wooo/awoooi
1
1
Fork 0
Code Issues 2 Pull Requests 1 Actions 3 Packages Projects Releases Wiki Activity
Files
main
awoooi/docs/schemas/security_finding_v1.schema.json
Your Name 9e15fd08b3
All checks were successful
CD Pipeline / tests (push) Successful in 1m39s
Details
Code Review / ai-code-review (push) Successful in 15s
Details
CD Pipeline / build-and-deploy (push) Successful in 5m19s
Details
CD Pipeline / post-deploy-checks (push) Successful in 2m11s
Details
feat(web): land iwooos security posture surfaces
2026-05-25 20:35:52 +08:00

147 lines
3.0 KiB
JSON
Raw Permalink Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
{
"$schema": "https://json-schema.org/draft/2020-12/schema",
"$id": "urn:awoooi:security-finding-v1",
"title": "AWOOOI 資安發現事件 (v1)",
"description": "資安掃描與驗證結果的標準事件契約。初期只作為 observe-only / mirror-only evidence不授權自動封鎖或自動修復。",
"type": "object",
"required": [
"schema_version",
"finding_id",
"scan_run_id",
"scanner",
"asset_key",
"target_type",
"target",
"category",
"severity",
"confidence",
"recommended_mode",
"evidence_ref",
"summary",
"recommended_action"
],
"properties": {
"schema_version": {
"const": "security_finding_v1"
},
"finding_id": {
"type": "string",
"minLength": 8,
"description": "穩定且可重算的 fingerprint。"
},
"scan_run_id": {
"type": "string",
"minLength": 1
},
"scanner": {
"type": "string",
"enum": [
"kali",
"trivy",
"zap",
"semgrep",
"detect-secrets",
"kube-bench",
"manual",
"other"
]
},
"scanner_version": {
"type": "string"
},
"asset_key": {
"type": "string",
"minLength": 1
},
"target_type": {
"type": "string",
"enum": [
"host",
"website",
"api_endpoint",
"container",
"package",
"repo",
"k8s_resource",
"tool"
]
},
"target": {
"type": "string",
"minLength": 1,
"description": "已脫敏 target identifier不可含 raw secret、cookie 或 exploit payload。"
},
"category": {
"type": "string",
"enum": [
"exposure",
"cve",
"secret",
"misconfig",
"auth",
"tls",
"web",
"code",
"supply_chain",
"network"
]
},
"severity": {
"type": "string",
"enum": ["LOW", "MEDIUM", "HIGH", "CRITICAL"]
},
"confidence": {
"type": "string",
"enum": ["LOW", "MEDIUM", "HIGH"]
},
"status": {
"type": "string",
"enum": [
"new",
"confirmed",
"false_positive",
"accepted_risk",
"fixed",
"expired"
],
"default": "new"
},
"recommended_mode": {
"type": "string",
"enum": [
"observe",
"warn",
"approve_required",
"block_candidate"
]
},
"evidence_ref": {
"type": "string",
"minLength": 1,
"description": "指向已脫敏 evidence 的 reference。"
},
"summary": {
"type": "string",
"minLength": 1
},
"recommended_action": {
"type": "string",
"minLength": 1
},
"owner_team": {
"type": "string"
},
"expires_at": {
"type": "string",
"format": "date-time"
},
"labels": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
},
"additionalProperties": false
}
Reference in New Issue View Git Blame Copy Permalink