Lib.rs

Parser implementations
#advisory #vulnerabilities #security #json-schema

csaf

An implementation of the Common Security Advisory Framework (CSAF)

Owned by Blake Johnson.

5 unstable releases

0.5.0 May 8, 2023
0.4.0 Mar 11, 2023
0.3.2 Nov 10, 2021
0.3.1 Oct 10, 2021
0.3.0 Oct 10, 2021

#2074 in Parser implementations


Used in 3 crates

MIT license

75KB
913 lines

Common Security Advisory Framework (CSAF)

Crates.io Crates.io docs.rs GitHub branch checks state

A lovingly hand-crafted1 implementation of CSAF for Rust. Currently, based on the v2.0 editor draft. Should be considered strictly less-strict than the spec right now - valid CSAF should deserialize successfully, but invalid CSAF may also succeed and the library may generate invalid CSAF.

My current use case is for experimenting with the VEX profile.

1 - CSAF defines a JSON Schema schema using Draft 2020-12. schemafy exists for generating Rust code from JSON Schema, but supports an older draft which differs significantly from the 2020-12 draft.

Dependencies

~9–21MB
~327K SLoC