@cyclonedx/cyclonedx-library 6.7.2 → 6.8.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +1 -1
- package/dist.d/builders/fromNodePackageJson.node.d.ts +5 -4
- package/dist.d/builders/fromNodePackageJson.node.d.ts.map +1 -1
- package/dist.d/factories/fromNodePackageJson.node.d.ts +7 -6
- package/dist.d/factories/fromNodePackageJson.node.d.ts.map +1 -1
- package/dist.d/factories/license.d.ts +2 -2
- package/dist.d/factories/license.d.ts.map +1 -1
- package/dist.d/factories/packageUrl.d.ts +1 -1
- package/dist.d/factories/packageUrl.d.ts.map +1 -1
- package/dist.d/index.node.d.ts.map +1 -1
- package/dist.d/models/attachment.d.ts +1 -1
- package/dist.d/models/attachment.d.ts.map +1 -1
- package/dist.d/models/bom.d.ts +2 -2
- package/dist.d/models/bom.d.ts.map +1 -1
- package/dist.d/models/component.d.ts +1 -1
- package/dist.d/models/component.d.ts.map +1 -1
- package/dist.d/models/externalReference.d.ts +1 -1
- package/dist.d/models/externalReference.d.ts.map +1 -1
- package/dist.d/models/hash.d.ts +1 -1
- package/dist.d/models/hash.d.ts.map +1 -1
- package/dist.d/models/license.d.ts +1 -1
- package/dist.d/models/license.d.ts.map +1 -1
- package/dist.d/models/lifecycle.d.ts +1 -1
- package/dist.d/models/lifecycle.d.ts.map +1 -1
- package/dist.d/models/swid.d.ts +1 -1
- package/dist.d/models/swid.d.ts.map +1 -1
- package/dist.d/models/vulnerability/analysis.d.ts +1 -1
- package/dist.d/models/vulnerability/analysis.d.ts.map +1 -1
- package/dist.d/models/vulnerability/vulnerability.d.ts +1 -1
- package/dist.d/models/vulnerability/vulnerability.d.ts.map +1 -1
- package/dist.d/serialize/json/normalize.d.ts +1 -1
- package/dist.d/serialize/json/normalize.d.ts.map +1 -1
- package/dist.d/serialize/jsonSerializer.d.ts +1 -1
- package/dist.d/serialize/jsonSerializer.d.ts.map +1 -1
- package/dist.d/serialize/xml/normalize.d.ts +1 -1
- package/dist.d/serialize/xml/normalize.d.ts.map +1 -1
- package/dist.d/serialize/xmlBaseSerializer.d.ts.map +1 -1
- package/dist.d/spec/consts.d.ts.map +1 -1
- package/dist.d/spec/errors.d.ts +21 -0
- package/dist.d/spec/errors.d.ts.map +1 -0
- package/dist.d/spec/index.d.ts +1 -2
- package/dist.d/spec/index.d.ts.map +1 -1
- package/dist.node/builders/fromNodePackageJson.node.js +11 -8
- package/dist.node/builders/fromNodePackageJson.node.js.map +1 -1
- package/dist.node/factories/fromNodePackageJson.node.js +5 -5
- package/dist.node/factories/fromNodePackageJson.node.js.map +1 -1
- package/dist.node/factories/license.js +4 -4
- package/dist.node/factories/license.js.map +1 -1
- package/dist.node/factories/packageUrl.js +3 -3
- package/dist.node/factories/packageUrl.js.map +1 -1
- package/dist.node/index.node.js.map +1 -1
- package/dist.node/models/bom.js +3 -3
- package/dist.node/models/bom.js.map +1 -1
- package/dist.node/models/component.js +2 -2
- package/dist.node/models/component.js.map +1 -1
- package/dist.node/models/swid.js +2 -2
- package/dist.node/models/swid.js.map +1 -1
- package/dist.node/models/vulnerability/analysis.js +2 -2
- package/dist.node/models/vulnerability/analysis.js.map +1 -1
- package/dist.node/models/vulnerability/vulnerability.js +2 -2
- package/dist.node/models/vulnerability/vulnerability.js.map +1 -1
- package/dist.node/resources.node.js +28 -28
- package/dist.node/resources.node.js.map +1 -1
- package/dist.node/serialize/json/normalize.js +17 -15
- package/dist.node/serialize/json/normalize.js.map +1 -1
- package/dist.node/serialize/jsonSerializer.js +4 -3
- package/dist.node/serialize/jsonSerializer.js.map +1 -1
- package/dist.node/serialize/xml/normalize.js +19 -17
- package/dist.node/serialize/xml/normalize.js.map +1 -1
- package/dist.node/serialize/xmlBaseSerializer.js +4 -3
- package/dist.node/serialize/xmlBaseSerializer.js.map +1 -1
- package/dist.node/spec/consts.js +281 -278
- package/dist.node/spec/consts.js.map +1 -1
- package/dist.node/spec/errors.js +25 -0
- package/dist.node/spec/errors.js.map +1 -0
- package/dist.node/spec/index.js +1 -4
- package/dist.node/spec/index.js.map +1 -1
- package/dist.web/lib.dev.js +378 -338
- package/dist.web/lib.dev.js.map +1 -1
- package/dist.web/lib.js +1 -1
- package/dist.web/lib.js.map +1 -1
- package/package.json +72 -10
- package/src/builders/fromNodePackageJson.node.ts +12 -9
- package/src/factories/fromNodePackageJson.node.ts +13 -12
- package/src/factories/license.ts +2 -2
- package/src/factories/packageUrl.ts +2 -2
- package/src/index.node.ts +4 -0
- package/src/models/attachment.ts +1 -1
- package/src/models/bom.ts +3 -3
- package/src/models/component.ts +2 -2
- package/src/models/externalReference.ts +1 -1
- package/src/models/hash.ts +1 -1
- package/src/models/license.ts +1 -1
- package/src/models/lifecycle.ts +1 -1
- package/src/models/swid.ts +2 -2
- package/src/models/vulnerability/analysis.ts +1 -1
- package/src/models/vulnerability/vulnerability.ts +1 -1
- package/src/resources.node.ts +24 -24
- package/src/serialize/json/normalize.ts +13 -10
- package/src/serialize/jsonSerializer.ts +3 -2
- package/src/serialize/xml/normalize.ts +13 -10
- package/src/serialize/xmlBaseSerializer.ts +2 -1
- package/src/spec/consts.ts +23 -20
- package/src/spec/errors.ts +21 -0
- package/src/spec/index.ts +1 -3
package/dist.web/lib.dev.js
CHANGED
|
@@ -1024,7 +1024,7 @@ Copyright (c) OWASP Foundation. All Rights Reserved.
