{
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Document",
"definitions": {
"Artifact": {
"required": [
"Id"
],
"properties": {
"Id": {
"type": "string"
},
"Name": {
"type": "string"
},
"Path": {
"type": "string"
},
"Timestamp": {
"type": "string",
"format": "date-time"
},
"Type": {
"type": "string"
},
"Class": {
"type": "string"
},
"Language": {
"type": "string"
},
"LicenseFiles": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/LicenseFile"
},
"type": "array"
},
"Source": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/ArtifactSource"
},
"Version": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Version"
},
"Repository": {
"type": "string"
},
"LastEdit": {
"type": "string"
},
"Purl": {
"type": "string"
},
"Compare": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Compare"
},
"Files": {
"items": {
"type": "string"
},
"type": "array"
},
"LinesOfCode": {
"patternProperties": {
".*": {
"type": "integer"
}
},
"type": "object"
},
"Children": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Dependency"
},
"type": "array"
},
"Graph": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/GraphNode"
},
"type": "array"
}
},
"additionalProperties": false,
"type": "object"
},
"ArtifactSource": {
"properties": {
"SrcName": {
"type": "string"
},
"SrcVersion": {
"type": "string"
},
"SrcRelease": {
"type": "string"
},
"SrcEpoch": {
"type": "integer"
}
},
"additionalProperties": false,
"type": "object"
},
"CVSSv2Exploitability": {
"required": [
"AccessVector",
"AccessComplexity",
"Authentication"
],
"properties": {
"AccessVector": {
"type": "string"
},
"AccessComplexity": {
"type": "string"
},
"Authentication": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"CVSSv2Impact": {
"required": [
"Confidentiality",
"Integrity",
"Availability"
],
"properties": {
"Confidentiality": {
"type": "string"
},
"Integrity": {
"type": "string"
},
"Availability": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"CVSSv2Info": {
"properties": {
"PublishedDateTime": {
"type": "string",
"format": "date-time"
},
"Score": {
"type": "number"
},
"Vectors": {
"type": "string"
},
"Metrics": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/CVSSv2Vector"
}
},
"additionalProperties": false,
"type": "object"
},
"CVSSv2Vector": {
"required": [
"Exploitability",
"Impact"
],
"properties": {
"Exploitability": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/CVSSv2Exploitability"
},
"Impact": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/CVSSv2Impact"
}
},
"additionalProperties": false,
"type": "object"
},
"CVSSv3Exploitability": {
"required": [
"AttackVector",
"AttackComplexity",
"PrivilegesRequired",
"UserInteraction"
],
"properties": {
"AttackVector": {
"type": "string"
},
"AttackComplexity": {
"type": "string"
},
"PrivilegesRequired": {
"type": "string"
},
"UserInteraction": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"CVSSv3Impact": {
"required": [
"Confidentiality",
"Integrity",
"Availability"
],
"properties": {
"Confidentiality": {
"type": "string"
},
"Integrity": {
"type": "string"
},
"Availability": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"CVSSv3Info": {
"properties": {
"ExploitabilityScore": {
"type": "number"
},
"ImpactScore": {
"type": "number"
},
"Score": {
"type": "number"
},
"Vectors": {
"type": "string"
},
"Metrics": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/CVSSv3Vector"
}
},
"additionalProperties": false,
"type": "object"
},
"CVSSv3Vector": {
"required": [
"Exploitability",
"Scope",
"Impact"
],
"properties": {
"Exploitability": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/CVSSv3Exploitability"
},
"Scope": {
"type": "string"
},
"Impact": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/CVSSv3Impact"
}
},
"additionalProperties": false,
"type": "object"
},
"CWEInfo": {
"properties": {
"Name": {
"type": "string"
},
"WeaknessAbstraction": {
"type": "string"
},
"Status": {
"type": "string"
},
"Description": {
"type": "string"
},
"ExtendedDescription": {
"type": "string"
},
"RelatedWeaknesses": {
"type": "string"
},
"WeaknessOrdinalities": {
"type": "string"
},
"ApplicablePlatforms": {
