gitlab-security_report_schemas 0.1.0.min15.0.0.max15.1.4 → 0.1.0.min15.1.0.max15.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: eb0ee095cc1634e7242faa1990caf178447e8774e0c1027665388b24494c7b9c
-  data.tar.gz: eb1cd4245ced146a0d1f01769f1d60117e4b8cf36e51106abe6c7632096c0a40
+  metadata.gz: f4c389c7784c3bbbd5456fab0128a39755f46cd9decd3b6056c22e97861f0adf
+  data.tar.gz: a3a9d4d8fe97cebe404fc5d1a653d564aff3163abd7d0d5add42be64b598cf6a
 SHA512:
-  metadata.gz: 0d8aaaff8004ceb08b6cd1e1bfbde2b330ac45b66c3dc9c9d132b08d13dd2ea4137766ff4b87ce9789577f51df0ba3095e1a0f893341d9364cd88f19f160118b
-  data.tar.gz: a2c6dd7ff0729f43591b798e17adaf0830ece329356e200cd08c1cec772b47234b437705049b6dedce7ab587a0f41ef729c3048a5e5da5a0a883b28c26f8cbd1
+  metadata.gz: 778edd32130b9e3859a35dfdd3635c24d07dd8a0eef0e58ca01090c8035430a7199763c02fcba017f8dfd4793d0c92e82c09ae240215d5f5313d969c6f56fb8f
+  data.tar.gz: a250c4845733d632c13a002d7fa5e173221559876add385372a75e043835007ef2cd471a263904ff9121d83e68c30ebbe7f886b954366737e983642f90e1aa58

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    gitlab-security_report_schemas (0.1.0.min15.0.0.max15.1.4)
+    gitlab-security_report_schemas (0.1.0.min15.1.0.max15.1.0)
       activesupport (>= 6, < 8)
       json_schemer (~> 0.2.18)
 
@@ -25,10 +25,11 @@ GEM
     i18n (1.12.0)
       concurrent-ruby (~> 1.0)
     json (2.6.2)
-    json_schemer (0.2.21)
+    json_schemer (0.2.25)
       ecma-re-validator (~> 0.3)
       hana (~> 1.3)
       regexp_parser (~> 2.0)
+      simpleidn (~> 0.2)
       uri_template (~> 0.7)
     method_source (1.0.0)
     minitest (5.16.2)
@@ -71,6 +72,7 @@ GEM
     ruby-progressbar (1.11.0)
     shoulda-matchers (5.1.0)
       activesupport (>= 5.2.0)
+    simpleidn (0.2.3)
     tzinfo (2.0.5)
       concurrent-ruby (~> 1.0)
     unicode-display_width (2.2.0)
@@ -91,4 +93,4 @@ DEPENDENCIES
   shoulda-matchers (~> 5.0)
 
 BUNDLED WITH
-   2.5.14
+   2.3.15

data/README.md

@@ -47,25 +47,21 @@ bundle exec security-reports-schemas $FILE_PATH
 
 #### Credentials
 
-| Key                         | Description                                                                                   |
-|-----------------------------|-----------------------------------------------------------------------------------------------|
-| `GITLAB_PUSH_ACCESS_TOKEN`  | Own project access token used to push new schema versions. Requires `write_repository` scope. |
-| `GITLAB_ISSUE_ACCESS_TOKEN` | Project access token used to create an issue on `gitlab-org/gitlab`. Requires `api` scopes.   |
-| `GEM_HOST_API_KEY`          | rubygems.org API key                                                                          |
+| Key                         | Description                                                                                                                 |
+|-----------------------------|-----------------------------------------------------------------------------------------------------------------------------|
+| `GITLAB_PUSH_ACCESS_TOKEN`  | Own project access token used to push new schema versions. Requires `write_repository` scope.                               |
+| `GITLAB_ISSUE_ACCESS_TOKEN` | Project access token used to create an issue on `gitlab-org/gitlab`. Requires `api` scopes. |
+| `GEM_HOST_API_KEY`          | rubygems.org API key                                                                                                        |
 
 #### Configuration
 
-| Key                       | Default                                                | Description                            |
-|---------------------------|--------------------------------------------------------|----------------------------------------|
-| `SCHEMAS_PATH`            | `./schemas`                                            | Schema storage location                |
-| `SCHEMA_PROJECT`          | `gitlab-org/security-products/security-report-schemas` | Where to source schemas                |
-| `GITLAB_PROJECT`          | `gitlab-org/gitlab`                                    | Project to open MRs for                |
+| Key                       | Default                                                | Description                |
+|---------------------------|--------------------------------------------------------|----------------------------|
+| `SCHEMAS_PATH`            | `./schemas`                                            | Schema storage location    |
+| `SCHEMA_PROJECT`          | `gitlab-org/security-products/security-report-schemas` | Where to source schemas    |
+| `GITLAB_PROJECT`          | `gitlab-org/gitlab`                                    | Project to open MRs for    |
 | `ISSUE_TARGET_PROJECT_ID` | `278964` (`gitlab-org/gitlab`)                         | Project ID for which to open an issue. |
 
