Index

Symbols

--branch command line option --database command line option, [1] --defaults-path command line option --deps-depth command line option --digest command line option --disable-rich-output command line option --file command line option --force-analyze-source command line option --help command line option, [1], [2], [3], [4], [5] --local-maven-repo command line option --local-repos-path command line option --output-dir command line option --output-format command line option --package-url command line option, [1], [2] --provenance-expectation command line option --provenance-file command line option --python-venv command line option --repo-path command line option, [1] --sbom-path command line option --show-prelude command line option

--template-path command line option --verbose command line option --verify-provenance command line option --version command line option -b command line option -d command line option, [1] -dp command line option -f command line option -g command line option -h command line option, [1], [2], [3], [4], [5] -lr command line option -o command line option -pe command line option -pf command line option -purl command line option, [1], [2] -rp command line option, [1] -s command line option -sbom command line option -V command line option -v command line option

_

__init__() (macaron.build_spec_generator.cli_command_parser.CLICommand method) (macaron.build_spec_generator.cli_command_parser.CLICommandParser method) (macaron.build_spec_generator.cli_command_parser.CLIOptions method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLICommand method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleAppendedList method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleCLICommandParser method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleOptionalFlag method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleOptionalNegatableFlag method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleProperties method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleSingleValue method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleTask method) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLICommand method) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCLICommandParser method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCommaDelimList method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenGoalPhase method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenOptionalFlag method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenSingleValue method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenSystemProperties method) (macaron.build_spec_generator.cli_command_parser.OptionDef method) (macaron.build_spec_generator.cli_command_parser.unparsed_cli_command.UnparsedCLICommand method) (macaron.build_spec_generator.macaron_db_extractor.GenericBuildCommandInfo method) (macaron.code_analyzer.call_graph.BaseNode method) (macaron.code_analyzer.call_graph.CallGraph method) (macaron.config.global_config.GlobalConfig method) (macaron.config.target_config.Configuration method) (macaron.console.AccessHandler method) (macaron.console.RichConsoleHandler method) (macaron.database.database_manager.cache_return method) (macaron.database.database_manager.DatabaseManager method) (macaron.database.table_definitions.Analysis method) (macaron.database.table_definitions.CheckFacts method) (macaron.database.table_definitions.Component method) (macaron.database.table_definitions.HashDigest method) (macaron.database.table_definitions.MappedCheckResult method) (macaron.database.table_definitions.Provenance method) (macaron.database.table_definitions.ProvenanceSubject method) (macaron.database.table_definitions.ReleaseArtifact method) (macaron.database.table_definitions.RepoFinderMetadata method) (macaron.database.table_definitions.Repository method) (macaron.database.table_definitions.SLSALevel method) (macaron.database.table_definitions.SLSARequirement method) (macaron.database.views.CreateView method) (macaron.database.views.DropView method) (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer method) (macaron.dependency_analyzer.cyclonedx.NoneDependencyAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.base_analyzer.BaseHeuristicAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version.AnomalousVersionAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.closer_release_join_date.CloserReleaseJoinDateAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.empty_project_link.EmptyProjectLinkAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.fake_email.FakeEmailAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.high_release_frequency.HighReleaseFrequencyAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.one_release.OneReleaseAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.package_description_intent.PackageDescriptionIntentAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.similar_projects.SimilarProjectAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.source_code_repo.SourceCodeRepoAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.stub_name.StubNameAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.type_stub_file.TypeStubFileAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.typosquatting_presence.TyposquattingPresenceAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.unchanged_release.UnchangedReleaseAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.wheel_absence.WheelAbsenceAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.sourcecode.pypi_sourcecode_analyzer.PyPISourcecodeAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.sourcecode.suspicious_setup.SuspiciousSetupAnalyzer method) (macaron.output_reporter.reporter.FileReporter method) (macaron.output_reporter.reporter.HTMLReporter method) (macaron.output_reporter.reporter.JSONReporter method) (macaron.output_reporter.reporter.PolicyReporter method) (macaron.output_reporter.results.Record method) (macaron.output_reporter.results.Report method) (macaron.parsers.bashparser.BashNode method) (macaron.parsers.github_workflow_model.Identified method) (macaron.policy_engine.souffle.SouffleError method) (macaron.policy_engine.souffle.SouffleWrapper method) (macaron.policy_engine.souffle_code_generator.SouffleProgram method) (macaron.provenance.provenance_finder.ProvenanceAsset method) (macaron.provenance.provenance_finder.ProvenanceFinder method) (macaron.repo_finder.repo_finder_java.JavaRepoFinder method) (macaron.repo_verifier.repo_verifier_base.RepositoryVerificationResult method) (macaron.repo_verifier.repo_verifier_base.RepoVerifierFromProvenance method) (macaron.repo_verifier.repo_verifier_base.RepoVerifierToolSpecific method) (macaron.repo_verifier.repo_verifier_gradle.RepoVerifierGradle method) (macaron.slsa_analyzer.analyze_context.AnalyzeContext method) (macaron.slsa_analyzer.analyzer.Analyzer method) (macaron.slsa_analyzer.analyzer.DuplicateCmpError method) (macaron.slsa_analyzer.asset.AssetLocator method) (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) (macaron.slsa_analyzer.build_tool.base_build_tool.RuntimeOptions method) (macaron.slsa_analyzer.build_tool.docker.Docker method) (macaron.slsa_analyzer.build_tool.go.Go method) (macaron.slsa_analyzer.build_tool.gradle.Gradle method) (macaron.slsa_analyzer.build_tool.language.Language method) (macaron.slsa_analyzer.build_tool.maven.Maven method) (macaron.slsa_analyzer.build_tool.npm.NPM method) (macaron.slsa_analyzer.build_tool.pip.Pip method) (macaron.slsa_analyzer.build_tool.poetry.Poetry method) (macaron.slsa_analyzer.build_tool.yarn.Yarn method) (macaron.slsa_analyzer.checks.base_check.BaseCheck method) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeCheck method) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts method) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptCheck method) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts method) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceCheck method) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts method) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolCheck method) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolFacts method) (macaron.slsa_analyzer.checks.check_result.CheckInfo method) (macaron.slsa_analyzer.checks.check_result.CheckResult method) (macaron.slsa_analyzer.checks.check_result.CheckResultData method) (macaron.slsa_analyzer.checks.check_result.Evidence method) (macaron.slsa_analyzer.checks.check_result.EvidenceWeightMap method) (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.DetectMaliciousMetadataCheck method) (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.MaliciousMetadataFacts method) (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsCheck method) (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts method) (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineCheck method) (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts method) (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableCheck method) (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableFacts method) (macaron.slsa_analyzer.checks.provenance_commit_check.ProvenanceDerivedCommitCheck method) (macaron.slsa_analyzer.checks.provenance_commit_check.ProvenanceDerivedCommitFacts method) (macaron.slsa_analyzer.checks.provenance_l3_content_check.ProvenanceL3ContentCheck method) (macaron.slsa_analyzer.checks.provenance_repo_check.ProvenanceDerivedRepoCheck method) (macaron.slsa_analyzer.checks.provenance_repo_check.ProvenanceDerivedRepoFacts method) (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedCheck method) (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedFacts method) (macaron.slsa_analyzer.checks.provenance_witness_l1_check.ProvenanceWitnessL1Check method) (macaron.slsa_analyzer.checks.provenance_witness_l1_check.WitnessProvenanceAvailableFacts method) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityCheck method) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts method) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderFacts method) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderL3Check method) (macaron.slsa_analyzer.checks.vcs_check.VCSCheck method) (macaron.slsa_analyzer.checks.vcs_check.VCSFacts method) (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) (macaron.slsa_analyzer.ci_service.base_ci_service.NoneCIService method) (macaron.slsa_analyzer.ci_service.circleci.CircleCI method) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GitHubJobNode method) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GitHubWorkflowNode method) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GraalVMSetup method) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.OracleSetupJava method) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.SetupJava method) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.ThirdPartyAction method) (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) (macaron.slsa_analyzer.ci_service.gitlab_ci.GitLabCI method) (macaron.slsa_analyzer.ci_service.jenkins.Jenkins method) (macaron.slsa_analyzer.ci_service.jenkins.JenkinsNode method) (macaron.slsa_analyzer.ci_service.travis.Travis method) (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) (macaron.slsa_analyzer.git_service.base_git_service.BaseGitService method) (macaron.slsa_analyzer.git_service.base_git_service.NoneGitService method) (macaron.slsa_analyzer.git_service.bitbucket.BitBucket method) (macaron.slsa_analyzer.git_service.github.GitHub method) (macaron.slsa_analyzer.git_service.gitlab.GitLab method) (macaron.slsa_analyzer.git_service.gitlab.PubliclyHostedGitLab method) (macaron.slsa_analyzer.git_service.gitlab.SelfHostedGitLab method) (macaron.slsa_analyzer.git_service.local_repo_git_service.LocalRepoGitService method) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) (macaron.slsa_analyzer.package_registry.maven_central_registry.MavenCentralRegistry method) (macaron.slsa_analyzer.package_registry.npm_registry.NPMRegistry method) (macaron.slsa_analyzer.package_registry.package_registry.PackageRegistry method) (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry method) (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation method) (macaron.slsa_analyzer.provenance.expectations.expectation.Expectation method) (macaron.slsa_analyzer.provenance.expectations.expectation_registry.ExpectationRegistry method) (macaron.slsa_analyzer.provenance.intoto.InTotoV01Payload method) (macaron.slsa_analyzer.provenance.intoto.InTotoV1Payload method) (macaron.slsa_analyzer.provenance.intoto.ProvenanceSubjectPURLMatcher method) (macaron.slsa_analyzer.provenance.provenance.DownloadedProvenanceData method) (macaron.slsa_analyzer.provenance.witness.attestor.RepoAttestor method) (macaron.slsa_analyzer.registry.Registry method) (macaron.slsa_analyzer.slsa_req.SLSAReq method) (macaron.slsa_analyzer.slsa_req.SLSAReqStatus method) (macaron.slsa_analyzer.specs.inferred_provenance.InferredProvenance method) (macaron.slsa_analyzer.specs.package_registry_spec.PackageRegistryInfo method) (macaron.slsa_analyzer.specs.pypi_certificate_predicate.PyPICertificatePredicate method) (macaron.util.StreamWriteDownloader method)

A

AbstractPurlType (class in macaron.repo_finder.commit_finder) ACCEPTABLE_EXECUTABLE (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleCLICommandParser attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCLICommandParser attribute) ACCESS (macaron.slsa_analyzer.slsa_req.ReqName attribute) AccessHandler (class in macaron.console) action_name (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GraalVMSetup attribute) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.OracleSetupJava attribute) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.SetupJava attribute) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.ThirdPartyAction attribute) action_version (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GraalVMSetup attribute) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.OracleSetupJava attribute) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.SetupJava attribute) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.ThirdPartyAction attribute) activate_profiles (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) add() (macaron.slsa_analyzer.checks.check_result.EvidenceWeightMap method) add_callee() (macaron.code_analyzer.call_graph.BaseNode method) add_component() (macaron.slsa_analyzer.analyzer.Analyzer method) add_dep_record() (macaron.output_reporter.results.Report method) add_description_table_content() (macaron.console.RichConsoleHandler method) add_latest_version() (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer static method) add_repository() (macaron.slsa_analyzer.analyzer.Analyzer method) add_to_arg_parser() (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleAppendedList method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleOptionalFlag method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleOptionalNegatableFlag method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleProperties method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleSingleValue method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleTask method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCommaDelimList method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenGoalPhase method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenOptionalFlag method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenSingleValue method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenSystemProperties method) (macaron.build_spec_generator.cli_command_parser.OptionDef method) also_make (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) also_make_dependents (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) Analysis (class in macaron.database.table_definitions) analysis (macaron.database.table_definitions.Component attribute) ANALYSIS_FAILED (macaron.output_reporter.scm.SCMStatus attribute) analysis_id (macaron.database.table_definitions.Component attribute) analysis_time (macaron.database.table_definitions.Analysis attribute) analyze() (macaron.malware_analyzer.pypi_heuristics.base_analyzer.BaseHeuristicAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version.AnomalousVersionAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.closer_release_join_date.CloserReleaseJoinDateAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.empty_project_link.EmptyProjectLinkAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.fake_email.FakeEmailAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.high_release_frequency.HighReleaseFrequencyAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.one_release.OneReleaseAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.package_description_intent.PackageDescriptionIntentAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.similar_projects.SimilarProjectAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.source_code_repo.SourceCodeRepoAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.stub_name.StubNameAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.type_stub_file.TypeStubFileAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.typosquatting_presence.TyposquattingPresenceAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.unchanged_release.UnchangedReleaseAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.metadata.wheel_absence.WheelAbsenceAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.sourcecode.pypi_sourcecode_analyzer.PyPISourcecodeAnalyzer method) (macaron.malware_analyzer.pypi_heuristics.sourcecode.suspicious_setup.SuspiciousSetupAnalyzer method)

analyze_source() (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.DetectMaliciousMetadataCheck method) AnalyzeContext (class in macaron.slsa_analyzer.analyze_context) analyzed_deps (macaron.output_reporter.results.DepSummary attribute) Analyzer (class in macaron.slsa_analyzer.analyzer) Analyzer.AnalysisTarget (class in macaron.slsa_analyzer.analyzer) analyzers (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.DetectMaliciousMetadataCheck attribute) annotations (macaron.slsa_analyzer.provenance.intoto.v1.InTotoV1ResourceDescriptor attribute) ANOMALOUS_VERSION (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) AnomalousVersionAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version) api_client (macaron.slsa_analyzer.git_service.api_client.GitHubReleaseAsset attribute) (macaron.slsa_analyzer.git_service.github.GitHub property) APIAccessError apply_option_patch() (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleCLICommandParser method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCLICommandParser method) apply_patch() (macaron.build_spec_generator.cli_command_parser.CLICommandParser method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleCLICommandParser method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCLICommandParser method) are_neighbors() (macaron.malware_analyzer.pypi_heuristics.metadata.typosquatting_presence.TyposquattingPresenceAnalyzer method) artifact (macaron.database.table_definitions.HashDigest attribute) (macaron.database.table_definitions.Provenance attribute) ARTIFACT (macaron.repo_finder.commit_finder.AbstractPurlType attribute) artifact_extensions (macaron.slsa_analyzer.provenance.witness.WitnessVerifierConfig attribute) artifact_id (macaron.database.table_definitions.HashDigest attribute) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAsset attribute) (macaron.slsa_analyzer.package_registry.npm_registry.NPMAttestationAsset attribute) artifact_url (macaron.slsa_analyzer.checks.provenance_witness_l1_check.WitnessProvenanceAvailableFacts attribute) ArtifactPipelineCheck (class in macaron.slsa_analyzer.checks.infer_artifact_pipeline_check) ArtifactPipelineFacts (class in macaron.slsa_analyzer.checks.infer_artifact_pipeline_check) asset (macaron.slsa_analyzer.provenance.provenance.DownloadedProvenanceData property) (macaron.slsa_analyzer.provenance.slsa.SLSAProvenanceData attribute) (macaron.slsa_analyzer.provenance.witness.WitnessProvenanceData attribute) asset_name (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableFacts attribute) asset_url (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) (macaron.slsa_analyzer.provenance.expectations.expectation.Expectation attribute) AssetLocator (class in macaron.slsa_analyzer.asset) available (macaron.dependency_analyzer.cyclonedx.DependencyInfo attribute) AVAILABLE (macaron.output_reporter.scm.SCMStatus attribute)

