json-schema-secure.json 2.5 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495
  1. {
  2. "$schema": "http://json-schema.org/draft-07/schema#",
  3. "$id": "https://raw.githubusercontent.com/epoberezkin/ajv/master/lib/refs/json-schema-secure.json#",
  4. "title": "Meta-schema for the security assessment of JSON Schemas",
  5. "description": "If a JSON Schema fails validation against this meta-schema, it may be unsafe to validate untrusted data",
  6. "definitions": {
  7. "schemaArray": {
  8. "type": "array",
  9. "minItems": 1,
  10. "items": {"$ref": "#"}
  11. }
  12. },
  13. "dependencies": {
  14. "patternProperties": {
  15. "description": "prevent slow validation of large property names",
  16. "required": ["propertyNames"],
  17. "properties": {
  18. "propertyNames": {
  19. "required": ["maxLength"]
  20. }
  21. }
  22. },
  23. "uniqueItems": {
  24. "description": "prevent slow validation of large non-scalar arrays",
  25. "if": {
  26. "properties": {
  27. "uniqueItems": {"const": true},
  28. "items": {
  29. "properties": {
  30. "type": {
  31. "anyOf": [
  32. {
  33. "enum": ["object", "array"]
  34. },
  35. {
  36. "type": "array",
  37. "contains": {"enum": ["object", "array"]}
  38. }
  39. ]
  40. }
  41. }
  42. }
  43. }
  44. },
  45. "then": {
  46. "required": ["maxItems"]
  47. }
  48. },
  49. "pattern": {
  50. "description": "prevent slow pattern matching of large strings",
  51. "required": ["maxLength"]
  52. },
  53. "format": {
  54. "description": "prevent slow format validation of large strings",
  55. "required": ["maxLength"]
  56. }
  57. },
  58. "properties": {
  59. "additionalItems": {"$ref": "#"},
  60. "additionalProperties": {"$ref": "#"},
  61. "dependencies": {
  62. "additionalProperties": {
  63. "anyOf": [
  64. {"type": "array"},
  65. {"$ref": "#"}
  66. ]
  67. }
  68. },
  69. "items": {
  70. "anyOf": [
  71. {"$ref": "#"},
  72. {"$ref": "#/definitions/schemaArray"}
  73. ]
  74. },
  75. "definitions": {
  76. "additionalProperties": {"$ref": "#"}
  77. },
  78. "patternProperties": {
  79. "additionalProperties": {"$ref": "#"}
  80. },
  81. "properties": {
  82. "additionalProperties": {"$ref": "#"}
  83. },
  84. "if": {"$ref": "#"},
  85. "then": {"$ref": "#"},
  86. "else": {"$ref": "#"},
  87. "allOf": {"$ref": "#/definitions/schemaArray"},
  88. "anyOf": {"$ref": "#/definitions/schemaArray"},
  89. "oneOf": {"$ref": "#/definitions/schemaArray"},
  90. "not": {"$ref": "#"},
  91. "contains": {"$ref": "#"},
  92. "propertyNames": {"$ref": "#"}
  93. }
  94. }