From be4bac21493d099ab375dab64593ff4fa0cb2d5bd85882347386f73ab49f831f Mon Sep 17 00:00:00 2001
From: Greg Freemyer <Greg.Freemyer@gmail.com>
Date: Fri, 15 May 2015 14:39:49 +0000
Subject: [PATCH 1/4] ran spec-cleaner

OBS-URL: https://build.opensuse.org/package/show/security:forensics/artifacts?expand=0&rev=2
---
 artifacts.spec | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/artifacts.spec b/artifacts.spec
index 25ccde0..8846976 100644
--- a/artifacts.spec
+++ b/artifacts.spec
@@ -24,7 +24,7 @@ Summary:        Digital Forensics Artifact Repository
 License:        Apache-2.0
 Group:          Productivity/Security
 Url:            https://github.com/ForensicArtifacts/artifacts/wiki
-Source:         https://github.com/ForensicArtifacts/artifacts/releases/download/%timestamp/artifacts-%timestamp.tar.gz
+Source:         https://github.com/ForensicArtifacts/artifacts/releases/download/%{timestamp}/artifacts-%{timestamp}.tar.gz
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 BuildArch:      noarch
 
@@ -41,10 +41,10 @@ For some background on the artifacts system and how we expect it to be used see
 Summary:        Digital Forensics Artifact Repository Validator
 Group:          Productivity/Security
 BuildRequires:  python-setuptools
-Requires:	artifacts
+Requires:       artifacts
 
 %description validator
-Python modules and app to validate the artifact data.  It is possible some apps directly call these python modules 
+Python modules and app to validate the artifact data.  It is possible some apps directly call these python modules
 but by design they should work directly with the YAML files themselves and not use these python modules.
 
 %prep
@@ -59,13 +59,13 @@ python setup.py install --root=%{buildroot} --prefix=%{_prefix}
 %files
 %defattr(-,root,root)
 %doc ACKNOWLEDGEMENTS AUTHORS LICENSE README
-/usr/share/artifacts
+%{_datadir}/artifacts
 
 %files validator
 %defattr(-,root,root)
 %doc ACKNOWLEDGEMENTS AUTHORS LICENSE README
 %{python_sitelib}/artifacts-%{timestamp}-py2.7.egg-info
 %{python_sitelib}/artifacts
-/usr/bin/validator.py
+%{_bindir}/validator.py
 
 %changelog

From 4fe49e7ec8ef49f80b0f886f528eabfdf4fb01f027fb50ba4294a87a4e971bcf Mon Sep 17 00:00:00 2001
From: Greg Freemyer <Greg.Freemyer@gmail.com>
Date: Fri, 10 Aug 2018 18:54:39 +0000
Subject: [PATCH 2/4] Accepting request 628542 from
 home:susnux:branches:security:forensics

Changed change log as requested

- Cleaned up spec file
  * Use license macro
  * Dropped defattr as it is not required anymore, recent rpms
    add a default defattr line if none is present in the rpm files
    section
- Update to 20180628

OBS-URL: https://build.opensuse.org/request/show/628542
OBS-URL: https://build.opensuse.org/package/show/security:forensics/artifacts?expand=0&rev=4
---
 artifacts-20150409.tar.gz |  3 ---
 artifacts-20180628.tar.gz |  3 +++
 artifacts.changes         | 10 ++++++++++
 artifacts.spec            | 31 +++++++++++++++++++------------
 4 files changed, 32 insertions(+), 15 deletions(-)
 delete mode 100644 artifacts-20150409.tar.gz
 create mode 100644 artifacts-20180628.tar.gz

