Skip to content

Define prototype SARIF model for constraint validation results #519

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft
aj-stein-nist wants to merge 22 commits into
base: develop
Choose a base branch
from
Draft

Define prototype SARIF model for constraint validation results #519

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
22 commits
Select commit Hold shift + click to select a range
7ad3767
Remove deprecated camelCase types from modules for #558 (#562)
aj-stein-nist Mar 15, 2024
0954786
Add deprecation notice for camelCase types for #558 (#560)
aj-stein-nist Mar 15, 2024
a75abab
Fixed broken hyperlink.
Aug 22, 2024
3e10f84
Bump postcss from 8.4.35 to 8.4.41 (#730)
dependabot[bot] Aug 22, 2024
15e56cc
Bump actions/cache from 4.0.1 to 4.0.2 (#574)
dependabot[bot] Aug 22, 2024
4ae06af
Bump autoprefixer from 10.4.18 to 10.4.20 (#731)
dependabot[bot] Aug 22, 2024
d069efd
Bump @fullhuman/postcss-purgecss from 5.0.0 to 6.0.0 (#577)
dependabot[bot] Aug 22, 2024
4f4a741
Bump ajv-formats from 2.1.1 to 3.0.1 (#578)
dependabot[bot] Aug 23, 2024
2301dc8
Bump peaceiris/actions-hugo from 2 to 3 (#579)
dependabot[bot] Aug 23, 2024
bc7de4c
Bump peaceiris/actions-gh-pages from 3.9.3 to 4.0.0 (#581)
dependabot[bot] Aug 24, 2024
8717ff4
Update node version in the workflow from v16 -> v20 (#737)
iMichaela Aug 24, 2024
ecea9cd
Bump markdown-link-check from 3.11.2 to 3.12.2 (#632)
dependabot[bot] Aug 24, 2024
35981fb
Bump actions/checkout from 4.1.2 to 4.1.7 (#654)
dependabot[bot] Aug 24, 2024
362a985
Bump sass from 1.72.0 to 1.77.8 (#732)
dependabot[bot] Aug 24, 2024
5d53a22
Bump lycheeverse/lychee-action from 1.9.3 to 1.10.0 (#733)
dependabot[bot] Aug 24, 2024
1742d48
Bump actions/upload-artifact from 4.3.1 to 4.3.6 (#734)
dependabot[bot] Aug 24, 2024
5524912
[skip ci] SARIF Metschema module for #516
aj-stein-nist Jan 25, 2024
7755be9
[skip ci] Build out runs/tools/drivers for #516
aj-stein-nist Jan 25, 2024
14ec63f
[skip ci] Modular runs assembly by ref for #516
aj-stein-nist Jan 25, 2024
a507c08
[skip ci] Added artifacts and results to runs for #516
aj-stein-nist Jan 26, 2024
65a2d9f
[skip ci] Further define WIP driver, rules for #516
aj-stein-nist Jan 26, 2024
ab4b0a6
[WIP] Woops, short-desc is a assembly, not field!
aj-stein-nist Feb 20, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/workflows/config/.nvmrc
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1 +1 @@
v16
v20
16 changes: 8 additions & 8 deletions .github/workflows/workflow-generate-website.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -48,14 +48,14 @@ jobs:
- id: checkout_latest_workflow
name: Checkout Latest
if: (github.event_name == 'workflow_dispatch' && github.event.inputs.commit_resources == 'true') || (github.event_name == 'push' && inputs.commit_resources == true)
uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332
with:
persist-credentials: false
submodules: recursive
# use this for overything else (i.e., pull requests) where publication is not needed
- name: Checkout Latest
if: steps.checkout_latest_workflow.conclusion == 'skipped'
uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332
with:
submodules: recursive
- name: Setup Swap Space
Expand All @@ -70,7 +70,7 @@ jobs:
. .github/workflows/config/.env
echo "HUGO_VERSION=${HUGO_VERSION}" >> "${GITHUB_OUTPUT}"
- name: Setup Hugo
uses: peaceiris/actions-hugo@v2
uses: peaceiris/actions-hugo@v3
with:
hugo-version: '${{ steps.hugo-version.outputs.HUGO_VERSION }}'
extended: true
Expand All @@ -95,7 +95,7 @@ jobs:
# Dart-Sass
sudo snap install dart-sass
# cache hugo modules
- uses: actions/cache@ab5e6d0c87105b4c9c2047343972218f562e4319
- uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9
with:
path: /tmp/hugo_cache
key: ${{ runner.os }}-hugomod-${{ hashFiles('**/go.sum') }}
Expand All @@ -111,15 +111,15 @@ jobs:
zip ${{ runner.temp }}/metaschema-website.zip -r public/
working-directory: ${{ github.workspace }}/website
- name: Upload generated site
uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3
uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a
