@spotify/backstage-plugin-soundcheck-backend-module-github 0.7.4 → 0.7.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (15) hide show
  1. package/CHANGELOG.md +20 -0
  2. package/config.d.ts +11 -1
  3. package/dist/collector/GithubFactCollector.cjs.js +1 -1
  4. package/dist/extractors/BranchRulesFactExtractor.cjs.js +1 -1
  5. package/dist/extractors/CodeScanningAlertsFactExtractor.cjs.js +2 -0
  6. package/dist/extractors/DependabotAlertsFactExtractor.cjs.js +2 -0
  7. package/dist/extractors/SecretScanningAlertsFactExtractor.cjs.js +2 -0
  8. package/dist/extractors/SecurityAdvisoriesFactExtractor.cjs.js +2 -0
  9. package/dist/extractors/config/GithubFactCollectorSchema.cjs.js +1 -1
  10. package/dist/extractors/schema/code_scanning_alerts.json.cjs.js +3 -0
  11. package/dist/extractors/schema/dependabot_alerts.json.cjs.js +2 -0
  12. package/dist/extractors/schema/secret_scanning_alerts.json.cjs.js +2 -0
  13. package/dist/extractors/schema/security_advisories.json.cjs.js +2 -0
  14. package/dist/extractors/utils.cjs.js +1 -1
  15. package/package.json +10 -17
package/CHANGELOG.md CHANGED
@@ -1,5 +1,25 @@
1
1
  # @spotify/backstage-plugin-soundcheck-backend-module-github
2
2
 
3
+ ## 0.7.5
4
+
5
+ ### Patch Changes
6
+
7
+ - Update to Backstage `v1.37.0`
8
+ - Added support for the new GitHub fact types:
9
+
10
+ - Code Scanning Alerts
11
+ - Dependabot Alerts
12
+ - Secret Scanning Alerts
13
+ - Security Advisories
14
+
15
+ - Updated dependencies
16
+ - Updated dependencies
17
+ - Updated dependencies
18
+ - Updated dependencies
19
+ - Updated dependencies
20
+ - @spotify/backstage-plugin-soundcheck-common@0.16.1
21
+ - @spotify/backstage-plugin-soundcheck-node@0.9.5
22
+
3
23
  ## 0.7.4
4
24
 
5
25
  ### Patch Changes
package/config.d.ts CHANGED
@@ -4,6 +4,10 @@ import {
4
4
  ExtractorConfig,
5
5
  } from '@spotify/backstage-plugin-soundcheck-common';
6
6
  import { Duration } from 'luxon';
7
+ import { CodeScanningAlertsExtractorConfig } from './src/extractors/CodeScanningAlertsFactExtractor';
8
+ import { DependabotAlertsExtractorConfig } from './src/extractors/DependabotAlertsFactExtractor';
9
+ import { SecretScanningAlertsExtractorConfig } from './src/extractors/SecretScanningAlertsFactExtractor';
10
+ import { SecurityAdvisoriesExtractorConfig } from './src/extractors/SecurityAdvisoriesFactExtractor';
7
11
 
8
12
  export interface Config {
9
13
  /**
@@ -37,7 +41,13 @@ export interface Config {
37
41
  duration: Duration | HumanDuration;
38
42
  }
39
43
  | boolean;
40
- collects: ExtractorConfig[];
44
+ collects: (
45
+ | ExtractorConfig
46
+ | CodeScanningAlertsExtractorConfig
47
+ | DependabotAlertsExtractorConfig
48
+ | SecretScanningAlertsExtractorConfig
49
+ | SecurityAdvisoriesExtractorConfig
50
+ )[];
41
51
  };
42
52
  };
43
53
  };
package/dist/collector/GithubFactCollector.cjs.js CHANGED
@@ -1,2 +1,2 @@
1
- "use strict";var E=require("@backstage/catalog-model"),g=require("@backstage/integration"),C=require("@octokit/rest"),a=require("@spotify/backstage-plugin-soundcheck-common"),F=require("@spotify/backstage-plugin-soundcheck-node"),v=require("git-url-parse"),S=require("zod-to-json-schema"),b=require("../extractors/BranchProtectionsFactExtractor.cjs.js"),x=require("../extractors/BranchRulesFactExtractor.cjs.js"),R=require("../extractors/config/GithubFactCollectorSchema.cjs.js"),q=require("../extractors/ExtractorService.cjs.js"),D=require("../extractors/helper/BranchHelper.cjs.js"),G=require("../extractors/RepositoryDetailsFactExtractor.cjs.js"),P=require("../extractors/RepositoryLanguagesFactExtractor.cjs.js"),k=require("../extractors/store/GithubExtractorsStore.cjs.js");function d(s){return s&&typeof s=="object"&&"default"in s?s:{default:s}}var U=d(v),w=d(S);class u{static ID="github";#r;#a;#i;#e;#t;static create(r,t,i){return new u(r,t,i)}id=u.ID;name="GitHub";description="Collects facts about your GitHub repositories.";constructor(r,t,i){this.#r=t.child({target:this.id}),this.#a=g.ScmIntegrations.fromConfig(r),this.#i=g.DefaultGithubCredentialsProvider.fromIntegrations(this.#a),this.#e=q.ExtractorService.create({logger:t,cache:i,branchHelper:D.BranchHelper.create(this.#r,i.withOptions({defaultTtl:60*60*1e3})),factories:[b.BranchProtectionsFactExtractor.factory,x.BranchRulesFactExtractor.factory,G.RepositoryDetailsFactExtractor.factory,P.RepositoryLanguagesFactExtractor.factory]}),this.#t=k.GithubExtractorsStore.create(this.#r)}async collect(r,t){const i=t?.factRefs??this.#t.getExtractorConfigs().map(e=>a.getFactRef(this.id,e));return Promise.all(r.filter(e=>a.isScmEntity(e)).map(async e=>{const o=E.stringifyEntityRef(e),l=a.getEntityScmUrl(e),y=U.default(l),f=await this.getOctokit(l);return f?Promise.all(i.map(async n=>{const h=a.parseFactRef(n,{defaultSource:this.id,defaultScope:a.DEFAULT_SCOPE}),p=this.#t.getExtractorConfig(h.name),m=!!t?.refresh?.map(c=>a.stringifyFactRef(c))?.includes(a.stringifyFactRef(n));return this.#e.extract(p,h.scope,y,f,m).then(c=>{if(c!==void 0)return a.buildFact(o,n,c)}).catch(c=>{if(c instanceof F.RateLimitError)throw c;return this.#r.error(`Failed to collect ${a.stringifyFactRef(n)} fact data for ${o} entity: ${c}`),a.buildCollectionError(o,n,c)})})):Promise.resolve()})).then(e=>e.flat().filter(o=>!!o))}async getOctokit(r){try{const{token:t}=await this.#i.getCredentials({url:r}),i=this.#a.github.byUrl(r);return new C.Octokit({auth:t,baseUrl:i?.config.apiBaseUrl})}catch(t){this.#r.warn(`Skipping Github fact collection for url ${r}: ${t}`);return}}async getCollectionConfigs(){return a.buildCollectionConfigs(this.id,this.#t.getExtractorConfigs())}async getFactNames(){const r=this.#e.listFactTypes(),t=this.#t.getExtractorConfigs();return r.flatMap(i=>t.filter(e=>e.type===i).map(e=>e.factName??e.type)??i)}async getDataSchema(r){const t=a.parseFactRef(r,{defaultSource:this.id,defaultScope:a.DEFAULT_SCOPE}),i=this.#t.getExtractorConfigs().find(e=>{const o=a.parseFactRef(a.getFactRef(this.id,e));return t.source===o.source&&t.name===o.name});if(i)return this.#e.getDataSchema(i)}async getConfig(){return this.#t.getConfig()}async setConfig(r){this.#t.setConfig(r)}async getConfigSchema(){return JSON.stringify(w.default(R.GithubFactCollectorSchema))}}exports.GithubFactCollector=u;
1
+ "use strict";var F=require("@backstage/catalog-model"),g=require("@backstage/integration"),S=require("@octokit/rest"),a=require("@spotify/backstage-plugin-soundcheck-common"),m=require("@spotify/backstage-plugin-soundcheck-node"),v=require("git-url-parse"),C=require("zod-to-json-schema"),x=require("../extractors/BranchProtectionsFactExtractor.cjs.js"),b=require("../extractors/BranchRulesFactExtractor.cjs.js"),q=require("../extractors/CodeScanningAlertsFactExtractor.cjs.js"),R=require("../extractors/config/GithubFactCollectorSchema.cjs.js"),D=require("../extractors/DependabotAlertsFactExtractor.cjs.js"),A=require("../extractors/ExtractorService.cjs.js"),G=require("../extractors/helper/BranchHelper.cjs.js"),P=require("../extractors/RepositoryDetailsFactExtractor.cjs.js"),k=require("../extractors/RepositoryLanguagesFactExtractor.cjs.js"),U=require("../extractors/SecretScanningAlertsFactExtractor.cjs.js"),w=require("../extractors/SecurityAdvisoriesFactExtractor.cjs.js"),B=require("../extractors/store/GithubExtractorsStore.cjs.js");function d(s){return s&&typeof s=="object"&&"default"in s?s:{default:s}}var O=d(v),H=d(C);class u{static ID="github";#r;#a;#c;#e;#t;static create(r,t,c){return new u(r,t,c)}id=u.ID;name="GitHub";description="Collects facts about your GitHub repositories.";constructor(r,t,c){this.#r=t.child({target:this.id}),this.#a=g.ScmIntegrations.fromConfig(r),this.#c=g.DefaultGithubCredentialsProvider.fromIntegrations(this.#a),this.#e=A.ExtractorService.create({logger:t,cache:c,branchHelper:G.BranchHelper.create(this.#r,c.withOptions({defaultTtl:60*60*1e3})),factories:[x.BranchProtectionsFactExtractor.factory,b.BranchRulesFactExtractor.factory,q.CodeScanningAlertsFactExtractor.factory,D.DependabotAlertsFactExtractor.factory,P.RepositoryDetailsFactExtractor.factory,k.RepositoryLanguagesFactExtractor.factory,U.SecretScanningAlertsFactExtractor.factory,w.SecurityAdvisoriesFactExtractor.factory]}),this.#t=B.GithubExtractorsStore.create(this.#r)}async collect(r,t){const c=t?.factRefs??this.#t.getExtractorConfigs().map(e=>a.getFactRef(this.id,e));return Promise.all(r.filter(e=>a.isScmEntity(e)).map(async e=>{const o=F.stringifyEntityRef(e),l=a.getEntityScmUrl(e),y=O.default(l),f=await this.getOctokit(l);return f?Promise.all(c.map(async n=>{const h=a.parseFactRef(n,{defaultSource:this.id,defaultScope:a.DEFAULT_SCOPE}),p=this.#t.getExtractorConfig(h.name),E=!!t?.refresh?.map(i=>a.stringifyFactRef(i))?.includes(a.stringifyFactRef(n));return this.#e.extract(p,h.scope,y,f,E).then(i=>{if(i!==void 0)return a.buildFact(o,n,i)}).catch(i=>{if(i instanceof m.RateLimitError)throw i;return this.#r.error(`Failed to collect ${a.stringifyFactRef(n)} fact data for ${o} entity: ${i}`),a.buildCollectionError(o,n,i)})})):Promise.resolve()})).then(e=>e.flat().filter(o=>!!o))}async getOctokit(r){try{const{token:t}=await this.#c.getCredentials({url:r}),c=this.#a.github.byUrl(r);return new S.Octokit({auth:t,baseUrl:c?.config.apiBaseUrl})}catch(t){this.#r.warn(`Skipping Github fact collection for url ${r}: ${t}`);return}}async getCollectionConfigs(){return a.buildCollectionConfigs(this.id,this.#t.getExtractorConfigs())}async getFactNames(){const r=this.#e.listFactTypes(),t=this.#t.getExtractorConfigs();return r.flatMap(c=>t.filter(e=>e.type===c).map(e=>e.factName??e.type)??c)}async getDataSchema(r){const t=a.parseFactRef(r,{defaultSource:this.id,defaultScope:a.DEFAULT_SCOPE}),c=this.#t.getExtractorConfigs().find(e=>{const o=a.parseFactRef(a.getFactRef(this.id,e));return t.source===o.source&&t.name===o.name});if(c)return this.#e.getDataSchema(c)}async getConfig(){return this.#t.getConfig()}async setConfig(r){this.#t.setConfig(r)}async getConfigSchema(){return JSON.stringify(H.default(R.GithubFactCollectorSchema))}}exports.GithubFactCollector=u;