"type": "string"
},
"BackgroundDetails": {
"type": "string"
},
"AlternateTerms": {
"type": "string"
},
"ModesOfIntroduction": {
"type": "string"
},
"ExploitationFactors": {
"type": "string"
},
"LikelihoodOfExploit": {
"type": "string"
},
"CommonConsequences": {
"type": "string"
},
"DetectionMethods": {
"type": "string"
},
"PotentialMitigations": {
"type": "string"
},
"ObservedExamples": {
"type": "string"
},
"FunctionalAreas": {
"type": "string"
},
"AffectedResources": {
"type": "string"
},
"TaxonomyMappings": {
"type": "string"
},
"RelatedAttackPatterns": {
"type": "string"
},
"Notes": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"CiInfo": {
"required": [
"Provider",
"PipelineName",
"RunId"
],
"properties": {
"Provider": {
"type": "string"
},
"PipelineName": {
"type": "string"
},
"RunId": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"Compare": {
"properties": {
"Hash": {
"type": "string"
},
"Status": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"Dependency": {
"required": [
"ArtifactId"
],
"properties": {
"ArtifactId": {
"type": "string"
},
"Lines": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/LineInfo"
},
"type": "array"
},
"Tags": {
"items": {
"type": "string"
},
"type": "array"
},
"LastEdit": {
"type": "string"
},
"PathInfo": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/PathInfo"
},
"StatInfo": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/DependencyStatInfo"
}
},
"additionalProperties": false,
"type": "object"
},
"DependencyStatInfo": {
"required": [
"RefCount",
"FileRefCount"
],
"properties": {
"RefCount": {
"type": "integer"
},
"FileRefCount": {
"type": "integer"
},
"Locations": {
"items": {
"$ref": "#/definitions/LineInfo"
},
"type": "array"
}
},
"additionalProperties": false,
"type": "object"
},
"Document": {
"required": [
"SchemaVersion",
"Metadata"
],
"properties": {
"SchemaVersion": {
"type": "integer"
},
"Metadata": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Metadata"
},
"RootArtifactId": {
"type": "string"
},
"Artifacts": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Artifact"
},
"type": "array"
},
"Identities": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Identity"
},
"type": "array"
},
"Repositories": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Repository"
},
"type": "array"
},
"Vulnerabilities": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Vulnerability"
},
"type": "array"
},
"Weaknesses": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Weakness"
},
"type": "array"
},
"LicenseViolations": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/LicenseViolation"
},
"type": "array"
},
"Secrets": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Secret"
},
"type": "array"
},
"FixSuggestions": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/FixSuggestion"
},
"type": "array"
}
},
"additionalProperties": false,
"type": "object"
},
"Edit": {
"required": [
"Id",
"Info"
],
"properties": {
"Id": {
"type": "string"
},
"Info": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/EditInfo"
},
"AuthorId": {
"type": "string"
},
"CommitterId": {
"type": "string"
},
"ContributorIds": {
"items": {
"type": "string"
},
"type": "array"
},
"Compare": {
"$ref": "#/definitions/Compare"
}
},
"additionalProperties": false,
"type": "object"
},
"EditInfo": {
"properties": {
"Time": {
"type": "string",
"format": "date-time"
},
"Revision": {
"type": "string"
},
"Signature": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"FixInfo": {
"required": [
"Kind"
],
"properties": {
"FixVersion": {
"$ref": "#/definitions/Version"
},
"Kind": {
"type": "string"
},
"Diffs": {
"items": {
"items": {
"type": "string"
},
"type": "array"
},
"type": "array"
}
},
"additionalProperties": false,
"type": "object"
},
"FixSuggestion": {
"required": [
"Id",
"Info",
"AffectedArtifactId"
],
"properties": {
"Id": {
"type": "string"
},
"Info": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/FixSuggestionInfo"
},
"AffectedArtifactId": {
"type": "string"
},
"Compare": {
"$ref": "#/definitions/Compare"
}
},
"additionalProperties": false,
"type": "object"
},
