gitlab-security_report_schemas 0.1.0.min15.0.0.max15.1.4 → 0.1.0.min15.1.0.max15.1.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (88) hide show
  1. checksums.yaml +4 -4
  2. data/Gemfile.lock +5 -3
  3. data/README.md +10 -14
  4. data/Rakefile +1 -1
  5. data/gem_version +1 -1
  6. data/lib/gitlab/security_report_schemas/configuration.rb +2 -2
  7. data/lib/gitlab/security_report_schemas/version.rb +2 -0
  8. data/supported_versions +0 -11
  9. metadata +2 -81
  10. data/RUNBOOK.md +0 -28
  11. data/schemas/15.0.0/cluster-image-scanning-report-format.json +0 -946
  12. data/schemas/15.0.0/container-scanning-report-format.json +0 -880
  13. data/schemas/15.0.0/coverage-fuzzing-report-format.json +0 -836
  14. data/schemas/15.0.0/dast-report-format.json +0 -1241
  15. data/schemas/15.0.0/dependency-scanning-report-format.json +0 -944
  16. data/schemas/15.0.0/sast-report-format.json +0 -831
  17. data/schemas/15.0.0/secret-detection-report-format.json +0 -854
  18. data/schemas/15.0.1/cluster-image-scanning-report-format.json +0 -980
  19. data/schemas/15.0.1/container-scanning-report-format.json +0 -914
  20. data/schemas/15.0.1/coverage-fuzzing-report-format.json +0 -870
  21. data/schemas/15.0.1/dast-report-format.json +0 -1275
  22. data/schemas/15.0.1/dependency-scanning-report-format.json +0 -978
  23. data/schemas/15.0.1/sast-report-format.json +0 -865
  24. data/schemas/15.0.1/secret-detection-report-format.json +0 -888
  25. data/schemas/15.0.2/cluster-image-scanning-report-format.json +0 -980
  26. data/schemas/15.0.2/container-scanning-report-format.json +0 -912
  27. data/schemas/15.0.2/coverage-fuzzing-report-format.json +0 -870
  28. data/schemas/15.0.2/dast-report-format.json +0 -1275
  29. data/schemas/15.0.2/dependency-scanning-report-format.json +0 -978
  30. data/schemas/15.0.2/sast-report-format.json +0 -865
  31. data/schemas/15.0.2/secret-detection-report-format.json +0 -888
  32. data/schemas/15.0.4/cluster-image-scanning-report-format.json +0 -984
  33. data/schemas/15.0.4/container-scanning-report-format.json +0 -916
  34. data/schemas/15.0.4/coverage-fuzzing-report-format.json +0 -874
  35. data/schemas/15.0.4/dast-report-format.json +0 -1279
  36. data/schemas/15.0.4/dependency-scanning-report-format.json +0 -982
  37. data/schemas/15.0.4/sast-report-format.json +0 -869
  38. data/schemas/15.0.4/secret-detection-report-format.json +0 -893
  39. data/schemas/15.0.5/cluster-image-scanning-report-format.json +0 -1035
  40. data/schemas/15.0.5/container-scanning-report-format.json +0 -967
  41. data/schemas/15.0.5/coverage-fuzzing-report-format.json +0 -925
  42. data/schemas/15.0.5/dast-report-format.json +0 -1330
  43. data/schemas/15.0.5/dependency-scanning-report-format.json +0 -1033
  44. data/schemas/15.0.5/sast-report-format.json +0 -920
  45. data/schemas/15.0.5/secret-detection-report-format.json +0 -944
  46. data/schemas/15.0.6/cluster-image-scanning-report-format.json +0 -1035
  47. data/schemas/15.0.6/container-scanning-report-format.json +0 -967
  48. data/schemas/15.0.6/coverage-fuzzing-report-format.json +0 -925
  49. data/schemas/15.0.6/dast-report-format.json +0 -1330
  50. data/schemas/15.0.6/dependency-scanning-report-format.json +0 -1033
  51. data/schemas/15.0.6/sast-report-format.json +0 -920
  52. data/schemas/15.0.6/secret-detection-report-format.json +0 -944
  53. data/schemas/15.0.7/cluster-image-scanning-report-format.json +0 -1085
  54. data/schemas/15.0.7/container-scanning-report-format.json +0 -1017
