Merge branch '1.7-dev' into add-streebog-hashalg

Author: jkowalleck

.github/pull_request_template.md

@@ -0,0 +1,24 @@
+<!-- 
+Thank you for taking the time to develop and contribute a core enhancement or fix for a defect!
+
+We kindly request that you create pull requests only for things that have been discussed in a ticket first; exceptions may be made for spelling or grammar fixes.
+Read more about the process here: https://cyclonedx.org/participate/standardization-process/#working-model
+
+Please have the related ticket/issue ID ready. 
+If there is none, feel free to create a new ticket: https://github.com/CycloneDX/specification/issues/new/choose
+
+-->
+
+<!-- 
+
+Please provide a brief description of what this pull request intends to do and which ticket it fixes/closes.  
+Example: 
+> As discussed in ticket #485, this PR adds Streebog to the hash algorithm enum.
+>
+> fixes #485 
+
+In case this is for a spelling or grammar improvement, please provide a brief description.
+Example:
+> Fixe typo: color(AE) -> colour(BE)
+
+-->

.github/workflows/build_docs.yml

@@ -59,3 +59,21 @@ jobs:
         name: JSON-Schema-documentation
         path: docgen/json/docs
         if-no-files-found: error
+  docs_proto:
+    runs-on: ubuntu-latest
+    defaults:
+      run:
+        working-directory: docgen/proto
+    steps:
+    - name: Checkout
+      # see https://github.com/actions/checkout
+      uses: actions/checkout@v4
+    - name: Generate Schema documentation
+      run: ./gen.sh
+    - name: Archive Schema documentation
+      # https://github.com/actions/upload-artifact
+      uses: actions/upload-artifact@v4
+      with:
+        name: PROTO-Schema-documentation
+        path: docgen/proto/docs
+        if-no-files-found: error

README.md

@@ -47,14 +47,24 @@ free, open source, and proprietary tools and solutions that support the CycloneD
 The following media types are officially registered with IANA:
 
 | Media Type | Format | Assignment |
-| ------- | --------- | --------- |
-| application/vnd.cyclonedx+xml | XML | [IANA](https://www.iana.org/assignments/media-types/application/vnd.cyclonedx+xml) |
-| application/vnd.cyclonedx+json | JSON | [IANA](https://www.iana.org/assignments/media-types/application/vnd.cyclonedx+json) |
+|------------|--------|------------|
+| `application/vnd.cyclonedx+xml` | XML | [IANA](https://www.iana.org/assignments/media-types/application/vnd.cyclonedx+xml) |
+| `application/vnd.cyclonedx+json` | JSON | [IANA](https://www.iana.org/assignments/media-types/application/vnd.cyclonedx+json) |
+| `application/x.vnd.cyclonedx+protobuf` | Protocol Buffer | |
 
 Specific versions of CycloneDX can be specified by using the version parameter. For example: `application/vnd.cyclonedx+xml; version=1.6`.
 
-The officially supported media type for Protocol Buffer format is `application/x.vnd.cyclonedx+protobuf`.
 
+## Recognized file patterns
+
+The following file names are conventionally used for storing CycloneDX BOM files:
+* `bom.json` for JSON encoded CycloneDX BOM files.
+* `bom.xml` for XML encoded CycloneDX BOM files.
+
+Alternatively, files that match the glob pattern below are also recognized:
+* `*.cdx.json` for JSON encoded CycloneDX BOM files.
+* `*.cdx.xml` for XML encoded CycloneDX BOM files.
+    
 
 ## Release History
 

docgen/json/gen.sh

@@ -1,33 +1,61 @@
 #!/bin/bash
 set -eu
 
+declare -a CDX_VERSIONS=(
+  '1.7'
+  '1.6'
+  '1.5'
+  '1.4'
+  '1.3'
+  '1.2'
+)
+
+# region help
+DESC="Generate HTML Schema navigator for CycloneDX JSON"
+USAGE="
+Usage: $0 [CDX_VERSION...]
+
+Supported values for CDX_VERSION: ${CDX_VERSIONS[*]}
+"
+# endregion help
+
+
 THIS_PATH="$(realpath "$(dirname "$0")")"
 SCHEMA_PATH="$(realpath "$THIS_PATH/../../schema")"
 DOCS_PATH="$THIS_PATH/docs"
 TEMPLATES_PATH="$THIS_PATH/templates"
 
