@pactosigna/records 0.1.4 → 0.1.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/cli.js +37 -5
- package/package.json +1 -1
package/dist/cli.js
CHANGED
|
@@ -1996,7 +1996,11 @@ var RiskGapCodeSchema = z29.enum([
|
|
|
1996
1996
|
"unacceptable_no_benefit",
|
|
1997
1997
|
"preliminary_not_analyzed",
|
|
1998
1998
|
"missing_body_rationale",
|
|
1999
|
-
"orphaned_body_section"
|
|
1999
|
+
"orphaned_body_section",
|
|
2000
|
+
"architecture_no_risk_analysis",
|
|
2001
|
+
"security_hazard_no_asset_ref",
|
|
2002
|
+
"high_cia_no_security_hazard",
|
|
2003
|
+
"hazard_no_software_item"
|
|
2000
2004
|
]);
|
|
2001
2005
|
var RiskGapSeveritySchema = z29.enum(["error", "warning"]);
|
|
2002
2006
|
var MitigationSchema = z29.object({
|
|
@@ -2066,7 +2070,9 @@ var HazardSoftwareFrontmatterSchema = z29.object({
|
|
|
2066
2070
|
leads_to: z29.array(z29.string()).optional(),
|
|
2067
2071
|
hazard_category: z29.string().optional(),
|
|
2068
2072
|
detection_score: z29.number().int().min(1).max(5).optional(),
|
|
2069
|
-
detection_method: z29.string().optional()
|
|
2073
|
+
detection_method: z29.string().optional(),
|
|
2074
|
+
/** Reference to the HLD/SDD software item this hazard applies to (IEC 62304 §7.1) */
|
|
2075
|
+
software_item: z29.string().min(1).optional()
|
|
2070
2076
|
});
|
|
2071
2077
|
var HazardSecurityFrontmatterSchema = z29.object({
|
|
2072
2078
|
type: z29.literal("haz_soe_security"),
|
|
@@ -2078,7 +2084,9 @@ var HazardSecurityFrontmatterSchema = z29.object({
|
|
|
2078
2084
|
approvers: z29.array(z29.string()).optional(),
|
|
2079
2085
|
preliminary: z29.boolean().default(false),
|
|
2080
2086
|
leads_to: z29.array(z29.string()).optional(),
|
|
2081
|
-
hazard_category: z29.string().optional()
|
|
2087
|
+
hazard_category: z29.string().optional(),
|
|
2088
|
+
/** Reference to the HLD/SDD software item this security hazard applies to (IEC 62304 §7.1, IEC 81001-5-1) */
|
|
2089
|
+
software_item: z29.string().min(1).optional()
|
|
2082
2090
|
});
|
|
2083
2091
|
var HazardFrontmatterSchema = z29.discriminatedUnion("type", [
|
|
2084
2092
|
HazardSoftwareFrontmatterSchema,
|
|
@@ -2220,6 +2228,22 @@ var SoftwareTestPlanFrontmatterSchema = z52.object({
|
|
|
2220
2228
|
approvers: z52.array(z52.string()).optional()
|
|
2221
2229
|
});
|
|
2222
2230
|
var SoftwareItemTypeSchema = z62.enum(["system", "subsystem", "component", "unit"]);
|
|
2231
|
+
var AssetTypeSchema = z62.enum([
|
|
2232
|
+
"data_store",
|
|
2233
|
+
"api_endpoint",
|
|
2234
|
+
"background_worker",
|
|
2235
|
+
"auth_provider",
|
|
2236
|
+
"external_service",
|
|
2237
|
+
"user_interface",
|
|
2238
|
+
"message_queue",
|
|
2239
|
+
"network_boundary"
|
|
2240
|
+
]);
|
|
2241
|
+
var CiaImpactLevelSchema = z62.enum(["low", "medium", "high"]);
|
|
2242
|
+
var CiaImpactSchema = z62.object({
|
|
2243
|
+
confidentiality: CiaImpactLevelSchema.optional(),
|
|
2244
|
+
integrity: CiaImpactLevelSchema.optional(),
|
|
2245
|
+
availability: CiaImpactLevelSchema.optional()
|
|
2246
|
+
});
|
|
2223
2247
|
var SegregationSchema = z62.object({
|
|
2224
2248
|
mechanism: z62.string().min(1),
|
|
2225
2249
|
rationale: z62.string().min(1)
|
|
@@ -2242,7 +2266,11 @@ var ArchitectureFrontmatterSchema = z62.object({
|
|
|
2242
2266
|
/** Approver list — required for all regulated document types */
|
|
2243
2267
|
approvers: z62.array(z62.string()).min(1),
|
|
2244
2268
|
/** SRS requirement IDs this architecture item implements (IEC 62304 §5.3.1) */
|
|
2245
|
-
implements: z62.array(z62.string().min(1)).optional()
|
|
2269
|
+
implements: z62.array(z62.string().min(1)).optional(),
|
|
2270
|
+
/** IEC 81001-5-1 asset classification for this software item (optional, enables security gap detection) */
|
|
2271
|
+
asset_types: z62.array(AssetTypeSchema).optional(),
|
|
2272
|
+
/** CIA impact assessment — enables automated detection of high-value assets missing security analysis */
|
|
2273
|
+
cia_impact: CiaImpactSchema.optional()
|
|
2246
2274
|
});
|
|
2247
2275
|
var DetailedDesignFrontmatterSchema = z62.object({
|
|
2248
2276
|
id: z62.string().min(1),
|
|
@@ -2262,7 +2290,11 @@ var DetailedDesignFrontmatterSchema = z62.object({
|
|
|
2262
2290
|
/** Approver list — required for all regulated document types */
|
|
2263
2291
|
approvers: z62.array(z62.string()).min(1),
|
|
2264
2292
|
/** SRS requirement IDs this design item implements (IEC 62304 §5.4.2) */
|
|
2265
|
-
implements: z62.array(z62.string().min(1)).optional()
|
|
2293
|
+
implements: z62.array(z62.string().min(1)).optional(),
|
|
2294
|
+
/** IEC 81001-5-1 asset classification for this software item (optional, enables security gap detection) */
|
|
2295
|
+
asset_types: z62.array(AssetTypeSchema).optional(),
|
|
2296
|
+
/** CIA impact assessment — enables automated detection of high-value assets missing security analysis */
|
|
2297
|
+
cia_impact: CiaImpactSchema.optional()
|
|
2266
2298
|
});
|
|
2267
2299
|
var AnomalyCategorySchema = z72.enum([
|
|
2268
2300
|
"bug",
|