python-ort 0.1.1__py3-none-any.whl

ort/__init__.py

@@ -0,0 +1,18 @@
+# SPDX-FileCopyrightText: 2025 Helio Chissini de Castro <heliocastro@gmail.com>
+#
+# SPDX-License-Identifier: MIT
+
+from ort.models.analyzer_configurations import OrtAnalyzerConfigurations
+from ort.models.ort_configuration import OrtConfiguration, Scanner, Severity, Storages
+from ort.models.package_manager_configurations import OrtPackageManagerConfigurations
+from ort.models.package_managers import OrtPackageManagers
+
+__all__ = [
+    "OrtAnalyzerConfigurations",
+    "OrtPackageManagerConfigurations",
+    "OrtPackageManagers",
+    "OrtConfiguration",
+    "Scanner",
+    "Severity",
+    "Storages",
+]

ort/models/analyzer_configurations.py

@@ -0,0 +1,43 @@
+# SPDX-FileCopyrightText: 2025 Helio Chissini de Castro <heliocastro@gmail.com>
+# SPDX-License-Identifier: MIT
+
+
+from typing import Any
+
+from pydantic import AnyUrl, BaseModel, ConfigDict, Field
+
+from .package_manager_configurations import OrtPackageManagerConfigurations
+from .package_managers import OrtPackageManagers
+
+
+class PackageManagerConfigs(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    must_run_after: list[OrtPackageManagers] | None = Field(None, alias="mustRunAfter")
+    options: Any | None = None
+
+
+class Sw360Configuration(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    rest_url: AnyUrl = Field(..., alias="restUrl")
+    auth_url: AnyUrl = Field(..., alias="authUrl")
+    username: str
+    password: str | None = None
+    client_id: str = Field(..., alias="clientId")
+    client_password: str | None = Field(None, alias="clientPassword")
+    token: str | None = None
+
+
+class OrtAnalyzerConfigurations(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    allow_dynamic_versions: bool | None = Field(None, alias="allowDynamicVersions")
+    enabled_package_managers: list[OrtPackageManagers] | None = Field(None, alias="enabledPackageManagers")
+    disabled_package_managers: list[OrtPackageManagers] | None = Field(None, alias="disabledPackageManagers")
+    package_managers: OrtPackageManagerConfigurations | None = Field(None, alias="packageManagers")
+    sw360_configuration: Sw360Configuration | None = Field(None, alias="sw360Configuration")
+    skip_excluded: bool | None = Field(None, alias="skipExcluded")

