Skip to content

GRC Policy Retirement Guard with Control Objective Check #2599

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 30 commits into from
Oct 29, 2025
Merged

GRC Policy Retirement Guard with Control Objective Check #2599

merged 30 commits into from
Oct 29, 2025

Conversation

@trimbakeshmadhan-109
Copy link
Contributor

@trimbakeshmadhan-109 trimbakeshmadhan-109 commented Oct 28, 2025

PR Description:

GRC Policy Retirement Guard with Control Objective Check

Pull Request Checklist

Overview

  • Put an x inside of the square brackets to check each item.
  • I have read and understood the CONTRIBUTING.md guidelines
  • My pull request has a descriptive title that accurately reflects the changes and the description has been filled in above.
  • I've included only files relevant to the changes described in the PR title and description
  • I've created a new branch in my forked repository for this contribution

Code Quality

  • My code is relevant to ServiceNow developers
  • My code snippets expand meaningfully on official ServiceNow documentation (if applicable)
  • I've disclosed use of ES2021 features (if applicable)
  • I've tested my code snippets in a ServiceNow environment (where possible)

Repository Structure Compliance

  • I've placed my code snippet(s) in one of the required top-level categories:
    • Core ServiceNow APIs/
    • Server-Side Components/
    • Client-Side Components/
    • Modern Development/
    • Integration/
    • Specialized Areas/
  • I've used appropriate sub-categories within the top-level categories
  • Each code snippet has its own folder with a descriptive name

Documentation

  • I've included a README.md file for each code snippet
  • The README.md includes:
    • Description of the code snippet functionality
    • Usage instructions or examples
    • Any prerequisites or dependencies
    • (Optional) Screenshots or diagrams if helpful

Restrictions

  • My PR does not include XML exports of ServiceNow records
  • My PR does not contain sensitive information (passwords, API keys, tokens)
  • My PR does not include changes that fall outside the described scope

@trimbakeshmadhan-109
script.js
2da9254 
Automatically create a problem record from incident volume
Use case: Automatically create a problem record if a specific Configuration Item (CI) is associated with more than a certain number of incidents within a defined timeframe. 
Code snippet
This code can be placed in a Scheduled Script Execution or an After Insert Business Rule to check new incidents
@trimbakeshmadhan-109
README.md
c9315ec
@trimbakeshmadhan-109
Script.js
5d17de8 
Identify the oldest active incident for each assignment group. This helps managers focus on long-running tickets that may require special attention.
@trimbakeshmadhan-109
README.md
c8c2e06
@trimbakeshmadhan-109
script.js
14244d8 
This example searches a JSON document for all developers listed under the specified path.
@trimbakeshmadhan-109
README.md
45c645d
@trimbakeshmadhan-109
Update README.md
3edf0bc
@trimbakeshmadhan-109
script.js
fa78c36 
Identify inactive users who still have unresolved incidents. This helps with offboarding processes and ensures incidents aren't left unattended.
@trimbakeshmadhan-109
README.md
a6e23bd
@trimbakeshmadhan-109
Update script.js
484bcdd
@trimbakeshmadhan-109
Delete Core ServiceNow APIs/GlideAggregate/Count Inactive Users with …
12f9ba9 
…Active incidents/README.md
@trimbakeshmadhan-109
Delete Core ServiceNow APIs/GlideAggregate/Count Inactive Users with …
23f8bb3 
…Active incidents/script.js
@trimbakeshmadhan-109
Delete Core ServiceNow APIs/GlideAggregate/Find oldest Incident based…
75d8c0b 
… Assignment Groups/README.md
@trimbakeshmadhan-109
Delete Core ServiceNow APIs/GlideAggregate/Find oldest Incident based…
4f13513 
… Assignment Groups/script.js
@trimbakeshmadhan-109
Delete Core ServiceNow APIs/GlideJsonPath/GlideJsonPath Reader Exampl…
5328dda 
…e/README.md
@trimbakeshmadhan-109
Delete Core ServiceNow APIs/GlideJsonPath/GlideJsonPath Reader Exampl…
6750b61 
…e/script.js
@trimbakeshmadhan-109
Create script.js
8f9be4e 
This Business Rule runs 'before' a record is deleted from the 'sn_compliance_policy' table.
 
Its purpose is to prevent a policy from being deleted if it is currently linked to any active controls.

This helps maintain data integrity and prevents the creation of orphaned or invalidated compliance records.
@trimbakeshmadhan-109
Create README.md
8083ec9
@trimbakeshmadhan-109
Delete Core ServiceNow APIs/GlideAggregate/Create Problem based on in…
8e92c2f 
…cident volume/README.md
@trimbakeshmadhan-109
Delete Core ServiceNow APIs/GlideAggregate/Create Problem based on in…
c1a0b3c 
…cident volume/script.js
@trimbakeshmadhan-109
Update script.js
ed09dac
@trimbakeshmadhan-109
Create Prevent Retirement of Policy with Active Control objectives
23bf21c
@trimbakeshmadhan-109
Delete Server-Side Components/Business Rules/Prevent Retirement of Po…
901ea70 
…licy with Active Control objectives
@trimbakeshmadhan-109
Create script.js
970549f 
This Business Rule runs 'before' a record is updated on the 'sn_compliance_policy' table.
    Its purpose is to prevent a policy from being retired if it is currently linked to any active controls.
    This enforces a proper decommissioning process, ensuring that controls are retired
    before the policy that governs them, thereby preventing compliance gaps.
    The condition for this rule would be: 'State' changes to 'Retired'.
@trimbakeshmadhan-109
Update script.js
a357cb8
@trimbakeshmadhan-109
Create README.md
28be06b
@trimbakeshmadhan-109
Delete Server-Side Components/Business Rules/GRC Policy Retirement Ga…
0a82c58 
…urd/README.md
@trimbakeshmadhan-109
Create README.md
16b223e
@trimbakeshmadhan-109
Delete Server-Side Components/Business Rules/Prevent Deletion of Poli…
c1f3d5b 
…cy with Active Controls/README.md
@trimbakeshmadhan-109
Delete Server-Side Components/Business Rules/Prevent Deletion of Poli…
98b8437 
…cy with Active Controls/script.js
trimbakeshmadhan-109
trimbakeshmadhan-109 commented Oct 28, 2025
View reviewed changes
Copy link
Contributor Author

@trimbakeshmadhan-109 trimbakeshmadhan-109 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewd PR

2Files

@trimbakeshmadhan-109 trimbakeshmadhan-109 marked this pull request as ready for review October 28, 2025 21:06
@kmxo
Copy link
Contributor

kmxo commented Oct 29, 2025

Sounds good to me.

@kmxo kmxo merged commit fc3a3b6 into ServiceNowDevProgram:main Oct 29, 2025
1 check passed
@kmxo kmxo self-assigned this Oct 29, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@kmxo kmxo

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@trimbakeshmadhan-109 @kmxo