B

BaseAPIClient (class in macaron.slsa_analyzer.git_service.api_client) BaseBuildTool (class in macaron.slsa_analyzer.build_tool.base_build_tool) BaseCheck (class in macaron.slsa_analyzer.checks.base_check) BaseCIService (class in macaron.slsa_analyzer.ci_service.base_ci_service) BaseGitService (class in macaron.slsa_analyzer.git_service.base_git_service) BaseHeuristicAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.base_analyzer) BaseNode (class in macaron.code_analyzer.call_graph) BaseRepoFinder (class in macaron.repo_finder.repo_finder_base) BashNode (class in macaron.parsers.bashparser) BashScriptType (class in macaron.parsers.bashparser) batch_mode (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) bfs() (macaron.code_analyzer.call_graph.CallGraph method) BitBucket (class in macaron.slsa_analyzer.git_service.bitbucket) branch (macaron.slsa_analyzer.analyzer.Analyzer.AnalysisTarget attribute) branch_name (macaron.database.table_definitions.Repository attribute) branch_protection_rule (macaron.parsers.github_workflow_model.On attribute) BUILD (macaron.slsa_analyzer.slsa_req.Category attribute) BUILD_AS_CODE (macaron.slsa_analyzer.slsa_req.ReqName attribute) build_cache (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) build_call_graph() (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) (macaron.slsa_analyzer.ci_service.base_ci_service.NoneCIService method) (macaron.slsa_analyzer.ci_service.circleci.CircleCI method) (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) (macaron.slsa_analyzer.ci_service.gitlab_ci.GitLabCI method) (macaron.slsa_analyzer.ci_service.jenkins.Jenkins method) (macaron.slsa_analyzer.ci_service.travis.Travis method) build_call_graph_from_node() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer) build_call_graph_from_path() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer) build_command (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) build_file (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) build_info_results (macaron.slsa_analyzer.specs.ci_spec.CIInfo attribute) build_level (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedFacts attribute) build_log (macaron.slsa_analyzer.specs.build_spec.BuildInfo attribute) build_log_path (macaron.config.global_config.GlobalConfig attribute) build_predicate() (macaron.slsa_analyzer.specs.pypi_certificate_predicate.PyPICertificatePredicate method) BUILD_SERVICE (macaron.slsa_analyzer.slsa_req.ReqName attribute)

build_spec (macaron.slsa_analyzer.analyze_context.ChecksOutputs attribute) build_timeout (macaron.slsa_analyzer.build_tool.base_build_tool.RuntimeOptions attribute) build_tool (macaron.build_spec_generator.cli_command_parser.CLICommandParser property) (macaron.repo_verifier.repo_verifier_base.RepositoryVerificationResult attribute) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) build_tool_command (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) build_tool_name (macaron.build_spec_generator.macaron_db_extractor.GenericBuildCommandInfo attribute) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolFacts attribute) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderFacts attribute) (macaron.slsa_analyzer.specs.package_registry_spec.PackageRegistryInfo attribute) build_tool_purl_type (macaron.slsa_analyzer.specs.package_registry_spec.PackageRegistryInfo attribute) build_trigger (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderFacts attribute) build_type (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedFacts attribute) build_workflow (macaron.slsa_analyzer.specs.pypi_certificate_predicate.PyPICertificatePredicate attribute) BuildAsCodeCheck (class in macaron.slsa_analyzer.checks.build_as_code_check) BuildAsCodeFacts (class in macaron.slsa_analyzer.checks.build_as_code_check) builder (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) BuildInfo (class in macaron.slsa_analyzer.specs.build_spec) BuildLanguage (class in macaron.slsa_analyzer.build_tool.language) BuildScriptCheck (class in macaron.slsa_analyzer.checks.build_script_check) BuildScriptFacts (class in macaron.slsa_analyzer.checks.build_script_check) BuildServiceCheck (class in macaron.slsa_analyzer.checks.build_service_check) BuildServiceFacts (class in macaron.slsa_analyzer.checks.build_service_check) BuildSpec (class in macaron.slsa_analyzer.specs.build_spec) BuildSpecFormat (class in macaron.build_spec_generator.build_spec_generator) BuildToolCheck (class in macaron.slsa_analyzer.checks.build_tool_check) BuildToolCommand (class in macaron.slsa_analyzer.build_tool.base_build_tool) BuildToolFacts (class in macaron.slsa_analyzer.checks.build_tool_check) bulk_update_req_status() (macaron.slsa_analyzer.analyze_context.AnalyzeContext method) BytesDecoder (class in macaron.util)

C

cache_return (class in macaron.database.database_manager) CacheStrategy (class in macaron.build_spec_generator.jdk_finder) CALENDAR (macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version.Versioning attribute) CALENDAR_SEMANTIC (macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version.Versioning attribute) call_osv_query_api() (macaron.slsa_analyzer.package_registry.osv_dev.OSVDevService static method) call_osv_querybatch_api() (macaron.slsa_analyzer.package_registry.osv_dev.OSVDevService static method) caller_workflow (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts attribute) CallGraph (class in macaron.code_analyzer.call_graph) callgraph (macaron.slsa_analyzer.specs.ci_spec.CIInfo attribute) CallGraphError can_download_file() (in module macaron.util) can_download_package_sourcecode() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry method) can_download_sourcecode() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) CARGO (macaron.repo_finder.repo_finder_deps_dev.DepsDevType attribute) Category (class in macaron.slsa_analyzer.slsa_req) check (macaron.slsa_analyzer.checks.check_result.CheckResult attribute) check_description (macaron.slsa_analyzer.checks.check_result.CheckInfo attribute) check_id (macaron.database.table_definitions.MappedCheckResult attribute) (macaron.slsa_analyzer.checks.check_result.CheckInfo attribute) (macaron.slsa_analyzer.checks.check_result.SkippedInfo attribute) check_if_input_purl_provenance_conflict() (in module macaron.provenance.provenance_extractor) check_if_input_repo_provenance_conflict() (in module macaron.provenance.provenance_extractor) check_if_repository_purl_and_url_match() (in module macaron.provenance.provenance_extractor) check_info (macaron.slsa_analyzer.checks.base_check.BaseCheck property) check_out_repo() (macaron.slsa_analyzer.git_service.base_git_service.BaseGitService method) (macaron.slsa_analyzer.git_service.base_git_service.NoneGitService method) (macaron.slsa_analyzer.git_service.bitbucket.BitBucket method) (macaron.slsa_analyzer.git_service.github.GitHub method) (macaron.slsa_analyzer.git_service.gitlab.GitLab method) (macaron.slsa_analyzer.git_service.local_repo_git_service.LocalRepoGitService method) check_out_repo_target() (in module macaron.slsa_analyzer.git_url) check_publish_start_commit_timestamps() (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) check_purls_equivalent() (in module macaron.provenance.provenance_verifier) check_rate_limit() (in module macaron.util) check_repo_urls_are_equivalent() (in module macaron.repo_finder.repo_utils) check_result_id (macaron.database.table_definitions.CheckFacts attribute) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolFacts attribute) (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.MaliciousMetadataFacts attribute) (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts attribute) (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.provenance_commit_check.ProvenanceDerivedCommitFacts attribute) (macaron.slsa_analyzer.checks.provenance_repo_check.ProvenanceDerivedRepoFacts attribute) (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedFacts attribute) (macaron.slsa_analyzer.checks.provenance_witness_l1_check.WitnessProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderFacts attribute) (macaron.slsa_analyzer.checks.vcs_check.VCSFacts attribute) (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) check_run (macaron.parsers.github_workflow_model.On attribute) check_suite (macaron.parsers.github_workflow_model.On attribute) check_type (macaron.database.table_definitions.CheckFacts attribute) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolFacts attribute) (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.MaliciousMetadataFacts attribute) (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts attribute) (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.provenance_commit_check.ProvenanceDerivedCommitFacts attribute) (macaron.slsa_analyzer.checks.provenance_repo_check.ProvenanceDerivedRepoFacts attribute) (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedFacts attribute) (macaron.slsa_analyzer.checks.provenance_witness_l1_check.WitnessProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderFacts attribute) (macaron.slsa_analyzer.checks.vcs_check.VCSFacts attribute) (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) CheckFacts (class in macaron.database.table_definitions) checkfacts (macaron.database.table_definitions.Component attribute) (macaron.database.table_definitions.MappedCheckResult attribute) CheckInfo (class in macaron.slsa_analyzer.checks.check_result) CheckRegistryError CheckResult (class in macaron.slsa_analyzer.checks.check_result) checkresult (macaron.database.table_definitions.CheckFacts attribute) (macaron.database.table_definitions.Component attribute) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolFacts attribute) (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.MaliciousMetadataFacts attribute) (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts attribute) (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.provenance_commit_check.ProvenanceDerivedCommitFacts attribute) (macaron.slsa_analyzer.checks.provenance_repo_check.ProvenanceDerivedRepoFacts attribute) (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedFacts attribute) (macaron.slsa_analyzer.checks.provenance_witness_l1_check.WitnessProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderFacts attribute) (macaron.slsa_analyzer.checks.vcs_check.VCSFacts attribute) (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) CheckResultData (class in macaron.slsa_analyzer.checks.check_result) CheckResultType (class in macaron.slsa_analyzer.checks.check_result) checks_summary (macaron.output_reporter.results.DepSummary attribute) ChecksOutputs (class in macaron.slsa_analyzer.analyze_context) chunk_function() (macaron.util.StreamWriteDownloader method) ci_path (macaron.slsa_analyzer.build_tool.base_build_tool.BuildToolCommand attribute) ci_service_name (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderFacts attribute) ci_services (macaron.slsa_analyzer.analyze_context.ChecksOutputs attribute) CIInfo (class in macaron.slsa_analyzer.specs.ci_spec) CircleCI (class in macaron.slsa_analyzer.ci_service.circleci) clean_up_repo_path() (in module macaron.slsa_analyzer.git_url) clean_url() (in module macaron.slsa_analyzer.git_url) cleanup_sourcecode_directory() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry static method) clear() (macaron.database.database_manager.cache_return method) CLICommand (class in macaron.build_spec_generator.cli_command_parser) CLICommandParser (class in macaron.build_spec_generator.cli_command_parser) CLIOptions (class in macaron.build_spec_generator.cli_command_parser) clone_remote_repo() (in module macaron.slsa_analyzer.git_url) clone_repo() (macaron.slsa_analyzer.git_service.base_git_service.BaseGitService method) (macaron.slsa_analyzer.git_service.base_git_service.NoneGitService method) (macaron.slsa_analyzer.git_service.bitbucket.BitBucket method) (macaron.slsa_analyzer.git_service.github.GitHub method) (macaron.slsa_analyzer.git_service.gitlab.GitLab method) (macaron.slsa_analyzer.git_service.local_repo_git_service.LocalRepoGitService method) CloneError close() (macaron.console.RichConsoleHandler method) CLOSER_RELEASE_JOIN_DATE (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) CloserReleaseJoinDateAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.closer_release_join_date) collect_dependencies() (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer method) column_to_souffle_type() (in module macaron.policy_engine.souffle_code_generator) command (macaron.build_spec_generator.macaron_db_extractor.GenericBuildCommandInfo attribute) (macaron.slsa_analyzer.build_tool.base_build_tool.BuildToolCommand attribute) command line option --branch --database, [1] --defaults-path --deps-depth --digest --disable-rich-output --file --force-analyze-source --help, [1], [2], [3], [4], [5] --local-maven-repo --local-repos-path --output-dir --output-format --package-url, [1], [2] --provenance-expectation --provenance-file --python-venv --repo-path, [1] --sbom-path --show-prelude --template-path --verbose --verify-provenance --version -b -d, [1] -dp -f -g -h, [1], [2], [3], [4], [5] -lr -o -pe -pf -purl, [1], [2] -rp, [1] -s -sbom -V -v

CommandLineParseError commit_date (macaron.database.table_definitions.Repository attribute) commit_finder_outcome (macaron.database.table_definitions.RepoFinderMetadata attribute) commit_info (macaron.slsa_analyzer.checks.provenance_commit_check.ProvenanceDerivedCommitFacts attribute) commit_sha (macaron.database.table_definitions.Provenance attribute) (macaron.database.table_definitions.Repository attribute) CommitFinderInfo (class in macaron.repo_finder.repo_finder_enums) COMMON (macaron.slsa_analyzer.slsa_req.Category attribute) COMMON_ENCODINGS (macaron.util.BytesDecoder attribute) compile_sqlite_select_statement() (in module macaron.build_spec_generator.macaron_db_extractor) complete_name (macaron.database.table_definitions.Repository attribute) Component (class in macaron.database.table_definitions) component (macaron.database.table_definitions.Analysis attribute) (macaron.database.table_definitions.CheckFacts attribute) (macaron.database.table_definitions.MappedCheckResult attribute) (macaron.database.table_definitions.Provenance attribute) (macaron.database.table_definitions.ProvenanceSubject attribute) (macaron.database.table_definitions.RepoFinderMetadata attribute) (macaron.database.table_definitions.Repository attribute) (macaron.database.table_definitions.SLSALevel attribute) (macaron.database.table_definitions.SLSARequirement attribute) (macaron.slsa_analyzer.analyze_context.AnalyzeContext property) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolFacts attribute) (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.MaliciousMetadataFacts attribute) (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts attribute) (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.provenance_commit_check.ProvenanceDerivedCommitFacts attribute) (macaron.slsa_analyzer.checks.provenance_repo_check.ProvenanceDerivedRepoFacts attribute) (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedFacts attribute) (macaron.slsa_analyzer.checks.provenance_witness_l1_check.WitnessProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderFacts attribute) (macaron.slsa_analyzer.checks.vcs_check.VCSFacts attribute) (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) component_id (macaron.database.table_definitions.CheckFacts attribute) (macaron.database.table_definitions.MappedCheckResult attribute) (macaron.database.table_definitions.Provenance attribute) (macaron.database.table_definitions.ProvenanceSubject attribute) (macaron.database.table_definitions.RepoFinderMetadata attribute) (macaron.database.table_definitions.Repository attribute) (macaron.database.table_definitions.SLSALevel attribute) (macaron.database.table_definitions.SLSARequirement attribute) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolFacts attribute) (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.MaliciousMetadataFacts attribute) (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts attribute) (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.provenance_commit_check.ProvenanceDerivedCommitFacts attribute) (macaron.slsa_analyzer.checks.provenance_repo_check.ProvenanceDerivedRepoFacts attribute) (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedFacts attribute) (macaron.slsa_analyzer.checks.provenance_witness_l1_check.WitnessProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderFacts attribute) (macaron.slsa_analyzer.checks.vcs_check.VCSFacts attribute) (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) component_name (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset attribute) component_version (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset attribute) concurrency (macaron.parsers.github_workflow_model.ReusableWorkflowCallJob attribute) Confidence (class in macaron.slsa_analyzer.checks.check_result) confidence (macaron.database.table_definitions.CheckFacts attribute) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolFacts attribute) (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.MaliciousMetadataFacts attribute) (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts attribute) (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.provenance_commit_check.ProvenanceDerivedCommitFacts attribute) (macaron.slsa_analyzer.checks.provenance_repo_check.ProvenanceDerivedRepoFacts attribute) (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedFacts attribute) (macaron.slsa_analyzer.checks.provenance_witness_l1_check.WitnessProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderFacts attribute) (macaron.slsa_analyzer.checks.vcs_check.VCSFacts attribute) (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) ConfigParser (class in macaron.config.defaults) Configuration (class in macaron.config.target_config) configuration_cache (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) configuration_cache_problems (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) ConfigurationError configure_on_demand (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) construct_asset_url() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) construct_clone_url() (macaron.slsa_analyzer.git_service.gitlab.GitLab method) construct_file_info_url() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) construct_folder_info_url() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) construct_latest_version_url() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) construct_query() (in module macaron.util) Container (class in macaron.parsers.github_workflow_model) content (macaron.slsa_analyzer.provenance.intoto.v1.InTotoV1ResourceDescriptor attribute) (macaron.vsa.vsa.Policy attribute) context (macaron.output_reporter.results.Record attribute) continue_ (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) continuous (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) convert_components_to_artifacts() (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer static method) copy_file() (in module macaron.util) copy_file_bulk() (in module macaron.util) copy_prelude() (in module macaron.policy_engine.policy_engine) copy_to_includes() (macaron.policy_engine.souffle.SouffleWrapper method) create (macaron.parsers.github_workflow_model.On attribute) create_analyze_ctx() (macaron.slsa_analyzer.analyzer.Analyzer method) create_bash_node() (in module macaron.parsers.bashparser) create_defaults() (in module macaron.config.defaults) create_filename() (in module macaron.repo_finder.repo_utils) create_report() (in module macaron.repo_finder.repo_utils) create_requirement_status_dict() (in module macaron.slsa_analyzer.slsa_req) create_tables() (macaron.database.database_manager.DatabaseManager method) create_third_party_action_model() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer) create_view() (in module macaron.database.views) create_vsa_statement() (in module macaron.vsa.vsa) CreateView (class in macaron.database.views) Credentials (class in macaron.parsers.github_workflow_model) credentials (macaron.parsers.github_workflow_model.Container attribute) cron (macaron.parsers.github_workflow_model.ScheduleItem attribute) CUEExpectation (class in macaron.slsa_analyzer.provenance.expectations.cue) CUEExpectationError CUERuntimeError CycloneDXParserError CycloneDxPython (class in macaron.dependency_analyzer.cyclonedx_python)