  55. data/schemas/15.0.7/coverage-fuzzing-report-format.json +0 -975
  56. data/schemas/15.0.7/dast-report-format.json +0 -1380
  57. data/schemas/15.0.7/dependency-scanning-report-format.json +0 -1083
  58. data/schemas/15.0.7/sast-report-format.json +0 -970
  59. data/schemas/15.0.7/secret-detection-report-format.json +0 -994
  60. data/schemas/15.1.1/cluster-image-scanning-report-format.json +0 -1065
  61. data/schemas/15.1.1/container-scanning-for-registry-report-format.json +0 -0
  62. data/schemas/15.1.1/container-scanning-report-format.json +0 -998
  63. data/schemas/15.1.1/coverage-fuzzing-report-format.json +0 -975
  64. data/schemas/15.1.1/dast-report-format.json +0 -1380
  65. data/schemas/15.1.1/dependency-scanning-report-format.json +0 -986
  66. data/schemas/15.1.1/sast-report-format.json +0 -970
  67. data/schemas/15.1.1/secret-detection-report-format.json +0 -994
  68. data/schemas/15.1.2/cluster-image-scanning-report-format.json +0 -1190
  69. data/schemas/15.1.2/container-scanning-report-format.json +0 -1123
  70. data/schemas/15.1.2/coverage-fuzzing-report-format.json +0 -1100
  71. data/schemas/15.1.2/dast-report-format.json +0 -1505
  72. data/schemas/15.1.2/dependency-scanning-report-format.json +0 -1111
  73. data/schemas/15.1.2/sast-report-format.json +0 -1095
  74. data/schemas/15.1.2/secret-detection-report-format.json +0 -1119
  75. data/schemas/15.1.3/cluster-image-scanning-report-format.json +0 -1190
  76. data/schemas/15.1.3/container-scanning-report-format.json +0 -1123
  77. data/schemas/15.1.3/coverage-fuzzing-report-format.json +0 -1100
  78. data/schemas/15.1.3/dast-report-format.json +0 -1505
  79. data/schemas/15.1.3/dependency-scanning-report-format.json +0 -1111
  80. data/schemas/15.1.3/sast-report-format.json +0 -1095
  81. data/schemas/15.1.3/secret-detection-report-format.json +0 -1119
  82. data/schemas/15.1.4/cluster-image-scanning-report-format.json +0 -1190
  83. data/schemas/15.1.4/container-scanning-report-format.json +0 -1123
  84. data/schemas/15.1.4/coverage-fuzzing-report-format.json +0 -1100
  85. data/schemas/15.1.4/dast-report-format.json +0 -1505
  86. data/schemas/15.1.4/dependency-scanning-report-format.json +0 -1111
  87. data/schemas/15.1.4/sast-report-format.json +0 -1095
  88. data/schemas/15.1.4/secret-detection-report-format.json +0 -1119
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: eb0ee095cc1634e7242faa1990caf178447e8774e0c1027665388b24494c7b9c
4
- data.tar.gz: eb1cd4245ced146a0d1f01769f1d60117e4b8cf36e51106abe6c7632096c0a40
3
+ metadata.gz: f4c389c7784c3bbbd5456fab0128a39755f46cd9decd3b6056c22e97861f0adf
4
+ data.tar.gz: a3a9d4d8fe97cebe404fc5d1a653d564aff3163abd7d0d5add42be64b598cf6a
5
5
  SHA512:
6
- metadata.gz: 0d8aaaff8004ceb08b6cd1e1bfbde2b330ac45b66c3dc9c9d132b08d13dd2ea4137766ff4b87ce9789577f51df0ba3095e1a0f893341d9364cd88f19f160118b
7
- data.tar.gz: a2c6dd7ff0729f43591b798e17adaf0830ece329356e200cd08c1cec772b47234b437705049b6dedce7ab587a0f41ef729c3048a5e5da5a0a883b28c26f8cbd1
6
+ metadata.gz: 778edd32130b9e3859a35dfdd3635c24d07dd8a0eef0e58ca01090c8035430a7199763c02fcba017f8dfd4793d0c92e82c09ae240215d5f5313d969c6f56fb8f
7
+ data.tar.gz: a250c4845733d632c13a002d7fa5e173221559876add385372a75e043835007ef2cd471a263904ff9121d83e68c30ebbe7f886b954366737e983642f90e1aa58
data/Gemfile.lock CHANGED
@@ -1,7 +1,7 @@
1
1
  PATH
2
2
  remote: .
3
3
  specs:
4
- gitlab-security_report_schemas (0.1.0.min15.0.0.max15.1.4)
4
+ gitlab-security_report_schemas (0.1.0.min15.1.0.max15.1.0)
5
5
  activesupport (>= 6, < 8)
6
6
  json_schemer (~> 0.2.18)
7
7
 
