forked from oasis-open/cti-stix-validator
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge branch 'master' of https://github.com/oasis-open/cti-stix-valid…
- Loading branch information
Showing
26 changed files
with
534 additions
and
72 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,72 @@ | ||
# For most projects, this workflow file will not need changing; you simply need | ||
# to commit it to your repository. | ||
# | ||
# You may wish to alter this file to override the set of languages analyzed, | ||
# or to provide custom queries or build logic. | ||
# | ||
# ******** NOTE ******** | ||
# We have attempted to detect the languages in your repository. Please check | ||
# the `language` matrix defined below to confirm you have the correct set of | ||
# supported CodeQL languages. | ||
# | ||
name: "CodeQL" | ||
|
||
on: | ||
push: | ||
branches: [ "master" ] | ||
pull_request: | ||
# The branches below must be a subset of the branches above | ||
branches: [ "master" ] | ||
schedule: | ||
- cron: '15 19 * * 6' | ||
|
||
jobs: | ||
analyze: | ||
name: Analyze | ||
runs-on: ubuntu-latest | ||
permissions: | ||
actions: read | ||
contents: read | ||
security-events: write | ||
|
||
strategy: | ||
fail-fast: false | ||
matrix: | ||
language: [ 'python' ] | ||
# CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ] | ||
# Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support | ||
|
||
steps: | ||
- name: Checkout repository | ||
uses: actions/checkout@v3 | ||
|
||
# Initializes the CodeQL tools for scanning. | ||
- name: Initialize CodeQL | ||
uses: github/codeql-action/init@v2 | ||
with: | ||
languages: ${{ matrix.language }} | ||
# If you wish to specify custom queries, you can do so here or in a config file. | ||
# By default, queries listed here will override any specified in a config file. | ||
# Prefix the list here with "+" to use these queries and those in the config file. | ||
|
||
# Details on CodeQL's query packs refer to : https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs | ||
# queries: security-extended,security-and-quality | ||
|
||
|
||
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java). | ||
# If this step fails, then you should remove it and run the build manually (see below) | ||
- name: Autobuild | ||
uses: github/codeql-action/autobuild@v2 | ||
|
||
# ℹ️ Command-line programs to run using the OS shell. | ||
# 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun | ||
|
||
# If the Autobuild fails above, remove it and uncomment the following three lines. | ||
# modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance. | ||
|
||
# - run: | | ||
# echo "Run, Build Application using script" | ||
# ./location_of_script_within_repo/buildscript.sh | ||
|
||
- name: Perform CodeQL Analysis | ||
uses: github/codeql-action/analyze@v2 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -12,7 +12,7 @@ requirements specified in the STIX 2.1 specification. In addition to | |
checking conformance with the `JSON schemas <https://github.com/oasis- | ||
open/cti-stix2-json-schemas>`_, the validator checks conformance with | ||
requirements that cannot be specified in JSON schema, as well as with | ||
established "best practices." This validator is non-normative; in | ||
established "best practices". This validator is non-normative; in | ||
cases of conflict with the STIX 2.1 specification, the specification | ||
takes precedence. | ||
|
||
|
@@ -141,9 +141,10 @@ repositories/maintainers-guide#additionalMaintainers>`_. | |
|
||
**Current Maintainers of this TC Open Repository** | ||
|
||
.. Initial Maintainers: Greg Back & Ivan Kirillov | ||
.. Initial Maintainers: Greg Back & Ivan Kirillov & Chris Lenk | ||
* `Chris Lenk <mailto:[email protected]>`_; GitHub ID: `https://github.com/clenk <https://github.com/clenk>`_; WWW: `MITRE <https://www.mitre.org>`__ | ||
* `Emily Ratliff <mailto:[email protected]>`__; GitHub ID: `https://github.com/ejratl <https://github.com/ejratl>`_; WWW: `IBM <http://www.ibm.com/>`__ | ||
* `Duncan Sparrell <mailto:[email protected]>`__; GitHub ID: `https://github.com/sparrell <https://github.com/sparrell>`_; WWW: `sFractal <http://sfractal.com/>`__ | ||
* `Jason Keirstead <mailto:[email protected]>`__; GitHub ID: `https://github.com/JasonKeirstead <https://github.com/JasonKeirstead>`_; WWW: `IBM <http://www.ibm.com/>`__ | ||
|
||
.. _aboutOpenRepos: | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,70 @@ | ||
# Releasing a new version of stix2_validator | ||
|
||
These steps will upgrade the \'stix-validator\' package to version | ||
3.1.3. Substitute values as necessary. | ||
|
||
1. Make sure that the README file is up-to-date and is consistent with any similar documentation (ReadTheDocs). | ||
|
||
2. Make sure your git working directory is clean (no unstaged changes, or un-committed added/removed files), that the code is up-to-date, and that the code is passing all tests (run with nose, pytest, and/or tox, etc.). | ||
|
||
```bash | ||
git status | ||
git pull | ||
tox -r | ||
``` | ||
|
||
3. Update the CHANGELOG (sometimes CHANGES.txt) file with changes since the last release. To help, you can run one of the following: | ||
|
||
```bash | ||
git diff \<old tag\>..master | ||
git log \<old tag\>..master | ||
gitk \<old tag\>..master | ||
``` | ||
|
||
4. Run bumpversion patch, bumpversion minor, or bumpversion major (as appropriate). | ||
|
||
5. Create a single commit with all of these changes. This helps improve clarity down the road. Push this commit to GitHub. | ||
|
||
```bash | ||
git commit -m \"Bump version to 3.1.3\" | ||
git push origin master | ||
``` | ||
|
||
Ensure the new commit passes in CI. If the build on CI fails, make any | ||
changes necessary for it to pass, then commit and push them before | ||
continuing. | ||
|
||
6. Once Github Actions shows a passing build for the master branch, create a tag for the new release. Push the tag to GitHub as well. (bumpversion may create the tag locally.) | ||
|
||
```bash | ||
git tag -a \"v3.1.3\" -m \"Version 3.1.3\" | ||
git push origin \--tags | ||
``` | ||
|
||
7. Copy the release notes into a new \"Release\" on GitHub. Don\'t forget to publish the \"Release\". | ||
|
||
8. Make sure your release directory is \"clean\". | ||
|
||
```bash | ||
git clean -x -f -d | ||
``` | ||
|
||
9. Build and publish the new package. This method requires that you have a .pypirc file containing your PyPI credentials, and that your account has appropriate permissions on the PyPI project. See [the Python documentation](http://docs.python.org/2/distutils/packageindex.html#the-pypirc-file) for more information. | ||
|
||
```bash | ||
python3 setup.py sdist bdist_wheel | ||
twine upload dist/\* | ||
``` | ||
|
||
If the filename does not end with -py2.py3-none-any.whl, it is not | ||
correctly configured as a \"Universal\" wheel. | ||
|
||
10. After the release is up on PyPI, create a temporary virtualenv and was downloaded and installed. If installation works fine, try running some samples or unit tests to make sure everything is working as expected. | ||
|
||
```bash | ||
virtualenv mktmpenv | ||
source mktmpenv/bin/activate | ||
pip install stix2_validator | ||
./mktmpenv/bin/stix2_validator cti-documentation/examples/example_json/poisonivy.json | ||
deactivate | ||
``` |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,5 +1,5 @@ | ||
[bumpversion] | ||
current_version = 3.0.2 | ||
current_version = 3.1.3 | ||
commit = True | ||
tag = True | ||
|
||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Submodule schemas-2.0
updated
46 files
Submodule schemas-2.1
updated
81 files
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.