|
|
|
1024
1024
|
*/
|
|
1025
1025
|
Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
1026
1026
|
exports.LicenseFactory = void 0;
|
|
1027
|
-
const
|
|
1027
|
+
const license_1 = __webpack_require__(/*! ../models/license */ "./src/models/license.ts");
|
|
1028
1028
|
const spdx_1 = __webpack_require__(/*! ../spdx */ "./src/spdx.ts");
|
|
1029
1029
|
class LicenseFactory {
|
|
1030
1030
|
makeFromString(value) {
|
|
@@ -1043,7 +1043,7 @@ class LicenseFactory {
|
|
|
1043
1043
|
makeExpression(value) {
|
|
1044
1044
|
const expression = String(value);
|
|
1045
1045
|
if ((0, spdx_1.isValidSpdxLicenseExpression)(expression)) {
|
|
1046
|
-
return new
|
|
1046
|
+
return new license_1.LicenseExpression(expression);
|
|
1047
1047
|
}
|
|
1048
1048
|
throw new RangeError('Invalid SPDX license expression');
|
|
1049
1049
|
}
|
|
@@ -1060,10 +1060,10 @@ class LicenseFactory {
|
|
|
1060
1060
|
if (undefined === fixed) {
|
|
1061
1061
|
throw new RangeError('Unsupported SPDX license ID');
|
|
1062
1062
|
}
|
|
1063
|
-
return new
|
|
1063
|
+
return new license_1.SpdxLicense(fixed);
|
|
1064
1064
|
}
|
|
1065
1065
|
makeNamedLicense(value) {
|
|
1066
|
-
return new
|
|
1066
|
+
return new license_1.NamedLicense(String(value));
|
|
1067
1067
|
}
|
|
1068
1068
|
}
|
|
1069
1069
|
exports.LicenseFactory = LicenseFactory;
|
|
@@ -1112,7 +1112,7 @@ Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
|
1112
1112
|
exports.PackageUrlFactory = void 0;
|
|
1113
1113
|
const packageurl_js_1 = __webpack_require__(/*! packageurl-js */ "packageurl-js");
|
|
1114
1114
|
const packageUrl_1 = __webpack_require__(/*! ../_helpers/packageUrl */ "./src/_helpers/packageUrl.ts");
|
|
1115
|
-
const
|
|
1115
|
+
const externalReferenceType_1 = __webpack_require__(/*! ../enums/externalReferenceType */ "./src/enums/externalReferenceType.ts");
|
|
1116
1116
|
class PackageUrlFactory {
|
|
1117
1117
|
constructor(type) {
|
|
1118
1118
|
_PackageUrlFactory_type.set(this, void 0);
|
|
@@ -1133,10 +1133,10 @@ class PackageUrlFactory {
|
|
|
1133
1133
|
continue;
|
|
1134
1134
|
}
|
|
1135
1135
|
switch (extRef.type) {
|
|
1136
|
-
case
|
|
1136
|
+
case externalReferenceType_1.ExternalReferenceType.VCS:
|
|
1137
1137
|
[qualifiers[packageUrl_1.PackageUrlQualifierNames.VcsUrl], subpath] = url.split('#', 2);
|
|
1138
1138
|
break;
|
|
1139
|
-
case
|
|
1139
|
+
case externalReferenceType_1.ExternalReferenceType.Distribution:
|
|
1140
1140
|
qualifiers[packageUrl_1.PackageUrlQualifierNames.DownloadURL] = url;
|
|
1141
1141
|
break;
|
|
1142
1142
|
}
|
|
@@ -1325,10 +1325,10 @@ var __classPrivateFieldSet = (this && this.__classPrivateFieldSet) || function (
|
|
|
1325
1325
|
var _Bom_version, _Bom_serialNumber;
|
|
1326
1326
|
Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
1327
1327
|
exports.Bom = void 0;
|
|
1328
|
-
const
|
|
1328
|
+
const integer_1 = __webpack_require__(/*! ../types/integer */ "./src/types/integer.ts");
|
|
1329
1329
|
const component_1 = __webpack_require__(/*! ./component */ "./src/models/component.ts");
|
|
1330
1330
|
const metadata_1 = __webpack_require__(/*! ./metadata */ "./src/models/metadata.ts");
|
|
1331
|
-
const vulnerability_1 = __webpack_require__(/*! ./vulnerability */ "./src/models/vulnerability/
|
|
1331
|
+
const vulnerability_1 = __webpack_require__(/*! ./vulnerability/vulnerability */ "./src/models/vulnerability/vulnerability.ts");
|
|
1332
1332
|
class Bom {
|
|
1333
1333
|
constructor(op = {}) {
|
|
1334
1334
|
_Bom_version.set(this, 1);
|
|
@@ -1343,7 +1343,7 @@ class Bom {
|
|
|
1343
1343
|
return __classPrivateFieldGet(this, _Bom_version, "f");
|
|
1344
1344
|
}
|
|
1345
1345
|
set version(value) {
|
|
1346
|
-
if (!(0,
|
|
1346
|
+
if (!(0, integer_1.isPositiveInteger)(value)) {
|
|
1347
1347
|
throw new TypeError('Not PositiveInteger');
|
|
1348
1348
|
}
|
|
1349
1349
|
__classPrivateFieldSet(this, _Bom_version, value, "f");
|
|
@@ -1539,7 +1539,7 @@ Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
|
1539
1539
|
exports.ComponentEvidence = exports.ComponentRepository = exports.Component = void 0;
|
|
1540
1540
|
const sortable_1 = __webpack_require__(/*! ../_helpers/sortable */ "./src/_helpers/sortable.ts");
|
|
1541
1541
|
const tree_1 = __webpack_require__(/*! ../_helpers/tree */ "./src/_helpers/tree.ts");
|
|
1542
|
-
const
|
|
1542
|
+
const cpe_1 = __webpack_require__(/*! ../types/cpe */ "./src/types/cpe.ts");
|
|
1543
1543
|
const bomRef_1 = __webpack_require__(/*! ./bomRef */ "./src/models/bomRef.ts");
|
|
1544
1544
|
const externalReference_1 = __webpack_require__(/*! ./externalReference */ "./src/models/externalReference.ts");
|
|
1545
1545
|
const hash_1 = __webpack_require__(/*! ./hash */ "./src/models/hash.ts");
|
|
@@ -1578,7 +1578,7 @@ class Component {
|
|
|
1578
1578
|
return __classPrivateFieldGet(this, _Component_cpe, "f");
|
|
1579
1579
|
}
|
|
1580
1580
|
set cpe(value) {
|
|
1581
|
-
if (value !== undefined && !(0,
|
|
1581
|
+
if (value !== undefined && !(0, cpe_1.isCPE)(value)) {
|
|
1582
1582
|
throw new TypeError('Not CPE nor undefined');
|
|
1583
1583
|
}
|
|
1584
1584
|
__classPrivateFieldSet(this, _Component_cpe, value, "f");
|
|
@@ -2194,7 +2194,7 @@ var __classPrivateFieldSet = (this && this.__classPrivateFieldSet) || function (
|
|
|
2194
2194
|
var _SWID_tagVersion;
|
|
2195
2195
|
Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
2196
2196
|
exports.SWID = void 0;
|
|
2197
|
-
const
|
|
2197
|
+
const integer_1 = __webpack_require__(/*! ../types/integer */ "./src/types/integer.ts");
|
|
2198
2198
|
class SWID {
|
|
2199
2199
|
constructor(tagId, name, op = {}) {
|
|
2200
2200
|
_SWID_tagVersion.set(this, void 0);
|
|
@@ -2210,7 +2210,7 @@ class SWID {
|
|
|
2210
2210
|
return __classPrivateFieldGet(this, _SWID_tagVersion, "f");
|
|
2211
2211
|
}
|
|
2212
2212
|
set tagVersion(value) {
|
|
2213
|
-
if (value !== undefined && !(0,
|
|
2213
|
+
if (value !== undefined && !(0, integer_1.isNonNegativeInteger)(value)) {
|
|
2214
2214
|
throw new TypeError('Not NonNegativeInteger nor undefined');
|
|
2215
2215
|
}
|
|
2216
2216
|
__classPrivateFieldSet(this, _SWID_tagVersion, value, "f");
|
|
@@ -2418,12 +2418,12 @@ Copyright (c) OWASP Foundation. All Rights Reserved.
|
|
|
2418
2418
|
*/
|
|
2419
2419
|
Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
2420
2420
|
exports.Analysis = void 0;
|
|
2421
|
-
const
|
|
2421
|
+
const analysisResponse_1 = __webpack_require__(/*! ../../enums/vulnerability/analysisResponse */ "./src/enums/vulnerability/analysisResponse.ts");
|
|
2422
2422
|
class Analysis {
|
|
2423
2423
|
constructor(op = {}) {
|
|
2424
2424
|
this.state = op.state;
|
|
2425
2425
|
this.justification = op.justification;
|
|
2426
|
-
this.response = op.response ?? new
|
|
2426
|
+
this.response = op.response ?? new analysisResponse_1.AnalysisResponseRepository();
|
|
2427
2427
|
this.detail = op.detail;
|
|
2428
2428
|
}
|
|
2429
2429
|
}
|
|
@@ -2706,7 +2706,7 @@ var _Vulnerability_bomRef;
|
|
|
