You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
e42fac3e9c
This adds a new way to report CVEs that includes an accompanying description. It also adds a new validation check that ensures that the CVE description is present for every entry listed in the 'Mitigated:' field. Bug: b/392026683 Change-Id: Ie55595970b49d705ac532f1f8c41ff47d959f56c Reviewed-on: https://chromium-review.googlesource.com/c/chromium/tools/depot_tools/+/6211644 Auto-Submit: Jordan Brown <rop@google.com> Reviewed-by: Jiewei Qian <qjw@chromium.org> Commit-Queue: Jiewei Qian <qjw@chromium.org> |
4 weeks ago | |
|---|---|---|
| .. | ||
| fields | 4 weeks ago | |
| tests | 4 weeks ago | |
| LICENSE_OWNERS | ||
| OWNERS | ||
| PRESUBMIT.py | ||
| README.md | ||
| SECURITY_TEAM_OWNERS | ||
| __init__.py | ||
| dependency_metadata.py | 4 weeks ago | |
| discover.py | ||
| parse.py | 4 weeks ago | |
| scan.py | ||
| validate.py | ||
| validation_result.py | ||
README.md
Validation for Chromium's Third Party Metadata Files
This directory contains the code to validate Chromium third party metadata
files, i.e. README.chromium files.
Prerequisites
- Have the Chromium source code checked out on disk
- Ensure you've run
gclient runhookson your source checkout
Run
metadata/scan.py can be used to search for and validate all Chromium third
party metadata files within a repository. For example, if your chromium/src
checkout is at ~/my/path/to/chromium/src, run the following command from the
root directory of depot_tools:
vpython3 --vpython-spec=.vpython3 metadata/scan.py ~/my/path/to/chromium/src