SystemSh0cker/gocsaf
1
0
Fork 0
mirror of https://github.com/gocsaf/csaf.git synced 2025-12-22 05:40:11 +01:00
Code Issues Releases Activity Actions
548 commits 13 branches 34 tags 8.5 MiB
Commit graph

548 commits

This branch
This branch
All branches
Author SHA1 Message Date
Sascha L. Teichmann
8c53b4068b Filter ROLIE entries if we have a date range 2022-07-17 14:46:28 +02:00
Sascha L. Teichmann
b39553fc9a If using folder per year based date checks assume last second of 31 december 2022-07-17 14:35:37 +02:00
Sascha L. Teichmann
ec0548bef6 introduce quick check bases on folder year 2022-07-17 12:27:25 +02:00
Bernhard Reiter
324de3abca
Improve toplevel README.md regarding binaries 
* Add downloader to the list of available windows binaries.
 * Improve phrasing about what is tested and where to get the binaries.
 2022-07-15 09:53:49 +02:00
Omar Santos
0171715390
Correcting documentation (#229) 
The title of the .md file should be csaf_downloader, not "uploader". Also added an introductory sentence.
 2022-07-15 07:43:57 +02:00
JanHoefelmeyer
c00b8b37bb
Trimmed redirects (#230) 
* Changes phrasing of redirects to be clearer. Now omits redirects if they are already listed as part of a larger redirect chain

* Rebuilt how the redirection string is built. Now checks for duplicate redirections after all redirections have been read

* Fixes intendation error

* Fixed redirect output.

* Fixed recording redirects.

Co-authored-by: Jan Höfelmeyer <Jan Höfelmeyer jhoefelmeyer@intevation.de>
Co-authored-by: Sascha L. Teichmann <sascha.teichmann@intevation.de>
 2022-07-15 07:39:06 +02:00
Sascha L. Teichmann
56a047cdde
Fixed issues found by staticcheck. (#227) 2022-07-14 18:38:37 +02:00
JanHoefelmeyer
2ac7940206
Pwacc (#218) 
* Adds option to require Client Certificate and a Password to aquire write access in provider

* Removed unnecessary flavourtext from provider markdown file

* Fixed and simplified the auth middleware

Co-authored-by: Jan Höfelmeyer <Jan Höfelmeyer jhoefelmeyer@intevation.de>
Co-authored-by: Sascha L. Teichmann <sascha.teichmann@intevation.de>
 2022-07-13 14:09:27 +02:00
Sascha L. Teichmann
50024915f4
Update 3rd party libraries. (#217) 2022-07-13 08:48:16 +02:00
JanHoefelmeyer
46f79a9e24
Bailout unknown config (#216) 
* provider now checks for undecoded config entries and returns an error if any are found

* Specific error message now in server logs, more general message for user

* Changes spaces to tabs for formatting consistency

* Further formatting

* Improved handling of undecoded TOML fields in config.

* aggregator now checks for not decoded config options

Co-authored-by: Jan Höfelmeyer <Jan Höfelmeyer jhoefelmeyer@intevation.de>
Co-authored-by: Sascha L. Teichmann <sascha.teichmann@intevation.de>
 2022-07-12 14:07:12 +02:00
JanHoefelmeyer
cbb9c7a7a1
Added path to error if ROLIE feed is broken (#206) 
* Added path to error if ROLIE feed is broken

* Adds missing quotation marks which broke string

* Adjust to usual error pattern.

Co-authored-by: Jan Höfelmeyer <Jan Höfelmeyer jhoefelmeyer@intevation.de>
Co-authored-by: Sascha L. Teichmann <sascha.teichmann@intevation.de>
 2022-07-11 15:46:41 +02:00
JanHoefelmeyer
3ed1d3ab21
Rewrote confusing config option explanations in csaf_provider (#213) 
Co-authored-by: Jan Höfelmeyer <Jan Höfelmeyer jhoefelmeyer@intevation.de>
 2022-07-11 12:32:48 +02:00
JanHoefelmeyer
15f05fc122
Adds explanation of type returns of individual checkers to csaf_checker.md (#215) 
Co-authored-by: Jan Höfelmeyer <Jan Höfelmeyer jhoefelmeyer@intevation.de>
 2022-07-11 12:30:57 +02:00
JanHoefelmeyer
73e216eccc
reporters.go update (#211) 
* updates phrasing of error message if processor does not check security.txt due to an earlier error

