Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implemented release notes in XML, JSON, and Protobuf #88

Merged
merged 9 commits into from
Dec 20, 2021
Merged

Implemented release notes in XML, JSON, and Protobuf #88

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
dccbe44
#87 - Implemented release notes in XML, JSON, and Protobuf. Added uni…
stevespringett Sep 19, 2021
cc4105f
#87 - Added release notes as an external reference type
stevespringett Sep 19, 2021
a1e2909
Added support for properties to release notes. https://github.com/Cyc…
stevespringett Oct 5, 2021
18d0a43
Added documentation to attachment text that states "Proactive control…
stevespringett Oct 5, 2021
62774d0
Corrected maxoccurs
stevespringett Dec 7, 2021
446fce1
Corrected maxoccurs
stevespringett Dec 7, 2021
efed5c4
Added newline
stevespringett Dec 7, 2021
2e8eca4
Changed release type from enum to string with a description on recomm…
stevespringett Dec 7, 2021
b76ee21
Merge remote-tracking branch 'origin/v1.4-dev' into v1.4-release-notes
stevespringett Dec 20, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
36 changes: 35 additions & 1 deletion schema/bom-1.4-SNAPSHOT.proto
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ message AttachedText {
optional string content_type = 1;
// Specifies the optional encoding the text is represented in
optional string encoding = 2;
// SimpleContent value of element
// SimpleContent value of element. Proactive controls such as input validation and sanitization should be employed to prevent misuse of attachment text.
string value = 3;
}

Expand Down Expand Up @@ -113,6 +113,8 @@ message Component {
repeated Property properties = 22;
// Specifies optional license and copyright evidence
repeated Evidence evidence = 23;
// Specifies optional release notes.
optional ReleaseNotes releaseNotes = 24;
}

// Specifies the data classification.
Expand Down Expand Up @@ -455,6 +457,38 @@ message Evidence {
repeated EvidenceCopyright copyright = 2;
}

message Note {
// The ISO-639 (or higher) language code and optional ISO-3166 (or higher) country code. Examples include: "en", "en-US", "fr" and "fr-CA".
optional string locale = 1;
// Specifies the full content of the release note.
optional AttachedText text = 2;
}

message ReleaseNotes {
// The software versioning type. It is RECOMMENDED that the release type use one of 'major', 'minor', 'patch', 'pre-release', or 'internal'. Representing all possible software release types is not practical, so standardizing on the recommended values, whenever possible, is strongly encouraged.
string type = 1;
// The title of the release.
optional string title = 2;
// The URL to an image that may be prominently displayed with the release note.
optional string featuredImage = 3;
// The URL to an image that may be used in messaging on social media platforms.
optional string socialImage = 4;
// A short description of the release.
optional string description = 5;
// The date and time (timestamp) when the release note was created.
optional google.protobuf.Timestamp timestamp = 6;
// Optional alternate names the release may be referred to. This may include unofficial terms used by development and marketing teams (e.g. code names).
repeated string aliases = 7;
// Optional tags that may aid in search or retrieval of the release note.
repeated string tags = 8;
// A collection of issues that have been resolved.
repeated Issue resolves = 9;
// Zero or more release notes containing the locale and content. Multiple note messages may be specified to support release notes in a wide variety of languages.
repeated Note notes = 10;
// Specifies optional, custom, properties
repeated Property properties = 11;
}

