Adding OCSF Finding Info missing types

.gitignore

@@ -10,3 +10,4 @@ deploy/smithy/chart/charts
 .idea/
 components/consumers/pdf/report.html
 new-components/targets/git-clone/pkg/git/testdata/gitea
+**/.DS_STORE

Makefile

@@ -341,9 +341,6 @@ lint-proto: build-buf-container
 generate-proto: build-buf-container
 	@echo "Generating Proto files"
 	$(MAKE) run-buf ARGS="generate"
-	rm -rf sdk/gen
-	@mkdir -p sdk/gen/com
-	@mv com sdk/gen
 
 dep-update-proto: build-buf-container
 	@echo "Updating buf.lock deps"

buf.gen.yaml

@@ -3,10 +3,3 @@ plugins:
   - local: protoc-gen-go
     out: .
     opt: paths=source_relative
-inputs:
-  - proto_file: api/proto/v1/issue.proto
-  - proto_file: api/proto/v1/engine.proto
-  - git_repo: https://github.com/ocsf/examples
-    branch: main
-    ref: ba2a49f2bb1faf0c75ece9b6a9c5cd608eafbc67
-    subdir: encodings/protobuf/proto

buf.yaml

@@ -1,12 +1,13 @@
 ---
 version: v2
-lint:
-  use:
-    - STANDARD
-    - COMMENTS
-    - UNARY_RPC
-    - PACKAGE_NO_IMPORT_CYCLE
-  except:
-    # we use Please to run protoc where we only need the last part of the
-    # package name to match the directory name.
-    - PACKAGE_DIRECTORY_MATCH
+modules:
+  - path: proto
+    name: smithy-security/smithy/ocsf_ext
+    lint:
+      use:
+        - STANDARD
+        - COMMENTS
+        - UNARY_RPC
+        - PACKAGE_NO_IMPORT_CYCLE
+      except:
+        - PACKAGE_DIRECTORY_MATCH

proto/ocsf_ext/finding_info/v1/finding_info.proto

@@ -0,0 +1,48 @@
+syntax = "proto3";
+
+package smithy.security.smithy.ocsf_ext.finding_info.v1;
+
+option go_package = "github.com/smithy-security/smithy/ocsf_ext/finding_info/v1";
+
+// DataSource is used to define Data Sources described on https://schema.ocsf.io/1.3.0/objects/finding_info.
+message DataSource {
+  // TargetType specifies the target type.
+  enum TargetType {
+    TARGET_TYPE_UNSPECIFIED = 0;
+    TARGET_TYPE_REPOSITORY = 1;
+  }
+
+  // URISchema specifies the URI schema.
+  // For example:
+  // - purl: pkg:npm/%40angular/[email protected]" -> "pkg"
+  // - file: file://main.go -> "file"
+  enum URISchema {
+    URI_SCHEMA_UNSPECIFIED = 0;
+    URI_SCHEMA_FILE = 1;
+    URI_SCHEMA_PURL = 2;
+  }
+
+  // URI specifies uri content.
+  message URI {
+    URISchema uri_schema = 1;
+    string path = 2;
+  }
+
+  // FileFindingLocationData specifies data associated with the physical location of a finding in a file.
+  message FileFindingLocationData {
+    uint32 start_line = 3;
+    uint32 end_line = 4;
+    uint32 start_column = 5;
+    uint32 end_column = 6;
+  }
+
+  // PurlFindingLocationData specifies data associated with the logical location of a finding in a purl.
+  message PurlFindingLocationData {}
+
+  TargetType target_type = 1;
+  URI uri = 2;
+  oneof location_data {
+    FileFindingLocationData file_finding_location_data = 3;
+    PurlFindingLocationData purl_finding_location_data = 4;
+  }
+}