-## Maintenance
-
-See [`RUNBOOK.md`](./RUNBOOK.md) for solutions to common maintenance tasks.
-
 ## Development
 
 ### Updating the schemas

data/Rakefile

@@ -30,7 +30,7 @@ desc "Bundles the Security Report Schemas into the project and builds the gem"
 task :prepare, %i[versions] => %i[prepare_schemas build]
 
 desc "Checks the integrity of the schema files with upstream"
-task integrity_check: :prepare_schemas do
+task :integrity_check do
   require "gitlab/security_report_schemas"
   require "gitlab/security_report_schemas/cli/integrity_checker"
 

data/gem_version

@@ -1 +1 @@
-0.1.0.min15.0.0.max15.1.4
+0.1.0.min15.1.0.max15.1.0

data/lib/gitlab/security_report_schemas/configuration.rb

@@ -9,8 +9,8 @@ module Gitlab
         deprecated_versions: -> { [] },
         schema_project: -> { "gitlab-org/security-products/security-report-schemas" },
         gitlab_project: -> { "gitlab-org/gitlab" },
-        issue_target_project_id: -> { "278964" }, # gitlab-org/gitlab
-        gitlab_issue_access_token: nil,
+        issue_target_project_id: -> { ENV.fetch("GITLAB_MR_ACCESS_TOKEN", "278964") }, # gitlab-org/gitlab
+        gitlab_issue_access_token: -> { ENV["GITLAB_MR_ACCESS_TOKEN"] },
         ci_server_host: nil
       }.freeze
 

data/lib/gitlab/security_report_schemas/version.rb

@@ -16,6 +16,8 @@ module Gitlab
                  max_schema: max_schema)
         end
 
+        private
+
         def min_schema
           SecurityReportSchemas.supported_versions.first || MISSING_SCHEMA_VERSION
         end

data/supported_versions

@@ -1,12 +1 @@
-15.0.0
-15.0.1
-15.0.2
-15.0.4
-15.0.5
-15.0.6
-15.0.7
 15.1.0
-15.1.1
-15.1.2
-15.1.3
-15.1.4

