Update save_historical_data by LucaFue · Pull Request #19 · eclipse-score/nlohmann_json

LucaFue · 2026-02-13T14:39:00Z

No description provided.

* Sync data_store.py from main * Rename legacy DB files * Sync capture_test_data_memory_sensitive.py from main

…ore matrix specification (#16) * Halnasri resolve tt confidence feedback (#21) * Resolve TT-CHANGES feedback (nlohmann#115) * enhaced doc in concept.rst * enhanced documentation of the scoring * review comments fixed and Example claculating graph added * Added AOUs to TA-CONSTRAINTS * add CI workflow for checking SME reviews (nlohmann#110) * add CI workflow for checking SME reviews * give pull request read permission * fix indentation * fix typo * fix typo * fix artifact collection trigger * reformulate JLS-05 * removed AOUs from non-TA-CONSTRAINTS links * align with current state of working branch * again * enhaced doc in concept.rst * enhanced documentation of the scoring * review comments fixed and Example claculating graph added * unfinished commit * Adapted overall statement formulation * remove WFJ-12 whitespace * Added "provided by nlohmann/json" to WFJ-07 * removed "library" from TA-METHODOLOGIES * Added nlohmann/json to TT-CONSTRUCTION * fix typo in NPF-01 * fixed score -> score-json in TT-CONFIDENCE * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify confidence measurement in nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-FIXES.md regarding repository name Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-ITERATIONS.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-ITERATIONS.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify release construction for nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify source mirroring for nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update wording for nlohmann/json library reference Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reporting of score-json implementation issues Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify dependency storage requirements for nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify usage of nlohmann/json library in AOU-19 Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify wording on bug review for nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify service name in NJF-02.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library in NJF-03 Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify service description in NJF-04.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * changed "service provided by" convention * Fix reference to score-json in AOU-08.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/statements/JLS-24.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CHANGES.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-RESULTS.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-PROVENANCE.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-EXPECTATIONS.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CONSTRUCTION.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CONFIDENCE.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/statements/JLS-25.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update JLS-14.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix merge conflict in JLS-05.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assumptions-of-use/AOU-17.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Implemented custom include_list reference * Removed JLS-27 and its link, added JLS-34 and its link to TA-FIXES * added README documentation for IncludeListReference * changed __str__ method of IncludeListReference to more descriptive title * removed method doc for as_markdown in IncludeListReference * changed __str__ of IncludeListReference * reworked content method in IncludeListReference * small change to README * Update TSF/trustable/statements/JLS-34.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Erikhu1 new tsf items (nlohmann#125) * change AOU-27 * add new statements * update JLS-05 * add release notes reference to JLS-05 * remove internal comment * separate CVE triaging into own statement * update JLS-05 * name specific branch instead of default * split JLS-06 * fix typos * remove unnecessary evidence config * change reference type of release notes * update JLS-19 * specify repo * update JLS-05 * update JLS-06 and JLS-35 * delete non ta-constraints AOU links * Update TSF/trustable/statements/JLS-05.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-11.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-19.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-28.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-30.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-31.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-32.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-33.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * add some references and scores * remove comment * update aou-29 * fix test_str_include_list test reference * add reference to JLS-25 * add reference to JLS-02 * add reference to JLS-06 * update JLS-26 * add reference to JLS-29 * add reference to JLS-30 * update score for JLS-30 * update JLS-35 * Update TSF/trustable/statements/JLS-28.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-30.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * remove duplicate statement * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * add statement for SAST * add link for JLS-34 * add score on JLS-32 * add score on JLS-33 * add score on JLS-34 * update JLS-26 * fix typo * add missing quotation marks --------- Signed-off-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: Luca Füger <luca.fueger@d-fine.com> * delete unused items * fix post create script * fix typos * re-add JLS-27 * remove duplicated tests * update concept section * clean up * corrected on item in the table and change the example in the graph * fix typos in concept * score --> trustable score * .png --> .svg * 0.81 # Conflicts: # TSF/docs/score_calculation_example.svg * add support of fork PRs * newline EOF * fix typo * add reference to JLS-30 * add reference to JLS-11 * change repo names * fix typo * reformulate AOU-05 * clarify AOU-10 * update JLS-01 * update JLS-35 * update JLS-35 * udpate JLS-05 * add evidence to JLS-07 * update JLS-12 * Changed all statement occurrences of score-json to eclipse-score/inc_nlohmann_json * Restored JLS-05 and JLS-27 tto pre-commit state * fix typo * Update TSF/trustable/no-json-faults/NJF-06.6.0.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> * add context files (#5) * add context files * remove references to checklist files * add answer fields * explain component evidence * cleanup * update to trudag v2025.10.22 (#4) * update to trudag v2025.10.22 * upgrade pip * upgrade pip in test_publication workflow * pip install requests * adding new statements to TA-METHODOLOGIES and fixing statements from TA-CONFIDENCE * added references to JLS 40 and 42 * Update TSF/trustable/statements/JLS-43.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-42.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-37.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-09.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * changed JLS08 to be more clear * corrected the statement of JLS-37 * corrected the statement of JLS-41 * corrected the file path in JLS-36 * reformulated the statement JLS-41 * split the statement of JLS-40 into tow * only one valitator * more clear statement in JLS-41 * ' * added a reference to JLS-13 and reformulated the statement * added answers to the evidence lists and to the checklists of TA-CONFIDENCE and TA-METHODOLOGIES * fixed TA-CONFIDENCE * fixed TA-METHODOLOGIES * . * corrected JLS-13 * typo * added new reference to JLS-08 * edited one answer of TA-Methodologies context file * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Add https evidence Added evidence configuration for response time and URL. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix formatting in JLS-08.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Re add AOU-30 Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> * Resolve TT-CONSTRUCTION Feedback (#23) * Moving changes from json to inc_nlohmann_json * Added checklist and evidence for TA-RELEASES * Worked through TA-Iterations checklist and evidence * added checklist and evidence for TA-TESTS * fix smaller details * Update TSF/trustable/assertions/TA-ITERATIONS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assertions/TA-ITERATIONS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * resolved "binary" checklist points * Added JLS-52 * added references for newly created JLS-52 * Update TSF/trustable/statements/JLS-52.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * added verbose file reference to JLS-51 * Update TSF/trustable/statements/JLS-51.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * deleted AOU-08 checklist references * added JLS-51 link to TA-ITERATIONS, removed link to TA-RELEASES * deleted JLS-21 including its links * deleted JLS-21 * removed link TA-ITERATIONS -> JLS-51 * filled in JLS-53 * comments * added TA-Releases checklist answer * changed target to target_seconds * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * fixes for JLS-16 * adapted JLS-53 formulation * fix for JLS-16 * Added item reference to JLS-53 * Update TA-RELEASES_CONTEXT.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * created further statements * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * added link from JLS-53 to JLS-14 and restructured JLS-52 * Provided evidence for JLS-63 * changed JLS-52, JLS-64 and JLS-65 formulation * smaller changes * Added references to JLS-65 * changed JLS-63 reference types * ... * completed JLS-64 * adding response time validator to JLS-64 * specifying remaining TODOs * Specify remaining work #2 * deleted JLS-66 * reworked JLS-62 and deleted 46 and 66 * adapted TA-TESTS_CONTEXT * fixed JLS-62 * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-16.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * added non_reproducible_tests and its reference to JLS-62 --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: LucaFgr <luca.fueger@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * Erikhu1 add missing links (#25) * add missing links * fix faulty reference * Reference corrections (#19) * link TA-BEHAVIOURS to JLS-27 (#9) * update JLS-01 * update JLS-05 * update JLS-11 * update JLS-12 * update JLS-29 * update JLS-30 * update JLS-35 * remove duplicate link * Resolve TT-PROVENANCE Feedback (#14) * added checklist items to TA_INPUTS * move TSF instructions * add JLS-47 and link TA-INPUTS to JLS-34 * create JLS-48 * update TA-INPUTS context * update TA-INPUTS context * add JLS-49 * update inputs context * pin third party tools list to 3.12.0 * add JLS-50 and assessment of third party tools * update TA-INPUTS context * add reference to JLS-49 * link TA-RELEASES -> JLS-49 * Enhance third-party tools assessment documentation (#18) * Enhance third-party tools assessment documentation Expanded the assessment details for various third-party tools used in nlohmann/json Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance documentation for third-party tools assessment 2 Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance third-party tools assessment details 3 Added comprehensive descriptions for Hedley, lcov, libFuzzer, Material for MkDocs, MkDocs, OSS-Fuzz, Probot, and Valgrind. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Revise risk categorization and tool assessment details Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * small fixes Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md typos Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * rename link Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo - Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance OSS-Fuzz section with issue links Updated the OSS-Fuzz role description to include links to specific GitHub issues. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Erik Hu <erik.hu@d-fine.com> * add links from TA-SUPPLYCHAIN * add answer to supply chain context * remove dead link * create JLS-66 * link JLS-66 * finish answer SUPPLY_CHAIN context * misc fixes * misc fixes * misc fixes * Update TSF/trustable/assertions/TA-SUPPLY_CHAIN_CONTEXT.md Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * misc fixes * update JLS-49 * Update TSF/README.md Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: erikhu1 <erik.hu@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * halnasri-Revisit TT-RESULTS (#17) * revisit TT-RESULTS * rebase * resolve conflict * fixing some typos * AoU --> AOU * reformulated JLS-22 and completed the checklist of TA-DATA * Update TSF/trustable/statements/JLS-17.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix typo in 'misbehaviours' in documentation Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix typo in file path for nlohmann misbehaviours Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Clarify answers in TA-ANALYSIS_CONTEXT.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * adress comment of TA-DATA context file * fixed some issues in the TA-ANALYSIS context file * typo in JLS-17 * added a reference to TA-ANALYSIS_CONTEXT.md * added some answers to the checklist of TA-VALIDATION * fix typos Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * added one answer to the TA-VALIDATION and fixed typos * answered checklist questions of TA-VALIDATION * reformulated JLS-17 and added the failure rate analysis * fix some checklist questions * typo * typos * typos and rewrite JLS 17 * Update TSF/trustable/assertions/TA-ANALYSIS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/assertions/TA-ANALYSIS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * link formating Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * link formating Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * added TA-Releases -> JLS-53 link (#27) Co-authored-by: LucaFgr <luca.fueger@d-fine.com> * bump urllib3 version from 2.5.0 to 2.6.0 (#26) * bump urllib3 version from 2.5.0 to 2.6.0 * nitpick EOF line * Erikhu1 sync with prod (#31) * Adding scores for TT-Changes * fix validators function signature * add new trudag dependencies * set review status of reviewed items again * fix outdated dependency --------- Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> * Halnasri fix statements (#30) * fix JLS-08 * fix JLS-08 and JLS-10 * fix JLS-20 * fix JLS-11 and JLS-28 * fix JLS-16 * 2.0 --> 2 * Update JLS-11 * fix JLS-27 * fix JLS-65 * fix JLS-63 * added JLS-19 to build instructions * lcov and coverity * added clang-tidy * removed one validator from JLS-16 * fix lcov and coverity part * edited reference type for scorecard and inrospector * fix JLS-02 * Removed multiple validators from statements by splitting them up (nlohmann#35) * removed multiple validators from statements by splitting them up * removed combinator validator * fix JLS-11 * Update TSF/trustable/statements/JLS-58.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * newline EOF * readded scores for JLS-11 --------- Signed-off-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: LucaFgr <luca.fueger@d-fine.com> Co-authored-by: Erik Hu <erik.hu@d-fine.com> * Erikhu1 sync with prod (nlohmann#38) * Adding scores for TT-Changes * Update 4 trustable tenets (#9) * Halnasri resolve tt confidence feedback (#21) * Resolve TT-CHANGES feedback (nlohmann#115) * enhaced doc in concept.rst * enhanced documentation of the scoring * review comments fixed and Example claculating graph added * Added AOUs to TA-CONSTRAINTS * add CI workflow for checking SME reviews (nlohmann#110) * add CI workflow for checking SME reviews * give pull request read permission * fix indentation * fix typo * fix typo * fix artifact collection trigger * reformulate JLS-05 * removed AOUs from non-TA-CONSTRAINTS links * align with current state of working branch * again * enhaced doc in concept.rst * enhanced documentation of the scoring * review comments fixed and Example claculating graph added * unfinished commit * Adapted overall statement formulation * remove WFJ-12 whitespace * Added "provided by nlohmann/json" to WFJ-07 * removed "library" from TA-METHODOLOGIES * Added nlohmann/json to TT-CONSTRUCTION * fix typo in NPF-01 * fixed score -> score-json in TT-CONFIDENCE * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify confidence measurement in nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-FIXES.md regarding repository name Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-ITERATIONS.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-ITERATIONS.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify release construction for nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify source mirroring for nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update wording for nlohmann/json library reference Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reporting of score-json implementation issues Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify dependency storage requirements for nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify usage of nlohmann/json library in AOU-19 Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify wording on bug review for nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify service name in NJF-02.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library in NJF-03 Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify service description in NJF-04.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * changed "service provided by" convention * Fix reference to score-json in AOU-08.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/statements/JLS-24.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CHANGES.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-RESULTS.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-PROVENANCE.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-EXPECTATIONS.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CONSTRUCTION.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CONFIDENCE.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/statements/JLS-25.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update JLS-14.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix merge conflict in JLS-05.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assumptions-of-use/AOU-17.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Implemented custom include_list reference * Removed JLS-27 and its link, added JLS-34 and its link to TA-FIXES * added README documentation for IncludeListReference * changed __str__ method of IncludeListReference to more descriptive title * removed method doc for as_markdown in IncludeListReference * changed __str__ of IncludeListReference * reworked content method in IncludeListReference * small change to README * Update TSF/trustable/statements/JLS-34.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Erikhu1 new tsf items (nlohmann#125) * change AOU-27 * add new statements * update JLS-05 * add release notes reference to JLS-05 * remove internal comment * separate CVE triaging into own statement * update JLS-05 * name specific branch instead of default * split JLS-06 * fix typos * remove unnecessary evidence config * change reference type of release notes * update JLS-19 * specify repo * update JLS-05 * update JLS-06 and JLS-35 * delete non ta-constraints AOU links * Update TSF/trustable/statements/JLS-05.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-11.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-19.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-28.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-30.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-31.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-32.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-33.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * add some references and scores * remove comment * update aou-29 * fix test_str_include_list test reference * add reference to JLS-25 * add reference to JLS-02 * add reference to JLS-06 * update JLS-26 * add reference to JLS-29 * add reference to JLS-30 * update score for JLS-30 * update JLS-35 * Update TSF/trustable/statements/JLS-28.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-30.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * remove duplicate statement * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * add statement for SAST * add link for JLS-34 * add score on JLS-32 * add score on JLS-33 * add score on JLS-34 * update JLS-26 * fix typo * add missing quotation marks --------- Signed-off-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: Luca Füger <luca.fueger@d-fine.com> * delete unused items * fix post create script * fix typos * re-add JLS-27 * remove duplicated tests * update concept section * clean up * corrected on item in the table and change the example in the graph * fix typos in concept * score --> trustable score * .png --> .svg * 0.81 # Conflicts: # TSF/docs/score_calculation_example.svg * add support of fork PRs * newline EOF * fix typo * add reference to JLS-30 * add reference to JLS-11 * change repo names * fix typo * reformulate AOU-05 * clarify AOU-10 * update JLS-01 * update JLS-35 * update JLS-35 * udpate JLS-05 * add evidence to JLS-07 * update JLS-12 * Changed all statement occurrences of score-json to eclipse-score/inc_nlohmann_json * Restored JLS-05 and JLS-27 tto pre-commit state * fix typo * Update TSF/trustable/no-json-faults/NJF-06.6.0.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> * add context files (#5) * add context files * remove references to checklist files * add answer fields * explain component evidence * cleanup * update to trudag v2025.10.22 (#4) * update to trudag v2025.10.22 * upgrade pip * upgrade pip in test_publication workflow * pip install requests * adding new statements to TA-METHODOLOGIES and fixing statements from TA-CONFIDENCE * added references to JLS 40 and 42 * Update TSF/trustable/statements/JLS-43.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-42.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-37.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-09.