D

daemon (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) DatabaseManager (class in macaron.database.database_manager) DBJsonDict (class in macaron.database.db_custom_types) DBJsonList (class in macaron.database.db_custom_types) DDEV_API_ERROR (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) DDEV_JSON_INVALID (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) DDEV_NO_URLS (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) DDEV_NO_VALID_URLS (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) debug (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) debug_level (macaron.config.global_config.GlobalConfig attribute) declarations (macaron.policy_engine.souffle_code_generator.SouffleProgram attribute) decode() (macaron.util.BytesDecoder static method) decode_git_tags() (in module macaron.slsa_analyzer.git_url) decode_provenance() (in module macaron.slsa_analyzer.provenance.loader) default (macaron.parsers.github_workflow_model.Inputs attribute) (macaron.parsers.github_workflow_model.Inputs1 attribute) DEFAULT_REASON (macaron.repo_verifier.repo_verifier_base.RepoVerifierFromProvenance attribute) Defaults (class in macaron.parsers.github_workflow_model) define (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) delete (macaron.parsers.github_workflow_model.On attribute) dep_status (macaron.output_reporter.results.DepSummary attribute) dependencies (macaron.database.table_definitions.Component attribute) (macaron.output_reporter.results.Record attribute) DependencyAnalyzer (class in macaron.dependency_analyzer.cyclonedx) DependencyAnalyzerError DependencyInfo (class in macaron.dependency_analyzer.cyclonedx) depends_on (macaron.slsa_analyzer.checks.base_check.BaseCheck property) deploy_command (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) deploy_job (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) deploy_step (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) deploy_workflow (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) deployment (macaron.parsers.github_workflow_model.On attribute) deployment_status (macaron.parsers.github_workflow_model.On attribute) deprecationMessage (macaron.parsers.github_workflow_model.Inputs attribute) (macaron.parsers.github_workflow_model.Inputs1 attribute) DepsDevRepoFinder (class in macaron.repo_finder.repo_finder_deps_dev) DepsDevService (class in macaron.slsa_analyzer.package_registry.deps_dev) DepsDevType (class in macaron.repo_finder.repo_finder_deps_dev) DepSummary (class in macaron.output_reporter.results) description (macaron.output_reporter.results.Record attribute) (macaron.parsers.github_workflow_model.Inputs attribute) (macaron.parsers.github_workflow_model.Inputs1 attribute) (macaron.parsers.github_workflow_model.Secrets attribute) (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) (macaron.slsa_analyzer.provenance.expectations.expectation.Expectation attribute) deserialize_bom_json() (in module macaron.dependency_analyzer.cyclonedx)

dest (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleOptionalFlag attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenOptionalFlag attribute) DETAIL_INFO_KEY (macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version.AnomalousVersionAnalyzer attribute) detail_information (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.MaliciousMetadataFacts attribute) DetectMaliciousMetadataCheck (class in macaron.slsa_analyzer.checks.detect_malicious_metadata_check) determine_abstract_purl_type() (in module macaron.repo_finder.commit_finder) determine_optional_suffix_index() (in module macaron.repo_finder.commit_finder) determine_provenance_slsa_level() (in module macaron.provenance.provenance_verifier) digest (macaron.database.table_definitions.HashDigest attribute) (macaron.slsa_analyzer.analyzer.Analyzer.AnalysisTarget attribute) (macaron.slsa_analyzer.provenance.intoto.v01.InTotoV01Subject attribute) (macaron.slsa_analyzer.provenance.intoto.v1.InTotoV1ResourceDescriptor attribute) digest_algorithm (macaron.database.table_definitions.HashDigest attribute) digests (macaron.database.table_definitions.ReleaseArtifact attribute) DIGIT_DATE_FORMATS (macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version.AnomalousVersionAnalyzer attribute) directives (macaron.policy_engine.souffle_code_generator.SouffleProgram attribute) DISABLE (macaron.build_spec_generator.jdk_finder.CacheStrategy attribute) DISABLED (macaron.slsa_analyzer.checks.check_result.CheckResultType attribute) discussion (macaron.parsers.github_workflow_model.On attribute) discussion_comment (macaron.parsers.github_workflow_model.On attribute) Docker (class in macaron.slsa_analyzer.build_tool.docker) DOCKER (macaron.slsa_analyzer.build_tool.language.BuildLanguage attribute) download() (macaron.slsa_analyzer.asset.AssetLocator method) (macaron.slsa_analyzer.asset.VirtualReleaseAsset method) (macaron.slsa_analyzer.git_service.api_client.GitHubReleaseAsset method) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAsset method) (macaron.slsa_analyzer.package_registry.npm_registry.NPMAttestationAsset method) (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) download_asset() (macaron.slsa_analyzer.git_service.api_client.BaseAPIClient method) (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) download_attestation_payload() (macaron.slsa_analyzer.package_registry.npm_registry.NPMRegistry method) download_file() (in module macaron.build_spec_generator.jdk_finder) download_file_with_size_limit() (in module macaron.util) download_github_build_log() (in module macaron.util) download_location (macaron.slsa_analyzer.provenance.intoto.v1.InTotoV1ResourceDescriptor attribute) download_package_json() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry method) download_package_sourcecode() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry method) download_provenances_from_ci_service() (in module macaron.provenance.provenance_finder) download_sourcecode() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) download_uri (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAssetMetadata attribute) DownloadedProvenanceData (class in macaron.slsa_analyzer.provenance.provenance) DropView (class in macaron.database.views) DuplicateCmpError DUPLICATED_SCM (macaron.output_reporter.scm.SCMStatus attribute) DuplicateError dynamic_data (macaron.slsa_analyzer.analyze_context.AnalyzeContext property)

E

emit() (macaron.console.RichConsoleHandler method) EMPTY_PROJECT_LINK (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) EmptyProjectLinkAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.empty_project_link) encode_purl() (macaron.slsa_analyzer.package_registry.deps_dev.DepsDevService static method) encrypt_master_password (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) encrypt_password (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) env (macaron.parsers.github_workflow_model.Container attribute) Environment (class in macaron.parsers.github_workflow_model) EPHEMERAL_ENVIRONMENT (macaron.slsa_analyzer.slsa_req.ReqName attribute) error() (macaron.console.RichConsoleHandler method) errors (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) eval_reqs (macaron.slsa_analyzer.checks.check_result.CheckInfo attribute) evaluate_heuristic_results() (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.DetectMaliciousMetadataCheck method) evaluated (macaron.slsa_analyzer.provenance.expectations.expectation_registry.ExpectationRegistry attribute) events (macaron.slsa_analyzer.build_tool.base_build_tool.BuildToolCommand attribute) Evidence (class in macaron.slsa_analyzer.checks.check_result) EvidenceWeightMap (class in macaron.slsa_analyzer.checks.check_result) exclude_task (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) executable (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLICommand attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLICommand attribute) Expectation (class in macaron.slsa_analyzer.provenance.expectations.expectation) expectation (macaron.slsa_analyzer.analyze_context.ChecksOutputs attribute) EXPECTATION (macaron.slsa_analyzer.slsa_req.ReqName attribute) expectation_paths (macaron.config.global_config.GlobalConfig attribute) expectation_type (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) (macaron.slsa_analyzer.provenance.expectations.expectation.Expectation attribute) ExpectationRegistry (class in macaron.slsa_analyzer.provenance.expectations.expectation_registry) ExpectationRuntimeError expectations (macaron.slsa_analyzer.provenance.expectations.expectation_registry.ExpectationRegistry attribute) expected_attestation_type (macaron.provenance.provenance_extractor.WitnessGitLabBuildDefinitionV01 attribute) expected_build_type (macaron.provenance.provenance_extractor.GitHubActionsBuildDefinition attribute) (macaron.provenance.provenance_extractor.ProvenanceBuildDefinition attribute) (macaron.provenance.provenance_extractor.PyPICertificateDefinition attribute) (macaron.provenance.provenance_extractor.SLSAGCBBuildDefinitionV1 attribute) (macaron.provenance.provenance_extractor.SLSAGithubActionsBuildDefinitionV1 attribute) (macaron.provenance.provenance_extractor.SLSAGithubGenericBuildDefinitionV01 attribute) (macaron.provenance.provenance_extractor.SLSANPMCLIBuildDefinitionV2 attribute) (macaron.provenance.provenance_extractor.SLSAOCIBuildDefinitionV1 attribute) (macaron.provenance.provenance_extractor.WitnessGitLabBuildDefinitionV01 attribute)

export_keys (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) EXTERNAL (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GitHubWorkflowType attribute) extract_asset_metadata_from_file_info_payload() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) extract_attestation() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry static method) extract_build_artifacts_from_slsa_subjects() (in module macaron.slsa_analyzer.provenance.slsa) extract_build_artifacts_from_witness_subjects() (in module macaron.slsa_analyzer.provenance.witness) extract_commit_from_version() (in module macaron.repo_finder.commit_finder) extract_file_names_from_folder_info_payload() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) extract_folder_names_from_folder_info_payload() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) extract_from_ast() (macaron.malware_analyzer.pypi_heuristics.sourcecode.suspicious_setup.SuspiciousSetupAnalyzer method) extract_from_lines() (macaron.malware_analyzer.pypi_heuristics.sourcecode.suspicious_setup.SuspiciousSetupAnalyzer method) extract_generic_build_command_info() (in module macaron.build_spec_generator.macaron_db_extractor) extract_group_id_from_build_groovy() (macaron.repo_verifier.repo_verifier_gradle.RepoVerifierGradle method) extract_group_id_from_build_kotlin() (macaron.repo_verifier.repo_verifier_gradle.RepoVerifierGradle method) extract_group_id_from_pom() (macaron.repo_verifier.repo_verifier_maven.RepoVerifierMaven method) extract_group_id_from_properties() (macaron.repo_verifier.repo_verifier_gradle.RepoVerifierGradle method) extract_links() (macaron.repo_finder.repo_finder_deps_dev.DepsDevRepoFinder static method) extract_predicate_version() (in module macaron.provenance.provenance_extractor) extract_repo_and_commit_from_provenance() (in module macaron.provenance.provenance_extractor) extract_repo_url() (in module macaron.slsa_analyzer.provenance.witness) (macaron.slsa_analyzer.provenance.witness.attestor.GitLabWitnessAttestor method) (macaron.slsa_analyzer.provenance.witness.attestor.RepoAttestor method) extract_repo_url_intoto_v01() (macaron.slsa_analyzer.provenance.witness.attestor.GitLabWitnessAttestor method)

F

FAIL (macaron.malware_analyzer.pypi_heuristics.heuristics.HeuristicResult attribute) fail_at_end (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) fail_fast (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) fail_never (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) FAILED (macaron.repo_verifier.repo_verifier_base.RepositoryVerificationStatus attribute) (macaron.slsa_analyzer.checks.check_result.CheckResultType attribute) (macaron.vsa.vsa.VerificationResult attribute) FAKE_EMAIL (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) FakeEmailAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.fake_email) feedback (macaron.database.table_definitions.SLSARequirement attribute) fetch_artifact_ids() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) fetch_asset_metadata() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) fetch_asset_names() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) fetch_assets() (macaron.slsa_analyzer.git_service.api_client.BaseAPIClient method) (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) fetch_latest_version() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) file (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) FILE (macaron.parsers.bashparser.BashScriptType attribute) file_exists() (in module macaron.slsa_analyzer.build_tool.base_build_tool) FileReporter (class in macaron.output_reporter.reporter) FILES_THRESHOLD (macaron.malware_analyzer.pypi_heuristics.metadata.type_stub_file.TypeStubFileAnalyzer attribute) filter_extensions (in module macaron.output_reporter.jinja2_extensions) find_build_def() (macaron.provenance.provenance_extractor.ProvenancePredicate static method) find_commit() (in module macaron.repo_finder.commit_finder) find_commit_from_version_and_name() (in module macaron.repo_finder.commit_finder) find_ctx() (macaron.output_reporter.results.Report method) find_expression_variables() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer) find_first_matching_file() (in module macaron.slsa_analyzer.build_tool.base_build_tool) find_gav_provenance() (in module macaron.provenance.provenance_finder) find_highest_git_tag() (in module macaron.slsa_analyzer.git_url) find_jdk_version_from_central_maven_repo() (in module macaron.build_spec_generator.jdk_finder) find_jdk_version_from_remote_maven_repo_cache() (in module macaron.build_spec_generator.jdk_finder) find_jdk_version_from_remote_maven_repo_standalone() (in module macaron.build_spec_generator.jdk_finder) find_language_setup_action() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer)

find_npm_provenance() (in module macaron.provenance.provenance_finder) find_or_create_pypi_asset() (in module macaron.slsa_analyzer.package_registry.pypi_registry) find_provenance() (macaron.provenance.provenance_finder.ProvenanceFinder method) find_provenance_from_ci() (in module macaron.provenance.provenance_finder) find_publish_timestamp() (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) (macaron.slsa_analyzer.package_registry.maven_central_registry.MavenCentralRegistry method) (macaron.slsa_analyzer.package_registry.package_registry.PackageRegistry method) find_pypi_provenance() (in module macaron.provenance.provenance_finder) find_repo() (in module macaron.repo_finder.repo_finder) (in module macaron.repo_finder.repo_finder_pypi) (macaron.repo_finder.repo_finder_base.BaseRepoFinder method) (macaron.repo_finder.repo_finder_deps_dev.DepsDevRepoFinder method) (macaron.repo_finder.repo_finder_java.JavaRepoFinder method) find_repo_alternative() (in module macaron.repo_finder.repo_finder) find_source() (in module macaron.repo_finder.repo_finder) find_valid_repository_url() (in module macaron.repo_finder.repo_validator) force_analyze_source (macaron.slsa_analyzer.analyze_context.ChecksOutputs attribute) foreground (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) fork (macaron.parsers.github_workflow_model.On attribute) fork_count (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) format_build_command_info() (in module macaron.build_spec_generator.reproducible_central.reproducible_central) FOUND (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) found (macaron.slsa_analyzer.checks.check_result.Evidence attribute) found_commit (macaron.database.table_definitions.RepoFinderMetadata attribute) FOUND_FROM_LATEST (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) FOUND_FROM_PARENT (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) FOUND_FROM_PYPI (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) found_url (macaron.database.table_definitions.RepoFinderMetadata attribute) from_parsed_arg() (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions class method) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions class method) from_provenance (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) from_purl_and_provenance() (macaron.database.table_definitions.ProvenanceSubject class method) fs_path (macaron.database.table_definitions.Repository attribute) full_name (macaron.database.table_definitions.Repository attribute) full_stacktrace (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute)

G

gen_build_spec_for_purl() (in module macaron.build_spec_generator.build_spec_generator) gen_reproducible_central_build_spec() (in module macaron.build_spec_generator.reproducible_central.reproducible_central) generate() (macaron.output_reporter.reporter.FileReporter method) (macaron.output_reporter.reporter.HTMLReporter method) (macaron.output_reporter.reporter.JSONReporter method) (macaron.output_reporter.reporter.PolicyReporter method) generate_policy_summary_table() (macaron.console.RichConsoleHandler method) generate_report() (in module macaron.repo_finder.repo_utils) generate_reports() (macaron.slsa_analyzer.analyzer.Analyzer method) generate_vsa() (in module macaron.vsa.vsa) GenerateBuildSpecError GenericBuildCommandInfo (class in macaron.build_spec_generator.macaron_db_extractor) get() (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_all_checks_mapping() (macaron.slsa_analyzer.registry.Registry static method) get_all_checks_relationships() (macaron.slsa_analyzer.registry.Registry static method) get_allowed_git_service_hostnames() (in module macaron.slsa_analyzer.git_url) get_artifact_hash() (in module macaron.provenance.provenance_finder) (macaron.slsa_analyzer.package_registry.maven_central_registry.MavenCentralRegistry method) (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry method) get_attestation() (macaron.repo_finder.repo_finder_deps_dev.DepsDevRepoFinder static method) (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_attestation_payload() (macaron.slsa_analyzer.git_service.github.GitHub method) get_branches_containing_commit() (in module macaron.slsa_analyzer.git_url) get_build_dirs() (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) get_build_invocation() (macaron.provenance.provenance_extractor.GitHubActionsBuildDefinition method) (macaron.provenance.provenance_extractor.ProvenanceBuildDefinition method) (macaron.provenance.provenance_extractor.PyPICertificateDefinition method) (macaron.provenance.provenance_extractor.SLSAGCBBuildDefinitionV1 method) (macaron.provenance.provenance_extractor.SLSAGithubActionsBuildDefinitionV1 method) (macaron.provenance.provenance_extractor.SLSAGithubGenericBuildDefinitionV01 method) (macaron.provenance.provenance_extractor.SLSANPMCLIBuildDefinitionV2 method) (macaron.provenance.provenance_extractor.SLSAOCIBuildDefinitionV1 method) (macaron.provenance.provenance_extractor.WitnessGitLabBuildDefinitionV01 method) get_build_tool_commands() (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) (macaron.slsa_analyzer.ci_service.base_ci_service.NoneCIService method) (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) (macaron.slsa_analyzer.ci_service.jenkins.Jenkins method) get_build_type() (macaron.provenance.provenance_extractor.ProvenancePredicate static method) get_check_execution_order() (macaron.slsa_analyzer.registry.Registry method) get_check_summary() (macaron.slsa_analyzer.analyze_context.AnalyzeContext method) get_children() (macaron.slsa_analyzer.registry.Registry method) get_ci_events() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer) get_cmd() (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer method) (macaron.dependency_analyzer.cyclonedx_python.CycloneDxPython method) get_commit_data_from_hash() (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_common_purl_from_artifact_purls() (in module macaron.vsa.vsa) get_components_passing_policy() (in module macaron.vsa.vsa) get_ctxs() (macaron.output_reporter.results.Report method) get_default_branch() (in module macaron.slsa_analyzer.git_url) get_default_gh_client() (in module macaron.slsa_analyzer.git_service.api_client) get_dep_analyzer() (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) (macaron.slsa_analyzer.build_tool.pip.Pip method) (macaron.slsa_analyzer.build_tool.poetry.Poetry method) get_dep_components() (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer static method) get_dep_summary() (macaron.output_reporter.results.Record method) get_dependencies() (macaron.output_reporter.results.Report method) get_deps_from_sbom() (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer static method) get_dict() (macaron.output_reporter.results.Record method) (macaron.slsa_analyzer.analyze_context.AnalyzeContext method) get_emails() (macaron.malware_analyzer.pypi_heuristics.metadata.fake_email.FakeEmailAnalyzer method) get_endpoint() (macaron.slsa_analyzer.package_registry.deps_dev.DepsDevService static method) get_expectation_for_target() (macaron.slsa_analyzer.provenance.expectations.expectation_registry.ExpectationRegistry method) get_fact_declarations() (in module macaron.policy_engine.souffle_code_generator) get_fact_input_statements() (in module macaron.policy_engine.souffle_code_generator) get_file_link() (macaron.slsa_analyzer.git_service.api_client.BaseAPIClient method) (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_final_checks() (macaron.slsa_analyzer.registry.Registry method) get_generated() (in module macaron.policy_engine.policy_engine) get_git_service() (in module macaron.repo_finder.repo_utils) get_group_id() (macaron.slsa_analyzer.build_tool.gradle.Gradle method) get_handler() (macaron.console.AccessHandler method) get_jdk_version_from_jar() (in module macaron.build_spec_generator.jdk_finder) get_job_build_log() (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_latest_purl_if_different() (in module macaron.repo_finder.repo_finder) get_latest_release() (macaron.slsa_analyzer.git_service.api_client.BaseAPIClient method) (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_latest_release_upload_time() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) get_latest_repo_if_different() (in module macaron.repo_finder.repo_finder) get_latest_version() (macaron.repo_finder.repo_finder_deps_dev.DepsDevRepoFinder static method) (macaron.slsa_analyzer.package_registry.npm_registry.NPMRegistry method) (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) get_list() (macaron.config.defaults.ConfigParser method) get_local_repos_path() (in module macaron.repo_finder.repo_utils) get_lookup_build_command_info() (in module macaron.build_spec_generator.reproducible_central.reproducible_central) get_lookup_build_command_jdk() (in module macaron.build_spec_generator.reproducible_central.reproducible_central) get_maintainer_join_date() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry method) get_maintainer_profile_page() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry method) get_maintainers_of_package() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry method) get_max_score() (macaron.slsa_analyzer.checks.check_result.EvidenceWeightMap method) get_negated_long_name() (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleOptionalNegatableFlag static method) get_osv_url() (macaron.slsa_analyzer.package_registry.osv_dev.OSVDevService static method) get_package_info() (macaron.slsa_analyzer.package_registry.deps_dev.DepsDevService static method) get_package_page() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry method) get_packages_by_username() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry method) get_parents() (macaron.slsa_analyzer.registry.Registry method) get_patch_type_str() (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleAppendedList method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleOptionalFlag method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleOptionalNegatableFlag method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleProperties method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleSingleValue method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleTask method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCommaDelimList method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenGoalPhase method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenOptionalFlag method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenSingleValue method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenSystemProperties method) (macaron.build_spec_generator.cli_command_parser.OptionDef method) get_patched_env() (in module macaron.environment_variables) get_project_info() (macaron.repo_finder.repo_finder_deps_dev.DepsDevRepoFinder static method) get_project_links() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) get_purl_based_dir() (in module macaron.path_utils.purl_based_path) get_purl_endpoint() (macaron.slsa_analyzer.package_registry.deps_dev.DepsDevService static method)