2706
2706
|
Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
2707
2707
|
exports.VulnerabilityRepository = exports.Vulnerability = void 0;
|
|
2708
2708
|
const sortable_1 = __webpack_require__(/*! ../../_helpers/sortable */ "./src/_helpers/sortable.ts");
|
|
2709
|
-
const
|
|
2709
|
+
const cwe_1 = __webpack_require__(/*! ../../types/cwe */ "./src/types/cwe.ts");
|
|
2710
2710
|
const bomRef_1 = __webpack_require__(/*! ../bomRef */ "./src/models/bomRef.ts");
|
|
2711
2711
|
const property_1 = __webpack_require__(/*! ../property */ "./src/models/property.ts");
|
|
2712
2712
|
const tool_1 = __webpack_require__(/*! ../tool */ "./src/models/tool.ts");
|
|
@@ -2722,7 +2722,7 @@ class Vulnerability {
|
|
|
2722
2722
|
this.source = op.source;
|
|
2723
2723
|
this.references = op.references ?? new reference_1.ReferenceRepository();
|
|
2724
2724
|
this.ratings = op.ratings ?? new rating_1.RatingRepository();
|
|
2725
|
-
this.cwes = op.cwes ?? new
|
|
2725
|
+
this.cwes = op.cwes ?? new cwe_1.CweRepository();
|
|
2726
2726
|
this.description = op.description;
|
|
2727
2727
|
this.detail = op.detail;
|
|
2728
2728
|
this.recommendation = op.recommendation;
|
|
@@ -3090,9 +3090,11 @@ exports.VulnerabilityAnalysisNormalizer = exports.VulnerabilityAffectedVersionNo
|
|
|
3090
3090
|
const notUndefined_1 = __webpack_require__(/*! ../../_helpers/notUndefined */ "./src/_helpers/notUndefined.ts");
|
|
3091
3091
|
const tree_1 = __webpack_require__(/*! ../../_helpers/tree */ "./src/_helpers/tree.ts");
|
|
3092
3092
|
const uri_1 = __webpack_require__(/*! ../../_helpers/uri */ "./src/_helpers/uri.ts");
|
|
3093
|
-
const
|
|
3093
|
+
const license_1 = __webpack_require__(/*! ../../models/license */ "./src/models/license.ts");
|
|
3094
|
+
const lifecycle_1 = __webpack_require__(/*! ../../models/lifecycle */ "./src/models/lifecycle.ts");
|
|
3095
|
+
const affect_1 = __webpack_require__(/*! ../../models/vulnerability/affect */ "./src/models/vulnerability/affect.ts");
|
|
3094
3096
|
const spdx_1 = __webpack_require__(/*! ../../spdx */ "./src/spdx.ts");
|
|
3095
|
-
const
|
|
3097
|
+
const enums_1 = __webpack_require__(/*! ../../spec/enums */ "./src/spec/enums.ts");
|
|
3096
3098
|
const types_1 = __webpack_require__(/*! ./types */ "./src/serialize/json/types.ts");
|
|
3097
3099
|
class Factory {
|
|
3098
3100
|
constructor(spec) {
|
|
@@ -3178,11 +3180,11 @@ class Factory {
|
|
|
3178
3180
|
exports.Factory = Factory;
|
|
3179
3181
|
_Factory_spec = new WeakMap();
|
|
3180
3182
|
const schemaUrl = new Map([
|
|
3181
|
-
[
|
|
3182
|
-
[
|
|
3183
|
-
[
|
|
3184
|
-
[
|
|
3185
|
-
[
|
|
3183
|
+
[enums_1.Version.v1dot6, 'http://cyclonedx.org/schema/bom-1.6.schema.json'],
|
|
3184
|
+
[enums_1.Version.v1dot5, 'http://cyclonedx.org/schema/bom-1.5.schema.json'],
|
|
3185
|
+
[enums_1.Version.v1dot4, 'http://cyclonedx.org/schema/bom-1.4.schema.json'],
|
|
3186
|
+
[enums_1.Version.v1dot3, 'http://cyclonedx.org/schema/bom-1.3a.schema.json'],
|
|
3187
|
+
[enums_1.Version.v1dot2, 'http://cyclonedx.org/schema/bom-1.2b.schema.json']
|
|
3186
3188
|
]);
|
|
3187
3189
|
class BaseJsonNormalizer {
|
|
3188
3190
|
constructor(factory) {
|
|
@@ -3259,7 +3261,7 @@ class MetadataNormalizer extends BaseJsonNormalizer {
|
|
|
3259
3261
|
exports.MetadataNormalizer = MetadataNormalizer;
|
|
3260
3262
|
class LifecycleNormalizer extends BaseJsonNormalizer {
|
|
3261
3263
|
normalize(data, options) {
|
|
3262
|
-
return data instanceof
|
|
3264
|
+
return data instanceof lifecycle_1.NamedLifecycle
|
|
3263
3265
|
? { name: data.name, description: data.description }
|
|
3264
3266
|
: { phase: data };
|
|
3265
3267
|
}
|
|
@@ -3425,13 +3427,13 @@ class LicenseNormalizer extends BaseJsonNormalizer {
|
|
|
3425
3427
|
}
|
|
3426
3428
|
normalize(data, options) {
|
|
3427
3429
|
switch (true) {
|
|
3428
|
-
case data instanceof
|
|
3430
|
+
case data instanceof license_1.NamedLicense:
|
|
3429
3431
|
return __classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeNamedLicense).call(this, data, options);
|
|
3430
|
-
case data instanceof
|
|
3432
|
+
case data instanceof license_1.SpdxLicense:
|
|
3431
3433
|
return (0, spdx_1.isSupportedSpdxId)(data.id)
|
|
3432
3434
|
? __classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeSpdxLicense).call(this, data, options)
|
|
3433
|
-
: __classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeNamedLicense).call(this, new
|
|
3434
|
-
case data instanceof
|
|
3435
|
+
: __classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeNamedLicense).call(this, new license_1.NamedLicense(data.id, { url: data.url }), options);
|
|
3436
|
+
case data instanceof license_1.LicenseExpression:
|
|
3435
3437
|
return __classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeLicenseExpression).call(this, data);
|
|
3436
3438
|
default:
|
|
3437
3439
|
throw new TypeError('Unexpected LicenseChoice');
|
|
@@ -3442,7 +3444,7 @@ class LicenseNormalizer extends BaseJsonNormalizer {
|
|
|
3442
3444
|
? data.sorted()
|
|
3443
3445
|
: Array.from(data);
|
|
3444
3446
|
if (licenses.length > 1) {
|
|
3445
|
-
const expressions = licenses.filter(l => l instanceof
|
|
3447
|
+
const expressions = licenses.filter(l => l instanceof license_1.LicenseExpression);
|
|
3446
3448
|
if (expressions.length > 0) {
|
|
3447
3449
|
return [__classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeLicenseExpression).call(this, expressions[0])];
|
|
3448
3450
|
}
|
|
@@ -3748,9 +3750,9 @@ class VulnerabilityAffectedVersionNormalizer extends BaseJsonNormalizer {
|
|
|
3748
3750
|
}
|
|
3749
3751
|
normalize(data, options) {
|
|
3750
3752
|
switch (true) {
|
|
3751
|
-
case data instanceof
|
|
3753
|
+
case data instanceof affect_1.AffectedSingleVersion:
|
|
3752
3754
|
return __classPrivateFieldGet(this, _VulnerabilityAffectedVersionNormalizer_instances, "m", _VulnerabilityAffectedVersionNormalizer_normalizeAffectedSingleVersion).call(this, data);
|
|
3753
|
-
case data instanceof
|
|
3755
|
+
case data instanceof affect_1.AffectedVersionRange:
|
|
3754
3756
|
return __classPrivateFieldGet(this, _VulnerabilityAffectedVersionNormalizer_instances, "m", _VulnerabilityAffectedVersionNormalizer_normalizeAffectedVersionRange).call(this, data);
|
|
3755
3757
|
default:
|
|
3756
3758
|
throw new TypeError('Unexpected Vulnerability AffectedVersion');
|
|
@@ -3887,12 +3889,13 @@ var __classPrivateFieldGet = (this && this.__classPrivateFieldGet) || function (
|
|
|
3887
3889
|
var _JsonSerializer_normalizerFactory;
|
|
3888
3890
|
Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
3889
3891
|
exports.JsonSerializer = void 0;
|
|
3890
|
-
const
|
|
3892
|
+
const enums_1 = __webpack_require__(/*! ../spec/enums */ "./src/spec/enums.ts");
|
|
3893
|
+
const errors_1 = __webpack_require__(/*! ../spec/errors */ "./src/spec/errors.ts");
|
|
3891
3894
|
const baseSerializer_1 = __webpack_require__(/*! ./baseSerializer */ "./src/serialize/baseSerializer.ts");
|
|
3892
3895
|