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * changed JLS08 to be more clear * corrected the statement of JLS-37 * corrected the statement of JLS-41 * corrected the file path in JLS-36 * reformulated the statement JLS-41 * split the statement of JLS-40 into tow * only one valitator * more clear statement in JLS-41 * ' * added a reference to JLS-13 and reformulated the statement * added answers to the evidence lists and to the checklists of TA-CONFIDENCE and TA-METHODOLOGIES * fixed TA-CONFIDENCE * fixed TA-METHODOLOGIES * . * corrected JLS-13 * typo * added new reference to JLS-08 * edited one answer of TA-Methodologies context file * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Add https evidence Added evidence configuration for response time and URL. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix formatting in JLS-08.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Re add AOU-30 Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> * Resolve TT-CONSTRUCTION Feedback (#23) * Moving changes from json to inc_nlohmann_json * Added checklist and evidence for TA-RELEASES * Worked through TA-Iterations checklist and evidence * added checklist and evidence for TA-TESTS * fix smaller details * Update TSF/trustable/assertions/TA-ITERATIONS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assertions/TA-ITERATIONS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * resolved "binary" checklist points * Added JLS-52 * added references for newly created JLS-52 * Update TSF/trustable/statements/JLS-52.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * added verbose file reference to JLS-51 * Update TSF/trustable/statements/JLS-51.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * deleted AOU-08 checklist references * added JLS-51 link to TA-ITERATIONS, removed link to TA-RELEASES * deleted JLS-21 including its links * deleted JLS-21 * removed link TA-ITERATIONS -> JLS-51 * filled in JLS-53 * comments * added TA-Releases checklist answer * changed target to target_seconds * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * fixes for JLS-16 * adapted JLS-53 formulation * fix for JLS-16 * Added item reference to JLS-53 * Update TA-RELEASES_CONTEXT.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * created further statements * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * added link from JLS-53 to JLS-14 and restructured JLS-52 * Provided evidence for JLS-63 * changed JLS-52, JLS-64 and JLS-65 formulation * smaller changes * Added references to JLS-65 * changed JLS-63 reference types * ... * completed JLS-64 * adding response time validator to JLS-64 * specifying remaining TODOs * Specify remaining work #2 * deleted JLS-66 * reworked JLS-62 and deleted 46 and 66 * adapted TA-TESTS_CONTEXT * fixed JLS-62 * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-16.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * added non_reproducible_tests and its reference to JLS-62 --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: LucaFgr <luca.fueger@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * Erikhu1 add missing links (#25) * add missing links * fix faulty reference * Reference corrections (#19) * link TA-BEHAVIOURS to JLS-27 (#9) * update JLS-01 * update JLS-05 * update JLS-11 * update JLS-12 * update JLS-29 * update JLS-30 * update JLS-35 * remove duplicate link * Resolve TT-PROVENANCE Feedback (#14) * added checklist items to TA_INPUTS * move TSF instructions * add JLS-47 and link TA-INPUTS to JLS-34 * create JLS-48 * update TA-INPUTS context * update TA-INPUTS context * add JLS-49 * update inputs context * pin third party tools list to 3.12.0 * add JLS-50 and assessment of third party tools * update TA-INPUTS context * add reference to JLS-49 * link TA-RELEASES -> JLS-49 * Enhance third-party tools assessment documentation (#18) * Enhance third-party tools assessment documentation Expanded the assessment details for various third-party tools used in nlohmann/json Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance documentation for third-party tools assessment 2 Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance third-party tools assessment details 3 Added comprehensive descriptions for Hedley, lcov, libFuzzer, Material for MkDocs, MkDocs, OSS-Fuzz, Probot, and Valgrind. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Revise risk categorization and tool assessment details Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * small fixes Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md typos Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * rename link Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo - Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance OSS-Fuzz section with issue links Updated the OSS-Fuzz role description to include links to specific GitHub issues. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Erik Hu <erik.hu@d-fine.com> * add links from TA-SUPPLYCHAIN * add answer to supply chain context * remove dead link * create JLS-66 * link JLS-66 * finish answer SUPPLY_CHAIN context * misc fixes * misc fixes * misc fixes * Update TSF/trustable/assertions/TA-SUPPLY_CHAIN_CONTEXT.md Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * misc fixes * update JLS-49 * Update TSF/README.md Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: erikhu1 <erik.hu@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * halnasri-Revisit TT-RESULTS (#17) * revisit TT-RESULTS * rebase * resolve conflict * fixing some typos * AoU --> AOU * reformulated JLS-22 and completed the checklist of TA-DATA * Update TSF/trustable/statements/JLS-17.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix typo in 'misbehaviours' in documentation Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix typo in file path for nlohmann misbehaviours Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Clarify answers in TA-ANALYSIS_CONTEXT.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * adress comment of TA-DATA context file * fixed some issues in the TA-ANALYSIS context file * typo in JLS-17 * added a reference to TA-ANALYSIS_CONTEXT.md * added some answers to the checklist of TA-VALIDATION * fix typos Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * added one answer to the TA-VALIDATION and fixed typos * answered checklist questions of TA-VALIDATION * reformulated JLS-17 and added the failure rate analysis * fix some checklist questions * typo * typos * typos and rewrite JLS 17 * Update TSF/trustable/assertions/TA-ANALYSIS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/assertions/TA-ANALYSIS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * link formating Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * link formating Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * added TA-Releases -> JLS-53 link (#27) Co-authored-by: LucaFgr <luca.fueger@d-fine.com> * bump urllib3 version from 2.5.0 to 2.6.0 (#26) * bump urllib3 version from 2.5.0 to 2.6.0 * nitpick EOF line * Erikhu1 sync with prod (#31) (nlohmann#32) * Adding scores for TT-Changes * fix validators function signature * add new trudag dependencies * set review status of reviewed items again * fix outdated dependency --------- Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> * Halnasri fix statements (nlohmann#34) * Erikhu1 sync with prod (#31) * Adding scores for TT-Changes * fix validators function signature * add new trudag dependencies * set review status of reviewed items again * fix outdated dependency --------- Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> * fix JLS-08 * fix JLS-08 and JLS-10 * fix JLS-20 * fix JLS-11 and JLS-28 * fix JLS-16 * 2.0 --> 2 * Update JLS-11 * fix JLS-27 * fix JLS-65 * fix JLS-63 * added JLS-19 to build instructions * lcov and coverity * added clang-tidy * removed one validator from JLS-16 * fix lcov and coverity part * edited reference type for scorecard and inrospector * fix JLS-02 --------- Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> * Bump urllib3 from 2.6.0 to 2.6.3 in /.devcontainer/S-CORE Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.6.0 to 2.6.3. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](urllib3/urllib3@2.6.0...2.6.3) --- updated-dependencies: - dependency-name: urllib3 dependency-version: 2.6.3 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Remove GitHub actions reference from JLS-16.md Removed reference to GitHub actions page from JLS-16.md Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Erikhu1 fix code scanning alerts (nlohmann#40) * restructure requirements file * update trustable pins * install reqs before trustable * Erikhu1 matrix specification (nlohmann#43) * configure qnx * add GCC toolchain * fix EOF * update gitignore * update gitignore * add reference to check amalgamation in JLS-14 (nlohmann#44) * Resolve TA-Analysis comments (nlohmann#39) * review TA-ANALYSIS * addressing other comments of AS * add reference to JLS-74 * typo * add reference to evidence list * changed the data storage of the test results * deleted JLS-75 and edited JLS-31 * delete JLS-75 file * created link from TA-ANALYSIS to JLS-27 * remove the db from stash * edited scoring data storage * move data storage to data_storage folder * fix documentation due to changes in the data storage * changes in the Context files due to the new data storage * changed AOU 09 and 18 * changes to to changing the AOUs 09 18 and 19 * remove reference to JLS-75 and replace it with reference to JLS-31 * typo * improved structure of ci_failure_rate_analysis.md * Revert "improved structure of ci_failure_rate_analysis.md" This reverts commit a566806. * improved structure of ci_failure_rate_analysis.md * use correct path to data storage * # Ensure sqlite3 is available * add check to env vaiables * typo * added better error when acessing the TSF_PERSIST_DB env variable * add debug to CI * fix CI step Generate trudag report * fix test_publication workflow * fix posible stash problem for data saving * remove TSF/MemoryEfficientTest ResultData.db from stash (nlohmann#46) * fix branch checkout structure in publish_test_data_* workflows (nlohmann#49) * Halnasri fix ci build documentation (nlohmann#50) * fix bazel version conflict in docs-build workflow * set verion of bazel in docs-build to 8.3.0 * Reformulating AOU-19 --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Halnasri resolve tt confidence feedback (#21) * Resolve TT-CHANGES feedback (#115) * enhaced doc in concept.rst * enhanced documentation of the scoring * review comments fixed and Example claculating graph added * Added AOUs to TA-CONSTRAINTS * add CI workflow for checking SME reviews (#110) * add CI workflow for checking SME reviews * give pull request read permission * fix indentation * fix typo * fix typo * fix artifact collection trigger * reformulate JLS-05 * removed AOUs from non-TA-CONSTRAINTS links * align with current state of working branch * again * enhaced doc in concept.rst * enhanced documentation of the scoring * review comments fixed and Example claculating graph added * unfinished commit * Adapted overall statement formulation * remove WFJ-12 whitespace * Added "provided by nlohmann/json" to WFJ-07 * removed "library" from TA-METHODOLOGIES * Added nlohmann/json to TT-CONSTRUCTION * fix typo in NPF-01 * fixed score -> score-json in TT-CONFIDENCE * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify confidence measurement in nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-FIXES.md regarding repository name Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-ITERATIONS.