ort/models/ort_configuration.py

@@ -0,0 +1,324 @@
+# SPDX-FileCopyrightText: 2025 Helio Chissini de Castro <heliocastro@gmail.com>
+#
+# SPDX-License-Identifier: MIT
+
+
+from enum import Enum
+from pathlib import Path
+from typing import Annotated, Any
+
+import yaml
+import yaml.parser
+from pydantic import AnyUrl, BaseModel, ConfigDict, Field, RootModel
+
+from .package_manager_configurations import OrtPackageManagerConfigurations
+from .package_managers import OrtPackageManagers
+
+
+class AdvisorConfig(RootModel[dict[str, dict[str, Any]] | None]):
+    root: dict[str, dict[str, Any]] | None = None
+
+
+class Sw360Configuration(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    rest_url: Annotated[AnyUrl, Field(alias="restUrl")]
+    auth_url: Annotated[AnyUrl, Field(alias="authUrl")]
+    username: str
+    password: str | None = None
+    client_id: Annotated[str, Field(alias="clientId")]
+    client_password: Annotated[str | None, Field(alias="clientPassword")] = None
+    token: str | None = None
+
+
+class LicenseFilePatterns(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    license_filenames: Annotated[list[str] | None, Field(alias="licenseFilenames")] = None
+    patent_filenames: Annotated[list[str] | None, Field(alias="patentFilenames")] = None
+    other_license_filenames: Annotated[list[str] | None, Field(alias="otherLicenseFilenames")] = None
+
+
+class Jira(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    host: str | None = None
+    username: str | None = None
+    password: str | None = None
+
+
+class Mail(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    host_name: Annotated[str | None, Field(alias="hostName")] = None
+    username: str | None = None
+    password: str | None = None
+    port: int | None = None
+    use_ssl: Annotated[bool | None, Field(alias="useSsl")] = None
+    from_address: Annotated[str | None, Field(alias="fromAddress")] = None
+
+
+class ReporterOptions(AdvisorConfig):
+    pass
+
+
+class LocalFileStorage(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    directory: str
+    compression: bool | None = None
+
+
+class S3FileStorage(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    access_key_id: Annotated[str | None, Field(alias="accessKeyId")] = None
+    aws_region: Annotated[str | None, Field(alias="awsRegion")] = None
+    bucket_name: Annotated[str, Field(alias="bucketName")]
+    compression: bool | None = None
+    custom_endpoint: Annotated[str | None, Field(alias="customEndpoint")] = None
+    secret_access_key: Annotated[str | None, Field(alias="secretAccessKey")] = None
+
+
+class Connection(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    url: str
+    schema_: Annotated[str | None, Field(alias="schema")] = None
+    username: str
+    password: str | None = None
+    sslmode: str | None = None
+    sslcert: str | None = None
+    sslkey: str | None = None
+    sslrootcert: str | None = None
+    connection_timeout: Annotated[int | None, Field(alias="connectionTimeout")] = None
+    idle_timeout: Annotated[int | None, Field(alias="idleTimeout")] = None
+    keepalive_time: Annotated[int | None, Field(alias="keepaliveTime")] = None
+    max_lifetime: Annotated[int | None, Field(alias="maxLifetime")] = None
+    maximum_pool_size: Annotated[int | None, Field(alias="maximumPoolSize")] = None
+    minimum_idle: Annotated[int | None, Field(alias="minimumIdle")] = None
+
+
+class DetectedLicenseMapping(RootModel[dict[str, str] | None]):
+    root: dict[str, str] | None = None
+
+
+class ScannerConfig(AdvisorConfig):
+    pass
+
+
+class Storages(AdvisorConfig):
+    pass
+
+
+class Severity(Enum):
+    HINT = "HINT"
+    WARNING = "WARNING"
+    ERROR = "ERROR"
+
+
+class SourceCodeOrigins(Enum):
+    ARTIFACT = "ARTIFACT"
+    VCS = "VCS"
+
+
+class StorageTypes(Enum):
+    AWS = "aws"
+    CLEARLY_DEFINED = "clearlyDefined"
+    HTTP = "http"
+    LOCAL = "local"
+    POSTGRES = "postgres"
+
+
+class Headers(RootModel[dict[str, bool | float | str] | None]):
+    root: dict[str, bool | float | str] | None = None
+
+
+class Advisor(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    skip_excluded: Annotated[bool | None, Field(alias="skipExcluded")] = None
+    config: AdvisorConfig | None = None
+
+
+class Downloader(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    allow_moving_revisions: Annotated[bool | None, Field(alias="allowMovingRevisions")] = None
+    included_license_categories: Annotated[list[str] | None, Field(alias="includedLicenseCategories")] = None
+    skip_excluded: Annotated[bool | None, Field(alias="skipExcluded")] = None
+    source_code_origins: Annotated[list[SourceCodeOrigins] | None, Field(alias="sourceCodeOrigins")] = None
+
+
+class Notifier(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    mail: Mail | None = None
+    jira: Jira | None = None
+
+
+class Reporter(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    config: ReporterOptions
+
+
+class HttpFileStorage(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    url: AnyUrl
+    query: str | None = None
+    headers: Headers | None = None
+
+
+class PostgresConfig(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    connection: Connection
+
+
+class AnalyzerConfigurationSchema(BaseModel):
+    """
+    Configurations for package managers used by the The OSS-Review-Toolkit (ORT).
+    A full list of all available options can be found at
+    https://github.com/oss-review-toolkit/ort/blob/main/model/src/main/kotlin/config/AnalyzerConfiguration.kt.
+    """
+
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    allow_dynamic_versions: Annotated[bool | None, Field(alias="allowDynamicVersions")] = None
+    enabled_package_managers: Annotated[list[OrtPackageManagers] | None, Field(alias="enabledPackageManagers")] = None
+    disabled_package_managers: Annotated[list[OrtPackageManagers] | None, Field(alias="disabledPackageManagers")] = None
+    package_managers: Annotated[OrtPackageManagerConfigurations | None, Field(alias="packageManagers")] = None
+    sw360_configuration: Annotated[Sw360Configuration | None, Field(alias="sw360Configuration")] = None
+    skip_excluded: Annotated[bool | None, Field(alias="skipExcluded")] = None
+
+
+class FileStorage1(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    local_file_storage: Annotated[LocalFileStorage, Field(alias="localFileStorage")]
+    http_file_storage: Annotated[HttpFileStorage | None, Field(alias="httpFileStorage")] = None
+    s3_file_storage: Annotated[S3FileStorage | None, Field(alias="s3FileStorage")] = None
+
+
+class FileStorage2(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    local_file_storage: Annotated[LocalFileStorage | None, Field(alias="localFileStorage")] = None
+    http_file_storage: Annotated[HttpFileStorage, Field(alias="httpFileStorage")]
+    s3_file_storage: Annotated[S3FileStorage | None, Field(alias="s3FileStorage")] = None
+
+
+class FileStorage3(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    local_file_storage: Annotated[LocalFileStorage | None, Field(alias="localFileStorage")] = None
+    http_file_storage: Annotated[HttpFileStorage | None, Field(alias="httpFileStorage")] = None
+    s3_file_storage: Annotated[S3FileStorage, Field(alias="s3FileStorage")]
+
+
+class FileStorage(RootModel[FileStorage1 | FileStorage2 | FileStorage3]):
+    root: FileStorage1 | FileStorage2 | FileStorage3
+
+
+class ProvenanceStorage(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    file_storage: Annotated[FileStorage | None, Field(alias="fileStorage")] = None
+    postgres_storage: Annotated[PostgresConfig | None, Field(alias="postgresStorage")] = None
+
+
+class Analyzer(RootModel[AnalyzerConfigurationSchema]):
+    root: AnalyzerConfigurationSchema
+
+
+class Archive(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    enabled: bool | None = None
+    file_storage: Annotated[FileStorage | None, Field(alias="fileStorage")] = None
+    postgres_storage: Annotated[PostgresConfig | None, Field(alias="postgresStorage")] = None
+
+
+class FileListStorage(ProvenanceStorage):
+    pass
+
+
+class Scanner(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    skip_concluded: Annotated[bool | None, Field(alias="skipConcluded")] = None
+    skip_excluded: Annotated[bool | None, Field(alias="skipExcluded")] = None
+    archive: Archive | None = None
+    detected_license_mapping: Annotated[DetectedLicenseMapping | None, Field(alias="detectedLicenseMapping")] = None
+    file_list_storage: Annotated[FileListStorage | None, Field(alias="fileListStorage")] = None
+    config: ScannerConfig | None = None
+    storages: Storages | None = None
+    storage_readers: Annotated[list[StorageTypes] | None, Field(alias="storageReaders")] = None
+    storage_writers: Annotated[list[StorageTypes] | None, Field(alias="storageWriters")] = None
+    ignore_patterns: Annotated[list[str] | None, Field(alias="ignorePatterns")] = None
+    provenance_storage: Annotated[ProvenanceStorage | None, Field(alias="provenanceStorage")] = None
+
+
+class Ort(BaseModel):
+    license_file_patterns: Annotated[LicenseFilePatterns | None, Field(alias="licenseFilePatterns")] = None
+    severe_issue_threshold: Annotated[Severity | None, Field(alias="severeIssueThreshold")] = None
+    severe_rule_violation_threshold: Annotated[Severity | None, Field(alias="severeRuleViolationThreshold")] = None
+    enable_repository_package_curations: Annotated[bool | None, Field(alias="enableRepositoryPackageCurations")] = None
+    enable_repository_package_configurations: Annotated[
+        bool | None, Field(alias="enableRepositoryPackageConfigurations")
+    ] = None
+    analyzer: Analyzer | None = None
+    advisor: Advisor | None = None
+    downloader: Downloader | None = None
+    scanner: Scanner | None = None
+    reporter: Reporter | None = None
+    notifier: Notifier | None = None
+
+
+class OrtConfiguration(BaseModel):
+    """
+    The main configuration file for the OSS-Review-Toolkit (ORT).
+    A full list of all available options can be found at
+    https://github.com/oss-review-toolkit/ort/blob/main/model/src/main/resources/reference.yml.
+    """
+
+    ort: Ort
+
+    def __init__(self, ort_file: str | Path | None = None, **data: dict[str, Any]) -> None:
+        if ort_file:
+            if isinstance(ort_file, str):
+                ort_file = Path(ort_file)
+            try:
+                with ort_file.open() as fp:
+                    model = yaml.safe_load(fp)
+                data.update(model)
+            except FileNotFoundError as e:
+                raise ValueError(e)
+            except yaml.parser.ParserError as e:
+                print(f"Error decoding YAML from {ort_file}")
+                raise ValueError(e)
+            except Exception as e:
+                raise ValueError(e)
+            super().__init__(**data)

