-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathschema.json
101 lines (101 loc) · 2.83 KB
/
schema.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
{
"$schema": "https://json-schema.org/draft-07/schema",
"additionalProperties": false,
"definitions": {
"rule": {
"additionalProperties": false,
"description": "Defines a single matching rule.",
"oneOf": [
{
"not": {
"required": ["anyOf", "match", "matchRegex", "not", "oneOf"]
},
"required": ["allOf"]
},
{
"not": {
"required": ["allOf", "match", "matchRegex", "not", "oneOf"]
},
"required": ["anyOf"]
},
{
"not": {
"required": ["allOf", "anyOf", "matchRegex", "not", "oneOf"]
},
"required": ["match"]
},
{
"not": { "required": ["allOf", "anyOf", "match", "not", "oneOf"] },
"required": ["matchRegex"]
},
{
"not": {
"required": ["allOf", "anyOf", "match", "matchRegex", "oneOf"]
},
"required": ["not"]
},
{
"not": {
"required": ["allOf", "anyOf", "match", "matchRegex", "not"]
},
"required": ["oneOf"]
}
],
"properties": {
"allOf": {
"$ref": "#/definitions/rules",
"description": "Asserts that all of the nested rules match."
},
"description": {
"description": "Rule description displayed as context to the user.",
"type": "string"
},
"anyOf": {
"$ref": "#/definitions/rules",
"description": "Asserts that at least one of the nested rules matches."
},
"match": {
"description": "Specifies a trust anchor that has to match exactly.",
"type": "string"
},
"matchRegex": {
"description": "Defines a regular expression to match trust anchors against.",
"type": "string"
},
"not": {
"$ref": "#/definitions/rule",
"description": "Inverts the matching behaviour of a rule."
},
"oneOf": {
"$ref": "#/definitions/rules",
"description": "Asserts that exactly one of the nested rules matches."
},
"url": {
"description": "URL to documentation of the rule.",
"type": "string"
}
},
"type": "object"
},
"rules": {
"items": {
"$ref": "#/definitions/rule"
},
"type": "array"
}
},
"description": "Schema of the sops-check configuration file",
"properties": {
"allowUnmatched": {
"default": false,
"description": "Allow SOPS files to contain trust anchors that are not matched by any rule.",
"type": "boolean"
},
"rules": {
"$ref": "#/definitions/rules",
"description": "A list of matching rules."
}
},
"title": "sops-check configuration",
"type": "object"
}