diff --git a/artifacts-20150409.tar.gz b/artifacts-20150409.tar.gz
deleted file mode 100644
index aa8ad63..0000000
--- a/artifacts-20150409.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:28a4d26aa90e2ba5631c2bcd8d7b9f9a901d626366958116c5b47ca8fd9d7905
-size 24937
diff --git a/artifacts-20180628.tar.gz b/artifacts-20180628.tar.gz
new file mode 100644
index 0000000..7c648fb
--- /dev/null
+++ b/artifacts-20180628.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:a448f4c797dd182ae63afeb28e944bfe818fc991f063ad4ce0f9f704c85ad93f
+size 76190
diff --git a/artifacts.changes b/artifacts.changes
index 838ddfe..b4f8f36 100644
--- a/artifacts.changes
+++ b/artifacts.changes
@@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Thu Aug  9 16:58:41 UTC 2018 - rpm@fthiessen.de
+
+- Cleaned up spec file
+  * Use license macro
+  * Dropped defattr as it is not required anymore, recent rpms
+    add a default defattr line if none is present in the rpm files
+    section
+- Update to 20180628
+
 -------------------------------------------------------------------
 Fri May  8 22:57:40 UTC 2015 - Greg.Freemyer@gmail.com
 
diff --git a/artifacts.spec b/artifacts.spec
index 8846976..ab0725d 100644
--- a/artifacts.spec
+++ b/artifacts.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package artifacts
 #
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -16,26 +16,32 @@
 #
 
 
-%define timestamp 20150409
+%define timestamp 20180628
 Name:           artifacts
 Version:        %{timestamp}
 Release:        0
 Summary:        Digital Forensics Artifact Repository
 License:        Apache-2.0
 Group:          Productivity/Security
-Url:            https://github.com/ForensicArtifacts/artifacts/wiki
+URL:            https://github.com/ForensicArtifacts/artifacts/wiki
 Source:         https://github.com/ForensicArtifacts/artifacts/releases/download/%{timestamp}/artifacts-%{timestamp}.tar.gz
-BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 BuildArch:      noarch
 
 %description
-A free, community-sourced, machine-readable knowledge base of forensic artifacts that the world can use both as an information source and within other tools.
+A free, community-sourced, machine-readable knowledge base of forensic artifacts that the world
+can use both as an information source and within other tools.
 
-If you'd like to use the artifacts in your own tools, all you need to be able to do is read YAML. That's it. No other dependencies. The python code in this project is just used to validate all the artifacts to make sure they follow the spec.
+If you'd like to use the artifacts in your own tools, all you need to be able to do is read YAML.
+That's it. No other dependencies. The python code in this project is just used to validate all the
+artifacts to make sure they follow the spec.
 
-The ForensicArtifacts.com artifact repository was forked from the GRR project artifact collection into a stand-alone repository that is not tool-specific. The GRR developers will migrate to using this repository and make contributions here. In addition the ForensicArtifact team will begin backfilling artifacts in the new format from the ForensicArtifacts.com website.
+The ForensicArtifacts.com artifact repository was forked from the GRR project artifact collection
+into a stand-alone repository that is not tool-specific. The GRR developers will migrate to using
+this repository and make contributions here. In addition the ForensicArtifact team will begin
+backfilling artifacts in the new format from the ForensicArtifacts.com website.
 
-For some background on the artifacts system and how we expect it to be used see this blackhat presentation and youtube video from the GRR team.
+For some background on the artifacts system and how we expect it to be used see this blackhat
+presentation and youtube video from the GRR team.
 
 %package validator
 Summary:        Digital Forensics Artifact Repository Validator
@@ -57,15 +63,16 @@ python setup.py build
 python setup.py install --root=%{buildroot} --prefix=%{_prefix}
 
 %files
-%defattr(-,root,root)
-%doc ACKNOWLEDGEMENTS AUTHORS LICENSE README
+%license LICENSE
+%doc ACKNOWLEDGEMENTS AUTHORS README
 %{_datadir}/artifacts
 
 %files validator
-%defattr(-,root,root)
-%doc ACKNOWLEDGEMENTS AUTHORS LICENSE README
+%license LICENSE
+%doc ACKNOWLEDGEMENTS AUTHORS README docs/*
 %{python_sitelib}/artifacts-%{timestamp}-py2.7.egg-info
 %{python_sitelib}/artifacts
 %{_bindir}/validator.py
+%{_bindir}/stats.py
 
