected events are analyzed;
-detected anomalies are analyzed;
-the level of system monitoring activity is adjusted when there is a change in risk to organizational operations and assets, individuals, other organizations, or the Nation;
-a legal opinion regarding system monitoring activities is obtained;
-system monitoring information is provided to personnel or roles No value found.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item si-4_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item si-4_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item si-4_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item si-4_smt.d
-
-______________________________________________________________________
-
-## Implementation e.
-
-Add control implementation description here for item si-4_smt.e
-
-______________________________________________________________________
-
-## Implementation f.
-
-Add control implementation description here for item si-4_smt.f
-
-______________________________________________________________________
-
-## Implementation g.
-
-Add control implementation description here for item si-4_smt.g
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-5.md b/docs/compliance/dist/system-security-plans/ato/si-5.md
deleted file mode 100644
index f80daa069..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-5.md
+++ /dev/null
@@ -1,64 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-5 - \[catalog\] Security Alerts, Advisories, and Directives
-
-## Control Statement
-
-- \[a\] Receive system security alerts, advisories, and directives from external organizations on an ongoing basis;
-
-- \[b\] Generate internal security alerts, advisories, and directives as deemed necessary;
-
-- \[c\] Disseminate security alerts, advisories, and directives to: No value found ; and
-
-- \[d\] Implement security directives in accordance with established time frames, or notify the issuing organization of the degree of noncompliance.
-
-## Control guidance
-
-The Cybersecurity and Infrastructure Security Agency (CISA) generates security alerts and advisories to maintain situational awareness throughout the Federal Government. Security directives are issued by OMB or other designated organizations with the responsibility and authority to issue such directives. Compliance with security directives is essential due to the critical nature of many of these directives and the potential (immediate) adverse effects on organizational operations and assets, individuals, other organizations, and the Nation should the directives not be implemented in a timely manner. External organizations include supply chain partners, external mission or business partners, external service providers, and other peer or supporting organizations.
-
-## Control assessment-objective
-
-system security alerts, advisories, and directives are received from external organizations on an ongoing basis;
-internal security alerts, advisories, and directives are generated as deemed necessary;
-security alerts, advisories, and directives are disseminated to No value found;
-security directives are implemented in accordance with established time frames or if the issuing organization is notified of the degree of noncompliance.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item si-5_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item si-5_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item si-5_smt.c
-
-______________________________________________________________________
-
-## Implementation d.
-
-Add control implementation description here for item si-5_smt.d
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-7.1.md b/docs/compliance/dist/system-security-plans/ato/si-7.1.md
deleted file mode 100644
index f2bc4d3d4..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-7.1.md
+++ /dev/null
@@ -1,33 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-7.1 - \[catalog\] Integrity Checks
-
-## Control Statement
-
-Perform an integrity check of organization-defined software, firmware, and information No value found.
-
-## Control guidance
-
-Security-relevant events include the identification of new threats to which organizational systems are susceptible and the installation of new hardware, software, or firmware. Transitional states include system startup, restart, shutdown, and abort.
-
-## Control assessment-objective
-
-an integrity check of software is performed No value found;
-an integrity check of firmware is performed No value found;
-an integrity check of information is performed No value found.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control si-7.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-7.7.md b/docs/compliance/dist/system-security-plans/ato/si-7.7.md
deleted file mode 100644
index d0ef1d9cc..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-7.7.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-7.7 - \[catalog\] Integration of Detection and Response
-
-## Control Statement
-
-Incorporate the detection of the following unauthorized changes into the organizational incident response capability: changes.
-
-## Control guidance
-
-Integrating detection and response helps to ensure that detected events are tracked, monitored, corrected, and available for historical purposes. Maintaining historical records is important for being able to identify and discern adversary actions over an extended time period and for possible legal actions. Security-relevant changes include unauthorized changes to established configuration settings or the unauthorized elevation of system privileges.
-
-## Control assessment-objective
-
-the detection of changes are incorporated into the organizational incident response capability.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control si-7.7
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-7.md b/docs/compliance/dist/system-security-plans/ato/si-7.md
deleted file mode 100644
index f0504de48..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-7.md
+++ /dev/null
@@ -1,50 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-7 - \[catalog\] Software, Firmware, and Information Integrity
-
-## Control Statement
-
-- \[a\] Employ integrity verification tools to detect unauthorized changes to the following software, firmware, and information: organization-defined software, firmware, and information ; and
-
-- \[b\] Take the following actions when unauthorized changes to the software, firmware, and information are detected: organization-defined actions.
-
-## Control guidance
-
-Unauthorized changes to software, firmware, and information can occur due to errors or malicious activity. Software includes operating systems (with key internal components, such as kernels or drivers), middleware, and applications. Firmware interfaces include Unified Extensible Firmware Interface (UEFI) and Basic Input/Output System (BIOS). Information includes personally identifiable information and metadata that contains security and privacy attributes associated with information. Integrity-checking mechanisms—including parity checks, cyclical redundancy checks, cryptographic hashes, and associated tools—can automatically monitor the integrity of systems and hosted applications.
-
-## Control assessment-objective
-
-integrity verification tools are employed to detect unauthorized changes to software;
-integrity verification tools are employed to detect unauthorized changes to firmware;
-integrity verification tools are employed to detect unauthorized changes to information;
-actions are taken when unauthorized changes to the software, are detected;
-actions are taken when unauthorized changes to the firmware are detected;
-actions are taken when unauthorized changes to the information are detected.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item si-7_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item si-7_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-8.2.md b/docs/compliance/dist/system-security-plans/ato/si-8.2.md
deleted file mode 100644
index 0d36e16fb..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-8.2.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-8.2 - \[catalog\] Automatic Updates
-
-## Control Statement
-
-Automatically update spam protection mechanisms frequency.
-
-## Control guidance
-
-Using automated mechanisms to update spam protection mechanisms helps to ensure that updates occur on a regular basis and provide the latest content and protection capabilities.
-
-## Control assessment-objective
-
-spam protection mechanisms are automatically updated frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control si-8.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/si-8.md b/docs/compliance/dist/system-security-plans/ato/si-8.md
deleted file mode 100644
index 8205f7338..000000000
--- a/docs/compliance/dist/system-security-plans/ato/si-8.md
+++ /dev/null
@@ -1,49 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# si-8 - \[catalog\] Spam Protection
-
-## Control Statement
-
-- \[a\] Employ spam protection mechanisms at system entry and exit points to detect and act on unsolicited messages; and
-
-- \[b\] Update spam protection mechanisms when new releases are available in accordance with organizational configuration management policy and procedures.
-
-## Control guidance
-
-System entry and exit points include firewalls, remote-access servers, electronic mail servers, web servers, proxy servers, workstations, notebook computers, and mobile devices. Spam can be transported by different means, including email, email attachments, and web accesses. Spam protection mechanisms include signature definitions.
-
-## Control assessment-objective
-
-spam protection mechanisms are employed at system entry points to detect unsolicited messages;
-spam protection mechanisms are employed at system exit points to detect unsolicited messages;
-spam protection mechanisms are employed at system entry points to act on unsolicited messages;
-spam protection mechanisms are employed at system exit points to act on unsolicited messages;
-spam protection mechanisms are updated when new releases are available in accordance with organizational configuration management policies and procedures.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item si-8_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item si-8_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-1.md b/docs/compliance/dist/system-security-plans/ato/sr-1.md
deleted file mode 100644
index d073cbda5..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-1.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-1 - \[catalog\] Policy and Procedures
-
-## Control Statement
-
-- \[a\] Develop, document, and disseminate to organization-defined personnel or roles:
-
-  - \[1\]  No value found supply chain risk management policy that:
-
-    - \[a\] Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
-    - \[b\] Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
-  - \[2\] Procedures to facilitate the implementation of the supply chain risk management policy and the associated supply chain risk management controls;
-
-- \[b\] Designate an official to manage the development, documentation, and dissemination of the supply chain risk management policy and procedures; and
-
-- \[c\] Review and update the current supply chain risk management:
-
-  - \[1\] Policy frequency and following events ; and
-  - \[2\] Procedures frequency and following events.
-
-## Control guidance
-
-Supply chain risk management policy and procedures address the controls in the SR family as well as supply chain-related controls in other families that are implemented within systems and organizations. The risk management strategy is an important factor in establishing such policies and procedures. Policies and procedures contribute to security and privacy assurance. Therefore, it is important that security and privacy programs collaborate on the development of supply chain risk management policy and procedures. Security and privacy program policies and procedures at the organization level are preferable, in general, and may obviate the need for mission- or system-specific policies and procedures. The policy can be included as part of the general security and privacy policy or be represented by multiple policies that reflect the complex nature of organizations. Procedures can be established for security and privacy programs, for mission or business processes, and for systems, if needed. Procedures describe how the policies or controls are implemented and can be directed at the individual or role that is the object of the procedure. Procedures can be documented in system security and privacy plans or in one or more separate documents. Events that may precipitate an update to supply chain risk management policy and procedures include assessment or audit findings, security incidents or breaches, or changes in applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. Simply restating controls does not constitute an organizational policy or procedure.
-
-## Control assessment-objective
-
-a supply chain risk management policy is developed and documented;
-the supply chain risk management policy is disseminated to personnel or roles;
-supply chain risk management procedures to facilitate the implementation of the supply chain risk management policy and the associated supply chain risk management controls are developed and documented;
-the supply chain risk management procedures are disseminated to personnel or roles.
-the No value found supply chain risk management policy addresses purpose;
-the No value found supply chain risk management policy addresses scope;
-No value found supply chain risk management policy addresses roles;
-the No value found supply chain risk management policy addresses responsibilities;
-the No value found supply chain risk management policy addresses management commitment;
-the No value found supply chain risk management policy addresses coordination among organizational entities;
-the No value found supply chain risk management policy addresses compliance.
-the No value found supply chain risk management policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines;
-the official is designated to manage the development, documentation, and dissemination of the supply chain risk management policy and procedures;
-the current supply chain risk management policy is reviewed and updated frequency;
-the current supply chain risk management policy is reviewed and updated following events;
-the current supply chain risk management procedures are reviewed and updated frequency;
-the current supply chain risk management procedures are reviewed and updated following events.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sr-1_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sr-1_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sr-1_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-10.md b/docs/compliance/dist/system-security-plans/ato/sr-10.md
deleted file mode 100644
index bbc03cfa3..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-10.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-10 - \[catalog\] Inspection of Systems or Components
-
-## Control Statement
-
-Inspect the following systems or system components No value found to detect tampering: systems or system components.
-
-## Control guidance
-
-The inspection of systems or systems components for tamper resistance and detection addresses physical and logical tampering and is applied to systems and system components removed from organization-controlled areas. Indications of a need for inspection include changes in packaging, specifications, factory location, or entity in which the part is purchased, and when individuals return from travel to high-risk locations.
-
-## Control assessment-objective
-
-systems or system components are inspected No value found to detect tampering.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sr-10
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-11.1.md b/docs/compliance/dist/system-security-plans/ato/sr-11.1.md
deleted file mode 100644
index 86e3b99fd..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-11.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-11.1 - \[catalog\] Anti-counterfeit Training
-
-## Control Statement
-
-Train personnel or roles to detect counterfeit system components (including hardware, software, and firmware).
-
-## Control guidance
-
-None.
-
-## Control assessment-objective
-
-personnel or roles are trained to detect counterfeit system components (including hardware, software, and firmware).
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sr-11.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-11.2.md b/docs/compliance/dist/system-security-plans/ato/sr-11.2.md
deleted file mode 100644
index cb2c1fb7d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-11.2.md
+++ /dev/null
@@ -1,32 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-11.2 - \[catalog\] Configuration Control for Component Service and Repair
-
-## Control Statement
-
-Maintain configuration control over the following system components awaiting service or repair and serviced or repaired components awaiting return to service: system components.
-
-## Control guidance
-
-None.
-
-## Control assessment-objective
-
-configuration control over system components awaiting service or repair is maintained;
-configuration control over serviced or repaired system components awaiting return to service is maintained.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sr-11.2
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-11.md b/docs/compliance/dist/system-security-plans/ato/sr-11.md
deleted file mode 100644
index 072d22c77..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-11.md
+++ /dev/null
@@ -1,49 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-11 - \[catalog\] Component Authenticity
-
-## Control Statement
-
-- \[a\] Develop and implement anti-counterfeit policy and procedures that include the means to detect and prevent counterfeit components from entering the system; and
-
-- \[b\] Report counterfeit system components to No value found.
-
-## Control guidance
-
-Sources of counterfeit components include manufacturers, developers, vendors, and contractors. Anti-counterfeiting policies and procedures support tamper resistance and provide a level of protection against the introduction of malicious code. External reporting organizations include CISA.
-
-## Control assessment-objective
-
-an anti-counterfeit policy is developed and implemented;
-anti-counterfeit procedures are developed and implemented;
-the anti-counterfeit procedures include the means to detect counterfeit components entering the system;
-the anti-counterfeit procedures include the means to prevent counterfeit components from entering the system;
-counterfeit system components are reported to No value found.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sr-11_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sr-11_smt.b
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-12.md b/docs/compliance/dist/system-security-plans/ato/sr-12.md
deleted file mode 100644
index e8f1f34b1..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-12.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-12 - \[catalog\] Component Disposal
-
-## Control Statement
-
-Dispose of data, documentation, tools, or system components using the following techniques and methods: techniques and methods.
-
-## Control guidance
-
-Data, documentation, tools, or system components can be disposed of at any time during the system development life cycle (not only in the disposal or retirement phase of the life cycle). For example, disposal can occur during research and development, design, prototyping, or operations/maintenance and include methods such as disk cleaning, removal of cryptographic keys, partial reuse of components. Opportunities for compromise during disposal affect physical and logical data, including system documentation in paper-based or digital files; shipping and delivery documentation; memory sticks with software code; or complete routers or servers that include permanent media, which contain sensitive or proprietary information. Additionally, proper disposal of system components helps to prevent such components from entering the gray market.
-
-## Control assessment-objective
-
-data, documentation, tools, or system components are disposed of using techniques and methods.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sr-12
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-2.1.md b/docs/compliance/dist/system-security-plans/ato/sr-2.1.md
deleted file mode 100644
index 5baf6026d..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-2.1.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-2.1 - \[catalog\] Establish SCRM Team
-
-## Control Statement
-
-Establish a supply chain risk management team consisting of personnel, roles and responsibilities to lead and support the following SCRM activities: supply chain risk management activities.
-
-## Control guidance
-
-To implement supply chain risk management plans, organizations establish a coordinated, team-based approach to identify and assess supply chain risks and manage these risks by using programmatic and technical mitigation techniques. The team approach enables organizations to conduct an analysis of their supply chain, communicate with internal and external partners or stakeholders, and gain broad consensus regarding the appropriate resources for SCRM. The SCRM team consists of organizational personnel with diverse roles and responsibilities for leading and supporting SCRM activities, including risk executive, information technology, contracting, information security, privacy, mission or business, legal, supply chain and logistics, acquisition, business continuity, and other relevant functions. Members of the SCRM team are involved in various aspects of the SDLC and, collectively, have an awareness of and provide expertise in acquisition processes, legal practices, vulnerabilities, threats, and attack vectors, as well as an understanding of the technical aspects and dependencies of systems. The SCRM team can be an extension of the security and privacy risk management processes or be included as part of an organizational risk management team.
-
-## Control assessment-objective
-
-a supply chain risk management team consisting of personnel, roles and responsibilities is established to lead and support supply chain risk management activities.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sr-2.1
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-2.md b/docs/compliance/dist/system-security-plans/ato/sr-2.md
deleted file mode 100644
index dd8e5db1e..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-2.md
+++ /dev/null
@@ -1,66 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-2 - \[catalog\] Supply Chain Risk Management Plan
-
-## Control Statement
-
-- \[a\] Develop a plan for managing supply chain risks associated with the research and development, design, manufacturing, acquisition, delivery, integration, operations and maintenance, and disposal of the following systems, system components or system services: systems, system components, or system services;
-
-- \[b\] Review and update the supply chain risk management plan frequency or as required, to address threat, organizational or environmental changes; and
-
-- \[c\] Protect the supply chain risk management plan from unauthorized disclosure and modification.
-
-## Control guidance
-
-The dependence on products, systems, and services from external providers, as well as the nature of the relationships with those providers, present an increasing level of risk to an organization. Threat actions that may increase security or privacy risks include unauthorized production, the insertion or use of counterfeits, tampering, theft, insertion of malicious software and hardware, and poor manufacturing and development practices in the supply chain. Supply chain risks can be endemic or systemic within a system element or component, a system, an organization, a sector, or the Nation. Managing supply chain risk is a complex, multifaceted undertaking that requires a coordinated effort across an organization to build trust relationships and communicate with internal and external stakeholders. Supply chain risk management (SCRM) activities include identifying and assessing risks, determining appropriate risk response actions, developing SCRM plans to document response actions, and monitoring performance against plans. The SCRM plan (at the system-level) is implementation specific, providing policy implementation, requirements, constraints and implications. It can either be stand-alone, or incorporated into system security and privacy plans. The SCRM plan addresses managing, implementation, and monitoring of SCRM controls and the development/sustainment of systems across the SDLC to support mission and business functions.
-
