NAME

CSAF::Validator::OptionalTests

SYNOPSIS

    use CSAF::Validator::OptionalTests;

    my $v = CSAF::Validator::OptionalTests->new( csaf => $csaf );

    $v->exec_test('6.2.2');
    $v->TEST_6_2_2;

DESCRIPTION

Optional tests SHOULD NOT fail at a valid CSAF document without a good reason. Failing such a test does not make the CSAF document invalid. These tests may include information about features which are still supported but expected to be deprecated in a future version of CSAF.

    6.2.1 Unused Definition of Product ID (*)
    6.2.2 Missing Remediation
    6.2.3 Missing Score
    6.2.4 Build Metadata in Revision History
    6.2.5 Older Initial Release Date than Revision History
    6.2.6 Older Current Release Date than Revision History
    6.2.7 Missing Date in Involvements
    6.2.8 Use of MD5 as the only Hash Algorithm
    6.2.9 Use of SHA-1 as the only Hash Algorithm
    6.2.10 Missing TLP label
    6.2.11 Missing Canonical URL
    6.2.12 Missing Document Language
    6.2.13 Sorting (*)
    6.2.14 Use of Private Language
    6.2.15 Use of Default Language
    6.2.16 Missing Product Identification Helper
    6.2.17 CVE in field IDs
    6.2.18 Product Version Range without vers
    6.2.19 CVSS for Fixed Products
    6.2.20 Additional Properties (**)

(*) actually not tested in this CSAF distribution.

(**) tested in CSAF::Parser

METHODS

CSAF::Validator::OptionalTests inherits all methods from CSAF::Validator::Base and implements the following new ones.

TEST_6_2_1

Unused Definition of Product ID

TEST_6_2_2

Missing Remediation

TEST_6_2_3

Missing Score

TEST_6_2_4

Build Metadata in Revision History

TEST_6_2_5

Older Initial Release Date than Revision History

TEST_6_2_6

Older Current Release Date than Revision History

TEST_6_2_7

Missing Date in Involvements

TEST_6_2_8

Use of MD5 as the only Hash Algorithm

TEST_6_2_9

Use of SHA-1 as the only Hash Algorithm

TEST_6_2_10

Missing TLP label

TEST_6_2_11

Missing Canonical URL

TEST_6_2_12

Missing Document Language

TEST_6_2_13

Sorting

TEST_6_2_14

Use of Private Language

TEST_6_2_15

Use of Default Language

TEST_6_2_16

Missing Product Identification Helper

TEST_6_2_17

CVE in field IDs

TEST_6_2_18

Product Version Range without vers

TEST_6_2_19

CVSS for Fixed Products

TEST_6_2_20

Additional Properties

Tested in CSAF::Parser

SUPPORT

Bugs / Feature Requests

Please report any bugs or feature requests through the issue tracker at https://github.com/giterlizzi/perl-CSAF/issues. You will be notified automatically of any progress on your issue.

Source Code

This is open source software. The code repository is available for public review and contribution under the terms of the license.

https://github.com/giterlizzi/perl-CSAF

    git clone https://github.com/giterlizzi/perl-CSAF.git

AUTHOR

Giuseppe Di Terlizzi <gdt@cpan.org>

LICENSE AND COPYRIGHT

This is free software; you can redistribute it and/or modify it under the same terms as the Perl 5 programming language system itself.

To install CSAF, copy and paste the appropriate command in to your terminal.

cpanm

cpanm CSAF

CPAN shell

perl -MCPAN -e shell
install CSAF

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)