 %changelog

From 6763a4ab446767f8944ec8b21b1e782f77f68d625bd6ca6922efe307be7202be Mon Sep 17 00:00:00 2001
From: Greg Freemyer <Greg.Freemyer@gmail.com>
Date: Tue, 14 Aug 2018 14:51:13 +0000
Subject: [PATCH 3/4] Accepting request 629230 from
 home:susnux:branches:security:forensics

- Fixed invalid source file (mismatching hash)
- Added GPG source verification

OBS-URL: https://build.opensuse.org/request/show/629230
OBS-URL: https://build.opensuse.org/package/show/security:forensics/artifacts?expand=0&rev=5
---
 artifacts-20180628.tar.gz     |   4 ++--
 artifacts-20180628.tar.gz.asc |  10 ++++++++++
 artifacts.changes             |   6 ++++++
 artifacts.keyring             | Bin 0 -> 1189 bytes
 artifacts.spec                |   6 ++++--
 5 files changed, 22 insertions(+), 4 deletions(-)
 create mode 100644 artifacts-20180628.tar.gz.asc
 create mode 100644 artifacts.keyring

diff --git a/artifacts-20180628.tar.gz b/artifacts-20180628.tar.gz
index 7c648fb..2593839 100644
--- a/artifacts-20180628.tar.gz
+++ b/artifacts-20180628.tar.gz
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:a448f4c797dd182ae63afeb28e944bfe818fc991f063ad4ce0f9f704c85ad93f
-size 76190
+oid sha256:8ddf1013b4c0760df23178f6041587fc35594fbfe34f2e88227bfef55c06b7cd
+size 59921
diff --git a/artifacts-20180628.tar.gz.asc b/artifacts-20180628.tar.gz.asc
new file mode 100644
index 0000000..dd705ed
--- /dev/null
+++ b/artifacts-20180628.tar.gz.asc
@@ -0,0 +1,10 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEcBAABAgAGBQJbNSb0AAoJENliXl160Bd+yZQH/jf+lyA+fCYOwVTH2f4RIT1J
+x1/Djn1D/IlSCnT2aGGiaaEnKvWX1T1BNdbjQbOSj4uD+5fkJXaYYDcu98EOjz1C
+vsxZuU43k+AoNF2+yPYvy2ucCoHWCVUsmKPW23OTruyOhTxqKDZSVCTBxjEshbWl
+GLTpCtyUUOJUcRO2X6vYA66+XlEkdHhNp9LGBZYOi/PgQglupUUdrIkMiynrXMrn
+rwc+TKVIOz7F7Lw3KNTx5if4Py9f7sfCkY5YNTQGXLAMs/aJrO21qivlYJt8BJBA
+mFtfwnjmFwWj8XastSmEHcOsHeBaahzZEDQyxt+edNBjaoBQlUvy/MsLyAntPog=
+=xmKK
+-----END PGP SIGNATURE-----
diff --git a/artifacts.changes b/artifacts.changes
index b4f8f36..16fedcc 100644
--- a/artifacts.changes
+++ b/artifacts.changes
@@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Tue Aug 14 13:28:07 UTC 2018 - rpm@fthiessen.de
+
+- Fixed invalid source file (mismatching hash)
+- Added GPG source verification
+
 -------------------------------------------------------------------
 Thu Aug  9 16:58:41 UTC 2018 - rpm@fthiessen.de
 