-Because supply chains can differ significantly across and within organizations, SCRM plans are tailored to the individual program, organizational, and operational contexts. Tailored SCRM plans provide the basis for determining whether a technology, service, system component, or system is fit for purpose, and as such, the controls need to be tailored accordingly. Tailored SCRM plans help organizations focus their resources on the most critical mission and business functions based on mission and business requirements and their risk environment. Supply chain risk management plans include an expression of the supply chain risk tolerance for the organization, acceptable supply chain risk mitigation strategies or controls, a process for consistently evaluating and monitoring supply chain risk, approaches for implementing and communicating the plan, a description of and justification for supply chain risk mitigation measures taken, and associated roles and responsibilities. Finally, supply chain risk management plans address requirements for developing trustworthy, secure, privacy-protective, and resilient system components and systems, including the application of the security design principles implemented as part of life cycle-based systems security engineering processes (see [SA-8](#sa-8)).
-
-## Control assessment-objective
-
-a plan for managing supply chain risks is developed;
-the supply chain risk management plan addresses risks associated with the research and development of systems, system components, or system services;
-the supply chain risk management plan addresses risks associated with the design of systems, system components, or system services;
-the supply chain risk management plan addresses risks associated with the manufacturing of systems, system components, or system services;
-the supply chain risk management plan addresses risks associated with the acquisition of systems, system components, or system services;
-the supply chain risk management plan addresses risks associated with the delivery of systems, system components, or system services;
-the supply chain risk management plan addresses risks associated with the integration of systems, system components, or system services;
-the supply chain risk management plan addresses risks associated with the operation and maintenance of systems, system components, or system services;
-the supply chain risk management plan addresses risks associated with the disposal of systems, system components, or system services;
-the supply chain risk management plan is reviewed and updated frequency or as required to address threat, organizational, or environmental changes;
-the supply chain risk management plan is protected from unauthorized disclosure;
-the supply chain risk management plan is protected from unauthorized modification.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sr-2_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sr-2_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sr-2_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-3.md b/docs/compliance/dist/system-security-plans/ato/sr-3.md
deleted file mode 100644
index a036c8501..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-3.md
+++ /dev/null
@@ -1,56 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-3 - \[catalog\] Supply Chain Controls and Processes
-
-## Control Statement
-
-- \[a\] Establish a process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes of system or system component in coordination with supply chain personnel;
-
-- \[b\] Employ the following controls to protect against supply chain risks to the system, system component, or system service and to limit the harm or consequences from supply chain-related events: supply chain controls ; and
-
-- \[c\] Document the selected and implemented supply chain processes and controls in No value found.
-
-## Control guidance
-
-Supply chain elements include organizations, entities, or tools employed for the research and development, design, manufacturing, acquisition, delivery, integration, operations and maintenance, and disposal of systems and system components. Supply chain processes include hardware, software, and firmware development processes; shipping and handling procedures; personnel security and physical security programs; configuration management tools, techniques, and measures to maintain provenance; or other programs, processes, or procedures associated with the development, acquisition, maintenance and disposal of systems and system components. Supply chain elements and processes may be provided by organizations, system integrators, or external providers. Weaknesses or deficiencies in supply chain elements or processes represent potential vulnerabilities that can be exploited by adversaries to cause harm to the organization and affect its ability to carry out its core missions or business functions. Supply chain personnel are individuals with roles and responsibilities in the supply chain.
-
-## Control assessment-objective
-
-a process or processes is/are established to identify and address weaknesses or deficiencies in the supply chain elements and processes of system or system component;
-the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes of system or system component is/are coordinated with supply chain personnel;
-supply chain controls are employed to protect against supply chain risks to the system, system component, or system service and to limit the harm or consequences from supply chain-related events;
-the selected and implemented supply chain processes and controls are documented in No value found.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-<!-- Please leave this section blank and enter implementation details in the parts below. -->
-
-______________________________________________________________________
-
-## Implementation a.
-
-Add control implementation description here for item sr-3_smt.a
-
-______________________________________________________________________
-
-## Implementation b.
-
-Add control implementation description here for item sr-3_smt.b
-
-______________________________________________________________________
-
-## Implementation c.
-
-Add control implementation description here for item sr-3_smt.c
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-5.md b/docs/compliance/dist/system-security-plans/ato/sr-5.md
deleted file mode 100644
index ebae546df..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-5.md
+++ /dev/null
@@ -1,33 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-5 - \[catalog\] Acquisition Strategies, Tools, and Methods
-
-## Control Statement
-
-Employ the following acquisition strategies, contract tools, and procurement methods to protect against, identify, and mitigate supply chain risks: strategies, tools, and methods.
-
-## Control guidance
-
-The use of the acquisition process provides an important vehicle to protect the supply chain. There are many useful tools and techniques available, including obscuring the end use of a system or system component, using blind or filtered buys, requiring tamper-evident packaging, or using trusted or controlled distribution. The results from a supply chain risk assessment can guide and inform the strategies, tools, and methods that are most applicable to the situation. Tools and techniques may provide protections against unauthorized production, theft, tampering, insertion of counterfeits, insertion of malicious software or backdoors, and poor development practices throughout the system development life cycle. Organizations also consider providing incentives for suppliers who implement controls, promote transparency into their processes and security and privacy practices, provide contract language that addresses the prohibition of tainted or counterfeit components, and restrict purchases from untrustworthy suppliers. Organizations consider providing training, education, and awareness programs for personnel regarding supply chain risk, available mitigation strategies, and when the programs should be employed. Methods for reviewing and protecting development plans, documentation, and evidence are commensurate with the security and privacy requirements of the organization. Contracts may specify documentation protection requirements.
-
-## Control assessment-objective
-
-strategies, tools, and methods are employed to protect against supply chain risks;
-strategies, tools, and methods are employed to identify supply chain risks;
-strategies, tools, and methods are employed to mitigate supply chain risks.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sr-5
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-6.md b/docs/compliance/dist/system-security-plans/ato/sr-6.md
deleted file mode 100644
index b16784dee..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-6.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-6 - \[catalog\] Supplier Assessments and Reviews
-
-## Control Statement
-
-Assess and review the supply chain-related risks associated with suppliers or contractors and the system, system component, or system service they provide frequency.
-
-## Control guidance
-
-An assessment and review of supplier risk includes security and supply chain risk management processes, foreign ownership, control or influence (FOCI), and the ability of the supplier to effectively assess subordinate second-tier and third-tier suppliers and contractors. The reviews may be conducted by the organization or by an independent third party. The reviews consider documented processes, documented controls, all-source intelligence, and publicly available information related to the supplier or contractor. Organizations can use open-source information to monitor for indications of stolen information, poor development and quality control practices, information spillage, or counterfeits. In some cases, it may be appropriate or required to share assessment and review results with other organizations in accordance with any applicable rules, policies, or inter-organizational agreements or contracts.
-
-## Control assessment-objective
-
-the supply chain-related risks associated with suppliers or contractors and the systems, system components, or system services they provide are assessed and reviewed frequency.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sr-6
-
-______________________________________________________________________
diff --git a/docs/compliance/dist/system-security-plans/ato/sr-8.md b/docs/compliance/dist/system-security-plans/ato/sr-8.md
deleted file mode 100644
index 4bad04274..000000000
--- a/docs/compliance/dist/system-security-plans/ato/sr-8.md
+++ /dev/null
@@ -1,31 +0,0 @@
----
-implementation-status:
-  - c-not-implemented
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
----
-
-# sr-8 - \[catalog\] Notification Agreements
-
-## Control Statement
-
-Establish agreements and procedures with entities involved in the supply chain for the system, system component, or system service for the No value found.
-
-## Control guidance
-
-The establishment of agreements and procedures facilitates communications among supply chain entities. Early notification of compromises and potential compromises in the supply chain that can potentially adversely affect or have adversely affected organizational systems or system components is essential for organizations to effectively respond to such incidents. The results of assessments or audits may include open-source information that contributed to a decision or result and could be used to help the supply chain entity resolve a concern or improve its processes.
-
-## Control assessment-objective
-
-agreements and procedures are established with entities involved in the supply chain for the system, system components, or system service for No value found.
-
-______________________________________________________________________
-
-## What is the solution and how is it implemented?
-
-Add control implementation description here for control sr-8
-
-______________________________________________________________________
diff --git a/docs/compliance/glossary.md b/docs/compliance/glossary.md
deleted file mode 100644
index 8f4b18613..000000000
--- a/docs/compliance/glossary.md
+++ /dev/null
@@ -1,57 +0,0 @@
-# Glossary
-
-## OSCAL Specific
-
-### Root Element
-This defines the type of content (model) within the body of an OSCAL file. The types of models we have available to us are "catalog", "profile", "component", "system security plan", "assessment plan", "assessment results", and "plan of actions and milestones".
-
-### OSCAL Model
-A structure for supporting a specific concept like "catalog" or "system security plan".
-
-### OSCAL Layer
-OSCAL architecture is broken into three layers: Assessment, Implementation, and Controls. These are ways to organize the OSCAL models. 
-
-### Assessment Layer
-This layer explains how an assessment is planned, performed, and reported. It can contain an "Assessment Plan", "Assessment Results" or "POAM" model. 
-
-### Implementation Layer
-This layer provides models for describing how we've implemented our selected controls in a specific system. It can contain "Component Definition" and "System Security Plan" models. 
-
-### Control Layer
-A layer including the catalog and profile models. 
-
-### UUID
-A document-level identifier that is changed whenever the document is updated.
-
-### Control 
-A control is a requirement, which when implemented reduces one aspect of risk in our system. There are "security controls" and "privacy controls". The are grouped together in a "control catalog".
-
-### Catalog
-This is how controls are organized by framework providers (like NIST). This allows the controls to be grouped. "Catalog documents" are human readable documents where controls are represented.
-
-### Baseline
-Also seen as "overlay", a baseline defines a specific set of selected controls from one or more catalogs. These can be "low", "moderate", or "high" – we need to provide a "moderate" baseline. 
-
-### Profile
-A grouping of controls referencing controls from several catalogs – it is a structured machine-readable representation of a baseline. 
-
-### Control Enhancement
-Augmentation of a control to build in additional functionality to strengthen the given control.
-
-## Compliance Process
-
-### SSP
-System Security Plan. This document outlines all the seucirty requirements for a given system.
-
-### SCR
-Significant Change Request. This is a record specific to FedRAMP, the form can be found [here](https://www.fedramp.gov/assets/resources/templates/FedRAMP-Significant-Change-Form-Template.pdf).
-
-### 3PAO
-A 3PAO is an organization that has been certified to help cloud service providers and government agencies meet FedRAMP compliance regulations.
-
-### SIA
-Security Impact Analysis. It’s a process to determine the effect(s) a proposed change can cause to the security posture of a FISMA system. Conducting a SIA is a mandatory process for all changes. Once the SIA is approved by our CISO team that gets fed into the SCR and submitted to FedRAMP. Then the 3PAO will use the SCR to report back to FedRAMP for their assessment. And since we are an agency FedRAMP authorized system our CISO has final say on the security assessment report that gets delivered to us by the 3PAO. They ask them to perform additional inspection to satisfy the changes.
-
-### POAM
-Plan of Action and Milestones. It details tasks that need to be accomplished, and is represented in an OSCAL model.
-
diff --git a/docs/compliance/plan-of-action-and-milestones/.keep b/docs/compliance/plan-of-action-and-milestones/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/profiles/.keep b/docs/compliance/profiles/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/profiles/ato/profile.json b/docs/compliance/profiles/ato/profile.json
deleted file mode 100644
index 71bda3ca1..000000000
--- a/docs/compliance/profiles/ato/profile.json
+++ /dev/null
@@ -1,313 +0,0 @@
-{
-  "profile": {
-    "uuid": "9578eed1-ebbe-436a-8125-9ac58a4a132c",
-    "metadata": {
-      "title": "NIST Special Publication 800-53 Revision 5 MODERATE IMPACT BASELINE",
-      "last-modified": "2021-06-08T13:57:34.337491-04:00",
-      "version": "Final",
-      "oscal-version": "1.0.0"
-    },
-    "imports": [
-      {
-        "href": "https://raw.githubusercontent.com/usnistgov/oscal-content/main/nist.gov/SP800-53/rev5/json/NIST_SP-800-53_rev5_MODERATE-baseline-resolved-profile_catalog.json",
-        "include-controls": [
-          {
-            "with-ids": [
-              "ac-1",
-              "ac-2",
-              "ac-2.1",
-              "ac-2.2",
-              "ac-2.3",
-              "ac-2.4",
-              "ac-2.5",
-              "ac-2.13",
-              "ac-3",
-              "ac-4",
-              "ac-5",
-              "ac-6",
-              "ac-6.1",
-              "ac-6.2",
-              "ac-6.5",
-              "ac-6.7",
-              "ac-6.9",
-              "ac-6.10",
-              "ac-7",
-              "ac-8",
-              "ac-11",
-              "ac-11.1",
-              "ac-12",
-              "ac-14",
-              "ac-17",
-              "ac-17.1",
-              "ac-17.2",
-              "ac-17.3",
-              "ac-17.4",
-              "ac-18",
-              "ac-18.1",
-              "ac-18.3",
-              "ac-19",
-              "ac-19.5",
-              "ac-20",
-              "ac-20.1",
-              "ac-20.2",
-              "ac-21",
-              "ac-22",
-              "at-1",
-              "at-2",
-              "at-2.2",
-              "at-2.3",
-              "at-3",
-              "at-4",
-              "au-1",
-              "au-2",
-              "au-3",
-              "au-3.1",
-              "au-4",
-              "au-5",
-              "au-6",
-              "au-6.1",
-              "au-6.3",
-              "au-7",
-              "au-7.1",
-              "au-8",
-              "au-9",
-              "au-9.4",
-              "au-11",
-              "au-12",
-              "ca-1",
-              "ca-2",
-              "ca-2.1",
-              "ca-3",
-              "ca-5",
-              "ca-6",
-              "ca-7",
-              "ca-7.1",
-              "ca-7.4",
-              "ca-9",
-              "cm-1",
-              "cm-2",
-              "cm-2.2",
-              "cm-2.3",
-              "cm-2.7",
-              "cm-3",
-              "cm-3.2",
-              "cm-3.4",
-              "cm-4",
-              "cm-4.2",
-              "cm-5",
-              "cm-6",
-              "cm-7",
-              "cm-7.1",
-              "cm-7.2",
-              "cm-7.5",
-              "cm-8",
-              "cm-8.1",
-              "cm-8.3",
-              "cm-9",
-              "cm-10",
-              "cm-11",
-              "cm-12",
-              "cm-12.1",
-              "cp-1",
-              "cp-2",
-              "cp-2.1",
-              "cp-2.3",
-              "cp-2.8",
-              "cp-3",
-              "cp-4",
-              "cp-4.1",
-              "cp-6",
-              "cp-6.1",
-              "cp-6.3",
-              "cp-7",
-              "cp-7.1",
-              "cp-7.2",
-              "cp-7.3",
-              "cp-8",
-              "cp-8.1",
-              "cp-8.2",
-              "cp-9",
-              "cp-9.1",
-              "cp-9.8",
-              "cp-10",
-              "cp-10.2",
-              "ia-1",
-              "ia-2",
-              "ia-2.1",
-              "ia-2.2",
-              "ia-2.8",
-              "ia-2.12",
-              "ia-3",
-              "ia-4",
-              "ia-4.4",
-              "ia-5",
-              "ia-5.1",
-              "ia-5.2",
-              "ia-5.6",
-              "ia-6",
-              "ia-7",
-              "ia-8",
-              "ia-8.1",
-              "ia-8.2",
-              "ia-8.4",
-              "ia-11",
-              "ia-12",
-              "ia-12.2",
-              "ia-12.3",
-              "ia-12.5",
-              "ir-1",
-              "ir-2",
-              "ir-3",
-              "ir-3.2",
-              "ir-4",
-              "ir-4.1",
-              "ir-5",
-              "ir-6",
-              "ir-6.1",
-              "ir-6.3",
-              "ir-7",
-              "ir-7.1",
-              "ir-8",
-              "ma-1",
-              "ma-2",
-              "ma-3",
-              "ma-3.1",
-              "ma-3.2",
-              "ma-3.3",
-              "ma-4",
-              "ma-5",
-              "ma-6",
-              "mp-1",
-              "mp-2",
-              "mp-3",
-              "mp-4",
-              "mp-5",
-              "mp-6",
-              "mp-7",
-              "pe-1",
-              "pe-2",
-              "pe-3",
-              "pe-4",
-              "pe-5",
-              "pe-6",
-              "pe-6.1",
-              "pe-8",
-              "pe-9",
-              "pe-10",
-              "pe-11",
-              "pe-12",
-              "pe-13",
-              "pe-13.1",
-              "pe-14",
-              "pe-15",
-              "pe-16",
-              "pe-17",
-              "pl-1",
-              "pl-2",
-              "pl-4",
-              "pl-4.1",
-              "pl-8",
-              "pl-10",
-              "pl-11",
-              "ps-1",
-              "ps-2",
-              "ps-3",
-              "ps-4",
-              "ps-5",
-              "ps-6",
-              "ps-7",
-              "ps-8",
-              "ps-9",
-              "ra-1",
-              "ra-2",
-              "ra-3",
-              "ra-3.1",
-              "ra-5",
-              "ra-5.2",
-              "ra-5.5",
-              "ra-5.11",
-              "ra-7",
-              "ra-9",
-              "sa-1",
-              "sa-2",
-              "sa-3",
-              "sa-4",
-              "sa-4.1",
-              "sa-4.2",
-              "sa-4.9",
-              "sa-4.10",
-              "sa-5",
-              "sa-8",
-              "sa-9",
-              "sa-9.2",
-              "sa-10",
-              "sa-11",
-              "sa-15",
-              "sa-15.3",
-              "sa-22",
-              "sc-1",
-              "sc-2",
-              "sc-4",
-              "sc-5",
-              "sc-7",
-              "sc-7.3",
-              "sc-7.4",
-              "sc-7.5",
-              "sc-7.7",
-              "sc-7.8",
-              "sc-8",
-              "sc-8.1",
-              "sc-10",
-              "sc-12",
-              "sc-13",
-              "sc-15",
-              "sc-17",
-              "sc-18",
-              "sc-20",
-              "sc-21",
-              "sc-22",
-              "sc-23",
-              "sc-28",
-              "sc-28.1",
-              "sc-39",
-              "si-1",
-              "si-2",
-              "si-2.2",
-              "si-3",
-              "si-4",
-              "si-4.2",
-              "si-4.4",
-              "si-4.5",
-              "si-5",
-              "si-7",
-              "si-7.1",
-              "si-7.7",
-              "si-8",
-              "si-8.2",
-              "si-10",
-              "si-11",
-              "si-12",
-              "si-16",
-              "sr-1",
-              "sr-2",
-              "sr-2.1",
-              "sr-3",
-              "sr-5",
-              "sr-6",
-              "sr-8",
-              "sr-10",
-              "sr-11",
-              "sr-11.1",
-              "sr-11.2",
-              "sr-12"
-            ]
-          }
-        ]
-      }
-    ],
-    "modify": {
-      "set-parameters": [
-      ]
-    }
-  }
-}
diff --git a/docs/compliance/status_header.yaml b/docs/compliance/status_header.yaml
deleted file mode 100644
index 0771ad9a0..000000000
--- a/docs/compliance/status_header.yaml
+++ /dev/null
@@ -1,9 +0,0 @@
-implementation-status:
-  - c-not-implemented
-  - c-implemented
-  - c-not-applicable
-control-origination:
-  - c-inherited-cloud-gov
-  - c-inherited-cisa
-  - c-common-control
-  - c-system-specific-control
diff --git a/docs/compliance/system-security-plans/.keep b/docs/compliance/system-security-plans/.keep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/docs/compliance/system-security-plans/ato/system-security-plan.json b/docs/compliance/system-security-plans/ato/system-security-plan.json
deleted file mode 100644
index 7462d4b5f..000000000
--- a/docs/compliance/system-security-plans/ato/system-security-plan.json
+++ /dev/null
@@ -1,3917 +0,0 @@
-{
-  "system-security-plan": {
-    "uuid": "f8f4bc5e-47a7-4b59-95ee-ad94eb73fdd0",
-    "metadata": {
-      "title": "REPLACE_ME",
-      "last-modified": "2022-10-13T10:34:54.334685-04:00",
-      "version": "REPLACE_ME",
-      "oscal-version": "1.0.0"
-    },
-    "import-profile": {
-      "href": "REPLACE_ME"
-    },
-    "system-characteristics": {
-      "system-ids": [
-        {
-          "id": "REPLACE_ME"
-        }
-      ],
-      "system-name": "REPLACE_ME",
-      "description": "REPLACE_ME",
-      "security-sensitivity-level": "REPLACE_ME",
-      "system-information": {
-        "information-types": [
-          {
