Skip to main content

APIs and scripts for validating STIX 2.x documents.

Project description

Build_Status Coverage Version Documentation Status

cti-stix-validator

NOTE: This is an OASIS TC Open Repository. See the Governance section for more information.

The STIX Validator checks that STIX JSON content conforms to the requirements specified in the STIX 2.1 specification. In addition to checking conformance with the JSON schemas, the validator checks conformance with requirements that cannot be specified in JSON schema, as well as with established “best practices”. This validator is non-normative; in cases of conflict with the STIX 2.1 specification, the specification takes precedence.

The STIX 2.1 specification contains two types of requirements: mandatory “MUST” requirements, and recommended “SHOULD” best practice requirements. The validator checks documents against the “MUST” requirements using JSON schemas. Some of these mandatory requirements cannot be implemented in JSON Schema, however, so the validator uses Python functions to check them. The “SHOULD” requirements are all checked by Python functions, and options may be used to ignore some or all of these recommended “best practices.”

The only exception to this is the mandatory requirement that an object’s ‘type’ be one of those defined by a STIX Object in the specification. This rules out custom objects, so this check was made optional.

The validator also color-codes its output to make it easier to tell at a glance whether validation passed.

Installation

The easiest way to install the STIX validator is with pip:

$ pip install stix2-validator

Usage

As A Script

The validator comes with a bundled script which you can use to validate a JSON file containing STIX content:

$ stix2_validator <stix_file.json>

As A Library

You can also use this library to integrate STIX validation into your own tools. You can validate a JSON file:

from stix2validator import validate_file, print_results

results = validate_file("stix_file.json")
print_results(results)

You can also validate a JSON string using validate_string(), or a Python dictionary representing a STIX object using validate_instance(). For more information, see the full documentation here.

Governance

This GitHub public repository ( https://github.com/oasis-open/cti- stix-validator ) was proposed and approved [bis] by the OASIS Cyber Threat Intelligence (CTI) TC as an OASIS TC Open Repository to support development of open source resources related to Technical Committee work.

While this TC Open Repository remains associated with the sponsor TC, its development priorities, leadership, intellectual property terms, participation rules, and other matters of governance are separate and distinct from the OASIS TC Process and related policies.

All contributions made to this TC Open Repository are subject to open source license terms expressed in the BSD-3-Clause License. That license was selected as the declared “Applicable License” when the TC Open Repository was created.

As documented in “Public Participation Invited”, contributions to this OASIS TC Open Repository are invited from all parties, whether affiliated with OASIS or not. Participants must have a GitHub account, but no fees or OASIS membership obligations are required. Participation is expected to be consistent with the OASIS TC Open Repository Guidelines and Procedures, the open source LICENSE designated for this particular repository, and the requirement for an Individual Contributor License Agreement that governs intellectual property.

Maintainers

TC Open Repository Maintainers are responsible for oversight of this project’s community development activities, including evaluation of GitHub pull requests and preserving open source principles of openness and fairness. Maintainers are recognized and trusted experts who serve to implement community goals and consensus design preferences.

Initially, the associated TC members have designated one or more persons to serve as Maintainer(s); subsequently, participating community members may select additional or substitute Maintainers, per consensus agreements.

Current Maintainers of this TC Open Repository

About OASIS TC Open Repositories

Feedback

Questions or comments about this TC Open Repository’s activities should be composed as GitHub issues or comments. If use of an issue/comment is not possible or appropriate, questions may be directed by email to the Maintainer(s) listed above. Please send general questions about TC Open Repository participation to OASIS Staff at repository-admin@oasis- open.org and any specific CLA-related questions to repository-cla@oasis-open.org.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

stix2-validator-3.2.0.tar.gz (883.6 kB view details)

Uploaded Source

Built Distribution

stix2_validator-3.2.0-py2.py3-none-any.whl (965.7 kB view details)

Uploaded Python 2Python 3

File details

Details for the file stix2-validator-3.2.0.tar.gz.

File metadata

  • Download URL: stix2-validator-3.2.0.tar.gz
  • Upload date:
  • Size: 883.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.0.0 CPython/3.9.2

File hashes

Hashes for stix2-validator-3.2.0.tar.gz
Algorithm Hash digest
SHA256 e7653c6f54b6cc460d05342c59f631bebe35d191ea5670d66a9464fb46a246f6
MD5 81d5a36849d4ade9b853a22889cd7dd0
BLAKE2b-256 d726dfb1d3abaf45543d89a691f8798657971115eef6a00e37d536b72b1ef9e1

See more details on using hashes here.

File details

Details for the file stix2_validator-3.2.0-py2.py3-none-any.whl.

File metadata

File hashes

Hashes for stix2_validator-3.2.0-py2.py3-none-any.whl
Algorithm Hash digest
SHA256 bc632ab94d157a6e03ecac8e6ec664ab444e765787efa7aa9926c71db1c97fb3
MD5 3b0b0930b0e3b0402d0b0bc573bb98ce
BLAKE2b-256 10c745de2e61e0366640549bc947150f38020720ce8cf2f16f2ace9ac8e6376e

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page