diff --git a/artifacts.keyring b/artifacts.keyring
new file mode 100644
index 0000000000000000000000000000000000000000000000000000000000000000..e2dcd5f62d5299b29c2e0a466f9527ff6f642e56c5b914ab05a59c7730bddbb7
GIT binary patch
literal 1189
zcmV;W1X}x<0SyFHpV%q^2mr}C;M%;Gh|q{ZK5`hMU)g+3n_l^mB*Bkr#Wf$GiE0Go
zbMh)m<td6RdmY9g$YwjJbGrvssh%EbmCZMFRkq5+=Q>Xf%_^1`_#0S;8%7TXPz2z7
zY`ZpsBBS_Q234dpO3y;Bz#y*un@P4)hCsOk+L!>i%fbDR^s-D+HGu<O6Bd3iz{K4M
z(#L^-RtETS_fSCm2AYG2fTXT<lX{@|j*sIE-zasy{yhthLWL!bSZKlP&GQww?n^*8
z^K%6}k0L-|yd~!*Kx^sE!>CBPGEOx6zE_1{X&;ZnbQB&zt77?0J+Ssv3KBckP4E93
zi&uhim&?QOsTO9BV4naH0RRECB}#8$V`yn@AWda-dLTS%Z((C-X>BfTWpsK#XKi6=
zY%XJOZ9a(sIRp~{0stcg0#u*aDgqk=2MY-Z2Ll2D1{DYb2?`4Y76JnS0v-VZ7k~f?
z2@u(0UR`?77k)rs2mrWS_MNIzSV}^<R5}zCGYmvG-&I$%S<~fPv%@8HbVouDYP<&z
z;Ynk7?KBOprlOMxdAlXF5jXkxLbuyIk?YV(0T;N2>O}ZNsvII`BDlg@kB8HuQH^!Y
zB1EZqw89(fgklqp*M#2h>-rB-s;h2sc@b|!XJ9HhB*bvHlYpYctjTZL(&H6)JdJUU
z#W^O6phPbwoX!P-fImpy*UY_g?7)s{^&4p=M?9bh)$>@Jd|A3t;w?iHI!MhHETRjQ
zauBMhkm7)w0&WpJk~l{S31A3ZB<Yl1uoMfL8-_U_^$IjZoYgQ=?m=+kMP63r&`bUs
zJu^X7SUhjCCQZ2k4Fpu5*eU@C0L~0wxI=l@hHKNMR#S&w;A1e5sNu?T+>^qEpwU>J
znPr2PYeNNpAzB?@j%^A-?DJu$9d-!iK6fCi`ZBH?>e=xI-ghD9s$23;c)y~hgfD(d
zf<VAp3@z}6@>CZAA<7o}cPx^Lg)QZ1;`7bU5H=Nt?4)bLBb=v>+m3?#$L~v1Q6w3Z
zbvVJ6VWMWDK^#3ZT!gV8FS86r*IGVkeMe{fH@B*9`HD4=vC7{)YkaV|s!O$pxpfo7
zo|5#?_1*U4CBVk=xW^CcK&ZIEMyjHo1ccU2-!DGQ{tB3!wAOG=hPLD&hJt~n+LQTl
zt4ww=_eeHgf0HDtu5M*N=>QP{00D^s9|RZy0ssjG0#u*aDgqk}0162Z*<xN@de9es
zC_M-I11qx@&a@1w<#lf@DE4tmYS5tJ3g#cM)nyPxJITmSLJ%zIa4x*Fj-wh$ZZWPf
zA2351f%Xc8fT?<C5H1vo@NJcw9<$xAcB@S0N|voD8ksySf(up3q3<0<zBwp~E?b5J
zR;Hg@6=?+kApcJiPwMRm{Z}_FC}26=MR4fQKe2|L_<|t!ny&BP1{aCzw<bNF6d?73
zKj<xj7olk+l_fO8*PGn&+eb@s;3of^@Kd~KHMM+m&Ak#Tt3)SBF^@ki`r;S2!^K1z
z+yE)GR%lsiE#W>;ZZLROliJ9M-Vu~t2w5$qBj8nn=J0mtHFu?H)RT1UNlQW6p#02E
DS&|e<

literal 0
HcmV?d00001

diff --git a/artifacts.spec b/artifacts.spec
index ab0725d..c2637c6 100644
--- a/artifacts.spec
+++ b/artifacts.spec
@@ -24,7 +24,10 @@ Summary:        Digital Forensics Artifact Repository
 License:        Apache-2.0
 Group:          Productivity/Security
 URL:            https://github.com/ForensicArtifacts/artifacts/wiki
-Source:         https://github.com/ForensicArtifacts/artifacts/releases/download/%{timestamp}/artifacts-%{timestamp}.tar.gz
+Source0:        https://github.com/ForensicArtifacts/artifacts/releases/download/%{timestamp}/artifacts-%{timestamp}.tar.gz
+Source1:        https://github.com/ForensicArtifacts/artifacts/releases/download/%{timestamp}/artifacts-%{timestamp}.tar.gz.asc
+# Key 0xD9625E5D7AD0177E by Joachim Metz https://github.com/joachimmetz
+Source2:        %{name}.keyring
 BuildArch:      noarch
 
