Skip to content

Commit 4d688b9

Browse files
jdaigneau5jdaigneau5
authored
Merge pull request #1317 from CVEProject/dev
Update Int from Dev
2 parents 7f2a255 + 078cbdb commit 4d688b9

23 files changed

+3989
-2404
lines changed

.env

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,4 +1,8 @@
11
PORT = 3000
22
LOCAL_KEY=TCF25YM-39C4H6D-KA32EGF-V5XSHN3
3+
# The duration of the rate limiting window in seconds.
4+
# This defines the time frame for which the rate limit is applied.
35
RATE_LIMIT_WINDOW_SECONDS=60
6+
# The maximum number of connections allowed within the rate limiting window.
7+
# This sets the threshold for how many requests can be made in the specified time frame.
48
RATE_LIMIT_MAX_CONNECTIONS=1000

api-docs/openapi.json

Lines changed: 288 additions & 3 deletions
Large diffs are not rendered by default.

package-lock.json

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"name": "cve-services",
33
"author": "Automation Working Group",
4-
"version": "2.3.1",
4+
"version": "2.5.1",
55
"license": "(CC0)",
66
"devDependencies": {
77
"@faker-js/faker": "^7.6.0",

schemas/cve/create-adp-record-adp-request.json

Lines changed: 273 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -581,6 +581,11 @@
581581
"items": {
582582
"type": "object",
583583
"anyOf": [
584+
{
585+
"required": [
586+
"cvssV4_0"
587+
]
588+
},
584589
{
585590
"required": [
586591
"cvssV3_1"
@@ -626,6 +631,271 @@
626631
]
627632
}
628633
},
634+
"cvssV4_0": {
635+
"$schema": "http://json-schema.org/draft-07/schema#",
636+
"additionalProperties": false,
637+
"allOf": [
638+
{
639+
"properties": {
640+
"baseScore": {
641+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/noneScoreType"
642+
},
643+
"baseSeverity": {
644+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/noneSeverityType"
645+
}
646+
}
647+
},
648+
{
649+
"properties": {
650+
"threatScore": {
651+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/noneScoreType"
652+
},
653+
"threatSeverity": {
654+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/noneSeverityType"
655+
}
656+
}
657+
},
658+
{
659+
"properties": {
660+
"environmentalScore": {
661+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/noneScoreType"
662+
},
663+
"environmentalSeverity": {
664+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/noneSeverityType"
665+
}
666+
}
667+
}
668+
],
669+
"definitions": {
670+
"attackComplexityType": {
671+
"type": "string"
672+
},
673+
"attackRequirementsType": {
674+
"type": "string"
675+
},
676+
"attackVectorType": {
677+
"type": "string"
678+
},
679+
"automatableType": {
680+
"type": "string"
681+
},
682+
"ciaRequirementType": {
683+
"type": "string"
684+
},
685+
"criticalScoreType": {
686+
"type": "number"
687+
},
688+
"criticalSeverityType": {
689+
"const": "string"
690+
},
691+
"exploitMaturityType": {
692+
"type": "string"
693+
},
694+
"highScoreType": {
695+
"type": "number"
696+
},
697+
"highSeverityType": {
698+
"type": "string"
699+
},
700+
"lowScoreType": {
701+
"type": "number"
702+
},
703+
"lowSeverityType": {
704+
"type": "string"
705+
},
706+
"mediumScoreType": {
707+
"type": "number"
708+
},
709+
"mediumSeverityType": {
710+
"const": "string"
711+
},
712+
"modifiedAttackComplexityType": {
713+
"type": "string"
714+
},
715+
"modifiedAttackRequirementsType": {
716+
"type": "string"
717+
},
718+
"modifiedAttackVectorType": {
719+
"type": "string"
720+
},
721+
"modifiedPrivilegesRequiredType": {
722+
"type": "string"
723+
},
724+
"modifiedSubCType": {
725+
"type": "string"
726+
},
727+
"modifiedSubIaType": {
728+
"type": "string"
729+
},
730+
"modifiedUserInteractionType": {
731+
"type": "string"
732+
},
733+
"modifiedVulnCiaType": {
734+
"type": "string"
735+
},
736+
"noneScoreType": {
737+
"type": "number"
738+
},
739+
"noneSeverityType": {
740+
"const": "string"
741+
},
742+
"privilegesRequiredType": {
743+
"type": "string"
744+
},
745+
"providerUrgencyType": {
746+
"type": "string"
747+
},
748+
"recoveryType": {
749+
"type": "string"
750+
},
751+
"safetyType": {
752+
"type": "string"
753+
},
754+
"scoreType": {
755+
"type": "number"
756+
},
757+
"severityType": {
758+
"type": "string"
759+
},
760+
"subCiaType": {
761+
"type": "string"
762+
},
763+
"userInteractionType": {
764+
"type": "string"
765+
},
766+
"valueDensityType": {
767+
"type": "string"
768+
},
769+
"vulnCiaType": {
770+
"type": "string"
771+
},
772+
"vulnerabilityResponseEffortType": {
773+
"type": "string"
774+
}
775+
},
776+
"properties": {
777+
"Automatable": {
778+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/automatableType"
779+
},
780+
"Recovery": {