"FixSuggestionInfo": {
"properties": {
"Recommendations": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/FixInfo"
},
"type": "array"
},
"VersionGraphInfo": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/VersionGraphStruct"
},
"FixSuggestionInfoAsString": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"GraphNode": {
"required": [
"From",
"To"
],
"properties": {
"From": {
"type": "string"
},
"To": {
"items": {
"type": "string"
},
"type": "array"
}
},
"additionalProperties": false,
"type": "object"
},
"Identity": {
"required": [
"Id",
"Info"
],
"properties": {
"Id": {
"type": "string"
},
"Info": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/IdentityInfo"
},
"Compare": {
"$ref": "#/definitions/Compare"
}
},
"additionalProperties": false,
"type": "object"
},
"IdentityInfo": {
"required": [
"Name"
],
"properties": {
"Name": {
"type": "string"
},
"Email": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"LicenseFile": {
"required": [
"File"
],
"properties": {
"File": {
"type": "string"
},
"LicensesInfo": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/LicenseInfo"
},
"type": "array"
}
},
"additionalProperties": false,
"type": "object"
},
"LicenseInfo": {
"properties": {
"Name": {
"type": "string"
},
"Confidence": {
"type": "number"
}
},
"additionalProperties": false,
"type": "object"
},
"LicenseViolation": {
"required": [
"Id",
"AffectedArtifactIds",
"Info"
],
"properties": {
"Id": {
"type": "string"
},
"AffectedArtifactIds": {
"items": {
"type": "string"
},
"type": "array"
},
"Info": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/LicenseViolationInfo"
},
"Compare": {
"$ref": "#/definitions/Compare"
}
},
"additionalProperties": false,
"type": "object"
},
"LicenseViolationInfo": {
"required": [
"Category"
],
"properties": {
"Category": {
"type": "string"
},
"FoundLicense": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"LineInfo": {
"required": [
"Start",
"End"
],
"properties": {
"RelativePath": {
"type": "string"
},
"Start": {
"type": "integer"
},
"StartChar": {
"type": "integer"
},
"End": {
"type": "integer"
},
"EndChar": {
"type": "integer"
}
},
"additionalProperties": false,
"type": "object"
},
"LocationDetail": {
"properties": {
"LineLocation": {
"$ref": "#/definitions/LineInfo"
},
"TextSnippet": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"Metadata": {
"required": [
"Id"
],
"properties": {
"Id": {
"type": "string"
},
"InputKind": {
"type": "string"
},
"InputLocation": {
"type": "string"
},
"InputOrigin": {
"type": "string"
},
"CustomProperties": {
"patternProperties": {
".*": {
"type": "string"
}
},
"type": "object"
},
"Platform": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Platform"
},
"CiInfo": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/CiInfo"
},
"Created": {
"type": "string",
"format": "date-time"
}
},
"additionalProperties": false,
"type": "object"
},
"NextNode": {
"required": [
"Version",
"Severity",
"CVE"
],
"properties": {
"Version": {
"type": "string"
},
"Severity": {
"type": "string"
},
"CVE": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"PathInfo": {
"required": [
"MinDepth"
],
"properties": {
"MinDepth": {
"type": "integer"
}
},
"additionalProperties": false,
"type": "object"
},
"Platform": {
"required": [
"architecture",
"os"
],
"properties": {
"architecture": {
"type": "string"
},
"os": {
"type": "string"
},
"os.version": {
"type": "string"
},
"os.features": {
"items": {
"type": "string"
},
"type": "array"
},
"variant": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"Repository": {
"required": [
"Id",
"Info"
],
"properties": {
"Id": {
"type": "string"
},
"Info": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/RepositoryInfo"
},
"Edits": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/Edit"
},
"type": "array"
},
"Compare": {
"$ref": "#/definitions/Compare"
}
},
"additionalProperties": false,
"type": "object"
},
"RepositoryInfo": {
"required": [
"Kind",
"Location"
],
"properties": {
"Kind": {
"type": "string"
},
"Location": {
"type": "string"
},
"Branch": {
"type": "string"
},
"Tag": {
"type": "string"
},
"Revision": {