2
2
  //# sourceMappingURL=GithubFactCollector.cjs.js.map
package/dist/extractors/BranchRulesFactExtractor.cjs.js CHANGED
@@ -1,2 +1,2 @@
1
- "use strict";var w=require("@spotify/backstage-plugin-soundcheck-common"),n=require("./helper/util.cjs.js"),y=require("./schema/branch_rules.json.cjs.js"),E=require("./utils.cjs.js");class c{static TYPE="BranchRules";#t;#e;#r;type=c.TYPE;static factory=({logger:r,cache:a,branchHelper:e})=>{const s=new c(r,a,e);return{predicate:o=>o.type===s.type,extractor:s}};constructor(r,a,e){this.#t=r,this.#e=a,this.#r=e}async extract(r,a,e,s,o){const h=[],g={owner:e.owner,repo:e.name,branch:await this.#a(a,e,s)},p=100;let f=0,i=!0;for(;i;){const u=`github:branch_rules:${e.owner}:${e.name}:${a}:${++f}`;try{const t=await s.rest.repos.getBranchRules({...g,per_page:p,page:f,headers:o?void 0:await E.getCacheHeader(this.#e,u)});t.headers?.link?.includes('rel="next"')||(i=!1),await this.#e.set(u,{etag:t.headers?.etag,lastModified:t.headers?.date,hasNext:i,data:t.data}),h.push(...t.data)}catch(t){if(n.isNotModifiedError(t)){const d=await this.#e.get(u);if(d){h.push(...d.data),i=d.hasNext;continue}else return}if(n.isNotFoundError(t))return{rules:[]};const l=`[BranchRules] fact extraction failed with: ${n.buildOctokitErrorMessage(t)}. Request parameters: ${JSON.stringify(g)}`;throw n.handleRateLimitError(t,l),this.#t.error(l),new Error(l)}}return{rules:h}}async#a(r,a,e){return r!==w.DEFAULT_SCOPE?r:this.#r.getDefaultBranch(a,e)}getDataSchema(r){return JSON.stringify(y.default)}}exports.BranchRulesFactExtractor=c;
1
+ "use strict";var y=require("@spotify/backstage-plugin-soundcheck-common"),c=require("./helper/util.cjs.js"),E=require("./schema/branch_rules.json.cjs.js"),p=require("./utils.cjs.js");class n{static TYPE="BranchRules";#t;#e;#r;type=n.TYPE;static factory=({logger:r,cache:a,branchHelper:t})=>{const s=new n(r,a,t);return{predicate:h=>h.type===s.type,extractor:s}};constructor(r,a,t){this.#t=r,this.#e=a,this.#r=t}async extract(r,a,t,s,h){const o=[],u={owner:t.owner,repo:t.name,branch:await this.#a(a,t,s)},w=100;let f=0,i=!0;for(;i;){const l=p.getCacheKey("github:branch_rules",u,++f);try{const e=await s.rest.repos.getBranchRules({...u,per_page:w,page:f,headers:h?void 0:await p.getCacheHeader(this.#e,l)});e.headers?.link?.includes('rel="next"')||(i=!1),await this.#e.set(l,{etag:e.headers?.etag,lastModified:e.headers?.date,hasNext:i,data:e.data}),o.push(...e.data)}catch(e){if(c.isNotModifiedError(e)){const g=await this.#e.get(l);if(g){o.push(...g.data),i=g.hasNext;continue}else return}if(c.isNotFoundError(e))return{rules:[]};const d=`[BranchRules] fact extraction failed with: ${c.buildOctokitErrorMessage(e)}. Request parameters: ${JSON.stringify(u)}`;throw c.handleRateLimitError(e,d),this.#t.error(d),new Error(d)}}return{rules:o}}async#a(r,a,t){return r!==y.DEFAULT_SCOPE?r:this.#r.getDefaultBranch(a,t)}getDataSchema(r){return JSON.stringify(E.default)}}exports.BranchRulesFactExtractor=n;
2
2
  //# sourceMappingURL=BranchRulesFactExtractor.cjs.js.map
package/dist/extractors/CodeScanningAlertsFactExtractor.cjs.js ADDED
@@ -0,0 +1,2 @@
1
+ "use strict";var w=require("@spotify/backstage-plugin-soundcheck-common"),i=require("./helper/util.cjs.js"),E=require("./schema/code_scanning_alerts.json.cjs.js"),f=require("./utils.cjs.js");class n{static TYPE="CodeScanningAlerts";#t;#e;type=n.TYPE;static factory=({logger:t,cache:r})=>{const a=new n(t,r);return{predicate:o=>o.type===a.type,extractor:a}};constructor(t,r){this.#t=t,this.#e=r}async extract(t,r,a,o,p){const c=[],d={owner:a.owner,repo:a.name,ref:r!==w.DEFAULT_SCOPE?r:void 0,tool_name:t.toolName,state:t.state,severity:t.severity},y=100;let g=0,s=!0;for(;s;){const h=f.getCacheKey("github:code_scanning",d,++g);try{const e=await o.rest.codeScanning.listAlertsForRepo({...d,per_page:y,page:g,headers:p?void 0:await f.getCacheHeader(this.#e,h)});e.headers?.link?.includes('rel="next"')||(s=!1),await this.#e.set(h,{etag:e.headers?.etag,lastModified:e.headers?.date,hasNext:s,data:e.data}),c.push(...e.data)}catch(e){if(i.isNotModifiedError(e)){const u=await this.#e.get(h);if(u){c.push(...u.data),s=u.hasNext;continue}else return}if(i.isNotFoundError(e))return{alerts:[]};const l=`[CodeScanningAlerts] fact extraction failed with: ${i.buildOctokitErrorMessage(e)}. Request parameters: ${JSON.stringify(d)}`;throw i.handleRateLimitError(e,l),this.#t.error(l),new Error(l)}}return{alerts:c}}getDataSchema(t){return JSON.stringify(E.default)}}exports.CodeScanningAlertsFactExtractor=n;
2
+ //# sourceMappingURL=CodeScanningAlertsFactExtractor.cjs.js.map
package/dist/extractors/DependabotAlertsFactExtractor.cjs.js ADDED
@@ -0,0 +1,2 @@
1
+ "use strict";var o=require("./helper/util.cjs.js"),y=require("./schema/dependabot_alerts.json.cjs.js"),g=require("./utils.cjs.js");class n{static TYPE="DependabotAlerts";#t;#e;type=n.TYPE;static factory=({logger:t,cache:s})=>{const a=new n(t,s);return{predicate:c=>c.type===a.type,extractor:a}};constructor(t,s){this.#t=t,this.#e=s}async extract(t,s,a,c,f){const d=[],h={owner:a.owner,repo:a.name,state:t.states?.join(","),severity:t.severities?.join(",")},w=100;let p=0,i=!0;for(;i;){const l=g.getCacheKey("github:dependabot_alerts",h,++p);try{const e=await c.rest.dependabot.listAlertsForRepo({...h,per_page:w,page:p,headers:f?void 0:await g.getCacheHeader(this.#e,l)});e.headers?.link?.includes('rel="next"')||(i=!1);const r=e.data;await this.#e.set(l,{etag:e.headers?.etag,lastModified:e.headers?.date,hasNext:i,data:r}),d.push(...r)}catch(e){if(o.isNotModifiedError(e)){const u=await this.#e.get(l);if(u){d.push(...u.data),i=u.hasNext;continue}else return}if(o.isNotFoundError(e))return{alerts:[]};const r=`[DependabotAlerts] fact extraction failed with: ${o.buildOctokitErrorMessage(e)}. Request parameters: ${JSON.stringify(h)}`;throw o.handleRateLimitError(e,r),this.#t.error(r),new Error(r)}}return{alerts:d}}getDataSchema(t){return JSON.stringify(y.default)}}exports.DependabotAlertsFactExtractor=n;
2
+ //# sourceMappingURL=DependabotAlertsFactExtractor.cjs.js.map
package/dist/extractors/SecretScanningAlertsFactExtractor.cjs.js ADDED
@@ -0,0 +1,2 @@
1
+ "use strict";var i=require("./helper/util.cjs.js"),y=require("./schema/secret_scanning_alerts.json.cjs.js"),p=require("./utils.cjs.js");class n{static TYPE="SecretScanningAlerts";#t;#e;type=n.TYPE;static factory=({logger:t,cache:a})=>{const r=new n(t,a);return{predicate:c=>c.type===r.type,extractor:r}};constructor(t,a){this.#t=t,this.#e=a}async extract(t,a,r,c,f){const o=[],d={owner:r.owner,repo:r.name,state:t.state,validity:t.validities?.join(",")},w=100;let g=0,s=!0;for(;s;){const h=p.getCacheKey("github:secret_scanning",d,++g);try{const e=await c.rest.secretScanning.listAlertsForRepo({...d,per_page:w,page:g,headers:f?void 0:await p.getCacheHeader(this.#e,h)});e.headers?.link?.includes('rel="next"')||(s=!1),await this.#e.set(h,{etag:e.headers?.etag,lastModified:e.headers?.date,hasNext:s,data:e.data}),o.push(...e.data)}catch(e){if(i.isNotModifiedError(e)){const u=await this.#e.get(h);if(u){o.push(...u.data),s=u.hasNext;continue}else return}if(i.isNotFoundError(e))return{alerts:[]};const l=`[SecretScanningAlerts] fact extraction failed with: ${i.buildOctokitErrorMessage(e)}. Request parameters: ${JSON.stringify(d)}`;throw i.handleRateLimitError(e,l),this.#t.error(l),new Error(l)}}return{alerts:o}}getDataSchema(t){return JSON.stringify(y.default)}}exports.SecretScanningAlertsFactExtractor=n;
2
+ //# sourceMappingURL=SecretScanningAlertsFactExtractor.cjs.js.map
