mozilla
/
scribe
зеркало из https://github.com/mozilla/scribe.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
188 коммитов 3 Ветки 0 Теги 454 KiB
Граф коммитов

188 Коммитов

Автор SHA1 Сообщение Дата
Aaron Meihm 4d37fbfd0f update vendoring Makefile target to use govend 2017-07-18 09:54:41 -05:00
Aaron Meihm 78da3b4000 update vendored packages 2017-07-18 09:46:31 -05:00
Aaron Meihm ecf34e89c8 better handling of pure integer version strings 
detects version strings that are composed entirely of an integer value
and handles comparisons.

Closes #12
 2016-12-20 09:53:03 -06:00
Aaron Meihm 30f4713d44 Merge pull request #10 from mozilla/yaml 
Support YAML format in policies
 2016-03-22 09:45:38 -05:00
Julien Vehent 2abd00ea04 vendor yaml package 2016-03-21 21:28:20 -04:00
Julien Vehent 7cdcbda086 Support YAML format in policies 2016-03-21 21:28:20 -04:00
Julien Vehent 7d2251b8ac update link to doc 2016-03-18 15:20:54 -04:00
Aaron Meihm c8148c1a58 Merge pull request #8 from mozilla/fixgopath 
Fix Go Path
 2016-03-18 12:47:12 -05:00
Julien Vehent ccab368114 Update travis-ci to 1.6 2016-03-18 13:25:25 -04:00
Julien Vehent 8d37e6b172 Use standard GOPATH 2016-03-18 13:25:25 -04:00
Aaron Meihm ccdc782bb6 Merge pull request #7 from ameihm0912/master 
add release test for amazon linux
 2016-01-21 13:41:41 -06:00
Aaron Meihm 11254081a4 add release test for amazon linux 2016-01-21 13:39:25 -06:00
Aaron Meihm 440cf277d9 include policy category as a tag 2016-01-13 13:13:19 -06:00
Aaron Meihm 4f3646c4b4 Merge pull request #6 from ameihm0912/master 
Various updates related to pkg mgmt and policy generation
 2016-01-13 10:20:16 -06:00
Aaron Meihm 13c2eafec6 add optional test name to override unique id from policy for display 2016-01-13 09:59:15 -06:00
Aaron Meihm 1e13334212 add test for pkg onlynewest flag 2016-01-13 09:35:12 -06:00
Aaron Meihm 1bcd29210e also include package name in test id generation 2016-01-12 14:12:42 -06:00
Aaron Meihm af56891814 generate unique test id based on supplied policy entry values 2016-01-12 13:45:26 -06:00
Aaron Meihm dc9e5bcb8b optional object parameter to select newest package version from set 
If this flag is set, and multiple versions of the same package
are installed on the system, the object will only be populated
with the information from the newest version of the package.
 2016-01-11 10:52:42 -06:00
Aaron Meihm 6fd4223b8a policy generators for rhel/centos 2016-01-10 16:58:56 -06:00
Aaron Meihm 1fa33a7416 Merge pull request #5 from ameihm0912/master 
various enhancements and fixes
 2016-01-08 16:13:50 -06:00
Aaron Meihm 0f0302ccf2 also store pkg architecture in package manager 2016-01-08 15:17:45 -06:00
Aaron Meihm f28acc14c5 additional ubuntu collection entries 2016-01-08 14:34:29 -06:00
Aaron Meihm 12a944ba60 collection expressions to collapse similar package objects 2016-01-08 14:19:26 -06:00
Aaron Meihm 35cdf961ab Add an option to only print true outcomes in scribecmd 2016-01-08 11:16:36 -06:00
Aaron Meihm dc7c1b3bca reorganize how we use metadata in tests 
This includes the test description in human readable output, in addition
to the tags associated with the test
 2016-01-08 11:04:57 -06:00
Aaron Meihm 7d1b0ecaac add release entry for wily 2016-01-07 11:07:19 -06:00
Aaron Meihm 345cc1620c start of vulnerability import format for document generation 
This is intended to provide an intermediary format to simplify
generation of scribe documents for vulnerability checks. Tools can
provide information using a simpler JSON format, which scribevulnpolicy
will use to create scribe documents. This eventually will replace the
logic in various importers that are being used.
 2016-01-06 14:28:54 -06:00
Aaron Meihm 912cd2dbcb continue if stat() fails during link resolution 2015-12-30 15:57:59 -06:00
Aaron Meihm 579fe665d8 Merge pull request #4 from ameihm0912/master 
Better handling of symlinks and content scanning
 2015-12-30 13:02:31 -06:00
Aaron Meihm 5418292142 support symlink resolution during file search 
Closes #3
 2015-12-30 12:58:56 -06:00
Aaron Meihm 59f11e2a17 use ReadLine instead of ReadString with fileContentCheck 2015-12-30 11:47:30 -06:00
Aaron Meihm 0934496028 support inclusion of tag metadata with tests 2015-10-19 16:11:34 -05:00
Aaron Meihm 0c14dd9ea7 omitempty for primary fields in json Document structure 2015-10-19 15:39:02 -05:00
Aaron Meihm 3cc8ca66d9 update nasltokens parser for rhsa/centos reldef 2015-10-19 14:21:36 -05:00
Aaron Meihm c25ac1e18c resolve syntax issue with some lts dist names 2015-10-16 05:22:54 -05:00
Aaron Meihm 59b2e7e930 process nasltokens output to generate scribe tests 2015-10-16 04:30:21 -05:00
Aaron Meihm 3a0f5beb19 modify cve-tracker to generate scribe documents 2015-10-15 14:07:54 -05:00
Aaron Meihm 5068672b4c omit empty fields in json document output 2015-10-15 14:07:03 -05:00
Aaron Meihm c81cbb5508 export document symbols from scribe library 
This is intended to allow use of the library by external programs in
order to construct policies using the types, and potentially write the
JSON data for later use.
 2015-10-15 10:55:38 -05:00
Aaron Meihm ae70598398 import ubuntu-cve-tracker policy generator from mozoval 2015-10-15 10:29:11 -05:00
Aaron Meihm 87464b0084 json output mode for test results 2015-08-07 11:06:03 -05:00
Aaron Meihm 9e2d1d0686 add support to expect error result in test 2015-08-05 16:01:23 -05:00
Aaron Meihm 766860a48a use consistent error message when requesting unknown object 2015-08-05 09:41:38 -05:00
Aaron Meihm 897fd187bd extend comment explaining chain objects 2015-08-05 09:38:54 -05:00
Aaron Meihm efbd5128e5 add > evr tests 2015-08-05 09:32:58 -05:00
Aaron Meihm 29c73b793c add > operator for evr tests 2015-08-04 17:18:27 -05:00
Aaron Meihm 4a7d8c93a0 remove unused isModifier() from source types 2015-08-04 17:06:51 -05:00
Aaron Meihm 885b724e63 add hasline source type and exactmatch evaluator 
hasline is used to build true/false results for files identified that
match a specified name and contain a specified line.

the exactmatch evaluator is used to test if the criteria returned by a
source exactly matches the value. If so, the test is marked true for
that identifier.

These can be combined to test for files that just contain a given
expression, or files that do not have the expression.
 2015-08-04 16:54:01 -05:00
Aaron Meihm 4b40df55f7 don't merge nil criteria from chain results 2015-08-04 15:47:55 -05:00