Refactor code structure for improved readability and maintainability; removed redundant code blocks and optimized function calls.

2025-11-20 07:50:52 +02:00
parent 616ec73133
commit 10212d67c0
473 changed files with 316758 additions and 388 deletions
--- a/docs/samples/console/console-vex-30-001.json
+++ b/docs/samples/console/console-vex-30-001.json
@@ -0,0 +1,17 @@
+{
+  "query": {"component": "openssl", "advisory": "CVE-2024-1234"},
+  "tenant": "demo",
+  "timestamp": "2025-11-19T00:00:00Z",
+  "statements": [
+    {
+      "id": "stmt-1",
+      "status": "not_affected",
+      "justification": "component_not_present",
+      "advisory": "CVE-2024-1234",
+      "products": ["pkg:deb/openssl@1.1.1w"],
+      "evidence": {"observationId": "obs-ossl-001", "linksetId": "lnm-ossl-001"},
+      "timestamp": "2025-11-19T00:00:00Z"
+    }
+  ],
+  "pagination": {"pageSize": 20, "next": null}
+}
--- a/docs/samples/console/console-vuln-29-001.json
+++ b/docs/samples/console/console-vuln-29-001.json
@@ -0,0 +1,19 @@
+{
+  "query": "openssl",
+  "tenant": "demo",
+  "timestamp": "2025-11-19T00:00:00Z",
+  "results": [
+    {
+      "advisoryId": "CVE-2024-1234",
+      "title": "OpenSSL buffer overflow",
+      "severity": "HIGH",
+      "package": "openssl",
+      "version": "1.1.1w",
+      "source": "nvd",
+      "linksetId": "lnm-ossl-001",
+      "justification": "aggregation-only",
+      "provenance": {"fetchedAt": "2025-11-18T12:00:00Z", "digest": "sha256:dummy"}
+    }
+  ],
+  "pagination": {"pageSize": 20, "next": null}
+}
--- a/docs/samples/evidence-bundle/evidence-bundle-m0.tar.gz
+++ b/docs/samples/evidence-bundle/evidence-bundle-m0.tar.gz
--- a/docs/samples/evidence-bundle/evidence-bundle-m0.tar.gz.sha256
+++ b/docs/samples/evidence-bundle/evidence-bundle-m0.tar.gz.sha256
@@ -0,0 +1 @@
+c3be72958c85d8d9ff96927542a0e0184e5d64717b9b0365756f253b4a365fed  evidence-bundle-m0.tar.gz
--- a/docs/samples/evidence-bundle/hashes.sha256
+++ b/docs/samples/evidence-bundle/hashes.sha256
@@ -0,0 +1,4 @@
+3cbfba79c6e83091123b9dee748e0575a548a03ce744ed53392dcbc8c6490119  manifest.json
+a035333e9b9f8ad82145105276c8f73f143ad6ad46bd80cf3999318e04531019  observations.ndjson
+1543a5902cc6b319971dadd92118188324cc5cd9b9296f9a8b08b534406d2e4e  linksets.ndjson
+ab7d5e06c7a4bc5517534a3fdc1a448a7e3f176020e2a3b93048eb20b559f206  transparency.json
--- a/docs/samples/evidence-bundle/linksets.ndjson
+++ b/docs/samples/evidence-bundle/linksets.ndjson
@@ -0,0 +1 @@
+{"linksetId":"lnm-ossl-001","advisoryId":"CVE-2024-1234","components":["pkg:deb/openssl@1.1.1w"],"normalized":true,"createdAt":"2025-11-18T12:05:00Z"}
--- a/docs/samples/evidence-bundle/manifest.json
+++ b/docs/samples/evidence-bundle/manifest.json
@@ -0,0 +1,18 @@
+{
+  "bundle_id": "evidence-bundle-m0",
+  "version": "1.0.0",
+  "created": "2025-11-19T00:00:00Z",