@@ -25,10 +25,11 @@ GEM
25
25
  i18n (1.12.0)
26
26
  concurrent-ruby (~> 1.0)
27
27
  json (2.6.2)
28
- json_schemer (0.2.21)
28
+ json_schemer (0.2.25)
29
29
  ecma-re-validator (~> 0.3)
30
30
  hana (~> 1.3)
31
31
  regexp_parser (~> 2.0)
32
+ simpleidn (~> 0.2)
32
33
  uri_template (~> 0.7)
33
34
  method_source (1.0.0)
34
35
  minitest (5.16.2)
@@ -71,6 +72,7 @@ GEM
71
72
  ruby-progressbar (1.11.0)
72
73
  shoulda-matchers (5.1.0)
73
74
  activesupport (>= 5.2.0)
75
+ simpleidn (0.2.3)
74
76
  tzinfo (2.0.5)
75
77
  concurrent-ruby (~> 1.0)
76
78
  unicode-display_width (2.2.0)
@@ -91,4 +93,4 @@ DEPENDENCIES
91
93
  shoulda-matchers (~> 5.0)
92
94
 
93
95
  BUNDLED WITH
94
- 2.5.14
96
+ 2.3.15
data/README.md CHANGED
@@ -47,25 +47,21 @@ bundle exec security-reports-schemas $FILE_PATH
47
47
 
48
48
  #### Credentials
49
49
 
50
- | Key | Description |
51
- |-----------------------------|-----------------------------------------------------------------------------------------------|
52
- | `GITLAB_PUSH_ACCESS_TOKEN` | Own project access token used to push new schema versions. Requires `write_repository` scope. |
53
- | `GITLAB_ISSUE_ACCESS_TOKEN` | Project access token used to create an issue on `gitlab-org/gitlab`. Requires `api` scopes. |
54
- | `GEM_HOST_API_KEY` | rubygems.org API key |
50
+ | Key | Description |
51
+ |-----------------------------|-----------------------------------------------------------------------------------------------------------------------------|
52
+ | `GITLAB_PUSH_ACCESS_TOKEN` | Own project access token used to push new schema versions. Requires `write_repository` scope. |
53
+ | `GITLAB_ISSUE_ACCESS_TOKEN` | Project access token used to create an issue on `gitlab-org/gitlab`. Requires `api` scopes. |
54
+ | `GEM_HOST_API_KEY` | rubygems.org API key |
55
55
 
56
56
  #### Configuration
57
57
 
58
- | Key | Default | Description |
59
- |---------------------------|--------------------------------------------------------|----------------------------------------|
60
- | `SCHEMAS_PATH` | `./schemas` | Schema storage location |
61
- | `SCHEMA_PROJECT` | `gitlab-org/security-products/security-report-schemas` | Where to source schemas |
62
- | `GITLAB_PROJECT` | `gitlab-org/gitlab` | Project to open MRs for |
58
+ | Key | Default | Description |
59
+ |---------------------------|--------------------------------------------------------|----------------------------|
60
+ | `SCHEMAS_PATH` | `./schemas` | Schema storage location |
61
+ | `SCHEMA_PROJECT` | `gitlab-org/security-products/security-report-schemas` | Where to source schemas |
62
+ | `GITLAB_PROJECT` | `gitlab-org/gitlab` | Project to open MRs for |
63
63
  | `ISSUE_TARGET_PROJECT_ID` | `278964` (`gitlab-org/gitlab`) | Project ID for which to open an issue. |
64
64
 
65
- ## Maintenance
66
-
67
- See [`RUNBOOK.md`](./RUNBOOK.md) for solutions to common maintenance tasks.
68
-
69
65
  ## Development
70
66
 
71
67
  ### Updating the schemas
data/Rakefile CHANGED
@@ -30,7 +30,7 @@ desc "Bundles the Security Report Schemas into the project and builds the gem"
30
30
  task :prepare, %i[versions] => %i[prepare_schemas build]
31
31
 
32
32
  desc "Checks the integrity of the schema files with upstream"
33
- task integrity_check: :prepare_schemas do
33
+ task :integrity_check do
34
34
  require "gitlab/security_report_schemas"
35
35
  require "gitlab/security_report_schemas/cli/integrity_checker"
36
36
 
data/gem_version CHANGED
@@ -1 +1 @@
1
- 0.1.0.min15.0.0.max15.1.4
1
+ 0.1.0.min15.1.0.max15.1.0
@@ -9,8 +9,8 @@ module Gitlab
9
9
  deprecated_versions: -> { [] },
10
10
  schema_project: -> { "gitlab-org/security-products/security-report-schemas" },
11
11
  gitlab_project: -> { "gitlab-org/gitlab" },
12
- issue_target_project_id: -> { "278964" }, # gitlab-org/gitlab
13
- gitlab_issue_access_token: nil,
12
+ issue_target_project_id: -> { ENV.fetch("GITLAB_MR_ACCESS_TOKEN", "278964") }, # gitlab-org/gitlab
13
+ gitlab_issue_access_token: -> { ENV["GITLAB_MR_ACCESS_TOKEN"] },
14
14
  ci_server_host: nil
15
15
  }.freeze
16
16
 
