Class: SlsaDocument
Root wrapper for any SLSA attestation payload. Acts as the entry point for schema validation and tools.
URI: slsa:SlsaDocument
classDiagram
class SlsaDocument
click SlsaDocument href "../SlsaDocument/"
SlsaDocument : adoptionMetadata
SlsaDocument --> "0..1" AdoptionMetadata : adoptionMetadata
click AdoptionMetadata href "../AdoptionMetadata/"
SlsaDocument : buildDefinition
SlsaDocument --> "1" BuildDefinition : buildDefinition
click BuildDefinition href "../BuildDefinition/"
SlsaDocument : runDetails
SlsaDocument --> "1" RunDetails : runDetails
click RunDetails href "../RunDetails/"
SlsaDocument : verificationResult
SlsaDocument --> "1" VerificationResultEnum : verificationResult
click VerificationResultEnum href "../VerificationResultEnum/"
SlsaDocument : verifiedLevels
SlsaDocument --> "1..*" SlsaResultEnum : verifiedLevels
click SlsaResultEnum href "../SlsaResultEnum/"
SlsaDocument : verifier
SlsaDocument --> "1" Verifier : verifier
click Verifier href "../Verifier/"
Class Properties
| Property | Value |
|---|---|
| Tree Root | Yes |
Slots
| Name | Cardinality and Range | Description | Inheritance |
|---|---|---|---|
| buildDefinition | 1 BuildDefinition |
All inputs to the build, sufficient to initialise and reproduce it | direct |
| runDetails | 1 RunDetails |
Details specific to this particular execution of the build, including builder... | direct |
| verifier | 1 Verifier |
Identifies the entity that performed the verification | direct |
| verificationResult | 1 VerificationResultEnum |
Whether the artifact passed or failed policy verification | direct |
| verifiedLevels | 1..* SlsaResultEnum |
The highest verified SLSA level for each applicable track (not including tran... | direct |
| adoptionMetadata | 0..1 AdoptionMetadata |
Optional structured metadata recording the SLSA adoption challenges and mitig... | direct |
In Subsets
Identifier and Mapping Information
Schema Source
- from schema: https://w3id.org/lmodel/slsa
Mappings
| Mapping Type | Mapped Value |
|---|---|
| self | slsa:SlsaDocument |
| native | slsa:SlsaDocument |
LinkML Source
Direct
name: SlsaDocument
description: Root wrapper for any SLSA attestation payload. Acts as the entry point
for schema validation and tools.
in_subset:
- slsa_build_track
from_schema: https://w3id.org/lmodel/slsa
slots:
- buildDefinition
- runDetails
- verifier
- verificationResult
- verifiedLevels
- adoptionMetadata
tree_root: true
Induced
name: SlsaDocument
description: Root wrapper for any SLSA attestation payload. Acts as the entry point
for schema validation and tools.
in_subset:
- slsa_build_track
from_schema: https://w3id.org/lmodel/slsa
attributes:
buildDefinition:
name: buildDefinition
description: All inputs to the build, sufficient to initialise and reproduce it.
REQUIRED at SLSA Build L1.
in_subset:
- slsa_build_track
from_schema: https://w3id.org/lmodel/slsa
rank: 1000
alias: buildDefinition
owner: SlsaDocument
domain_of:
- SlsaDocument
- BuildProvenance
range: BuildDefinition
required: true
inlined: true
runDetails:
name: runDetails
description: Details specific to this particular execution of the build, including
builder identity and metadata. REQUIRED at SLSA Build L1.
in_subset:
- slsa_build_track
from_schema: https://w3id.org/lmodel/slsa
rank: 1000
alias: runDetails
owner: SlsaDocument
domain_of:
- SlsaDocument
- BuildProvenance
range: RunDetails
required: true
inlined: true
verifier:
name: verifier
description: Identifies the entity that performed the verification.
in_subset:
- slsa_build_track
- slsa_source_track
from_schema: https://w3id.org/lmodel/slsa
rank: 1000
alias: verifier
owner: SlsaDocument
domain_of:
- SlsaDocument
- VerificationSummaryAttestation
range: Verifier
required: true
inlined: true
verificationResult:
name: verificationResult
description: Whether the artifact passed or failed policy verification.
in_subset:
- slsa_build_track
- slsa_source_track
from_schema: https://w3id.org/lmodel/slsa
rank: 1000
alias: verificationResult
owner: SlsaDocument
domain_of:
- SlsaDocument
- VerificationSummaryAttestation
range: VerificationResultEnum
required: true
verifiedLevels:
name: verifiedLevels
description: The highest verified SLSA level for each applicable track (not including
transitive dependencies). At most one level per track. Implies all levels below
it within the same track.
in_subset:
- slsa_build_track
- slsa_source_track
from_schema: https://w3id.org/lmodel/slsa
rank: 1000
alias: verifiedLevels
owner: SlsaDocument
domain_of:
- SlsaDocument
- VerificationSummaryAttestation
range: SlsaResultEnum
required: true
multivalued: true
adoptionMetadata:
name: adoptionMetadata
description: Optional structured metadata recording the SLSA adoption challenges
and mitigation strategies relevant to this attestation context. Derived from
empirical analysis of SLSA-related GitHub issues (Tamanna et al., 2024, arXiv:2409.05014).
Intended for use by framework authors, practitioners, and tooling that tracks
adoption progress alongside attestation payloads.
in_subset:
- slsa_adoption_study
from_schema: https://w3id.org/lmodel/slsa
rank: 1000
alias: adoptionMetadata
owner: SlsaDocument
domain_of:
- SlsaDocument
range: AdoptionMetadata
inlined: true
tree_root: true