8000 Added HasSLSA schema along with testing backend by pxp928 · Pull Request #471 · guacsec/guac · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

Added HasSLSA schema along with testing backend #471

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Feb 21, 2023
Merged

Added HasSLSA schema along with testing backend #471

merged 3 commits into from
Feb 21, 2023

Conversation

pxp928
Copy link
Collaborator
@pxp928 pxp928 commented Feb 20, 2023

HasSLSA:

  • Description: SLSA attestation of the package/artifact/source used to map to the materials used to build and the builder (such as FRSCA or github actions) used to generate

  • Subject: pkg / artifact / src

  • Object: built_from ( pkg / artifact / src )
    built_by ( builder )

  • Properties: build_type ( string )
    slsaPredicate_* (string)
    slsaVersion (string)
    started_on ( timestamp )
    finished_on ( timestamp )
    origin ( string )
    collector ( string )

fragment allHasSLSA on HasSLSA {
  subject {
    __typename
    ... on Package {
      type
      namespaces {
        namespace
        names {
          name
          versions {
            version
            qualifiers {
              key
              value
            }
            subpath
          }
        }
      }
    }
    ... on Source {
      type
      namespaces {
        namespace
        names {
          name
          tag
          commit
        }
      }
    }
    ... on Artifact {
      algorithm
      digest
    }
  }
  builtFrom {
       __typename
    ... on Package {
      type
      namespaces {
        namespace
        names {
          name
          versions {
            version
            qualifiers {
              key
              value
            }
            subpath
          }
        }
      }
    }
    ... on Source {
      type
      namespaces {
        namespace
        names {
          name
          tag
          commit
        }
      }
    }
    ... on Artifact {
      algorithm
      digest
    }
  }
  builtBy {
    uri
  }
  buildType
  slsaPredicate{
    key
    value
  }
  slsaVersion
  startedOn
  finishedOn
  origin
  collector
}

query Q1 {
  HasSLSA(hasSLSASpec: {}) {
    ...allHasSLSA
  }
}

query Q2 {
  HasSLSA(hasSLSASpec: {origin: "testing backend"}) {
    ...allHasSLSA
  }
}

query Q3 {
  HasSLSA(hasSLSASpec: {package: {name: "django"}}) {
    ...allHasSLSA
  }
}

mihaimaruseac
mihaimaruseac approved these changes Feb 21, 2023
View reviewed changes
lumjjb
lumjjb approved these changes Feb 21, 2023
View reviewed changes
@pxp928 pxp928 force-pushed the hasSLSA-schema branch 2 times, most recently from 1256009 to a602b9f Compare February 21, 2023 21:26
@pxp928
added hasSLSA schema with testing backend
f7ebdf9 
Signed-off-by: pxp928 <parth.psu@gmail.com>
@pxp928
added hasSLSA schema with testing backend
951a982 
Signed-off-by: pxp928 <parth.psu@gmail.com>
@pxp928
remove unneeded comments
b53de3c 
Signed-off-by: pxp928 <parth.psu@gmail.com>
@kodiakhq kodiakhq bot merged commit 5e47768 into guacsec:main Feb 21, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mihaimaruseac mihaimaruseac mihaimaruseac approved these changes

@lumjjb lumjjb lumjjb approved these changes

Assignees
No one assigned
Labels
size/L
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@pxp928 @mihaimaruseac @lumjjb
0