@@ -16,6 +16,8 @@ module Gitlab
16
16
  max_schema: max_schema)
17
17
  end
18
18
 
19
+ private
20
+
19
21
  def min_schema
20
22
  SecurityReportSchemas.supported_versions.first || MISSING_SCHEMA_VERSION
21
23
  end
data/supported_versions CHANGED
@@ -1,12 +1 @@
1
- 15.0.0
2
- 15.0.1
3
- 15.0.2
4
- 15.0.4
5
- 15.0.5
6
- 15.0.6
7
- 15.0.7
8
1
  15.1.0
9
- 15.1.1
10
- 15.1.2
11
- 15.1.3
12
- 15.1.4
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: gitlab-security_report_schemas
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.1.0.min15.0.0.max15.1.4
4
+ version: 0.1.0.min15.1.0.max15.1.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - GitLab
8
8
  autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2024-07-11 00:00:00.000000000 Z
11
+ date: 2024-07-02 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: activesupport
@@ -60,7 +60,6 @@ files:
60
60
  - Gemfile.lock
61
61
  - LICENSE.txt
62
62
  - README.md
63
- - RUNBOOK.md
64
63
  - Rakefile
65
64
  - exe/security-report-schemas
66
65
  - gem_version
@@ -85,55 +84,6 @@ files:
85
84
  - lib/gitlab/security_report_schemas/validator.rb
86
85
  - lib/gitlab/security_report_schemas/version.rb
87
86
  - schemas/.keep
88
- - schemas/15.0.0/cluster-image-scanning-report-format.json
89
- - schemas/15.0.0/container-scanning-report-format.json
90
- - schemas/15.0.0/coverage-fuzzing-report-format.json
91
- - schemas/15.0.0/dast-report-format.json
92
- - schemas/15.0.0/dependency-scanning-report-format.json
93
- - schemas/15.0.0/sast-report-format.json
94
- - schemas/15.0.0/secret-detection-report-format.json
95
- - schemas/15.0.1/cluster-image-scanning-report-format.json
96
- - schemas/15.0.1/container-scanning-report-format.json
97
- - schemas/15.0.1/coverage-fuzzing-report-format.json
98
- - schemas/15.0.1/dast-report-format.json
99
- - schemas/15.0.1/dependency-scanning-report-format.json
100
- - schemas/15.0.1/sast-report-format.json
101
- - schemas/15.0.1/secret-detection-report-format.json
102
- - schemas/15.0.2/cluster-image-scanning-report-format.json
103
- - schemas/15.0.2/container-scanning-report-format.json
104
- - schemas/15.0.2/coverage-fuzzing-report-format.json
105
- - schemas/15.0.2/dast-report-format.json
106
- - schemas/15.0.2/dependency-scanning-report-format.json
107
- - schemas/15.0.2/sast-report-format.json
108
- - schemas/15.0.2/secret-detection-report-format.json
109
- - schemas/15.0.4/cluster-image-scanning-report-format.json
110
- - schemas/15.0.4/container-scanning-report-format.json
111
- - schemas/15.0.4/coverage-fuzzing-report-format.json
112
- - schemas/15.0.4/dast-report-format.json
113
- - schemas/15.0.4/dependency-scanning-report-format.json
114
- - schemas/15.0.4/sast-report-format.json
115
- - schemas/15.0.4/secret-detection-report-format.json
116
- - schemas/15.0.5/cluster-image-scanning-report-format.json
117
- - schemas/15.0.5/container-scanning-report-format.json
118
- - schemas/15.0.5/coverage-fuzzing-report-format.json
119
- - schemas/15.0.5/dast-report-format.json
120
- - schemas/15.0.5/dependency-scanning-report-format.json
121
- - schemas/15.0.5/sast-report-format.json
122
- - schemas/15.0.5/secret-detection-report-format.json
123
- - schemas/15.0.6/cluster-image-scanning-report-format.json
124
- - schemas/15.0.6/container-scanning-report-format.json
125
- - schemas/15.0.6/coverage-fuzzing-report-format.json
126
- - schemas/15.0.6/dast-report-format.json
127
- - schemas/15.0.6/dependency-scanning-report-format.json
128
- - schemas/15.0.6/sast-report-format.json
129
- - schemas/15.0.6/secret-detection-report-format.json
130
- - schemas/15.0.7/cluster-image-scanning-report-format.json
131
- - schemas/15.0.7/container-scanning-report-format.json
132
- - schemas/15.0.7/coverage-fuzzing-report-format.json
133
- - schemas/15.0.7/dast-report-format.json
134