class JsonSerializer extends baseSerializer_1.BaseSerializer {
|
|
3893
3896
|
constructor(normalizerFactory) {
|
|
3894
|
-
if (!normalizerFactory.spec.supportsFormat(
|
|
3895
|
-
throw new
|
|
3897
|
+
if (!normalizerFactory.spec.supportsFormat(enums_1.Format.JSON)) {
|
|
3898
|
+
throw new errors_1.UnsupportedFormatError('Spec does not support JSON format.');
|
|
3896
3899
|
}
|
|
3897
3900
|
super();
|
|
3898
3901
|
_JsonSerializer_normalizerFactory.set(this, void 0);
|
|
@@ -4020,9 +4023,11 @@ exports.VulnerabilityAffectedVersionNormalizer = exports.VulnerabilityAffectNorm
|
|
|
4020
4023
|
const notUndefined_1 = __webpack_require__(/*! ../../_helpers/notUndefined */ "./src/_helpers/notUndefined.ts");
|
|
4021
4024
|
const tree_1 = __webpack_require__(/*! ../../_helpers/tree */ "./src/_helpers/tree.ts");
|
|
4022
4025
|
const uri_1 = __webpack_require__(/*! ../../_helpers/uri */ "./src/_helpers/uri.ts");
|
|
4023
|
-
const
|
|
4026
|
+
const license_1 = __webpack_require__(/*! ../../models/license */ "./src/models/license.ts");
|
|
4027
|
+
const lifecycle_1 = __webpack_require__(/*! ../../models/lifecycle */ "./src/models/lifecycle.ts");
|
|
4028
|
+
const affect_1 = __webpack_require__(/*! ../../models/vulnerability/affect */ "./src/models/vulnerability/affect.ts");
|
|
4024
4029
|
const spdx_1 = __webpack_require__(/*! ../../spdx */ "./src/spdx.ts");
|
|
4025
|
-
const
|
|
4030
|
+
const enums_1 = __webpack_require__(/*! ../../spec/enums */ "./src/spec/enums.ts");
|
|
4026
4031
|
const types_1 = __webpack_require__(/*! ./types */ "./src/serialize/xml/types.ts");
|
|
4027
4032
|
class Factory {
|
|
4028
4033
|
constructor(spec) {
|
|
@@ -4108,13 +4113,13 @@ class Factory {
|
|
|
4108
4113
|
exports.Factory = Factory;
|
|
4109
4114
|
_Factory_spec = new WeakMap();
|
|
4110
4115
|
const xmlNamespace = new Map([
|
|
4111
|
-
[
|
|
4112
|
-
[
|
|
4113
|
-
[
|
|
4114
|
-
[
|
|
4115
|
-
[
|
|
4116
|
-
[
|
|
4117
|
-
[
|
|
4116
|
+
[enums_1.Version.v1dot6, 'http://cyclonedx.org/schema/bom/1.6'],
|
|
4117
|
+
[enums_1.Version.v1dot5, 'http://cyclonedx.org/schema/bom/1.5'],
|
|
4118
|
+
[enums_1.Version.v1dot4, 'http://cyclonedx.org/schema/bom/1.4'],
|
|
4119
|
+
[enums_1.Version.v1dot3, 'http://cyclonedx.org/schema/bom/1.3'],
|
|
4120
|
+
[enums_1.Version.v1dot2, 'http://cyclonedx.org/schema/bom/1.2'],
|
|
4121
|
+
[enums_1.Version.v1dot1, 'http://cyclonedx.org/schema/bom/1.1'],
|
|
4122
|
+
[enums_1.Version.v1dot0, 'http://cyclonedx.org/schema/bom/1.0']
|
|
4118
4123
|
]);
|
|
4119
4124
|
class BaseXmlNormalizer {
|
|
4120
4125
|
constructor(factory) {
|
|
@@ -4236,7 +4241,7 @@ class MetadataNormalizer extends BaseXmlNormalizer {
|
|
|
4236
4241
|
exports.MetadataNormalizer = MetadataNormalizer;
|
|
4237
4242
|
class LifecycleNormalizer extends BaseXmlNormalizer {
|
|
4238
4243
|
normalize(data, options, elementName) {
|
|
4239
|
-
return data instanceof
|
|
4244
|
+
return data instanceof lifecycle_1.NamedLifecycle
|
|
4240
4245
|
? {
|
|
4241
4246
|
type: 'element',
|
|
4242
4247
|
name: elementName,
|
|
@@ -4475,13 +4480,13 @@ class LicenseNormalizer extends BaseXmlNormalizer {
|
|
|
4475
4480
|
}
|
|
4476
4481
|
normalize(data, options) {
|
|
4477
4482
|
switch (true) {
|
|
4478
|
-
case data instanceof
|
|
4483
|
+
case data instanceof license_1.NamedLicense:
|
|
4479
4484
|
return __classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeNamedLicense).call(this, data, options);
|
|
4480
|
-
case data instanceof
|
|
4485
|
+
case data instanceof license_1.SpdxLicense:
|
|
4481
4486
|
return (0, spdx_1.isSupportedSpdxId)(data.id)
|
|
4482
4487
|
? __classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeSpdxLicense).call(this, data, options)
|
|
4483
|
-
: __classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeNamedLicense).call(this, new
|
|
4484
|
-
case data instanceof
|
|
4488
|
+
: __classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeNamedLicense).call(this, new license_1.NamedLicense(data.id, { url: data.url }), options);
|
|
4489
|
+
case data instanceof license_1.LicenseExpression:
|
|
4485
4490
|
return __classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeLicenseExpression).call(this, data);
|
|
4486
4491
|
default:
|
|
4487
4492
|
throw new TypeError('Unexpected LicenseChoice');
|
|
@@ -4492,7 +4497,7 @@ class LicenseNormalizer extends BaseXmlNormalizer {
|
|
|
4492
4497
|
? data.sorted()
|
|
4493
4498
|
: Array.from(data);
|
|
4494
4499
|
if (licenses.length > 1) {
|
|
4495
|
-
const expressions = licenses.filter(l => l instanceof
|
|
4500
|
+
const expressions = licenses.filter(l => l instanceof license_1.LicenseExpression);
|
|
4496
4501
|
if (expressions.length > 0) {
|
|
4497
4502
|
return [__classPrivateFieldGet(this, _LicenseNormalizer_instances, "m", _LicenseNormalizer_normalizeLicenseExpression).call(this, expressions[0])];
|
|
4498
4503
|
}
|
|
@@ -4953,9 +4958,9 @@ class VulnerabilityAffectedVersionNormalizer extends BaseXmlNormalizer {
|
|
|
4953
4958
|
}
|
|
4954
4959
|
normalize(data, options, elementName) {
|
|
4955
4960
|
switch (true) {
|
|
4956
|
-
case data instanceof
|
|
4961
|
+
case data instanceof affect_1.AffectedSingleVersion:
|
|
4957
4962
|
return __classPrivateFieldGet(this, _VulnerabilityAffectedVersionNormalizer_instances, "m", _VulnerabilityAffectedVersionNormalizer_normalizeAffectedSingleVersion).call(this, data, elementName);
|
|
4958
|
-
case data instanceof
|
|
4963
|
+
case data instanceof affect_1.AffectedVersionRange:
|
|
4959
4964
|
return __classPrivateFieldGet(this, _VulnerabilityAffectedVersionNormalizer_instances, "m", _VulnerabilityAffectedVersionNormalizer_normalizeAffectedVersionRange).call(this, data, elementName);
|
|
4960
4965
|
default:
|
|
4961
4966
|
throw new TypeError('Unexpected Vulnerability AffectedVersion');
|
|
@@ -5118,12 +5123,13 @@ var __classPrivateFieldGet = (this && this.__classPrivateFieldGet) || function (
|
|
|
5118
5123
|
var _XmlBaseSerializer_normalizerFactory;
|
|
5119
5124
|
Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
5120
5125
|
exports.XmlBaseSerializer = void 0;
|
|
5121
|
-
const
|
|
5126
|
+
const enums_1 = __webpack_require__(/*! ../spec/enums */ "./src/spec/enums.ts");
|
|
5127
|
+
const errors_1 = __webpack_require__(/*! ../spec/errors */ "./src/spec/errors.ts");
|
|
5122
5128
|
const baseSerializer_1 = __webpack_require__(/*! ./baseSerializer */ "./src/serialize/baseSerializer.ts");
|
|
5123
5129
|
class XmlBaseSerializer extends baseSerializer_1.BaseSerializer {
|
|
5124
5130
|
constructor(normalizerFactory) {
|
|
5125
|
-
if (!normalizerFactory.spec.supportsFormat(
|
|
5126
|
-
throw new
|
|
5131
|
+
if (!normalizerFactory.spec.supportsFormat(enums_1.Format.XML)) {
|
|
5132
|
+
throw new errors_1.UnsupportedFormatError('Spec does not support XML format.');
|
|
5127
5133
|
}
|
|
5128
5134
|
super();
|
|
5129
5135
|
_XmlBaseSerializer_normalizerFactory.set(this, void 0);
|
|
@@ -5459,309 +5465,312 @@ Copyright (c) OWASP Foundation. All Rights Reserved.
