Closed delliott90 closed 4 years ago
@delliott90 Unless we're prepared to support STIX 2.1 (which I am unsure if we ware?) we should likely reference explicitly 1.1.0
The newer version of stix2-patterns has the fix for qualifier timestamps. The timestamp format we use for START STOP isn't a 2.1 feature, but it was never supported in the older version of the pattern validator.
Importing stix2patterns.pattern
throws exception as the location of pattern is moved in the latest tag version of stix2-patterns==1.2.0.I have created an issue in cti-stix-validator
Until they verify and/or fix the issue we can explicitly set the versions for both pattern and stix validator package,
This is fixed now. They have released a new patch of stix2patterns
to fix backwards compatibility issue.
Describe the bug The CTI Pattern Validator project was updated a few days ago from 1.1.0 to 1.2.0. https://github.com/oasis-open/cti-pattern-validator/releases/tag/v1.2.0 This is causing the following error
ModuleNotFoundError: No module named 'stix2patterns.pattern'
This can be reproduced by running a translation command from the CLI or by just running pytestTo Reproduce Steps to reproduce the behavior:
python main.py translate msatp query '{}' "[ipv4-addr:value = '127.0.0.1']"
Expected behavior There shouldn't be an error and the pattern should be successfully translated.
Additional context As a quick fix, we may need to just lock the stix2-patterns version to 1.1.0 until we can figure out what's going on.