-            "title": "REPLACE_ME",
-            "description": "REPLACE_ME",
-            "confidentiality-impact": {
-              "base": "REPLACE_ME"
-            },
-            "integrity-impact": {
-              "base": "REPLACE_ME"
-            },
-            "availability-impact": {
-              "base": "REPLACE_ME"
-            }
-          }
-        ]
-      },
-      "security-impact-level": {
-        "security-objective-confidentiality": "REPLACE_ME",
-        "security-objective-integrity": "REPLACE_ME",
-        "security-objective-availability": "REPLACE_ME"
-      },
-      "status": {
-        "state": "operational"
-      },
-      "authorization-boundary": {
-        "description": "REPLACE_ME"
-      }
-    },
-    "system-implementation": {
-      "users": [
-        {
-          "uuid": "903468bc-0426-45da-84b7-1a02c4dfa092"
-        }
-      ],
-      "components": [
-        {
-          "uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-          "type": "REPLACE_ME",
-          "title": "REPLACE_ME",
-          "description": "The System",
-          "status": {
-            "state": "under-development"
-          }
-        }
-      ]
-    },
-    "control-implementation": {
-      "description": "This is the control implementation for the system.",
-      "implemented-requirements": [
-        {
-          "uuid": "a663b417-eb51-42a0-b2d4-26fa9c1338eb",
-          "control-id": "cm-10",
-          "statements": [
-            {
-              "statement-id": "cm-10_smt.c.",
-              "uuid": "216d5349-2706-4277-93f2-8d923f149120",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "b3b2d5e4-595c-499e-b96e-84470883ea3a",
-                  "description": "Add control implementation description here for item cm-10_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "98763298-5a64-4944-9920-e9107e959d99",
-          "control-id": "cp-8",
-          "statements": [
-            {
-              "statement-id": "cp-8_smt.top_level_description",
-              "uuid": "aec6d0e4-b949-4667-8a65-1e96221eba25",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "6201828b-900c-4e72-a646-44eaa40c440f",
-                  "description": "cloud.gov leverages redundant telecommunications services from AWS GovCloud."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "842eccd9-72ef-4ba2-8dfc-e5f75cd4ce95",
-          "control-id": "ma-3",
-          "statements": [
-            {
-              "statement-id": "ma-3_smt.a.",
-              "uuid": "17e6161b-135d-4513-8d0d-eef3291c0482",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "137a1daf-9cb9-4f4c-8ebe-f063e319b248",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "3b4075c3-87d8-4cf4-b903-33709837baf2",
-          "control-id": "ma-3",
-          "statements": [
-            {
-              "statement-id": "ma-3_smt.b.",
-              "uuid": "e1b96960-d6c6-4185-97f2-ca390b11e91d",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "e21fb8bb-6228-4e6b-be93-7a29d6519032",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "133c6f1e-5cb0-4761-a57b-8d5c5dbea765",
-          "control-id": "sr-2",
-          "statements": [
-            {
-              "statement-id": "sr-2_smt.c.",
-              "uuid": "fd6289da-2231-4c7a-a4da-f959a635ebda",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "036742bd-755c-4c0a-b552-092bb45b4a5c",
-                  "description": "Add control implementation description here for item sr-2_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "917f7ada-dcf9-4906-900f-7e519f9efcd4",
-          "control-id": "at-4",
-          "statements": [
-            {
-              "statement-id": "at-4_smt.b.",
-              "uuid": "dc480e6c-51a6-4d75-903d-83124e73741b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c9370a81-5c6d-4b3e-9f58-23784ed34bb7",
-                  "description": "Add control implementation description here for item at-4_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "1379aad9-ce7f-491c-8952-85ce78513a3a",
-          "control-id": "ac-2",
-          "statements": [
-            {
-              "statement-id": "ac-2_smt.l.",
-              "uuid": "d557a49d-346c-470b-b73b-3ccabc82a626",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "17f78cc5-76b9-4e67-b367-94775c9f62dd",
-                  "description": "Add control implementation description here for item ac-2_smt.l"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "7daf9e5c-e999-4e43-af35-15349815645b",
-          "control-id": "au-5",
-          "statements": [
-            {
-              "statement-id": "au-5_smt.b.",
-              "uuid": "817ac0f7-0a3f-4f1c-a8b5-05d2d8ffdd09",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a024bb17-cd35-425a-9686-9b68318f4159",
-                  "description": "Add control implementation description here for item au-5_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "d5a6ef79-5e92-4649-9d6a-bc2fcd474be8",
-          "control-id": "ac-20.1",
-          "statements": [
-            {
-              "statement-id": "ac-20.1_smt.b",
-              "uuid": "f1ac547f-e00b-42cc-b978-2b2ada83622c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "75bafb19-8616-4c79-b297-967d6c106e22",
-                  "description": "Add control implementation description here for item ac-20.1_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "744e08d4-e6a1-49e0-8463-cc5e9a8ed0bc",
-          "control-id": "ra-2",
-          "statements": [
-            {
-              "statement-id": "ra-2_smt.c.",
-              "uuid": "d7d48e8c-bd70-4a68-afd2-df7187f5315e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "90de24a2-bafa-4ca9-9d00-89bc1ce46a59",
-                  "description": "Add control implementation description here for item ra-2_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "b4ac1c93-cff2-432d-9bf7-2098144afe11",
-          "control-id": "pe-10",
-          "statements": [
-            {
-              "statement-id": "pe-10_smt.a.",
-              "uuid": "87c7b6f0-db48-4606-9031-f53361a86fb8",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "941fb56c-ffdc-4ffb-bcf4-0e989d5489a2",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e5568034-498f-4972-adaa-6ba4cb9d6d4c",
-          "control-id": "pe-10",
-          "statements": [
-            {
-              "statement-id": "pe-10_smt.b.",
-              "uuid": "f05c329c-6141-4f0d-9708-a337242f005d",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "423b2856-56b5-4b20-ba24-093b5debd63e",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "1a026b03-75fa-4b3c-bcf0-913f35c38f52",
-          "control-id": "pe-10",
-          "statements": [
-            {
-              "statement-id": "pe-10_smt.c.",
-              "uuid": "5056b1f6-c497-404e-be0d-bf32a4ea7f34",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "509b14a3-3f2c-44a4-952c-c7fb1bcc9bc2",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "73526256-c552-4b41-9ab8-595278c40417",
-          "control-id": "ac-17.4",
-          "statements": [
-            {
-              "statement-id": "ac-17.4_smt.b",
-              "uuid": "07dc83aa-9fef-4c09-92b5-39545a942df2",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "b64ea4a4-cdf8-4b5a-88f5-40bd1a4eaed3",
-                  "description": "Add control implementation description here for item ac-17.4_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "979ea299-9f60-4848-adb2-e3a9e85b1af5",
-          "control-id": "sc-18",
-          "statements": [
-            {
-              "statement-id": "sc-18_smt.b.",
-              "uuid": "39d7b87f-024b-4ce9-a6ca-be8993aac643",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2a69bef2-2d08-4527-b857-8d97627f103a",
-                  "description": "Add control implementation description here for item sc-18_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "692a2671-4ab7-4330-9852-8ebc397a0928",
-          "control-id": "ir-8",
-          "statements": [
-            {
-              "statement-id": "ir-8_smt.e.",
-              "uuid": "f654855f-1287-4dbe-b868-08e086bca529",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "f33d68d3-eae1-4bc4-86b8-f55c4fe5b458",
-                  "description": "Add control implementation description here for item ir-8_smt.e"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "058d2d41-f22c-4380-93cb-605cae4d9ec6",
-          "control-id": "ia-5.1",
-          "statements": [
-            {
-              "statement-id": "ia-5.1_smt.h",
-              "uuid": "30e2cc3a-4f42-40c5-a5ed-083a13a77a9a",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "dd17c58a-1b70-4ccc-9be7-9226d60872e0",
-                  "description": "Add control implementation description here for item ia-5.1_smt.h"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "a8abfc70-aa31-4d20-bfda-e4dafa485c9d",
-          "control-id": "ac-22",
-          "statements": [
-            {
-              "statement-id": "ac-22_smt.d.",
-              "uuid": "5d38b630-c83f-4fa6-8e0e-de15e3a29c8b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "30cc41c7-5667-4994-927a-85cd9ed6b69d",
-                  "description": "Add control implementation description here for item ac-22_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "08030fbd-2b31-4c53-9183-b50a64b5cbc9",
-          "control-id": "si-4",
-          "statements": [
-            {
-              "statement-id": "si-4_smt.g.",
-              "uuid": "2106485e-8cd3-4bdc-892a-df44fa98bdbf",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "fa27e272-0c98-466e-a5e8-907a86944bff",
-                  "description": "Add control implementation description here for item si-4_smt.g"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ac6e8a0b-b724-4ad9-a6c6-9988e6635a9c",
-          "control-id": "sa-15.3",
-          "statements": [
-            {
-              "statement-id": "sa-15.3_smt.b",
-              "uuid": "28ff2601-2c7f-46d3-aa19-5178947eae2b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "74e2c28a-2e3f-4242-8593-4e5780d942c7",
-                  "description": "Add control implementation description here for item sa-15.3_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "08cb7225-632f-452d-81a3-5f7490009259",
-          "control-id": "au-1",
-          "statements": [
-            {
-              "statement-id": "au-1_smt.c.",
-              "uuid": "a5ec8e80-f0da-44f5-81e3-da3d640c775f",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a8cc8108-28cd-47e3-bc27-566f9a1a3508",
-                  "description": "Add control implementation description here for item au-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "c29dc808-f237-4167-a2b9-fd5ebaa897c7",
-          "control-id": "pe-14",
-          "statements": [
-            {
-              "statement-id": "pe-14_smt.a.",
-              "uuid": "592423f2-540f-436a-b881-ace8f4fe2f27",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a5408f2c-8177-4094-9df7-3033d2a3f3d3",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "72a05fd0-c10b-4118-ab11-1179b6639137",
-          "control-id": "pe-14",
-          "statements": [
-            {
-              "statement-id": "pe-14_smt.b.",
-              "uuid": "13bf5cf4-ffd3-4e82-a0f1-6538e97da97e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2d49a348-5b47-45d4-a144-6a7cabf74247",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "25eeaab9-0ebb-42ac-972f-64664104d1a1",
-          "control-id": "ac-17",
-          "statements": [
-            {
-              "statement-id": "ac-17_smt.b.",
-              "uuid": "c3f9036c-b707-4e90-9229-0adfb3947bae",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "3bd478b8-812d-4fc9-887e-34d701a6343f",
-                  "description": "Add control implementation description here for item ac-17_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "5fa0a80f-ca8b-4d4e-b71b-fa9963527b17",
-          "control-id": "at-1",
-          "statements": [
-            {
-              "statement-id": "at-1_smt.c.",
-              "uuid": "8bd120f6-f6ee-4f90-a9b2-e1c4438e1a1e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "60f80494-3586-4ec6-947e-278377f428d9",
-                  "description": "Add control implementation description here for item at-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "a52b95e9-6408-4f56-9f50-6a4e09eebe0f",
-          "control-id": "cp-10",
-          "statements": [
-            {
-              "statement-id": "cp-10_smt.top_level_description",
-              "uuid": "b253276e-e7e7-464d-8e23-60c771441775",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "60eb484c-ab41-4893-ae93-6d7707b47813",
-                  "description": "In accordance with application owner SLAs established with cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ac9aeb73-c098-4bf6-b9ee-91034df20548",
-          "control-id": "ac-7",
-          "statements": [
-            {
-              "statement-id": "ac-7_smt.b.",
-              "uuid": "15675b2f-44d6-4ddf-ad42-d343f654ccc6",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "f89fcb6b-d1b6-4c02-a19f-f2bc905970f1",
-                  "description": "Add control implementation description here for item ac-7_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "65aa18b3-4aa8-4713-abe5-7d6a7969ba43",
-          "control-id": "cm-1",
-          "statements": [
-            {
-              "statement-id": "cm-1_smt.c.",
-              "uuid": "04b1db0b-652a-499d-88ac-abed475bcb09",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2f29fd59-1ad1-43f0-9760-ed49629c4bec",
-                  "description": "Add control implementation description here for item cm-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "29d8c042-5305-48a8-8dff-0a2ad76c80ff",
-          "control-id": "ma-6",
-          "statements": [
-            {
-              "statement-id": "ma-6_smt.top_level_description",
-              "uuid": "a6c3f693-d8c7-4fc3-8815-cef801f5e705",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c156b889-0f4c-4994-aaf7-91f310c8f682",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "23cc5364-fd0d-49a7-beab-31b59570df0e",
-          "control-id": "ca-5",
-          "statements": [
-            {
-              "statement-id": "ca-5_smt.b.",
-              "uuid": "74fcf65a-45cf-4da4-a6ae-d0f9212cd560",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "43040996-e469-4e93-ad0e-020b9a4e1199",
-                  "description": "Add control implementation description here for item ca-5_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ea9efbec-da11-4f2c-93d8-5f6c8d697d8e",
-          "control-id": "si-5",
-          "statements": [
-            {
-              "statement-id": "si-5_smt.d.",
-              "uuid": "15561e55-9683-4ad2-8065-3d298307fa2c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2cf85c66-85dc-4d3b-b315-2886e102e4dd",
-                  "description": "Add control implementation description here for item si-5_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "8d10bf1a-622e-424d-862e-6450c453530f",
-          "control-id": "pe-15",
-          "statements": [
-            {
-              "statement-id": "pe-15_smt.top_level_description",
-              "uuid": "c92f93bb-4c2c-4fe0-86db-806f115c9d4e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "fcd527f2-8a37-46fd-9e29-b72c14aab7a1",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "56efb6d1-ad37-49c3-b257-f75a5385d64b",
-          "control-id": "sa-9",
-          "statements": [
-            {
-              "statement-id": "sa-9_smt.c.",
-              "uuid": "10762782-6fc0-4511-b0b0-fb06b7254b56",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "b79ed285-b877-417d-827b-377cc5b7b47d",
-                  "description": "Add control implementation description here for item sa-9_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ee2b7dc7-609a-400d-bf74-9872422a0930",
-          "control-id": "ac-17.1",
-          "statements": [
-            {
-              "statement-id": "ac-17.1_smt.top_level_description",
-              "uuid": "a0c3aa03-8513-41d6-a630-0ede47a5512e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "96d0e3b3-3ed8-4df7-a344-9bdd77417882",
-                  "description": "cloud.gov logs all remote access to applications and application instances, and makes those events available for audit."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "884481f5-52dc-4f61-be23-bb74786c8369",
-          "control-id": "cm-11",
-          "statements": [
-            {
-              "statement-id": "cm-11_smt.c.",
-              "uuid": "d1ea6644-ced4-4331-8f56-e1230707ef58",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "07f70414-9b65-4caf-868f-11db06bdc899",
-                  "description": "Add control implementation description here for item cm-11_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "f1966dc3-5914-4ea2-b728-60db4f1b6138",
-          "control-id": "cp-9",
-          "statements": [
-            {
-              "statement-id": "cp-9_smt.d.",
-              "uuid": "b3dda48f-c9e8-4766-b49e-880100883fed",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "869ccb69-4ba7-49f3-a8a3-846d9c80fc76",
-                  "description": "Add control implementation description here for item cp-9_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "d74cfd11-87ab-44a6-b582-dd74cfba35e4",
-          "control-id": "ca-1",
-          "statements": [
-            {
-              "statement-id": "ca-1_smt.c.",
-              "uuid": "c9e6f00e-9034-4797-98f7-cecac7e209c2",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "ad9b4698-280d-4d73-b6c6-37a1832234e4",
-                  "description": "Add control implementation description here for item ca-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "83464bd0-80e7-45e6-8d50-8c1ad268576c",
-          "control-id": "ma-2",
-          "statements": [
-            {
-              "statement-id": "ma-2_smt.a.",
-              "uuid": "44a840bf-1ff5-419e-8146-7ab7c83b815c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "997f1db9-0d71-4ee7-88e5-06e00c4f2f14",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "c6f14d44-e70d-42ac-883b-dcd10084bf4d",
-          "control-id": "ma-2",
-          "statements": [
-            {
-              "statement-id": "ma-2_smt.b.",
-              "uuid": "949c4c54-4d11-414b-b864-43c1bbfa3216",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "f25f8232-8c17-4a20-8532-f7cfbec964a9",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "a314d96a-c21e-46e8-82a2-157984e75af2",
-          "control-id": "ma-2",
-          "statements": [
-            {
-              "statement-id": "ma-2_smt.c.",
-              "uuid": "6a573b2d-79aa-48fb-bd19-d087e8d96790",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "51e26ffd-d101-49c8-98b3-cc72adf2c18d",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "b329e0f7-03d7-4e71-b904-37026196f947",
-          "control-id": "ma-2",
-          "statements": [
-            {
-              "statement-id": "ma-2_smt.d.",
-              "uuid": "c2a5efdb-af9b-4fdb-a1f3-55cdd33a3950",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "0f46c923-f915-439f-856f-9253b3aac00c",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "5736790f-95ea-4b9f-a8c1-05235e8d0c8b",
-          "control-id": "ma-2",
-          "statements": [
-            {
-              "statement-id": "ma-2_smt.e.",
-              "uuid": "5ac2b809-66b1-4827-97a9-0ee0e855342c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "4770ea3e-0c63-438e-8976-3d93d8aefb66",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "b51caa54-07b8-4b1e-98b1-be057ec09e9f",
-          "control-id": "ma-2",
-          "statements": [
-            {
-              "statement-id": "ma-2_smt.f.",
-              "uuid": "1790ea15-419a-4afc-8550-7bef56b83056",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "4042eefb-afdc-45f4-8ba5-a4718a69b7f2",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e3240fa2-a23b-4860-9b57-0ae912c6e35c",
-          "control-id": "si-1",
-          "statements": [
-            {
-              "statement-id": "si-1_smt.c.",
-              "uuid": "625fdb91-37a0-4da8-a593-6d934e07533e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "da19b58e-dda7-4a23-82c6-7054c4fd3da2",
-                  "description": "Add control implementation description here for item si-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "346bd78c-9b41-4e05-a7bd-e5694ff5e9c6",
-          "control-id": "ac-6.7",
-          "statements": [
-            {
-              "statement-id": "ac-6.7_smt.b",
-              "uuid": "87c6ff7a-74cd-4780-9b79-3262746ba055",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "93de09e1-32b9-45b5-8ee5-5a81752ab590",
-                  "description": "Add control implementation description here for item ac-6.7_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "62880bc6-e223-473e-adc4-ca78fd80963c",
-          "control-id": "sr-3",
-          "statements": [
-            {
-              "statement-id": "sr-3_smt.c.",
-              "uuid": "55d70c02-cbc3-455d-a795-43fceb0659a6",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "e27a12ec-fc6f-4780-a886-930404711a8a",
-                  "description": "Add control implementation description here for item sr-3_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e8f1afce-9541-4279-9760-4ba3a05bbb19",
-          "control-id": "ps-8",
-          "statements": [
-            {
-              "statement-id": "ps-8_smt.b.",
-              "uuid": "b6f01e4c-7184-485b-a4bd-9028d76b9837",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "eee140ff-1e65-44f0-a7c2-ba8b9186f6d6",
-                  "description": "Add control implementation description here for item ps-8_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "742cddf1-9ae7-4162-aa58-a61b081f922f",
-          "control-id": "cm-5",
-          "statements": [
-            {
-              "statement-id": "cm-5_smt.top_level_description",
-              "uuid": "3addce3e-b4db-4f47-92ef-c102a67439f7",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c314049a-1b07-4d54-8716-a3d79ee19608",
-                  "description": "We inherit all of this from cloud.gov.\ncloud.gov enforces restrictions on available actions according to the system-provided org and space roles. All actions are logged and available to customers for auditing purposes."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "966a0fa5-0a96-4e5c-8af3-17a09973d915",
-          "control-id": "au-4",
-          "statements": [
-            {
-              "statement-id": "au-4_smt.top_level_description",
-              "uuid": "2c140e0a-02b2-45a7-b9b6-521aded6e15b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "9dc3980c-a458-49ce-a157-b8122d350532",
-                  "description": "cloud.gov ensures sufficient capacity for application logging from tenant applications."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "40767540-0a0e-452a-b596-df864c1201f2",
-          "control-id": "ra-3",
-          "statements": [
-            {
-              "statement-id": "ra-3_smt.f.",
-              "uuid": "7c2c9b40-2f02-4639-b4a9-e9f0c6486e1f",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "4b1af8d0-04bb-4ef2-bc17-1a82d774687a",
-                  "description": "Add control implementation description here for item ra-3_smt.f"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e990fa91-ec5d-477f-9718-22f7c99167ee",
-          "control-id": "pe-11",
-          "statements": [
-            {
-              "statement-id": "pe-11_smt.top_level_description",
-              "uuid": "5f321022-8c93-452e-8786-a5f9d80e11ed",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "8054a9d6-b713-4fe2-8d80-64243f817ed1",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "f7d4fc7f-c628-416b-a3a9-f03e1accc7c9",
-          "control-id": "sc-39",
-          "statements": [
-            {
-              "statement-id": "sc-39_smt.top_level_description",
-              "uuid": "4e08a514-2e1e-4cb1-bae5-f777895bd571",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "e10b5b9d-9949-4644-8ab6-8d3132193e33",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "cf4a3b73-5d18-4dd4-b1ac-9a6e11bc74df",
-          "control-id": "pl-2",
-          "statements": [
-            {
-              "statement-id": "pl-2_smt.e.",
-              "uuid": "13d3ccf5-4bda-4bb0-9241-a6251a81dafd",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "ca6f6ba1-3bf9-4b60-a8ee-91f71a39d1ad",
-                  "description": "Add control implementation description here for item pl-2_smt.e"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e977f38b-3c48-4909-8032-49869b4ffdce",
-          "control-id": "ir-6",
-          "statements": [
-            {
-              "statement-id": "ir-6_smt.b.",
-              "uuid": "f1adf6c4-ea5f-4f8d-84df-a60ff7c797e2",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "90298c5d-440f-4e64-9166-4ea56424a26e",