get_purl_from_cdx_component() (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer static method) get_rc_build_command() (in module macaron.build_spec_generator.reproducible_central.reproducible_central) get_rc_build_tool_name() (in module macaron.build_spec_generator.reproducible_central.reproducible_central) get_rc_default_build_command() (in module macaron.build_spec_generator.reproducible_central.reproducible_central) get_reachable_nodes() (macaron.slsa_analyzer.registry.Registry static method) get_reachable_secrets() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer) get_records() (macaron.output_reporter.results.Report method) get_relative_path_of_workflow() (macaron.slsa_analyzer.git_service.api_client.BaseAPIClient method) (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_release_by_tag() (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_releases() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) get_remote_origin_of_local_repo() (in module macaron.slsa_analyzer.git_url) get_remote_vcs_url() (in module macaron.slsa_analyzer.git_url) get_repo_complete_name_from_url() (in module macaron.slsa_analyzer.git_url) get_repo_data() (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_repo_dir_name() (in module macaron.slsa_analyzer.git_url) get_repo_full_name_from_url() (in module macaron.slsa_analyzer.git_url) get_repo_name_from_url() (in module macaron.slsa_analyzer.git_url) get_repo_tags() (in module macaron.repo_finder.repo_utils) get_repo_workflow_data() (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_result_as_bool() (in module macaron.slsa_analyzer.checks.check_result) get_root() (macaron.code_analyzer.call_graph.CallGraph method) get_root_component() (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer method) get_run_step() (in module macaron.parsers.actionparser) get_score() (macaron.slsa_analyzer.checks.check_result.EvidenceWeightMap method) get_serialized_configs() (macaron.output_reporter.results.Report method) get_sha256() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) get_slsa_level_table() (macaron.slsa_analyzer.analyze_context.AnalyzeContext method) get_souffle_import_prelude() (in module macaron.policy_engine.souffle_code_generator) get_sourcecode_file_contents() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) get_sourcecode_url() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) get_sql_stmt_build_as_code_check() (in module macaron.build_spec_generator.macaron_db_extractor) get_sql_stmt_build_script_check() (in module macaron.build_spec_generator.macaron_db_extractor) get_sql_stmt_build_service_check() (in module macaron.build_spec_generator.macaron_db_extractor) get_sql_stmt_build_tools() (in module macaron.build_spec_generator.macaron_db_extractor) get_sql_stmt_latest_component_for_purl() (in module macaron.build_spec_generator.macaron_db_extractor) get_step_input() (in module macaron.parsers.actionparser) get_structure() (macaron.malware_analyzer.pypi_heuristics.metadata.similar_projects.SimilarProjectAnalyzer method) get_structure_hash() (macaron.malware_analyzer.pypi_heuristics.metadata.similar_projects.SimilarProjectAnalyzer method) get_subject_in_provenance_matching_purl() (macaron.slsa_analyzer.provenance.intoto.ProvenanceSubjectPURLMatcher static method) get_summary() (macaron.output_reporter.results.Record method) (macaron.slsa_analyzer.checks.check_result.CheckResult method) get_table_rules_per_column() (in module macaron.policy_engine.souffle_code_generator) get_tags_via_git_remote() (in module macaron.slsa_analyzer.git_url) get_target() (in module macaron.slsa_analyzer.provenance.expectations.cue.cue_validator) get_target_cdx_component() (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer static method) get_third_party_configurations() (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) (macaron.slsa_analyzer.ci_service.base_ci_service.NoneCIService method) (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) get_tuple() (macaron.slsa_analyzer.slsa_req.SLSAReqStatus method) get_url() (macaron.malware_analyzer.pypi_heuristics.metadata.similar_projects.SimilarProjectAnalyzer method) get_value() (macaron.config.target_config.Configuration method) get_vulnerabilities_package_name() (macaron.slsa_analyzer.package_registry.osv_dev.OSVDevService static method) get_vulnerabilities_package_name_batch() (macaron.slsa_analyzer.package_registry.osv_dev.OSVDevService static method) get_vulnerabilities_purl() (macaron.slsa_analyzer.package_registry.osv_dev.OSVDevService static method) get_workflow_run_for_date_time_range() (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_workflow_run_jobs() (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_workflow_runs() (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) get_workflows() (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) (macaron.slsa_analyzer.ci_service.base_ci_service.NoneCIService method) (macaron.slsa_analyzer.ci_service.circleci.CircleCI method) (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) (macaron.slsa_analyzer.ci_service.gitlab_ci.GitLabCI method) (macaron.slsa_analyzer.ci_service.jenkins.Jenkins method) (macaron.slsa_analyzer.ci_service.travis.Travis method) get_x509_der_certificate_values() (in module macaron.slsa_analyzer.provenance.loader) gh_token (macaron.config.global_config.GlobalConfig attribute) GhAPIClient (class in macaron.slsa_analyzer.git_service.api_client) git_repo (macaron.slsa_analyzer.checks.vcs_check.VCSFacts attribute) GIT_REPOS_DIR (in module macaron.slsa_analyzer.git_url) git_service (macaron.slsa_analyzer.analyze_context.ChecksOutputs attribute) GitHub (class in macaron.slsa_analyzer.git_service.github) github_actions_id (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts attribute) github_actions_version (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts attribute) GitHubActions (class in macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci) GitHubActionsBuildDefinition (class in macaron.provenance.provenance_extractor) GitHubActionsValueError GitHubActionsVulnsCheck (class in macaron.slsa_analyzer.checks.github_actions_vulnerability_check) GitHubActionsVulnsFacts (class in macaron.slsa_analyzer.checks.github_actions_vulnerability_check) GitHubJobNode (class in macaron.slsa_analyzer.ci_service.github_actions.analyzer) GitHubReleaseAsset (class in macaron.slsa_analyzer.git_service.api_client) GitHubWorkflowNode (class in macaron.slsa_analyzer.ci_service.github_actions.analyzer) GitHubWorkflowType (class in macaron.slsa_analyzer.ci_service.github_actions.analyzer) GitLab (class in macaron.slsa_analyzer.git_service.gitlab) GitLabCI (class in macaron.slsa_analyzer.ci_service.gitlab_ci) GitLabWitnessAttestor (class in macaron.slsa_analyzer.provenance.witness.attestor) GitTagError gl_self_host_token (macaron.config.global_config.GlobalConfig attribute) gl_token (macaron.config.global_config.GlobalConfig attribute) global_config (in module macaron.config.global_config) global_settings (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) global_toolchains (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) GlobalConfig (class in macaron.config.global_config) Go (class in macaron.slsa_analyzer.build_tool.go) GO (macaron.slsa_analyzer.build_tool.language.BuildLanguage attribute) goals (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) gollum (macaron.parsers.github_workflow_model.On attribute) GraalVMSetup (class in macaron.slsa_analyzer.ci_service.github_actions.analyzer) Gradle (class in macaron.slsa_analyzer.build_tool.gradle) GRADLE (macaron.build_spec_generator.cli_command_parser.PatchCommandBuildTool attribute) (macaron.build_spec_generator.reproducible_central.reproducible_central.ReproducibleCentralBuildTool attribute) gradle_user_home (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) GradleAppendedList (class in macaron.build_spec_generator.cli_command_parser.gradle_cli_parser) GradleCLICommand (class in macaron.build_spec_generator.cli_command_parser.gradle_cli_command) GradleCLICommandParser (class in macaron.build_spec_generator.cli_command_parser.gradle_cli_parser) GradleCLIOptions (class in macaron.build_spec_generator.cli_command_parser.gradle_cli_command) GradleOptionalFlag (class in macaron.build_spec_generator.cli_command_parser.gradle_cli_parser) GradleOptionalNegatableFlag (class in macaron.build_spec_generator.cli_command_parser.gradle_cli_parser) GradleProperties (class in macaron.build_spec_generator.cli_command_parser.gradle_cli_parser) GradleSingleValue (class in macaron.build_spec_generator.cli_command_parser.gradle_cli_parser) GradleTask (class in macaron.build_spec_generator.cli_command_parser.gradle_cli_parser) group (macaron.parsers.github_workflow_model.RunsOn attribute) group_id (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAsset attribute)

H

has_callee() (macaron.code_analyzer.call_graph.BaseNode method) has_kws_in_config() (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) has_kws_in_log() (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) has_latest_run_passed() (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) (macaron.slsa_analyzer.ci_service.base_ci_service.NoneCIService method) (macaron.slsa_analyzer.ci_service.circleci.CircleCI method) (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) (macaron.slsa_analyzer.ci_service.gitlab_ci.GitLabCI method) (macaron.slsa_analyzer.ci_service.jenkins.Jenkins method) (macaron.slsa_analyzer.ci_service.travis.Travis method) has_repository (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset attribute) HashDigest (class in macaron.database.table_definitions) help_ (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute)

HERMETIC (macaron.slsa_analyzer.slsa_req.ReqName attribute) HeuristicAnalyzerValueError HeuristicResult (class in macaron.malware_analyzer.pypi_heuristics.heuristics) Heuristics (class in macaron.malware_analyzer.pypi_heuristics.heuristics) HIGH (macaron.slsa_analyzer.checks.check_result.Confidence attribute) HIGH_RELEASE_FREQUENCY (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) HighReleaseFrequencyAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.high_release_frequency) HREF (macaron.slsa_analyzer.checks.check_result.JustificationType attribute) html_is_js_challenge() (in module macaron.util) HTMLReporter (class in macaron.output_reporter.reporter) HTTP_FORBIDDEN (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) HTTP_INVALID (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) HTTP_NOT_FOUND (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) HTTP_OTHER (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute)

I

id (macaron.database.table_definitions.Analysis attribute) (macaron.database.table_definitions.CheckFacts attribute) (macaron.database.table_definitions.Component attribute) (macaron.database.table_definitions.HashDigest attribute) (macaron.database.table_definitions.MappedCheckResult attribute) (macaron.database.table_definitions.Provenance attribute) (macaron.database.table_definitions.ProvenanceSubject attribute) (macaron.database.table_definitions.ReleaseArtifact attribute) (macaron.database.table_definitions.RepoFinderMetadata attribute) (macaron.database.table_definitions.Repository attribute) (macaron.database.table_definitions.SLSARequirement attribute) (macaron.parsers.github_workflow_model.Identified attribute) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolFacts attribute) (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.MaliciousMetadataFacts attribute) (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts attribute) (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.provenance_commit_check.ProvenanceDerivedCommitFacts attribute) (macaron.slsa_analyzer.checks.provenance_repo_check.ProvenanceDerivedRepoFacts attribute) (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedFacts attribute) (macaron.slsa_analyzer.checks.provenance_witness_l1_check.WitnessProvenanceAvailableFacts attribute) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderFacts attribute) (macaron.slsa_analyzer.checks.vcs_check.VCSFacts attribute) (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) (macaron.vsa.vsa.Verifier attribute) Identified (class in macaron.parsers.github_workflow_model) if (macaron.parsers.github_workflow_model.ReusableWorkflowCallJob attribute) image (macaron.parsers.github_workflow_model.Container attribute) impl (macaron.database.db_custom_types.DBJsonDict attribute) (macaron.database.db_custom_types.DBJsonList attribute) (macaron.database.db_custom_types.ProvenancePayload attribute) (macaron.database.db_custom_types.RFC3339DateTime attribute) include_build (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) infer_confidence_deploy_command() (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) infer_confidence_deploy_workflow() (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) InferredProvenance (class in macaron.slsa_analyzer.specs.inferred_provenance) info (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) init_script (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) INLINE (macaron.parsers.bashparser.BashScriptType attribute) Inputs (class in macaron.parsers.github_workflow_model) inputs (macaron.parsers.github_workflow_model.WorkflowCall attribute) (macaron.parsers.github_workflow_model.WorkflowDispatch attribute) Inputs1 (class in macaron.parsers.github_workflow_model) INSPECTOR_TEMPLATE (macaron.malware_analyzer.pypi_heuristics.metadata.wheel_absence.WheelAbsenceAnalyzer attribute) INTERNAL (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GitHubWorkflowType attribute) (macaron.slsa_analyzer.ci_service.jenkins.JenkinsNodeType attribute) interpret_file() (macaron.policy_engine.souffle.SouffleWrapper method) interpret_text() (macaron.policy_engine.souffle.SouffleWrapper method) InTotoAttestationError InTotoV01Payload (class in macaron.slsa_analyzer.provenance.intoto) InTotoV01Statement (class in macaron.slsa_analyzer.provenance.intoto.v01) InTotoV01Subject (class in macaron.slsa_analyzer.provenance.intoto.v01) InTotoV1Payload (class in macaron.slsa_analyzer.provenance.intoto) InTotoV1ResourceDescriptor (class in macaron.slsa_analyzer.provenance.intoto.v1) InTotoV1Statement (class in macaron.slsa_analyzer.provenance.intoto.v1) INVALID (macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version.Versioning attribute) INVALID_VERSION (macaron.repo_finder.repo_finder_enums.CommitFinderInfo attribute) InvalidAnalysisTargetError InvalidExpectationError InvalidHTTPResponseError InvalidPURLError

invocation_url (macaron.slsa_analyzer.specs.pypi_certificate_predicate.PyPICertificatePredicate attribute) is_action_step() (in module macaron.parsers.github_workflow_model) is_build_command() (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) is_build_tool() (macaron.build_spec_generator.cli_command_parser.CLICommandParser method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleCLICommandParser method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCLICommandParser method) is_commit_hash() (in module macaron.slsa_analyzer.git_url) is_deploy_command() (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) (macaron.slsa_analyzer.build_tool.npm.NPM method) (macaron.slsa_analyzer.build_tool.pip.Pip method) (macaron.slsa_analyzer.build_tool.poetry.Poetry method) (macaron.slsa_analyzer.build_tool.yarn.Yarn method) is_detected() (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) (macaron.slsa_analyzer.build_tool.docker.Docker method) (macaron.slsa_analyzer.build_tool.go.Go method) (macaron.slsa_analyzer.build_tool.gradle.Gradle method) (macaron.slsa_analyzer.build_tool.maven.Maven method) (macaron.slsa_analyzer.build_tool.npm.NPM method) (macaron.slsa_analyzer.build_tool.pip.Pip method) (macaron.slsa_analyzer.build_tool.poetry.Poetry method) (macaron.slsa_analyzer.build_tool.yarn.Yarn method) (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) (macaron.slsa_analyzer.git_service.base_git_service.BaseGitService method) (macaron.slsa_analyzer.git_service.base_git_service.NoneGitService method) (macaron.slsa_analyzer.package_registry.package_registry.PackageRegistry method) is_dict_of_str_to_str_or_none() (in module macaron.build_spec_generator.cli_command_parser) is_empty_repo() (in module macaron.slsa_analyzer.git_url) is_expression() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer) is_inferred_prov (macaron.slsa_analyzer.analyze_context.ChecksOutputs attribute) is_inferred_provenance (macaron.slsa_analyzer.analyze_context.AnalyzeContext property) is_list_of_strs() (in module macaron.build_spec_generator.cli_command_parser) is_normal_job() (in module macaron.parsers.github_workflow_model) is_package_command() (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) (macaron.slsa_analyzer.build_tool.npm.NPM method) (macaron.slsa_analyzer.build_tool.pip.Pip method) (macaron.slsa_analyzer.build_tool.poetry.Poetry method) (macaron.slsa_analyzer.build_tool.yarn.Yarn method) is_parsed_obj_action_step() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer) is_parsed_obj_reusable_workflow_call_job() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer) is_parsed_obj_workflow() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer) is_remote_repo() (in module macaron.slsa_analyzer.git_url) is_reusable_workflow_call_job() (in module macaron.parsers.github_workflow_model) is_run_step() (in module macaron.parsers.github_workflow_model) is_slsa_provenance_payload() (in module macaron.slsa_analyzer.provenance.slsa) is_valid_digest_set() (in module macaron.slsa_analyzer.provenance.intoto.v01) (in module macaron.slsa_analyzer.provenance.intoto.v1) is_valid_email() (macaron.malware_analyzer.pypi_heuristics.metadata.fake_email.FakeEmailAnalyzer method) is_valid_patch_option() (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleAppendedList method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleOptionalFlag method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleOptionalNegatableFlag method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleProperties method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleSingleValue method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleTask method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCommaDelimList method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenGoalPhase method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenOptionalFlag method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenSingleValue method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenSystemProperties method) (macaron.build_spec_generator.cli_command_parser.OptionDef method) is_version_affected() (macaron.slsa_analyzer.package_registry.osv_dev.OSVDevService static method) is_witness_provenance_payload() (in module macaron.slsa_analyzer.provenance.witness) ISOLATED (macaron.slsa_analyzer.slsa_req.ReqName attribute) issue_comment (macaron.parsers.github_workflow_model.On attribute) issues (macaron.parsers.github_workflow_model.On attribute) iter_sourcecode() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method)