"type": "string"
},
"Name": {
"type": "string"
},
"Email": {
"type": "string"
},
"Timestamp": {
"type": "string"
},
"DefaultBranch": {
"type": "string"
},
"CommitCount": {
"type": "integer"
}
},
"additionalProperties": false,
"type": "object"
},
"RuleInfo": {
"properties": {
"Id": {
"type": "string"
},
"DisplayName": {
"type": "string"
},
"ShortDescription": {
"type": "string"
},
"FullDescription": {
"type": "string"
},
"Precision": {
"type": "string"
},
"ExtraData": {
"patternProperties": {
".*": {
"type": "string"
}
},
"type": "object"
}
},
"additionalProperties": false,
"type": "object"
},
"Secret": {
"required": [
"Id",
"RuleID",
"Category",
"Severity",
"Title",
"Line",
"Match"
],
"properties": {
"Id": {
"type": "string"
},
"RuleID": {
"type": "string"
},
"Category": {
"type": "string"
},
"Severity": {
"type": "string"
},
"Title": {
"type": "string"
},
"Line": {
"$ref": "#/definitions/LineInfo"
},
"Match": {
"type": "string"
},
"Repository": {
"type": "string"
},
"LastEdit": {
"type": "string"
},
"Compare": {
"$ref": "#/definitions/Compare"
}
},
"additionalProperties": false,
"type": "object"
},
"SortedVersionGraphNode": {
"required": [
"Version"
],
"properties": {
"Version": {
"type": "string"
},
"Edges": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/NextNode"
},
"type": "array"
}
},
"additionalProperties": false,
"type": "object"
},
"Version": {
"required": [
"Type",
"Version"
],
"properties": {
"Type": {
"type": "string"
},
"Version": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"VersionGraphStruct": {
"required": [
"NodeCnt",
"EdgeCnt",
"ExtraAthenaCalls"
],
"properties": {
"NodeCnt": {
"type": "integer"
},
"EdgeCnt": {
"type": "integer"
},
"ExtraAthenaCalls": {
"type": "integer"
},
"VersionGraph": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/SortedVersionGraphNode"
},
"type": "array"
}
},
"additionalProperties": false,
"type": "object"
},
"Vulnerability": {
"required": [
"Id",
"AffectedArtifactIds",
"Info"
],
"properties": {
"Id": {
"type": "string"
},
"AffectedArtifactIds": {
"items": {
"type": "string"
},
"type": "array"
},
"FixedBy": {
"items": {
"type": "string"
},
"type": "array"
},
"Info": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/VulnerabilityInfo"
},
"Compare": {
"$ref": "#/definitions/Compare"
}
},
"additionalProperties": false,
"type": "object"
},
"VulnerabilityInfo": {
"properties": {
"ExternalId": {
"type": "string"
},
"Description": {
"type": "string"
},
"Status": {
"type": "string"
},
"Severity": {
"type": "string"
},
"Link": {
"type": "string"
},
"FixVersion": {
"$ref": "#/definitions/Version"
},
"CVSSv2": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/CVSSv2Info"
},
"CVSSv3": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/CVSSv3Info"
}
},
"additionalProperties": false,
"type": "object"
},
"Weakness": {
"required": [
"Id",
"Info"
],
"properties": {
"Id": {
"type": "string"
},
"Info": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/WeaknessInfo"
},
"Rules": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/RuleInfo"
},
"type": "array"
},
"Instances": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/WeaknessInstance"
},
"type": "array"
},
"Compare": {
"$ref": "#/definitions/Compare"
}
},
"additionalProperties": false,
"type": "object"
},
"WeaknessInfo": {
"properties": {
"ExternalId": {
"type": "string"
},
"CWEInfo": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/CWEInfo"
},
"Link": {
"type": "string"
}
},
"additionalProperties": false,
"type": "object"
},
"WeaknessInstance": {
"required": [
"Id",
"RuleId",
"AffectedArtifactIds"
],
"properties": {
"Id": {
"type": "string"
},
"RuleId": {
"type": "string"
},
"AffectedArtifactIds": {
"items": {
"type": "string"
},
"type": "array"
},
"Severity": {
"type": "string"
},
"LocationDetails": {
"items": {
"$schema": "http://json-schema.org/draft-04/schema#",
"$ref": "#/definitions/LocationDetail"
},
"type": "array"
},
"ExtraData": {
"patternProperties": {
".*": {
"type": "string"
}
},
"type": "object"
},
"Compare": {
"$ref": "#/definitions/Compare"
}
},
"additionalProperties": false,
"type": "object"
}
}
}