Is anybody using a better tool for STIG compliance and report generation for Network devices and firewalls .

Are there any open source ways to do it.for the latest stig releases is there any way to get the latest parsers and validators .

What are some the production ways you guys have implemented this probably in a ci cd pipeline or as part of scheduled check operation ?

Usually tools like nessus / nipper are being used by security people in an organisation and is being used for generating reports for non compliance , but should these tools be available with the blue / network team to configure these devices in a better manner from Day 1 ? Your thoughts please.