Merge pull request #39 from EVERSE-ResearchSoftware/update-validation

dgarijo · web-flow · commit d2317bb12dfb · 2025-05-05T15:53:07.000+02:00
Update indicator validation schema
diff --git a/indicators/dependency_management.json b/indicators/dependency_management.json
@@ -0,0 +1,34 @@
+{
+  "@context": "https://w3id.org/everse/rsqi#",
+  "@id": "https://w3id.org/everse/i/indicators/dependency_management",
+  "@type": "SoftwareQualityIndicator",
+  "name": "Software has dependency management solution",
+  "identifier": { "@id": "https://w3id.org/everse/i/indicators/dependency_management" },
+  "description": "Reviews how external libraries and dependencies are managed to ensure compatibility and security.",
+  "status": "Active",
+  "keywords": [
+    "sustaninability", "dependencies"
+  ],
+  "version": "1.0.0",
+  "author": {
+    "@type": "Person",
+    "name": "Faruk Diblen"
+  },
+  "contact": {
+    "@type": "Person",
+    "name": "Faruk Diblen"
+  },
+  "source": [
+    {
+      "identifier": "https://zenodo.org/record/14852424",
+      "url": "https://zenodo.org/records/14852424/files/Software%20Quality%20Indicators.xlsx",
+      "name": "Software Quality Indicators from BioHackathon 2024 (Sheet: Sustanability, Row: Su7)"
+    },
+    {
+      "url": "https://fair-impact.github.io/RSMD-guidelines/8.rsmd_checklist/",
+      "name": "RSMD checklist"
+    }
+  ],
+  "qualityDimension": { "@id": "https://w3id.org/everse/i/dimensions/sustaninability" },
+  "created": "03-04-2025"
+}
diff --git a/indicators/no_critical_vulnerability.json b/indicators/no_critical_vulnerability.json
@@ -3,24 +3,26 @@
     "@type": "SoftwareQualityIndicator",
     "name": "noCriticalVulnerability",
     "description": "Checks if reported critical vulnerabilities has been fixed",
-    "keywords": ["security", "critical", "vulnerability"],
-    "identifier": { "@id": "https://w3id.org/everse/i/indicators/no_critical_vulnerability"},
+    "keywords": [ "security", "critical", "vulnerability" ],
+    "identifier": { "@id": "https://w3id.org/everse/i/indicators/no_critical_vulnerability" },
     "status": "Active",
     "version": "1.0.0",
     "author": {
         "@type": "schema:Organization",
         "name": "OpenSSF",
         "url": "https://openssf.org/"
     },
-    "source": {
-        "@id": "https://www.bestpractices.dev/en/criteria/0#0.vulnerabilities_critical_fixed",
-        "name": "OpenSSF Best practice Critical Vulnerability Fixed"
-    },
+    "source": [
+        {
+            "@id": "https://www.bestpractices.dev/en/criteria/0#0.vulnerabilities_critical_fixed",
+            "name": "OpenSSF Best practice Critical Vulnerability Fixed"
+        }
+    ],
     "contact": {
         "@type": "schema:Person",
         "name": "Tom François",
         "schema:email": "tom.francois@lapp.in2p3.fr"
     },
-    "qualityDimension": {"@id": "https://w3id.org/everse/i/dimensions/security"},
+    "qualityDimension": { "@id": "https://w3id.org/everse/i/dimensions/security" },
     "created": "03-04-2025"
 }
diff --git a/indicators/no_leaked_credential.json b/indicators/no_leaked_credential.json
@@ -3,24 +3,25 @@
     "@type": "SoftwareQualityIndicator",
     "name": "noLeakedCredentials",
     "description": "Checks if hardcoded secrets like passwords, API keys, and tokens is stored in the public git repository",
-    "keywords": ["security", "credential", "leak", "secret", "password"],
-    "url": "",
-    "identifier": {"@id": "https://w3id.org/everse/i/indicators/no_leaked_credential"},
+    "keywords": [ "security", "credential", "leak", "secret", "password" ],
+    "identifier": { "@id": "https://w3id.org/everse/i/indicators/no_leaked_credential" },
     "status": "Active",
     "version": "1.0.0",
     "author": {
         "@type": "schema:Organization",
         "name": "OpenSSF",
         "url": "https://openssf.org/"
     },
-    "source": {
-        "@id": "https://www.bestpractices.dev/en/criteria/0#0.no_leaked_credentials",
-        "name": "OpenSSF Best practice No Leaked Credentials"
-    },
+    "source": [
+        {
+            "@id": "https://www.bestpractices.dev/en/criteria/0#0.no_leaked_credentials",
+            "name": "OpenSSF Best practice No Leaked Credentials"
+        }
+    ],
     "contact": {
         "@type": "schema:Person",
         "name": "Tom François",
         "schema:email": "tom.francois@lapp.in2p3.fr"
     },
-    "qualityDimension": {"@id": "https://w3id.org/everse/i/dimensions/security"}
+    "qualityDimension": { "@id": "https://w3id.org/everse/i/dimensions/security" }
 }
diff --git a/tests/indicator_validation_schema.json b/tests/indicator_validation_schema.json
@@ -34,6 +34,14 @@
                 },
                 "name": {
                     "type": "string"
+                },
+                "email": {
+                    "type": "string",
+                    "format": "email"
+                },
+                "url": {
+                    "type": "string",
+                    "format": "uri"
                 }
             }
         },
@@ -80,14 +88,52 @@
             }
         },
         "source": {
-            "type": "string",
-            "format": "uri",
-            "description": "The source from which this indicator is derived."
+            "type": "array",
+            "description": "The source from which this indicator is derived.",
+            "items": {
+                "type": "object",
+                "properties": {
+                    "@id": {
+                        "type": "string",
+                        "format": "uri"
+
+                    },
+                    "identifier": {
+                        "type": "string",
+                        "format": "uri"
+                    },
+                    "@type": {
+                        "type": "string"
+                    },
+                    "url": {
+                        "type": "string",
+                        "format": "uri"
+                    },
+                    "name": {
+                        "type": "string"
+                    }
+                },
+                "required": [
+                    "name"
+                ]
+            }
         },
         "contact": {
-            "type": "string",
-            "format": "uri",
-            "description": "Contact point for more information."
+            "type": "object",
+            "description": "Contact point for more information.",
+            "properties": {
+                "@type": {
+                    "type": "string",
+                    "format": "uri"
+                },
+                "name": {
+                    "type": "string"
+                },
+                "email": {
+                    "type": "string",
+                    "format": "email"
+                }
+            }
         }
     },
     "required": [
@@ -96,7 +142,6 @@
         "name",
         "description",
         "author",
-        "created",
         "version",
         "identifier",
         "qualityDimension"
