Validator

Paste a CRIT record, a CVE 5.x record carrying x_crit, or a vector string. Get instant validation against the v0.3.0 schemas, vector round-trip checks, and dictionary resolution.

Nothing leaves your browser — schemas, dictionaries, and the parser all run client-side.

Load sample:

Upload dictionary file

Sources

Schemas: crit-record-v0.3.0 · crit-dictionary-v0.3.0
Sample envelopes: samples/
Reference validator (Go): cmd/crit-validate

Modes

CRIT record — single envelope. JSON Schema + vector round-trip
- dictionary resolution.
CVE 5.x with x_crit — full CVE.org record. Walks containers.adp[].x_crit[], validates each, cross-checks vuln_id == cveMetadata.cveId.
Vector string — paste a CRITv0.3.0/... string. Decodes to structured fields, recomputes, and reports any unknown metric warnings.

Spec versions supported

The validator detects the spec version from each record’s vectorString prefix (CRITv0.2.0/, CRITv0.3.0/, …) and validates against the matching schema. Vector round-trip preserves the stored version so an older record can be validated byte-equal without forcing a re-encode. Currently bundled: v0.2.0 and v0.3.0. Records with an unknown version fall back to the highest supported schema and get a schema_version warning.