-rm -f -R "$DOCS_PATH"
-mkdir -p "$DOCS_PATH/"{1.2,1.3,1.4,1.5,1.6,1.7}
 
-# Check to see if generate-schema-doc is executable and is in the path. If not, install JSON Schema for Humans.
-if ! [ -x "$(command -v generate-schema-doc)" ]
-then
-  # dependencies managed externally, so dependebot/renovate can pick it up
-  pip3 install -r "$THIS_PATH/requirements.txt"
-fi
+# --
+
+prepare () {
+  # Check to see if generate-schema-doc is executable and is in the path.
+  # If not, install JSON Schema for Humans.
+  if ! [ -x "$(command -v generate-schema-doc)" ]
+  then
+    # dependencies managed externally, so dependebot/renovate can pick it up
+    python -m pip install -r "$THIS_PATH/requirements.txt"
+  fi
+}
+
 
 generate () {
-  version="$1"
-  title="CycloneDX v${version} JSON Reference"
+  local version="$1"
+  local title="CycloneDX v${version} JSON Reference"
   echo "Generating: $title"
 
-  SCHEMA_FILE="$SCHEMA_PATH/bom-${version}.schema.json"
-  STRICT_SCHEMA_FILE="$SCHEMA_PATH/bom-${version}-strict.schema.json"
+  local SCHEMA_FILE="$SCHEMA_PATH/bom-${version}.schema.json"
+  local STRICT_SCHEMA_FILE="$SCHEMA_PATH/bom-${version}-strict.schema.json"
   if [ -f "$STRICT_SCHEMA_FILE" ]
   then
       SCHEMA_FILE="$STRICT_SCHEMA_FILE"
   fi
-  echo "$SCHEMA_FILE"
+  echo "SCHEMA_FILE: $SCHEMA_FILE"
+
+  local OUT_FILE="$DOCS_PATH/$version/json/index.html"
+  local OUT_DIR="$(dirname "$OUT_FILE")"
+  rm -rf "$OUT_DIR"
+  mkdir -p "$OUT_DIR"
 
   generate-schema-doc \
     --config no_link_to_reused_ref \
@@ -38,16 +66,49 @@ generate () {
     --config custom_template_path="$TEMPLATES_PATH/cyclonedx/base.html" \
     --minify \
     "$SCHEMA_FILE" \
-    "$DOCS_PATH/$version/index.html"
+    "$OUT_FILE"
 
-  sed -i -e "s/\${quotedTitle}/\"$title\"/g" "$DOCS_PATH/$version/index.html"
-  sed -i -e "s/\${title}/$title/g" "$DOCS_PATH/$version/index.html"
-  sed -i -e "s/\${version}/$version/g" "$DOCS_PATH/$version/index.html"
+  sed -i -e "s/\${quotedTitle}/\"$title\"/g" "$OUT_FILE"
+  sed -i -e "s/\${title}/$title/g" "$OUT_FILE"
+  sed -i -e "s/\${version}/$version/g" "$OUT_FILE"
 }
 
-generate 1.2
-generate 1.3
-generate 1.4
-generate 1.5
-generate 1.6
-generate 1.7
+
+# Main logic to handle the argument using a switch case
+case "$#" in
+  1)
+    case "$1" in
+      '-h'|'--help')
+        echo "$DESC"
+        echo "$USAGE"
+        exit 0
+        ;;
+      *) # One argument provided: Call generate with the specific version
+        for version in "${CDX_VERSIONS[@]}"
+        do
+          if [[ "$1" == "$version" ]]
+          then
+            prepare
+            generate "$1"
+            exit 0
+          fi
+        done
+        echo "Error: unknown CDX_VERSION: $1"
+        echo "$USAGE"
+        exit 1
+        ;;
+    esac
+    ;;
+  0) # No arguments provided: Loop over all
+    for version in "${CDX_VERSIONS[@]}"
+    do
+      prepare
+      generate "$version"
+    done
+    exit 0
+    ;;
+  *) # More than one argument provided: Show usage help
+    echo "Usage: $USAGE"
+    exit 2
+    ;;
+esac