J

j2_filter_get_check_result_color() (in module macaron.output_reporter.jinja2_extensions) j2_filter_get_dep_status_color() (in module macaron.output_reporter.jinja2_extensions) j2_filter_get_flatten_dict() (in module macaron.output_reporter.jinja2_extensions) j2_filter_get_headers() (in module macaron.output_reporter.jinja2_extensions) j2_test_list() (in module macaron.output_reporter.jinja2_extensions) j2_test_python_enum() (in module macaron.output_reporter.jinja2_extensions) JAR (macaron.build_spec_generator.jdk_finder.JavaArtifactExt attribute) jaro_distance() (macaron.malware_analyzer.pypi_heuristics.metadata.typosquatting_presence.TyposquattingPresenceAnalyzer method) JAVA (macaron.slsa_analyzer.build_tool.language.BuildLanguage attribute) JavaArtifactExt (class in macaron.build_spec_generator.jdk_finder) JavaRepoFinder (class in macaron.repo_finder.repo_finder_java) JAVASCRIPT (macaron.slsa_analyzer.build_tool.language.BuildLanguage attribute)

Jenkins (class in macaron.slsa_analyzer.ci_service.jenkins) JenkinsNode (class in macaron.slsa_analyzer.ci_service.jenkins) JenkinsNodeType (class in macaron.slsa_analyzer.ci_service.jenkins) jfrog_maven_registry (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAsset attribute) JFrogMavenAsset (class in macaron.slsa_analyzer.package_registry.jfrog_maven_registry) JFrogMavenAssetMetadata (class in macaron.slsa_analyzer.package_registry.jfrog_maven_registry) JFrogMavenRegistry (class in macaron.slsa_analyzer.package_registry.jfrog_maven_registry) join_remote_maven_repo_url() (in module macaron.build_spec_generator.jdk_finder) json_extract() (in module macaron.json_tools) JSONReporter (class in macaron.output_reporter.reporter) justification_report (macaron.slsa_analyzer.checks.check_result.CheckResultData property) JustificationType (class in macaron.slsa_analyzer.checks.check_result)

K

KEYBOARD_LAYOUT (macaron.malware_analyzer.pypi_heuristics.metadata.typosquatting_presence.TyposquattingPresenceAnalyzer attribute)

known_malware (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.MaliciousMetadataFacts attribute)

L

label (macaron.parsers.github_workflow_model.On attribute) labels (macaron.parsers.github_workflow_model.RunsOn attribute) lang_distributions (macaron.slsa_analyzer.build_tool.language.Language property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GraalVMSetup property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.OracleSetupJava property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.SetupJava property) lang_name (macaron.slsa_analyzer.build_tool.language.Language property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GraalVMSetup property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.OracleSetupJava property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.SetupJava property) lang_url (macaron.slsa_analyzer.build_tool.language.Language property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GraalVMSetup property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.OracleSetupJava property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.SetupJava property) lang_versions (macaron.slsa_analyzer.build_tool.language.Language property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GraalVMSetup property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.OracleSetupJava property) (macaron.slsa_analyzer.ci_service.github_actions.analyzer.SetupJava property) Language (class in macaron.slsa_analyzer.build_tool.language) language (macaron.build_spec_generator.macaron_db_extractor.GenericBuildCommandInfo attribute) (macaron.slsa_analyzer.build_tool.base_build_tool.BuildToolCommand attribute) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolFacts attribute) language_distributions (macaron.slsa_analyzer.build_tool.base_build_tool.BuildToolCommand attribute) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) language_url (macaron.slsa_analyzer.build_tool.base_build_tool.BuildToolCommand attribute) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) language_versions (macaron.build_spec_generator.macaron_db_extractor.GenericBuildCommandInfo attribute) (macaron.slsa_analyzer.build_tool.base_build_tool.BuildToolCommand attribute) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeFacts attribute) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptFacts attribute) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceFacts attribute) LATEST_VERSION_INVALID (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) lax_checksums (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) LEVEL0 (macaron.slsa_analyzer.levels.SLSALevels attribute) LEVEL1 (macaron.slsa_analyzer.levels.SLSALevels attribute) LEVEL2 (macaron.slsa_analyzer.levels.SLSALevels attribute) LEVEL3 (macaron.slsa_analyzer.levels.SLSALevels attribute) LEVEL4 (macaron.slsa_analyzer.levels.SLSALevels attribute) list_remote_references() (in module macaron.slsa_analyzer.git_url) load() (macaron.config.global_config.GlobalConfig method) (macaron.parsers.yaml.loader.YamlLoader class method) load_csv_output() (macaron.policy_engine.souffle.SouffleWrapper method) load_defaults() (in module macaron.config.defaults) (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) (macaron.slsa_analyzer.build_tool.docker.Docker method) (macaron.slsa_analyzer.build_tool.go.Go method) (macaron.slsa_analyzer.build_tool.gradle.Gradle method) (macaron.slsa_analyzer.build_tool.maven.Maven method) (macaron.slsa_analyzer.build_tool.npm.NPM method) (macaron.slsa_analyzer.build_tool.pip.Pip method) (macaron.slsa_analyzer.build_tool.poetry.Poetry method) (macaron.slsa_analyzer.build_tool.yarn.Yarn method) (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) (macaron.slsa_analyzer.ci_service.base_ci_service.NoneCIService method) (macaron.slsa_analyzer.ci_service.circleci.CircleCI method) (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) (macaron.slsa_analyzer.ci_service.gitlab_ci.GitLabCI method) (macaron.slsa_analyzer.ci_service.jenkins.Jenkins method) (macaron.slsa_analyzer.ci_service.travis.Travis method) (macaron.slsa_analyzer.git_service.base_git_service.BaseGitService method) (macaron.slsa_analyzer.git_service.base_git_service.NoneGitService method) (macaron.slsa_analyzer.git_service.bitbucket.BitBucket method) (macaron.slsa_analyzer.git_service.github.GitHub method) (macaron.slsa_analyzer.git_service.gitlab.GitLab method) (macaron.slsa_analyzer.git_service.gitlab.PubliclyHostedGitLab method) (macaron.slsa_analyzer.git_service.gitlab.SelfHostedGitLab method) (macaron.slsa_analyzer.git_service.local_repo_git_service.LocalRepoGitService method) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenRegistry method) (macaron.slsa_analyzer.package_registry.maven_central_registry.MavenCentralRegistry method) (macaron.slsa_analyzer.package_registry.npm_registry.NPMRegistry method) (macaron.slsa_analyzer.package_registry.package_registry.PackageRegistry method) (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIRegistry method)

load_expectation_files() (macaron.config.global_config.GlobalConfig method) load_hostname() (macaron.slsa_analyzer.git_service.base_git_service.BaseGitService method) load_provenance_file() (in module macaron.slsa_analyzer.provenance.loader) load_provenance_payload() (in module macaron.slsa_analyzer.provenance.loader) load_python_venv() (macaron.config.global_config.GlobalConfig method) load_witness_verifier_config() (in module macaron.slsa_analyzer.provenance.witness) LoadIntotoAttestationError local_artifact_paths (macaron.slsa_analyzer.analyze_context.ChecksOutputs attribute) local_maven_repo (macaron.config.global_config.GlobalConfig attribute) local_repos_path (macaron.config.global_config.GlobalConfig attribute) LocalArtifactFinderError LocalRepoGitService (class in macaron.slsa_analyzer.git_service.local_repo_git_service) log_file (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) logger (in module macaron.config.target_config) long_name (macaron.build_spec_generator.cli_command_parser.OptionDef attribute) lookup_any_build_command() (in module macaron.build_spec_generator.macaron_db_extractor) lookup_build_as_code_check() (in module macaron.build_spec_generator.macaron_db_extractor) lookup_build_script_check() (in module macaron.build_spec_generator.macaron_db_extractor) lookup_build_service_check() (in module macaron.build_spec_generator.macaron_db_extractor) lookup_build_tools_check() (in module macaron.build_spec_generator.macaron_db_extractor) lookup_latest_component() (in module macaron.build_spec_generator.macaron_db_extractor) lookup_multiple() (in module macaron.build_spec_generator.macaron_db_extractor) lookup_one_or_none() (in module macaron.build_spec_generator.macaron_db_extractor) LOW (macaron.slsa_analyzer.checks.check_result.Confidence attribute)

M

macaron module macaron.build_spec_generator module macaron.build_spec_generator.build_command_patcher module macaron.build_spec_generator.build_spec_generator module macaron.build_spec_generator.cli_command_parser module macaron.build_spec_generator.cli_command_parser.gradle_cli_command module macaron.build_spec_generator.cli_command_parser.gradle_cli_parser module macaron.build_spec_generator.cli_command_parser.maven_cli_command module macaron.build_spec_generator.cli_command_parser.maven_cli_parser module macaron.build_spec_generator.cli_command_parser.unparsed_cli_command module macaron.build_spec_generator.jdk_finder module macaron.build_spec_generator.jdk_version_normalizer module macaron.build_spec_generator.macaron_db_extractor module macaron.build_spec_generator.reproducible_central module macaron.build_spec_generator.reproducible_central.reproducible_central module macaron.code_analyzer module macaron.code_analyzer.call_graph module macaron.config module macaron.config.defaults module macaron.config.global_config module macaron.config.target_config module macaron.console module macaron.database module macaron.database.database_manager module macaron.database.db_custom_types module macaron.database.table_definitions module macaron.database.views module macaron.dependency_analyzer module macaron.dependency_analyzer.cyclonedx module macaron.dependency_analyzer.cyclonedx_python module macaron.environment_variables module macaron.errors module macaron.json_tools module macaron.malware_analyzer module macaron.malware_analyzer.datetime_parser module macaron.malware_analyzer.pypi_heuristics module macaron.malware_analyzer.pypi_heuristics.base_analyzer module macaron.malware_analyzer.pypi_heuristics.heuristics module macaron.malware_analyzer.pypi_heuristics.metadata module macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version module macaron.malware_analyzer.pypi_heuristics.metadata.closer_release_join_date module macaron.malware_analyzer.pypi_heuristics.metadata.empty_project_link module macaron.malware_analyzer.pypi_heuristics.metadata.fake_email module macaron.malware_analyzer.pypi_heuristics.metadata.high_release_frequency module macaron.malware_analyzer.pypi_heuristics.metadata.one_release module macaron.malware_analyzer.pypi_heuristics.metadata.package_description_intent module macaron.malware_analyzer.pypi_heuristics.metadata.similar_projects module macaron.malware_analyzer.pypi_heuristics.metadata.source_code_repo module macaron.malware_analyzer.pypi_heuristics.metadata.stub_name module macaron.malware_analyzer.pypi_heuristics.metadata.type_stub_file module macaron.malware_analyzer.pypi_heuristics.metadata.typosquatting_presence module macaron.malware_analyzer.pypi_heuristics.metadata.unchanged_release module macaron.malware_analyzer.pypi_heuristics.metadata.wheel_absence module macaron.malware_analyzer.pypi_heuristics.sourcecode module macaron.malware_analyzer.pypi_heuristics.sourcecode.pypi_sourcecode_analyzer module macaron.malware_analyzer.pypi_heuristics.sourcecode.suspicious_setup module macaron.output_reporter module macaron.output_reporter.jinja2_extensions module macaron.output_reporter.reporter module macaron.output_reporter.results module macaron.output_reporter.scm module macaron.parsers module macaron.parsers.actionparser module macaron.parsers.bashparser module macaron.parsers.github_workflow_model module macaron.parsers.pomparser module macaron.parsers.yaml module macaron.parsers.yaml.loader module macaron.path_utils module macaron.path_utils.purl_based_path module macaron.policy_engine module macaron.policy_engine.policy_engine module macaron.policy_engine.souffle module macaron.policy_engine.souffle_code_generator module macaron.provenance module macaron.provenance.provenance_extractor module macaron.provenance.provenance_finder module macaron.provenance.provenance_verifier module macaron.repo_finder module macaron.repo_finder.commit_finder module macaron.repo_finder.repo_finder module macaron.repo_finder.repo_finder_base module macaron.repo_finder.repo_finder_deps_dev module macaron.repo_finder.repo_finder_enums module macaron.repo_finder.repo_finder_java module macaron.repo_finder.repo_finder_pypi module macaron.repo_finder.repo_utils module macaron.repo_finder.repo_validator module macaron.repo_verifier module macaron.repo_verifier.repo_verifier module macaron.repo_verifier.repo_verifier_base module macaron.repo_verifier.repo_verifier_gradle module macaron.repo_verifier.repo_verifier_maven module macaron.slsa_analyzer module macaron.slsa_analyzer.analyze_context module macaron.slsa_analyzer.analyzer module macaron.slsa_analyzer.asset module macaron.slsa_analyzer.build_tool module macaron.slsa_analyzer.build_tool.base_build_tool module macaron.slsa_analyzer.build_tool.docker module macaron.slsa_analyzer.build_tool.go module macaron.slsa_analyzer.build_tool.gradle module macaron.slsa_analyzer.build_tool.language module macaron.slsa_analyzer.build_tool.maven module macaron.slsa_analyzer.build_tool.npm module macaron.slsa_analyzer.build_tool.pip module macaron.slsa_analyzer.build_tool.poetry module macaron.slsa_analyzer.build_tool.yarn module macaron.slsa_analyzer.checks module macaron.slsa_analyzer.checks.base_check module macaron.slsa_analyzer.checks.build_as_code_check module macaron.slsa_analyzer.checks.build_script_check module macaron.slsa_analyzer.checks.build_service_check module macaron.slsa_analyzer.checks.build_tool_check module macaron.slsa_analyzer.checks.check_result module macaron.slsa_analyzer.checks.detect_malicious_metadata_check module macaron.slsa_analyzer.checks.github_actions_vulnerability_check module macaron.slsa_analyzer.checks.infer_artifact_pipeline_check module macaron.slsa_analyzer.checks.provenance_available_check module macaron.slsa_analyzer.checks.provenance_commit_check module macaron.slsa_analyzer.checks.provenance_l3_content_check module macaron.slsa_analyzer.checks.provenance_repo_check module macaron.slsa_analyzer.checks.provenance_verified_check module macaron.slsa_analyzer.checks.provenance_witness_l1_check module macaron.slsa_analyzer.checks.scm_authenticity_check module macaron.slsa_analyzer.checks.trusted_builder_l3_check module macaron.slsa_analyzer.checks.vcs_check module macaron.slsa_analyzer.ci_service module macaron.slsa_analyzer.ci_service.base_ci_service module macaron.slsa_analyzer.ci_service.circleci module macaron.slsa_analyzer.ci_service.github_actions module macaron.slsa_analyzer.ci_service.github_actions.analyzer module macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci module macaron.slsa_analyzer.ci_service.gitlab_ci module macaron.slsa_analyzer.ci_service.jenkins module macaron.slsa_analyzer.ci_service.travis module macaron.slsa_analyzer.database_store module macaron.slsa_analyzer.git_service module macaron.slsa_analyzer.git_service.api_client module macaron.slsa_analyzer.git_service.base_git_service module macaron.slsa_analyzer.git_service.bitbucket module macaron.slsa_analyzer.git_service.github module macaron.slsa_analyzer.git_service.gitlab module macaron.slsa_analyzer.git_service.local_repo_git_service module