-                  "description": "Add control implementation description here for item ir-6_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "d3d4f8b2-652d-40f3-8550-f3f1e2a54bad",
-          "control-id": "ps-3",
-          "statements": [
-            {
-              "statement-id": "ps-3_smt.b.",
-              "uuid": "d1d44b04-cb09-48d2-898c-7bb72419cb01",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "f1192056-852e-4a24-b55f-dd489e6db1f1",
-                  "description": "Add control implementation description here for item ps-3_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "b0ab8463-46ae-496c-bc28-ec6fea14c7f8",
-          "control-id": "ac-8",
-          "statements": [
-            {
-              "statement-id": "ac-8_smt.c.",
-              "uuid": "8162c9c1-cc9e-41b7-bf4d-516db206ff27",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "323dbcf8-ee6b-4da3-9be7-d7a053ebb619",
-                  "description": "Add control implementation description here for item ac-8_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "7a5ebeaf-646c-48c7-a05e-e40eb9739c9d",
-          "control-id": "ac-18",
-          "statements": [
-            {
-              "statement-id": "ac-18_smt.a.",
-              "uuid": "50f47780-170f-451b-b09f-415208d8dad7",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "4285faf1-e580-43c8-813f-634b86702736",
-                  "description": "Since cloud.gov is completely virtualized within AWS, there are no wireless capabilities possible."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "52fde53a-d0db-43f4-9232-cdd36f3e01cd",
-          "control-id": "ac-18",
-          "statements": [
-            {
-              "statement-id": "ac-18_smt.b.",
-              "uuid": "f45deed9-bba9-4b09-b5ea-c1776058b6f6",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "61e0dbc2-6be0-4934-ab25-1bd1f9d8b5a3",
-                  "description": "Since cloud.gov is completely virtualized within AWS, there are no wireless capabilities possible."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "21095056-62b3-4b57-9664-91c0759721b7",
-          "control-id": "mp-1",
-          "statements": [
-            {
-              "statement-id": "mp-1_smt.c.",
-              "uuid": "9d48cb9e-eb07-464c-8853-c275d0b00930",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "db979418-ea5e-443e-81de-2176fdbab1ed",
-                  "description": "Add control implementation description here for item mp-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "669692fc-d2c3-4f4b-91d5-47ed73334643",
-          "control-id": "cp-2",
-          "statements": [
-            {
-              "statement-id": "cp-2_smt.h.",
-              "uuid": "7cd736db-ecc0-4a50-9fb0-b9ba60880201",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "bd668381-4b83-42bb-9fe1-88cf577a7979",
-                  "description": "Add control implementation description here for item cp-2_smt.h"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "2f98a1d4-c1f3-46d1-bff6-26225e4aa362",
-          "control-id": "pe-4",
-          "statements": [
-            {
-              "statement-id": "pe-4_smt.top_level_description",
-              "uuid": "1ec723f0-e80e-4915-8ed6-5377ba345f3c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "d003552d-976d-4482-a287-1cec45e328c3",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "eaa63ad3-288a-41a7-831a-3e83ae550f7b",
-          "control-id": "ps-7",
-          "statements": [
-            {
-              "statement-id": "ps-7_smt.e.",
-              "uuid": "e15a08c1-1f35-43b4-b033-8a5285656a82",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "918f459d-cf7e-48a0-a30f-3378daf71667",
-                  "description": "Add control implementation description here for item ps-7_smt.e"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "6fa21ded-d924-4739-99f7-b9ac5ceec757",
-          "control-id": "ir-2",
-          "statements": [
-            {
-              "statement-id": "ir-2_smt.b.",
-              "uuid": "85a2ed58-faed-48fc-9be1-63b254a6b26f",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "65b6f1dd-9c49-4ea9-8ce2-1a961f3df24d",
-                  "description": "Add control implementation description here for item ir-2_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "34cc455a-de58-427a-a142-8a4ee8ed9bfb",
-          "control-id": "cp-6",
-          "statements": [
-            {
-              "statement-id": "cp-6_smt.b.",
-              "uuid": "e7e88695-eaf7-4243-96fa-598a69c2eef5",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "6afd0e39-803f-4e23-bba3-3dbe76659797",
-                  "description": "Add control implementation description here for item cp-6_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ad04b5b5-cb0e-425c-9513-29aa27789089",
-          "control-id": "mp-5",
-          "statements": [
-            {
-              "statement-id": "mp-5_smt.a.",
-              "uuid": "8acd2e10-6bed-406e-959e-52680126c4b3",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "8e235d0c-3134-4be3-9e9a-5ee2daaeee2c",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e6ce8f45-76d5-4fef-a2a7-ccbc3d84285f",
-          "control-id": "mp-5",
-          "statements": [
-            {
-              "statement-id": "mp-5_smt.b.",
-              "uuid": "0773cbdf-8520-4cc9-8fac-f2a36b22b691",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "afbe8b16-2e7c-4924-9a53-14d31fd2f365",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "58a357c6-813c-4ce7-af50-e257b4360459",
-          "control-id": "mp-5",
-          "statements": [
-            {
-              "statement-id": "mp-5_smt.c.",
-              "uuid": "2404699c-4906-4dcf-952f-48968475f0d3",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "ead5ffd9-c604-4da5-b298-23b262255f3c",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ef138b9a-9981-4425-9a92-532e2d9d5249",
-          "control-id": "mp-5",
-          "statements": [
-            {
-              "statement-id": "mp-5_smt.d.",
-              "uuid": "00ca1e15-0bf9-4082-b662-e38fd316a7c7",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "df7adafa-2a63-4eee-97bc-d53f3c8a93e4",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e948d0bd-d960-430f-9b35-040fb14505a5",
-          "control-id": "sa-2",
-          "statements": [
-            {
-              "statement-id": "sa-2_smt.c.",
-              "uuid": "a617b277-2ffc-4d01-9a48-0c7fa4eeac61",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "b9c485e4-514c-47cf-9dfc-3465d5ed7324",
-                  "description": "Add control implementation description here for item sa-2_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "733c6100-2eb2-42bd-9bd7-f8c303e2a3cb",
-          "control-id": "sa-22",
-          "statements": [
-            {
-              "statement-id": "sa-22_smt.b.",
-              "uuid": "5dba5983-746d-4e4f-8e43-93bb868444db",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "72254749-797a-4138-9f36-3fad14f42d03",
-                  "description": "Add control implementation description here for item sa-22_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "7a0742a5-ef51-4bff-855e-7c821cd66b33",
-          "control-id": "pl-4.1",
-          "statements": [
-            {
-              "statement-id": "pl-4.1_smt.c",
-              "uuid": "5fdc3e89-c506-465d-8dfe-a8af8707dd57",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2081d538-66b7-4545-b0ed-d6ebc88f7b78",
-                  "description": "Add control implementation description here for item pl-4.1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "2f8b9136-ff4d-4a8d-95cb-6b0956044e3e",
-          "control-id": "ma-3.3",
-          "statements": [
-            {
-              "statement-id": "ma-3.3_smt.a",
-              "uuid": "b55d070f-ddfd-405c-be96-b2555b33d035",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "f40f50a2-30a1-4700-91dd-16ef82bf9da9",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "501c613e-70de-4e98-89f9-28612e5af53e",
-          "control-id": "ma-3.3",
-          "statements": [
-            {
-              "statement-id": "ma-3.3_smt.b",
-              "uuid": "b982d2ad-6482-43ef-b10f-ac96ebdc7361",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "3875a9cc-5dd8-4799-84a9-ddb60d04775b",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "a6717115-eb8b-4dcc-a660-a42de66a1e02",
-          "control-id": "ma-3.3",
-          "statements": [
-            {
-              "statement-id": "ma-3.3_smt.c",
-              "uuid": "996d422a-b4bd-4778-b98c-c08f0aada7be",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "b648ff27-c38a-4141-aa98-6ce12567211d",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "a66bcb42-6cf5-4876-a9ec-5711d3cd8cc1",
-          "control-id": "ma-3.3",
-          "statements": [
-            {
-              "statement-id": "ma-3.3_smt.d",
-              "uuid": "3481bd64-ea6e-4d26-b634-dc9ca08e03ef",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "642e9f50-0539-492c-a142-0294638d7e7e",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "9e982cda-faae-4aa9-8001-16bc08eb56dd",
-          "control-id": "ps-6",
-          "statements": [
-            {
-              "statement-id": "ps-6_smt.c.",
-              "uuid": "18c0e9f9-2422-40d8-bc37-020048fdbb13",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a0ca784d-4a9f-4ca1-ad8e-95b53af33814",
-                  "description": "Add control implementation description here for item ps-6_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "3b6a9a3f-adb5-46cd-8f10-d9747be2f504",
-          "control-id": "ac-6.9",
-          "statements": [
-            {
-              "statement-id": "ac-6.9_smt.top_level_description",
-              "uuid": "a0639a15-560c-4047-8aa5-ae65a15ab54b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c805b4df-9380-44ab-b958-2595ef417eac",
-                  "description": "cloud.gov automatically logs privileged actions taken within cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "f08c02f7-f12c-499e-aafd-e6f7548da5ea",
-          "control-id": "pe-6.1",
-          "statements": [
-            {
-              "statement-id": "pe-6.1_smt.top_level_description",
-              "uuid": "c19c3a6d-8ec9-4436-9099-951091b6e583",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "45094f51-f9b8-4e13-a2f4-d43d36a560ef",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "50d0a5cc-857f-408a-a6f6-095fe7b383e0",
-          "control-id": "cp-7",
-          "statements": [
-            {
-              "statement-id": "cp-7_smt.c.",
-              "uuid": "9f74bb05-a95f-4ea6-83dc-504b6adf8ea4",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "5f7bdeda-8436-40a0-b468-caae2087c90f",
-                  "description": "Add control implementation description here for item cp-7_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "21c63baf-3bd0-40fe-9345-919bbd6b1f44",
-          "control-id": "mp-4",
-          "statements": [
-            {
-              "statement-id": "mp-4_smt.a.",
-              "uuid": "85d66b9a-80a3-4987-863c-aaa58ba984ac",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "fd334c25-f450-4e2e-9e94-9166aa21e406",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "0c5322f9-c3e8-4840-83d9-e2d15f946547",
-          "control-id": "mp-4",
-          "statements": [
-            {
-              "statement-id": "mp-4_smt.b.",
-              "uuid": "033c6665-c22e-4e82-8550-889bec85b1da",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c846ab0c-dfb5-4a39-a9ac-fb4162d90cad",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "429e8bf5-5e0a-4ad6-a59d-b4cd5d857cbe",
-          "control-id": "sc-13",
-          "statements": [
-            {
-              "statement-id": "sc-13_smt.b.",
-              "uuid": "1252f952-d40c-4d76-bda3-ee871fa9e4fd",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "cb2e3c20-8c90-4ebe-94d0-9856ae708512",
-                  "description": "Add control implementation description here for item sc-13_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "887f474f-aadf-4622-89d3-87ef8e0e342b",
-          "control-id": "sc-5",
-          "statements": [
-            {
-              "statement-id": "sc-5_smt.b.",
-              "uuid": "dbbc63a2-214f-4bf8-9ec7-009854b72a6c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "7eebc736-c328-415a-9464-6922ee94a48d",
-                  "description": "Add control implementation description here for item sc-5_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "d1b9fbbc-907b-4ac0-bf30-c368df50915c",
-          "control-id": "cp-8.2",
-          "statements": [
-            {
-              "statement-id": "cp-8.2_smt.top_level_description",
-              "uuid": "519551f0-9bc6-466d-b272-2ced09b41428",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "7cc02203-97ed-4e08-bce2-bf67a4048330",
-                  "description": "cloud.gov leverages redundant telecommunications services from AWS GovCloud."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "331d87a0-bf45-4e44-8852-2f51b6f6e612",
-          "control-id": "sa-3",
-          "statements": [
-            {
-              "statement-id": "sa-3_smt.d.",
-              "uuid": "4b3104e9-59ac-4088-ac45-c5b2fddf9979",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "ab57ae36-e0da-4039-a296-3a73e04f6b84",
-                  "description": "Add control implementation description here for item sa-3_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ee293b54-2edd-4997-895e-6fa8dfff7ef5",
-          "control-id": "ma-3.2",
-          "statements": [
-            {
-              "statement-id": "ma-3.2_smt.top_level_description",
-              "uuid": "89ccde35-91e2-4ab0-b0ce-5c7be3b69c08",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "fad39b04-6d58-4db0-b8e6-aa5bc34f59a7",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "0f12ba9f-7f72-44c6-b565-333d30b530fb",
-          "control-id": "si-11",
-          "statements": [
-            {
-              "statement-id": "si-11_smt.b.",
-              "uuid": "b8e893a3-8051-4cb2-b35c-fa074d0fc997",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "b071cce0-d7ea-43f6-aa4b-2ce67418bc03",
-                  "description": "Add control implementation description here for item si-11_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ed32a7fe-d43a-40a0-816d-a3101b2f6fc0",
-          "control-id": "sr-11",
-          "statements": [
-            {
-              "statement-id": "sr-11_smt.b.",
-              "uuid": "58f13b64-51cb-4785-a3fb-c7070559f125",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "09d5b683-06a9-4f91-88d8-280d1a6bd853",
-                  "description": "Add control implementation description here for item sr-11_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e4bb3429-ac1c-4e67-997f-6a9f7a39d9a2",
-          "control-id": "pe-1",
-          "statements": [
-            {
-              "statement-id": "pe-1_smt.a.",
-              "uuid": "685ed9f3-ed58-4369-992d-2e0156246dee",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "7da29b8b-16fb-4ce5-931d-5c812daf42bf",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "f8e023c5-6003-4f8c-b8c3-3198f88a31a1",
-          "control-id": "pe-1",
-          "statements": [
-            {
-              "statement-id": "pe-1_smt.b.",
-              "uuid": "ea4f6e9a-c708-43a2-8552-c174c0ea9179",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "fa7d016e-e1ce-4020-8908-fee34293ce17",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "a8ee5147-0e5a-4b5b-a1db-0524e7904ce2",
-          "control-id": "pe-1",
-          "statements": [
-            {
-              "statement-id": "pe-1_smt.c.",
-              "uuid": "058fc71d-85b8-43dd-b61d-cb42101bb589",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "687e4e10-8157-4b22-b10d-651c7708f483",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "5a66b306-be45-477b-b23f-56c6beba6a3a",
-          "control-id": "ia-12",
-          "statements": [
-            {
-              "statement-id": "ia-12_smt.c.",
-              "uuid": "578b1fc5-ee47-4a1c-a3bd-493075b4e52e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "024ba24e-1d63-4126-a62e-76ebf3ea83ec",
-                  "description": "Add control implementation description here for item ia-12_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "90227638-29fc-4d14-a330-499b210875a7",
-          "control-id": "sc-7.4",
-          "statements": [
-            {
-              "statement-id": "sc-7.4_smt.b",
-              "uuid": "d3ddd554-c8fd-4cdf-bb65-c0cc50f7241e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "90fc648d-0c74-4b45-bc13-784bf4aeb154",
-                  "description": "cloud.gov is responsible for monitoring, security, and policy enforcement for the configuration of external interfaces."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "3539c6ff-7278-4a76-9b46-7e947802a465",
-          "control-id": "sc-7.4",
-          "statements": [
-            {
-              "statement-id": "sc-7.4_smt.c",
-              "uuid": "4ca517d7-ecaf-4758-a60d-e7e5d24a8e6b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "fa6294b4-80e1-46e5-b1ab-56930a1c95c8",
-                  "description": "cloud.gov is responsible for monitoring, security, and policy enforcement for the configuration of external interfaces."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "23f5db29-3061-4400-943b-485efb5dda84",
-          "control-id": "sc-7.4",
-          "statements": [
-            {
-              "statement-id": "sc-7.4_smt.d",
-              "uuid": "0aad759f-79e2-4e42-aee2-9b24f48ad8f3",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "14bc3303-138a-4547-a432-724940ed3d7e",
-                  "description": "cloud.gov is responsible for monitoring, security, and policy enforcement for the configuration of external interfaces."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "2d2fa310-344b-4dda-b7f1-142d56f4fd91",
-          "control-id": "sc-7.4",
-          "statements": [
-            {
-              "statement-id": "sc-7.4_smt.e",
-              "uuid": "881baba5-9d12-493f-a3a2-2b1e785e3b23",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "963214e2-8737-4c8d-aa80-258c2221ba6b",
-                  "description": "cloud.gov is responsible for monitoring, security, and policy enforcement for the configuration of external interfaces."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "68ab3338-5eb5-4fe8-a3dc-15e73a4d1c42",
-          "control-id": "sc-7.4",
-          "statements": [
-            {
-              "statement-id": "sc-7.4_smt.h",
-              "uuid": "ec56b452-c8de-43fc-a326-579169ca5c0b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c06d96ed-e439-4bac-9821-b52f973f0834",
-                  "description": "Add control implementation description here for item sc-7.4_smt.h"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "493da84d-469d-4d9e-8bbb-faf739ae464c",
-          "control-id": "ps-2",
-          "statements": [
-            {
-              "statement-id": "ps-2_smt.c.",
-              "uuid": "f1d29f55-e07b-4dde-870b-1078e1cf6197",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2849afa1-71a7-4ec2-9618-f4f5ebccf72a",
-                  "description": "Add control implementation description here for item ps-2_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "29629f5e-b88e-42d7-a9d1-8aae70f6a346",
-          "control-id": "ac-19",
-          "statements": [
-            {
-              "statement-id": "ac-19_smt.b.",
-              "uuid": "b809be77-f286-42d2-bbdc-74f01f955d74",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "90a7b251-b503-43d6-b386-3cc65b48e424",
-                  "description": "Add control implementation description here for item ac-19_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "34525782-59d1-4808-b566-a4fd72fdffca",
-          "control-id": "sc-1",
-          "statements": [
-            {
-              "statement-id": "sc-1_smt.c.",
-              "uuid": "cab1929c-fc83-4530-aa08-e2dcb17b1d29",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "cbb023b8-5de0-4025-8e3f-f5c13dd4db5c",
-                  "description": "Add control implementation description here for item sc-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "5fb686f9-a52b-4739-bcd3-57a9deeda6e9",
-          "control-id": "sc-17",
-          "statements": [
-            {
-              "statement-id": "sc-17_smt.b.",
-              "uuid": "7b9f85b2-87e6-4575-bb12-d0bdccd7077e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "cbb73f26-482d-4fc3-bc16-8df4ca86b79d",
-                  "description": "Add control implementation description here for item sc-17_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "70e5ff41-f21c-4516-9a34-70cf7c174cd0",
-          "control-id": "cp-3",
-          "statements": [
-            {
-              "statement-id": "cp-3_smt.b.",
-              "uuid": "0e4a9e38-380e-49bd-b146-221b953234fa",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "f8a1f6b9-9adc-48c7-929e-5a6a90526f57",
-                  "description": "Add control implementation description here for item cp-3_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "4253caad-30d4-4a98-acb3-c871ecbfa6fb",
-          "control-id": "sc-23",
-          "statements": [
-            {
-              "statement-id": "sc-23_smt.top_level_description",
-              "uuid": "49a63333-6fff-4bb1-9f69-d3c7f3eff2cc",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c74ad323-1def-43ce-9f6d-951dacda4295",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "b03b558e-affa-4ecd-bbed-04fffb5d184f",
-          "control-id": "pl-8",
-          "statements": [
-            {
-              "statement-id": "pl-8_smt.c.",
-              "uuid": "aef4592e-bd07-4256-b5d6-8bee6e96014d",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "acfd4a41-02a1-4815-9b00-9c2ab05de39b",
-                  "description": "Add control implementation description here for item pl-8_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "c17961c0-67ad-46c7-aebd-1d01a3f61826",
-          "control-id": "pe-5",
-          "statements": [
-            {
-              "statement-id": "pe-5_smt.top_level_description",
-              "uuid": "8519d486-7945-460f-ba59-38285ab39930",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "d530cb28-5a40-465e-bfe0-302c87a7d941",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "5a937ebf-1e64-4760-bd84-b2f0bf36b853",
-          "control-id": "sc-7.3",
-          "statements": [
-            {
-              "statement-id": "sc-7.3_smt.top_level_description",
-              "uuid": "01513bc6-81e5-46bf-b48e-77bc7e46c742",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2e7de788-db8b-4c0a-b879-a56eaa3af317",
-                  "description": "cloud.gov controls and limits the set of networks that can be used to reach the customer application."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "f59ade76-3a4f-46c2-9c3e-349dfe2b3a69",
-          "control-id": "ps-5",
-          "statements": [
-            {
-              "statement-id": "ps-5_smt.d.",
-              "uuid": "21426f64-86ef-42d6-a092-f9baea208721",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "dfbb5f57-7e9a-43e8-84df-7f9242593839",
-                  "description": "Add control implementation description here for item ps-5_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "4ebe3709-25e8-48e9-814b-05c350472232",
-          "control-id": "cm-8",
-          "statements": [
-            {
-              "statement-id": "cm-8_smt.b.",
-              "uuid": "1050efb7-74a3-4710-b8f5-9af749d98bd1",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "57212fa8-778f-45fc-9415-e230af3e18a5",
-                  "description": "Add control implementation description here for item cm-8_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "58895235-f960-4ebb-b2b6-6a652dfff143",
-          "control-id": "mp-7",
-          "statements": [
-            {
-              "statement-id": "mp-7_smt.a.",
-              "uuid": "c1e1cc17-c695-436b-81ef-8e2c7221712b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a3a1a629-fb64-42de-94d8-f63d2067ad8a",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "5499a6e1-99c5-48f7-a0d3-af880e313a89",
-          "control-id": "mp-7",
-          "statements": [
-            {
-              "statement-id": "mp-7_smt.b.",
-              "uuid": "ae5a4123-e881-44e1-8730-59e70e899952",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "5b580543-606e-4468-982e-a37e074a336a",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "c41da1fc-1023-4bf7-b0e7-2e54295b3e21",
-          "control-id": "cp-4",
-          "statements": [
-            {
-              "statement-id": "cp-4_smt.c.",
-              "uuid": "8f87e264-bea3-4e79-a0a0-629ea170305a",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a4610a75-8823-4c08-a1cd-e7110b972998",
-                  "description": "Add control implementation description here for item cp-4_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "40fffd4e-f55a-4786-bd0e-432c86c6f9af",