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-ITERATIONS.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify release construction for nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify source mirroring for nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update wording for nlohmann/json library reference Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reporting of score-json implementation issues Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify dependency storage requirements for nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify usage of nlohmann/json library in AOU-19 Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify wording on bug review for nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify service name in NJF-02.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library in NJF-03 Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify service description in NJF-04.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * changed "service provided by" convention * Fix reference to score-json in AOU-08.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/statements/JLS-24.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CHANGES.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-RESULTS.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-PROVENANCE.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-EXPECTATIONS.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CONSTRUCTION.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CONFIDENCE.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/statements/JLS-25.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update JLS-14.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix merge conflict in JLS-05.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assumptions-of-use/AOU-17.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Implemented custom include_list reference * Removed JLS-27 and its link, added JLS-34 and its link to TA-FIXES * added README documentation for IncludeListReference * changed __str__ method of IncludeListReference to more descriptive title * removed method doc for as_markdown in IncludeListReference * changed __str__ of IncludeListReference * reworked content method in IncludeListReference * small change to README * Update TSF/trustable/statements/JLS-34.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Erikhu1 new tsf items (#125) * change AOU-27 * add new statements * update JLS-05 * add release notes reference to JLS-05 * remove internal comment * separate CVE triaging into own statement * update JLS-05 * name specific branch instead of default * split JLS-06 * fix typos * remove unnecessary evidence config * change reference type of release notes * update JLS-19 * specify repo * update JLS-05 * update JLS-06 and JLS-35 * delete non ta-constraints AOU links * Update TSF/trustable/statements/JLS-05.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-11.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-19.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-28.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-30.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-31.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-32.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-33.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * add some references and scores * remove comment * update aou-29 * fix test_str_include_list test reference * add reference to JLS-25 * add reference to JLS-02 * add reference to JLS-06 * update JLS-26 * add reference to JLS-29 * add reference to JLS-30 * update score for JLS-30 * update JLS-35 * Update TSF/trustable/statements/JLS-28.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-30.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * remove duplicate statement * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * add statement for SAST * add link for JLS-34 * add score on JLS-32 * add score on JLS-33 * add score on JLS-34 * update JLS-26 * fix typo * add missing quotation marks --------- Signed-off-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: Luca Füger <luca.fueger@d-fine.com> * delete unused items * fix post create script * fix typos * re-add JLS-27 * remove duplicated tests * update concept section * clean up * corrected on item in the table and change the example in the graph * fix typos in concept * score --> trustable score * .png --> .svg * 0.81 # Conflicts: # TSF/docs/score_calculation_example.svg * add support of fork PRs * newline EOF * fix typo * add reference to JLS-30 * add reference to JLS-11 * change repo names * fix typo * reformulate AOU-05 * clarify AOU-10 * update JLS-01 * update JLS-35 * update JLS-35 * udpate JLS-05 * add evidence to JLS-07 * update JLS-12 * Changed all statement occurrences of score-json to eclipse-score/inc_nlohmann_json * Restored JLS-05 and JLS-27 tto pre-commit state * fix typo * Update TSF/trustable/no-json-faults/NJF-06.6.0.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> * add context files (#5) * add context files * remove references to checklist files * add answer fields * explain component evidence * cleanup * update to trudag v2025.10.22 (#4) * update to trudag v2025.10.22 * upgrade pip * upgrade pip in test_publication workflow * pip install requests * adding new statements to TA-METHODOLOGIES and fixing statements from TA-CONFIDENCE * added references to JLS 40 and 42 * Update TSF/trustable/statements/JLS-43.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-42.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-37.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-09.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * changed JLS08 to be more clear * corrected the statement of JLS-37 * corrected the statement of JLS-41 * corrected the file path in JLS-36 * reformulated the statement JLS-41 * split the statement of JLS-40 into tow * only one valitator * more clear statement in JLS-41 * ' * added a reference to JLS-13 and reformulated the statement * added answers to the evidence lists and to the checklists of TA-CONFIDENCE and TA-METHODOLOGIES * fixed TA-CONFIDENCE * fixed TA-METHODOLOGIES * . * corrected JLS-13 * typo * added new reference to JLS-08 * edited one answer of TA-Methodologies context file * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Add https evidence Added evidence configuration for response time and URL. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix formatting in JLS-08.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Re add AOU-30 Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> * Resolve TT-CONSTRUCTION Feedback (#23) * Moving changes from json to inc_nlohmann_json * Added checklist and evidence for TA-RELEASES * Worked through TA-Iterations checklist and evidence * added checklist and evidence for TA-TESTS * fix smaller details * Update TSF/trustable/assertions/TA-ITERATIONS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assertions/TA-ITERATIONS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * resolved "binary" checklist points * Added JLS-52 * added references for newly created JLS-52 * Update TSF/trustable/statements/JLS-52.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * added verbose file reference to JLS-51 * Update TSF/trustable/statements/JLS-51.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * deleted AOU-08 checklist references * added JLS-51 link to TA-ITERATIONS, removed link to TA-RELEASES * deleted JLS-21 including its links * deleted JLS-21 * removed link TA-ITERATIONS -> JLS-51 * filled in JLS-53 * comments * added TA-Releases checklist answer * changed target to target_seconds * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * fixes for JLS-16 * adapted JLS-53 formulation * fix for JLS-16 * Added item reference to JLS-53 * Update TA-RELEASES_CONTEXT.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * created further statements * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * added link from JLS-53 to JLS-14 and restructured JLS-52 * Provided evidence for JLS-63 * changed JLS-52, JLS-64 and JLS-65 formulation * smaller changes * Added references to JLS-65 * changed JLS-63 reference types * ... * completed JLS-64 * adding response time validator to JLS-64 * specifying remaining TODOs * Specify remaining work #2 * deleted JLS-66 * reworked JLS-62 and deleted 46 and 66 * adapted TA-TESTS_CONTEXT * fixed JLS-62 * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-16.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * added non_reproducible_tests and its reference to JLS-62 --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: LucaFgr <luca.fueger@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * Erikhu1 add missing links (#25) * add missing links * fix faulty reference * Reference corrections (#19) * link TA-BEHAVIOURS to JLS-27 (#9) * update JLS-01 * update JLS-05 * update JLS-11 * update JLS-12 * update JLS-29 * update JLS-30 * update JLS-35 * remove duplicate link * Resolve TT-PROVENANCE Feedback (#14) * added checklist items to TA_INPUTS * move TSF instructions * add JLS-47 and link TA-INPUTS to JLS-34 * create JLS-48 * update TA-INPUTS context * update TA-INPUTS context * add JLS-49 * update inputs context * pin third party tools list to 3.12.0 * add JLS-50 and assessment of third party tools * update TA-INPUTS context * add reference to JLS-49 * link TA-RELEASES -> JLS-49 * Enhance third-party tools assessment documentation (#18) * Enhance third-party tools assessment documentation Expanded the assessment details for various third-party tools used in nlohmann/json Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance documentation for third-party tools assessment 2 Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance third-party tools assessment details 3 Added comprehensive descriptions for Hedley, lcov, libFuzzer, Material for MkDocs, MkDocs, OSS-Fuzz, Probot, and Valgrind. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Revise risk categorization and tool assessment details Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * small fixes Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md typos Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * rename link Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo - Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance OSS-Fuzz section with issue links Updated the OSS-Fuzz role description to include links to specific GitHub issues. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Erik Hu <erik.hu@d-fine.com> * add links from TA-SUPPLYCHAIN * add answer to supply chain context * remove dead link * create JLS-66 * link JLS-66 * finish answer SUPPLY_CHAIN context * misc fixes * misc fixes * misc fixes * Update TSF/trustable/assertions/TA-SUPPLY_CHAIN_CONTEXT.md Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * misc fixes * update JLS-49 * Update TSF/README.md Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: erikhu1 <erik.hu@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * halnasri-Revisit TT-RESULTS (#17) * revisit TT-RESULTS * rebase * resolve conflict * fixing some typos * AoU --> AOU * reformulated JLS-22 and completed the checklist of TA-DATA * Update TSF/trustable/statements/JLS-17.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix typo in 'misbehaviours' in documentation Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix typo in file path for nlohmann misbehaviours Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Clarify answers in TA-ANALYSIS_CONTEXT.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * adress comment of TA-DATA context file * fixed some issues in the TA-ANALYSIS context file * typo in JLS-17 * added a reference to TA-ANALYSIS_CONTEXT.md * added some answers to the checklist of TA-VALIDATION * fix typos Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * added one answer to the TA-VALIDATION and fixed typos * answered checklist questions of TA-VALIDATION * reformulated JLS-17 and added the failure rate analysis * fix some checklist questions * typo * typos * typos and rewrite JLS 17 * Update TSF/trustable/assertions/TA-ANALYSIS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/assertions/TA-ANALYSIS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * link formating Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * link formating Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * added TA-Releases -> JLS-53 link (#27) Co-authored-by: LucaFgr <luca.fueger@d-fine.com> * bump urllib3 version from 2.5.0 to 2.6.0 (#26) * bump urllib3 version from 2.5.0 to 2.6.0 * nitpick EOF line * Erikhu1 sync with prod (#31) * Adding scores for TT-Changes * fix validators function signature * add new trudag dependencies * set review status of reviewed items again * fix outdated dependency --------- Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> * Halnasri fix statements (#30) * fix JLS-08 * fix JLS-08 and JLS-10 * fix JLS-20 * fix JLS-11 and JLS-28 * fix JLS-16 * 2.0 --> 2 * Update JLS-11 * fix JLS-27 * fix JLS-65 * fix JLS-63 * added JLS-19 to build instructions * lcov and coverity * added clang-tidy * removed one validator from JLS-16 * fix lcov and coverity part * edited reference type for scorecard and inrospector * fix JLS-02 * Removed multiple validators from statements by splitting them up (#35) * removed multiple validators from statements by splitting them up * removed combinator validator * fix JLS-11 * Update TSF/trustable/statements/JLS-58.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * newline EOF * readded scores for JLS-11 --------- Signed-off-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: LucaFgr <luca.fueger@d-fine.com> Co-authored-by: Erik Hu <erik.hu@d-fine.com> * Erikhu1 sync with prod (#38) * Adding scores for TT-Changes * Update 4 trustable tenets (#9) * Halnasri resolve tt confidence feedback (#21) * Resolve TT-CHANGES feedback (#115) * enhaced doc in concept.rst * enhanced documentation of the scoring * review comments fixed and Example claculating graph added * Added AOUs to TA-CONSTRAINTS * add CI workflow for checking SME reviews (#110) * add CI workflow for checking SME reviews * give pull request read permission * fix indentation * fix typo * fix typo * fix artifact collection trigger * reformulate JLS-05 * removed AOUs from non-TA-CONSTRAINTS links * align with current state of working branch * again * enhaced doc in concept.rst * enhanced documentation of the scoring * review comments fixed and Example claculating graph added * unfinished commit * Adapted overall statement formulation * remove WFJ-12 whitespace * Added "provided by nlohmann/json" to WFJ-07 * removed "library" from TA-METHODOLOGIES * Added nlohmann/json to TT-CONSTRUCTION * fix typo in NPF-01 * fixed score -> score-json in TT-CONFIDENCE * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify confidence measurement in nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-FIXES.md regarding repository name Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-ITERATIONS.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-ITERATIONS.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify release construction for nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify source mirroring for nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update wording for nlohmann/json library reference Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reporting of score-json implementation issues Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify dependency storage requirements for nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify usage of nlohmann/json library in AOU-19 Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify wording on bug review for nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify service name in NJF-02.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library in NJF-03 Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify service description in NJF-04.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * changed "service provided by" convention * Fix reference to score-json in AOU-08.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/statements/JLS-24.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CHANGES.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-RESULTS.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-PROVENANCE.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-EXPECTATIONS.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CONSTRUCTION.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CONFIDENCE.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/statements/JLS-25.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update JLS-14.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix merge conflict in JLS-05.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assumptions-of-use/AOU-17.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Implemented custom include_list reference * Removed JLS-27 and its link, added JLS-34 and its link to TA-FIXES * added README documentation for IncludeListReference * changed __str__ method of IncludeListReference to more descriptive title * removed method doc for as_markdown in IncludeListReference * changed __str__ of IncludeListReference * reworked content method in IncludeListReference * small change to README * Update TSF/trustable/statements/JLS-34.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Erikhu1 new tsf items (#125) * change AOU-27 * add new statements * update JLS-05 * add release notes reference to JLS-05 * remove internal comment * separate CVE triaging into own statement * update JLS-05 * name specific branch instead of default * split JLS-06 * fix typos * remove unnecessary evidence config * change reference type of release notes * update JLS-19 * specify repo * update JLS-05 * update JLS-06 and JLS-35 * delete non ta-constraints AOU links * Update TSF/trustable/statements/JLS-05.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-11.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-19.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-28.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-30.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-31.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-32.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-33.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * add some references and scores * remove comment * update aou-29 * fix test_str_include_list test reference * add reference to JLS-25 * add reference to JLS-02 * add reference to JLS-06 * update JLS-26 * add reference to JLS-29 * add reference to JLS-30 * update score for JLS-30 * update JLS-35 * Update TSF/trustable/statements/JLS-28.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-30.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * remove duplicate statement * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * add statement for SAST * add link for JLS-34 * add score on JLS-32 * add score on JLS-33 * add score on JLS-34 * update JLS-26 * fix typo * add missing quotation marks --------- Signed-off-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: Luca Füger <luca.fueger@d-fine.com> * delete unused items * fix post create script * fix typos * re-add JLS-27 * remove duplicated tests * update concept section * clean up * corrected on item in the table and change the example in the graph * fix typos in concept * score --> trustable score * .png --> .svg * 0.81 # Conflicts: # TSF/docs/score_calculation_example.svg * add support of fork PRs * newline EOF * fix typo * add reference to JLS-30 * add reference to JLS-11 * change repo names * fix typo * reformulate AOU-05 * clarify AOU-10 * update JLS-01 * update JLS-35 * update JLS-35 * udpate JLS-05 * add evidence to JLS-07 * update JLS-12 * Changed all statement occurrences of score-json to eclipse-score/inc_nlohmann_json * Restored JLS-05 and JLS-27 tto pre-commit state * fix typo * Update TSF/trustable/no-json-faults/NJF-06.6.0.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> * add context files (#5) * add context files * remove references to checklist files * add answer fields * explain component evidence * cleanup * update to trudag v2025.10.22 (#4) * update to trudag v2025.10.22 * upgrade pip * upgrade pip in test_publication workflow * pip install requests * adding new statements to TA-METHODOLOGIES and fixing statements from TA-CONFIDENCE * added references to JLS 40 and 42 * Update TSF/trustable/statements/JLS-43.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-42.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-37.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-09.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * changed JLS08 to be more clear * corrected the statement of JLS-37 * corrected the statement of JLS-41 * corrected the file path in JLS-36 * reformulated the statement JLS-41 * split the statement of JLS-40 into tow * only one valitator * more clear statement in JLS-41 * ' * added a reference to JLS-13 and reformulated the statement * added answers to the evidence lists and to the checklists of TA-CONFIDENCE and TA-METHODOLOGIES * fixed TA-CONFIDENCE * fixed TA-METHODOLOGIES * . * corrected JLS-13 * typo * added new reference to JLS-08 * edited one answer of TA-Methodologies context file * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Add https evidence Added evidence configuration for response time and URL. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix formatting in JLS-08.