CycloneDX
diff --git a/‎schema/2.0/cyclonedx-2.0.schema.json‎
Lines changed: 3 additions & 0 deletions b/‎schema/2.0/cyclonedx-2.0.schema.json‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎schema/2.0/model/cyclonedx-behavior-2.0.schema.json‎
Lines changed: 1 addition & 1 deletion b/‎schema/2.0/model/cyclonedx-behavior-2.0.schema.json‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎tools/src/test/resources/2.0/invalid-behavior-flowstep-multi-2.0.json‎
Lines changed: 30 additions & 0 deletions b/‎tools/src/test/resources/2.0/invalid-behavior-flowstep-multi-2.0.json‎
Lines changed: 30 additions & 0 deletions
diff --git a/‎tools/src/test/resources/2.0/invalid-blueprint-authentication-2.0.json‎
Lines changed: 26 additions & 0 deletions b/‎tools/src/test/resources/2.0/invalid-blueprint-authentication-2.0.json‎
Lines changed: 26 additions & 0 deletions
diff --git a/‎tools/src/test/resources/2.0/invalid-blueprint-authorization-2.0.json‎
Lines changed: 25 additions & 0 deletions b/‎tools/src/test/resources/2.0/invalid-blueprint-authorization-2.0.json‎
Lines changed: 25 additions & 0 deletions
diff --git a/‎tools/src/test/resources/2.0/invalid-blueprint-relationship-type-2.0.json‎
Lines changed: 35 additions & 0 deletions b/‎tools/src/test/resources/2.0/invalid-blueprint-relationship-type-2.0.json‎
Lines changed: 35 additions & 0 deletions
diff --git a/‎tools/src/test/resources/2.0/invalid-blueprint-visualization-format-2.0.json‎
Lines changed: 26 additions & 0 deletions b/‎tools/src/test/resources/2.0/invalid-blueprint-visualization-format-2.0.json‎
Lines changed: 26 additions & 0 deletions
diff --git a/‎tools/src/test/resources/2.0/invalid-blueprint-visualization-type-2.0.json‎
Lines changed: 24 additions & 0 deletions b/‎tools/src/test/resources/2.0/invalid-blueprint-visualization-type-2.0.json‎
Lines changed: 24 additions & 0 deletions
diff --git a/‎tools/src/test/resources/2.0/invalid-control-missing-name-2.0.json‎
Lines changed: 12 additions & 0 deletions b/‎tools/src/test/resources/2.0/invalid-control-missing-name-2.0.json‎
Lines changed: 12 additions & 0 deletions
diff --git a/‎tools/src/test/resources/2.0/invalid-control-status-unknown-2.0.json‎
Lines changed: 14 additions & 0 deletions b/‎tools/src/test/resources/2.0/invalid-control-status-unknown-2.0.json‎
Lines changed: 14 additions & 0 deletions
@@ -13,6 +13,9 @@
     "$schema": {
       "type": "string"
     },
+    "$comment": {
+      "type": "string"
+    },
     "specFormat": {
       "type": "string",
       "title": "Specification Format",
 
@@ -3,7 +3,7 @@
   "$id": "https://cyclonedx.org/schema/2.0/model/cyclonedx-behavior-2.0.schema.json",
   "type": "null",
   "title": "CycloneDX Behavior Model",
-  "$comment" : "OWASP CycloneDX is an Ecma International standard (ECMA-424) developed in collaboration between the OWASP Foundation and Ecma Technical Committee 54 (TC54). The standard is published under a royalty-free patent policy. This JSON schema is the reference implementation and is licensed under the Apache License 2.0.",
+  "$comment": "OWASP CycloneDX is an Ecma International standard (ECMA-424) developed in collaboration between the OWASP Foundation and Ecma Technical Committee 54 (TC54). The standard is published under a royalty-free patent policy. This JSON schema is the reference implementation and is licensed under the Apache License 2.0.",
   "$defs": {
     "behaviors": {
       "type": "object",
 
@@ -0,0 +1,30 @@
+{
+  "specFormat": "CycloneDX",
+  "specVersion": "2.0",
+  "serialNumber": "urn:uuid:a1b2c3d4-0004-4abc-8def-1122334455dd",
+  "version": 1,
+  "blueprints": [
+    {
+      "bom-ref": "bp-bad-node",
+      "name": "Activity node with two mutually exclusive sources",
+      "modelTypes": [
+        "process"
+      ],
+      "behaviors": {
+        "graphs": [
+          {
+            "bom-ref": "g-bad",
+            "nodes": [
+              {
+                "bom-ref": "n-bad",