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: gitlab-security_report_schemas
 version: !ruby/object:Gem::Version
-  version: 0.1.0.min15.0.0.max15.1.4
+  version: 0.1.0.min15.1.0.max15.1.0
 platform: ruby
 authors:
 - GitLab
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2024-07-11 00:00:00.000000000 Z
+date: 2024-07-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -60,7 +60,6 @@ files:
 - Gemfile.lock
 - LICENSE.txt
 - README.md
-- RUNBOOK.md
 - Rakefile
 - exe/security-report-schemas
 - gem_version
@@ -85,55 +84,6 @@ files:
 - lib/gitlab/security_report_schemas/validator.rb
 - lib/gitlab/security_report_schemas/version.rb
 - schemas/.keep
-- schemas/15.0.0/cluster-image-scanning-report-format.json
-- schemas/15.0.0/container-scanning-report-format.json
-- schemas/15.0.0/coverage-fuzzing-report-format.json
-- schemas/15.0.0/dast-report-format.json
-- schemas/15.0.0/dependency-scanning-report-format.json
-- schemas/15.0.0/sast-report-format.json
-- schemas/15.0.0/secret-detection-report-format.json
-- schemas/15.0.1/cluster-image-scanning-report-format.json
-- schemas/15.0.1/container-scanning-report-format.json
-- schemas/15.0.1/coverage-fuzzing-report-format.json
-- schemas/15.0.1/dast-report-format.json
-- schemas/15.0.1/dependency-scanning-report-format.json
-- schemas/15.0.1/sast-report-format.json
-- schemas/15.0.1/secret-detection-report-format.json
-- schemas/15.0.2/cluster-image-scanning-report-format.json
-- schemas/15.0.2/container-scanning-report-format.json
-- schemas/15.0.2/coverage-fuzzing-report-format.json
-- schemas/15.0.2/dast-report-format.json
-- schemas/15.0.2/dependency-scanning-report-format.json
-- schemas/15.0.2/sast-report-format.json
-- schemas/15.0.2/secret-detection-report-format.json
-- schemas/15.0.4/cluster-image-scanning-report-format.json
-- schemas/15.0.4/container-scanning-report-format.json
-- schemas/15.0.4/coverage-fuzzing-report-format.json
-- schemas/15.0.4/dast-report-format.json
-- schemas/15.0.4/dependency-scanning-report-format.json
-- schemas/15.0.4/sast-report-format.json
-- schemas/15.0.4/secret-detection-report-format.json
-- schemas/15.0.5/cluster-image-scanning-report-format.json
-- schemas/15.0.5/container-scanning-report-format.json
-- schemas/15.0.5/coverage-fuzzing-report-format.json
-- schemas/15.0.5/dast-report-format.json
-- schemas/15.0.5/dependency-scanning-report-format.json
-- schemas/15.0.5/sast-report-format.json
-- schemas/15.0.5/secret-detection-report-format.json
-- schemas/15.0.6/cluster-image-scanning-report-format.json
-- schemas/15.0.6/container-scanning-report-format.json
-- schemas/15.0.6/coverage-fuzzing-report-format.json
-- schemas/15.0.6/dast-report-format.json
-- schemas/15.0.6/dependency-scanning-report-format.json
-- schemas/15.0.6/sast-report-format.json
-- schemas/15.0.6/secret-detection-report-format.json
-- schemas/15.0.7/cluster-image-scanning-report-format.json
-- schemas/15.0.7/container-scanning-report-format.json
-- schemas/15.0.7/coverage-fuzzing-report-format.json
-- schemas/15.0.7/dast-report-format.json
-- schemas/15.0.7/dependency-scanning-report-format.json
-- schemas/15.0.7/sast-report-format.json
-- schemas/15.0.7/secret-detection-report-format.json
 - schemas/15.1.0/cluster-image-scanning-report-format.json
 - schemas/15.1.0/container-scanning-report-format.json
 - schemas/15.1.0/coverage-fuzzing-report-format.json
@@ -141,35 +91,6 @@ files:
 - schemas/15.1.0/dependency-scanning-report-format.json
 - schemas/15.1.0/sast-report-format.json
 - schemas/15.1.0/secret-detection-report-format.json
-- schemas/15.1.1/cluster-image-scanning-report-format.json
-- schemas/15.1.1/container-scanning-for-registry-report-format.json
-- schemas/15.1.1/container-scanning-report-format.json
-- schemas/15.1.1/coverage-fuzzing-report-format.json
-- schemas/15.1.1/dast-report-format.json
-- schemas/15.1.1/dependency-scanning-report-format.json
-- schemas/15.1.1/sast-report-format.json
-- schemas/15.1.1/secret-detection-report-format.json
-- schemas/15.1.2/cluster-image-scanning-report-format.json
-- schemas/15.1.2/container-scanning-report-format.json
-- schemas/15.1.2/coverage-fuzzing-report-format.json
-- schemas/15.1.2/dast-report-format.json
-- schemas/15.1.2/dependency-scanning-report-format.json
-- schemas/15.1.2/sast-report-format.json
-- schemas/15.1.2/secret-detection-report-format.json
-- schemas/15.1.3/cluster-image-scanning-report-format.json
-- schemas/15.1.3/container-scanning-report-format.json
-- schemas/15.1.3/coverage-fuzzing-report-format.json
-- schemas/15.1.3/dast-report-format.json
-- schemas/15.1.3/dependency-scanning-report-format.json
-- schemas/15.1.3/sast-report-format.json
-- schemas/15.1.3/secret-detection-report-format.json
-- schemas/15.1.4/cluster-image-scanning-report-format.json
-- schemas/15.1.4/container-scanning-report-format.json
-- schemas/15.1.4/coverage-fuzzing-report-format.json
-- schemas/15.1.4/dast-report-format.json
-- schemas/15.1.4/dependency-scanning-report-format.json
-- schemas/15.1.4/sast-report-format.json
-- schemas/15.1.4/secret-detection-report-format.json
 - supported_versions
 homepage: https://gitlab.com/gitlab-org/ruby/gems/gitlab-security_report_schemas
 licenses:

data/RUNBOOK.md

@@ -1,28 +0,0 @@
-# Common maintenance tasks
-
-### Problem
-
-* an upstream [security-report-schemas](https://gitlab.com/gitlab-org/security-products/security-report-schemas) pipeline failed to trigger the release pipeline
-* you want to add, remove or deprecate support for report schema versions
-* you need to release a new version of the gem without altering version ranges,
-  because for example:
-  * an existing gem release has a bug, and the bugfix release needs to cover the
-  same version range.
-  * there were breaking changes to the gem's public API that must be released
-  for the currently supported version range.
-
-### Solution
-
-1. Open and merge an MR targeting the default branch which may:
-    * change the [`supported_versions`](../supported_versions) file to set the
-      report schema version range that the release should include.
-    * change the `Gitlab::SecurityReportSchemas::Version::GEM_VERSION` constant
-      to set the MAJOR.MINOR.PATCH version components of the resulting release.
-2. Run a new pipeline for the default branch and set the `MANUAL_RELEASE` CI
-   variable.
-3. Trigger the manual `manual-release` job in the resulting pipeline.
-
-## Find the commit SHA for a RubyGem version
-
-Before a rubygems.org release is created, a git tag referencing the full
-v-prefixed release version is pushed, for example `v0.1.0.min15.0.0.max15.0.1`.