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Re add AOU-30 Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> * Resolve TT-CONSTRUCTION Feedback (#23) * Moving changes from json to inc_nlohmann_json * Added checklist and evidence for TA-RELEASES * Worked through TA-Iterations checklist and evidence * added checklist and evidence for TA-TESTS * fix smaller details * Update TSF/trustable/assertions/TA-ITERATIONS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assertions/TA-ITERATIONS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * resolved "binary" checklist points * Added JLS-52 * added references for newly created JLS-52 * Update TSF/trustable/statements/JLS-52.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * added verbose file reference to JLS-51 * Update TSF/trustable/statements/JLS-51.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * deleted AOU-08 checklist references * added JLS-51 link to TA-ITERATIONS, removed link to TA-RELEASES * deleted JLS-21 including its links * deleted JLS-21 * removed link TA-ITERATIONS -> JLS-51 * filled in JLS-53 * comments * added TA-Releases checklist answer * changed target to target_seconds * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * fixes for JLS-16 * adapted JLS-53 formulation * fix for JLS-16 * Added item reference to JLS-53 * Update TA-RELEASES_CONTEXT.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * created further statements * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-61.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * added link from JLS-53 to JLS-14 and restructured JLS-52 * Provided evidence for JLS-63 * changed JLS-52, JLS-64 and JLS-65 formulation * smaller changes * Added references to JLS-65 * changed JLS-63 reference types * ... * completed JLS-64 * adding response time validator to JLS-64 * specifying remaining TODOs * Specify remaining work #2 * deleted JLS-66 * reworked JLS-62 and deleted 46 and 66 * adapted TA-TESTS_CONTEXT * fixed JLS-62 * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/assertions/TA-RELEASES_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * Update TSF/trustable/statements/JLS-16.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> * added non_reproducible_tests and its reference to JLS-62 --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: LucaFgr <luca.fueger@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * Erikhu1 add missing links (#25) * add missing links * fix faulty reference * Reference corrections (#19) * link TA-BEHAVIOURS to JLS-27 (#9) * update JLS-01 * update JLS-05 * update JLS-11 * update JLS-12 * update JLS-29 * update JLS-30 * update JLS-35 * remove duplicate link * Resolve TT-PROVENANCE Feedback (#14) * added checklist items to TA_INPUTS * move TSF instructions * add JLS-47 and link TA-INPUTS to JLS-34 * create JLS-48 * update TA-INPUTS context * update TA-INPUTS context * add JLS-49 * update inputs context * pin third party tools list to 3.12.0 * add JLS-50 and assessment of third party tools * update TA-INPUTS context * add reference to JLS-49 * link TA-RELEASES -> JLS-49 * Enhance third-party tools assessment documentation (#18) * Enhance third-party tools assessment documentation Expanded the assessment details for various third-party tools used in nlohmann/json Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance documentation for third-party tools assessment 2 Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance third-party tools assessment details 3 Added comprehensive descriptions for Hedley, lcov, libFuzzer, Material for MkDocs, MkDocs, OSS-Fuzz, Probot, and Valgrind. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Revise risk categorization and tool assessment details Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * small fixes Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/docs/third_party_tools_assessment.md typos Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * rename link Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * typo - Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Enhance OSS-Fuzz section with issue links Updated the OSS-Fuzz role description to include links to specific GitHub issues. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Erik Hu <erik.hu@d-fine.com> * add links from TA-SUPPLYCHAIN * add answer to supply chain context * remove dead link * create JLS-66 * link JLS-66 * finish answer SUPPLY_CHAIN context * misc fixes * misc fixes * misc fixes * Update TSF/trustable/assertions/TA-SUPPLY_CHAIN_CONTEXT.md Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * misc fixes * update JLS-49 * Update TSF/README.md Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: erikhu1 <erik.hu@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * halnasri-Revisit TT-RESULTS (#17) * revisit TT-RESULTS * rebase * resolve conflict * fixing some typos * AoU --> AOU * reformulated JLS-22 and completed the checklist of TA-DATA * Update TSF/trustable/statements/JLS-17.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix typo in 'misbehaviours' in documentation Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Fix typo in file path for nlohmann misbehaviours Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Clarify answers in TA-ANALYSIS_CONTEXT.md Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * adress comment of TA-DATA context file * fixed some issues in the TA-ANALYSIS context file * typo in JLS-17 * added a reference to TA-ANALYSIS_CONTEXT.md * added some answers to the checklist of TA-VALIDATION * fix typos Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * added one answer to the TA-VALIDATION and fixed typos * answered checklist questions of TA-VALIDATION * reformulated JLS-17 and added the failure rate analysis * fix some checklist questions * typo * typos * typos and rewrite JLS 17 * Update TSF/trustable/assertions/TA-ANALYSIS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/assertions/TA-ANALYSIS_CONTEXT.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * link formating Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * link formating Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * added TA-Releases -> JLS-53 link (#27) Co-authored-by: LucaFgr <luca.fueger@d-fine.com> * bump urllib3 version from 2.5.0 to 2.6.0 (#26) * bump urllib3 version from 2.5.0 to 2.6.0 * nitpick EOF line * Erikhu1 sync with prod (#31) (#32) * Adding scores for TT-Changes * fix validators function signature * add new trudag dependencies * set review status of reviewed items again * fix outdated dependency --------- Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> * Halnasri fix statements (#34) * Erikhu1 sync with prod (#31) * Adding scores for TT-Changes * fix validators function signature * add new trudag dependencies * set review status of reviewed items again * fix outdated dependency --------- Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> * fix JLS-08 * fix JLS-08 and JLS-10 * fix JLS-20 * fix JLS-11 and JLS-28 * fix JLS-16 * 2.0 --> 2 * Update JLS-11 * fix JLS-27 * fix JLS-65 * fix JLS-63 * added JLS-19 to build instructions * lcov and coverity * added clang-tidy * removed one validator from JLS-16 * fix lcov and coverity part * edited reference type for scorecard and inrospector * fix JLS-02 --------- Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> * Bump urllib3 from 2.6.0 to 2.6.3 in /.devcontainer/S-CORE Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.6.0 to 2.6.3. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/2.6.0...2.6.3) --- updated-dependencies: - dependency-name: urllib3 dependency-version: 2.6.3 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * Remove GitHub actions reference from JLS-16.md Removed reference to GitHub actions page from JLS-16.md Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Signed-off-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: aschemmel-git <alexander.schemmel@bmw.de> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Erikhu1 fix code scanning alerts (#40) * restructure requirements file * update trustable pins * install reqs before trustable * Erikhu1 matrix specification (#43) * configure qnx * add GCC toolchain * fix EOF * update gitignore * update gitignore * add reference to check amalgamation in JLS-14 (#44) * Resolve TA-Analysis comments (#39) * review TA-ANALYSIS * addressing other comments of AS * add reference to JLS-74 * typo * add reference to evidence list * changed the data storage of the test results * deleted JLS-75 and edited JLS-31 * delete JLS-75 file * created link from TA-ANALYSIS to JLS-27 * remove the db from stash * edited scoring data storage * move data storage to data_storage folder * fix documentation due to changes in the data storage * changes in the Context files due to the new data storage * changed AOU 09 and 18 * changes to to changing the AOUs 09 18 and 19 * remove reference to JLS-75 and replace it with reference to JLS-31 * typo * improved structure of ci_failure_rate_analysis.md * Revert "improved structure of ci_failure_rate_analysis.md" This reverts commit a56680672f8404bb4628d9e5c72e347f5d3d86c1. * improved structure of ci_failure_rate_analysis.md * use correct path to data storage * # Ensure sqlite3 is available * add check to env vaiables * typo * added better error when acessing the TSF_PERSIST_DB env variable * add debug to CI * fix CI step Generate trudag report * fix test_publication workflow * fix posible stash problem for data saving * remove TSF/MemoryEfficientTest ResultData.db from stash (#46) * fix branch checkout structure in publish_test_data_* workflows (#49) * Halnasri fix ci build documentation (#50) * fix bazel version conflict in docs-build workflow * set verion of bazel in docs-build to 8.3.0 * started with TA-Misbehaviours * Filled out Checklist for TA-Behaviours * filled out checklist for TA-Misbehaviours * added additional context information * added checklist answers for TA-Behaviours and TA-Constraints * cosmetic changes to TA-BEHAVIOURS * small updates to TA-Misbehaviours * created JLS-54 to JLS-60 * cosmetic change to JLS-54 * update * improved checklist and evidence for TA-Behaviour * worked on TA-Misbehaviours * added JLS-70 and JLS-71 * added JLS-72 * Worked on Context file of TA-Constraints * worked on misbehaviours context file * halnasri-Revisit_TT_INDICATORS (#28) * revisit TA-INDICATORS * fix dotstop * added tow statement about AWIs for the testing * added new coverage_gate to parent workflow * small fix * edited the coverage_gate workflow * rewrite statement JLS-55 * fix workflow * add pr_count_gat to parent-workflow * fix pr_count_gate * fix pr_count_gate * edited statements and context file of TA-INDICATORS * edited context file * Update TSF/trustable/statements/JLS-55.md Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-55.md Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-54.md Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-54.md Co-authored-by: LucaFue <luca.fueger@d-fine.de> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Edited JLS-55 Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * fixed some answers of the context file Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update coverage threshold to 99.19% Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update answers in TA-INDICATORS_CONTEXT.md Clarified answers regarding risk analyses and monitoring mechanisms in the context of AWIs. Signed-off-by: halnasri <hatem.alnasri@d-fine.com> --------- Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: LucaFue <luca.fueger@d-fine.de> * remove references to parent workflow for JLS-54 and JLS-55 * Added TODOs/Comments to TA-Behaviours and TA-Constraints Context files * created JLS-56 * resolved TODOs in TA-Behaviours * edited JLS 71 * JLS-70 and JLS-72 * documented misunderstandings * added https validator to JLS 70 and 71 * added JLS-73 * small fix * added references to JLS 24 and 31 * edited zthe checklist of TA-Misbehaviour * added https validator to JLS-24 * typos * fix pr count gate and coverage gate and add check_artifact_exists evidence to statements JLS-54 and JLS-55 * edited artifact output for the coverage gate * version control for PR and coverage gate workflow * fix file naming in workflows * fix answers to the checklist of TA-CONSTRAINTS * edited JLS 72 * edited references for JLS 56 * TA-constraints edited checklist * set pr count gate to 15 open PRs * small fixes * exception handling tests evidence * TA-Misbehaviours stress tests * TA-Misbehaviours list of misbehaviours * edited answer about risk analyses in TA-INDICATORS * added JLS-76 and comments to TT-Misbehaviours * removed JLS-69, its link and replace context answer with JLS-11. * replaced JLS-69 by JLS-11 in TA-Indicators context file * added link of TA-Misbehaviours to JLS-11 * added explanation of why there are no incentives to manipulate information * added answer for undiscovered expectations * answered new expectation identification question * added test data to answer * test repo renaming effects * filled out remaining answer in TA-Constraints * answered to TA-Behaviours * answered result evaluation question in TA-Misbehaviours * added answer to fault induction test misbehaviour * answered ta-misbehaviour question, added evidence to JLS-76 * add risk analysis * small fixes * rewrite steps overview * replace - with comma in TA-Behaviours context file * Change phrasing of JLS-24 * changed risk analysis AOU-07 formulation * delete unnecessary section in risk analysis * deleted unnecessary section in risk analysis * changed naming of first risk analysis step * changed referrals to risk_analysis in ta-indicators and ta-misbehaviours * changed links from legacy gitlab TSF documentation to new ecplise TSF documentation. * Added a control structure diagram both as drawio/png and embedded it in the risk_analysis. * Change risk_analysis headers and structure to fit expected steps of RAFIA STPA procedure. * Remade part 4 Unsafe Control Actions to fit review. * Add step 5 Controller Constraints. * Add step 6 Control loops to risk_analysis * Add step 8 Causal Scenario Constrains to risk analysis * Add step 10 Review of STPA results to risk analysis. * Reworked step 9 Misbehaviours and Expectations in risk analysis to be in line with the STPA review guide. * Update markdown tables of risk_analysis to follow column names and order of STPA results schema in TSF documentation. * Add additional Controller Functional Constraints under 5) Device Cotroller Constraints for risk_analysis to fulfill STPA review requirements. * Updated step 7) Causal Scenarios to follow review guidelines in risk_analysis * TA-Constraints: add AOU-31 resource/time budget assumption * Removed typos and irregularities for review changes. * Replace legacy UCA IDs with current combined IDs as in review. * Changed minor remarks from review. * Changed failure description in 6) Control Loops and Sequences in risk_analysis * Changed minor errors in STPA diagram. * Sync up of latest changes from prod/main into dev/main (#51) * Adding scores for TT-Changes * Update 4 trustable tenets (#9) * Halnasri resolve tt confidence feedback (#21) * Resolve TT-CHANGES feedback (#115) * enhaced doc in concept.rst * enhanced documentation of the scoring * review comments fixed and Example claculating graph added * Added AOUs to TA-CONSTRAINTS * add CI workflow for checking SME reviews (#110) * add CI workflow for checking SME reviews * give pull request read permission * fix indentation * fix typo * fix typo * fix artifact collection trigger * reformulate JLS-05 * removed AOUs from non-TA-CONSTRAINTS links * align with current state of working branch * again * enhaced doc in concept.rst * enhanced documentation of the scoring * review comments fixed and Example claculating graph added * unfinished commit * Adapted overall statement formulation * remove WFJ-12 whitespace * Added "provided by nlohmann/json" to WFJ-07 * removed "library" from TA-METHODOLOGIES * Added nlohmann/json to TT-CONSTRUCTION * fix typo in NPF-01 * fixed score -> score-json in TT-CONFIDENCE * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify confidence measurement in nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-FIXES.md regarding repository name Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-ITERATIONS.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix typo in TA-ITERATIONS.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify release construction for nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify source mirroring for nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update wording for nlohmann/json library reference Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reporting of score-json implementation issues Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify dependency storage requirements for nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify usage of nlohmann/json library in AOU-19 Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify wording on bug review for nlohmann/json Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify service name in NJF-02.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify reference to nlohmann/json library in NJF-03 Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Clarify service description in NJF-04.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * changed "service provided by" convention * Fix reference to score-json in AOU-08.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/statements/JLS-24.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CHANGES.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-RESULTS.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-PROVENANCE.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-EXPECTATIONS.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CONSTRUCTION.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/tenets/TT-CONFIDENCE.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/statements/JLS-25.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update JLS-14.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Fix merge conflict in JLS-05.md Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Update TSF/trustable/assumptions-of-use/AOU-17.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Implemented custom include_list reference * Removed JLS-27 and its link, added JLS-34 and its link to TA-FIXES * added README documentation for IncludeListReference * changed __str__ method of IncludeListReference to more descriptive title * removed method doc for as_markdown in IncludeListReference * changed __str__ of IncludeListReference * reworked content method in IncludeListReference * small change to README * Update TSF/trustable/statements/JLS-34.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: Luca Füger <luca.fueger@d-fine.com> * Erikhu1 new tsf items (#125) * change AOU-27 * add new statements * update JLS-05 * add release notes reference to JLS-05 * remove internal comment * separate CVE triaging into own statement * update JLS-05 * name specific branch instead of default * split JLS-06 * fix typos * remove unnecessary evidence config * change reference type of release notes * update JLS-19 * specify repo * update JLS-05 * update JLS-06 and JLS-35 * delete non ta-constraints AOU links * Update TSF/trustable/statements/JLS-05.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-11.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-19.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-28.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-30.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-31.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-32.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-33.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * add some references and scores * remove comment * update aou-29 * fix test_str_include_list test reference * add reference to JLS-25 * add reference to JLS-02 * add reference to JLS-06 * update JLS-26 * add reference to JLS-29 * add reference to JLS-30 * update score for JLS-30 * update JLS-35 * Update TSF/trustable/statements/JLS-28.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * Update TSF/trustable/statements/JLS-30.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * remove duplicate statement * Update TSF/trustable/statements/JLS-29.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> * add statement for SAST * add link for JLS-34 * add score on JLS-32 * add score on JLS-33 * add score on JLS-34 * update JLS-26 * fix typo * add missing quotation marks --------- Signed-off-by: Erik Hu <erik.hu@d-fine.com> Co-authored-by: Luca Füger <luca.fueger@d-fine.com> * delete unused items * fix post create script * fix typos * re-add JLS-27 * remove duplicated tests * update concept section * clean up * corrected on item in the table and change the example in the graph * fix typos in concept * score --> trustable score * .png --> .svg * 0.81 # Conflicts: # TSF/docs/score_calculation_example.svg * add support of fork PRs * newline EOF * fix typo * add reference to JLS-30 * add reference to JLS-11 * change repo names * fix typo * reformulate AOU-05 * clarify AOU-10 * update JLS-01 * update JLS-35 * update JLS-35 * udpate JLS-05 * add evidence to JLS-07 * update JLS-12 * Changed all statement occurrences of score-json to eclipse-score/inc_nlohmann_json * Restored JLS-05 and JLS-27 tto pre-commit state * fix typo * Update TSF/trustable/no-json-faults/NJF-06.6.0.md Co-authored-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> --------- Signed-off-by: Luca Füger <luca.fueger@d-fine.com> Signed-off-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: halnasri <hatem.alnasri@d-fine.com> Co-authored-by: Luca <luca.fueger@d-fine.com> * add context files (#5) * add context files * remove references to checklist files * add answer fields * explain component evidence * cleanup * update to trudag v2025.10.22 (#4) * update to trudag v2025.10.22 * upgrade pip * upgrade pip in test_publication workflow * pip install requests * adding new statements to TA-METHODOLOGIES and fixing statements from TA-CONFIDENCE * added references to JLS 40 and 42 * Update TSF/trustable/statements/JLS-43.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-42.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-37.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-09.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.alnasri@d-fine.com> * Update TSF/trustable/statements/JLS-08.md Co-authored-by: Erik Hu <erik.hu@d-fine.com> Signed-off-by: halnasri <hatem.…