package/dist/extractors/SecurityAdvisoriesFactExtractor.cjs.js ADDED
@@ -0,0 +1,2 @@
1
+ "use strict";var o=require("./helper/util.cjs.js"),v=require("./schema/security_advisories.json.cjs.js"),y=require("./utils.cjs.js");class c{static TYPE="SecurityAdvisories";#t;#e;type=c.TYPE;static factory=({logger:t,cache:s})=>{const i=new c(t,s);return{predicate:d=>d.type===i.type,extractor:i}};constructor(t,s){this.#t=t,this.#e=s}async extract(t,s,i,d,p){const n=[],u={owner:i.owner,repo:i.name,state:t.state},f=100;let l=0,a=!0;for(;a;){const h=y.getCacheKey("github:security_advisories",u,++l);try{const e=await d.rest.securityAdvisories.listRepositoryAdvisories({...u,per_page:f,page:l,headers:p?void 0:await y.getCacheHeader(this.#e,h)});e.headers?.link?.includes('rel="next"')||(a=!1);const r=e.data;await this.#e.set(h,{etag:e.headers?.etag,lastModified:e.headers?.date,hasNext:a,data:r}),n.push(...r)}catch(e){if(o.isNotModifiedError(e)){const g=await this.#e.get(h);if(g){n.push(...g.data),a=g.hasNext;continue}else return}if(o.isNotFoundError(e))return{advisories:[]};const r=`[SecurityAdvisories] fact extraction failed with: ${o.buildOctokitErrorMessage(e)}. Request parameters: ${JSON.stringify(u)}`;throw o.handleRateLimitError(e,r),this.#t.error(r),new Error(r)}}return{advisories:n}}getDataSchema(t){return JSON.stringify(v.default)}}exports.SecurityAdvisoriesFactExtractor=c;
2
+ //# sourceMappingURL=SecurityAdvisoriesFactExtractor.cjs.js.map
package/dist/extractors/config/GithubFactCollectorSchema.cjs.js CHANGED
@@ -1,2 +1,2 @@
1
- "use strict";var e=require("@spotify/backstage-plugin-soundcheck-common"),t=require("zod");const c=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("BranchProtections"),branch:t.z.string().min(1).optional()})).strict(),r=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("BranchRules"),branch:t.z.string().min(1).optional()})).strict(),a=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("RepositoryDetails")})).strict(),i=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("RepositoryLanguages")})).strict(),o=t.z.union([c,r,a,i]),s=e.buildFactCollectorSchema(o);exports.GithubFactCollectorSchema=s;
1
+ "use strict";var e=require("@spotify/backstage-plugin-soundcheck-common"),t=require("zod");const a=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("BranchProtections"),branch:t.z.string().min(1).optional()})).strict(),r=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("BranchRules"),branch:t.z.string().min(1).optional()})).strict(),i=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("CodeScanningAlerts"),toolName:t.z.string().min(1).optional(),state:t.z.enum(["open","closed","dismissed","fixed"]).optional(),severity:t.z.enum(["critical","high","medium","low","warning","note","error"]).optional()})).strict(),c=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("DependabotAlerts"),states:t.z.array(t.z.enum(["auto_dismissed","dismissed","fixed","open"])).optional(),severities:t.z.array(t.z.enum(["low","medium","high","critical"])).optional()})).strict(),s=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("RepositoryDetails")})).strict(),o=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("RepositoryLanguages")})).strict(),n=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("SecretScanningAlerts"),state:t.z.enum(["open","resolved"]).optional(),validities:t.z.array(t.z.enum(["active","inactive","unknown"])).optional()})).strict(),l=e.BaseFactExtractorSchema.merge(t.z.strictObject({type:t.z.literal("SecurityAdvisories"),state:t.z.enum(["triage","draft","published","closed"]).optional()})).strict(),m=t.z.union([a,r,i,c,s,o,n,l]),z=e.buildFactCollectorSchema(m);exports.GithubFactCollectorSchema=z;
2
2
  //# sourceMappingURL=GithubFactCollectorSchema.cjs.js.map
package/dist/extractors/schema/code_scanning_alerts.json.cjs.js ADDED
@@ -0,0 +1,3 @@
1
+ "use strict";Object.defineProperty(exports,"__esModule",{value:!0});var t="Code Scanning Alerts",e="Code scanning alerts for a repository.",r="object",o={alerts:{type:"array",items:{type:"object",properties:{number:{type:"integer",description:"The security alert number.",readOnly:!0},created_at:{type:"string",description:"The time that the alert was created in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0},updated_at:{type:"string",description:"The time that the alert was last updated in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0},url:{type:"string",description:"The REST API URL of the alert resource.",format:"uri",readOnly:!0},html_url:{type:"string",description:"The GitHub URL of the alert resource.",format:"uri",readOnly:!0},instances_url:{type:"string",description:"The REST API URL for fetching the list of instances for an alert.",format:"uri",readOnly:!0},state:{type:["string","null"],description:"State of a code scanning alert.",enum:["open","dismissed","fixed",null]},fixed_at:{type:["string","null"],description:"The time that the alert was no longer detected and was considered fixed in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0},dismissed_by:{anyOf:[{type:"null"},{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]}]},dismissed_at:{type:["string","null"],description:"The time that the alert was dismissed in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0},dismissed_reason:{type:["string","null"],description:"**Required when the state is dismissed.** The reason for dismissing or closing the alert.",enum:["false positive","won't fix","used in tests",null]},dismissed_comment:{type:["string","null"],description:"The dismissal comment associated with the dismissal of the alert.",maxLength:280},rule:{type:"object",properties:{id:{type:["string","null"],description:"A unique identifier for the rule used to detect the alert."},name:{type:"string",description:"The name of the rule used to detect the alert."},severity:{type:["string","null"],description:"The severity of the alert.",enum:["none","note","warning","error",null]},security_severity_level:{type:["string","null"],description:"The security severity of the alert.",enum:["low","medium","high","critical",null]},description:{type:"string",description:"A short description of the rule used to detect the alert."},full_description:{type:"string",description:"A description of the rule used to detect the alert."},tags:{type:["array","null"],description:"A set of tags applicable for the rule.",items:{type:"string"}},help:{type:["string","null"],description:"Detailed documentation for the rule as GitHub Flavored Markdown."},help_uri:{type:["string","null"],description:"A link to the documentation for the rule used to detect the alert."}}},tool:{type:"object",properties:{name:{type:"string",description:"The name of the tool used to generate the code scanning analysis."},version:{type:["string","null"],description:"The version of the tool used to generate the code scanning analysis."},guid:{type:["string","null"],description:"The GUID of the tool used to generate the code scanning analysis, if provided in the uploaded SARIF data."}}},most_recent_instance:{type:"object",properties:{ref:{type:"string",description:"The Git reference, formatted as `refs/pull/<number>/merge`, `refs/pull/<number>/head`,\n`refs/heads/<branch name>` or simply `<branch name>`."},analysis_key:{type:"string",description:"Identifies the configuration under which the analysis was executed. For example, in GitHub Actions this includes the workflow filename and job name."},environment:{type:"string",description:"Identifies the variable values associated with the environment in which the analysis that generated this alert instance was performed, such as the language that was analyzed."},category:{type:"string",description:"Identifies the configuration under which the analysis was executed. Used to distinguish between multiple analyses for the same tool and commit, but performed on different languages or different parts of the code."},state:{type:["string","null"],description:"State of a code scanning alert.",enum:["open","dismissed","fixed",null]},commit_sha:{type:"string"},message:{type:"object",properties:{text:{type:"string"}}},location:{type:"object",description:"Describe a region within a file for the alert.",properties:{path:{type:"string"},start_line:{type:"integer"},end_line:{type:"integer"},start_column:{type:"integer"},end_column:{type:"integer"}}},html_url:{type:"string"},classifications:{type:"array",description:`Classifications that have been applied to the file that triggered the alert.
2