|
|
|
5459
5465
|
*/
|
|
5460
5466
|
Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
5461
5467
|
exports.SpecVersionDict = exports.Spec1dot6 = exports.Spec1dot5 = exports.Spec1dot4 = exports.Spec1dot3 = exports.Spec1dot2 = void 0;
|
|
5462
|
-
const
|
|
5468
|
+
const componentType_1 = __webpack_require__(/*! ../enums/componentType */ "./src/enums/componentType.ts");
|
|
5469
|
+
const externalReferenceType_1 = __webpack_require__(/*! ../enums/externalReferenceType */ "./src/enums/externalReferenceType.ts");
|
|
5470
|
+
const hashAlogorithm_1 = __webpack_require__(/*! ../enums/hashAlogorithm */ "./src/enums/hashAlogorithm.ts");
|
|
5471
|
+
const ratingMethod_1 = __webpack_require__(/*! ../enums/vulnerability/ratingMethod */ "./src/enums/vulnerability/ratingMethod.ts");
|
|
5463
5472
|
const _protocol_1 = __webpack_require__(/*! ./_protocol */ "./src/spec/_protocol.ts");
|
|
5464
|
-
const
|
|
5465
|
-
exports.Spec1dot2 = Object.freeze(new _protocol_1._Spec(
|
|
5466
|
-
|
|
5467
|
-
|
|
5473
|
+
const enums_1 = __webpack_require__(/*! ./enums */ "./src/spec/enums.ts");
|
|
5474
|
+
exports.Spec1dot2 = Object.freeze(new _protocol_1._Spec(enums_1.Version.v1dot2, [
|
|
5475
|
+
enums_1.Format.XML,
|
|
5476
|
+
enums_1.Format.JSON
|
|
5468
5477
|
], [
|
|
5469
|
-
|
|
5470
|
-
|
|
5471
|
-
|
|
5472
|
-
|
|
5473
|
-
|
|
5474
|
-
|
|
5475
|
-
|
|
5476
|
-
|
|
5478
|
+
componentType_1.ComponentType.Application,
|
|
5479
|
+
componentType_1.ComponentType.Framework,
|
|
5480
|
+
componentType_1.ComponentType.Library,
|
|
5481
|
+
componentType_1.ComponentType.Container,
|
|
5482
|
+
componentType_1.ComponentType.OperatingSystem,
|
|
5483
|
+
componentType_1.ComponentType.Device,
|
|
5484
|
+
componentType_1.ComponentType.Firmware,
|
|
5485
|
+
componentType_1.ComponentType.File
|
|
5477
5486
|
], [
|
|
5478
|
-
|
|
5479
|
-
|
|
5480
|
-
|
|
5481
|
-
|
|
5482
|
-
|
|
5483
|
-
|
|
5484
|
-
|
|
5485
|
-
|
|
5486
|
-
|
|
5487
|
-
|
|
5488
|
-
|
|
5489
|
-
|
|
5487
|
+
hashAlogorithm_1.HashAlgorithm.MD5,
|
|
5488
|
+
hashAlogorithm_1.HashAlgorithm['SHA-1'],
|
|
5489
|
+
hashAlogorithm_1.HashAlgorithm['SHA-256'],
|
|
5490
|
+
hashAlogorithm_1.HashAlgorithm['SHA-384'],
|
|
5491
|
+
hashAlogorithm_1.HashAlgorithm['SHA-512'],
|
|
5492
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-256'],
|
|
5493
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-384'],
|
|
5494
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-512'],
|
|
5495
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-256'],
|
|
5496
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-384'],
|
|
5497
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-512'],
|
|
5498
|
+
hashAlogorithm_1.HashAlgorithm.BLAKE3
|
|
5490
5499
|
], /^([a-fA-F0-9]{32})$|^([a-fA-F0-9]{40})$|^([a-fA-F0-9]{64})$|^([a-fA-F0-9]{96})$|^([a-fA-F0-9]{128})$/, [
|
|
5491
|
-
|
|
5492
|
-
|
|
5493
|
-
|
|
5494
|
-
|
|
5495
|
-
|
|
5496
|
-
|
|
5497
|
-
|
|
5498
|
-
|
|
5499
|
-
|
|
5500
|
-
|
|
5501
|
-
|
|
5502
|
-
|
|
5503
|
-
|
|
5504
|
-
|
|
5505
|
-
|
|
5500
|
+
externalReferenceType_1.ExternalReferenceType.VCS,
|
|
5501
|
+
externalReferenceType_1.ExternalReferenceType.IssueTracker,
|
|
5502
|
+
externalReferenceType_1.ExternalReferenceType.Website,
|
|
5503
|
+
externalReferenceType_1.ExternalReferenceType.Advisories,
|
|
5504
|
+
externalReferenceType_1.ExternalReferenceType.BOM,
|
|
5505
|
+
externalReferenceType_1.ExternalReferenceType.MailingList,
|
|
5506
|
+
externalReferenceType_1.ExternalReferenceType.Social,
|
|
5507
|
+
externalReferenceType_1.ExternalReferenceType.Chat,
|
|
5508
|
+
externalReferenceType_1.ExternalReferenceType.Documentation,
|
|
5509
|
+
externalReferenceType_1.ExternalReferenceType.Support,
|
|
5510
|
+
externalReferenceType_1.ExternalReferenceType.Distribution,
|
|
5511
|
+
externalReferenceType_1.ExternalReferenceType.License,
|
|
5512
|
+
externalReferenceType_1.ExternalReferenceType.BuildMeta,
|
|
5513
|
+
externalReferenceType_1.ExternalReferenceType.BuildSystem,
|
|
5514
|
+
externalReferenceType_1.ExternalReferenceType.Other
|
|
5506
5515
|
], true, false, true, false, false, [], false, false, false, false, false, false));
|
|
5507
|
-
exports.Spec1dot3 = Object.freeze(new _protocol_1._Spec(
|
|
5508
|
-
|
|
5509
|
-
|
|
5516
|
+
exports.Spec1dot3 = Object.freeze(new _protocol_1._Spec(enums_1.Version.v1dot3, [
|
|
5517
|
+
enums_1.Format.XML,
|
|
5518
|
+
enums_1.Format.JSON
|
|
5510
5519
|
], [
|
|
5511
|
-
|
|
5512
|
-
|
|
5513
|
-
|
|
5514
|
-
|
|
5515
|
-
|
|
5516
|
-
|
|
5517
|
-
|
|
5518
|
-
|
|
5520
|
+
componentType_1.ComponentType.Application,
|
|
5521
|
+
componentType_1.ComponentType.Framework,
|
|
5522
|
+
componentType_1.ComponentType.Library,
|
|
5523
|
+
componentType_1.ComponentType.Container,
|
|
5524
|
+
componentType_1.ComponentType.OperatingSystem,
|
|
5525
|
+
componentType_1.ComponentType.Device,
|
|
5526
|
+
componentType_1.ComponentType.Firmware,
|
|
5527
|
+
componentType_1.ComponentType.File
|
|
5519
5528
|
], [
|
|
5520
|
-
|
|
5521
|
-
|
|
5522
|
-
|
|
5523
|
-
|
|
5524
|
-
|
|
5525
|
-
|
|
5526
|
-
|
|
5527
|
-
|
|
5528
|
-
|
|
5529
|
-
|
|
5530
|
-
|
|
5531
|
-
|
|
5529
|
+
hashAlogorithm_1.HashAlgorithm.MD5,
|
|
5530
|
+
hashAlogorithm_1.HashAlgorithm['SHA-1'],
|
|
5531
|
+
hashAlogorithm_1.HashAlgorithm['SHA-256'],
|
|
5532
|
+
hashAlogorithm_1.HashAlgorithm['SHA-384'],
|
|
5533
|
+
hashAlogorithm_1.HashAlgorithm['SHA-512'],
|
|
5534
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-256'],
|
|
5535
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-384'],
|
|
5536
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-512'],
|
|
5537
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-256'],
|
|
5538
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-384'],
|
|
5539
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-512'],
|
|
5540
|
+
hashAlogorithm_1.HashAlgorithm.BLAKE3
|
|
5532
5541
|
], /^([a-fA-F0-9]{32})$|^([a-fA-F0-9]{40})$|^([a-fA-F0-9]{64})$|^([a-fA-F0-9]{96})$|^([a-fA-F0-9]{128})$/, [
|
|
5533
|
-
|
|
5534
|
-
|
|
5535
|
-
|
|
5536
|
-
|
|
5537
|
-
|
|
5538
|
-
|
|
5539
|
-
|
|
5540
|
-
|
|
5541
|
-
|
|
5542
|
-
|
|
5543
|
-
|
|
5544
|
-
|
|
5545
|
-
|
|
5546
|
-
|
|
5547
|
-
|
|
5542
|
+
externalReferenceType_1.ExternalReferenceType.VCS,
|
|
5543
|
+
externalReferenceType_1.ExternalReferenceType.IssueTracker,
|
|
5544
|
+
externalReferenceType_1.ExternalReferenceType.Website,
|
|
5545
|
+
externalReferenceType_1.ExternalReferenceType.Advisories,
|
|
5546
|
+
externalReferenceType_1.ExternalReferenceType.BOM,
|
|
5547
|
+