* Fixes typo in error message

Co-authored-by: Jan Höfelmeyer <Jan Höfelmeyer jhoefelmeyer@intevation.de>
 2022-07-11 12:30:24 +02:00
Fadi Abbud
ff2eee39e5
Merge pull request #208 from csaf-poc/rolie-categories 
Rolie categories
 2022-07-08 11:43:12 +02:00
Fadi Abbud
12693409a8 Add example to provider documentation (categories) 2022-07-08 11:27:52 +02:00
Sascha L. Teichmann
f06aae9261 Fixed category-label.json name in provider/create 2022-07-08 11:24:55 +02:00
Sascha L. Teichmann
dc8c89c886 Merge branch 'main' into rolie-categories 2022-07-05 16:54:12 +02:00
bernhardreiter bernhardreiter@users.noreply.github.com
69c3030eef Apply automatic changes 2022-07-05 14:45:26 +00:00
Sascha L. Teichmann
20f5937240
Only create/update index.txt, changes.csv, security.txt when configured. (#210) 
* Change default to not write index.txt, changes.csv and security.txt 
  (for provider and aggregator)
* Add config file options to reenable writing.
 2022-07-05 16:44:45 +02:00
Sascha L. Teichmann
acf5df9d56 Add rudimentary documentation. 2022-06-30 19:06:06 +02:00
Sascha L. Teichmann
141acc802e Add service document support for aggregator 2022-06-30 18:51:22 +02:00
Sascha L. Teichmann
e37fe68b34 Link service document in ROLIE feeds. 2022-06-30 16:37:02 +02:00
Sascha L. Teichmann
7f62caeedc create service.json document in provider. 2022-06-30 16:24:39 +02:00
Sascha L. Teichmann
7bafb210cf Add category support for aggregator 2022-06-30 13:54:51 +02:00
Sascha L. Teichmann
198e5b8897 write dynamic categories into feed categories document. 2022-06-30 11:58:36 +02:00
Sascha L. Teichmann
72a7240fd0 write category documents in create. 2022-06-30 05:04:00 +02:00
Sascha L. Teichmann
df21b2575d improved comment a bit 2022-06-29 23:53:46 +02:00
Sascha L. Teichmann
03ae9892bb Move extending rolie feed to own source file. 2022-06-29 23:47:07 +02:00
Sascha L. Teichmann
d2d3611278 fix config 2022-06-29 23:12:42 +02:00
Sascha L. Teichmann
4b7b93bd1d Factored feed loading out of the already too long uploading method. 2022-06-29 18:57:06 +02:00
Sascha L. Teichmann
14fc9cdc61 Make categories configurable in provider 2022-06-29 18:32:17 +02:00
Sascha L. Teichmann
da4dda9042 add models for ROLIE services 2022-06-29 16:00:56 +02:00
Sascha L. Teichmann
ed2df66ce6 Merge branch 'main' into rolie-categories 2022-06-29 14:38:49 +02:00
Fadi Abbud
3a3ef7a961
Merge pull request #200 from csaf-poc/metadata-validation 
Add forgotten validation for metadata
 2022-06-29 08:39:17 +02:00
Fadi Abbud
7a023dc22c Merge branch 'main' into metadata-validation 2022-06-29 08:13:29 +02:00
Bernhard Reiter
b95cd0db74
Fix minor typos in comments and bump (c) year 2022-06-27 17:26:52 +02:00
JanHoefelmeyer
bab5ebdc78
Merge pull request #192 from csaf-poc/itest-for-remote-validator 
Remote validator checks uploaded files for mistakes
 2022-06-27 15:13:15 +02:00
Sascha L. Teichmann
e25fe66ee8 Merge branch 'main' into rolie-categories 2022-06-24 11:07:05 +02:00
Sascha L. Teichmann
bace61e0b3 Add forgotten validation for metadata 2022-06-23 19:48:02 +02:00
JanHoefelmeyer
38d3679704
Add hint if provider is called outside of CGI 
Co-authored-by: Sascha L. Teichmann <sascha.teichmann@intevation.de>
 2022-06-23 17:27:25 +02:00
Sascha L. Teichmann
f8ce08a26e
Download advisories to label/year folders 2022-06-23 15:04:49 +02:00
Sascha L. Teichmann
0b19782374
Remove csaf_remote_validator 2022-06-23 14:49:54 +02:00
Sascha L. Teichmann
b359fd0a62
Add CSAF downloader 
* Dense and refactor ROLIE code in aggregator a bit.
* Move  advisory file processor to csaf package.
* Fix minor typo on main readme
 2022-06-23 14:14:44 +02:00
JanHoefelmeyer
640ef64df9
Changes phrasing of output from csaf_checker if security.txt was found (#196) 
Co-authored-by: Jan Höfelmeyer <Jan Höfelmeyer jhoefelmeyer@intevation.de>
 2022-06-23 11:07:02 +02:00
Fadi Abbud
9a390e2bcc Adjust script 
* Disable exiting from Script for the errors by checking if the
validator-service is started.
 2022-06-22 11:47:09 +02:00
Fadi Abbud
e1966a5716 Adjust "setupProviderForItest.sh" script 
* To wait for the validator-service to be started.
 2022-06-22 11:14:22 +02:00
Fadi Abbud
07ea594e22 Merge branch 'main' into itest-for-remote-validator 2022-06-22 09:22:56 +02:00
Fadi Abbud
36384ca942 Add "sudo" to one command 2022-06-22 09:21:46 +02:00
Fadi Abbud
847ca3d6af Change permission for one script file 2022-06-21 16:52:19 +02:00