Slot: securityInsightsUri

URI to the SECURITY-INSIGHTS.yml file for the project that produced this artifact (e.g., "https://raw.githubusercontent.com/example/myapp/main/ SECURITY-INSIGHTS.yml"). Security Insights is an OpenSSF project that defines a machine-processable format for projects to self-report their security practices, vulnerability disclosure policy, and tool usage. Together with SLSA provenance it forms a complementary view: provenance describes a specific artifact's build; Security Insights describes the project's ongoing security posture.

URI: slsa:securityInsightsUri Alias: securityInsightsUri

Properties

Type and Range

Property	Value
Range	String

Cardinality and Requirements

Property	Value

In Subsets

• SlsaBuildTrack
• SlsaSourceTrack
• SlsaSsf

Identifier and Mapping Information

Schema Source

• from schema: https://w3id.org/lmodel/slsa

Mappings

Mapping Type	Mapped Value
self	slsa:securityInsightsUri
native	slsa:securityInsightsUri

LinkML Source

name: securityInsightsUri
description: 'URI to the SECURITY-INSIGHTS.yml file for the project that produced
  this artifact (e.g., "https://raw.githubusercontent.com/example/myapp/main/ SECURITY-INSIGHTS.yml").
  Security Insights is an OpenSSF project that defines a machine-processable format
  for projects to self-report their security practices, vulnerability disclosure policy,
  and tool usage. Together with SLSA provenance it forms a complementary view: provenance
  describes a specific artifact''s build; Security Insights describes the project''s
  ongoing security posture.'
in_subset:
- slsa_build_track
- slsa_source_track
- slsa_ssf
from_schema: https://w3id.org/lmodel/slsa
rank: 1000
alias: securityInsightsUri
range: string