-          "control-id": "cp-8.1",
-          "statements": [
-            {
-              "statement-id": "cp-8.1_smt.a",
-              "uuid": "176f2184-d4d8-4c39-8555-e580cfbe4515",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "d72aabc7-bb23-4532-a1be-1cfb6568539a",
-                  "description": "cloud.gov leverages redundant telecommunications services from AWS GovCloud."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "db030cee-ad36-494f-a35f-33f2574ed1a7",
-          "control-id": "cp-8.1",
-          "statements": [
-            {
-              "statement-id": "cp-8.1_smt.b",
-              "uuid": "1b1753db-1364-4e97-bdad-362e33b66bcc",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "08aa3047-59fb-4879-9013-59817d3988e9",
-                  "description": "cloud.gov leverages redundant telecommunications services from AWS GovCloud."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "9dfdcf8a-4218-4fe0-b21b-7334f4616aa0",
-          "control-id": "ma-3.1",
-          "statements": [
-            {
-              "statement-id": "ma-3.1_smt.top_level_description",
-              "uuid": "0b933203-ce28-4b45-ac67-c4daf88b58fb",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "3a52c3fe-cd44-470c-81b7-29d22532f4f5",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "7fdd5ddc-bc45-468a-bf74-669626772733",
-          "control-id": "pe-2",
-          "statements": [
-            {
-              "statement-id": "pe-2_smt.a.",
-              "uuid": "2979e461-eb31-42df-a216-acbfe9443baf",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "71114e06-20bf-42e4-8a90-78766f7885b3",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "b3b5811d-668d-4924-818d-da11571861d5",
-          "control-id": "pe-2",
-          "statements": [
-            {
-              "statement-id": "pe-2_smt.b.",
-              "uuid": "de8e51ec-e26f-41d5-91d8-e46972c3d871",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "e016f5f7-7dff-4221-8347-e91be0607c8f",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "88d1a447-dd3f-4fbb-97c3-f18b0abcffe8",
-          "control-id": "pe-2",
-          "statements": [
-            {
-              "statement-id": "pe-2_smt.c.",
-              "uuid": "25088860-d601-489e-849b-e2e556e760d4",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "45710eca-7b94-49a0-9faa-3aacab0b6ef5",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "05c820cf-9c70-4611-9020-06e9336564ac",
-          "control-id": "pe-2",
-          "statements": [
-            {
-              "statement-id": "pe-2_smt.d.",
-              "uuid": "587467e0-1c5f-4fde-a171-7248b34b02f7",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "03ad4847-9820-49be-9b39-13730f2f22d0",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "5a472686-07ce-4d69-8469-352b9f00f68b",
-          "control-id": "au-9",
-          "statements": [
-            {
-              "statement-id": "au-9_smt.b.",
-              "uuid": "e821eb06-1fe8-44bc-b8e9-93d77cc008dc",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "b2b57fd6-be07-488b-b122-99b43f263aa1",
-                  "description": "Add control implementation description here for item au-9_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "046ff84e-70dc-4a9a-8d13-f8d9f77a78b5",
-          "control-id": "cm-7.5",
-          "statements": [
-            {
-              "statement-id": "cm-7.5_smt.c",
-              "uuid": "711f8db3-7f97-4742-b47c-280fc2eace8f",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2030ca2f-1070-4436-aabe-16735981823a",
-                  "description": "Add control implementation description here for item cm-7.5_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "edade3f3-67f7-4fd1-97eb-0cc22edf8183",
-          "control-id": "ir-4",
-          "statements": [
-            {
-              "statement-id": "ir-4_smt.d.",
-              "uuid": "dd08811e-04b5-46fe-b24a-c50d5d68d92d",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "1e3a9d27-cdac-45a3-b07f-94102b303725",
-                  "description": "Add control implementation description here for item ir-4_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "0443cfd2-aa2f-49d7-ba54-0f8d95682c4e",
-          "control-id": "si-8",
-          "statements": [
-            {
-              "statement-id": "si-8_smt.b.",
-              "uuid": "176c8e9e-b895-46da-bf08-fd2ed0a9c34b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "3e19b20a-121b-4c85-b938-2ea8b70cebf4",
-                  "description": "Add control implementation description here for item si-8_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "927b7da4-e28f-40f9-9350-46820c3f4bd9",
-          "control-id": "ps-1",
-          "statements": [
-            {
-              "statement-id": "ps-1_smt.c.",
-              "uuid": "21c5fdaf-01d1-47a2-bfef-89c51475d2cb",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "8b60f93f-105d-40a8-8cdb-1abfc0623ad8",
-                  "description": "Add control implementation description here for item ps-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "a9bab694-dc6f-431e-b3e0-3dfd5f6b4880",
-          "control-id": "sc-20",
-          "statements": [
-            {
-              "statement-id": "sc-20_smt.b.",
-              "uuid": "0128bea3-23b6-4af5-8ce5-c46799d98286",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a0a9adf5-2eaf-4dfd-8c32-c831585f17b4",
-                  "description": "Add control implementation description here for item sc-20_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "a49396cf-7c26-427b-988c-92e7f4ac7711",
-          "control-id": "mp-3",
-          "statements": [
-            {
-              "statement-id": "mp-3_smt.a.",
-              "uuid": "1d1e97e8-1ff7-4ff6-8ada-e4a82b8b2099",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "20cf166c-89c0-4c36-89b9-0486dc3dec88",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "0c781cfe-16e6-4a54-83b0-b4678b3728d9",
-          "control-id": "mp-3",
-          "statements": [
-            {
-              "statement-id": "mp-3_smt.b.",
-              "uuid": "ee3769bb-59bf-4c49-ab2a-4c57c41deaa8",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "645f5191-6cf8-4c8e-98b8-168306b8495b",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "761d4f11-8943-466c-904e-3d539fcf989a",
-          "control-id": "sa-4",
-          "statements": [
-            {
-              "statement-id": "sa-4_smt.i.",
-              "uuid": "d265da49-b5ab-4292-8b9d-5efb9a582a09",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "b1c84473-0387-455c-831e-75d3b7400920",
-                  "description": "Add control implementation description here for item sa-4_smt.i"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "53fb33fe-9aa2-4bb0-9460-a5aec34312ee",
-          "control-id": "sa-10",
-          "statements": [
-            {
-              "statement-id": "sa-10_smt.e.",
-              "uuid": "f70de0a8-ca3b-4e7c-ac03-db8c4cc04668",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "fc864cc4-1f09-4497-9130-cd068da152a3",
-                  "description": "Add control implementation description here for item sa-10_smt.e"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ca2d037f-92fc-4dea-8993-1e344afff71d",
-          "control-id": "cm-7.1",
-          "statements": [
-            {
-              "statement-id": "cm-7.1_smt.b",
-              "uuid": "e427c9c0-1447-4c75-b173-825a4c2c03e3",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a9dc2a11-71e8-4c1b-8a8c-8ffb2abfa8e3",
-                  "description": "Add control implementation description here for item cm-7.1_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "3034bcca-eb3b-44d9-9934-e7135a222072",
-          "control-id": "pe-6",
-          "statements": [
-            {
-              "statement-id": "pe-6_smt.a.",
-              "uuid": "dc7fec29-acaf-4578-a7cb-f00c12f5586b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "39e9a3e5-29f0-4ec6-b15b-b0cbba326e40",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e0f79b4a-009e-4af1-b337-f2728961a697",
-          "control-id": "pe-6",
-          "statements": [
-            {
-              "statement-id": "pe-6_smt.b.",
-              "uuid": "d9e9eff1-193d-4b57-924d-5abb55d69b87",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "7e990374-f636-4c73-979d-1eb8153f8332",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "11248063-227c-4d60-9112-041c3e31f399",
-          "control-id": "pe-6",
-          "statements": [
-            {
-              "statement-id": "pe-6_smt.c.",
-              "uuid": "e6bee47f-184e-4d8f-9d31-5a1548b34784",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "460859b5-9d90-4df0-b044-754fbbde108e",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "4e1a5e17-fd70-4c92-ac02-238e7577df99",
-          "control-id": "si-16",
-          "statements": [
-            {
-              "statement-id": "si-16_smt.top_level_description",
-              "uuid": "159e00a6-9cc2-4367-9084-e27f56b99b60",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "b3042caa-0633-4530-bd69-18a62d4b34c2",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "13e412a4-5206-4450-bca7-608e5339ea1c",
-          "control-id": "ca-9",
-          "statements": [
-            {
-              "statement-id": "ca-9_smt.d.",
-              "uuid": "60a8050a-fd23-4271-a2a7-0778f7519d26",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "496f123d-a242-4c7a-87f2-9baf4ec3e2bf",
-                  "description": "Add control implementation description here for item ca-9_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ba5309ef-22bc-4108-961c-7397923ed341",
-          "control-id": "sc-15",
-          "statements": [
-            {
-              "statement-id": "sc-15_smt.b.",
-              "uuid": "e23e02c3-3385-40c7-be71-8c615080a3f8",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c792a3be-0262-41f1-8866-ae4238f93af9",
-                  "description": "Add control implementation description here for item sc-15_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "9dd0b969-1480-4b0d-ac90-a3bb02c6fd75",
-          "control-id": "cp-1",
-          "statements": [
-            {
-              "statement-id": "cp-1_smt.c.",
-              "uuid": "01f74744-2b2b-412e-acb1-8539a3309edc",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "1fbbce53-4a06-4200-936a-930008a5a196",
-                  "description": "Add control implementation description here for item cp-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "8e00a325-a1d0-4a38-8109-9f324e95517b",
-          "control-id": "sc-21",
-          "statements": [
-            {
-              "statement-id": "sc-21_smt.top_level_description",
-              "uuid": "4d15d1bd-8262-457e-b775-641747b30497",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "d5dd9839-aa55-43e0-8e41-dce67581e866",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "f9ea6225-e688-4f9d-8656-bc3373a1196a",
-          "control-id": "mp-2",
-          "statements": [
-            {
-              "statement-id": "mp-2_smt.top_level_description",
-              "uuid": "25f699ec-4ad1-4ea3-8b09-b3aff7802bb0",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "15672088-c289-49f4-a208-8484b1a0cc64",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "61851bb6-7970-42f0-8263-a9072c3bce0e",
-          "control-id": "sa-5",
-          "statements": [
-            {
-              "statement-id": "sa-5_smt.d.",
-              "uuid": "2e61657a-de89-4eb9-af11-86a188cb6516",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "d4eb0e24-b6d5-4184-ad21-127bb1343ef1",
-                  "description": "Add control implementation description here for item sa-5_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "97a6fbfa-c7ef-46e3-9e47-7982471a8f53",
-          "control-id": "sa-11",
-          "statements": [
-            {
-              "statement-id": "sa-11_smt.e.",
-              "uuid": "08f2bcc7-6a51-4a58-a8bb-3f9ccbf69e8a",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "358ebc5d-1c21-4701-b1e9-94b6b302425a",
-                  "description": "Add control implementation description here for item sa-11_smt.e"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e23edfc0-9f3f-4155-bd24-01289ddb4f14",
-          "control-id": "cm-8.3",
-          "statements": [
-            {
-              "statement-id": "cm-8.3_smt.b",
-              "uuid": "cd47afbd-a7e5-4ddf-acaf-bd8054953ee1",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "7b00bd96-0d03-4f35-b426-632aa4861519",
-                  "description": "Add control implementation description here for item cm-8.3_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "9b85d6c5-0aab-400b-ab74-7579a1cff653",
-          "control-id": "au-12",
-          "statements": [
-            {
-              "statement-id": "au-12_smt.c.",
-              "uuid": "e6256967-de48-45b6-af88-f09b71602ab5",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "f537b4c5-38e8-425d-8944-9444150bbbea",
-                  "description": "Add control implementation description here for item au-12_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "efd8b379-ba1b-4b1a-8e9f-ea89cfe8aee3",
-          "control-id": "sc-8.1",
-          "statements": [
-            {
-              "statement-id": "sc-8.1_smt.top_level_description",
-              "uuid": "06993a7c-6db5-4645-b572-a24248cfd2ca",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "effc38b3-41b2-4c42-b791-0df251d3e2e9",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "8502232f-d7e9-4e53-81ee-d6afd4604200",
-          "control-id": "ps-4",
-          "statements": [
-            {
-              "statement-id": "ps-4_smt.e.",
-              "uuid": "5fa6b426-b17d-4c27-a0ef-dfff5a2a0971",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a7720f43-dd5e-4367-9046-c8ca42b81bc1",
-                  "description": "Add control implementation description here for item ps-4_smt.e"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "9130edd4-3dbc-47eb-993e-3af6b9ead4e7",
-          "control-id": "cm-9",
-          "statements": [
-            {
-              "statement-id": "cm-9_smt.e.",
-              "uuid": "f9cfe273-46e9-4b90-b01e-a81b90d82e24",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "df02719d-fb7c-40e4-a621-59c04cc1184e",
-                  "description": "Add control implementation description here for item cm-9_smt.e"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "26b828c6-6aff-4f72-8097-7432967ce758",
-          "control-id": "ir-1",
-          "statements": [
-            {
-              "statement-id": "ir-1_smt.c.",
-              "uuid": "4c3e3cef-f56c-4370-975d-f7a843616713",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "9b8d17db-f5b8-4654-9b44-f942b280551a",
-                  "description": "Add control implementation description here for item ir-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "1ca23649-628c-41c0-93ef-27464d12d534",
-          "control-id": "mp-6",
-          "statements": [
-            {
-              "statement-id": "mp-6_smt.a.",
-              "uuid": "275368fa-eca6-40f5-b6fa-99b274166f3b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "6da30228-8a86-4e83-b63e-3f2acd434b0c",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "c688d927-37d9-48ab-9844-285938e8b296",
-          "control-id": "mp-6",
-          "statements": [
-            {
-              "statement-id": "mp-6_smt.b.",
-              "uuid": "edd36239-2e2e-447d-81da-3238ea8f226d",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "096fba53-1058-4181-9d9f-2722a961a78d",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "0f2380ec-87ed-49ac-9041-90803b4fa2b8",
-          "control-id": "sc-7",
-          "statements": [
-            {
-              "statement-id": "sc-7_smt.c.",
-              "uuid": "3ee3221d-52c0-414a-bf0c-4a9be166a0a4",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "d422a1e0-9fdf-4ae1-baf2-bdcf7d6985c7",
-                  "description": "Add control implementation description here for item sc-7_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "7589b28f-9647-4cc9-be96-f884715ff432",
-          "control-id": "ca-7.4",
-          "statements": [
-            {
-              "statement-id": "ca-7.4_smt.c",
-              "uuid": "e9fa7817-40b2-43b1-9022-43c193f3eed9",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "510d0d26-75c2-4f53-8dfa-f25f9ecb124f",
-                  "description": "Add control implementation description here for item ca-7.4_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "64ce3d08-3cc9-4b4c-bca6-d25094579b41",
-          "control-id": "sa-15",
-          "statements": [
-            {
-              "statement-id": "sa-15_smt.b.",
-              "uuid": "923f7027-fbd8-4362-bb29-b341eaa5a8fc",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "7b5965e7-e8c2-4782-bdce-8c3882fcbbb6",
-                  "description": "Add control implementation description here for item sa-15_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "800e3979-05d1-49fe-be4b-37e838f0def5",
-          "control-id": "ac-2.3",
-          "statements": [
-            {
-              "statement-id": "ac-2.3_smt.d",
-              "uuid": "728909c9-f713-477e-9047-8c7aafe7faac",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "62d4400d-72a2-4872-b410-526a93c0535b",
-                  "description": "Add control implementation description here for item ac-2.3_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "6bb35c5c-d29b-436c-b4b4-a86a80befacd",
-          "control-id": "cp-10.2",
-          "statements": [
-            {
-              "statement-id": "cp-10.2_smt.top_level_description",
-              "uuid": "a7004b48-d009-4fee-87cb-4a90cd5fee14",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "ae088768-3ab5-4f79-8416-9c9b8124decb",
-                  "description": "In accordance with application owner SLAs established with cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "272ec9af-824b-4a23-a602-e427a731fdbf",
-          "control-id": "sa-1",
-          "statements": [
-            {
-              "statement-id": "sa-1_smt.c.",
-              "uuid": "7bbc9245-2939-49da-b879-e627b38e1b9c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "85e77514-8d0e-45c4-8d01-ec6c77d88d2c",
-                  "description": "Add control implementation description here for item sa-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "3e7e51fa-7339-43cd-8307-7e0eb38dbd82",
-          "control-id": "ac-6.10",
-          "statements": [
-            {
-              "statement-id": "ac-6.10_smt.top_level_description",
-              "uuid": "11ae2341-e6d9-42dd-9854-a7a66f0ec53a",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "eb3512de-6dec-40da-b3b3-3a17a03ad67b",
-                  "description": "The cloud.gov role-based access control system prevents non-privileged users from executing privileged functions."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "cd3aca82-2c3b-4a06-a9e0-bf3fe4c5d937",
-          "control-id": "pe-3",
-          "statements": [
-            {
-              "statement-id": "pe-3_smt.a.",
-              "uuid": "16adffe5-c4d8-4850-8b15-2754afe2fff1",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "ac24ba1a-df73-4807-a64e-bb45f20ca936",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "9fd347f4-8f00-43ac-a8cf-fb70b4969a1c",
-          "control-id": "pe-3",
-          "statements": [
-            {
-              "statement-id": "pe-3_smt.b.",
-              "uuid": "55ac6db0-d042-4139-80dd-e7b94f7988ae",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a8d28ca9-bedb-4a52-83da-088defb41353",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "2e1e476e-391a-4277-84f8-49cb6cd22635",
-          "control-id": "pe-3",
-          "statements": [
-            {
-              "statement-id": "pe-3_smt.c.",
-              "uuid": "7d9d53b6-6b6b-4df2-be7d-96270658667a",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c573e4a1-fceb-4cfc-827d-d0dadb617085",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "0e89d80f-ab56-4d0e-9b04-3d7381d58120",
-          "control-id": "pe-3",
-          "statements": [
-            {
-              "statement-id": "pe-3_smt.d.",
-              "uuid": "958c6168-864f-4fdd-b56c-7d2e5ed8cd4c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "3d3cde42-5b20-450e-b6f2-112ec18d1a95",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "43263e91-3bc0-43aa-9928-0d03b556be85",
-          "control-id": "pe-3",
-          "statements": [
-            {
-              "statement-id": "pe-3_smt.e.",
-              "uuid": "b1dd1887-492a-48ff-bab7-80abcfebf67c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "5c0361cf-cd5d-44c2-98b0-2c9a0aafc638",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "05ead304-f505-4ccf-80b7-dd52000c0a0d",
-          "control-id": "pe-3",
-          "statements": [
-            {
-              "statement-id": "pe-3_smt.f.",
-              "uuid": "80eb696f-35a5-4543-8243-20bed0652c95",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "64364b57-2f69-4595-82bd-5340c6022fed",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "93323743-7bec-4627-92bb-ad4d1be5487a",
-          "control-id": "pe-3",
-          "statements": [
-            {
-              "statement-id": "pe-3_smt.g.",
-              "uuid": "9dac0189-4068-460a-af71-e7bd16561d1e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c0272ca0-e627-4b83-b9d5-216bfcf56072",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "7c3b2991-3271-40af-ac3f-ded0b5b319b7",
-          "control-id": "au-8",
-          "statements": [
-            {
-              "statement-id": "au-8_smt.b.",
-              "uuid": "ca9713df-d6ed-4f89-9e2c-f2f2297e9bdc",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "87c25205-a152-4f1a-b609-476e05222852",
-                  "description": "Add control implementation description here for item au-8_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "daf8a39d-fbd3-4006-a5d9-64eb5e433560",
-          "control-id": "at-2",
-          "statements": [
-            {
-              "statement-id": "at-2_smt.d.",
-              "uuid": "fe941d89-0bf2-404c-b037-745a46d366ff",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "5484f6de-8d60-464d-88f7-52b6fa18f52b",
-                  "description": "Add control implementation description here for item at-2_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ba384a64-959e-4f55-a227-803874c8664c",
-          "control-id": "cm-2",
-          "statements": [
-            {
-              "statement-id": "cm-2_smt.b.",
-              "uuid": "3468f6ba-d5e6-474a-bc26-3deee92b5180",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "39bb7e0c-95b3-4da4-9e41-cf0d4c7f51f7",
-                  "description": "Add control implementation description here for item cm-2_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "6adafae7-58a2-4399-bdf8-5d84bef464ca",
-          "control-id": "ac-14",
-          "statements": [
-            {
-              "statement-id": "ac-14_smt.b.",
-              "uuid": "4642d97b-f767-4598-93aa-4441dbfdc9d7",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "7bf493b0-4449-4f85-8065-0012a4f275fb",
-                  "description": "Add control implementation description here for item ac-14_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "be4c543f-ff8c-47b8-989b-1d84ceb6766a",
-          "control-id": "ca-6",
-          "statements": [
-            {
-              "statement-id": "ca-6_smt.e.",
-              "uuid": "51f3faf2-deef-4db7-9c3c-9e9ca51560d1",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a21fb8d1-69b7-43c1-b840-5fab1a3d6247",
-                  "description": "Add control implementation description here for item ca-6_smt.e"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ebaf1187-1e79-43f1-a0b9-86f7e11504f8",
-          "control-id": "ma-5",
-          "statements": [
-            {
-              "statement-id": "ma-5_smt.a.",
-              "uuid": "04f035f3-e68f-4023-8401-031f49fb4147",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c46020a4-c19b-4ac0-b0b4-7db4467be2f1",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ea74d6b5-6ded-4903-84ab-58b7a0c0ea27",
-          "control-id": "ma-5",
-          "statements": [
-            {
-              "statement-id": "ma-5_smt.b.",
-              "uuid": "4257ac94-32e8-4592-a0de-23f32cd30d70",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "1a736505-8a15-49ba-87ed-0983f2562384",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "c3461196-ce75-42d4-9a19-3a5e348ee536",
-          "control-id": "ma-5",
-          "statements": [
-            {
-              "statement-id": "ma-5_smt.c.",
-              "uuid": "24111118-2f10-4a93-9ca3-733cc30cb18b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "bed347ab-a3c6-44b1-afca-34507672f428",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "228297b2-8ceb-468a-863b-387becdebdc1",