+  "tenant": "demo",
+  "scope": "vex",
+  "inputs": [
+    "sha256:a035333e9b9f8ad82145105276c8f73f143ad6ad46bd80cf3999318e04531019",
+    "sha256:1543a5902cc6b319971dadd92118188324cc5cd9b9296f9a8b08b534406d2e4e"
+  ],
+  "aoc": {
+    "guardrails": true,
+    "details": [
+      "schema:frozen:1.0",
+      "limits:chunk:max=2000"
+    ]
+  }
+}
--- a/docs/samples/evidence-bundle/observations.ndjson
+++ b/docs/samples/evidence-bundle/observations.ndjson
@@ -0,0 +1 @@
+{"observationId":"obs-ossl-001","advisoryId":"CVE-2024-1234","component":"pkg:deb/openssl@1.1.1w","source":"nvd","fetchedAt":"2025-11-18T12:00:00Z"}
--- a/docs/samples/evidence-bundle/transparency.json
+++ b/docs/samples/evidence-bundle/transparency.json
@@ -0,0 +1 @@
+{"rekor_uuid": null, "skip_reason": "offline"}
--- a/docs/samples/excititor/chunks-sample.ndjson
+++ b/docs/samples/excititor/chunks-sample.ndjson
@@ -0,0 +1,2 @@
+{"tenant":"demo","vulnerabilityId":"CVE-2024-1234","productKey":"pkg:pypi/django@3.2.24","observationId":"obs-001","statementId":"stmt-001","source":{"supplier":"upstream:osv","documentId":"osv:CVE-2024-1234","retrievedAt":"2025-11-18T12:00:00Z","signatureStatus":"missing"},"aoc":{"violations":[]},"evidence":{"type":"vex.statement","payload":{"status":"not_affected","justification":"component_not_present"}},"provenance":{"hash":"sha256:dummyhash","canonicalUri":null,"bundleId":null}}
+{"tenant":"demo","vulnerabilityId":"CVE-2024-2345","productKey":"pkg:pypi/requests@2.31.0","observationId":"obs-002","statementId":"stmt-001","source":{"supplier":"upstream:osv","documentId":"osv:CVE-2024-2345","retrievedAt":"2025-11-18T12:05:00Z","signatureStatus":"unverified"},"aoc":{"violations":[{"code":"EVIDENCE_SIGNATURE_MISSING","surface":"ingest"}]},"evidence":{"type":"vex.statement","payload":{"status":"affected","impact":"info","details":"placeholder"}},"provenance":{"hash":"sha256:dummyhash2","canonicalUri":null,"bundleId":null}}
--- a/docs/samples/excititor/chunks-sample.ndjson.sha256
+++ b/docs/samples/excititor/chunks-sample.ndjson.sha256
@@ -0,0 +1 @@
+4d638b24d6f8f703bcbcac23a0185265f3db5defb9f3d7f33b7be7fccc0de738  docs/samples/excititor/chunks-sample.ndjson
				`@@ -0,0 +1 @@`
				`c3be72958c85d8d9ff96927542a0e0184e5d64717b9b0365756f253b4a365fed evidence-bundle-m0.tar.gz`
				`@@ -0,0 +1 @@`
				`{"linksetId":"lnm-ossl-001","advisoryId":"CVE-2024-1234","components":["pkg:deb/openssl@1.1.1w"],"normalized":true,"createdAt":"2025-11-18T12:05:00Z"}`
				`@@ -0,0 +1 @@`
				`{"observationId":"obs-ossl-001","advisoryId":"CVE-2024-1234","component":"pkg:deb/openssl@1.1.1w","source":"nvd","fetchedAt":"2025-11-18T12:00:00Z"}`
				`@@ -0,0 +1 @@`
				`{"rekor_uuid": null, "skip_reason": "offline"}`
				`@@ -0,0 +1 @@`
				`4d638b24d6f8f703bcbcac23a0185265f3db5defb9f3d7f33b7be7fccc0de738 docs/samples/excititor/chunks-sample.ndjson`