+ For example identifying it as documentation, or a generated file.`,items:{type:["string","null"],description:"A classification of the file. For example to identify it as generated.",enum:["source","generated","test","library",null]}}}},repository:{title:"Simple Repository",description:"A GitHub repository.",type:"object",properties:{id:{type:"integer",format:"int64",description:"A unique identifier of the repository.",examples:[1296269]},node_id:{type:"string",description:"The GraphQL identifier of the repository.",examples:["MDEwOlJlcG9zaXRvcnkxMjk2MjY5"]},name:{type:"string",description:"The name of the repository.",examples:["Hello-World"]},full_name:{type:"string",description:"The full, globally unique, name of the repository.",examples:["octocat/Hello-World"]},owner:{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]},private:{type:"boolean",description:"Whether the repository is private."},html_url:{type:"string",format:"uri",description:"The URL to view the repository on GitHub.com.",examples:["https://github.com/octocat/Hello-World"]},description:{type:["string","null"],description:"The repository description.",examples:["This your first repo!"]},fork:{type:"boolean",description:"Whether the repository is a fork."},url:{type:"string",format:"uri",description:"The URL to get more information about the repository from the GitHub API.",examples:["https://api.github.com/repos/octocat/Hello-World"]},archive_url:{type:"string",description:"A template for the API URL to download the repository as an archive.",examples:["https://api.github.com/repos/octocat/Hello-World/{archive_format}{/ref}"]},assignees_url:{type:"string",description:"A template for the API URL to list the available assignees for issues in the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/assignees{/user}"]},blobs_url:{type:"string",description:"A template for the API URL to create or retrieve a raw Git blob in the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/git/blobs{/sha}"]},branches_url:{type:"string",description:"A template for the API URL to get information about branches in the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/branches{/branch}"]},collaborators_url:{type:"string",description:"A template for the API URL to get information about collaborators of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/collaborators{/collaborator}"]},comments_url:{type:"string",description:"A template for the API URL to get information about comments on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/comments{/number}"]},commits_url:{type:"string",description:"A template for the API URL to get information about commits on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/commits{/sha}"]},compare_url:{type:"string",description:"A template for the API URL to compare two commits or refs.",examples:["https://api.github.com/repos/octocat/Hello-World/compare/{base}...{head}"]},contents_url:{type:"string",description:"A template for the API URL to get the contents of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/contents/{+path}"]},contributors_url:{type:"string",format:"uri",description:"A template for the API URL to list the contributors to the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/contributors"]},deployments_url:{type:"string",format:"uri",description:"The API URL to list the deployments of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/deployments"]},downloads_url:{type:"string",format:"uri",description:"The API URL to list the downloads on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/downloads"]},events_url:{type:"string",format:"uri",description:"The API URL to list the events of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/events"]},forks_url:{type:"string",format:"uri",description:"The API URL to list the forks of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/forks"]},git_commits_url:{type:"string",description:"A template for the API URL to get information about Git commits of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/git/commits{/sha}"]},git_refs_url:{type:"string",description:"A template for the API URL to get information about Git refs of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/git/refs{/sha}"]},git_tags_url:{type:"string",description:"A template for the API URL to get information about Git tags of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/git/tags{/sha}"]},issue_comment_url:{type:"string",description:"A template for the API URL to get information about issue comments on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/issues/comments{/number}"]},issue_events_url:{type:"string",description:"A template for the API URL to get information about issue events on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/issues/events{/number}"]},issues_url:{type:"string",description:"A template for the API URL to get information about issues on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/issues{/number}"]},keys_url:{type:"string",description:"A template for the API URL to get information about deploy keys on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/keys{/key_id}"]},labels_url:{type:"string",description:"A template for the API URL to get information about labels of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/labels{/name}"]},languages_url:{type:"string",format:"uri",description:"The API URL to get information about the languages of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/languages"]},merges_url:{type:"string",format:"uri",description:"The API URL to merge branches in the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/merges"]},milestones_url:{type:"string",description:"A template for the API URL to get information about milestones of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/milestones{/number}"]},notifications_url:{type:"string",description:"A template for the API URL to get information about notifications on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/notifications{?since,all,participating}"]},pulls_url:{type:"string",description:"A template for the API URL to get information about pull requests on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/pulls{/number}"]},releases_url:{type:"string",description:"A template for the API URL to get information about releases on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/releases{/id}"]},stargazers_url:{type:"string",format:"uri",description:"The API URL to list the stargazers on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/stargazers"]},statuses_url:{type:"string",description:"A template for the API URL to get information about statuses of a commit.",examples:["https://api.github.com/repos/octocat/Hello-World/statuses/{sha}"]},subscribers_url:{type:"string",format:"uri",description:"The API URL to list the subscribers on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/subscribers"]},subscription_url:{type:"string",format:"uri",description:"The API URL to subscribe to notifications for this repository.",examples:["https://api.github.com/repos/octocat/Hello-World/subscription"]},tags_url:{type:"string",format:"uri",description:"The API URL to get information about tags on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/tags"]},teams_url:{type:"string",format:"uri",description:"The API URL to list the teams on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/teams"]},trees_url:{type:"string",description:"A template for the API URL to create or retrieve a raw Git tree of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/git/trees{/sha}"]},hooks_url:{type:"string",format:"uri",description:"The API URL to list the hooks on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/hooks"]}},required:["archive_url","assignees_url","blobs_url","branches_url","collaborators_url","comments_url","commits_url","compare_url","contents_url","contributors_url","deployments_url","description","downloads_url","events_url","fork","forks_url","full_name","git_commits_url","git_refs_url","git_tags_url","hooks_url","html_url","id","node_id","issue_comment_url","issue_events_url","issues_url","keys_url","labels_url","languages_url","merges_url","milestones_url","name","notifications_url","owner","private","pulls_url","releases_url","stargazers_url","statuses_url","subscribers_url","subscription_url","tags_url","teams_url","trees_url","url"]},dismissal_approved_by:{anyOf:[{type:"null"},{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]}]}},required:["number","created_at","url","html_url","instances_url","state","dismissed_by","dismissed_at","dismissed_reason","rule","tool","most_recent_instance","repository"]}}},s={title:t,description:e,type:r,properties:o};exports.default=s,exports.description=e,exports.properties=o,exports.title=t,exports.type=r;
3
+ //# sourceMappingURL=code_scanning_alerts.json.cjs.js.map
package/dist/extractors/schema/dependabot_alerts.json.cjs.js ADDED
@@ -0,0 +1,2 @@
1
+ "use strict";Object.defineProperty(exports,"__esModule",{value:!0});var e="Dependabot Alerts",t="Dependabot alerts for a repository.",r="object",i={alerts:{type:"array",items:{type:"object",description:"A Dependabot alert.",properties:{number:{type:"integer",description:"The security alert number.",readOnly:!0},state:{type:"string",description:"The state of the Dependabot alert.",readOnly:!0,enum:["auto_dismissed","dismissed","fixed","open"]},dependency:{type:"object",description:"Details for the vulnerable dependency.",readOnly:!0,properties:{package:{type:"object",description:"Details for the vulnerable package.",readOnly:!0,properties:{ecosystem:{type:"string",description:"The package's language or package management ecosystem.",readOnly:!0},name:{type:"string",description:"The unique package name within its ecosystem.",readOnly:!0}},required:["ecosystem","name"],additionalProperties:!1},manifest_path:{type:"string",description:"The full path to the dependency manifest file, relative to the root of the repository.",readOnly:!0},scope:{type:["string","null"],description:"The execution scope of the vulnerable dependency.",readOnly:!0,enum:["development","runtime",null]}}},security_advisory:{type:"object",description:"Details for the GitHub Security Advisory.",readOnly:!0,properties:{ghsa_id:{type:"string",description:"The unique GitHub Security Advisory ID assigned to the advisory.",readOnly:!0},cve_id:{type:["string","null"],description:"The unique CVE ID assigned to the advisory.",readOnly:!0},summary:{type:"string",description:"A short, plain text summary of the advisory.",readOnly:!0,maxLength:1024},description:{type:"string",description:"A long-form Markdown-supported description of the advisory.",readOnly:!0},vulnerabilities:{type:"array",description:"Vulnerable version range information for the advisory.",readOnly:!0,items:{type:"object",description:"Details pertaining to one vulnerable version range for the advisory.",readOnly:!0,properties:{package:{type:"object",description:"Details for the vulnerable package.",readOnly:!0,properties:{ecosystem:{type:"string",description:"The package's language or package management ecosystem.",readOnly:!0},name:{type:"string",description:"The unique package name within its ecosystem.",readOnly:!0}},required:["ecosystem","name"],additionalProperties:!1},severity:{type:"string",description:"The severity of the vulnerability.",readOnly:!0,enum:["low","medium","high","critical"]},vulnerable_version_range:{type:"string",description:"Conditions that identify vulnerable versions of this vulnerability's package.",readOnly:!0},first_patched_version:{type:["object","null"],description:"Details pertaining to the package version that patches this vulnerability.",readOnly:!0,properties:{identifier:{type:"string",description:"The package version that patches this vulnerability.",readOnly:!0}},required:["identifier"],additionalProperties:!1}},required:["package","severity","vulnerable_version_range","first_patched_version"],additionalProperties:!1}},severity:{type:"string",description:"The severity of the advisory.",readOnly:!0,enum:["low","medium","high","critical"]},cvss:{type:"object",description:"Details for the advisory pertaining to the Common Vulnerability Scoring System.",readOnly:!0,properties:{score:{type:"number",description:"The overall CVSS score of the advisory.",minimum:0,maximum:10,readOnly:!0},vector_string:{type:["string","null"],description:"The full CVSS vector string for the advisory.",readOnly:!0}},required:["score","vector_string"],additionalProperties:!1},cvss_severities:{type:["object","null"],properties:{cvss_v3:{type:["object","null"],properties:{vector_string:{type:["string","null"],description:"The CVSS 3 vector string."},score:{type:["number","null"],description:"The CVSS 3 score.",minimum:0,maximum:10,readOnly:!0}},required:["vector_string","score"]},cvss_v4:{type:["object","null"],properties:{vector_string:{type:["string","null"],description:"The CVSS 4 vector string."},score:{type:["number","null"],description:"The CVSS 4 score.",minimum:0,maximum:10,readOnly:!0}},required:["vector_string","score"]}}},epss:{type:["object","null"],readOnly:!0,description:"The EPSS scores as calculated by the [Exploit Prediction Scoring System](https://www.first.org/epss).",properties:{percentage:{type:"number",minimum:0,maximum:100},percentile:{type:"number",minimum:0,maximum:100}}},cwes:{type:"array",description:"Details for the advisory pertaining to Common Weakness Enumeration.",readOnly:!0,items:{type:"object",description:"A CWE weakness assigned to the advisory.",readOnly:!0,properties:{cwe_id:{type:"string",description:"The unique CWE ID.",readOnly:!0},name:{type:"string",description:"The short, plain text name of the CWE.",readOnly:!0}},required:["cwe_id","name"],additionalProperties:!1}},identifiers:{type:"array",description:"Values that identify this advisory among security information sources.",readOnly:!0,items:{type:"object",description:"An advisory identifier.",readOnly:!0,properties:{type:{type:"string",description:"The type of advisory identifier.",readOnly:!0,enum:["CVE","GHSA"]},value:{type:"string",description:"The value of the advisory identifer.",readOnly:!0}},required:["value","type"],additionalProperties:!1}},references:{type:"array",description:"Links to additional advisory information.",readOnly:!0,items:{type:"object",description:"A link to additional advisory information.",readOnly:!0,properties:{url:{type:"string",description:"The URL of the reference.",format:"uri",readOnly:!0}},required:["url"],additionalProperties:!1}},published_at:{type:"string",description:"The time that the advisory was published in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0},updated_at:{type:"string",description:"The time that the advisory was last modified in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0},withdrawn_at:{type:["string","null"],description:"The time that the advisory was withdrawn in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0}},required:["ghsa_id","cve_id","summary","description","vulnerabilities","severity","cvss","cwes","identifiers","references","published_at","updated_at","withdrawn_at"],additionalProperties:!1},security_vulnerability:{type:"object",description:"Details pertaining to one vulnerable version range for the advisory.",readOnly:!0,properties:{package:{type:"object",description:"Details for the vulnerable package.",readOnly:!0,properties:{ecosystem:{type:"string",description:"The package's language or package management ecosystem.",readOnly:!0},name:{type:"string",description:"The unique package name within its ecosystem.",readOnly:!0}},required:["ecosystem","name"],additionalProperties:!1},severity:{type:"string",description:"The severity of the vulnerability.",readOnly:!0,enum:["low","medium","high","critical"]},vulnerable_version_range:{type:"string",description:"Conditions that identify vulnerable versions of this vulnerability's package.",readOnly:!0},first_patched_version:{type:["object","null"],description:"Details pertaining to the package version that patches this vulnerability.",readOnly:!0,properties:{identifier:{type:"string",description:"The package version that patches this vulnerability.",readOnly:!0}},required:["identifier"],additionalProperties:!1}},required:["package","severity","vulnerable_version_range","first_patched_version"],additionalProperties:!1},url:{type:"string",description:"The REST API URL of the alert resource.",format:"uri",readOnly:!0},html_url:{type:"string",description:"The GitHub URL of the alert resource.",format:"uri",readOnly:!0},created_at:{type:"string",description:"The time that the alert was created in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0},updated_at:{type:"string",description:"The time that the alert was last updated in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0},dismissed_at:{type:["string","null"],description:"The time that the alert was dismissed in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0},dismissed_by:{anyOf:[{type:"null"},{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]}]},dismissed_reason:{type:["string","null"],description:"The reason that the alert was dismissed.",enum:["fix_started","inaccurate","no_bandwidth","not_used","tolerable_risk",null]},dismissed_comment:{type:["string","null"],description:"An optional comment associated with the alert's dismissal.",maxLength:280},fixed_at:{type:["string","null"],description:"The time that the alert was no longer detected and was considered fixed in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0},auto_dismissed_at:{type:["string","null"],description:"The time that the alert was auto-dismissed in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0}},required:["number","state","dependency","security_advisory","security_vulnerability","url","html_url","created_at","updated_at","dismissed_at","dismissed_by","dismissed_reason","dismissed_comment","fixed_at"],additionalProperties:!1}}},s={title:e,description:t,type:r,properties:i};exports.default=s,exports.description=t,exports.properties=i,exports.title=e,exports.type=r;