-          "control-id": "ac-20",
-          "statements": [
-            {
-              "statement-id": "ac-20_smt.b.",
-              "uuid": "3ffb71ca-2e64-47f4-91b2-1698c0bb5132",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "41840244-6443-49e2-9bb5-9b27b704473e",
-                  "description": "Add control implementation description here for item ac-20_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "8db7ec27-345d-436f-8d49-2ce0c8cfafa4",
-          "control-id": "pe-8",
-          "statements": [
-            {
-              "statement-id": "pe-8_smt.a.",
-              "uuid": "9f5ff339-f4b5-412a-8c5d-83783ac4832d",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "b39fe9a9-855a-461f-ad59-e352c0376376",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "91ab3450-1ee3-422c-a464-29bb7d2937c1",
-          "control-id": "pe-8",
-          "statements": [
-            {
-              "statement-id": "pe-8_smt.b.",
-              "uuid": "2d8b9abd-3075-4d3f-baae-29aed978c873",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "1558d8aa-4a66-40cc-99a9-931d9d5ce891",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e62f1c4d-0665-4de9-8d68-b20d3038722c",
-          "control-id": "pe-8",
-          "statements": [
-            {
-              "statement-id": "pe-8_smt.c.",
-              "uuid": "e11116e7-d68e-4ef6-a9df-aecfdcd0505c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "8879c4f0-e91b-4a0e-8729-06660c1f9838",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "230b4e97-64cb-4891-81bc-44de48e2053e",
-          "control-id": "ra-3.1",
-          "statements": [
-            {
-              "statement-id": "ra-3.1_smt.b",
-              "uuid": "0478f284-2721-47f1-9daa-5ed7b9b24e9c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "363736f7-299e-46fa-9d03-b541c282eade",
-                  "description": "Add control implementation description here for item ra-3.1_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "b6968300-b9ae-4c3e-9a13-0c6ee59aefc6",
-          "control-id": "au-3",
-          "statements": [
-            {
-              "statement-id": "au-3_smt.f.",
-              "uuid": "b39403f4-14af-4769-aa0c-cf58676556d9",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "80070990-8103-48b5-a47f-822ec62c26d1",
-                  "description": "Add control implementation description here for item au-3_smt.f"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "d72622a1-5c1b-4432-9cc9-6ca7a8d92398",
-          "control-id": "ia-4",
-          "statements": [
-            {
-              "statement-id": "ia-4_smt.d.",
-              "uuid": "ac4cd669-adf6-46eb-93b9-c27dc3e3329e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2690d578-3761-4738-9b6f-d33b29113bc3",
-                  "description": "Add control implementation description here for item ia-4_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "7c484adb-dda7-4560-a99a-125dc42e17ad",
-          "control-id": "ac-17.2",
-          "statements": [
-            {
-              "statement-id": "ac-17.2_smt.top_level_description",
-              "uuid": "7530b45b-ffd7-4853-b5aa-33aebd5f427f",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "3b1a1f06-081c-444b-be30-668d9c88b54b",
-                  "description": "All remote access to cloud.gov-hosted applications happens over TLS and access to application instances happens via SSH."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e50be3c8-afc0-4a36-9dee-adf8f3c3820e",
-          "control-id": "ac-18.1",
-          "statements": [
-            {
-              "statement-id": "ac-18.1_smt.top_level_description",
-              "uuid": "71f27b51-782b-44ef-932f-17d1f1a481cd",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "114e8e24-b5d8-43ab-a93f-dae8f2de8ace",
-                  "description": "Since cloud.gov is completely virtualized within AWS, there are no wireless capabilities possible."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "62ad5e6d-5952-47af-804d-9f69acc3d757",
-          "control-id": "pe-16",
-          "statements": [
-            {
-              "statement-id": "pe-16_smt.a.",
-              "uuid": "14aa24be-36b0-4a91-b417-9af44529ea8a",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "76c7565f-eee3-4dab-b759-bbec3f011b63",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "29ecd5db-9775-492d-a14c-deaa8b594320",
-          "control-id": "pe-16",
-          "statements": [
-            {
-              "statement-id": "pe-16_smt.b.",
-              "uuid": "ff7b9fbb-8185-466d-b9bb-c46afca8c5ca",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "33aea180-6e07-4e99-8cf3-1f3b75449d01",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "5730bf38-12cc-45f7-b01a-4ad722f77284",
-          "control-id": "cm-12",
-          "statements": [
-            {
-              "statement-id": "cm-12_smt.c.",
-              "uuid": "4a6bcaae-0bd4-4565-bdeb-2c159ea2ee10",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "267af5d4-29c3-4216-ae2e-bc95ab8896c9",
-                  "description": "Add control implementation description here for item cm-12_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "1a8ecde5-bd89-4e6d-92b6-e3e1e442b3c8",
-          "control-id": "si-2",
-          "statements": [
-            {
-              "statement-id": "si-2_smt.d.",
-              "uuid": "b3ca6ecc-b3ab-4b74-b015-2e0b91b2d1ec",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "8f277c54-05d1-4821-8680-30dda32e40d7",
-                  "description": "Add control implementation description here for item si-2_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "d48e4462-e748-4044-abdd-f7c78385b57c",
-          "control-id": "ma-1",
-          "statements": [
-            {
-              "statement-id": "ma-1_smt.c.",
-              "uuid": "17236dd8-d281-42a3-950a-60ce9231a053",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c7b7e99e-f262-4a7a-8396-d867811accb7",
-                  "description": "Add control implementation description here for item ma-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "8ce4a901-92f1-450f-a75b-4420fbdc81c1",
-          "control-id": "ca-2",
-          "statements": [
-            {
-              "statement-id": "ca-2_smt.f.",
-              "uuid": "c6b1aa66-a033-4aa4-b189-758ce10bd0f5",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "c3f6b463-3036-49d4-8ccb-e374188bce9b",
-                  "description": "Add control implementation description here for item ca-2_smt.f"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "b7acf408-a8c4-4dc2-8ada-a13c94b2a5be",
-          "control-id": "cm-6",
-          "statements": [
-            {
-              "statement-id": "cm-6_smt.d.",
-              "uuid": "68f0fbd3-c8ef-4d87-ba18-7f7d65f64455",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "9697565a-a8d4-4926-b164-66ff837d70f8",
-                  "description": "Add control implementation description here for item cm-6_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e28eada4-9659-4eb7-b1e9-2667b968c4c3",
-          "control-id": "au-7",
-          "statements": [
-            {
-              "statement-id": "au-7_smt.b.",
-              "uuid": "5eaf86db-31e0-4765-819b-bc2f1609ada2",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "3631e4dc-bccf-4512-8898-15df903652a9",
-                  "description": "Add control implementation description here for item au-7_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "d4471fc8-cf43-459b-8a8c-c6ba4aba4e14",
-          "control-id": "ia-8.2",
-          "statements": [
-            {
-              "statement-id": "ia-8.2_smt.b",
-              "uuid": "ecdb580d-3fdc-493c-ae71-7525c474246e",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "e064b873-0b91-4420-b4aa-5c1a4fa41ecf",
-                  "description": "Add control implementation description here for item ia-8.2_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "2c56a6b3-0404-47e7-a2da-a71fb16d8a2a",
-          "control-id": "pe-12",
-          "statements": [
-            {
-              "statement-id": "pe-12_smt.top_level_description",
-              "uuid": "e547e766-6883-4117-9674-c9d67f1e30b1",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "61bca4e1-2c92-4199-a032-3a04caf71ada",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "65b28eff-0421-476f-8919-f0d3dafa7c34",
-          "control-id": "pl-1",
-          "statements": [
-            {
-              "statement-id": "pl-1_smt.c.",
-              "uuid": "5ff3fc92-b55f-4b3e-8f39-f14ffaf385e9",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "9fa81395-acfa-4922-b008-7262f8d17fa4",
-                  "description": "Add control implementation description here for item pl-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "626009fd-2c92-4d20-a697-c80a451c7e20",
-          "control-id": "si-4.4",
-          "statements": [
-            {
-              "statement-id": "si-4.4_smt.b",
-              "uuid": "d139f6b5-a931-4837-af59-36d68788d656",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2c3aab03-1e4c-4b17-a928-834d5688cc9c",
-                  "description": "Add control implementation description here for item si-4.4_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "7f97bf9f-a50a-4a39-88f3-b825d6365572",
-          "control-id": "pe-13.1",
-          "statements": [
-            {
-              "statement-id": "pe-13.1_smt.top_level_description",
-              "uuid": "34837c63-71fe-4f4f-bd57-99efd5e042c5",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "7e4c6ee5-fbd8-4d1c-9de5-e26fc3259b98",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "fb7b3f8c-d37d-45c7-8451-231f0ad264fd",
-          "control-id": "si-3",
-          "statements": [
-            {
-              "statement-id": "si-3_smt.d.",
-              "uuid": "841ce747-16fa-4ea7-99b4-f26d3aa48d9a",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "02645f3a-52cf-4a59-9c0e-94ee73d59adb",
-                  "description": "Add control implementation description here for item si-3_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "a70fe7f0-01c9-4313-942e-11a0e33109e5",
-          "control-id": "ca-3",
-          "statements": [
-            {
-              "statement-id": "ca-3_smt.c.",
-              "uuid": "16f9c275-088a-4f10-9374-fe26d80cdb3a",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "fcf8167d-3166-4f28-a76d-8c716341e7a3",
-                  "description": "Add control implementation description here for item ca-3_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "d97c4b7f-2537-4827-be27-c35fa1b628c8",
-          "control-id": "ac-1",
-          "statements": [
-            {
-              "statement-id": "ac-1_smt.c.",
-              "uuid": "8c5a2dff-3c4d-4ef8-82fb-a93419f297a0",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "eb953ec9-cb13-45a3-8540-adcea78b61f2",
-                  "description": "Add control implementation description here for item ac-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "24d07393-7ba6-4ea7-9d52-5d7a62c2e35d",
-          "control-id": "cm-7",
-          "statements": [
-            {
-              "statement-id": "cm-7_smt.b.",
-              "uuid": "05bd53d1-fa5b-4280-9769-070b3df39389",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "1c897c57-1b90-45ba-9bc3-13c7f17ac8bc",
-                  "description": "Add control implementation description here for item cm-7_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "4cc677ad-b0ea-453e-a7c7-044b7a0bf126",
-          "control-id": "sr-1",
-          "statements": [
-            {
-              "statement-id": "sr-1_smt.c.",
-              "uuid": "97189e19-8259-405c-853e-b5f1316f7059",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "29d687fa-daa8-4932-8fa2-46cefcb22998",
-                  "description": "Add control implementation description here for item sr-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "b21aa9a0-b264-4d7e-8260-76a757b52c81",
-          "control-id": "ac-11",
-          "statements": [
-            {
-              "statement-id": "ac-11_smt.b.",
-              "uuid": "ae189cd9-7567-4514-823e-a61d2cfec492",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a722f3be-62f4-4d78-96c5-891e389c9de2",
-                  "description": "Add control implementation description here for item ac-11_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "0184a366-6c1a-4e4e-8ff0-d22ad2cb1a78",
-          "control-id": "au-6",
-          "statements": [
-            {
-              "statement-id": "au-6_smt.c.",
-              "uuid": "d54a86df-fc1d-4400-9dc1-aa02cae8138c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "1f5aca60-dee4-407b-8eca-b379a4ffe47b",
-                  "description": "Add control implementation description here for item au-6_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "aa76c1f1-5e79-4b96-a92c-88b79a34fbd9",
-          "control-id": "ra-1",
-          "statements": [
-            {
-              "statement-id": "ra-1_smt.c.",
-              "uuid": "692744ae-3d23-4148-9c0c-54b097ad4aa9",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "3bea08ce-8824-4174-ad9b-b7c45505ffcd",
-                  "description": "Add control implementation description here for item ra-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "445dd6d9-62b1-4bff-9b89-4b5c5eb7439a",
-          "control-id": "pe-13",
-          "statements": [
-            {
-              "statement-id": "pe-13_smt.top_level_description",
-              "uuid": "7a821fb8-905a-4cff-8452-f7e52b5f9cd2",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "d57cb8fc-04d1-48a8-a564-7f5e69dc9e5f",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "867da603-74da-4a2c-bb9b-e0a36f536bd9",
-          "control-id": "ia-1",
-          "statements": [
-            {
-              "statement-id": "ia-1_smt.c.",
-              "uuid": "a39e474b-7027-41ed-9af1-cb419c6b0a16",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "db1bc441-b984-4e14-954e-0f91f7f8f517",
-                  "description": "Add control implementation description here for item ia-1_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "3a4e2723-5088-41d8-bce3-646b4a0c6063",
-          "control-id": "at-3",
-          "statements": [
-            {
-              "statement-id": "at-3_smt.c.",
-              "uuid": "dd534afd-f74e-47b7-9929-d51a86e6b68a",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "fe651fd3-8c14-4922-8e13-68923ba092dc",
-                  "description": "Add control implementation description here for item at-3_smt.c"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "3b224a50-7fa4-4904-8ac7-dfba613fbd21",
-          "control-id": "cm-3",
-          "statements": [
-            {
-              "statement-id": "cm-3_smt.g.",
-              "uuid": "7a819280-ca8a-4cf4-908d-f780054ac70b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "5bfd895c-f291-4e74-8453-2738f8b31395",
-                  "description": "Add control implementation description here for item cm-3_smt.g"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "df18e1a9-f2f3-4e85-956b-b32dc3716e1e",
-          "control-id": "ac-5",
-          "statements": [
-            {
-              "statement-id": "ac-5_smt.b.",
-              "uuid": "b92a3583-0e94-4b31-be4d-82639c06b652",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2824fab8-7e00-4ed3-829c-989e20561ae7",
-                  "description": "Add control implementation description here for item ac-5_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "cebb1bb3-a33d-42f9-ae8f-e1e367f52439",
-          "control-id": "si-7",
-          "statements": [
-            {
-              "statement-id": "si-7_smt.b.",
-              "uuid": "40c30370-31cc-4a3e-afea-6572eec3275b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "fc85b301-2f50-4f18-a23b-984c1e5dfca6",
-                  "description": "Add control implementation description here for item si-7_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "2ea8c7b6-05d2-4878-97f7-23521e3e3196",
-          "control-id": "ac-6.1",
-          "statements": [
-            {
-              "statement-id": "ac-6.1_smt.b",
-              "uuid": "5dd240d4-4c98-4d29-ba1a-f3d4e9786435",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "e9731526-171f-4e5b-9ceb-9e30313fc348",
-                  "description": "Add control implementation description here for item ac-6.1_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "369328df-85ce-4946-a1b2-2cf0a44468ba",
-          "control-id": "ca-7",
-          "statements": [
-            {
-              "statement-id": "ca-7_smt.g.",
-              "uuid": "6374d046-a025-4f4d-ab52-087ed6171a1f",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "25e17ccd-504c-4111-ada2-6a70f2030edf",
-                  "description": "Add control implementation description here for item ca-7_smt.g"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "e669881b-55bf-440c-9c79-cdd92c5ffa09",
-          "control-id": "ia-5.2",
-          "statements": [
-            {
-              "statement-id": "ia-5.2_smt.b",
-              "uuid": "aca9a2a0-2667-41be-bd00-ae3187fd3f32",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "0fefe5c5-0457-4a49-8670-2b688404a452",
-                  "description": "Add control implementation description here for item ia-5.2_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "9d009f36-ebd5-4400-b46e-e5920365d751",
-          "control-id": "ac-21",
-          "statements": [
-            {
-              "statement-id": "ac-21_smt.b.",
-              "uuid": "9afff28d-2f37-4b4e-ac80-14a1ab9710f4",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2bee281f-70b6-46dd-8961-103a004de28a",
-                  "description": "Add control implementation description here for item ac-21_smt.b"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "6d60dbc7-b8f5-4da7-821d-e0c74d1e5608",
-          "control-id": "ma-4",
-          "statements": [
-            {
-              "statement-id": "ma-4_smt.a.",
-              "uuid": "3a119c87-6bc5-4175-aa1d-24e05b73bd8b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "9f0a10d5-2aee-4339-95f1-cb99e73fba01",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "2855e240-f65e-4a3c-8dc8-b87923335941",
-          "control-id": "ma-4",
-          "statements": [
-            {
-              "statement-id": "ma-4_smt.b.",
-              "uuid": "f7186216-b23a-455c-a09b-02aafba0a395",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "9a2be9e8-8857-4a6e-8b95-9109f4090d0b",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "6f92559a-9814-4bec-930f-86794ba7d2fe",
-          "control-id": "ma-4",
-          "statements": [
-            {
-              "statement-id": "ma-4_smt.c.",
-              "uuid": "b1f0cc11-9511-4d86-98df-f4a446c2755f",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "d3c6c55e-1d17-42f8-b44f-1415a7e2409f",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "ba65aa12-7347-4f91-af37-d32782341dab",
-          "control-id": "ma-4",
-          "statements": [
-            {
-              "statement-id": "ma-4_smt.d.",
-              "uuid": "63b2a634-7a7d-4cda-aa67-0d77029b9de3",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "9d393c84-2d43-4d55-bc40-471f3bc743d2",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "84f8e2be-7ba6-4fed-8a5c-25f46e48f387",
-          "control-id": "ma-4",
-          "statements": [
-            {
-              "statement-id": "ma-4_smt.e.",
-              "uuid": "50abfd4b-db8b-49ab-ab3c-d3c3373a5f1f",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "e9e38605-f102-4cbd-853f-246be80d88e2",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "c73cac60-b092-4751-814a-c1a32ec64dd5",
-          "control-id": "pe-9",
-          "statements": [
-            {
-              "statement-id": "pe-9_smt.top_level_description",
-              "uuid": "afe6dfdf-cae2-45e9-83ab-8c90e3482072",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2125603a-f61c-44a8-9298-7d2ed027d1bf",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "f96be3e4-857d-4fd7-9192-da4f1fc5b86a",
-          "control-id": "au-2",
-          "statements": [
-            {
-              "statement-id": "au-2_smt.e.",
-              "uuid": "1dc92458-c3f5-4cdd-9f24-ed4bb783123b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "f8ffac2a-a306-47ad-aad0-04e41f06ca87",
-                  "description": "Add control implementation description here for item au-2_smt.e"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "95c73260-2336-4809-8677-2b1e120dd7e7",
-          "control-id": "ia-5",
-          "statements": [
-            {
-              "statement-id": "ia-5_smt.i.",
-              "uuid": "30c50e68-5525-40cd-8bc7-d914a46bc8e3",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "a2b7f524-318e-4bff-85f6-74c22b826089",
-                  "description": "Add control implementation description here for item ia-5_smt.i"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "40378829-7971-4eb2-9001-6038d9434466",
-          "control-id": "pl-4",
-          "statements": [
-            {
-              "statement-id": "pl-4_smt.d.",
-              "uuid": "3872da11-ac60-4128-8200-f8f0154afc8a",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "2708dab8-0ea1-4bb3-ba4c-5ffae82984f5",
-                  "description": "Add control implementation description here for item pl-4_smt.d"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "9dc917c4-9b0b-4fed-b1d7-a0476e32d5cc",
-          "control-id": "ac-17.3",
-          "statements": [
-            {
-              "statement-id": "ac-17.3_smt.top_level_description",
-              "uuid": "310ae16a-54b0-46e2-9474-d10843cf194b",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "153ac76b-f892-4981-920a-bc83854bbc72",
-                  "description": "All remote access to cloud.gov-hosted applications passes through virtual AWS internet gateways, whose configuration is managed by the cloud.gov operations team. For information about customer network interconnections, see CA-3 (3)."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "8d77e1d3-7c11-4189-a982-0e35930fb482",
-          "control-id": "ra-5",
-          "statements": [
-            {
-              "statement-id": "ra-5_smt.f.",
-              "uuid": "997af11a-1a06-4baf-ab87-5567ab9718b4",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "57d9dbc3-0f8c-43a8-8c7c-46721acdc306",
-                  "description": "Add control implementation description here for item ra-5_smt.f"
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "fc9fadfa-8b7d-41d0-ae56-cb33538683f8",
-          "control-id": "pe-17",
-          "statements": [
-            {
-              "statement-id": "pe-17_smt.a.",
-              "uuid": "c8ff7db1-511f-4216-80b5-0e3d92139745",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "0e08ff96-b5b4-4529-8d8f-538044ad6818",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "bf52b312-270b-4749-b3b5-8658b001f52c",
-          "control-id": "pe-17",
-          "statements": [
-            {
-              "statement-id": "pe-17_smt.b.",
-              "uuid": "53d73599-8fac-4483-835a-e8f4a3c556f1",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "50defff0-a3fc-4245-ac2f-f7b6ed240e88",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "227983e1-6d45-4463-a967-28f3cbfeb5f7",
-          "control-id": "pe-17",
-          "statements": [
-            {
-              "statement-id": "pe-17_smt.c.",
-              "uuid": "136f0b7b-f9fd-4532-9977-45b920eb6e7c",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "f388b377-a553-4ae6-b3cb-aad8562efe19",
-                  "description": "Customer applications fully inherit this control from cloud.gov."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "91dae106-18a5-457e-969a-4e4ba96e3fe6",
-          "control-id": "pe-17",
-          "statements": [
-            {
-              "statement-id": "pe-17_smt.d.",
-              "uuid": "79da494c-ef1f-4b00-81e4-2ca03ae0d954",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "5551a3f8-7cd0-4a56-9f6b-d1a35f0416c4",
-                  "description": "CISA provides devices for communication between employees."
-                }
-              ]
-            }
-          ]
-        },
-        {
-          "uuid": "41e7e694-58b3-4207-8a8e-87163842b5cc",
-          "control-id": "cm-2.7",
-          "statements": [
-            {
-              "statement-id": "cm-2.7_smt.b",
-              "uuid": "8a81055a-a1b4-436e-8281-2e00c94bcf4f",
-              "by-components": [
-                {
-                  "component-uuid": "57ee86c5-c256-4f82-a99c-e25f61fec900",
-                  "uuid": "1368bf36-8f31-4372-b86f-6db66bd80e4e",
-                  "description": "Add control implementation description here for item cm-2.7_smt.b"
-                }
-              ]
-            }
-          ]
-        }
-      ]
-    }
-  }
-}
\ No newline at end of file