+                "kind": "activity",
+                "behavior": "data:ingestion:receivesRequest",
+                "graph": "g-other"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
@@ -0,0 +1,26 @@
+{
+  "specFormat": "CycloneDX",
+  "specVersion": "2.0",
+  "serialNumber": "urn:uuid:1a2b3c4d-5e6f-4079-8190-2b3c4d5e6f70",
+  "version": 1,
+  "blueprints": [
+    {
+      "bom-ref": "bp-legacy-auth",
+      "name": "Legacy authentication values",
+      "modelTypes": [
+        "data-flow"
+      ],
+      "assets": [
+        {
+          "bom-ref": "asset-legacy",
+          "type": "service",
+          "name": "Legacy service",
+          "authentication": [
+            "mfa",
+            "mTLS"
+          ]
+        }
+      ]
+    }
+  ]
+}
@@ -0,0 +1,25 @@
+{
+  "specFormat": "CycloneDX",
+  "specVersion": "2.0",
+  "serialNumber": "urn:uuid:5e4d3c2b-1a09-4f8e-9d7c-6b5a4c3d2e1f",
+  "version": 1,
+  "blueprints": [
+    {
+      "bom-ref": "bp-legacy-authz",
+      "name": "Removed authorization model",
+      "modelTypes": [
+        "data-flow"
+      ],
+      "assets": [
+        {
+          "bom-ref": "asset-legacy-authz",
+          "type": "service",
+          "name": "Legacy service",
+          "authorization": [
+            "cbac"
+          ]
+        }
+      ]
+    }
+  ]
+}
@@ -0,0 +1,35 @@
+{
+  "specFormat": "CycloneDX",
+  "specVersion": "2.0",
+  "serialNumber": "urn:uuid:a1b2c3d4-0006-4abc-8def-1122334455ff",
+  "version": 1,
+  "blueprints": [
+    {
+      "bom-ref": "bp-bad-relationship",
+      "name": "Relationship with unknown type",
+      "modelTypes": [
+        "architecture"
+      ],
+      "assets": [
+        {
+          "bom-ref": "asset-a",
+          "type": "service",
+          "name": "Service A"
+        },
+        {
+          "bom-ref": "asset-b",
+          "type": "service",
+          "name": "Service B"
+        }
+      ],
+      "relationships": [
+        {
+          "ref": "asset-a",
+          "uses": [
+            "asset-b"
+          ]
+        }
+      ]
+    }
+  ]
+}
@@ -0,0 +1,26 @@
+{
+  "specFormat": "CycloneDX",
+  "specVersion": "2.0",
+  "serialNumber": "urn:uuid:9f8e7d6c-5b4a-4039-8271-1a2b3c4d5e6f",
+  "version": 1,
+  "blueprints": [
+    {
+      "bom-ref": "bp-legacy",
+      "name": "Legacy visualization shape",
+      "modelTypes": [
+        "data-flow"
+      ],
+      "visualizations": [
+        {
+          "bom-ref": "viz-legacy",
+          "name": "Old shape using removed properties",
+          "type": {
+            "type": "data-flow"
+          },
+          "format": "mermaid",
+          "content": "flowchart LR; a-->b"
+        }
+      ]
+    }
+  ]
+}
@@ -0,0 +1,24 @@
+{
+  "specFormat": "CycloneDX",
+  "specVersion": "2.0",
+  "serialNumber": "urn:uuid:4d3c2b1a-6e5f-4a09-9b8c-7d6e5f4a3b2c",
+  "version": 1,
+  "blueprints": [
+    {
+      "bom-ref": "bp-renamed",
+      "name": "Renamed visualization type",
+      "modelTypes": [
+        "behavioral"
+      ],
+      "visualizations": [
+        {
+          "bom-ref": "viz-collaboration",
+          "name": "Uses the renamed-away collaboration type",
+          "type": {
+            "type": "collaboration"
+          }
+        }
+      ]
+    }
+  ]
+}
@@ -0,0 +1,12 @@
+{
+  "$schema": "https://cyclonedx.org/schema/2.0/cyclonedx-2.0.schema.json",
+  "specFormat": "CycloneDX",
+  "specVersion": "2.0",
+  "serialNumber": "urn:uuid:5e2c8a4d-1b9f-4c3e-a7d0-6f4b2e9c8a15",
+  "version": 1,
+  "controls": [
+    {
+      "bom-ref": "control-unnamed"
+    }
+  ]
+}
@@ -0,0 +1,14 @@
+{
+  "$schema": "https://cyclonedx.org/schema/2.0/cyclonedx-2.0.schema.json",
+  "specFormat": "CycloneDX",
+  "specVersion": "2.0",
+  "serialNumber": "urn:uuid:3a7f1c5e-8d4b-4e2a-9b0c-7e5d3f1a6c92",
+  "version": 1,
+  "controls": [
+    {
+      "bom-ref": "control-bad-status",
+      "name": "Control with an unknown status",
+      "status": "active"
+    }
+  ]
+}