Open Source Vulnerability

A schema for describing a vulnerability in an open source package.

Identifier	https://schemas.intelligence.ai/ossf/osv/v1.6.3/schema.json
Dialect	https://json-schema.org/draft/2020-12/schema
Base Dialect	https://json-schema.org/draft/2020-12/schema

Vocabulary	Required
https://json-schema.org/draft/2020-12/vocab/applicator	Yes
https://json-schema.org/draft/2020-12/vocab/content	Yes
https://json-schema.org/draft/2020-12/vocab/core	Yes
https://json-schema.org/draft/2020-12/vocab/format-annotation	Yes
https://json-schema.org/draft/2020-12/vocab/meta-data	Yes
https://json-schema.org/draft/2020-12/vocab/unevaluated	Yes
https://json-schema.org/draft/2020-12/vocab/validation	Yes

Reference	Fragment	Type	From
ossf/osv/v1.6.3/schema.json	/$defs/severity	Static	/properties/affected/items/properties/severity/$ref
ossf/osv/v1.6.3/schema.json	/$defs/timestamp	Static	/properties/modified/$ref