{"id":50769909,"url":"https://github.com/unidoc/isms-templates","last_synced_at":"2026-06-11T17:03:57.991Z","repository":{"id":362236007,"uuid":"1240147311","full_name":"unidoc/isms-templates","owner":"unidoc","description":"Policy, risk, and compliance templates for isms.sh — covering ISO 27001, NIS2, SOC 2, DORA, HIPAA, ISO 42001, and more.","archived":false,"fork":false,"pushed_at":"2026-06-03T07:34:16.000Z","size":299,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"master","last_synced_at":"2026-06-03T09:22:16.870Z","etag":null,"topics":["compliance","isms","iso27001","nis2","risk-management","self-hosted","soc2"],"latest_commit_sha":null,"homepage":"https://isms.sh","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/unidoc.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-05-15T20:20:48.000Z","updated_at":"2026-06-03T07:34:16.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/unidoc/isms-templates","commit_stats":null,"previous_names":["unidoc/isms-templates"],"tags_count":null,"template":false,"template_full_name":null,"purl":"pkg:github/unidoc/isms-templates","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/unidoc%2Fisms-templates","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/unidoc%2Fisms-templates/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/unidoc%2Fisms-templates/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/unidoc%2Fisms-templates/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/unidoc","download_url":"https://codeload.github.com/unidoc/isms-templates/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/unidoc%2Fisms-templates/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":34208769,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-11T02:00:06.485Z","response_time":57,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["compliance","isms","iso27001","nis2","risk-management","self-hosted","soc2"],"created_at":"2026-06-11T17:03:57.252Z","updated_at":"2026-06-11T17:03:57.977Z","avatar_url":"https://github.com/unidoc.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# ISMS Templates\n\nOfficial document templates for [isms.sh](https://isms.sh).\n\n## Available Templates\n\n| Template | Standard | Description |\n|----------|----------|-------------|\n| `iso27001` | ISO/IEC 27001:2022 | Information security management |\n| `nist-800-53` | NIST SP 800-53 Rev 5 | Security and privacy controls |\n| `pci-dss` | PCI DSS v4.0.1 | Payment card data security |\n| `soc2` | SOC 2 Type II | Service organization controls |\n| `dora` | DORA | Digital operational resilience (EU) |\n| `hipaa` | HIPAA Security Rule | Healthcare information security |\n| `nist-csf` | NIST CSF 2.0 | Cybersecurity risk management |\n| `iso42001` | ISO/IEC 42001:2023 | AI management |\n| `iso9001` | ISO 9001:2015 | Quality management |\n| `nis2` | NIS2 Directive | Network and information security (EU) |\n| `iso14001` | ISO 14001:2015 | Environmental management |\n| `iso45001` | ISO 45001:2018 | Occupational health and safety management |\n\n## How Templates Work\n\nTemplates are scaffolded into an organization's git repository. After scaffolding, the org owns the content — templates are not referenced again at runtime.\n\n```\nisms init --template iso27001\n# or via web UI: Admin → Templates → Add\n```\n\n## Template Structure\n\nEach template is a directory of markdown files with YAML frontmatter:\n\n```\niso27001/\n├── meta.yaml                              # Template identity\n├── clauses/\n│   ├── .title                             # Folder display name (\"Clauses\")\n│   ├── 04-context-of-the-organisation/\n│   │   ├── .title                         # \"Context of the Organisation\"\n│   │   ├── 4.01-external-and-internal-issues.md\n│   │   ├── 4.02-needs-and-expectations.md\n│   │   └── ...\n│   └── ...\n└── controls/\n    ├── .title                             # \"Controls\"\n    ├── a.05-organizational-controls/\n    │   ├── .title                         # \"Organizational Controls\"\n    │   ├── a.5.01-policies-for-information-security.md\n    │   └── ...\n    └── ...\n```\n\n### meta.yaml\n\nRequired. Identifies the template:\n\n```yaml\nid: \"iso27001\"\nname: \"ISO/IEC 27001:2022\"\ndescription: \"Information security management based on ISO/IEC 27001:2022\"\nversion: \"1.0\"\nmaintainer: \"isms.sh \u003cteam@isms.sh\u003e\"\n```\n\n### Document Files (*.md)\n\nEach markdown file is a document with YAML frontmatter:\n\n```yaml\n---\ndocument_id: \"iso27001-a-8-2\"\ntitle: \"A.8.2 Privileged Access Rights\"\nstatus: \"draft\"\n---\n\n# Privileged access rights\n\nRestrict and manage the allocation and use of privileged access rights...\n```\n\n- `document_id` — unique, lowercase, hyphenated. Used for linking and URL routing.\n- `title` — human-readable document name.\n- `status` — starts as `draft`. Managed by the review workflow.\n\n### .title Files\n\nOptional. Provide display names for folders in the web UI:\n\n```\nControls\n```\n\nWithout a `.title` file, the folder's directory name is shown.\n\n### Naming Conventions\n\n- **Directories**: zero-padded for sorting (`04-context-of-the-organisation`)\n- **Files**: section number + slug (`4.01-external-and-internal-issues.md`)\n- **Document IDs**: template prefix + section (`iso27001-4-1`, `iso27001-a-5-1`)\n\n## Creating Your Own Template\n\n1. Create a directory with your template ID (lowercase, no spaces)\n2. Add `meta.yaml` with id, name, description, version, maintainer\n3. Create subdirectories for document groups\n4. Add `.title` files for display names\n5. Add markdown files with `document_id`, `title`, `status` frontmatter\n6. Set `ISMS_TEMPLATE_PATH` to the parent directory\n\nThe platform discovers templates automatically — any directory with a valid `meta.yaml` becomes available.\n\n## Contributing\n\nContributions welcome. To add or improve a template:\n\n1. Fork this repository\n2. Add or modify template files\n3. Ensure all documents have valid `document_id` and `title` frontmatter\n4. Bump the `version` in `meta.yaml`\n5. Submit a pull request\n\n## License\n\nApache License 2.0 — see [LICENSE](LICENSE).\n\nCopyright 2026 [UniDoc ehf.](https://unidoc.io) — [isms.sh](https://isms.sh)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Funidoc%2Fisms-templates","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Funidoc%2Fisms-templates","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Funidoc%2Fisms-templates/lists"}