externalReferenceType_1.ExternalReferenceType.MailingList,
|
|
5548
|
+
externalReferenceType_1.ExternalReferenceType.Social,
|
|
5549
|
+
externalReferenceType_1.ExternalReferenceType.Chat,
|
|
5550
|
+
externalReferenceType_1.ExternalReferenceType.Documentation,
|
|
5551
|
+
externalReferenceType_1.ExternalReferenceType.Support,
|
|
5552
|
+
externalReferenceType_1.ExternalReferenceType.Distribution,
|
|
5553
|
+
externalReferenceType_1.ExternalReferenceType.License,
|
|
5554
|
+
externalReferenceType_1.ExternalReferenceType.BuildMeta,
|
|
5555
|
+
externalReferenceType_1.ExternalReferenceType.BuildSystem,
|
|
5556
|
+
externalReferenceType_1.ExternalReferenceType.Other
|
|
5548
5557
|
], true, false, true, true, false, [], true, false, true, true, true, false));
|
|
5549
|
-
exports.Spec1dot4 = Object.freeze(new _protocol_1._Spec(
|
|
5550
|
-
|
|
5551
|
-
|
|
5558
|
+
exports.Spec1dot4 = Object.freeze(new _protocol_1._Spec(enums_1.Version.v1dot4, [
|
|
5559
|
+
enums_1.Format.XML,
|
|
5560
|
+
enums_1.Format.JSON
|
|
5552
5561
|
], [
|
|
5553
|
-
|
|
5554
|
-
|
|
5555
|
-
|
|
5556
|
-
|
|
5557
|
-
|
|
5558
|
-
|
|
5559
|
-
|
|
5560
|
-
|
|
5562
|
+
componentType_1.ComponentType.Application,
|
|
5563
|
+
componentType_1.ComponentType.Framework,
|
|
5564
|
+
componentType_1.ComponentType.Library,
|
|
5565
|
+
componentType_1.ComponentType.Container,
|
|
5566
|
+
componentType_1.ComponentType.OperatingSystem,
|
|
5567
|
+
componentType_1.ComponentType.Device,
|
|
5568
|
+
componentType_1.ComponentType.Firmware,
|
|
5569
|
+
componentType_1.ComponentType.File
|
|
5561
5570
|
], [
|
|
5562
|
-
|
|
5563
|
-
|
|
5564
|
-
|
|
5565
|
-
|
|
5566
|
-
|
|
5567
|
-
|
|
5568
|
-
|
|
5569
|
-
|
|
5570
|
-
|
|
5571
|
-
|
|
5572
|
-
|
|
5573
|
-
|
|
5571
|
+
hashAlogorithm_1.HashAlgorithm.MD5,
|
|
5572
|
+
hashAlogorithm_1.HashAlgorithm['SHA-1'],
|
|
5573
|
+
hashAlogorithm_1.HashAlgorithm['SHA-256'],
|
|
5574
|
+
hashAlogorithm_1.HashAlgorithm['SHA-384'],
|
|
5575
|
+
hashAlogorithm_1.HashAlgorithm['SHA-512'],
|
|
5576
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-256'],
|
|
5577
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-384'],
|
|
5578
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-512'],
|
|
5579
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-256'],
|
|
5580
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-384'],
|
|
5581
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-512'],
|
|
5582
|
+
hashAlogorithm_1.HashAlgorithm.BLAKE3
|
|
5574
5583
|
], /^([a-fA-F0-9]{32})$|^([a-fA-F0-9]{40})$|^([a-fA-F0-9]{64})$|^([a-fA-F0-9]{96})$|^([a-fA-F0-9]{128})$/, [
|
|
5575
|
-
|
|
5576
|
-
|
|
5577
|
-
|
|
5578
|
-
|
|
5579
|
-
|
|
5580
|
-
|
|
5581
|
-
|
|
5582
|
-
|
|
5583
|
-
|
|
5584
|
-
|
|
5585
|
-
|
|
5586
|
-
|
|
5587
|
-
|
|
5588
|
-
|
|
5589
|
-
|
|
5590
|
-
|
|
5584
|
+
externalReferenceType_1.ExternalReferenceType.VCS,
|
|
5585
|
+
externalReferenceType_1.ExternalReferenceType.IssueTracker,
|
|
5586
|
+
externalReferenceType_1.ExternalReferenceType.Website,
|
|
5587
|
+
externalReferenceType_1.ExternalReferenceType.Advisories,
|
|
5588
|
+
externalReferenceType_1.ExternalReferenceType.BOM,
|
|
5589
|
+
externalReferenceType_1.ExternalReferenceType.MailingList,
|
|
5590
|
+
externalReferenceType_1.ExternalReferenceType.Social,
|
|
5591
|
+
externalReferenceType_1.ExternalReferenceType.Chat,
|
|
5592
|
+
externalReferenceType_1.ExternalReferenceType.Documentation,
|
|
5593
|
+
externalReferenceType_1.ExternalReferenceType.Support,
|
|
5594
|
+
externalReferenceType_1.ExternalReferenceType.Distribution,
|
|
5595
|
+
externalReferenceType_1.ExternalReferenceType.License,
|
|
5596
|
+
externalReferenceType_1.ExternalReferenceType.BuildMeta,
|
|
5597
|
+
externalReferenceType_1.ExternalReferenceType.BuildSystem,
|
|
5598
|
+
externalReferenceType_1.ExternalReferenceType.ReleaseNotes,
|
|
5599
|
+
externalReferenceType_1.ExternalReferenceType.Other
|
|
5591
5600
|
], true, true, false, true, true, [
|
|
5592
|
-
|
|
5593
|
-
|
|
5594
|
-
|
|
5595
|
-
|
|
5596
|
-
|
|
5601
|
+
ratingMethod_1.RatingMethod.CVSSv2,
|
|
5602
|
+
ratingMethod_1.RatingMethod.CVSSv3,
|
|
5603
|
+
ratingMethod_1.RatingMethod.CVSSv31,
|
|
5604
|
+
ratingMethod_1.RatingMethod.OWASP,
|
|
5605
|
+
ratingMethod_1.RatingMethod.Other
|
|
5597
5606
|
], true, false, true, true, true, false));
|
|
5598
|
-
exports.Spec1dot5 = Object.freeze(new _protocol_1._Spec(
|
|
5599
|
-
|
|
5600
|
-
|
|
5607
|
+
exports.Spec1dot5 = Object.freeze(new _protocol_1._Spec(enums_1.Version.v1dot5, [
|
|
5608
|
+
enums_1.Format.XML,
|
|
5609
|
+
enums_1.Format.JSON
|
|
5601
5610
|
], [
|
|
5602
|
-
|
|
5603
|
-
|
|
5604
|
-
|
|
5605
|
-
|
|
5606
|
-
|
|
5607
|
-
|
|
5608
|
-
|
|
5609
|
-
|
|
5610
|
-
|
|
5611
|
-
|
|
5612
|
-
|
|
5613
|
-
|
|
5611
|
+
componentType_1.ComponentType.Application,
|
|
5612
|
+
componentType_1.ComponentType.Framework,
|
|
5613
|
+
componentType_1.ComponentType.Library,
|
|
5614
|
+
componentType_1.ComponentType.Container,
|
|
5615
|
+
componentType_1.ComponentType.Platform,
|
|
5616
|
+
componentType_1.ComponentType.OperatingSystem,
|
|
5617
|
+
componentType_1.ComponentType.Device,
|
|
5618
|
+
componentType_1.ComponentType.DeviceDriver,
|
|
5619
|
+
componentType_1.ComponentType.Firmware,
|
|
5620
|
+
componentType_1.ComponentType.File,
|
|
5621
|
+
componentType_1.ComponentType.MachineLearningModel,
|
|
5622
|
+
componentType_1.ComponentType.Data
|
|
5614
5623
|
], [
|
|
5615
|
-
|
|
5616
|
-
|
|
5617
|
-
|
|
5618
|
-
|
|
5619
|
-
|
|
5620
|
-
|
|
5621
|
-
|
|
5622
|
-
|
|
5623
|
-
|
|
5624
|
-
|
|
5625
|
-
|
|
5626
|
-
|
|
5624
|
+
hashAlogorithm_1.HashAlgorithm.MD5,
|
|
5625
|
+
hashAlogorithm_1.HashAlgorithm['SHA-1'],
|
|
5626
|
+
hashAlogorithm_1.HashAlgorithm['SHA-256'],
|
|
5627
|
+
hashAlogorithm_1.HashAlgorithm['SHA-384'],
|
|
5628
|
+
hashAlogorithm_1.HashAlgorithm['SHA-512'],
|
|
5629
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-256'],
|
|
5630
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-384'],
|
|
5631
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-512'],
|
|
5632
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-256'],
|
|
5633
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-384'],
|
|
5634
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-512'],
|
|
5635
|
+
hashAlogorithm_1.HashAlgorithm.BLAKE3
|
|
5627
5636
|
], /^([a-fA-F0-9]{32})$|^([a-fA-F0-9]{40})$|^([a-fA-F0-9]{64})$|^([a-fA-F0-9]{96})$|^([a-fA-F0-9]{128})$/, [
|
|
5628
|
-
|
|
5629
|
-
|
|
5630
|
-
|
|
5631
|
-
|
|
5632
|
-
|
|
5633
|
-
|
|
5634
|
