bugcrowd · Sanel0101 · Jan 10, 2020 · Feb 18, 2020 · Mar 3, 2020 · Apr 23, 2020
diff --git a/.github/workflows/validate_artifacts.yml b/.github/workflows/validate_artifacts.yml
@@ -0,0 +1,40 @@
+name: Validate Artifacts
+
+on:
+  push:
+    branches: 
+      - main
+  release:
+    types:
+      - created
+      - edited
+      - unpublished
+
+jobs:
+  validate_scw_artifact:
+    name: Validate SCW Artifact
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v1
+      - name: Set up Python 3.11
+        uses: actions/setup-python@v1
+        with:
+          python-version: 3.11
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install -r lib/requirements.txt
+      - name: Install requests library
+        run: |
+          pip install requests
+      - name: Create artifact json file
+        run: |
+          python3 -B lib/generate_artifacts.py
+      - name: Upload artifact
+        uses: actions/upload-artifact@v1
+        with:
+          name: Secure Code Warrior Links
+          path: scw_links.json
+      - name: Validate links
+        run: |
+          python3 -B lib/validate_artifacts.py
diff --git a/.github/workflows/main.yml → .github/workflows/validate_vrt.yml b/.github/workflows/main.yml → .github/workflows/validate_vrt.yml
@@ -9,21 +9,21 @@ jobs:
 
     steps:
     - uses: actions/checkout@v1
-    - name: Set up Python 3.7
+    - name: Set up Python 3.11
       uses: actions/setup-python@v1
       with:
-        python-version: 3.7
+        python-version: 3.11
     - name: Install dependencies
       run: |
         python -m pip install --upgrade pip
-        pip install -r tests/requirements.txt
+        pip install -r lib/requirements.txt
     - name: Lint with flake8
       run: |
         pip install flake8
         # stop the build if there are Python syntax errors or undefined names
-        flake8 . --count --select=E9,F63,F7,F82 --show-source --statistics
+        flake8 ./lib --count --select=E9,F63,F7,F82 --show-source --statistics
         # exit-zero treats all errors as warnings. The GitHub editor is 127 chars wide
-        flake8 . --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
+        flake8 ./lib --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
     - name: Test with unittest
       run: |
-        python3 -B validate_vrt.py
+        python3 -B lib/validate_vrt.py
diff --git a/.gitignore b/.gitignore
@@ -1,2 +1,6 @@
 *.pyc
 *~
+
+# vscode config
+.vscode/
+.DS_STORE
diff --git a/CHANGELOG.md b/CHANGELOG.md
diff --git a/Dockerfile b/Dockerfile
@@ -1,6 +1,8 @@
-FROM python:3.6
-
-RUN pip install jsonschema GitPython semantic_version
+FROM python:3.11
 
 WORKDIR /tmp/vrt
-CMD [ "python3", "-B" , "./validate_vrt.py" ]
+ADD . /tmp/vrt
+
+RUN pip install -r lib/requirements.txt
+
+CMD [ "python3", "-B" , "./lib/validate_vrt.py" ]
diff --git a/README.md b/README.md
@@ -1,15 +1,15 @@
 <p align="center">
-  <img src="https://user-images.githubusercontent.com/1854876/28642569-b44a823a-7207-11e7-8f26-af023adc5d22.png" />
+  <img src="https://user-images.githubusercontent.com/3189125/115076777-e434d600-9eb1-11eb-81bf-0b3ee98d9df5.png" height="200"/>
 </p>
 
 <p align="center">
-  <img src="https://badge.buildkite.com/c1825a6d2bed24dfa8d4b65bd43bab7502979ef0d7b4399e04.svg?branch=master" />
+  <img src="https://github.com/bugcrowd/vulnerability-rating-taxonomy/workflows/Validate%20VRT/badge.svg?branch=master" />
 </p>
 
 # Bugcrowd VRT
 The current VRT release is located at [https://bugcrowd.com/vrt](https://bugcrowd.com/vulnerability-rating-taxonomy) as both a searchable page and downloadable PDF.
 
-The VRT is also available via our API. Documentation and examples of VRT API usage may be found [here](https://docs.bugcrowd.com/reference#vulnerability-rating-taxonomy).
+The VRT is also available via our API. Documentation and examples of VRT API usage may be found [here](https://documentation.bugcrowd.com/reference#view-versions).
 
 ## Background
 At the beginning 2016, we released the Bugcrowd Vulnerability Rating Taxonomy (VRT) to provide a baseline vulnerability priority scale for bug hunters and organizations. Over the past year and a half this document has evolved to be a dynamic and valuable resource for the bug bounty community.
@@ -166,6 +166,9 @@ Each mapping should be setup in the following structure:
 - [CWE](mappings/cwe/cwe.json)
 - [Remediation Advice](mappings/remediation_advice/remediation_advice.json)
 
+#### Third-Party Managed Mappings
+- [Secure Code Warrior](third-party-mappings/remediation_training/secure-code-warrior-links.json)
+
 ## Supported Libraries
 - [Ruby](https://github.com/bugcrowd/vrt-ruby)