-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathdiff.json
More file actions
71 lines (71 loc) · 2.19 KB
/
Copy pathdiff.json
File metadata and controls
71 lines (71 loc) · 2.19 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
{
"$schema": "https://json-schema.org/draft/2020-12/schema",
"$id": "https://github.com/telcharr/capdiff/schema/diff.json",
"title": "capdiff diff report",
"type": "object",
"required": ["version", "skipped_count", "findings"],
"additionalProperties": false,
"properties": {
"version": { "const": 3 },
"skipped_count": { "type": "integer", "minimum": 0 },
"findings": {
"type": "array",
"items": { "$ref": "#/$defs/finding" }
}
},
"$defs": {
"finding": {
"type": "object",
"required": ["crate", "new", "gained", "severity"],
"additionalProperties": false,
"properties": {
"crate": { "type": "string", "minLength": 1 },
"old": { "anyOf": [ { "type": "null" }, { "$ref": "#/$defs/summary" } ] },
"new": { "$ref": "#/$defs/summary" },
"gained": {
"type": "array",
"items": { "$ref": "#/$defs/capability" },
"uniqueItems": true
},
"severity": { "$ref": "#/$defs/severity" }
}
},
"summary": {
"type": "object",
"required": ["version", "capabilities"],
"additionalProperties": false,
"properties": {
"version": { "type": "string", "minLength": 1 },
"capabilities": {
"type": "array",
"items": { "$ref": "#/$defs/capability" },
"uniqueItems": true
},
"evidence": {
"type": "array",
"items": { "$ref": "#/$defs/evidence" }
}
}
},
"capability": {
"type": "string",
"enum": ["Net", "Process", "FsRead", "FsSensitive", "Env", "Ffi", "BuildScript", "ProcMacro", "ObfuscatedBlob", "Transmute", "FnPtrTransmute"]
},
"severity": {
"type": "string",
"enum": ["Info", "Notable", "High"]
},
"evidence": {
"type": "object",
"required": ["capability", "file", "line", "snippet", "in_build_script"],
"additionalProperties": false,
"properties": {
"capability": { "$ref": "#/$defs/capability" },
"file": { "type": "string" },
"line": { "type": "integer", "minimum": 0 },
"snippet": { "type": "string" },
"in_build_script": { "type": "boolean" }
}
}
}
}