macaron.slsa_analyzer.git_url module macaron.slsa_analyzer.levels module macaron.slsa_analyzer.package_registry module macaron.slsa_analyzer.package_registry.deps_dev module macaron.slsa_analyzer.package_registry.jfrog_maven_registry module macaron.slsa_analyzer.package_registry.maven_central_registry module macaron.slsa_analyzer.package_registry.npm_registry module macaron.slsa_analyzer.package_registry.osv_dev module macaron.slsa_analyzer.package_registry.package_registry module macaron.slsa_analyzer.package_registry.pypi_registry module macaron.slsa_analyzer.provenance module macaron.slsa_analyzer.provenance.expectations module macaron.slsa_analyzer.provenance.expectations.cue module macaron.slsa_analyzer.provenance.expectations.cue.cue_validator module macaron.slsa_analyzer.provenance.expectations.expectation module macaron.slsa_analyzer.provenance.expectations.expectation_registry module macaron.slsa_analyzer.provenance.intoto module macaron.slsa_analyzer.provenance.intoto.errors module macaron.slsa_analyzer.provenance.intoto.v01 module macaron.slsa_analyzer.provenance.intoto.v1 module macaron.slsa_analyzer.provenance.loader module macaron.slsa_analyzer.provenance.provenance module macaron.slsa_analyzer.provenance.slsa module macaron.slsa_analyzer.provenance.witness module macaron.slsa_analyzer.provenance.witness.attestor module macaron.slsa_analyzer.registry module macaron.slsa_analyzer.slsa_req module macaron.slsa_analyzer.specs module macaron.slsa_analyzer.specs.build_spec module macaron.slsa_analyzer.specs.ci_spec module macaron.slsa_analyzer.specs.inferred_provenance module macaron.slsa_analyzer.specs.package_registry_spec module macaron.slsa_analyzer.specs.pypi_certificate_predicate module macaron.util module macaron.vsa module macaron.vsa.vsa module macaron_path (macaron.config.global_config.GlobalConfig attribute) macaron_version (macaron.database.table_definitions.Analysis attribute) MacaronError make_expectation() (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation class method) (macaron.slsa_analyzer.provenance.expectations.expectation.Expectation class method) make_layout() (macaron.console.RichConsoleHandler method) MaliciousMetadataFacts (class in macaron.slsa_analyzer.checks.detect_malicious_metadata_check) malware_rules_problog_model (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.DetectMaliciousMetadataCheck attribute) MappedCheckResult (class in macaron.database.table_definitions) match_cmd_args() (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) match_tags() (in module macaron.repo_finder.commit_finder) MATCHED (macaron.repo_finder.repo_finder_enums.CommitFinderInfo attribute) Maven (class in macaron.slsa_analyzer.build_tool.maven) MAVEN (macaron.build_spec_generator.cli_command_parser.PatchCommandBuildTool attribute) (macaron.build_spec_generator.reproducible_central.reproducible_central.ReproducibleCentralBuildTool attribute) (macaron.repo_finder.repo_finder_deps_dev.DepsDevType attribute) MAVEN_LAYOUT (macaron.build_spec_generator.jdk_finder.CacheStrategy attribute) MavenCentralRegistry (class in macaron.slsa_analyzer.package_registry.maven_central_registry) MavenCLICommand (class in macaron.build_spec_generator.cli_command_parser.maven_cli_command) MavenCLICommandParser (class in macaron.build_spec_generator.cli_command_parser.maven_cli_parser) MavenCLIOptions (class in macaron.build_spec_generator.cli_command_parser.maven_cli_command) MavenCommaDelimList (class in macaron.build_spec_generator.cli_command_parser.maven_cli_parser) MavenGoalPhase (class in macaron.build_spec_generator.cli_command_parser.maven_cli_parser) MavenOptionalFlag (class in macaron.build_spec_generator.cli_command_parser.maven_cli_parser) MavenSingleValue (class in macaron.build_spec_generator.cli_command_parser.maven_cli_parser) MavenSystemProperties (class in macaron.build_spec_generator.cli_command_parser.maven_cli_parser) max_workers (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) media_type (macaron.slsa_analyzer.provenance.intoto.v1.InTotoV1ResourceDescriptor attribute) MEDIUM (macaron.slsa_analyzer.checks.check_result.Confidence attribute) merge_group (macaron.parsers.github_workflow_model.On attribute) metadata (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAsset attribute) (macaron.slsa_analyzer.specs.package_registry_spec.PackageRegistryInfo attribute) milestone (macaron.parsers.github_workflow_model.On attribute) MISSING_SCM (macaron.output_reporter.scm.SCMStatus attribute) module macaron macaron.build_spec_generator macaron.build_spec_generator.build_command_patcher macaron.build_spec_generator.build_spec_generator macaron.build_spec_generator.cli_command_parser macaron.build_spec_generator.cli_command_parser.gradle_cli_command macaron.build_spec_generator.cli_command_parser.gradle_cli_parser macaron.build_spec_generator.cli_command_parser.maven_cli_command macaron.build_spec_generator.cli_command_parser.maven_cli_parser macaron.build_spec_generator.cli_command_parser.unparsed_cli_command macaron.build_spec_generator.jdk_finder macaron.build_spec_generator.jdk_version_normalizer macaron.build_spec_generator.macaron_db_extractor macaron.build_spec_generator.reproducible_central macaron.build_spec_generator.reproducible_central.reproducible_central macaron.code_analyzer macaron.code_analyzer.call_graph macaron.config macaron.config.defaults macaron.config.global_config macaron.config.target_config macaron.console macaron.database macaron.database.database_manager macaron.database.db_custom_types macaron.database.table_definitions macaron.database.views macaron.dependency_analyzer macaron.dependency_analyzer.cyclonedx macaron.dependency_analyzer.cyclonedx_python macaron.environment_variables macaron.errors macaron.json_tools macaron.malware_analyzer macaron.malware_analyzer.datetime_parser macaron.malware_analyzer.pypi_heuristics macaron.malware_analyzer.pypi_heuristics.base_analyzer macaron.malware_analyzer.pypi_heuristics.heuristics macaron.malware_analyzer.pypi_heuristics.metadata macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version macaron.malware_analyzer.pypi_heuristics.metadata.closer_release_join_date macaron.malware_analyzer.pypi_heuristics.metadata.empty_project_link macaron.malware_analyzer.pypi_heuristics.metadata.fake_email macaron.malware_analyzer.pypi_heuristics.metadata.high_release_frequency macaron.malware_analyzer.pypi_heuristics.metadata.one_release macaron.malware_analyzer.pypi_heuristics.metadata.package_description_intent macaron.malware_analyzer.pypi_heuristics.metadata.similar_projects macaron.malware_analyzer.pypi_heuristics.metadata.source_code_repo macaron.malware_analyzer.pypi_heuristics.metadata.stub_name macaron.malware_analyzer.pypi_heuristics.metadata.type_stub_file macaron.malware_analyzer.pypi_heuristics.metadata.typosquatting_presence macaron.malware_analyzer.pypi_heuristics.metadata.unchanged_release macaron.malware_analyzer.pypi_heuristics.metadata.wheel_absence macaron.malware_analyzer.pypi_heuristics.sourcecode macaron.malware_analyzer.pypi_heuristics.sourcecode.pypi_sourcecode_analyzer macaron.malware_analyzer.pypi_heuristics.sourcecode.suspicious_setup macaron.output_reporter macaron.output_reporter.jinja2_extensions macaron.output_reporter.reporter macaron.output_reporter.results macaron.output_reporter.scm macaron.parsers macaron.parsers.actionparser macaron.parsers.bashparser macaron.parsers.github_workflow_model macaron.parsers.pomparser macaron.parsers.yaml macaron.parsers.yaml.loader macaron.path_utils macaron.path_utils.purl_based_path macaron.policy_engine macaron.policy_engine.policy_engine macaron.policy_engine.souffle macaron.policy_engine.souffle_code_generator macaron.provenance macaron.provenance.provenance_extractor macaron.provenance.provenance_finder macaron.provenance.provenance_verifier macaron.repo_finder macaron.repo_finder.commit_finder macaron.repo_finder.repo_finder macaron.repo_finder.repo_finder_base macaron.repo_finder.repo_finder_deps_dev macaron.repo_finder.repo_finder_enums macaron.repo_finder.repo_finder_java macaron.repo_finder.repo_finder_pypi macaron.repo_finder.repo_utils macaron.repo_finder.repo_validator macaron.repo_verifier macaron.repo_verifier.repo_verifier macaron.repo_verifier.repo_verifier_base macaron.repo_verifier.repo_verifier_gradle macaron.repo_verifier.repo_verifier_maven macaron.slsa_analyzer macaron.slsa_analyzer.analyze_context macaron.slsa_analyzer.analyzer macaron.slsa_analyzer.asset macaron.slsa_analyzer.build_tool macaron.slsa_analyzer.build_tool.base_build_tool macaron.slsa_analyzer.build_tool.docker macaron.slsa_analyzer.build_tool.go macaron.slsa_analyzer.build_tool.gradle macaron.slsa_analyzer.build_tool.language macaron.slsa_analyzer.build_tool.maven macaron.slsa_analyzer.build_tool.npm macaron.slsa_analyzer.build_tool.pip macaron.slsa_analyzer.build_tool.poetry macaron.slsa_analyzer.build_tool.yarn macaron.slsa_analyzer.checks macaron.slsa_analyzer.checks.base_check macaron.slsa_analyzer.checks.build_as_code_check macaron.slsa_analyzer.checks.build_script_check macaron.slsa_analyzer.checks.build_service_check macaron.slsa_analyzer.checks.build_tool_check macaron.slsa_analyzer.checks.check_result macaron.slsa_analyzer.checks.detect_malicious_metadata_check macaron.slsa_analyzer.checks.github_actions_vulnerability_check macaron.slsa_analyzer.checks.infer_artifact_pipeline_check macaron.slsa_analyzer.checks.provenance_available_check macaron.slsa_analyzer.checks.provenance_commit_check macaron.slsa_analyzer.checks.provenance_l3_content_check macaron.slsa_analyzer.checks.provenance_repo_check macaron.slsa_analyzer.checks.provenance_verified_check macaron.slsa_analyzer.checks.provenance_witness_l1_check macaron.slsa_analyzer.checks.scm_authenticity_check macaron.slsa_analyzer.checks.trusted_builder_l3_check macaron.slsa_analyzer.checks.vcs_check macaron.slsa_analyzer.ci_service macaron.slsa_analyzer.ci_service.base_ci_service macaron.slsa_analyzer.ci_service.circleci macaron.slsa_analyzer.ci_service.github_actions macaron.slsa_analyzer.ci_service.github_actions.analyzer macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci macaron.slsa_analyzer.ci_service.gitlab_ci macaron.slsa_analyzer.ci_service.jenkins macaron.slsa_analyzer.ci_service.travis macaron.slsa_analyzer.database_store macaron.slsa_analyzer.git_service macaron.slsa_analyzer.git_service.api_client macaron.slsa_analyzer.git_service.base_git_service macaron.slsa_analyzer.git_service.bitbucket macaron.slsa_analyzer.git_service.github macaron.slsa_analyzer.git_service.gitlab macaron.slsa_analyzer.git_service.local_repo_git_service macaron.slsa_analyzer.git_url macaron.slsa_analyzer.levels macaron.slsa_analyzer.package_registry macaron.slsa_analyzer.package_registry.deps_dev macaron.slsa_analyzer.package_registry.jfrog_maven_registry macaron.slsa_analyzer.package_registry.maven_central_registry macaron.slsa_analyzer.package_registry.npm_registry macaron.slsa_analyzer.package_registry.osv_dev macaron.slsa_analyzer.package_registry.package_registry macaron.slsa_analyzer.package_registry.pypi_registry macaron.slsa_analyzer.provenance macaron.slsa_analyzer.provenance.expectations macaron.slsa_analyzer.provenance.expectations.cue macaron.slsa_analyzer.provenance.expectations.cue.cue_validator macaron.slsa_analyzer.provenance.expectations.expectation macaron.slsa_analyzer.provenance.expectations.expectation_registry macaron.slsa_analyzer.provenance.intoto macaron.slsa_analyzer.provenance.intoto.errors macaron.slsa_analyzer.provenance.intoto.v01 macaron.slsa_analyzer.provenance.intoto.v1 macaron.slsa_analyzer.provenance.loader macaron.slsa_analyzer.provenance.provenance macaron.slsa_analyzer.provenance.slsa macaron.slsa_analyzer.provenance.witness macaron.slsa_analyzer.provenance.witness.attestor macaron.slsa_analyzer.registry macaron.slsa_analyzer.slsa_req macaron.slsa_analyzer.specs macaron.slsa_analyzer.specs.build_spec macaron.slsa_analyzer.specs.ci_spec macaron.slsa_analyzer.specs.inferred_provenance macaron.slsa_analyzer.specs.package_registry_spec macaron.slsa_analyzer.specs.pypi_certificate_predicate macaron.util macaron.vsa macaron.vsa.vsa

N

name (macaron.database.table_definitions.Component attribute) (macaron.database.table_definitions.PackageURLMixin attribute) (macaron.database.table_definitions.ReleaseArtifact attribute) (macaron.database.table_definitions.Repository attribute) (macaron.parsers.github_workflow_model.Environment attribute) (macaron.parsers.github_workflow_model.ReusableWorkflowCallJob attribute) (macaron.provenance.provenance_finder.ProvenanceAsset attribute) (macaron.slsa_analyzer.asset.AssetLocator property) (macaron.slsa_analyzer.asset.VirtualReleaseAsset attribute) (macaron.slsa_analyzer.checks.check_result.Evidence attribute) (macaron.slsa_analyzer.git_service.api_client.GitHubReleaseAsset attribute) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAsset attribute) (macaron.slsa_analyzer.package_registry.npm_registry.NPMAttestationAsset property) (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset property) (macaron.slsa_analyzer.provenance.intoto.v01.InTotoV01Subject attribute) (macaron.slsa_analyzer.provenance.intoto.v1.InTotoV1ResourceDescriptor attribute) namespace (macaron.database.table_definitions.Component attribute) (macaron.database.table_definitions.PackageURLMixin attribute) (macaron.slsa_analyzer.package_registry.npm_registry.NPMAttestationAsset attribute) needs (macaron.parsers.github_workflow_model.ReusableWorkflowCallJob attribute) NO_MAVEN_HOST_PROVIDED (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) NO_NEWER_VERSION (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) no_of_checks() (macaron.console.RichConsoleHandler method) NO_POM_TAGS_PROVIDED (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute)

no_rebuild (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) no_snapshot_updates (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) NO_TAG_COMMIT (macaron.repo_finder.repo_finder_enums.CommitFinderInfo attribute) NO_TAGS (macaron.repo_finder.repo_finder_enums.CommitFinderInfo attribute) NO_TAGS_MATCHED (macaron.repo_finder.repo_finder_enums.CommitFinderInfo attribute) no_transfer_progress (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) NO_VERSION_PROVIDED (macaron.repo_finder.repo_finder_enums.CommitFinderInfo attribute) (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) non_recursive (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) NONE (macaron.parsers.bashparser.BashScriptType attribute) NoneCIService (class in macaron.slsa_analyzer.ci_service.base_ci_service) NoneDependencyAnalyzer (class in macaron.dependency_analyzer.cyclonedx) NoneGitService (class in macaron.slsa_analyzer.git_service.base_git_service) normalize() (macaron.slsa_analyzer.checks.check_result.Confidence class method) normalize_jdk_version() (in module macaron.build_spec_generator.jdk_version_normalizer) NOT_USED (macaron.repo_finder.repo_finder_enums.CommitFinderInfo attribute) (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) note (macaron.dependency_analyzer.cyclonedx.DependencyInfo attribute) NPM (class in macaron.slsa_analyzer.build_tool.npm) (macaron.repo_finder.repo_finder_deps_dev.DepsDevType attribute) npm_registry (macaron.slsa_analyzer.package_registry.npm_registry.NPMAttestationAsset attribute) NPMAttestationAsset (class in macaron.slsa_analyzer.package_registry.npm_registry) NPMRegistry (class in macaron.slsa_analyzer.package_registry.npm_registry) NUGET (macaron.repo_finder.repo_finder_deps_dev.DepsDevType attribute)

O

obj (macaron.parsers.github_workflow_model.Identified attribute) offline (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) On (class in macaron.parsers.github_workflow_model) ONE_RELEASE (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) OneReleaseAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.one_release) OptionDef (class in macaron.build_spec_generator.cli_command_parser) options (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLICommand attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLICommand attribute) (macaron.parsers.github_workflow_model.Container attribute) (macaron.parsers.github_workflow_model.Inputs1 attribute)

OracleSetupJava (class in macaron.slsa_analyzer.ci_service.github_actions.analyzer) original_cmds (macaron.build_spec_generator.cli_command_parser.unparsed_cli_command.UnparsedCLICommand attribute) OSVDevService (class in macaron.slsa_analyzer.package_registry.osv_dev) output_path (macaron.config.global_config.GlobalConfig attribute) owner (macaron.database.table_definitions.Repository attribute)

