Release v1.2: FIPS CIS1 LVM + SCAP Compliance This release adds automated compliance configuration required for CIS Server Level 1 hardening to be applied successfully in downstream stages. Key Features: FIPS Compliance Readiness: Automatically configures the FIPS 140-3 state on the first boot, ensuring the kernel and libraries are ready for encrypted workloads. CIS-Compliant LVM Layout: Implements the mandatory LVM partitioning scheme required to meet CIS Level 1 storage isolation standards. CIS Level 1 Server Hardening via OpenSCAP: Integrates OpenSCAP during image build using the xccdf_org.ssgproject.content_profile_cis_server_l1 profile and the official SCAP datastream (ssg-rhel9-ds.xml). This ensures the system is evaluated against CIS benchmarks at build time, reducing manual compliance overhead. SCAP Content Availability: Includes scap-security-guide for local remediation and future compliance scans without requiring internet access.