{"id":18609591,"url":"https://github.com/secure-software-engineering/cards","last_synced_at":"2025-11-02T20:30:26.012Z","repository":{"id":131181941,"uuid":"337401905","full_name":"secure-software-engineering/cards","owner":"secure-software-engineering","description":"Component-based Assumptions and Restrictions for Dataflow Specifications","archived":false,"fork":false,"pushed_at":"2021-07-29T15:46:08.000Z","size":2751,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":6,"default_branch":"main","last_synced_at":"2024-12-27T01:25:20.288Z","etag":null,"topics":["eclipse","eclipse-plugin","eclipse-sirius","java","model-based","xtend","xtext"],"latest_commit_sha":null,"homepage":"","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/secure-software-engineering.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"docs/SecurityDefinitions.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-02-09T12:46:14.000Z","updated_at":"2023-07-05T10:33:54.000Z","dependencies_parsed_at":"2023-07-23T03:46:01.132Z","dependency_job_id":null,"html_url":"https://github.com/secure-software-engineering/cards","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/secure-software-engineering%2Fcards","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/secure-software-engineering%2Fcards/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/secure-software-engineering%2Fcards/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/secure-software-engineering%2Fcards/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/secure-software-engineering","download_url":"https://codeload.github.com/secure-software-engineering/cards/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":239400596,"owners_count":19632049,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["eclipse","eclipse-plugin","eclipse-sirius","java","model-based","xtend","xtext"],"created_at":"2024-11-07T03:06:33.057Z","updated_at":"2025-11-02T20:30:25.918Z","avatar_url":"https://github.com/secure-software-engineering.png","language":"Java","funding_links":[],"categories":[],"sub_categories":[],"readme":"# CARDS\nComponent-based Assumptions and Restrictions for Dataflow Specifications\n\nWe offer a domain specific language (DSL) for describing the system under investigation as well as all threat modeling relevant parts. We provide both a textual and a graphical editor for our DSL.\nThe system is described by a generic component-based system model consisting of components and their connections.\nIn addition, the security analyst can define security related restrictions and assumptions.\nRestrictions express which components might be allowed to know which data.\nAssumptions describe assumptions regarding the implementation of the components made during the design phase, e.g., that a specific component will never leak data containing a password in cleartext.\nWe also provide a static analysis that checks of the system meets all specified restriction with respect to the specified assumptions.\n\n# Using Our Tools\n\nAs our tool suite is implemented as an eclipse plugin, it obviously relies on the eclipse IDE. \nAll plugins are developed and tested using eclipse 2020-03, support for other versions is not guranteed.\n\n## Using pre-built binaries\n\nYou can use artifacts of our CI as a update site for eclipse plugins or have a look at our releases for more stable versions.\nYou can use `https://github.com/secure-software-engineering/cards/releases/latest/download/updatesite.zip` as an update site link to stay up to date. \n\n## Building The Artifacts Yourself\n\nCheckout this repository and checkout `https://git.cs.uni-paderborn.de/geismann/attackgraph.git` under `../attackgraph`.\n\nMake sure you have Maven installed, then inside the directory `de.uni_paderborn.swt.cardsAttackgraphParent`, run `mvn clean verify` to build.\nThe update site will be available inside `de.uni_paderborn.swt.cards.update/target/repository/`.\n\n# Documentation\n\nLearn more about our concepts and tools in our [documentation section](https://github.com/secure-software-engineering/cards/blob/develop/docs/README.md)!\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsecure-software-engineering%2Fcards","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsecure-software-engineering%2Fcards","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsecure-software-engineering%2Fcards/lists"}