From 5f86a0f83cea0219ede84ed0b7dde9e757418a8c Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Thu, 1 Jun 2023 11:45:40 -0500
Subject: [PATCH 68/72] Review feedback: fix user management display, use h2

---
 src/registrar/templates/domain_detail.html    |  4 ++--
 .../templates/includes/summary_item.html      | 22 +++++++++++++------
 2 files changed, 17 insertions(+), 9 deletions(-)

diff --git a/src/registrar/templates/domain_detail.html b/src/registrar/templates/domain_detail.html
index 97b15207a..700cb3fee 100644
--- a/src/registrar/templates/domain_detail.html
+++ b/src/registrar/templates/domain_detail.html
@@ -21,13 +21,13 @@
     {% include "includes/summary_item.html" with title='Authorizing official' value=domain.domain_info.authorizing_official contact='true' edit_link=url %}
 
     {% url 'todo' as url %}
-    {% include "includes/summary_item.html" with title='Your contact information' value='---TODO---' edit_link=url %}
+    {% include "includes/summary_item.html" with title='Your contact information' value=request.user.contact edit_link=url %}
 
     {% url 'domain-security-email' pk=domain.id as url %}
     {% include "includes/summary_item.html" with title='Security email' value=domain.security_email edit_link=url %}
 
     {% url 'domain-users' pk=domain.id as url %}
-    {% include "includes/summary_item.html" with title='User management' users='true' value=domain.permissions.all edit_link=url %}
+    {% include "includes/summary_item.html" with title='User management' users='true' list=True value=domain.permissions.all edit_link=url %}
 