with:
name: website
path: |
${{ runner.temp }}/metaschema-website.zip
retention-days: 5
- id: linkchecker
name: Link Checker
uses: lycheeverse/lychee-action@c053181aa0c3d17606addfe97a9075a32723548a
uses: lycheeverse/lychee-action@2b973e86fc7b1f6b36a93795fe2c9c6ae1118621
with:
args: --exclude-file .github/workflows/config/.lycheeignore --verbose --no-progress --accept 200,206,429 './website/public/**/*.html' --remap "https://pages.nist.gov/metaschema/ file://${GITHUB_WORKSPACE}/website/public/" --exclude-mail
format: markdown
Expand All @@ -130,7 +130,7 @@ jobs:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
continue-on-error: true
- name: Upload link check report
uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3
uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a
with:
name: html-link-report
path: html-link-report.md
Expand All @@ -151,7 +151,7 @@ jobs:
script: |
core.setFailed('Link checker detected broken or invalid links, read attached report.')
- name: Deploy Website
uses: peaceiris/actions-gh-pages@373f7f263a76c20808c831209c920827a82a2847
uses: peaceiris/actions-gh-pages@4f9cc6602d3f66b9c108549d475ec49e8ef4d45e
if: github.ref_name == 'main' && ((github.event_name == 'push' && inputs.commit_resources == true) || (github.event_name == 'workflow_dispatch' && github.event.inputs.commit_resources == 'true'))
with:
personal_token: ${{ secrets.COMMIT_TOKEN }}
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/workflow-validate-repo-markdown.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@ jobs:
issues: write
steps:
# use this for pulls where checkout is anonymous
- uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332
with:
submodules: recursive
# Setup runtime environment
Expand Down Expand Up @@ -56,7 +56,7 @@ jobs:
# this command will filter out any docs Markdown files, which are checked in a different job
git ls-files "*.md" -z | \
grep --null-data -v "${{ inputs.ignorePattern }}" | \
xargs -0 markdown-link-check -c "${{ inputs.markdownLinkCheckConfig }}" | \
xargs -0n1 markdown-link-check -c "${{ inputs.markdownLinkCheckConfig }}" | \
tee mlc_report.log
# Exit code of xargs and markdown-link-check, not git or grep or tee pipe elements
exit ${PIPESTATUS[2]}
Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/workflow-validate-website-content.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,17 +30,17 @@ jobs:
issues: write
steps:
- name: Checkout Latest
uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332
with:
fetch-depth: 0 # this ensures that the tag and commit history are available
- name: Checkout git ref of published website content
uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332
with:
ref: ${{ inputs.site_git_ref }}
path: ${{ inputs.site_git_ref_path }}
- name: Check website HTML content links
id: linkchecker
uses: lycheeverse/lychee-action@c053181aa0c3d17606addfe97a9075a32723548a
uses: lycheeverse/lychee-action@2b973e86fc7b1f6b36a93795fe2c9c6ae1118621
with:
args: --exclude-file .github/workflows/config/.lycheeignore --verbose --no-progress --accept 200,206,429 './${{ inputs.site_git_ref_path }}/**/*.html' --exclude-mail
fail: true
Expand Down
2 changes: 1 addition & 1 deletion README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -41,7 +41,7 @@ Metaschema achieves this with:

## Contact us

Maintainer: [David Waltermire](https://www.nist.gov/people/david-waltermire) - [@david-waltermire](https://github.com/david-waltermire), [NIST](https://www.nist.gov/) [Information Technology Labratory](https://www.nist.gov/itl), [Computer Security Division](https://www.nist.gov/itl/csd), [Security Components and Mechanisms Group](https://www.nist.gov/itl/csd/security-components-and-mechanisms)
Maintainer: ITL OSCAL Team, [NIST](https://www.nist.gov/) [Information Technology Labratory](https://www.nist.gov/itl), [Computer Security Division](https://www.nist.gov/itl/csd), [Secure Systems and Applications Group](https://www.nist.gov/itl/csd/secure-systems-and-applications)

Email us: [metaschema@nist.gov](mailto:metaschema@nist.gov)

Expand Down
Loading