Accepting request 629647 from security:forensics

OBS-URL: https://build.opensuse.org/request/show/629647
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/artifacts?expand=0&rev=2

artifacts-20150409.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:28a4d26aa90e2ba5631c2bcd8d7b9f9a901d626366958116c5b47ca8fd9d7905
-size 24937

artifacts-20180628.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:8ddf1013b4c0760df23178f6041587fc35594fbfe34f2e88227bfef55c06b7cd
+size 59921

artifacts-20180628.tar.gz.asc

@@ -0,0 +1,10 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEcBAABAgAGBQJbNSb0AAoJENliXl160Bd+yZQH/jf+lyA+fCYOwVTH2f4RIT1J
+x1/Djn1D/IlSCnT2aGGiaaEnKvWX1T1BNdbjQbOSj4uD+5fkJXaYYDcu98EOjz1C
+vsxZuU43k+AoNF2+yPYvy2ucCoHWCVUsmKPW23OTruyOhTxqKDZSVCTBxjEshbWl
+GLTpCtyUUOJUcRO2X6vYA66+XlEkdHhNp9LGBZYOi/PgQglupUUdrIkMiynrXMrn
+rwc+TKVIOz7F7Lw3KNTx5if4Py9f7sfCkY5YNTQGXLAMs/aJrO21qivlYJt8BJBA
+mFtfwnjmFwWj8XastSmEHcOsHeBaahzZEDQyxt+edNBjaoBQlUvy/MsLyAntPog=
+=xmKK
+-----END PGP SIGNATURE-----

artifacts.changes

@@ -1,3 +1,24 @@
+-------------------------------------------------------------------
+Thu Aug 16 12:28:18 UTC 2018 - jengelh@inai.de
+
+- Compact description for size. Wrap it, too.
+
+-------------------------------------------------------------------
+Tue Aug 14 13:28:07 UTC 2018 - rpm@fthiessen.de
+
+- Fixed invalid source file (mismatching hash)
+- Added GPG source verification
+
+-------------------------------------------------------------------
+Thu Aug  9 16:58:41 UTC 2018 - rpm@fthiessen.de
+
+- Cleaned up spec file
+  * Use license macro
+  * Dropped defattr as it is not required anymore, recent rpms
+    add a default defattr line if none is present in the rpm files
+    section
+- Update to 20180628
+
 -------------------------------------------------------------------
 Fri May  8 22:57:40 UTC 2015 - Greg.Freemyer@gmail.com
 

artifacts.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package artifacts
 #
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -16,36 +16,44 @@
 #
 
 
-%define timestamp 20150409
+%define timestamp 20180628
 Name:           artifacts
 Version:        %{timestamp}
 Release:        0
 Summary:        Digital Forensics Artifact Repository
 License:        Apache-2.0
 Group:          Productivity/Security
-Url:            https://github.com/ForensicArtifacts/artifacts/wiki
-Source:         https://github.com/ForensicArtifacts/artifacts/releases/download/%timestamp/artifacts-%timestamp.tar.gz
-BuildRoot:      %{_tmppath}/%{name}-%{version}-build
+URL:            https://github.com/ForensicArtifacts/artifacts/wiki
+Source0:        https://github.com/ForensicArtifacts/artifacts/releases/download/%{timestamp}/artifacts-%{timestamp}.tar.gz
+Source1:        https://github.com/ForensicArtifacts/artifacts/releases/download/%{timestamp}/artifacts-%{timestamp}.tar.gz.asc
+# Key 0xD9625E5D7AD0177E by Joachim Metz https://github.com/joachimmetz
+Source2:        %{name}.keyring
 BuildArch:      noarch
 
 %description
-A free, community-sourced, machine-readable knowledge base of forensic artifacts that the world can use both as an information source and within other tools.
+A community-sourced, machine-readable knowledge base of forensic
+artifacts that can be used both as an information source and within
+other tools.
 
-If you'd like to use the artifacts in your own tools, all you need to be able to do is read YAML. That's it. No other dependencies. The python code in this project is just used to validate all the artifacts to make sure they follow the spec.
+Using artifacts in tools just requires reading YAML. (The Python code
+in the project is merely used to validate that the artifacts follow
+the specification.)
 
-The ForensicArtifacts.com artifact repository was forked from the GRR project artifact collection into a stand-alone repository that is not tool-specific. The GRR developers will migrate to using this repository and make contributions here. In addition the ForensicArtifact team will begin backfilling artifacts in the new format from the ForensicArtifacts.com website.
-
-For some background on the artifacts system and how we expect it to be used see this blackhat presentation and youtube video from the GRR team.
+For some background on the artifacts system and how its developers
+expect it to be used, see the BlackHat presentation and Youtube video
+from the GRR team.
 
 %package validator
 Summary:        Digital Forensics Artifact Repository Validator
 Group:          Productivity/Security
 BuildRequires:  python-setuptools
-Requires:	artifacts
+Requires:       artifacts
 
 %description validator
-Python modules and app to validate the artifact data.  It is possible some apps directly call these python modules 
-but by design they should work directly with the YAML files themselves and not use these python modules.
+Python modules and program to validate the artifact data. It is
+possible for programs to directly call these Python modules, but, by
+design, said programs should work directly with the YAML files
+themselves and not use these Python modules.
 
 %prep
 %setup -q -n artifacts-%{timestamp}
@@ -57,15 +65,15 @@ python setup.py build
 python setup.py install --root=%{buildroot} --prefix=%{_prefix}
 
 %files
-%defattr(-,root,root)
-%doc ACKNOWLEDGEMENTS AUTHORS LICENSE README
-/usr/share/artifacts
+%license LICENSE
+%doc ACKNOWLEDGEMENTS AUTHORS README
+%{_datadir}/artifacts
 
 %files validator
-%defattr(-,root,root)
-%doc ACKNOWLEDGEMENTS AUTHORS LICENSE README
+%license LICENSE
 %{python_sitelib}/artifacts-%{timestamp}-py2.7.egg-info
 %{python_sitelib}/artifacts
-/usr/bin/validator.py
+%{_bindir}/validator.py
+%{_bindir}/stats.py
 
 %changelog