message Vulnerability {
// An optional identifier which can be used to reference the vulnerability elsewhere in the BOM. Uniqueness is enforced within all elements and children of the root-level bom element.
optional string bom_ref = 1;
Expand Down
130 changes: 129 additions & 1 deletion schema/bom-1.4-SNAPSHOT.schema.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -410,6 +410,11 @@
"title": "Evidence",
"description": "Provides the ability to document evidence collected through various forms of extraction or analysis."
},
"releaseNotes": {
"$ref": "#/definitions/releaseNotes",
"title": "Release notes",
"description": "Specifies optional release notes."
},
"properties": {
"type": "array",
"title": "Properties",
Expand Down Expand Up @@ -493,7 +498,7 @@
"content": {
"type": "string",
"title": "Attachment Text",
"description": "The attachment data"
"description": "The attachment data. Proactive controls such as input validation and sanitization should be employed to prevent misuse of attachment text."
}
}
},
Expand Down Expand Up @@ -809,6 +814,7 @@
"license",
"build-meta",
"build-system",
"release-notes",
"other"
]
},
Expand Down Expand Up @@ -928,6 +934,11 @@
"uniqueItems": true,
"title": "Services"
},
"releaseNotes": {
"$ref": "#/definitions/releaseNotes",
"title": "Release notes",
"description": "Specifies optional release notes."
},
"properties": {
"type": "array",
"title": "Properties",
Expand Down Expand Up @@ -1053,6 +1064,123 @@
"description": "The value of the property."
}
}
},
"localeType": {
"type": "string",
"pattern": "^([a-z]{2})(-[A-Z]{2})?$",
"title": "Locale",
"description": "Defines a syntax for representing two character language code (ISO-639) followed by an optional two character country code. The language code MUST be lower case. If the country code is specified, the country code MUST be upper case. The language code and country code MUST be separated by a minus sign. Examples: en, en-US, fr, fr-CA"
},
"releaseType": {
"type": "string",
"enum": [
"major",
"minor",
"patch",
"pre-release",
"internal"
],
"description": "The software versioning type."
},
"note": {
"type": "object",
"title": "Note",
"description": "A note containing the locale and content.",
"required": [
"text"
],
"properties": {
"locale": {
"$ref": "#/definitions/localeType",
"title": "Locale",
"description": "The ISO-639 (or higher) language code and optional ISO-3166 (or higher) country code. Examples include: \"en\", \"en-US\", \"fr\" and \"fr-CA\""
},
"text": {
"title": "Release note content",
"description": "Specifies the full content of the release note.",
"$ref": "#/definitions/attachment"
}
}
},
"releaseNotes": {
"type": "object",
"title": "Release notes",
"required": [
"type"
],
"properties": {
"type": {
"$ref": "#/definitions/releaseType",
"title": "Type",
"description": "The software versioning type the release note describes."
},
"title": {
"type": "string",
"title": "Title",
"description": "The title of the release."
},
"featuredImage": {
"type": "string",
"format": "iri-reference",
"title": "Featured image",
"description": "The URL to an image that may be prominently displayed with the release note."
},
"socialImage": {
"type": "string",
"format": "iri-reference",
"title": "Social image",
"description": "The URL to an image that may be used in messaging on social media platforms."
},
"description": {
"type": "string",
"title": "Description",
"description": "A short description of the release."
},
"timestamp": {
"type": "string",
"format": "date-time",
"title": "Timestamp",
"description": "The date and time (timestamp) when the release note was created."
},
"aliases": {
"type": "array",
"items": {
"type": "string"
},
"title": "Aliases",
"description": "One or more alternate names the release may be referred to. This may include unofficial terms used by development and marketing teams (e.g. code names)."
},
"tags": {
"type": "array",
"items": {
"type": "string"
},
"title": "Tags",
"description": "One or more tags that may aid in search or retrieval of the release note."
},
"resolves": {
"type": "array",
"items": {
"$ref": "#/definitions/issue"
},
"title": "Resolves",
"description": "A collection of issues that have been resolved."
},
"notes": {
"type": "array",
"items": {
"$ref": "#/definitions/note"
},
"title": "Notes",
"description": "Zero or more release notes containing the locale and content. Multiple note objects may be specified to support release notes in a wide variety of languages."
},
"properties": {
"type": "array",
"title": "Properties",
"description": "Provides the ability to document properties in a name-value store. This provides flexibility to include data not officially supported in the standard without having to use additional namespaces or create extensions. Unlike key-value stores, properties support duplicate names, each potentially having different values.",
"items": {"$ref": "#/definitions/property"}
}
}
}
}
}
Loading