781+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/recoveryType"
782+
},
783+
"Safety": {
784+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/safetyType"
785+
},
786+
"attackComplexity": {
787+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/attackComplexityType"
788+
},
789+
"attackRequirements": {
790+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/attackRequirementsType"
791+
},
792+
"attackVector": {
793+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/attackVectorType"
794+
},
795+
"availabilityRequirement": {
796+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/ciaRequirementType"
797+
},
798+
"baseScore": {
799+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/scoreType"
800+
},
801+
"baseSeverity": {
802+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/severityType"
803+
},
804+
"confidentialityRequirement": {
805+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/ciaRequirementType"
806+
},
807+
"exploitMaturity": {
808+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/exploitMaturityType"
809+
},
810+
"integrityRequirement": {
811+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/ciaRequirementType"
812+
},
813+
"modifiedAttackComplexity": {
814+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/modifiedAttackComplexityType"
815+
},
816+
"modifiedAttackRequirements": {
817+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/modifiedAttackRequirementsType"
818+
},
819+
"modifiedAttackVector": {
820+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/modifiedAttackVectorType"
821+
},
822+
"modifiedPrivilegesRequired": {
823+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/modifiedPrivilegesRequiredType"
824+
},
825+
"modifiedSubAvailabilityImpact": {
826+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/modifiedSubIaType"
827+
},
828+
"modifiedSubConfidentialityImpact": {
829+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/modifiedSubCType"
830+
},
831+
"modifiedSubIntegrityImpact": {
832+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/modifiedSubIaType"
833+
},
834+
"modifiedUserInteraction": {
835+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/modifiedUserInteractionType"
836+
},
837+
"modifiedVulnAvailabilityImpact": {
838+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/modifiedVulnCiaType"
839+
},
840+
"modifiedVulnConfidentialityImpact": {
841+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/modifiedVulnCiaType"
842+
},
843+
"modifiedVulnIntegrityImpact": {
844+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/modifiedVulnCiaType"
845+
},
846+
"privilegesRequired": {
847+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/privilegesRequiredType"
848+
},
849+
"providerUrgency": {
850+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/providerUrgencyType"
851+
},
852+
"subAvailabilityImpact": {
853+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/subCiaType"
854+
},
855+
"subConfidentialityImpact": {
856+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/subCiaType"
857+
},
858+
"subIntegrityImpact": {
859+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/subCiaType"
860+
},
861+
"userInteraction": {
862+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/userInteractionType"
863+
},
864+
"valueDensity": {
865+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/valueDensityType"
866+
},
867+
"vectorString": {
868+
"type": "string"
869+
},
870+
"version": {
871+
"description": "CVSS Version",
872+
"enum": [
873+
"4.0"
874+
],
875+
"type": "string"
876+
},
877+
"vulnAvailabilityImpact": {
878+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/vulnCiaType"
879+
},
880+
"vulnConfidentialityImpact": {
881+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/vulnCiaType"
882+
},
883+
"vulnIntegrityImpact": {
884+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/vulnCiaType"
885+
},
886+
"vulnerabilityResponseEffort": {
887+
"$ref": "#/definitions/metrics/items/properties/cvssV4_0/definitions/vulnerabilityResponseEffortType"
888+
}
889+
},
890+
"required": [
891+
"version",
892+
"vectorString",
893+
"baseScore",
894+
"baseSeverity"
895+
],
896+
"title": "JSON Schema for Common Vulnerability Scoring System version 4.0",
897+
"type": "object"
898+
},
629899
"cvssV3_1": {
630900
"$schema": "http://json-schema.org/draft-07/schema#",
631901
"type": "object",
@@ -1315,7 +1585,9 @@
13151585
"additionalProperties": false
13161586
}
13171587
},
1318-
"required":["adpContainer"],
1588+
"required": [
1589+
"adpContainer"
1590+
],
13191591
"properties": {
13201592
"adpContainer": {
13211593
"$ref": "#/definitions/adpContainer"

0 commit comments

Comments
 (0)