aiden
/
depot_tools
mirror of https://chromium.googlesource.com/chromium/tools/depot_tools
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
main
chrome/4147
chrome/3987
chrome/3865
chrome/3904
infra/config
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '524abbc50e'
${ noResults }
depot_tools/metadata
History
Jordan Brown 98b7273c8d Add custom Mitigated field 
This field stores a list of comma-separated CVE IDs that the dependency mitigates.

The field is validated to contain only valid CVE IDs.


Bug: b/392026683
Change-Id: I9578fc709086131695cfa7eee51e717c24440853
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/tools/depot_tools/+/6197756
Reviewed-by: Jiewei Qian <qjw@chromium.org>
Commit-Queue: Jordan Brown <rop@google.com>
 		4 months ago
..
fields Add custom Mitigated field 4 months ago
tests Add custom Mitigated field 4 months ago
LICENSE_OWNERS Add clear documentation to license_allowlist.py 4 months ago
OWNERS Updating presubmit to check license is a valid spdx identifier. 6 months ago
PRESUBMIT.py [ssci] PEP8 formatting for metadata directory 2 years ago
README.md [ssci] Script to run validation on all metadata files 2 years ago
SECURITY_TEAM_OWNERS Updating presubmit to check license is a valid spdx identifier. 6 months ago
__init__.py Define main metadata validation functions 2 years ago
dependency_metadata.py Add custom Mitigated field 4 months ago
discover.py metadata: sort discovered files and validation messages 1 year ago
parse.py metadata: add line number reporting 10 months ago
scan.py metadata: sort result summary 1 year ago
validate.py Add `is_open_source_project` to metadata validation 5 months ago
validation_result.py metadata: add line number reporting 10 months ago

README.md

Validation for Chromium's Third Party Metadata Files

This directory contains the code to validate Chromium third party metadata files, i.e. README.chromium files.

Prerequisites

  1. Have the Chromium source code checked out on disk
  2. Ensure you've run gclient runhooks on your source checkout

Run

metadata/scan.py can be used to search for and validate all Chromium third party metadata files within a repository. For example, if your chromium/src checkout is at ~/my/path/to/chromium/src, run the following command from the root directory of depot_tools:

vpython3 --vpython-spec=.vpython3 metadata/scan.py ~/my/path/to/chromium/src