Skip to content

Update Publish branch with the latest updates to ensure SSVC newer version of schema is available. #760

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
ahouseholder merged 13 commits into from
Mar 26, 2025
Merged

Update Publish branch with the latest updates to ensure SSVC newer version of schema is available. #760

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
85bcad6
Fix deployment workflow (#732)
ahouseholder Mar 3, 2025
affa90f
Convert cwes list to markdown with fewer rows and columns (#737)
sei-renae Mar 6, 2025
a54f999
Replace `Track*`/`Track *` with `Monitor` in CISA-based decision mode…
ahouseholder Mar 11, 2025
c0503d9
Revert "Replace `Track*`/`Track *` with `Monitor` in CISA-based decis…
ahouseholder Mar 11, 2025
e6f5b58
Bump markdown-exec from 1.10.0 to 1.10.1 (#746)
dependabot[bot] Mar 18, 2025
b491f4b
Bump the mkdocs group with 6 updates (#747)
dependabot[bot] Mar 18, 2025
8b39c01
add `mdlint_fix` target to Makefile (#744)
ahouseholder Mar 18, 2025
639bb67
pin changed-files action to specific sha1 (#750)
ahouseholder Mar 19, 2025
77baef3
Add NameSpace Enum (#749)
ahouseholder Mar 20, 2025
8887a13
Refactor SsvcDecisionPoint base class mixins (#743)
ahouseholder Mar 20, 2025
0fb6690
Bump tj-actions/changed-files from 46.0.1 to 46.0.3 (#757)
dependabot[bot] Mar 25, 2025
59c9677
Bump markdown-exec from 1.10.1 to 1.10.2 (#756)
dependabot[bot] Mar 25, 2025
293808a
Bump mkdocstrings-python from 1.16.5 to 1.16.8 in the mkdocs group (#…
dependabot[bot] Mar 25, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/workflows/lint_md_changes.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ jobs:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- uses: tj-actions/changed-files@v45
- uses: tj-actions/changed-files@823fcebdb31bb35fdf2229d9f769b400309430d0
id: changed-files
with:
files: '**/*.md'
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/python-app.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,10 +21,10 @@ jobs:
- uses: actions/checkout@v4
with:
fetch-tags: true
- name: Set up Python 3.10
- name: Set up Python 3.12
uses: actions/setup-python@v5
with:
python-version: "3.10"
python-version: "3.12"
- name: Install dependencies
run: |
python -m pip install --upgrade pip
Expand Down
5 changes: 5 additions & 0 deletions Makefile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,6 +17,10 @@ DOCS_IMAGE = $(PFX)_docs

all: help

mdlint_fix:
@echo "Running markdownlint..."
markdownlint --config .markdownlint.yml --fix .

dockerbuild_test:
@echo "Building the test Docker image..."
$(DOCKER_BUILD) --target $(TEST_DOCKER_TARGET) --tag $(TEST_IMAGE) .
Expand Down Expand Up @@ -46,6 +50,7 @@ help:
@echo ""
@echo "Targets:"
@echo " all - Display this help message"
@echo " mdlint_fix - Run markdownlint with --fix"
@echo " docs - Build and run the docs Docker image"
@echo " docker_test - Build and run the test Docker image"
@echo ""
Expand Down
157 changes: 0 additions & 157 deletions data/csvs/cwe/possible-cwe-with-poc-examples.csv
View file
Open in desktop

This file was deleted.

4 changes: 2 additions & 2 deletions data/json/decision_points/automatable_2_0_0.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,10 @@
{
"name": "Automatable",
"description": "Can an attacker reliably automate creating exploitation events for this vulnerability?",
"namespace": "ssvc",
"version": "2.0.0",
"schemaVersion": "1-0-1",
"key": "A",
"name": "Automatable",
"description": "Can an attacker reliably automate creating exploitation events for this vulnerability?",
"values": [
{
"key": "N",
Expand Down
4 changes: 2 additions & 2 deletions data/json/decision_points/cvss/access_complexity_1_0_0.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,10 @@
{
"name": "Access Complexity",
"description": "This metric measures the complexity of the attack required to exploit the vulnerability once an attacker has gained access to the target system.",
"namespace": "cvss",
"version": "1.0.0",
"schemaVersion": "1-0-1",
"key": "AC",
"name": "Access Complexity",
"description": "This metric measures the complexity of the attack required to exploit the vulnerability once an attacker has gained access to the target system.",
"values": [
{
"key": "L",
Expand Down
4 changes: 2 additions & 2 deletions data/json/decision_points/cvss/access_complexity_2_0_0.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,10 @@
{
"name": "Access Complexity",
"description": "This metric measures the complexity of the attack required to exploit the vulnerability once an attacker has gained access to the target system.",
"namespace": "cvss",
"version": "2.0.0",
"schemaVersion": "1-0-1",
"key": "AC",
"name": "Access Complexity",
"description": "This metric measures the complexity of the attack required to exploit the vulnerability once an attacker has gained access to the target system.",
"values": [
{
"key": "L",
Expand Down
4 changes: 2 additions & 2 deletions data/json/decision_points/cvss/access_vector_1_0_0.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,10 @@
{
"name": "Access Vector",
"description": "This metric measures whether or not the vulnerability is exploitable locally or remotely.",
"namespace": "cvss",
"version": "1.0.0",
"schemaVersion": "1-0-1",
"key": "AV",
"name": "Access Vector",
"description": "This metric measures whether or not the vulnerability is exploitable locally or remotely.",
"values": [
{
"key": "L",
Expand Down
4 changes: 2 additions & 2 deletions data/json/decision_points/cvss/access_vector_2_0_0.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,10 @@
{
"name": "Access Vector",
"description": "This metric reflects the context by which vulnerability exploitation is possible.",
"namespace": "cvss",
"version": "2.0.0",
"schemaVersion": "1-0-1",
"key": "AV",
"name": "Access Vector",
"description": "This metric reflects the context by which vulnerability exploitation is possible.",
"values": [
{
"key": "L",
Expand Down
4 changes: 2 additions & 2 deletions data/json/decision_points/cvss/attack_complexity_3_0_0.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,10 @@
{
"name": "Attack Complexity",
"description": "This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability.",
"namespace": "cvss",
"version": "3.0.0",
"schemaVersion": "1-0-1",
"key": "AC",
"name": "Attack Complexity",
"description": "This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability.",
"values": [
{
"key": "L",
Expand Down
Loading