-
|
|
5635
|
-
|
|
5636
|
-
|
|
5637
|
-
|
|
5638
|
-
|
|
5639
|
-
|
|
5640
|
-
|
|
5641
|
-
|
|
5642
|
-
|
|
5643
|
-
|
|
5644
|
-
|
|
5645
|
-
|
|
5646
|
-
|
|
5647
|
-
|
|
5648
|
-
|
|
5649
|
-
|
|
5650
|
-
|
|
5651
|
-
|
|
5652
|
-
|
|
5653
|
-
|
|
5654
|
-
|
|
5655
|
-
|
|
5656
|
-
|
|
5657
|
-
|
|
5658
|
-
|
|
5659
|
-
|
|
5660
|
-
|
|
5661
|
-
|
|
5662
|
-
|
|
5663
|
-
|
|
5664
|
-
|
|
5665
|
-
|
|
5666
|
-
|
|
5637
|
+
externalReferenceType_1.ExternalReferenceType.VCS,
|
|
5638
|
+
externalReferenceType_1.ExternalReferenceType.IssueTracker,
|
|
5639
|
+
externalReferenceType_1.ExternalReferenceType.Website,
|
|
5640
|
+
externalReferenceType_1.ExternalReferenceType.Advisories,
|
|
5641
|
+
externalReferenceType_1.ExternalReferenceType.BOM,
|
|
5642
|
+
externalReferenceType_1.ExternalReferenceType.MailingList,
|
|
5643
|
+
externalReferenceType_1.ExternalReferenceType.Social,
|
|
5644
|
+
externalReferenceType_1.ExternalReferenceType.Chat,
|
|
5645
|
+
externalReferenceType_1.ExternalReferenceType.Documentation,
|
|
5646
|
+
externalReferenceType_1.ExternalReferenceType.Support,
|
|
5647
|
+
externalReferenceType_1.ExternalReferenceType.Distribution,
|
|
5648
|
+
externalReferenceType_1.ExternalReferenceType.DistributionIntake,
|
|
5649
|
+
externalReferenceType_1.ExternalReferenceType.License,
|
|
5650
|
+
externalReferenceType_1.ExternalReferenceType.BuildMeta,
|
|
5651
|
+
externalReferenceType_1.ExternalReferenceType.BuildSystem,
|
|
5652
|
+
externalReferenceType_1.ExternalReferenceType.ReleaseNotes,
|
|
5653
|
+
externalReferenceType_1.ExternalReferenceType.SecurityContact,
|
|
5654
|
+
externalReferenceType_1.ExternalReferenceType.ModelCard,
|
|
5655
|
+
externalReferenceType_1.ExternalReferenceType.Log,
|
|
5656
|
+
externalReferenceType_1.ExternalReferenceType.Configuration,
|
|
5657
|
+
externalReferenceType_1.ExternalReferenceType.Evidence,
|
|
5658
|
+
externalReferenceType_1.ExternalReferenceType.Formulation,
|
|
5659
|
+
externalReferenceType_1.ExternalReferenceType.Attestation,
|
|
5660
|
+
externalReferenceType_1.ExternalReferenceType.ThreatModel,
|
|
5661
|
+
externalReferenceType_1.ExternalReferenceType.AdversaryModel,
|
|
5662
|
+
externalReferenceType_1.ExternalReferenceType.RiskAssessment,
|
|
5663
|
+
externalReferenceType_1.ExternalReferenceType.VulnerabilityAssertion,
|
|
5664
|
+
externalReferenceType_1.ExternalReferenceType.ExploitabilityStatement,
|
|
5665
|
+
externalReferenceType_1.ExternalReferenceType.PentestReport,
|
|
5666
|
+
externalReferenceType_1.ExternalReferenceType.StaticAnalysisReport,
|
|
5667
|
+
externalReferenceType_1.ExternalReferenceType.DynamicAnalysisReport,
|
|
5668
|
+
externalReferenceType_1.ExternalReferenceType.RuntimeAnalysisReport,
|
|
5669
|
+
externalReferenceType_1.ExternalReferenceType.ComponentAnalysisReport,
|
|
5670
|
+
externalReferenceType_1.ExternalReferenceType.MaturityReport,
|
|
5671
|
+
externalReferenceType_1.ExternalReferenceType.CertificationReport,
|
|
5672
|
+
externalReferenceType_1.ExternalReferenceType.CodifiedInfrastructure,
|
|
5673
|
+
externalReferenceType_1.ExternalReferenceType.QualityMetrics,
|
|
5674
|
+
externalReferenceType_1.ExternalReferenceType.POAM,
|
|
5675
|
+
externalReferenceType_1.ExternalReferenceType.Other
|
|
5667
5676
|
], true, true, false, true, true, [
|
|
5668
|
-
|
|
5669
|
-
|
|
5670
|
-
|
|
5671
|
-
|
|
5672
|
-
|
|
5673
|
-
|
|
5674
|
-
|
|
5677
|
+
ratingMethod_1.RatingMethod.CVSSv2,
|
|
5678
|
+
ratingMethod_1.RatingMethod.CVSSv3,
|
|
5679
|
+
ratingMethod_1.RatingMethod.CVSSv31,
|
|
5680
|
+
ratingMethod_1.RatingMethod.CVSSv4,
|
|
5681
|
+
ratingMethod_1.RatingMethod.OWASP,
|
|
5682
|
+
ratingMethod_1.RatingMethod.SSVC,
|
|
5683
|
+
ratingMethod_1.RatingMethod.Other
|
|
5675
5684
|
], true, true, true, true, true, false));
|
|
5676
|
-
exports.Spec1dot6 = Object.freeze(new _protocol_1._Spec(
|
|
5677
|
-
|
|
5678
|
-
|
|
5685
|
+
exports.Spec1dot6 = Object.freeze(new _protocol_1._Spec(enums_1.Version.v1dot6, [
|
|
5686
|
+
enums_1.Format.XML,
|
|
5687
|
+
enums_1.Format.JSON
|
|
5679
5688
|
], [
|
|
5680
|
-
|
|
5681
|
-
|
|
5682
|
-
|
|
5683
|
-
|
|
5684
|
-
|
|
5685
|
-
|
|
5686
|
-
|
|
5687
|
-
|
|
5688
|
-
|
|
5689
|
-
|
|
5690
|
-
|
|
5691
|
-
|
|
5692
|
-
|
|
5689
|
+
componentType_1.ComponentType.Application,
|
|
5690
|
+
componentType_1.ComponentType.Framework,
|
|
5691
|
+
componentType_1.ComponentType.Library,
|
|
5692
|
+
componentType_1.ComponentType.Container,
|
|
5693
|
+
componentType_1.ComponentType.Platform,
|
|
5694
|
+
componentType_1.ComponentType.OperatingSystem,
|
|
5695
|
+
componentType_1.ComponentType.Device,
|
|
5696
|
+
componentType_1.ComponentType.DeviceDriver,
|
|
5697
|
+
componentType_1.ComponentType.Firmware,
|
|
5698
|
+
componentType_1.ComponentType.File,
|
|
5699
|
+
componentType_1.ComponentType.MachineLearningModel,
|
|
5700
|
+
componentType_1.ComponentType.Data,
|
|
5701
|
+
componentType_1.ComponentType.CryptographicAsset
|
|
5693
5702
|
], [
|
|
5694
|
-
|
|
5695
|
-
|
|
5696
|
-
|
|
5697
|
-
|
|
5698
|
-
|
|
5699
|
-
|
|
5700
|
-
|
|
5701
|
-
|
|
5702
|
-
|
|
5703
|
-
|
|
5704
|
-
|
|
5705
|
-
|
|
5703
|
+
hashAlogorithm_1.HashAlgorithm.MD5,
|
|
5704
|
+
hashAlogorithm_1.HashAlgorithm['SHA-1'],
|
|
5705
|
+
hashAlogorithm_1.HashAlgorithm['SHA-256'],
|
|
5706
|
+
hashAlogorithm_1.HashAlgorithm['SHA-384'],
|
|
5707
|
+
hashAlogorithm_1.HashAlgorithm['SHA-512'],
|
|
5708
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-256'],
|
|
5709
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-384'],
|
|
5710
|
+
hashAlogorithm_1.HashAlgorithm['SHA3-512'],
|
|
5711
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-256'],
|
|
5712
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-384'],
|
|
5713
|
+
hashAlogorithm_1.HashAlgorithm['BLAKE2b-512'],
|
|
5714
|
+
hashAlogorithm_1.HashAlgorithm.BLAKE3
|
|
5706
5715
|
], /^([a-fA-F0-9]{32})$|^([a-fA-F0-9]{40})$|^([a-fA-F0-9]{64})$|^([a-fA-F0-9]{96})$|^([a-fA-F0-9]{128})$/, [
|
|
5707
|
-
|
|
5708
|
-
|
|
5709
|
-
|
|
5710
|
-
|
|
5711
|
-
|
|
5712
|
-
|
|
5713
|
-
|
|
5714
|
-
|
|
5715
|
-
|
|
5716
|
-
|
|
5717
|
-
|
|
5718
|
-
|
|
5719
|
-
|
|
5720
|
-
|
|
5721
|
-
|
|
5722
|
-
|
|
5723
|
-
|
|
5724
|
-
|
|
5725
|
-
|
|
5726
|
-
|
|
5727
|
-
|
|
5728
|
-
|
|
5729
|
-
|
|
5730
|
-
|
|
5731
|
-
|
|
5732
|
-
|
|
5733
|
-
|
|
5734
|
-
|
|
5735
|
-
|
|
5736
|
-
|
|
5737
|
-
|
|
5738
|
-
|
|
5739
|
-
|
|
5740
|
-
|
|
5741
|
-
|
|
5742
|
-
|
|
5743
|
-
|
|
5744
|
-
|
|
5745
|
-
|
|
5746
|
-
|
|
5747
|
-
|
|
5748
|
-
|
|
5749
|
-
|
|
5716
|
+
