UNPKG

sra-stix2-validator

Version:

stix 2.0 validator

github.com/SecurityRiskAdvisors/sra-stix2-validator

SecurityRiskAdvisors/sra-stix2-validator

128 lines 5.3 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
{ "$id": "../common/bundle.json", "$schema": "http://json-schema.org/draft-06/schema#", "title": "bundle", "description": "A Bundle is a collection of arbitrary STIX Objects and Marking Definitions grouped together in a single container.", "type": "object", "properties": { "type": { "type": "string", "description": "The type of this object, which MUST be the literal `bundle`.", "const": "bundle" }, "id": { "allOf": [ { "$ref": "identifier.json", "description": "An identifier for this bundle. The id field for the Bundle is designed to help tools that may need it for processing, but tools are not required to store or track it. " }, { "title": "id", "pattern": "^bundle--" } ] }, "spec_version": { "type": "string", "const": "2.0", "description": "The version of the STIX specification used to represent the content in this bundle." }, "objects": { "type": "array", "description": "Specifies a set of one or more STIX Objects.", "items": { "anyOf": [ { "oneOf": [ { "$ref": "../sdos/attack-pattern.json" }, { "$ref": "../sdos/campaign.json" }, { "$ref": "../sdos/course-of-action.json" }, { "$ref": "../sdos/identity.json" }, { "$ref": "../sdos/indicator.json" }, { "$ref": "../sdos/intrusion-set.json" }, { "$ref": "../sdos/malware.json" }, { "$ref": "marking-definition.json" }, { "$ref": "../sdos/observed-data.json" }, { "$ref": "../sros/relationship.json" }, { "$ref": "../sdos/report.json" }, { "$ref": "../sros/sighting.json" }, { "$ref": "../sdos/threat-actor.json" }, { "$ref": "../sdos/tool.json" }, { "$ref": "../sdos/vulnerability.json" } ] }, { "allOf": [ { "$ref": "../common/core.json" }, { "properties": { "type": { "type": "string", "description": "The type of this object, which for custom objects cannot be one of those defined in the specification.", "not": { "enum": [ "attack-pattern", "campaign", "course-of-action", "identity", "indicator", "intrusion-set", "malware", "marking-definition", "observed-data", "relationship", "report", "sighting", "threat-actor", "tool", "vulnerability" ] } } } } ] } ] }, "minItems": 1 } }, "required": [ "type", "id", "spec_version" ] }