ort/models/package_manager_configurations.py

@@ -0,0 +1,21 @@
+# SPDX-FileCopyrightText: 2025 Helio Chissini de Castro <heliocastro@gmail.com>
+# SPDX-License-Identifier: MIT
+
+
+from typing import Any
+
+from pydantic import BaseModel, ConfigDict, Field, RootModel
+
+from .package_managers import OrtPackageManagers
+
+
+class PackageManagerConfigs(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    must_run_after: list[OrtPackageManagers] | None = Field(None, alias="mustRunAfter")
+    options: Any | None = None
+
+
+class OrtPackageManagerConfigurations(RootModel[dict[str, PackageManagerConfigs]]):
+    root: dict[str, PackageManagerConfigs]

ort/models/package_managers.py

@@ -0,0 +1,34 @@
+# SPDX-FileCopyrightText: 2025 Helio Chissini de Castro <heliocastro@gmail.com>
+# SPDX-License-Identifier: MIT
+
+
+from enum import Enum
+
+
+class OrtPackageManagers(Enum):
+    bazel = "Bazel"
+    bower = "Bower"
+    bundler = "Bundler"
+    cargo = "Cargo"
+    carthage = "Carthage"
+    cocoa_pods = "CocoaPods"
+    composer = "Composer"
+    conan = "Conan"
+    go_mod = "GoMod"
+    gradle = "Gradle"
+    gradle_inspector = "GradleInspector"
+    maven = "Maven"
+    npm = "NPM"
+    nu_get = "NuGet"
+    pip = "PIP"
+    pipenv = "Pipenv"
+    pnpm = "PNPM"
+    poetry = "Poetry"
+    pub = "Pub"
+    sbt = "SBT"
+    spdx_document_file = "SpdxDocumentFile"
+    stack = "Stack"
+    swift_pm = "SwiftPM"
+    unmanaged = "Unmanaged"
+    yarn = "Yarn"
+    yarn2 = "Yarn2"

