feat(sources): enforce JSON schema validation for OSV.dev-maintained …

…home databases (#3163) This commit enables JSON schema validation enforcement at import time in Production for home databases maintained by OSV.dev. At this time, no records are currently failing to import in Staging (where this has been enabled for some time). Part of #2188
google · Feb 18, 2025 · 6ad35cf · 6ad35cf
1 parent 6f66b0e
commit 6ad35cf
Showing 1 changed file with 5 additions and 5 deletions.
diff --git a/source.yaml b/source.yaml
@@ -114,7 +114,7 @@
   human_link: 'https://nvd.nist.gov/vuln/detail/{{ BUG_ID }}'
   link: 'https://storage.googleapis.com/cve-osv-conversion/'
   editable: False
-  strict_validation: False
+  strict_validation: True
 
 - name: 'debian-dla'
   versions_from_repo: False
@@ -129,7 +129,7 @@
   human_link: 'https://security-tracker.debian.org/tracker/{{ BUG_ID }}'
   link: 'https://storage.googleapis.com/debian-osv/'
   editable: False
-  strict_validation: False
+  strict_validation: True
 
 - name: 'debian-dsa'
   versions_from_repo: False
@@ -144,7 +144,7 @@
   human_link: 'https://security-tracker.debian.org/tracker/{{ BUG_ID }}'
   link: 'https://storage.googleapis.com/debian-osv/'
   editable: False
-  strict_validation: False
+  strict_validation: True
 
 - name: 'debian-dtsa'
   versions_from_repo: False
@@ -159,7 +159,7 @@
   human_link: 'https://security-tracker.debian.org/tracker/{{ BUG_ID }}'
   link: 'https://storage.googleapis.com/debian-osv/'
   editable: False
-  strict_validation: False
+  strict_validation: True
 
 - name: 'ghsa'
   versions_from_repo: False
@@ -248,7 +248,7 @@
   link: 'https://github.com/google/oss-fuzz-vulns/blob/main/'
   editable: True
   repo_username: 'git'
-  strict_validation: False
+  strict_validation: True
 
 - name: 'psf'
   versions_from_repo: True