docgen/json/requirements.txt

@@ -1 +1 @@
-json-schema-for-humans==0.47
+json-schema-for-humans==1.3.4

docgen/json/templates/cyclonedx/base.html

@@ -8,16 +8,16 @@
     <meta charset="UTF-8"/>
     <meta name="twitter:card" content="summary_large_image"/>
     <meta name="twitter:site" content="@CycloneDX_Spec"/>
-    <meta name="twitter:title" content="${quotedTitle}"/>
-    <meta name="twitter:image" content="https://cyclonedx.org/theme/assets/images/CycloneDX-Twitter-Card.png"/>
-    <meta name="twitter:description" content="${quotedTitle}"/>
-    <meta name="description" content="${quotedTitle}"/>
-    <meta property="og:description" content="${quotedTitle}"/>
-    <meta property="og:title" content="${quotedTitle}"/>
+    <meta name="twitter:title" content="${title}"/>
+    <meta name="twitter:image" content="https://cyclonedx.org/images/CycloneDX-Social-Card.png"/>
+    <meta name="twitter:description" content="${title}"/>
+    <meta name="description" content="${title}"/>
+    <meta property="og:description" content="${title}"/>
+    <meta property="og:title" content="${title}"/>
     <meta property="og:locale" content="en_US"/>
     <meta property="og:type" content="website" />
-    <meta property="og:image" content="https://cyclonedx.org/theme/assets/images/CycloneDX-Twitter-Card.png" />
-    <link rel="icon" href="https://cyclonedx.org/cyclonedx-icon.png" type="image/png"/>
+    <meta property="og:image" content="https://cyclonedx.org/images/CycloneDX-Social-Card.png" />
+    <link href="/favicon.ico" rel="shortcut icon" type="image/ico" />
     <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.2/css/bootstrap.min.css" integrity="sha512-rt/SrQ4UNIaGfDyEXZtNcyWvQeOq0QLygHluFQcSjaGB04IxWhal71tKuzP6K8eYXYB6vJV4pHkXcmFGGQ1/0w==" crossorigin="anonymous" referrerpolicy="no-referrer" />
     <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css" integrity="sha512-SfTiTlX6kk+qitfevl/7LibUOeJWlt9rbyDn92a1DqWOw9vWG2MFoays0sgObmWazO5BQPiFucnnEAjpAB+/Sw==" crossorigin="anonymous" referrerpolicy="no-referrer" />
     <link rel="stylesheet" type="text/css" href="schema_doc.css">
@@ -29,7 +29,7 @@
 <body class="blue" data-spy="scroll" data-target=".js-scrollspy" onload="anchorOnLoad();" id="root">
 