2
+ //# sourceMappingURL=dependabot_alerts.json.cjs.js.map
package/dist/extractors/schema/secret_scanning_alerts.json.cjs.js ADDED
@@ -0,0 +1,2 @@
1
+ "use strict";Object.defineProperty(exports,"__esModule",{value:!0});var t="Secret Scanning Alerts",e="Secret scanning alerts for a repository.",r="object",s={alerts:{type:"array",items:{type:"object",properties:{number:{type:"integer",description:"The security alert number.",readOnly:!0},created_at:{type:"string",description:"The time that the alert was created in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0},updated_at:{anyOf:[{type:"null"},{type:"string",description:"The time that the alert was last updated in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`.",format:"date-time",readOnly:!0}]},url:{type:"string",description:"The REST API URL of the alert resource.",format:"uri",readOnly:!0},html_url:{type:"string",description:"The GitHub URL of the alert resource.",format:"uri",readOnly:!0},locations_url:{type:"string",format:"uri",description:"The REST API URL of the code locations for this alert."},state:{description:"Sets the state of the secret scanning alert. You must provide `resolution` when you set the state to `resolved`.",type:"string",enum:["open","resolved"]},resolution:{type:["string","null"],description:"**Required when the `state` is `resolved`.** The reason for resolving the alert.",enum:["false_positive","wont_fix","revoked","used_in_tests",null]},resolved_at:{type:["string","null"],format:"date-time",description:"The time that the alert was resolved in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`."},resolved_by:{anyOf:[{type:"null"},{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]}]},resolution_comment:{type:["string","null"],description:"An optional comment to resolve an alert."},secret_type:{type:"string",description:"The type of secret that secret scanning detected."},secret_type_display_name:{type:"string",description:'User-friendly name for the detected secret, matching the `secret_type`.\nFor a list of built-in patterns, see "[Supported secret scanning patterns](https://docs.github.com/code-security/secret-scanning/introduction/supported-secret-scanning-patterns#supported-secrets)."'},secret:{type:"string",description:"The secret that was detected."},push_protection_bypassed:{type:["boolean","null"],description:"Whether push protection was bypassed for the detected secret."},push_protection_bypassed_by:{anyOf:[{type:"null"},{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]}]},push_protection_bypassed_at:{type:["string","null"],format:"date-time",description:"The time that push protection was bypassed in ISO 8601 format: `YYYY-MM-DDTHH:MM:SSZ`."},push_protection_bypass_request_reviewer:{anyOf:[{type:"null"},{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]}]},push_protection_bypass_request_reviewer_comment:{type:["string","null"],description:"An optional comment when reviewing a push protection bypass."},push_protection_bypass_request_comment:{type:["string","null"],description:"An optional comment when requesting a push protection bypass."},push_protection_bypass_request_html_url:{type:["string","null"],format:"uri",description:"The URL to a push protection bypass request."},validity:{type:"string",description:"The token status as of the latest validity check.",enum:["active","inactive","unknown"]},publicly_leaked:{type:["boolean","null"],description:"Whether the detected secret was publicly leaked."},multi_repo:{type:["boolean","null"],description:"Whether the detected secret was found in multiple repositories under the same organization or enterprise."},is_base64_encoded:{type:["boolean","null"],description:"A boolean value representing whether or not alert is base64 encoded"}}}}},i={title:t,description:e,type:r,properties:s};exports.default=i,exports.description=e,exports.properties=s,exports.title=t,exports.type=r;
2
+ //# sourceMappingURL=secret_scanning_alerts.json.cjs.js.map
package/dist/extractors/schema/security_advisories.json.cjs.js ADDED
@@ -0,0 +1,2 @@
1
+ "use strict";Object.defineProperty(exports,"__esModule",{value:!0});var e="Security Advisories",t="Security advisories for a repository.",r="object",i={advisories:{type:"array",items:{description:"A repository security advisory.",type:"object",properties:{ghsa_id:{type:"string",description:"The GitHub Security Advisory ID.",readOnly:!0},cve_id:{type:["string","null"],description:"The Common Vulnerabilities and Exposures (CVE) ID."},url:{type:"string",format:"uri",description:"The API URL for the advisory.",readOnly:!0},html_url:{type:"string",format:"uri",description:"The URL for the advisory.",readOnly:!0},summary:{type:"string",description:"A short summary of the advisory.",maxLength:1024},description:{type:["string","null"],description:"A detailed description of what the advisory entails.",maxLength:65535},severity:{type:["string","null"],description:"The severity of the advisory.",enum:["critical","high","medium","low",null]},author:{readOnly:!0,description:"The author of the advisory.",allOf:[{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]}],type:["null"]},publisher:{readOnly:!0,description:"The publisher of the advisory.",allOf:[{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]}],type:["null"]},identifiers:{type:"array",items:{type:"object",properties:{type:{type:"string",description:"The type of identifier.",enum:["CVE","GHSA"]},value:{type:"string",description:"The identifier value."}},required:["type","value"]},readOnly:!0},state:{type:"string",description:"The state of the advisory.",enum:["published","closed","withdrawn","draft","triage"]},created_at:{type:["string","null"],format:"date-time",description:"The date and time of when the advisory was created, in ISO 8601 format.",readOnly:!0},updated_at:{type:["string","null"],format:"date-time",description:"The date and time of when the advisory was last updated, in ISO 8601 format.",readOnly:!0},published_at:{type:["string","null"],format:"date-time",description:"The date and time of when the advisory was published, in ISO 8601 format.",readOnly:!0},closed_at:{type:["string","null"],format:"date-time",description:"The date and time of when the advisory was closed, in ISO 8601 format.",readOnly:!0},withdrawn_at:{type:["string","null"],format:"date-time",description:"The date and time of when the advisory was withdrawn, in ISO 8601 format.",readOnly:!0},submission:{type:["object","null"],readOnly:!0,properties:{accepted:{type:"boolean",description:"Whether a private vulnerability report was accepted by the repository's administrators.",readOnly:!0}},required:["accepted"]},vulnerabilities:{type:["array","null"],items:{description:"A product affected by the vulnerability detailed in a repository security advisory.",type:"object",properties:{package:{description:"The name of the package affected by the vulnerability.",type:["object","null"],properties:{ecosystem:{type:"string",description:"The package's language or package management ecosystem.",enum:["rubygems","npm","pip","maven","nuget","composer","go","rust","erlang","actions","pub","other","swift"]},name:{type:["string","null"],description:"The unique package name within its ecosystem."}},required:["ecosystem","name"]},vulnerable_version_range:{type:["string","null"],description:"The range of the package versions affected by the vulnerability."},patched_versions:{type:["string","null"],description:"The package version(s) that resolve the vulnerability."},vulnerable_functions:{type:["array","null"],description:"The functions in the package that are affected.",items:{type:"string"}}},required:["package","vulnerable_version_range","patched_versions","vulnerable_functions"],additionalProperties:!1}},cvss:{type:["object","null"],properties:{vector_string:{type:["string","null"],description:"The CVSS vector."},score:{type:["number","null"],description:"The CVSS score.",minimum:0,maximum:10,readOnly:!0}},required:["vector_string","score"]},cvss_severities:{type:["object","null"],properties:{cvss_v3:{type:["object","null"],properties:{vector_string:{type:["string","null"],description:"The CVSS 3 vector string."},score:{type:["number","null"],description:"The CVSS 3 score.",minimum:0,maximum:10,readOnly:!0}},required:["vector_string","score"]},cvss_v4:{type:["object","null"],properties:{vector_string:{type:["string","null"],description:"The CVSS 4 vector string."},score:{type:["number","null"],description:"The CVSS 4 score.",minimum:0,maximum:10,readOnly:!0}},required:["vector_string","score"]}}},cwes:{type:["array","null"],items:{type:"object",properties:{cwe_id:{type:"string",description:"The Common Weakness Enumeration (CWE) identifier."},name:{type:"string",description:"The name of the CWE.",readOnly:!0}},required:["cwe_id","name"]},readOnly:!0},cwe_ids:{type:["array","null"],description:"A list of only the CWE IDs.",items:{type:"string"}},credits:{type:["array","null"],items:{type:"object",properties:{login:{type:"string",description:"The username of the user credited."},type:{type:"string",description:"The type of credit the user is receiving.",enum:["analyst","finder","reporter","coordinator","remediation_developer","remediation_reviewer","remediation_verifier","tool","sponsor","other"]}}}},credits_detailed:{type:["array","null"],items:{description:"A credit given to a user for a repository security advisory.",type:"object",properties:{user:{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]},type:{type:"string",description:"The type of credit the user is receiving.",enum:["analyst","finder","reporter","coordinator","remediation_developer","remediation_reviewer","remediation_verifier","tool","sponsor","other"]},state:{type:"string",description:"The state of the user's acceptance of the credit.",enum:["accepted","declined","pending"]}},required:["user","type","state"],additionalProperties:!1},readOnly:!0},collaborating_users:{type:["array","null"],description:"A list of users that collaborate on the advisory.",items:{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]}},collaborating_teams:{type:["array","null"],description:"A list of teams that collaborate on the advisory.",items:{title:"Team",description:"Groups of organization members that gives permissions on specified repositories.",type:"object",properties:{id:{type:"integer"},node_id:{type:"string"},name:{type:"string"},slug:{type:"string"},description:{type:["string","null"]},privacy:{type:"string"},notification_setting:{type:"string"},permission:{type:"string"},permissions:{type:"object",properties:{pull:{type:"boolean"},triage:{type:"boolean"},push:{type:"boolean"},maintain:{type:"boolean"},admin:{type:"boolean"}},required:["pull","triage","push","maintain","admin"]},url:{type:"string",format:"uri"},html_url:{type:"string",format:"uri",examples:["https://github.com/orgs/rails/teams/core"]},members_url:{type:"string"},repositories_url:{type:"string",format:"uri"},parent:{anyOf:[{type:"null"},{title:"Team Simple",description:"Groups of organization members that gives permissions on specified repositories.",type:"object",properties:{id:{description:"Unique identifier of the team",type:"integer",examples:[1]},node_id:{type:"string",examples:["MDQ6VGVhbTE="]},url:{description:"URL for the team",type:"string",format:"uri",examples:["https://api.github.com/organizations/1/team/1"]},members_url:{type:"string",examples:["https://api.github.com/organizations/1/team/1/members{/member}"]},name:{description:"Name of the team",type:"string",examples:["Justice League"]},description:{description:"Description of the team",type:["string","null"],examples:["A great team."]},permission:{description:"Permission that the team will have for its repositories",type:"string",examples:["admin"]},privacy:{description:"The level of privacy this team should have",type:"string",examples:["closed"]},notification_setting:{description:"The notification setting the team has set",type:"string",examples:["notifications_enabled"]},html_url:{type:"string",format:"uri",examples:["https://github.com/orgs/rails/teams/core"]},repositories_url:{type:"string",format:"uri",examples:["https://api.github.com/organizations/1/team/1/repos"]},slug:{type:"string",examples:["justice-league"]},ldap_dn:{description:"Distinguished Name (DN) that team maps to within LDAP environment",type:"string",examples:["uid=example,ou=users,dc=github,dc=com"]}},required:["id","node_id","url","members_url","name","description","permission","html_url","repositories_url","slug"]}]}},required:["id","node_id","url","members_url","name","description","permission","html_url","repositories_url","slug","parent"]}},private_fork:{readOnly:!0,description:"A temporary private fork of the advisory's repository for collaborating on a fix.",allOf:[{title:"Simple Repository",description:"A GitHub repository.",type:"object",properties:{id:{type:"integer",format:"int64",description:"A unique identifier of the repository.",examples:[1296269]},node_id:{type:"string",description:"The GraphQL identifier of the repository.",examples:["MDEwOlJlcG9zaXRvcnkxMjk2MjY5"]},name:{type:"string",description:"The name of the repository.",examples:["Hello-World"]},full_name:{type:"string",description:"The full, globally unique, name of the repository.",examples:["octocat/Hello-World"]},owner:{title:"Simple User",description:"A GitHub user.",type:"object",properties:{name:{type:["string","null"]},email:{type:["string","null"]},login:{type:"string",examples:["octocat"]},id:{type:"integer",format:"int64",examples:[1]},node_id:{type:"string",examples:["MDQ6VXNlcjE="]},avatar_url:{type:"string",format:"uri",examples:["https://github.com/images/error/octocat_happy.gif"]},gravatar_id:{type:["string","null"],examples:["41d064eb2195891e12d0413f63227ea7"]},url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat"]},html_url:{type:"string",format:"uri",examples:["https://github.com/octocat"]},followers_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/followers"]},following_url:{type:"string",examples:["https://api.github.com/users/octocat/following{/other_user}"]},gists_url:{type:"string",examples:["https://api.github.com/users/octocat/gists{/gist_id}"]},starred_url:{type:"string",examples:["https://api.github.com/users/octocat/starred{/owner}{/repo}"]},subscriptions_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/subscriptions"]},organizations_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/orgs"]},repos_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/repos"]},events_url:{type:"string",examples:["https://api.github.com/users/octocat/events{/privacy}"]},received_events_url:{type:"string",format:"uri",examples:["https://api.github.com/users/octocat/received_events"]},type:{type:"string",examples:["User"]},site_admin:{type:"boolean"},starred_at:{type:"string",examples:['"2020-07-09T00:17:55Z"']},user_view_type:{type:"string",examples:["public"]}},required:["avatar_url","events_url","followers_url","following_url","gists_url","gravatar_id","html_url","id","node_id","login","organizations_url","received_events_url","repos_url","site_admin","starred_url","subscriptions_url","type","url"]},private:{type:"boolean",description:"Whether the repository is private."},html_url:{type:"string",format:"uri",description:"The URL to view the repository on GitHub.com.",examples:["https://github.com/octocat/Hello-World"]},description:{type:["string","null"],description:"The repository description.",examples:["This your first repo!"]},fork:{type:"boolean",description:"Whether the repository is a fork."},url:{type:"string",format:"uri",description:"The URL to get more information about the repository from the GitHub API.",examples:["https://api.github.com/repos/octocat/Hello-World"]},archive_url:{type:"string",description:"A template for the API URL to download the repository as an archive.",examples:["https://api.github.com/repos/octocat/Hello-World/{archive_format}{/ref}"]},assignees_url:{type:"string",description:"A template for the API URL to list the available assignees for issues in the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/assignees{/user}"]},blobs_url:{type:"string",description:"A template for the API URL to create or retrieve a raw Git blob in the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/git/blobs{/sha}"]},branches_url:{type:"string",description:"A template for the API URL to get information about branches in the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/branches{/branch}"]},collaborators_url:{type:"string",description:"A template for the API URL to get information about collaborators of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/collaborators{/collaborator}"]},comments_url:{type:"string",description:"A template for the API URL to get information about comments on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/comments{/number}"]},commits_url:{type:"string",description:"A template for the API URL to get information about commits on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/commits{/sha}"]},compare_url:{type:"string",description:"A template for the API URL to compare two commits or refs.",examples:["https://api.github.com/repos/octocat/Hello-World/compare/{base}...