   </div>
 {% endblock %}  {# domain_content #}
diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index 9de8b3c6c..9efa0e2a4 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -1,13 +1,13 @@
 {% load static url_helpers %}
 
 <section class="summary-item margin-top-3">
-  <hr class="" />
-  <p class="summary-item__title 
+  <hr class="" aria-hidden="true" />
+  <h2 class="summary-item__title
             text-primary-dark text-semibold
             margin-top-0 margin-bottom-05"
-  > 
-  {{ title }} 
-  </p>
+  >
+  {{ title }}
+  </h2>
   {% if address %}
     {% include "includes/organization_address.html" with organization=value %}
   {% elif contact %}
@@ -32,11 +32,19 @@
     {% endif %}
   {% elif list %}
     {% if value|length == 1 %}
-      <p class="margin-top-0">{{ value | first }} </p>
+        {% if users %}
+          <p class="margin-top-0">{{ value.0.user.email }} </p>
+        {% else %}
+          <p class="margin-top-0">{{ value | first }} </p>
+        {% endif %}
     {% else %}
       <ul class="usa-list margin-top-0">
         {% for item in value %}
-         <li>{{ item }}</li>
+        {% if users %}
+          <li>{{ item.user.email }}</li>
+        {% else %}
+          <li>{{ item }}</li>
+        {% endif %}
         {% empty %}
          <li>None</li>
         {% endfor %}</ul></p>

From 1851f83480d21e55a64f9c87db136c32f13240fc Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Thu, 1 Jun 2023 12:08:40 -0500
Subject: [PATCH 69/72] Change your contact information to refer to logged-in
 user

---
 src/registrar/tests/test_views.py | 7 +++----
 src/registrar/views/domain.py     | 2 +-
 2 files changed, 4 insertions(+), 5 deletions(-)

diff --git a/src/registrar/tests/test_views.py b/src/registrar/tests/test_views.py
index 28465de02..a836f87e8 100644
--- a/src/registrar/tests/test_views.py
+++ b/src/registrar/tests/test_views.py
@@ -1309,10 +1309,9 @@ class TestDomainDetail(TestWithDomainPermissions, WebTest):
         self.assertContains(page, "Domain contact information")
 
     def test_domain_your_contact_information_content(self):
-        """Your contact information appears on the page."""
-        self.domain_information.submitter = Contact(first_name="Testy")
-        self.domain_information.submitter.save()
-        self.domain_information.save()
+        """Logged-in user's contact information appears on the page."""
+        self.user.contact.first_name = "Testy"
+        self.user.contact.save()
         page = self.app.get(
             reverse("domain-your-contact-information", kwargs={"pk": self.domain.id})
         )
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index d101b46b7..cc3f79809 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -115,7 +115,7 @@ class DomainYourContactInformationView(DomainPermissionView, FormMixin):
     def get_form_kwargs(self, *args, **kwargs):
         """Add domain_info.submitter instance to make a bound form."""
         form_kwargs = super().get_form_kwargs(*args, **kwargs)
-        form_kwargs["instance"] = self.get_object().domain_info.submitter
+        form_kwargs["instance"] = self.request.user.contact
         return form_kwargs
 
     def get_success_url(self):

From 3e4557916cc1a1db1a998fbbf9bb60f6583a8543 Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Thu, 1 Jun 2023 12:09:16 -0500
Subject: [PATCH 70/72] Hook up to new your contact information view

---
 src/registrar/templates/domain_detail.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/templates/domain_detail.html b/src/registrar/templates/domain_detail.html
index 700cb3fee..14f181daa 100644
--- a/src/registrar/templates/domain_detail.html
+++ b/src/registrar/templates/domain_detail.html
@@ -20,8 +20,8 @@
     {% url 'todo' as url %}
     {% include "includes/summary_item.html" with title='Authorizing official' value=domain.domain_info.authorizing_official contact='true' edit_link=url %}
 
-    {% url 'todo' as url %}
-    {% include "includes/summary_item.html" with title='Your contact information' value=request.user.contact edit_link=url %}
+    {% url 'domain-your-contact-information' pk=domain.id as url %}
+    {% include "includes/summary_item.html" with title='Your contact information' value=request.user.contact contact='true' edit_link=url %}
 
     {% url 'domain-security-email' pk=domain.id as url %}
     {% include "includes/summary_item.html" with title='Security email' value=domain.security_email edit_link=url %}

From 8d18305b2c3986ebacfff24b72d09009858145ae Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Thu, 1 Jun 2023 13:28:18 -0500
Subject: [PATCH 71/72] Add environment variable to all sandbox manifests

---
 ops/manifests/manifest-ab.yaml   | 2 ++
 ops/manifests/manifest-bl.yaml   | 2 ++
 ops/manifests/manifest-ik.yaml   | 2 ++
 ops/manifests/manifest-jon.yaml  | 2 ++
 ops/manifests/manifest-mr.yaml   | 2 ++
 ops/manifests/manifest-nmb.yaml  | 2 ++
 ops/manifests/manifest-rjm.yaml  | 2 ++
 ops/manifests/manifest-sspj.yaml | 2 ++
 8 files changed, 16 insertions(+)

diff --git a/ops/manifests/manifest-ab.yaml b/ops/manifests/manifest-ab.yaml
index 062ad335c..463563a15 100644
--- a/ops/manifests/manifest-ab.yaml
+++ b/ops/manifests/manifest-ab.yaml
@@ -20,6 +20,8 @@ applications:
     DJANGO_BASE_URL: https://getgov-ab.app.cloud.gov
     # Tell Django how much stuff to log
     DJANGO_LOG_LEVEL: INFO
+    # Public site base URL
+    GETGOV_PUBLIC_SITE_URL: https://federalist-877ab29f-16f6-4f12-961c-96cf064cf070.sites.pages.cloud.gov/site/cisagov/getgov-home/
   routes:
     - route: getgov-ab.app.cloud.gov
   services:
diff --git a/ops/manifests/manifest-bl.yaml b/ops/manifests/manifest-bl.yaml
index bb8723f2d..ec6d627ce 100644
--- a/ops/manifests/manifest-bl.yaml
+++ b/ops/manifests/manifest-bl.yaml
@@ -20,6 +20,8 @@ applications:
     DJANGO_BASE_URL: https://getgov-bl.app.cloud.gov
     # Tell Django how much stuff to log
     DJANGO_LOG_LEVEL: INFO
+    # Public site base URL
+    GETGOV_PUBLIC_SITE_URL: https://federalist-877ab29f-16f6-4f12-961c-96cf064cf070.sites.pages.cloud.gov/site/cisagov/getgov-home/
   routes:
     - route: getgov-bl.app.cloud.gov
   services:
diff --git a/ops/manifests/manifest-ik.yaml b/ops/manifests/manifest-ik.yaml
index 2652b709a..60571e9ba 100644
--- a/ops/manifests/manifest-ik.yaml
+++ b/ops/manifests/manifest-ik.yaml
@@ -20,6 +20,8 @@ applications:
     DJANGO_BASE_URL: https://getgov-ik.app.cloud.gov
     # Tell Django how much stuff to log
     DJANGO_LOG_LEVEL: INFO
+    # Public site base URL
+    GETGOV_PUBLIC_SITE_URL: https://federalist-877ab29f-16f6-4f12-961c-96cf064cf070.sites.pages.cloud.gov/site/cisagov/getgov-home/
   routes:
     - route: getgov-ik.app.cloud.gov
   services:
diff --git a/ops/manifests/manifest-jon.yaml b/ops/manifests/manifest-jon.yaml
index 4b32235fa..acc226ce3 100644
--- a/ops/manifests/manifest-jon.yaml
+++ b/ops/manifests/manifest-jon.yaml
@@ -20,6 +20,8 @@ applications:
     DJANGO_BASE_URL: https://getgov-jon.app.cloud.gov
     # Tell Django how much stuff to log
     DJANGO_LOG_LEVEL: INFO
+    # Public site base URL
+    GETGOV_PUBLIC_SITE_URL: https://federalist-877ab29f-16f6-4f12-961c-96cf064cf070.sites.pages.cloud.gov/site/cisagov/getgov-home/
   routes:
     - route: getgov-jon.app.cloud.gov
   services:
diff --git a/ops/manifests/manifest-mr.yaml b/ops/manifests/manifest-mr.yaml
index 4280f0558..2ad39b9ff 100644
--- a/ops/manifests/manifest-mr.yaml
+++ b/ops/manifests/manifest-mr.yaml
@@ -20,6 +20,8 @@ applications:
     DJANGO_BASE_URL: https://getgov-mr.app.cloud.gov
     # Tell Django how much stuff to log
     DJANGO_LOG_LEVEL: INFO
+    # Public site base URL
+    GETGOV_PUBLIC_SITE_URL: https://federalist-877ab29f-16f6-4f12-961c-96cf064cf070.sites.pages.cloud.gov/site/cisagov/getgov-home/
   routes:
     - route: getgov-mr.app.cloud.gov
   services:
diff --git a/ops/manifests/manifest-nmb.yaml b/ops/manifests/manifest-nmb.yaml
index 8352d8ed1..adea312d5 100644
--- a/ops/manifests/manifest-nmb.yaml
+++ b/ops/manifests/manifest-nmb.yaml
@@ -20,6 +20,8 @@ applications:
     DJANGO_BASE_URL: https://getgov-nmb.app.cloud.gov
     # Tell Django how much stuff to log
     DJANGO_LOG_LEVEL: INFO
+    # Public site base URL
+    GETGOV_PUBLIC_SITE_URL: https://federalist-877ab29f-16f6-4f12-961c-96cf064cf070.sites.pages.cloud.gov/site/cisagov/getgov-home/
   routes:
     - route: getgov-nmb.app.cloud.gov
   services:
diff --git a/ops/manifests/manifest-rjm.yaml b/ops/manifests/manifest-rjm.yaml
index c5b51c3b5..9622f09bc 100644
--- a/ops/manifests/manifest-rjm.yaml
+++ b/ops/manifests/manifest-rjm.yaml
@@ -20,6 +20,8 @@ applications:
     DJANGO_BASE_URL: https://getgov-rjm.app.cloud.gov
     # Tell Django how much stuff to log
     DJANGO_LOG_LEVEL: INFO
+    # Public site base URL
+    GETGOV_PUBLIC_SITE_URL: https://federalist-877ab29f-16f6-4f12-961c-96cf064cf070.sites.pages.cloud.gov/site/cisagov/getgov-home/
   routes:
     - route: getgov-rjm.app.cloud.gov
   services:
diff --git a/ops/manifests/manifest-sspj.yaml b/ops/manifests/manifest-sspj.yaml
index db1c29a1b..cec82c8a1 100644
--- a/ops/manifests/manifest-sspj.yaml
+++ b/ops/manifests/manifest-sspj.yaml
@@ -20,6 +20,8 @@ applications:
     DJANGO_BASE_URL: https://getgov-sspj.app.cloud.gov
     # Tell Django how much stuff to log
     DJANGO_LOG_LEVEL: INFO
+    # Public site base URL
+    GETGOV_PUBLIC_SITE_URL: https://federalist-877ab29f-16f6-4f12-961c-96cf064cf070.sites.pages.cloud.gov/site/cisagov/getgov-home/
   routes:
     - route: getgov-sspj.app.cloud.gov
   services:

From 1a5eac62ff9c43000b1db4cbbd4c66c42474da32 Mon Sep 17 00:00:00 2001
From: Neil Martinsen-Burrell <neil.martinsen-burrell@gsa.gov>
Date: Thu, 1 Jun 2023 13:32:36 -0500
Subject: [PATCH 72/72] Doesn't need to be set in .env since it's in
 docker-compose.yml

---
 src/.env-example | 1 -
 1 file changed, 1 deletion(-)

diff --git a/src/.env-example b/src/.env-example
index 9b3f56409..7100fc628 100644
--- a/src/.env-example
+++ b/src/.env-example
@@ -1,3 +1,2 @@
 DJANGO_SECRET_KEY=""
 DJANGO_SECRET_LOGIN_KEY=""
-GETGOV_PUBLIC_SITE_URL="https://federalist-877ab29f-16f6-4f12-961c-96cf064cf070.sites.pages.cloud.gov/site/cisagov/getgov-home/"