diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 00000000000..5990d9c64c1 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,11 @@ +# To get started with Dependabot version updates, you'll need to specify which +# package ecosystems to update and where the package manifests are located. +# Please see the documentation for all configuration options: +# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file + +version: 2 +updates: + - package-ecosystem: "" # See documentation for possible values + directory: "/" # Location of package manifests + schedule: + interval: "weekly" diff --git a/.github/workflows/Create a folder b/.github/workflows/Create a folder new file mode 100644 index 00000000000..6bfe75549a1 --- /dev/null +++ b/.github/workflows/Create a folder @@ -0,0 +1,8 @@ +# Create a folder +$ mkdir actions-runner && cd actions-runner +# Download the latest runner package +$ curl -o actions-runner-linux-x64-2.321.0.tar.gz -L https://github.com/actions/runner/releases/download/v2.321.0/actions-runner-linux-x64-2.321.0.tar.gz +# Optional: Validate the hash +$ echo "ba46ba7ce3a4d7236b16fbe44419fb453bc08f866b24f04d549ec89f1722a29e actions-runner-linux-x64-2.321.0.tar.gz" | shasum -a 256 -c +# Extract the installer +$ tar xzf ./actions-runner-linux-x64-2.321.0.tar.gz diff --git a/.github/workflows/jekyll-docker.yml b/.github/workflows/jekyll-docker.yml new file mode 100644 index 00000000000..7bb37b91818 --- /dev/null +++ b/.github/workflows/jekyll-docker.yml @@ -0,0 +1,20 @@ +name: Jekyll site CI + +on: + push: + branches: [ "main" ] + pull_request: + branches: [ "main" ] + +jobs: + build: + + runs-on: ubuntu-latest + + steps: + - uses: actions/checkout@v4 + - name: Build the site in the jekyll/builder container + run: | + docker run \ + -v ${{ github.workspace }}:/srv/jekyll -v ${{ github.workspace }}/_site:/srv/jekyll/_site \ + jekyll/builder:latest /bin/bash -c "chmod -R 777 /srv/jekyll && jekyll build --future" diff --git a/.github/workflows/npm-publish-github-packages.yml b/.github/workflows/npm-publish-github-packages.yml new file mode 100644 index 00000000000..ea2d329fa02 --- /dev/null +++ b/.github/workflows/npm-publish-github-packages.yml @@ -0,0 +1,36 @@ +# This workflow will run tests using node and then publish a package to GitHub Packages when a release is created +# For more information see: https://docs.github.com/en/actions/publishing-packages/publishing-nodejs-packages + +name: Node.js Package + +on: + release: + types: [created] + +jobs: + build: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 + with: + node-version: 20 + - run: npm ci + - run: npm test + + publish-gpr: + needs: build + runs-on: ubuntu-latest + permissions: + contents: read + packages: write + steps: + - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 + with: + node-version: 20 + registry-url: https://npm.pkg.github.com/ + - run: npm ci + - run: npm publish + env: + NODE_AUTH_TOKEN: ${{secrets.GITHUB_TOKEN}} diff --git a/.github/workflows/validate-schema.yml b/.github/workflows/validate-schema.yml index 6545dee93b1..ddc71852c2d 100644 --- a/.github/workflows/validate-schema.yml +++ b/.github/workflows/validate-schema.yml @@ -1,13 +1,13 @@ -name: Validate JSON Schemas -on: - push: - branches: - - master - pull_request: - types: [opened, synchronize, reopened] - workflow_dispatch: - branches: - - master +Name: Update Validate-Schema.yml +Validate JSON Schemas + On: + Push: + Branches: + - Master + Pull_Request: + Types: [Opened, Synchronize, Reopened] + Workflow_dispatch: + branches - master env: CVE_SCHEMA_DIR: schema CVE_SCHEMA_FILENAME: CVE_Record_Format.json diff --git a/.gitignore b/.gitignore index 02709c03380..89eb8c82195 100644 --- a/.gitignore +++ b/.gitignore @@ -1,3 +1,3 @@ - + package-lock.json node_modules diff --git a/LICENSE.txt b/LICENSE.txt index 0e259d42c99..77c6cb47138 100644 --- a/LICENSE.txt +++ b/LICENSE.txt @@ -1,4 +1,4 @@ -Creative Commons Legal Code +Creative Commons Legal Code CC0 1.0 Universal diff --git a/schema/CVE_Record_Format.json b/schema/CVE_Record_Format.json index f74450c32c8..0a6b25e6d59 100644 --- a/schema/CVE_Record_Format.json +++ b/schema/CVE_Record_Format.json @@ -1,4 +1,6 @@ -{ + + +{ "$schema": "http://json-schema.org/draft-07/schema#", "$id": "https://cveproject.github.io/cve-schema/schema/CVE_Record_Format.json", "title": "CVE JSON record format", diff --git a/tools/cmdlinejsonvalidator.py b/tools/cmdlinejsonvalidator.py index 81855c3a0b9..6bd41f0c2de 100644 --- a/tools/cmdlinejsonvalidator.py +++ b/tools/cmdlinejsonvalidator.py @@ -1,6 +1,6 @@ -#!/usr/bin/env python +#!/usr/bin/env python -################################################################################### +################################################################################### ###################### Python Script to validate JSON file ######################## ################################################################################### diff --git a/tools/cna-assignment-info-to-json.pl b/tools/cna-assignment-info-to-json.pl index 5ebb08bb859..85d4a88fc04 100755 --- a/tools/cna-assignment-info-to-json.pl +++ b/tools/cna-assignment-info-to-json.pl @@ -1,4 +1,4 @@ -#!/usr/bin/perl -w +#/usr/bin/perl -w # # Convert CNA assignment information in CSV or flat file format to JSON. # @@ -7,7 +7,7 @@ ###################################################################### use strict; -use Getopt::Long; +use Getopt::Long; use JSON::XS; use Text::CSV_XS; diff --git a/tools/mitre-cna-assignment-info.js b/tools/mitre-cna-assignment-info.js index 7116e36600f..d9e6f69f4de 100644 --- a/tools/mitre-cna-assignment-info.js +++ b/tools/mitre-cna-assignment-info.js @@ -1,4 +1,4 @@ -// +// // Runs an HTTP server to prompt for CVE assignment information and // outputs that in a format for submission to MITRE. //