P

PACKAGE_DESCRIPTION_INTENT (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) package_json (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset attribute) package_registries (macaron.slsa_analyzer.analyze_context.ChecksOutputs attribute) package_registry (macaron.slsa_analyzer.specs.package_registry_spec.PackageRegistryInfo attribute) package_sourcecode_path (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset attribute) PackageDescriptionIntentAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.package_description_intent) PackageRegistry (class in macaron.slsa_analyzer.package_registry.package_registry) PackageRegistryInfo (class in macaron.slsa_analyzer.specs.package_registry_spec) PackageURLMixin (class in macaron.database.table_definitions) page_build (macaron.parsers.github_workflow_model.On attribute) parallel (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) PARAMETERLESS (macaron.slsa_analyzer.slsa_req.ReqName attribute) parse() (in module macaron.parsers.actionparser) (in module macaron.parsers.bashparser) (macaron.build_spec_generator.cli_command_parser.CLICommandParser method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleCLICommandParser method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCLICommandParser method) parse_comma_sep_list() (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions static method) parse_datetime() (in module macaron.malware_analyzer.datetime_parser) parse_file() (in module macaron.parsers.bashparser) parse_git_branch_output() (in module macaron.slsa_analyzer.git_url) parse_git_tags() (in module macaron.slsa_analyzer.git_url) parse_pom_string() (in module macaron.parsers.pomparser) parse_properties() (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions static method) parse_purl() (macaron.slsa_analyzer.analyzer.Analyzer static method) parse_remote_url() (in module macaron.slsa_analyzer.git_url) parse_system_properties() (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions static method) parsed_purl (macaron.slsa_analyzer.analyzer.Analyzer.AnalysisTarget attribute) ParseError PASS (macaron.malware_analyzer.pypi_heuristics.heuristics.HeuristicResult attribute) passed (macaron.database.table_definitions.MappedCheckResult attribute) PASSED (macaron.repo_verifier.repo_verifier_base.RepositoryVerificationStatus attribute) (macaron.slsa_analyzer.checks.check_result.CheckResultType attribute) (macaron.vsa.vsa.VerificationResult attribute) password (macaron.parsers.github_workflow_model.Credentials attribute) patch_commands() (in module macaron.build_spec_generator.build_command_patcher) patch_mapping() (in module macaron.build_spec_generator.cli_command_parser) PatchBuildCommandError PatchCommandBuildTool (class in macaron.build_spec_generator.cli_command_parser) path (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) (macaron.slsa_analyzer.provenance.expectations.expectation.Expectation attribute) PATTERN (macaron.malware_analyzer.pypi_heuristics.metadata.fake_email.FakeEmailAnalyzer attribute) payload (macaron.provenance.provenance_finder.ProvenanceAsset attribute) (macaron.slsa_analyzer.provenance.provenance.DownloadedProvenanceData property) (macaron.slsa_analyzer.provenance.slsa.SLSAProvenanceData attribute) (macaron.slsa_analyzer.provenance.witness.WitnessProvenanceData attribute) (macaron.vsa.vsa.Vsa attribute) payloadType (macaron.vsa.vsa.Vsa attribute) permissions (macaron.parsers.github_workflow_model.ReusableWorkflowCallJob attribute) Pip (class in macaron.slsa_analyzer.build_tool.pip) Poetry (class in macaron.slsa_analyzer.build_tool.poetry) Policy (class in macaron.vsa.vsa) policy (macaron.vsa.vsa.VsaPredicate attribute) PolicyReporter (class in macaron.output_reporter.reporter) POM_READ_ERROR (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) ports (macaron.parsers.github_workflow_model.Container attribute) pre_config (macaron.output_reporter.results.Record attribute) predicate (macaron.slsa_analyzer.provenance.intoto.v01.InTotoV01Statement attribute) (macaron.slsa_analyzer.provenance.intoto.v1.InTotoV1Statement attribute) (macaron.vsa.vsa.VsaStatement attribute) predicate_types (macaron.slsa_analyzer.provenance.witness.WitnessVerifierConfig attribute) predicateType (macaron.slsa_analyzer.provenance.intoto.v01.InTotoV01Statement attribute) (macaron.slsa_analyzer.provenance.intoto.v1.InTotoV1Statement attribute) (macaron.vsa.vsa.VsaStatement attribute) prepare() (macaron.slsa_analyzer.registry.Registry method) prepare_repo() (in module macaron.repo_finder.repo_finder) priority (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) problog_result_access (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.DetectMaliciousMetadataCheck attribute) process_bind_param() (macaron.database.db_custom_types.DBJsonDict method) (macaron.database.db_custom_types.DBJsonList method) (macaron.database.db_custom_types.ProvenancePayload method) (macaron.database.db_custom_types.RFC3339DateTime method) process_result_value() (macaron.database.db_custom_types.DBJsonDict method) (macaron.database.db_custom_types.DBJsonList method) (macaron.database.db_custom_types.ProvenancePayload method) (macaron.database.db_custom_types.RFC3339DateTime method) profile (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) project (macaron.parsers.github_workflow_model.On attribute) project_cache_dir (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) project_card (macaron.parsers.github_workflow_model.On attribute) project_column (macaron.parsers.github_workflow_model.On attribute)

project_dir (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) project_join_table_souffle_relation() (in module macaron.policy_engine.souffle_code_generator) project_prop (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) project_table_to_key() (in module macaron.policy_engine.souffle_code_generator) project_with_fk_join() (in module macaron.policy_engine.souffle_code_generator) projects (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) PROV_AUTH (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_AVAILABLE (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_CONT_ARTI (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_CONT_BUILD_INS (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_CONT_BUILD_PARAMS (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_CONT_BUILDER (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_CONT_ENTRY (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_CONT_META_DATA (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_CONT_REPRODUCIBLE_INFO (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_CONT_SOURCE (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_CONT_TRANSITIVE_DEPS (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_DEPENDENCIES_COMPLETE (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_NON_FALSIFIABLE (macaron.slsa_analyzer.slsa_req.ReqName attribute) PROV_SERVICE_GEN (macaron.slsa_analyzer.slsa_req.ReqName attribute) Provenance (class in macaron.database.table_definitions) provenance (macaron.database.table_definitions.Component attribute) (macaron.database.table_definitions.ReleaseArtifact attribute) PROVENANCE (macaron.slsa_analyzer.slsa_req.Category attribute) provenance_asset_name (macaron.database.table_definitions.Provenance attribute) provenance_asset_url (macaron.database.table_definitions.Provenance attribute) provenance_assets (macaron.slsa_analyzer.specs.ci_spec.CIInfo attribute) PROVENANCE_CONTENT (macaron.slsa_analyzer.slsa_req.Category attribute) provenance_id (macaron.database.table_definitions.ReleaseArtifact attribute) provenance_info (macaron.slsa_analyzer.analyze_context.ChecksOutputs attribute) provenance_name (macaron.slsa_analyzer.checks.provenance_witness_l1_check.WitnessProvenanceAvailableFacts attribute) provenance_payload (macaron.database.table_definitions.Provenance attribute) provenance_subject (macaron.database.table_definitions.Component attribute) provenance_url (macaron.slsa_analyzer.checks.provenance_witness_l1_check.WitnessProvenanceAvailableFacts attribute) ProvenanceAsset (class in macaron.provenance.provenance_finder) ProvenanceAvailableCheck (class in macaron.slsa_analyzer.checks.provenance_available_check) ProvenanceAvailableException ProvenanceAvailableFacts (class in macaron.slsa_analyzer.checks.provenance_available_check) ProvenanceBuildDefinition (class in macaron.provenance.provenance_extractor) ProvenanceDerivedCommitCheck (class in macaron.slsa_analyzer.checks.provenance_commit_check) ProvenanceDerivedCommitFacts (class in macaron.slsa_analyzer.checks.provenance_commit_check) ProvenanceDerivedRepoCheck (class in macaron.slsa_analyzer.checks.provenance_repo_check) ProvenanceDerivedRepoFacts (class in macaron.slsa_analyzer.checks.provenance_repo_check) ProvenanceError ProvenanceFinder (class in macaron.provenance.provenance_finder) ProvenanceL3ContentCheck (class in macaron.slsa_analyzer.checks.provenance_l3_content_check) ProvenancePayload (class in macaron.database.db_custom_types) ProvenancePredicate (class in macaron.provenance.provenance_extractor) provenances (macaron.slsa_analyzer.analyze_context.AnalyzeContext property) (macaron.slsa_analyzer.specs.ci_spec.CIInfo attribute) (macaron.slsa_analyzer.specs.package_registry_spec.PackageRegistryInfo attribute) ProvenanceSubject (class in macaron.database.table_definitions) ProvenanceSubjectPURLMatcher (class in macaron.slsa_analyzer.provenance.intoto) ProvenanceVerifiedCheck (class in macaron.slsa_analyzer.checks.provenance_verified_check) ProvenanceVerifiedFacts (class in macaron.slsa_analyzer.checks.provenance_verified_check) ProvenanceWitnessL1Check (class in macaron.slsa_analyzer.checks.provenance_witness_l1_check) public (macaron.parsers.github_workflow_model.On attribute) PubliclyHostedGitLab (class in macaron.slsa_analyzer.git_service.gitlab) published_before_commit (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) pull_request (macaron.parsers.github_workflow_model.On attribute) pull_request_review (macaron.parsers.github_workflow_model.On attribute) pull_request_review_comment (macaron.parsers.github_workflow_model.On attribute) pull_request_target (macaron.parsers.github_workflow_model.On attribute) PURL purl (macaron.database.table_definitions.Component attribute) (macaron.dependency_analyzer.cyclonedx.DependencyInfo attribute) purl_tools (macaron.slsa_analyzer.specs.build_spec.BuildSpec attribute) PURLNotFoundError push (macaron.parsers.github_workflow_model.On attribute) PYPI (macaron.repo_finder.repo_finder_deps_dev.DepsDevType attribute) PYPI_HTTP_ERROR (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) PYPI_JSON_ERROR (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) PYPI_NO_REGISTRY (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) PYPI_NO_URLS (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) pypi_registry (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset attribute) PyPICertificateDefinition (class in macaron.provenance.provenance_extractor) PyPICertificatePredicate (class in macaron.slsa_analyzer.specs.pypi_certificate_predicate) PyPIPackageJsonAsset (class in macaron.slsa_analyzer.package_registry.pypi_registry) PyPIRegistry (class in macaron.slsa_analyzer.package_registry.pypi_registry) PyPISourcecodeAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.sourcecode.pypi_sourcecode_analyzer) PYTHON (macaron.slsa_analyzer.build_tool.language.BuildLanguage attribute) python_venv_path (macaron.config.global_config.GlobalConfig attribute)

Q

qualifiers (macaron.database.table_definitions.Component attribute) (macaron.database.table_definitions.PackageURLMixin attribute)

QueryMacaronDatabaseError quiet (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute)

R

ratio() (macaron.malware_analyzer.pypi_heuristics.metadata.typosquatting_presence.TyposquattingPresenceAnalyzer method) reachable_secrets (macaron.slsa_analyzer.build_tool.base_build_tool.BuildToolCommand attribute) reached (macaron.database.table_definitions.SLSALevel attribute) reason (macaron.repo_verifier.repo_verifier_base.RepositoryVerificationResult attribute) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) Record (class in macaron.output_reporter.results) record_id (macaron.output_reporter.results.Record attribute) refresh_dependencies (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) refresh_keys (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) REGEX_COMPILE_FAILURE (macaron.repo_finder.repo_finder_enums.CommitFinderInfo attribute) register() (macaron.slsa_analyzer.registry.Registry method) Registry (class in macaron.slsa_analyzer.registry) registry_package (macaron.parsers.github_workflow_model.On attribute) release (macaron.parsers.github_workflow_model.On attribute) (macaron.slsa_analyzer.specs.ci_spec.CIInfo attribute) release_commit_sha (macaron.database.table_definitions.Provenance attribute) release_tag (macaron.database.table_definitions.Repository attribute) ReleaseArtifact (class in macaron.database.table_definitions) remote_path (macaron.database.table_definitions.Repository attribute) remove_shell_quote() (in module macaron.build_spec_generator.reproducible_central.reproducible_central) repo_finder_metadata (macaron.database.table_definitions.Component attribute) repo_finder_outcome (macaron.database.table_definitions.RepoFinderMetadata attribute) (macaron.slsa_analyzer.analyzer.Analyzer.AnalysisTarget attribute) repo_link (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) repo_path (macaron.slsa_analyzer.analyzer.Analyzer.AnalysisTarget attribute) REPO_PURL_FAILURE (macaron.repo_finder.repo_finder_enums.CommitFinderInfo attribute) repo_verification (macaron.slsa_analyzer.analyze_context.ChecksOutputs attribute) RepoAttestor (class in macaron.slsa_analyzer.provenance.witness.attestor) RepoCheckOutError RepoFinderInfo (class in macaron.repo_finder.repo_finder_enums) RepoFinderMetadata (class in macaron.database.table_definitions) RepoNotFoundError Report (class in macaron.output_reporter.results) report_dir_name (macaron.database.table_definitions.Component property) report_file_name (macaron.database.table_definitions.Component property) report_file_purl (macaron.database.table_definitions.Component property) Repository (class in macaron.database.table_definitions) repository (macaron.database.table_definitions.Component attribute) REPOSITORY (macaron.repo_finder.commit_finder.AbstractPurlType attribute) repository_dispatch (macaron.parsers.github_workflow_model.On attribute) repository_info (macaron.slsa_analyzer.checks.provenance_repo_check.ProvenanceDerivedRepoFacts attribute) repository_url (macaron.database.table_definitions.Provenance attribute) RepositoryVerificationResult (class in macaron.repo_verifier.repo_verifier_base) RepositoryVerificationStatus (class in macaron.repo_verifier.repo_verifier_base) RepoVerifierBase (class in macaron.repo_verifier.repo_verifier_base) RepoVerifierFromProvenance (class in macaron.repo_verifier.repo_verifier_base) RepoVerifierGradle (class in macaron.repo_verifier.repo_verifier_gradle) RepoVerifierMaven (class in macaron.repo_verifier.repo_verifier_maven) RepoVerifierToolSpecific (class in macaron.repo_verifier.repo_verifier_base) REPRODUCIBLE (macaron.slsa_analyzer.slsa_req.ReqName attribute) REPRODUCIBLE_CENTRAL (macaron.build_spec_generator.build_spec_generator.BuildSpecFormat attribute) ReproducibleCentralBuildTool (class in macaron.build_spec_generator.reproducible_central.reproducible_central) ReqName (class in macaron.slsa_analyzer.slsa_req)

required (macaron.parsers.github_workflow_model.Inputs attribute) (macaron.parsers.github_workflow_model.Inputs1 attribute) (macaron.parsers.github_workflow_model.Secrets attribute) requirement_name (macaron.database.table_definitions.SLSARequirement attribute) requirement_short_description (macaron.database.table_definitions.SLSARequirement attribute) rerun_tasks (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) resolve_dependencies() (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer static method) resolve_local_path() (in module macaron.slsa_analyzer.git_url) resolve_matrix_variable() (in module macaron.slsa_analyzer.ci_service.github_actions.analyzer) resolve_redirects() (in module macaron.repo_finder.repo_validator) resources_path (macaron.config.global_config.GlobalConfig attribute) resourceUri (macaron.vsa.vsa.VsaPredicate attribute) restrict_to_analysis() (in module macaron.policy_engine.souffle_code_generator) result (macaron.slsa_analyzer.checks.check_result.CheckResult attribute) (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.MaliciousMetadataFacts attribute) result_on_skip (macaron.slsa_analyzer.checks.base_check.BaseCheck property) result_tables (macaron.slsa_analyzer.checks.check_result.CheckResultData attribute) result_type (macaron.slsa_analyzer.checks.check_result.CheckResultData attribute) resume_from (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) RETAINED_INDEFINITELY (macaron.slsa_analyzer.slsa_req.ReqName attribute) REUSABLE (macaron.slsa_analyzer.ci_service.github_actions.analyzer.GitHubWorkflowType attribute) ReusableWorkflowCallJob (class in macaron.parsers.github_workflow_model) RFC3339DateTime (class in macaron.database.db_custom_types) RichConsoleHandler (class in macaron.console) rules (macaron.policy_engine.souffle_code_generator.SouffleProgram attribute) run (macaron.parsers.github_workflow_model.Defaults attribute) (macaron.parsers.github_workflow_model.Step2 attribute) run() (macaron.slsa_analyzer.analyzer.Analyzer method) (macaron.slsa_analyzer.checks.base_check.BaseCheck method) run_check() (macaron.slsa_analyzer.checks.base_check.BaseCheck method) (macaron.slsa_analyzer.checks.build_as_code_check.BuildAsCodeCheck method) (macaron.slsa_analyzer.checks.build_script_check.BuildScriptCheck method) (macaron.slsa_analyzer.checks.build_service_check.BuildServiceCheck method) (macaron.slsa_analyzer.checks.build_tool_check.BuildToolCheck method) (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.DetectMaliciousMetadataCheck method) (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsCheck method) (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineCheck method) (macaron.slsa_analyzer.checks.provenance_available_check.ProvenanceAvailableCheck method) (macaron.slsa_analyzer.checks.provenance_commit_check.ProvenanceDerivedCommitCheck method) (macaron.slsa_analyzer.checks.provenance_l3_content_check.ProvenanceL3ContentCheck method) (macaron.slsa_analyzer.checks.provenance_repo_check.ProvenanceDerivedRepoCheck method) (macaron.slsa_analyzer.checks.provenance_verified_check.ProvenanceVerifiedCheck method) (macaron.slsa_analyzer.checks.provenance_witness_l1_check.ProvenanceWitnessL1Check method) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityCheck method) (macaron.slsa_analyzer.checks.trusted_builder_l3_check.TrustedBuilderL3Check method) (macaron.slsa_analyzer.checks.vcs_check.VCSCheck method) run_deleted (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) run_heuristics() (macaron.slsa_analyzer.checks.detect_malicious_metadata_check.DetectMaliciousMetadataCheck method) run_policy_engine() (in module macaron.policy_engine.policy_engine) run_single() (macaron.slsa_analyzer.analyzer.Analyzer method) run_souffle() (in module macaron.policy_engine.policy_engine) run_url (macaron.slsa_analyzer.checks.infer_artifact_pipeline_check.ArtifactPipelineFacts attribute) RunsOn (class in macaron.parsers.github_workflow_model) RuntimeOptions (class in macaron.slsa_analyzer.build_tool.base_build_tool)