ort/models/repository_configuration.py

@@ -0,0 +1,391 @@
+# SPDX-FileCopyrightText: 2025 Helio Chissini de Castro <heliocastro@gmail.com>
+# SPDX-License-Identifier: MIT
+
+
+from enum import Enum
+from typing import Any
+
+from pydantic import BaseModel, ConfigDict, Field, RootModel
+
+from .analyzer_configurations import OrtAnalyzerConfigurations
+from .package_manager_configurations import OrtPackageManagerConfigurations
+from .package_managers import OrtPackageManagers
+
+
+class OrtRepositoryConfigurationLicenseChoicesPackageLicenseChoiceLicenseChoice(BaseModel):
+    given: str | None = None
+    choice: str
+
+
+class OrtRepositoryConfigurationLicenseChoicesPackageLicenseChoice(BaseModel):
+    package_id: str
+    license_choices: list[OrtRepositoryConfigurationLicenseChoicesPackageLicenseChoiceLicenseChoice]
+
+
+class OrtRepositoryConfigurationLicenseChoices(BaseModel):
+    package_license_choices: list[OrtRepositoryConfigurationLicenseChoicesPackageLicenseChoice] | None = None
+    repository_license_choices: list[Any] | None = None
+
+
+class OrtRepositoryConfigurationSnippetChoiceProvenance(BaseModel):
+    url: str
+
+
+class OrtRepositoryConfigurationSnippetChoiceChoiceGivenSourceLocation(BaseModel):
+    path: str
+    start_line: int
+    end_line: int
+
+
+class OrtRepositoryConfigurationSnippetChoiceChoiceGiven(BaseModel):
+    source_location: OrtRepositoryConfigurationSnippetChoiceChoiceGivenSourceLocation | None = None
+
+
+class PackageManagerConfigs(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+    )
+    must_run_after: list[OrtPackageManagers] | None = None
+    options: Any | None = None
+
+
+class IssueResolutionReason(Enum):
+    build_tool_issue = "BUILD_TOOL_ISSUE"
+    cant_fix_issue = "CANT_FIX_ISSUE"
+    scanner_issue = "SCANNER_ISSUE"
+
+
+class RuleViolationResolutionReason(Enum):
+    cant_fix_exception = "CANT_FIX_EXCEPTION"
+    dynamic_linkage_exception = "DYNAMIC_LINKAGE_EXCEPTION"
+    example_of_exception = "EXAMPLE_OF_EXCEPTION"
+    license_acquired_exception = "LICENSE_ACQUIRED_EXCEPTION"
+    not_modified_exception = "NOT_MODIFIED_EXCEPTION"
+    patent_grant_exception = "PATENT_GRANT_EXCEPTION"
+
+
+class VulnerabilityResolutionReason(Enum):
+    cant_fix_vulnerability = "CANT_FIX_VULNERABILITY"
+    ineffective_vulnerability = "INEFFECTIVE_VULNERABILITY"
+    invalid_match_vulnerability = "INVALID_MATCH_VULNERABILITY"
+    mitigated_vulnerability = "MITIGATED_VULNERABILITY"
+    not_a_vulnerability = "NOT_A_VULNERABILITY"
+    will_not_fix_vulnerability = "WILL_NOT_FIX_VULNERABILITY"
+    workaround_for_vulnerability = "WORKAROUND_FOR_VULNERABILITY"
+
+
+class VcsMatcherVcsMatcher(BaseModel):
+    path: str | None = None
+    revision: str | None = None
+    type: str
+    url: str | None = None
+
+
+class VcsMatcherVcsMatcher1(BaseModel):
+    path: str | None = None
+    revision: str | None = None
+    type: str | None = None
+    url: str
+
+
+class VcsMatcherVcsMatcher2(BaseModel):
+    path: str | None = None
+    revision: str
+    type: str | None = None
+    url: str | None = None
+
+
+class VcsMatcherVcsMatcher3(BaseModel):
+    path: str
+    revision: str | None = None
+    type: str | None = None
+    url: str | None = None
+
+
+class VcsMatcher(
+    RootModel[VcsMatcherVcsMatcher | VcsMatcherVcsMatcher1 | VcsMatcherVcsMatcher2 | VcsMatcherVcsMatcher3]
+):
+    root: VcsMatcherVcsMatcher | VcsMatcherVcsMatcher1 | VcsMatcherVcsMatcher2 | VcsMatcherVcsMatcher3
+
+
+class Hash(BaseModel):
+    value: str
+    algorithm: str
+
+
+class PackageConfigurationSchemaSourceCodeOrigin(Enum):
+    vcs = "VCS"
+    artifact = "ARTIFACT"
+
+
+class PackageConfigurationSchemaLicenseFindingCurationReason(Enum):
+    code = "CODE"
+    data_of = "DATA_OF"
+    documentation_of = "DOCUMENTATION_OF"
+    incorrect = "INCORRECT"
+    not_detected = "NOT_DETECTED"
+    reference = "REFERENCE"
+
+
+class LicenseFindingCurations(BaseModel):
+    comment: str | None = None
+    concluded_license: str
+    detected_license: str | None = None
+    line_count: int | None = None
+    path: str
+    reason: PackageConfigurationSchemaLicenseFindingCurationReason
+    start_lines: int | str | None = None
+
+
+class PathExcludeReason(Enum):
+    build_tool_of = "BUILD_TOOL_OF"
+    data_file_of = "DATA_FILE_OF"
+    documentation_of = "DOCUMENTATION_OF"
+    example_of = "EXAMPLE_OF"
+    optional_component_of = "OPTIONAL_COMPONENT_OF"
+    other = "OTHER"
