Add info for Req 8-10 if direct url was given and as such no checks w…

…ere performed. (#401) * Add info for Req 8-10 if direct url was given and as such no checks were performed. * Update cmd/csaf_checker/processor.go Co-authored-by: tschmidtb51 <[email protected]> * Break overly long lines --------- Co-authored-by: JanHoefelmeyer <[email protected]> Co-authored-by: tschmidtb51 <[email protected]>
gocsaf · Jul 13, 2023 · f05bcd3 · f05bcd3
1 parent aeeb169
commit f05bcd3
Showing 1 changed file with 14 additions and 0 deletions.
diff --git a/cmd/csaf_checker/processor.go b/cmd/csaf_checker/processor.go
@@ -340,6 +340,20 @@ func (p *processor) domainChecks(domain string) []func(*processor, string) error
 
 	if !direct {
 		checks = append(checks, (*processor).checkWellknownSecurityDNS)
+	} else {
+		p.badSecurity.use()
+		p.badSecurity.info(
+			"Performed no test of security.txt " +
+				"since the direct url of the provider-metadata.json was used.")
+		p.badWellknownMetadata.use()
+		p.badWellknownMetadata.info(
+			"Performed no test on whether the provider-metadata.json is available " +
+				"under the .well-known path " +
+				"since the direct url of the provider-metadata.json was used.")
+		p.badDNSPath.use()
+		p.badDNSPath.info(
+			"Performed no test on the contents of https://csaf.data.security.DOMAIN " +
+				"since the direct url of the provider-metadata.json was used.")
 	}
 
 	checks = append(checks,