- - schemas/15.0.7/dependency-scanning-report-format.json
135
- - schemas/15.0.7/sast-report-format.json
136
- - schemas/15.0.7/secret-detection-report-format.json
137
87
  - schemas/15.1.0/cluster-image-scanning-report-format.json
138
88
  - schemas/15.1.0/container-scanning-report-format.json
139
89
  - schemas/15.1.0/coverage-fuzzing-report-format.json
@@ -141,35 +91,6 @@ files:
141
91
  - schemas/15.1.0/dependency-scanning-report-format.json
142
92
  - schemas/15.1.0/sast-report-format.json
143
93
  - schemas/15.1.0/secret-detection-report-format.json
144
- - schemas/15.1.1/cluster-image-scanning-report-format.json
145
- - schemas/15.1.1/container-scanning-for-registry-report-format.json
146
- - schemas/15.1.1/container-scanning-report-format.json
147
- - schemas/15.1.1/coverage-fuzzing-report-format.json
148
- - schemas/15.1.1/dast-report-format.json
149
- - schemas/15.1.1/dependency-scanning-report-format.json
150
- - schemas/15.1.1/sast-report-format.json
151
- - schemas/15.1.1/secret-detection-report-format.json
152
- - schemas/15.1.2/cluster-image-scanning-report-format.json
153
- - schemas/15.1.2/container-scanning-report-format.json
154
- - schemas/15.1.2/coverage-fuzzing-report-format.json
155
- - schemas/15.1.2/dast-report-format.json
156
- - schemas/15.1.2/dependency-scanning-report-format.json
157
- - schemas/15.1.2/sast-report-format.json
158
- - schemas/15.1.2/secret-detection-report-format.json
159
- - schemas/15.1.3/cluster-image-scanning-report-format.json
160
- - schemas/15.1.3/container-scanning-report-format.json
161
- - schemas/15.1.3/coverage-fuzzing-report-format.json
162
- - schemas/15.1.3/dast-report-format.json
163
- - schemas/15.1.3/dependency-scanning-report-format.json
164
- - schemas/15.1.3/sast-report-format.json
165
- - schemas/15.1.3/secret-detection-report-format.json
166
- - schemas/15.1.4/cluster-image-scanning-report-format.json
167
- - schemas/15.1.4/container-scanning-report-format.json
168
- - schemas/15.1.4/coverage-fuzzing-report-format.json
169
- - schemas/15.1.4/dast-report-format.json
170
- - schemas/15.1.4/dependency-scanning-report-format.json
171
- - schemas/15.1.4/sast-report-format.json
172
- - schemas/15.1.4/secret-detection-report-format.json
173
94
  - supported_versions
174
95
  homepage: https://gitlab.com/gitlab-org/ruby/gems/gitlab-security_report_schemas
175
96
  licenses:
data/RUNBOOK.md DELETED
@@ -1,28 +0,0 @@
1
- # Common maintenance tasks
2
-
3
- ### Problem
4
-
5
- * an upstream [security-report-schemas](https://gitlab.com/gitlab-org/security-products/security-report-schemas) pipeline failed to trigger the release pipeline
6
- * you want to add, remove or deprecate support for report schema versions
7
- * you need to release a new version of the gem without altering version ranges,
8
- because for example:
9
- * an existing gem release has a bug, and the bugfix release needs to cover the
10
- same version range.
11
- * there were breaking changes to the gem's public API that must be released
12
- for the currently supported version range.
13
-
14
- ### Solution
15
-
16
- 1. Open and merge an MR targeting the default branch which may:
17
- * change the [`supported_versions`](../supported_versions) file to set the
18
- report schema version range that the release should include.
19
- * change the `Gitlab::SecurityReportSchemas::Version::GEM_VERSION` constant
20
- to set the MAJOR.MINOR.PATCH version components of the resulting release.
21
- 2. Run a new pipeline for the default branch and set the `MANUAL_RELEASE` CI
22
- variable.
23
- 3. Trigger the manual `manual-release` job in the resulting pipeline.
24
-
25
- ## Find the commit SHA for a RubyGem version
26
-
27
- Before a rubygems.org release is created, a git tag referencing the full
28
- v-prefixed release version is pushed, for example `v0.1.0.min15.0.0.max15.0.1`.