 %description
@@ -69,7 +72,6 @@ python setup.py install --root=%{buildroot} --prefix=%{_prefix}
 
 %files validator
 %license LICENSE
-%doc ACKNOWLEDGEMENTS AUTHORS README docs/*
 %{python_sitelib}/artifacts-%{timestamp}-py2.7.egg-info
 %{python_sitelib}/artifacts
 %{_bindir}/validator.py

From 372971170d17568c6b46f642e1315aeba97d2a6202136b3d9698025dffc94a45 Mon Sep 17 00:00:00 2001
From: Greg Freemyer <Greg.Freemyer@gmail.com>
Date: Thu, 16 Aug 2018 21:15:27 +0000
Subject: [PATCH 4/4] Accepting request 629573 from
 home:jengelh:branches:security:forensics

- Compact description for size. Wrap it, too.

OBS-URL: https://build.opensuse.org/request/show/629573
OBS-URL: https://build.opensuse.org/package/show/security:forensics/artifacts?expand=0&rev=6
---
 artifacts.changes |  5 +++++
 artifacts.spec    | 27 +++++++++++++--------------
 2 files changed, 18 insertions(+), 14 deletions(-)

diff --git a/artifacts.changes b/artifacts.changes
index 16fedcc..848805d 100644
--- a/artifacts.changes
+++ b/artifacts.changes
@@ -1,3 +1,8 @@
+-------------------------------------------------------------------
+Thu Aug 16 12:28:18 UTC 2018 - jengelh@inai.de
+
+- Compact description for size. Wrap it, too.
+
 -------------------------------------------------------------------
 Tue Aug 14 13:28:07 UTC 2018 - rpm@fthiessen.de
 
diff --git a/artifacts.spec b/artifacts.spec
index c2637c6..06ad463 100644
--- a/artifacts.spec
+++ b/artifacts.spec
@@ -31,20 +31,17 @@ Source2:        %{name}.keyring
 BuildArch:      noarch
 
 %description
-A free, community-sourced, machine-readable knowledge base of forensic artifacts that the world
-can use both as an information source and within other tools.
+A community-sourced, machine-readable knowledge base of forensic
+artifacts that can be used both as an information source and within
+other tools.
 
-If you'd like to use the artifacts in your own tools, all you need to be able to do is read YAML.
-That's it. No other dependencies. The python code in this project is just used to validate all the
-artifacts to make sure they follow the spec.
+Using artifacts in tools just requires reading YAML. (The Python code
+in the project is merely used to validate that the artifacts follow
+the specification.)
 
-The ForensicArtifacts.com artifact repository was forked from the GRR project artifact collection
-into a stand-alone repository that is not tool-specific. The GRR developers will migrate to using
-this repository and make contributions here. In addition the ForensicArtifact team will begin
-backfilling artifacts in the new format from the ForensicArtifacts.com website.
-
-For some background on the artifacts system and how we expect it to be used see this blackhat
-presentation and youtube video from the GRR team.
+For some background on the artifacts system and how its developers
+expect it to be used, see the BlackHat presentation and Youtube video
+from the GRR team.
 
 %package validator
 Summary:        Digital Forensics Artifact Repository Validator
@@ -53,8 +50,10 @@ BuildRequires:  python-setuptools
 Requires:       artifacts
 
 %description validator
-Python modules and app to validate the artifact data.  It is possible some apps directly call these python modules
-but by design they should work directly with the YAML files themselves and not use these python modules.
+Python modules and program to validate the artifact data. It is
+possible for programs to directly call these Python modules, but, by
+design, said programs should work directly with the YAML files
+themselves and not use these Python modules.
 
 %prep
 %setup -q -n artifacts-%{timestamp}