From c19c8048f789c2a8e0599146222dcf29a746d71a Mon Sep 17 00:00:00 2001 From: Weston Steimel Date: Tue, 14 May 2024 17:16:17 +0100 Subject: [PATCH] add json schema validation workflow Signed-off-by: Weston Steimel --- .github/dependabot.yaml | 6 ++ .github/workflows/validations.yaml | 28 ++++++ .gitignore | 148 +++++++++++++++++++++++++++++ data/anchore/.gitkeep | 0 data/nvd/.gitkeep | 0 5 files changed, 182 insertions(+) create mode 100644 .github/dependabot.yaml create mode 100644 .github/workflows/validations.yaml create mode 100644 .gitignore create mode 100644 data/anchore/.gitkeep create mode 100644 data/nvd/.gitkeep diff --git a/.github/dependabot.yaml b/.github/dependabot.yaml new file mode 100644 index 00000000..63ef6509 --- /dev/null +++ b/.github/dependabot.yaml @@ -0,0 +1,6 @@ +version: 2 +updates: + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: daily diff --git a/.github/workflows/validations.yaml b/.github/workflows/validations.yaml new file mode 100644 index 00000000..c9070685 --- /dev/null +++ b/.github/workflows/validations.yaml @@ -0,0 +1,28 @@ +name: "Validations" + +on: + workflow_dispatch: + pull_request: + push: + branches: + - main + +permissions: + contents: read + +jobs: + verify-json-schem: + name: "Verify json schema" + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 + - uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # v5.1.0 + with: + python-version: '3.12' + + - name: "Install check-jsonschema" + run: pip install check-jsonschema + + - name: "Verify enrichment record json schema" + run: check-jsonschema --schemafile schema/enrichment_record.schema.json data/**/*.json + \ No newline at end of file diff --git a/.gitignore b/.gitignore new file mode 100644 index 00000000..8533ba63 --- /dev/null +++ b/.gitignore @@ -0,0 +1,148 @@ +.vunnel.yaml +.grype-db.yaml +.grype.yaml +.grype +.grype-db +*.tar.gz +*.zip + +/bin +/backup/ +.pytype/ +.wily/ +.cache/ + +/.tmp/ +CHANGELOG.md +VERSION + +# Byte-compiled / optimized / DLL files +__pycache__/ +*.py[cod] +*$py.class + +# C extensions +*.so + +# Distribution / packaging +.Python +env/ +build/ +develop-eggs/ +dist/ +downloads/ +eggs/ +.eggs/ +lib/ +lib64/ +parts/ +sdist/ +var/ +wheels/ +*.egg-info/ +.installed.cfg +*.egg + +# PyInstaller +# Usually these files are written by a python script from a template +# before PyInstaller builds the exe, so as to inject date/other infos into it. +*.manifest +*.spec + +# Installer logs +pip-log.txt +pip-delete-this-directory.txt + +# Unit test / coverage reports +htmlcov/ +.tox/ +.coverage +.coverage.* +.cache +nosetests.xml +coverage.xml +*.cover +.hypothesis/ +test-*-report.json + +# Translations +*.mo +*.pot + +# Django stuff: +*.log +local_settings.py + +# Flask stuff: +instance/ +.webassets-cache + +# Scrapy stuff: +.scrapy + +# Sphinx documentation +docs/_build/ + +# PyBuilder +target/ + +# Jupyter Notebook +.ipynb_checkpoints + +# pyenv +.python-version + +# celery beat schedule file +celerybeat-schedule + +# SageMath parsed files +*.sage.py + +# dotenv +.env + +# virtualenv +.venv +venv/ +ENV/ + +# Spyder project settings +.spyderproject +.spyproject + +# Rope project settings +.ropeproject + +# mkdocs documentation +/site + +# mypy +.mypy_cache/ + +# IDEs +.idea +.vscode + +# osx +.DS_Store + +.pytest_cache +.ruff_cache + +dropin.cache + +# vim artifacts +# Swap +[._]*.s[a-v][a-z] +!*.svg # comment out if you don't need vector files +[._]*.sw[a-p] +[._]s[a-rt-v][a-z] +[._]ss[a-gi-z] +[._]sw[a-p] + +# Session +Session.vim +Sessionx.vim + +# Persistent undo +[._]*.un~ \ No newline at end of file diff --git a/data/anchore/.gitkeep b/data/anchore/.gitkeep new file mode 100644 index 00000000..e69de29b diff --git a/data/nvd/.gitkeep b/data/nvd/.gitkeep new file mode 100644 index 00000000..e69de29b