 <nav class="navbar fixed-top navbar-expand-sm navbar-inverse">
-    <a href="https://cyclonedx.org" class="navbar-brand site-header__logo"><img src="https://cyclonedx.org/theme/assets/images/layout/logo-white.svg" width="150"></img></a>
+    <a href="/" class="navbar-brand site-header__logo"><img src="https://cyclonedx.org/images/logo-all-white.svg" height="48" width="276"></img></a>
     <button class="navbar-toggler" type="button" data-toggle="collapse" data-target="#navbarScroll" aria-controls="navbarScroll" aria-expanded="false" aria-label="Toggle navigation">
         <span class="navbar-toggler-icon"></span>
     </button>
@@ -40,29 +40,35 @@
                     v${version} (JSON)
                 </a>
                 <ul class="dropdown-menu" aria-labelledby="navbarScrollingDropdown">
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.7/json/">v1.7 (JSON)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.6/json/">v1.6 (JSON)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.5/json/">v1.5 (JSON)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.4/json/">v1.4 (JSON)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.3/json/">v1.3 (JSON)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.2/json/">v1.2 (JSON)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.7/json/">v1.7 (JSON)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.6/json/">v1.6 (JSON)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.5/json/">v1.5 (JSON)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.4/json/">v1.4 (JSON)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.3/json/">v1.3 (JSON)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.2/json/">v1.2 (JSON)</a></li>
                     <li><hr class="dropdown-divider"/></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.7/xml/">v1.7 (XML)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.6/xml/">v1.6 (XML)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.5/xml/">v1.5 (XML)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.4/xml/">v1.4 (XML)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.3/xml/">v1.3 (XML)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.2/xml/">v1.2 (XML)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.1/xml/">v1.1 (XML)</a></li>
-                    <li><a class="dropdown-item" href="https://cyclonedx.org/docs/1.0/xml/">v1.0 (XML)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.7/xml/">v1.7 (XML)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.6/xml/">v1.6 (XML)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.5/xml/">v1.5 (XML)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.4/xml/">v1.4 (XML)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.3/xml/">v1.3 (XML)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.2/xml/">v1.2 (XML)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.1/xml/">v1.1 (XML)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.0/xml/">v1.0 (XML)</a></li>
+                    <li><hr class="dropdown-divider"/></li>
+                    <li><a class="dropdown-item" href="/docs/1.7/proto/">v1.7 (Protobuf)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.6/proto/">v1.6 (Protobuf)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.5/proto/">v1.5 (Protobuf)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.4/proto/">v1.4 (Protobuf)</a></li>
+                    <li><a class="dropdown-item" href="/docs/1.3/proto/">v1.3 (Protobuf)</a></li>
                 </ul>
             </li>
         </ul>
     </div>
 </nav>
 
 
-<div class="container-fluid" style="margin-top:70px; margin-bottom:3rem">
+<div class="container-fluid" style="margin-top:110px; margin-bottom:3rem">
     <h1>${title}</h1>
 
     {%- if title -%}
@@ -77,6 +83,7 @@ <h1>{{ title }}</h1>
 
     {{ content(schema) }}
 
+    <!--
 <footer class="site-footer__copyright fixed-bottom">
     <div class="container">
         <div class="row">
@@ -86,6 +93,7 @@ <h1>{{ title }}</h1>
         </div>
     </div>
 </footer>
+-->
 
 </body>
-</html>
+</html>

docgen/json/templates/cyclonedx/content.html

@@ -60,17 +60,37 @@
         {%- endif -%}
 
         {# Enum and const #}
-        {%- if schema.kw_enum -%}
+        {%- if schema.kw_enum and schema.kw_meta_enum -%}
+            <div class="enum-value" id="{{ schema.kw_enum.html_id }}">
+                <h4>Must be one of:</h4>
+                <table class="table table-striped table-bordered">
+                    <thead class="thead-dark">
+                        <tr>
+                            <th class="text-nowrap" scope="col">Name</th>
+                            <th scope="col">Description</th>
+                        </tr>
+                    </thead>
+                    <tbody>
+                    {%- for enum_choice in schema.kw_enum.array_items -%}
+                        <tr>
+                            <td class="text-nowrap">
+                                <strong>{{ enum_choice.literal | python_to_json }}</strong>
+                            </td>
+                            <td>
+                                {{ (schema.enum_description(enum_choice.literal) | get_description_literal) }}
+                            </td>
+                        </tr>
+                    {%- endfor -%}
+                    </tbody>
+                </table>
+            </div>
+        {%- elif schema.kw_enum -%}
             <div class="enum-value" id="{{ schema.kw_enum.html_id }}">
             <h4>Must be one of:</h4>
             <ul class="list-group">
             {%- for enum_choice in schema.kw_enum.array_items -%}
                 <li class="list-group-item enum-item">
-                    {%- if schema.kw_meta_enum -%}<strong>{%- endif -%}
                     {{ enum_choice.literal | python_to_json }}
-                    {%- if schema.kw_meta_enum -%}</strong>
-                        : {{ (schema.enum_description(enum_choice.literal) | get_description_literal) }}
-                    {%- endif -%}
                 </li>
             {%- endfor -%}
             </ul>