Skip to content

features/references#176

Merged
swissiety merged 18 commits intomasterfrom
features/references
Aug 11, 2025
Merged

features/references#176
swissiety merged 18 commits intomasterfrom
features/references

Conversation

@roshansamantaray
Copy link

@roshansamantaray roshansamantaray commented Aug 11, 2025

Implemented WEAKNESS, VULNERABILITIES and REFERENCES in Crysl Syntax with support for page numbers and URLs.

Roshan Samantaray and others added 11 commits July 20, 2025 18:18
feat: add support for REFERENCES, weaknesses, and vulnerabilities blo…
7079019 
…cks in CrySLRule and parser

- Implemented structured parsing and handling for REFERENCES block via CrySLReferenceEntry
- Extended CrySLRule to include collections for references, CWEs (weaknesses), and CVEs (vulnerabilities)
- Updated CrySLModelReader to parse and map ReferencesBlock, weaknesses, and vulnerabilities from EMF model
- Enhanced test coverage to verify parsing and output for REFERENCES, weaknesses (CWEs), and vulnerabilities (CVEs)
- Updated toString() and print methods for clear structured output of references, weaknesses, and vulnerabilities per rule
Implemented links with CWE and CVE
851a211
Implemented References Page Numbers
ee53ac2
Fix Spotless formatting violations
7c90c2f
Fixed assertion errors in CrySLParserTest.java
ccc54d8
Modified Name and Author in references to String
ffcd4fb
Added whitespace in pages
f4ccd46
Modified References grammar
a03fe96
@smeyer198
Fix INTEGER terminal
e92f560
Modified parsing of pageNumbers
0ac2920
Modified parsing of pageNumbers
bbfc3fa
swissiety
swissiety approved these changes Aug 11, 2025
View reviewed changes
CrySLParser/src/main/java/crysl/parsing/CrySLModelReader.java
Comment on lines +235 to +237
String id = cv;
String link = "https://www.cve.org/CVERecord?id=" + id;
return new CrySLVulnerabilityEntry(cv, link);
Copy link
Collaborator

@swissiety swissiety Aug 11, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we could model this cleaner in a subclass (another PR) only taking the cve number - where CrySLVulnerabilityEntry would then be an interface

Copy link
Author

@roshansamantaray roshansamantaray Aug 11, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes we can do that. I will create a subclass for this then so that CrySLModelReader stays clean.

@swissiety swissiety merged commit 16283e4 into master Aug 11, 2025
4 checks passed
@smeyer198 smeyer198 deleted the features/references branch August 14, 2025 09:40
@roshansamantaray roshansamantaray self-assigned this Aug 20, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@swissiety swissiety swissiety approved these changes

Assignees

@roshansamantaray roshansamantaray

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@roshansamantaray @swissiety @smeyer198