{head}"]},contents_url:{type:"string",description:"A template for the API URL to get the contents of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/contents/{+path}"]},contributors_url:{type:"string",format:"uri",description:"A template for the API URL to list the contributors to the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/contributors"]},deployments_url:{type:"string",format:"uri",description:"The API URL to list the deployments of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/deployments"]},downloads_url:{type:"string",format:"uri",description:"The API URL to list the downloads on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/downloads"]},events_url:{type:"string",format:"uri",description:"The API URL to list the events of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/events"]},forks_url:{type:"string",format:"uri",description:"The API URL to list the forks of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/forks"]},git_commits_url:{type:"string",description:"A template for the API URL to get information about Git commits of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/git/commits{/sha}"]},git_refs_url:{type:"string",description:"A template for the API URL to get information about Git refs of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/git/refs{/sha}"]},git_tags_url:{type:"string",description:"A template for the API URL to get information about Git tags of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/git/tags{/sha}"]},issue_comment_url:{type:"string",description:"A template for the API URL to get information about issue comments on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/issues/comments{/number}"]},issue_events_url:{type:"string",description:"A template for the API URL to get information about issue events on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/issues/events{/number}"]},issues_url:{type:"string",description:"A template for the API URL to get information about issues on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/issues{/number}"]},keys_url:{type:"string",description:"A template for the API URL to get information about deploy keys on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/keys{/key_id}"]},labels_url:{type:"string",description:"A template for the API URL to get information about labels of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/labels{/name}"]},languages_url:{type:"string",format:"uri",description:"The API URL to get information about the languages of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/languages"]},merges_url:{type:"string",format:"uri",description:"The API URL to merge branches in the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/merges"]},milestones_url:{type:"string",description:"A template for the API URL to get information about milestones of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/milestones{/number}"]},notifications_url:{type:"string",description:"A template for the API URL to get information about notifications on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/notifications{?since,all,participating}"]},pulls_url:{type:"string",description:"A template for the API URL to get information about pull requests on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/pulls{/number}"]},releases_url:{type:"string",description:"A template for the API URL to get information about releases on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/releases{/id}"]},stargazers_url:{type:"string",format:"uri",description:"The API URL to list the stargazers on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/stargazers"]},statuses_url:{type:"string",description:"A template for the API URL to get information about statuses of a commit.",examples:["https://api.github.com/repos/octocat/Hello-World/statuses/{sha}"]},subscribers_url:{type:"string",format:"uri",description:"The API URL to list the subscribers on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/subscribers"]},subscription_url:{type:"string",format:"uri",description:"The API URL to subscribe to notifications for this repository.",examples:["https://api.github.com/repos/octocat/Hello-World/subscription"]},tags_url:{type:"string",format:"uri",description:"The API URL to get information about tags on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/tags"]},teams_url:{type:"string",format:"uri",description:"The API URL to list the teams on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/teams"]},trees_url:{type:"string",description:"A template for the API URL to create or retrieve a raw Git tree of the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/git/trees{/sha}"]},hooks_url:{type:"string",format:"uri",description:"The API URL to list the hooks on the repository.",examples:["https://api.github.com/repos/octocat/Hello-World/hooks"]}},required:["archive_url","assignees_url","blobs_url","branches_url","collaborators_url","comments_url","commits_url","compare_url","contents_url","contributors_url","deployments_url","description","downloads_url","events_url","fork","forks_url","full_name","git_commits_url","git_refs_url","git_tags_url","hooks_url","html_url","id","node_id","issue_comment_url","issue_events_url","issues_url","keys_url","labels_url","languages_url","merges_url","milestones_url","name","notifications_url","owner","private","pulls_url","releases_url","stargazers_url","statuses_url","subscribers_url","subscription_url","tags_url","teams_url","trees_url","url"]}],type:["null"]}},required:["ghsa_id","cve_id","url","html_url","summary","description","severity","author","publisher","identifiers","state","created_at","updated_at","published_at","closed_at","withdrawn_at","submission","vulnerabilities","cvss","cwes","cwe_ids","credits","credits_detailed","collaborating_users","collaborating_teams","private_fork"],additionalProperties:!1}}},s={title:e,description:t,type:r,properties:i};exports.default=s,exports.description=t,exports.properties=i,exports.title=e,exports.type=r;
2
+ //# sourceMappingURL=security_advisories.json.cjs.js.map
package/dist/extractors/utils.cjs.js CHANGED
@@ -1,2 +1,2 @@
1
- "use strict";const i=async(a,c)=>{let t;const e=await a.get(c);return e&&(t={"If-None-Match":e.etag,"If-Modified-Since":e.lastModified}),t};exports.getCacheHeader=i;
1
+ "use strict";const n=async(a,c)=>{let t;const e=await a.get(c);return e&&(t={"If-None-Match":e.etag,"If-Modified-Since":e.lastModified}),t},r=(a,c,t)=>{const e=Object.values(c).filter(i=>!!i).join(":");return`${a}:${e}:${t}`};exports.getCacheHeader=n,exports.getCacheKey=r;
2
2
  //# sourceMappingURL=utils.cjs.js.map
package/package.json CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "name": "@spotify/backstage-plugin-soundcheck-backend-module-github",
3
3
  "description": "Soundcheck 3rd party integration with Github",
4
- "version": "0.7.4",
4
+ "version": "0.7.5",
5
5
  "license": "SEE LICENSE IN LICENSE.md",
6
6
  "homepage": "https://backstage.spotify.com",
7
7
  "main": "dist/index.cjs.js",
@@ -20,31 +20,31 @@
20
20
  },
21
21
  "scripts": {
22
22
  "build": "backstage-cli package build --minify",
23
- "lint": "backstage-cli package lint",
23
+ "lint": "backstage-cli package lint --max-warnings 0",
24
24
  "test": "backstage-cli package test",
25
25
  "clean": "backstage-cli package clean",
26
26
  "prepack": "backstage-cli package prepack",
27
27
  "postpack": "backstage-cli package postpack"
28
28
  },
29
29
  "devDependencies": {
30
- "@backstage/backend-test-utils": "^1.3.0",
31
- "@backstage/cli": "^0.30.0",
32
- "@spotify/backstage-plugin-soundcheck-backend": "^0.19.3",
30
+ "@backstage/backend-test-utils": "^1.3.1",
31
+ "@backstage/cli": "^0.31.0",
32
+ "@spotify/backstage-plugin-soundcheck-backend": "^0.19.4",
33
33
  "@types/git-url-parse": "^9.0.0",
34
34
  "@types/luxon": "^3.0.1",
35
35
  "supertest": "^7.0.0"
36
36
  },
37
37
  "dependencies": {
38
- "@backstage/backend-plugin-api": "^1.2.0",
38
+ "@backstage/backend-plugin-api": "^1.2.1",
39
39
  "@backstage/catalog-model": "^1.7.3",
40
40
  "@backstage/config": "^1.3.2",
41
41
  "@backstage/errors": "^1.2.7",
42
- "@backstage/integration": "^1.16.1",
42
+ "@backstage/integration": "^1.16.2",
43
43
  "@backstage/types": "^1.2.1",
44
44
  "@octokit/request-error": "^5.0.0",
45
45
  "@octokit/rest": "^20.0.0",
46
- "@spotify/backstage-plugin-soundcheck-common": "^0.16.0",
47
- "@spotify/backstage-plugin-soundcheck-node": "^0.9.4",
46
+ "@spotify/backstage-plugin-soundcheck-common": "^0.16.1",
47
+ "@spotify/backstage-plugin-soundcheck-node": "^0.9.5",
48
48
  "git-url-parse": "^16.0.0",
49
49
  "lodash": "^4.17.21",
50
50
  "luxon": "^3.1.1",
@@ -57,12 +57,5 @@
57
57
  "!dist/**/*.map",
58
58
  "config.d.ts"
59
59
  ],
60
- "configSchema": "config.d.ts",
61
- "typesVersions": {
62
- "*": {
63
- "index": [
64
- "dist/index.d.ts"
65
- ]
66
- }
67
- }
60
+ "configSchema": "config.d.ts"
68
61
  }