S

same_organization() (in module macaron.slsa_analyzer.package_registry.maven_central_registry) SBT (macaron.build_spec_generator.reproducible_central.reproducible_central.ReproducibleCentralBuildTool attribute) scan (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) scan() (macaron.slsa_analyzer.registry.Registry method) schedule (macaron.parsers.github_workflow_model.On attribute) ScheduleItem (class in macaron.parsers.github_workflow_model) SCM_NO_URLS (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) SCM_NO_VALID_URLS (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) ScmAuthenticityCheck (class in macaron.slsa_analyzer.checks.scm_authenticity_check) ScmAuthenticityFacts (class in macaron.slsa_analyzer.checks.scm_authenticity_check) SCMStatus (class in macaron.output_reporter.scm) SCRIPTED_BUILD (macaron.slsa_analyzer.slsa_req.ReqName attribute) search() (macaron.slsa_analyzer.git_service.api_client.GhAPIClient method) search_for_workflow_run() (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) Secrets (class in macaron.parsers.github_workflow_model) secrets (macaron.parsers.github_workflow_model.ReusableWorkflowCallJob attribute) (macaron.parsers.github_workflow_model.WorkflowCall attribute) SECURE_DESCRIPTION_REGEX (macaron.malware_analyzer.pypi_heuristics.metadata.package_description_intent.PackageDescriptionIntentAnalyzer attribute) SECURITY (macaron.slsa_analyzer.slsa_req.ReqName attribute) SelfHostedGitLab (class in macaron.slsa_analyzer.git_service.gitlab) SEMANTIC (macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version.Versioning attribute) send_get_http() (in module macaron.util) send_get_http_raw() (in module macaron.util) send_head_http_raw() (in module macaron.util) send_post_http_raw() (in module macaron.util) serialize_to_json() (macaron.slsa_analyzer.build_tool.base_build_tool.BaseBuildTool method) service (macaron.slsa_analyzer.specs.ci_spec.CIInfo attribute) set_api_client() (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) (macaron.slsa_analyzer.ci_service.base_ci_service.NoneCIService method) (macaron.slsa_analyzer.ci_service.circleci.CircleCI method) (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) (macaron.slsa_analyzer.ci_service.gitlab_ci.GitLabCI method) (macaron.slsa_analyzer.ci_service.jenkins.Jenkins method) (macaron.slsa_analyzer.ci_service.travis.Travis method) set_handler() (macaron.console.AccessHandler method) set_status() (macaron.slsa_analyzer.slsa_req.SLSAReqStatus method) set_value() (macaron.config.target_config.Configuration method) settings (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) settings_file (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) SetupJava (class in macaron.slsa_analyzer.ci_service.github_actions.analyzer) sha (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) (macaron.slsa_analyzer.provenance.expectations.expectation.Expectation attribute) sha256 (macaron.database.table_definitions.ProvenanceSubject attribute) sha256_digest (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAsset property) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAssetMetadata attribute) short_name (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleAppendedList attribute) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleProperties attribute) (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleSingleValue attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCommaDelimList attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenOptionalFlag attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenSingleValue attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenSystemProperties attribute) short_names (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleOptionalFlag attribute) show_prelude() (in module macaron.policy_engine.policy_engine) show_version (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) SIMILAR_PROJECTS (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) SimilarProjectAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.similar_projects) size_in_bytes (macaron.slsa_analyzer.asset.AssetLocator property) (macaron.slsa_analyzer.asset.VirtualReleaseAsset attribute) (macaron.slsa_analyzer.git_service.api_client.GitHubReleaseAsset attribute) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAsset property) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAssetMetadata attribute) (macaron.slsa_analyzer.package_registry.npm_registry.NPMAttestationAsset attribute) (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset property) SKIP (macaron.malware_analyzer.pypi_heuristics.heuristics.HeuristicResult attribute)

SKIPPED (macaron.slsa_analyzer.checks.check_result.CheckResultType attribute) SkippedInfo (class in macaron.slsa_analyzer.checks.check_result) SLSA slsa_level (macaron.database.table_definitions.Provenance attribute) (macaron.database.table_definitions.SLSALevel attribute) slsa_verified (macaron.database.table_definitions.ReleaseArtifact attribute) slsa_version (macaron.database.table_definitions.Provenance attribute) SLSAGCBBuildDefinitionV1 (class in macaron.provenance.provenance_extractor) SLSAGithubActionsBuildDefinitionV1 (class in macaron.provenance.provenance_extractor) SLSAGithubGenericBuildDefinitionV01 (class in macaron.provenance.provenance_extractor) SLSALevel (class in macaron.database.table_definitions) slsalevel (macaron.database.table_definitions.Component attribute) SLSALevels (class in macaron.slsa_analyzer.levels) SLSANPMCLIBuildDefinitionV2 (class in macaron.provenance.provenance_extractor) SLSAOCIBuildDefinitionV1 (class in macaron.provenance.provenance_extractor) SLSAProvenanceData (class in macaron.slsa_analyzer.provenance.slsa) SLSAReq (class in macaron.slsa_analyzer.slsa_req) SLSAReqStatus (class in macaron.slsa_analyzer.slsa_req) SLSARequirement (class in macaron.database.table_definitions) slsarequirement (macaron.database.table_definitions.Component attribute) SouffleError SouffleProgram (class in macaron.policy_engine.souffle_code_generator) SouffleWrapper (class in macaron.policy_engine.souffle) SOURCE (macaron.slsa_analyzer.slsa_req.Category attribute) SOURCE_CODE_REPO (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) source_digest (macaron.slsa_analyzer.specs.pypi_certificate_predicate.PyPICertificatePredicate attribute) source_url (macaron.slsa_analyzer.specs.pypi_certificate_predicate.PyPICertificatePredicate attribute) sourcecode() (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset method) SourceCodeError SourceCodeRepoAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.source_code_repo) stacktrace (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) stars_count (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) start() (macaron.console.RichConsoleHandler method) statement (macaron.slsa_analyzer.provenance.intoto.InTotoV01Payload attribute) (macaron.slsa_analyzer.provenance.intoto.InTotoV1Payload attribute) status (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) (macaron.output_reporter.results.Record attribute) (macaron.parsers.github_workflow_model.On attribute) (macaron.repo_verifier.repo_verifier_base.RepositoryVerificationResult attribute) (macaron.slsa_analyzer.checks.scm_authenticity_check.ScmAuthenticityFacts attribute) (macaron.slsa_analyzer.specs.build_spec.BuildInfo attribute) Step1 (class in macaron.parsers.github_workflow_model) Step2 (class in macaron.parsers.github_workflow_model) step_node (macaron.slsa_analyzer.build_tool.base_build_tool.BuildToolCommand attribute) stop (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) store_analyze_context_to_db() (in module macaron.slsa_analyzer.database_store) store_inferred_build_info_results() (in module macaron.slsa_analyzer.analyze_context) strategy (macaron.parsers.github_workflow_model.ReusableWorkflowCallJob attribute) stream_file_with_size_limit() (in module macaron.util) StreamWriteDownloader (class in macaron.util) strict_checksums (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) STUB_NAME (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) StubNameAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.stub_name) subject (macaron.slsa_analyzer.provenance.intoto.v01.InTotoV01Statement attribute) (macaron.slsa_analyzer.provenance.intoto.v1.InTotoV1Statement attribute) (macaron.vsa.vsa.VsaStatement attribute) subpath (macaron.database.table_definitions.Component attribute) (macaron.database.table_definitions.PackageURLMixin attribute) substitution_func() (macaron.malware_analyzer.pypi_heuristics.metadata.typosquatting_presence.TyposquattingPresenceAnalyzer method) SUPERUSERS (macaron.slsa_analyzer.slsa_req.ReqName attribute) suppress_comment (macaron.slsa_analyzer.checks.check_result.SkippedInfo attribute) SUSPICIOUS_PATTERNS (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) SUSPICIOUS_SETUP (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) SuspiciousSetupAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.sourcecode.suspicious_setup) system_prop (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute)

T

table_to_declaration() (in module macaron.policy_engine.souffle_code_generator) target (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) (macaron.slsa_analyzer.provenance.expectations.expectation.Expectation attribute) tasks (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) test_extensions (in module macaron.output_reporter.jinja2_extensions) TEXT (macaron.slsa_analyzer.checks.check_result.JustificationType attribute) text (macaron.slsa_analyzer.provenance.expectations.cue.CUEExpectation attribute) (macaron.slsa_analyzer.provenance.expectations.expectation.Expectation attribute) ThirdPartyAction (class in macaron.slsa_analyzer.ci_service.github_actions.analyzer) threads (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) timeVerified (macaron.vsa.vsa.VsaPredicate attribute) to_analysis_target() (macaron.slsa_analyzer.analyzer.Analyzer static method) to_cmd_no_goals() (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions method) to_cmd_no_tasks() (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions method) to_cmds() (macaron.build_spec_generator.cli_command_parser.CLICommand method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLICommand method) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLICommand method) (macaron.build_spec_generator.cli_command_parser.unparsed_cli_command.UnparsedCLICommand method) to_configs() (macaron.dependency_analyzer.cyclonedx.DependencyAnalyzer static method)

to_domain_from_known_purl_types() (in module macaron.repo_finder) to_option_cmds() (macaron.build_spec_generator.cli_command_parser.CLIOptions method) (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions method) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions method) to_repo_path() (in module macaron.repo_finder.repo_finder) toolchains (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) tools (macaron.slsa_analyzer.specs.build_spec.BuildSpec attribute) Travis (class in macaron.slsa_analyzer.ci_service.travis) TrustedBuilderFacts (class in macaron.slsa_analyzer.checks.trusted_builder_l3_check) TrustedBuilderL3Check (class in macaron.slsa_analyzer.checks.trusted_builder_l3_check) TWO_PERSON_REVIEWED (macaron.slsa_analyzer.slsa_req.ReqName attribute) type (macaron.database.table_definitions.Component attribute) (macaron.database.table_definitions.PackageURLMixin attribute) (macaron.database.table_definitions.Repository attribute) (macaron.parsers.github_workflow_model.Inputs attribute) (macaron.parsers.github_workflow_model.Inputs1 attribute) TYPE_STUB_FILE (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) TypeStubFileAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.type_stub_file) TYPOSQUATTING_PRESENCE (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) TyposquattingPresenceAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.typosquatting_presence)

U

UNCHANGED_RELEASE (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) UnchangedReleaseAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.unchanged_release) unique_dep_repos (macaron.output_reporter.results.DepSummary attribute) UNKNOWN (macaron.repo_verifier.repo_verifier_base.RepositoryVerificationStatus attribute) (macaron.slsa_analyzer.checks.check_result.CheckResultType attribute) UnparsedCLICommand (class in macaron.build_spec_generator.cli_command_parser.unparsed_cli_command) UNSUPPORTED (macaron.repo_finder.commit_finder.AbstractPurlType attribute) UNSUPPORTED_PACKAGE_TYPE (macaron.repo_finder.repo_finder_enums.RepoFinderInfo attribute) UNSUPPORTED_PURL_TYPE (macaron.repo_finder.repo_finder_enums.CommitFinderInfo attribute) UnsupportedInTotoVersionError update() (macaron.policy_engine.souffle_code_generator.SouffleProgram method) update_checks() (macaron.console.RichConsoleHandler method) update_checks_summary() (macaron.console.RichConsoleHandler method) update_dump_defaults() (macaron.console.RichConsoleHandler method) update_find_source_table() (macaron.console.RichConsoleHandler method) update_gen_build_spec() (macaron.console.RichConsoleHandler method) update_locks (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) update_policy_engine() (macaron.console.RichConsoleHandler method)

update_policy_report() (macaron.console.RichConsoleHandler method) update_report_table() (macaron.console.RichConsoleHandler method) update_req_status() (macaron.slsa_analyzer.analyze_context.AnalyzeContext method) update_result() (macaron.slsa_analyzer.checks.check_result.EvidenceWeightMap method) update_snapshots (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) update_vsa() (macaron.console.RichConsoleHandler method) uri (macaron.slsa_analyzer.provenance.intoto.v1.InTotoV1ResourceDescriptor attribute) url (macaron.dependency_analyzer.cyclonedx.DependencyInfo attribute) (macaron.parsers.github_workflow_model.Environment attribute) (macaron.provenance.provenance_finder.ProvenanceAsset attribute) (macaron.slsa_analyzer.asset.AssetLocator property) (macaron.slsa_analyzer.asset.VirtualReleaseAsset attribute) (macaron.slsa_analyzer.git_service.api_client.GitHubReleaseAsset attribute) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAsset property) (macaron.slsa_analyzer.package_registry.npm_registry.NPMAttestationAsset property) (macaron.slsa_analyzer.package_registry.pypi_registry.PyPIPackageJsonAsset property) username (macaron.parsers.github_workflow_model.Credentials attribute) uses (macaron.parsers.github_workflow_model.ReusableWorkflowCallJob attribute) (macaron.parsers.github_workflow_model.Step1 attribute)

V

validate() (macaron.slsa_analyzer.provenance.expectations.expectation.Expectation method) validate_expectation() (in module macaron.slsa_analyzer.provenance.expectations.cue.cue_validator) validate_intoto_payload() (in module macaron.slsa_analyzer.provenance.intoto) validate_intoto_statement() (in module macaron.slsa_analyzer.provenance.intoto.v01) (in module macaron.slsa_analyzer.provenance.intoto.v1) validate_intoto_subject() (in module macaron.slsa_analyzer.provenance.intoto.v01) (in module macaron.slsa_analyzer.provenance.intoto.v1) validate_patch() (macaron.build_spec_generator.cli_command_parser.gradle_cli_parser.GradleCLICommandParser method) (macaron.build_spec_generator.cli_command_parser.maven_cli_parser.MavenCLICommandParser method) validate_yaml_data() (macaron.parsers.yaml.loader.YamlLoader class method) ValidateInTotoPayloadError VCS (macaron.slsa_analyzer.slsa_req.ReqName attribute) VCSCheck (class in macaron.slsa_analyzer.checks.vcs_check) VCSFacts (class in macaron.slsa_analyzer.checks.vcs_check) VerificationResult (class in macaron.vsa.vsa) verificationResult (macaron.vsa.vsa.VsaPredicate attribute) verified (macaron.database.table_definitions.Provenance attribute) (macaron.slsa_analyzer.provenance.intoto.InTotoV01Payload attribute) (macaron.slsa_analyzer.provenance.intoto.InTotoV1Payload attribute) VERIFIED_HISTORY (macaron.slsa_analyzer.slsa_req.ReqName attribute) verifiedLevels (macaron.vsa.vsa.VsaPredicate attribute) Verifier (class in macaron.vsa.vsa) verifier (macaron.vsa.vsa.VsaPredicate attribute) verify_artifact_assets() (in module macaron.slsa_analyzer.checks.provenance_witness_l1_check) verify_by_tool() (macaron.repo_verifier.repo_verifier_base.RepoVerifierToolSpecific method) (macaron.repo_verifier.repo_verifier_gradle.RepoVerifierGradle method) (macaron.repo_verifier.repo_verifier_maven.RepoVerifierMaven method)

verify_ci_provenance() (in module macaron.provenance.provenance_verifier) verify_domains_from_recognized_code_hosting_services() (macaron.repo_verifier.repo_verifier_maven.RepoVerifierMaven method) verify_npm_provenance() (in module macaron.provenance.provenance_verifier) verify_provenance() (in module macaron.provenance.provenance_verifier) verify_repo() (in module macaron.repo_verifier.repo_verifier) (macaron.repo_verifier.repo_verifier_base.RepoVerifierBase method) (macaron.repo_verifier.repo_verifier_base.RepoVerifierFromProvenance method) (macaron.repo_verifier.repo_verifier_base.RepoVerifierToolSpecific method) version (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) (macaron.build_spec_generator.cli_command_parser.maven_cli_command.MavenCLIOptions attribute) (macaron.database.table_definitions.Component attribute) (macaron.database.table_definitions.PackageURLMixin attribute) (macaron.slsa_analyzer.package_registry.jfrog_maven_registry.JFrogMavenAsset attribute) (macaron.slsa_analyzer.package_registry.npm_registry.NPMAttestationAsset attribute) (macaron.vsa.vsa.Verifier attribute) Versioning (class in macaron.malware_analyzer.pypi_heuristics.metadata.anomalous_version) view_doesnt_exist() (in module macaron.database.views) view_exists() (in module macaron.database.views) VirtualReleaseAsset (class in macaron.slsa_analyzer.asset) volumes (macaron.parsers.github_workflow_model.Container attribute) VSA Vsa (class in macaron.vsa.vsa) VsaPredicate (class in macaron.vsa.vsa) VsaStatement (class in macaron.vsa.vsa) vulnerability_urls (macaron.slsa_analyzer.checks.github_actions_vulnerability_check.GitHubActionsVulnsFacts attribute)

W

warn (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) warning_mode (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) watch (macaron.parsers.github_workflow_model.On attribute) watch_fs (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) weight (macaron.slsa_analyzer.checks.check_result.Evidence attribute) WHEEL (macaron.malware_analyzer.pypi_heuristics.metadata.wheel_absence.WheelAbsenceAnalyzer attribute) WHEEL_ABSENCE (macaron.malware_analyzer.pypi_heuristics.heuristics.Heuristics attribute) WheelAbsenceAnalyzer (class in macaron.malware_analyzer.pypi_heuristics.metadata.wheel_absence) with (macaron.parsers.github_workflow_model.ReusableWorkflowCallJob attribute) Witness WitnessGitLabBuildDefinitionV01 (class in macaron.provenance.provenance_extractor) WitnessProvenanceAvailableFacts (class in macaron.slsa_analyzer.checks.provenance_witness_l1_check) WitnessProvenanceData (class in macaron.slsa_analyzer.provenance.witness)

WitnessProvenanceException WitnessVerifierConfig (class in macaron.slsa_analyzer.provenance.witness) workflow_call (macaron.parsers.github_workflow_model.On attribute) workflow_dispatch (macaron.parsers.github_workflow_model.On attribute) workflow_run (macaron.parsers.github_workflow_model.On attribute) workflow_run_deleted() (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) workflow_run_in_date_time_range() (macaron.slsa_analyzer.ci_service.base_ci_service.BaseCIService method) (macaron.slsa_analyzer.ci_service.github_actions.github_actions_ci.GitHubActions method) WorkflowCall (class in macaron.parsers.github_workflow_model) WorkflowDispatch (class in macaron.parsers.github_workflow_model) write_file() (macaron.output_reporter.reporter.FileReporter method) write_locks (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute) write_verification_metadata (macaron.build_spec_generator.cli_command_parser.gradle_cli_command.GradleCLIOptions attribute)

Y

YamlLoader (class in macaron.parsers.yaml.loader)

Yarn (class in macaron.slsa_analyzer.build_tool.yarn)