externalReferenceType_1.ExternalReferenceType.VCS,
|
|
5717
|
+
externalReferenceType_1.ExternalReferenceType.IssueTracker,
|
|
5718
|
+
externalReferenceType_1.ExternalReferenceType.Website,
|
|
5719
|
+
externalReferenceType_1.ExternalReferenceType.Advisories,
|
|
5720
|
+
externalReferenceType_1.ExternalReferenceType.BOM,
|
|
5721
|
+
externalReferenceType_1.ExternalReferenceType.MailingList,
|
|
5722
|
+
externalReferenceType_1.ExternalReferenceType.Social,
|
|
5723
|
+
externalReferenceType_1.ExternalReferenceType.Chat,
|
|
5724
|
+
externalReferenceType_1.ExternalReferenceType.Documentation,
|
|
5725
|
+
externalReferenceType_1.ExternalReferenceType.Support,
|
|
5726
|
+
externalReferenceType_1.ExternalReferenceType.SourceDistribution,
|
|
5727
|
+
externalReferenceType_1.ExternalReferenceType.Distribution,
|
|
5728
|
+
externalReferenceType_1.ExternalReferenceType.DistributionIntake,
|
|
5729
|
+
externalReferenceType_1.ExternalReferenceType.License,
|
|
5730
|
+
externalReferenceType_1.ExternalReferenceType.BuildMeta,
|
|
5731
|
+
externalReferenceType_1.ExternalReferenceType.BuildSystem,
|
|
5732
|
+
externalReferenceType_1.ExternalReferenceType.ReleaseNotes,
|
|
5733
|
+
externalReferenceType_1.ExternalReferenceType.SecurityContact,
|
|
5734
|
+
externalReferenceType_1.ExternalReferenceType.ModelCard,
|
|
5735
|
+
externalReferenceType_1.ExternalReferenceType.Log,
|
|
5736
|
+
externalReferenceType_1.ExternalReferenceType.Configuration,
|
|
5737
|
+
externalReferenceType_1.ExternalReferenceType.Evidence,
|
|
5738
|
+
externalReferenceType_1.ExternalReferenceType.Formulation,
|
|
5739
|
+
externalReferenceType_1.ExternalReferenceType.Attestation,
|
|
5740
|
+
externalReferenceType_1.ExternalReferenceType.ThreatModel,
|
|
5741
|
+
externalReferenceType_1.ExternalReferenceType.AdversaryModel,
|
|
5742
|
+
externalReferenceType_1.ExternalReferenceType.RiskAssessment,
|
|
5743
|
+
externalReferenceType_1.ExternalReferenceType.VulnerabilityAssertion,
|
|
5744
|
+
externalReferenceType_1.ExternalReferenceType.ExploitabilityStatement,
|
|
5745
|
+
externalReferenceType_1.ExternalReferenceType.PentestReport,
|
|
5746
|
+
externalReferenceType_1.ExternalReferenceType.StaticAnalysisReport,
|
|
5747
|
+
externalReferenceType_1.ExternalReferenceType.DynamicAnalysisReport,
|
|
5748
|
+
externalReferenceType_1.ExternalReferenceType.RuntimeAnalysisReport,
|
|
5749
|
+
externalReferenceType_1.ExternalReferenceType.ComponentAnalysisReport,
|
|
5750
|
+
externalReferenceType_1.ExternalReferenceType.MaturityReport,
|
|
5751
|
+
externalReferenceType_1.ExternalReferenceType.CertificationReport,
|
|
5752
|
+
externalReferenceType_1.ExternalReferenceType.CodifiedInfrastructure,
|
|
5753
|
+
externalReferenceType_1.ExternalReferenceType.QualityMetrics,
|
|
5754
|
+
externalReferenceType_1.ExternalReferenceType.POAM,
|
|
5755
|
+
externalReferenceType_1.ExternalReferenceType.ElectronicSignature,
|
|
5756
|
+
externalReferenceType_1.ExternalReferenceType.DigitalSignature,
|
|
5757
|
+
externalReferenceType_1.ExternalReferenceType.RFC9116,
|
|
5758
|
+
externalReferenceType_1.ExternalReferenceType.Other
|
|
5750
5759
|
], true, true, false, true, true, [
|
|
5751
|
-
|
|
5752
|
-
|
|
5753
|
-
|
|
5754
|
-
|
|
5755
|
-
|
|
5756
|
-
|
|
5757
|
-
|
|
5760
|
+
ratingMethod_1.RatingMethod.CVSSv2,
|
|
5761
|
+
ratingMethod_1.RatingMethod.CVSSv3,
|
|
5762
|
+
ratingMethod_1.RatingMethod.CVSSv31,
|
|
5763
|
+
ratingMethod_1.RatingMethod.CVSSv4,
|
|
5764
|
+
ratingMethod_1.RatingMethod.OWASP,
|
|
5765
|
+
ratingMethod_1.RatingMethod.SSVC,
|
|
5766
|
+
ratingMethod_1.RatingMethod.Other
|
|
5758
5767
|
], true, true, true, true, true, true));
|
|
5759
5768
|
exports.SpecVersionDict = Object.freeze({
|
|
5760
|
-
[
|
|
5761
|
-
[
|
|
5762
|
-
[
|
|
5763
|
-
[
|
|
5764
|
-
[
|
|
5769
|
+
[enums_1.Version.v1dot6]: exports.Spec1dot6,
|
|
5770
|
+
[enums_1.Version.v1dot5]: exports.Spec1dot5,
|
|
5771
|
+
[enums_1.Version.v1dot4]: exports.Spec1dot4,
|
|
5772
|
+
[enums_1.Version.v1dot3]: exports.Spec1dot3,
|
|
5773
|
+
[enums_1.Version.v1dot2]: exports.Spec1dot2
|
|
5765
5774
|
});
|
|
5766
5775
|
|
|
5767
5776
|
|
|
@@ -5811,6 +5820,40 @@ var Format;
|
|
|
5811
5820
|
})(Format || (exports.Format = Format = {}));
|
|
5812
5821
|
|
|
5813
5822
|
|
|
5823
|
+
/***/ }),
|
|
5824
|
+
|
|
5825
|
+
/***/ "./src/spec/errors.ts":
|
|
5826
|
+
/*!****************************!*\
|
|
5827
|
+
!*** ./src/spec/errors.ts ***!
|
|
5828
|
+
\****************************/
|
|
5829
|
+
/***/ ((__unused_webpack_module, exports) => {
|
|
5830
|
+
|
|
5831
|
+
|
|
5832
|
+
/*!
|
|
5833
|
+
This file is part of CycloneDX JavaScript Library.
|
|
5834
|
+
|
|
5835
|
+
Licensed under the Apache License, Version 2.0 (the "License");
|
|
5836
|
+
you may not use this file except in compliance with the License.
|
|
5837
|
+
You may obtain a copy of the License at
|
|
5838
|
+
|
|
5839
|
+
http://www.apache.org/licenses/LICENSE-2.0
|
|
5840
|
+
|
|
5841
|
+
Unless required by applicable law or agreed to in writing, software
|
|
5842
|
+
distributed under the License is distributed on an "AS IS" BASIS,
|
|
5843
|
+
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
5844
|
+
See the License for the specific language governing permissions and
|
|
5845
|
+
limitations under the License.
|
|
5846
|
+
|
|
5847
|
+
SPDX-License-Identifier: Apache-2.0
|
|
5848
|
+
Copyright (c) OWASP Foundation. All Rights Reserved.
|
|
5849
|
+
*/
|
|
5850
|
+
Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
5851
|
+
exports.UnsupportedFormatError = void 0;
|
|
5852
|
+
class UnsupportedFormatError extends Error {
|
|
5853
|
+
}
|
|
5854
|
+
exports.UnsupportedFormatError = UnsupportedFormatError;
|
|
5855
|
+
|
|
5856
|
+
|
|
5814
5857
|
/***/ }),
|
|
5815
5858
|
|
|
5816
5859
|
/***/ "./src/spec/index.ts":
|
|
@@ -5853,12 +5896,9 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
|
|
|
5853
5896
|
for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
|
|
5854
5897
|
};
|
|
5855
5898
|
Object.defineProperty(exports, "__esModule", ({ value: true }));
|
|
5856
|
-
exports.UnsupportedFormatError = void 0;
|
|
5857
5899
|
__exportStar(__webpack_require__(/*! ./consts */ "./src/spec/consts.ts"), exports);
|
|
5858
5900
|
__exportStar(__webpack_require__(/*! ./enums */ "./src/spec/enums.ts"), exports);
|
|
5859
|
-
|
|
5860
|
-
}
|
|
5861
|
-
exports.UnsupportedFormatError = UnsupportedFormatError;
|
|
5901
|
+
__exportStar(__webpack_require__(/*! ./errors */ "./src/spec/errors.ts"), exports);
|
|
5862
5902
|
|
|
5863
5903
|
|
|
5864
5904
|
/***/ }),
|