+    provided_by = "PROVIDED_BY"
+    test_of = "TEST_OF"
+    test_tool_of = "TEST_TOOL_OF"
+
+
+VcsMatcherVcsMatcher4 = VcsMatcherVcsMatcher
+
+
+VcsMatcherVcsMatcher5 = VcsMatcherVcsMatcher1
+
+
+VcsMatcherVcsMatcher6 = VcsMatcherVcsMatcher2
+
+
+VcsMatcherVcsMatcher7 = VcsMatcherVcsMatcher3
+
+
+class VcsMatcherModel(
+    RootModel[VcsMatcherVcsMatcher4 | VcsMatcherVcsMatcher5 | VcsMatcherVcsMatcher6 | VcsMatcherVcsMatcher7]
+):
+    root: VcsMatcherVcsMatcher4 | VcsMatcherVcsMatcher5 | VcsMatcherVcsMatcher6 | VcsMatcherVcsMatcher7
+
+
+class PathIncludeReason(Enum):
+    source_of = "SOURCE_OF"
+
+
+class ScopeExcludeReason(Enum):
+    build_dependency_of = "BUILD_DEPENDENCY_OF"
+    dev_dependency_of = "DEV_DEPENDENCY_OF"
+    documentation_dependency_of = "DOCUMENTATION_DEPENDENCY_OF"
+    provided_dependency_of = "PROVIDED_DEPENDENCY_OF"
+    test_dependency_of = "TEST_DEPENDENCY_OF"
+    runtime_dependency_of = "RUNTIME_DEPENDENCY_OF"
+
+
+class SnippetChoiceReason(Enum):
+    no_relevant_finding = "NO_RELEVANT_FINDING"
+    original_finding = "ORIGINAL_FINDING"
+    other = "OTHER"
+
+
+class OrtRepositoryConfigurationIncludesPath(BaseModel):
+    pattern: str = Field(
+        ...,
+        description="A glob to match the path of the project definition file, relative to the root of the repository.",
+    )
+    reason: PathIncludeReason
+    comment: str | None = None
+
+
+class OrtRepositoryConfigurationIncludes(BaseModel):
+    paths: list[OrtRepositoryConfigurationIncludesPath] | None = None
+
+
+class OrtRepositoryConfigurationExcludesPath(BaseModel):
+    pattern: str = Field(
+        ...,
+        description="A glob to match the path of the project definition file, relative to the root of the repository.",
+    )
+    reason: PathExcludeReason
+    comment: str | None = None
+
+
+class OrtRepositoryConfigurationExcludesScope(BaseModel):
+    pattern: str
+    reason: ScopeExcludeReason
+    comment: str | None = None
+
+
+class OrtRepositoryConfigurationExcludes(BaseModel):
+    paths: list[OrtRepositoryConfigurationExcludesPath] | None = None
+    scopes: list[OrtRepositoryConfigurationExcludesScope] | None = None
+
+
+class OrtRepositoryConfigurationSnippetChoiceChoiceChoice(BaseModel):
+    purl: str | None = None
+    reason: SnippetChoiceReason
+    comment: str | None = None
+
+
+class OrtRepositoryConfigurationSnippetChoiceChoice(BaseModel):
+    given: OrtRepositoryConfigurationSnippetChoiceChoiceGiven
+    choice: OrtRepositoryConfigurationSnippetChoiceChoiceChoice
+
+
+class OrtRepositoryConfigurationSnippetChoice(BaseModel):
+    provenance: OrtRepositoryConfigurationSnippetChoiceProvenance
+    choices: list[OrtRepositoryConfigurationSnippetChoiceChoice]
+
+
+class PackageManagerConfigurationSchema(RootModel[dict[str, PackageManagerConfigs]]):
+    root: dict[str, PackageManagerConfigs]
+
+
+class ResolutionsSchemaResolutionsSchemaIssue(BaseModel):
+    message: str
+    reason: IssueResolutionReason
+    comment: str | None = None
+
+
+class ResolutionsSchemaResolutionsSchemaRuleViolation(BaseModel):
+    message: str
+    reason: RuleViolationResolutionReason
+    comment: str | None = None
+
+
+class ResolutionsSchemaResolutionsSchemaVulnerability(BaseModel):
+    id: str
+    reason: VulnerabilityResolutionReason
+    comment: str | None = None
+
+
+class ResolutionsSchemaResolutionsSchema(BaseModel):
+    issues: list[ResolutionsSchemaResolutionsSchemaIssue]
+    rule_violations: list[ResolutionsSchemaResolutionsSchemaRuleViolation] | None = None
+    vulnerabilities: list[ResolutionsSchemaResolutionsSchemaVulnerability] | None = None
+
+
+ResolutionsSchemaResolutionsSchema1Issue = ResolutionsSchemaResolutionsSchemaIssue
+
+
+ResolutionsSchemaResolutionsSchema1RuleViolation = ResolutionsSchemaResolutionsSchemaRuleViolation
+
+
+ResolutionsSchemaResolutionsSchema1Vulnerability = ResolutionsSchemaResolutionsSchemaVulnerability
+
+
+class ResolutionsSchemaResolutionsSchema1(BaseModel):
+    issues: list[ResolutionsSchemaResolutionsSchema1Issue] | None = None
+    rule_violations: list[ResolutionsSchemaResolutionsSchema1RuleViolation]
+    vulnerabilities: list[ResolutionsSchemaResolutionsSchema1Vulnerability] | None = None
+
+
+ResolutionsSchemaResolutionsSchema2Issue = ResolutionsSchemaResolutionsSchemaIssue
+
+
+ResolutionsSchemaResolutionsSchema2RuleViolation = ResolutionsSchemaResolutionsSchemaRuleViolation
+
+
+ResolutionsSchemaResolutionsSchema2Vulnerability = ResolutionsSchemaResolutionsSchemaVulnerability
+
+
+class ResolutionsSchemaResolutionsSchema2(BaseModel):
+    issues: list[ResolutionsSchemaResolutionsSchema2Issue] | None = None
+    rule_violations: list[ResolutionsSchemaResolutionsSchema2RuleViolation] | None = None
+    vulnerabilities: list[ResolutionsSchemaResolutionsSchema2Vulnerability]
+
+
+class ResolutionsSchema(
+    RootModel[
+        ResolutionsSchemaResolutionsSchema | ResolutionsSchemaResolutionsSchema1 | ResolutionsSchemaResolutionsSchema2
+    ]
+):
+    root: (
+        ResolutionsSchemaResolutionsSchema | ResolutionsSchemaResolutionsSchema1 | ResolutionsSchemaResolutionsSchema2
+    ) = Field(
+        ...,
+        description="The OSS-Review-Toolkit (ORT) provides a possibility to resolve issues, rule violations and"
+        "security vulnerabilities in a resolutions file. A full list of all available options can be found at"
+        "https://oss-review-toolkit.org/ort/docs/configuration/resolutions.",
+        title="ORT resolutions",
+    )
+
+
+class CurationsSchemaCurationsSchemaItemCurationsBinaryArtifact(BaseModel):
+    url: str
+    hash: Hash
+
+
+CurationsSchemaCurationsSchemaItemCurationsSourceArtifact = CurationsSchemaCurationsSchemaItemCurationsBinaryArtifact
+
+
+class CurationsSchemaCurationsSchemaItemCurations(BaseModel):
+    comment: str | None = None
+    authors: list[str] | None = None
+    concluded_license: str | None = None
+    cpe: str | None = None
+    declared_license_mapping: dict[str, Any] | None = None
+    description: str | None = None
+    homepage_url: str | None = None
+    purl: str | None = None
+    binary_artifact: CurationsSchemaCurationsSchemaItemCurationsBinaryArtifact | None = None
+    source_artifact: CurationsSchemaCurationsSchemaItemCurationsSourceArtifact | None = None
+    vcs: VcsMatcher | None = None
+    is_metadata_only: bool | None = None
+    is_modified: bool | None = None
+
+
+class CurationsSchemaCurationsSchemaItem(BaseModel):
+    id: str
+    curations: CurationsSchemaCurationsSchemaItemCurations
+
+
+class CurationsSchema(RootModel[list[CurationsSchemaCurationsSchemaItem]]):
+    root: list[CurationsSchemaCurationsSchemaItem] = Field(
+        ...,
+        description="The OSS-Review-Toolkit (ORT) provides a possibility to correct metadata and set"
+        "the concluded license for a specific packages (dependencies) in curation files. A full list of all available"
+        "options can be found at https://oss-review-toolkit.org/ort/docs/configuration/package-curations.",
+        title="ORT curations",
+    )
+
+
+class LicenseFindingCurationsModel(BaseModel):
+    path: str
+    start_lines: int | str | None = None
+    line_count: int | None = None
+    detected_license: str | None = None
+    concluded_license: str
+    reason: PackageConfigurationSchemaLicenseFindingCurationReason
+    comment: str | None = None
+
+
+class OrtRepositoryConfigurationCurations(BaseModel):
+    license_findings: list[LicenseFindingCurationsModel]
+    packages: CurationsSchema | None = None
+
+
+class OrtRepositoryConfigurationCurations1(BaseModel):
+    license_findings: list[LicenseFindingCurationsModel] | None = None
+    packages: CurationsSchema
+
+
+class OrtRepositoryConfiguration(BaseModel):
+    analyzer: OrtAnalyzerConfigurations | None = None
+    includes: OrtRepositoryConfigurationIncludes | None = Field(
+        None, description="Defines which parts of a repository should be included."
+    )
+    excludes: OrtRepositoryConfigurationExcludes | None = Field(
+        None, description="Defines which parts of a repository should be excluded."
+    )
+    resolutions: ResolutionsSchema | None = None
+    curations: OrtRepositoryConfigurationCurations | OrtRepositoryConfigurationCurations1 | None = Field(
+        None, description="Curations for artifacts in a repository."
+    )
+    package_configurations: list[OrtPackageManagerConfigurations] | None = Field(
+        None, description="A configuration for a specific package and provenance."
+    )
+    license_choices: OrtRepositoryConfigurationLicenseChoices | None = Field(
+        None, description="A configuration to select a license from a multi-licensed package."
+    )
+    snippet_choices: list[OrtRepositoryConfigurationSnippetChoice] | None = Field(
+        None, description="A configuration to select a snippet from a package with multiple snippet findings."
+    )

ort/models/resolutions.py

@@ -0,0 +1,100 @@
+# SPDX-FileCopyrightText: 2025 Helio Chissini de Castro <heliocastro@gmail.com>
+#
+# SPDX-License-Identifier: MIT
+
+
+from enum import Enum
+from typing import Annotated
+
+from pydantic import BaseModel, Field, RootModel
+
+
+class IssueResolutionReason(Enum):
+    BUILD_TOOL_ISSUE = "BUILD_TOOL_ISSUE"
+    CANT_FIX_ISSUE = "CANT_FIX_ISSUE"
+    SCANNER_ISSUE = "SCANNER_ISSUE"
+
+
+class RuleViolationResolutionReason(Enum):
+    CANT_FIX_EXCEPTION = "CANT_FIX_EXCEPTION"
+    DYNAMIC_LINKAGE_EXCEPTION = "DYNAMIC_LINKAGE_EXCEPTION"
+    EXAMPLE_OF_EXCEPTION = "EXAMPLE_OF_EXCEPTION"
+    LICENSE_ACQUIRED_EXCEPTION = "LICENSE_ACQUIRED_EXCEPTION"
+    NOT_MODIFIED_EXCEPTION = "NOT_MODIFIED_EXCEPTION"
+    PATENT_GRANT_EXCEPTION = "PATENT_GRANT_EXCEPTION"
+
+
+class VulnerabilityResolutionReason(Enum):
+    CANT_FIX_VULNERABILITY = "CANT_FIX_VULNERABILITY"
+    INEFFECTIVE_VULNERABILITY = "INEFFECTIVE_VULNERABILITY"
+    INVALID_MATCH_VULNERABILITY = "INVALID_MATCH_VULNERABILITY"
+    MITIGATED_VULNERABILITY = "MITIGATED_VULNERABILITY"
+    NOT_A_VULNERABILITY = "NOT_A_VULNERABILITY"
+    WILL_NOT_FIX_VULNERABILITY = "WILL_NOT_FIX_VULNERABILITY"
+    WORKAROUND_FOR_VULNERABILITY = "WORKAROUND_FOR_VULNERABILITY"
+
+
+class Issue(BaseModel):
+    message: str
+    reason: IssueResolutionReason
+    comment: str | None = None
+
+
+class RuleViolation(BaseModel):
+    message: str
+    reason: RuleViolationResolutionReason
+    comment: str | None = None
+
+
+class Vulnerability(BaseModel):
+    id: str
+    reason: VulnerabilityResolutionReason
+    comment: str | None = None
+
+
+class OrtResolutions1(BaseModel):
+    """
+    The OSS-Review-Toolkit (ORT) provides a possibility to resolve issues, rule violations and security
+    vulnerabilities in a resolutions file. A full list of all available options can be found at
+    https://oss-review-toolkit.org/ort/docs/configuration/resolutions.
+    """
+
+    issues: list[Issue]
+    rule_violations: list[RuleViolation] | None = None
+    vulnerabilities: list[Vulnerability] | None = None
+
+
+class OrtResolutions2(BaseModel):
+    """
+    The OSS-Review-Toolkit (ORT) provides a possibility to resolve issues, rule violations and
+    security vulnerabilities in a resolutions file. A full list of all available options can be
+    found at https://oss-review-toolkit.org/ort/docs/configuration/resolutions.
+    """
+
+    issues: list[Issue] | None = None
+    rule_violations: list[RuleViolation]
+    vulnerabilities: list[Vulnerability] | None = None
+
+
+class OrtResolutions3(BaseModel):
+    """
+    The OSS-Review-Toolkit (ORT) provides a possibility to resolve issues, rule violations and
+    security vulnerabilities in a resolutions file. A full list of all available options can be
+    found at https://oss-review-toolkit.org/ort/docs/configuration/resolutions.
+    """
+
+    issues: list[Issue] | None = None
+    rule_violations: list[RuleViolation] | None = None
+    vulnerabilities: list[Vulnerability]
+
+
+class OrtResolutions(RootModel[OrtResolutions1 | OrtResolutions2 | OrtResolutions3]):
+    root: Annotated[
+        OrtResolutions1 | OrtResolutions2 | OrtResolutions3,
+        Field(title="ORT resolutions"),
+    ]
+    """
+    The OSS-Review-Toolkit (ORT) provides a possibility to resolve issues, rule violations and
+    security vulnerabilities in a resolutions file. A full list of all available options can be
+    found at https://oss-review-toolkit.org/ort/docs/configuration/resolutions.
+    """