github-actions bot added 30 commits November 14, 2025 17:57

Save test data

622ad45

Updated issues list

2f65711

Append data storage

2cc2803

Save test data

c4b1ed5

Save test data

1eb582e

Save test data

3e44c83

Save test data

e210a37

Save test data

d7232b5

Save test data

8974adc

Updated issues list

14511fd

Append data storage

d8b30d9

Save test data

26df077

Append data storage

9d9d563

Save test data

679937a

Save test data

7d8cd36

Updated issues list

17c621f

Append data storage

7962341

Save test data

d7c19db

Save test data

0444a6e

Save test data

290e48f

Save test data

31772ec

Save test data

feceef7

Append data storage

dd5ad30

Save test data

e3c6654

Updated issues list

ed696c5

Append data storage

2bd7d73

Save test data

0ec5e61

Save test data

20e73b7

Append data storage

c8c29c3

Save test data

73db6a6

github-actions bot and others added 26 commits January 21, 2026 16:19

Save test data

75f2c4e

Halnasri update files in save historical data (#48)

46bb286

* Sync data_store.py from main * Rename legacy DB files * Sync capture_test_data_memory_sensitive.py from main

Save test data

b75ec9a

Updated issues list

dba2ad5

Append data storage

61d802a

Save test data

bf2db33

Updated issues list

c2c7a7a

Append data storage

df59424

Save test data

34b2f64

Save test data

a44ce8a

Save test data

ef7ae7d

Save test data

6ec1a54

Save test data

b98a53f

Save test data

35b99ce

Save test data

b4638d1

Save test data

6a0b977

Save test data

779ee9c

Save test data

dcf8a9b

Save test data

b72eef2

Save test data

a9a854c

Save test data

20e15ae

Save test data

8f816b1

Save test data

1f374ad

Save test data

c58edf2

Save test data

7a6f5b5

Save test data

95e601e

LucaFue changed the title ~~Save historical data to prod~~ Update save_historical_data Feb 13, 2026

LucaFue marked this pull request as draft February 13, 2026 14:43

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update save_historical_data#19

Update save_historical_data#19
LucaFue wants to merge 146 commits intoeclipse-score:save_historical_datafrom
score-json:save_historical_data_to_prod

LucaFue commented Feb 13, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

LucaFue commented Feb 13, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant