Skip to content

Commit

Permalink
feat: pilot enabling strict mode on all JSON Schema compliant sources
Browse files Browse the repository at this point in the history 
This enables strict mode in the OSV.dev staging environment for all
sources in staging that have been deemed already be publishing 100% OSV
JSON Schema compliant records already, with the notable exception of the
RustSec Advisory Database due to rustsec/advisory-db#2135

Part of google#2188
  • Loading branch information
@andrewpollock
andrewpollock committed Nov 29, 2024
1 parent 93a4ca7 commit c355aa3
Showing 1 changed file with 25 additions and 25 deletions.
50 changes: 25 additions & 25 deletions source_test.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@
human_link: 'https://errata.almalinux.org/{{ ECOSYSTEMS[1].split(":")[1] }}/{{ BUG_ID | replace(":", "-", 1) }}.html'
link: 'https://github.com/AlmaLinux/osv-database/blob/master/'
editable: False
strict_validation: False
strict_validation: True

- name: 'almalinux-alea'
versions_from_repo: False
Expand All @@ -27,7 +27,7 @@
human_link: 'https://errata.almalinux.org/{{ ECOSYSTEMS[1].split(":")[1] }}/{{ BUG_ID | replace(":", "-", 1) }}.html'
link: 'https://github.com/AlmaLinux/osv-database/blob/master/'
editable: False
strict_validation: False
strict_validation: True

- name: 'almalinux-alsa'
versions_from_repo: False
Expand All @@ -42,7 +42,7 @@
human_link: 'https://errata.almalinux.org/{{ ECOSYSTEMS[1].split(":")[1] }}/{{ BUG_ID | replace(":", "-", 1) }}.html'
link: 'https://github.com/AlmaLinux/osv-database/blob/master/'
editable: False
strict_validation: False
strict_validation: True

- name: 'android'
versions_from_repo: False
Expand All @@ -55,7 +55,7 @@
ignore_git: True
link: 'https://storage.googleapis.com/android-osv-test/'
editable: False
strict_validation: False
strict_validation: True

- name: 'bitnami'
versions_from_repo: False
Expand All @@ -69,7 +69,7 @@
ignore_git: False
link: 'https://github.com/bitnami/vulndb/tree/main/'
editable: False
strict_validation: False
strict_validation: True

- name: 'chainguard'
versions_from_repo: False
Expand All @@ -84,7 +84,7 @@
link: 'https://packages.cgr.dev/chainguard/osv/'
human_link: 'https://images.chainguard.dev/security/{{ BUG_ID }}'
editable: False
strict_validation: False
strict_validation: True

- name: 'curl'
versions_from_repo: False
Expand All @@ -99,7 +99,7 @@
human_link: 'https://curl.se/docs/{{ BUG_ID | replace("CURL-", "") }}.html'
link: 'https://curl.se/docs/'
editable: False
strict_validation: False
strict_validation: True

- name: 'cve-osv'
versions_from_repo: True
Expand Down Expand Up @@ -129,7 +129,7 @@
human_link: 'https://security-tracker.debian.org/tracker/{{ BUG_ID }}'
link: 'https://storage.googleapis.com/debian-osv/'
editable: False
strict_validation: False
strict_validation: True

- name: 'debian-dsa'
versions_from_repo: False
Expand All @@ -144,7 +144,7 @@
human_link: 'https://security-tracker.debian.org/tracker/{{ BUG_ID }}'
link: 'https://storage.googleapis.com/debian-osv/'
editable: False
strict_validation: False
strict_validation: True

- name: 'debian-dtsa'
versions_from_repo: False
Expand All @@ -159,7 +159,7 @@
human_link: 'https://security-tracker.debian.org/tracker/{{ BUG_ID }}'
link: 'https://storage.googleapis.com/debian-osv/'
editable: False
strict_validation: False
strict_validation: True

- name: 'ghsa'
versions_from_repo: False
Expand All @@ -174,7 +174,7 @@
human_link: 'https://github.com/advisories/{{ BUG_ID }}'
link: 'https://github.com/github/advisory-database/blob/main/'
editable: False
strict_validation: False
strict_validation: True

- name: 'go'
versions_from_repo: True
Expand All @@ -189,7 +189,7 @@
human_link: 'https://pkg.go.dev/vuln/{{ BUG_ID }}'
link: 'https://vuln.go.dev/'
editable: False
strict_validation: False
strict_validation: True

- name: 'haskell'
versions_from_repo: False
Expand All @@ -204,7 +204,7 @@
link: 'https://github.com/haskell/security-advisories/blob/generated/osv-export/'
editable: False
repo_username: 'git'
strict_validation: False
strict_validation: True

- name: 'malicious-packages'
versions_from_repo: False
Expand All @@ -218,7 +218,7 @@
ignore_git: False
link: 'https://github.com/ossf/malicious-packages/blob/main/'
editable: False
strict_validation: False
strict_validation: True

- name: 'test-oss-fuzz'
versions_from_repo: True
Expand All @@ -233,7 +233,7 @@
ignore_git: False
link: 'https://github.com/google/oss-fuzz-vulns/blob/main/'
editable: False
strict_validation: False
strict_validation: True

- name: 'psf'
versions_from_repo: True
Expand All @@ -247,7 +247,7 @@
ignore_git: False
link: 'https://github.com/psf/advisory-database/blob/main/'
editable: False
strict_validation: False
strict_validation: True

- name: 'python'
versions_from_repo: False
Expand All @@ -261,7 +261,7 @@
ignore_git: False
link: 'https://github.com/pypa/advisory-database/blob/main/'
editable: False
strict_validation: False
strict_validation: True

- name: 'r'
versions_from_repo: False
Expand All @@ -275,7 +275,7 @@
ignore_git: False
link: 'https://github.com/RConsortium/r-advisory-database/blob/main/'
editable: False
strict_validation: False
strict_validation: True

- name: 'redhat'
versions_from_repo: False
Expand All @@ -290,7 +290,7 @@
human_link: 'https://access.redhat.com/errata/{{ BUG_ID }}'
link: 'https://security.access.redhat.com/data/osv/'
editable: False
strict_validation: False
strict_validation: True

- name: 'rockylinux'
versions_from_repo: False
Expand All @@ -304,7 +304,7 @@
human_link: 'https://errata.rockylinux.org/{{ BUG_ID }}'
link: 'https://storage.googleapis.com/resf-osv-data/'
editable: False
strict_validation: False
strict_validation: True

- name: 'rockylinux-rxsa'
versions_from_repo: False
Expand All @@ -318,7 +318,7 @@
human_link: 'https://errata.rockylinux.org/{{ BUG_ID }}'
link: 'https://storage.googleapis.com/resf-osv-data/'
editable: False
strict_validation: False
strict_validation: True

- name: 'rust'
versions_from_repo: True
Expand Down Expand Up @@ -350,7 +350,7 @@
human_link: 'https://www.suse.com/support/update/announcement/{{ BUG_ID.split(":")[0].split("-")[2] }}/{{ BUG_ID | replace(":", "") | lower }}/'
link: 'https://ftp.suse.com/pub/projects/security/osv/'
editable: False
strict_validation: False
strict_validation: True

- name: 'ubuntu-cve'
versions_from_repo: False
Expand All @@ -365,7 +365,7 @@
human_link: 'https://ubuntu.com/security/{{ BUG_ID | replace("UBUNTU-", "") }}'
link: 'https://github.com/canonical/ubuntu-security-notices/blob/main/'
editable: False
strict_validation: False
strict_validation: True

- name: 'ubuntu-usn'
versions_from_repo: False
Expand All @@ -380,7 +380,7 @@
human_link: 'https://ubuntu.com/security/notices/{{ BUG_ID }}'
link: 'https://github.com/canonical/ubuntu-security-notices/blob/main/'
editable: False
strict_validation: False
strict_validation: True

- name: 'uvi'
versions_from_repo: True
Expand All @@ -396,5 +396,5 @@
editable: False
key_path: 'OSV'
repo_username: 'git'
strict_validation: False
strict_validation: True

0 comments on commit c355aa3

Please sign in to comment.