python_ort-0.1.1.dist-info/METADATA

@@ -0,0 +1,22 @@
+Metadata-Version: 2.4
+Name: python-ort
+Version: 0.1.1
+Summary: A Python Ort model serialization library
+License-Expression: MIT
+License-File: LICENSE
+Classifier: Development Status :: 3 - Alpha
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python :: 3 :: Only
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.14
+Classifier: Topic :: Software Development :: Libraries :: Python Modules
+Requires-Dist: pydantic>=2.11.10
+Requires-Dist: pyyaml>=6.0.3
+Requires-Python: >=3.10
+Description-Content-Type: text/markdown
+
+# Python-Ort
+
+Python-Ort is a pydantic based library to serialize OSS Review Toolkit generated reports using the default models.

python_ort-0.1.1.dist-info/RECORD

@@ -0,0 +1,12 @@
+ort/__init__.py,sha256=pnZYJbTJPJtRzKlcnMy9YfdR46yaRDj9rsAcB1F06yY,603
+ort/models/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+ort/models/analyzer_configurations.py,sha256=f0oZrvTj9oCScR2-5INVGQt9AdJBexYLWmpF181_3WE,1613
+ort/models/ort_configuration.py,sha256=n_-PPHm0sveQuq7gOUpEjjrisO_VCrlFNoM67ZaqIfM,11018
+ort/models/package_manager_configurations.py,sha256=-XI5wYuorcJp1NrS4y48jK0aU0wDpGmwpLHYWes9ZPc,599
+ort/models/package_managers.py,sha256=JNfuWP5c5_0sOnJEt1YjZeSo9PePSm80yDwb89nkL94,760
+ort/models/repository_configuration.py,sha256=Z9gRgTyhokpdmx7OGz2-Y3wlmUep0jy-V-1_aRPGymw,12982
+ort/models/resolutions.py,sha256=3OuCC9yYMu5Ovt2UD04ms9zJuWBXtBDjof-8fRzErlw,3423
+python_ort-0.1.1.dist-info/licenses/LICENSE,sha256=koFhbHMglt1BNVuMKdBBlrQcgQsWLgo4pZW6cCtyGvA,1081
+python_ort-0.1.1.dist-info/WHEEL,sha256=n2u5OFBbdZvCiUKAmfnY1Po2j3FB_NWfuUlt5WiAjrk,79
+python_ort-0.1.1.dist-info/METADATA,sha256=-eNIPiytKVhR0IWSw8YkMn451Adm0F_aRhoonjeJ_Mw,830
+python_ort-0.1.1.dist-info/RECORD,,

python_ort-0.1.1.dist-info/WHEEL

@@ -0,0 +1,4 @@
+Wheel-Version: 1.0
+Generator: uv 0.8.23
+Root-Is-Purelib: true
+Tag: py3-none-any

python_ort-0.1.1.dist-info/licenses/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 Helio Chissini de Castro
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.