[Release Prep] Metaschema cleanup. (#1327)

Cleaning up Metaschema definitions. General changes - 

1. Sorting each json file
2. Ensuring file names match the definition names for consistency.
Almost all entities already followed this, barring a few.

---------

Signed-off-by: Rajas Panat <[email protected]>

categories.json

@@ -1,47 +1,47 @@
 {
   "caption": "Categories",
-  "name": "category",
   "description": "The OCSF categories organize event classes, each aligned with a specific domain or area of focus.",
+  "name": "category",
   "attributes": {
-    "system": {
-      "caption": "System Activity",
-      "description": "System Activity events.",
-      "uid": 1
+    "application": {
+      "uid": 6,
+      "caption": "Application Activity",
+      "description": "Application Activity events report detailed information about the behavior of applications and services."
+    },
+    "discovery": {
+      "uid": 5,
+      "caption": "Discovery",
+      "description": "Discovery events report the existence and state of devices, files, configurations, processes, registry keys, and other objects."
     },
     "findings": {
+      "uid": 2,
       "caption": "Findings",
-      "description": "Findings events report findings, detections, and possible resolutions of malware, anomalies, or other actions performed by security products.",
-      "uid": 2
+      "description": "Findings events report findings, detections, and possible resolutions of malware, anomalies, or other actions performed by security products."
     },
     "iam": {
+      "uid": 3,
       "caption": "Identity & Access Management",
-      "description": "Identity & Access Management (IAM) events relate to the supervision of the system's authentication and access control model. Examples of such events are the success or failure of authentication, granting of authority, password change, entity change, privileged use etc.",
-      "uid": 3
+      "description": "Identity & Access Management (IAM) events relate to the supervision of the system's authentication and access control model. Examples of such events are the success or failure of authentication, granting of authority, password change, entity change, privileged use etc."
     },
     "network": {
+      "uid": 4,
       "caption": "Network Activity",
-      "description": "Network Activity events.",
-      "uid": 4
-    },
-    "discovery": {
-      "caption": "Discovery",
-      "description": "Discovery events report the existence and state of devices, files, configurations, processes, registry keys, and other objects.",
-      "uid": 5
-    },
-    "application": {
-      "caption": "Application Activity",
-      "description": "Application Activity events report detailed information about the behavior of applications and services.",
-      "uid": 6
+      "description": "Network Activity events."
     },
     "remediation": {
+      "uid": 7,
       "caption": "Remediation",
-      "description": "Remediation events report the results of remediation commands targeting files, processes, and other objects.",
-      "uid": 7
+      "description": "Remediation events report the results of remediation commands targeting files, processes, and other objects."
+    },
+    "system": {
+      "uid": 1,
+      "caption": "System Activity",
+      "description": "System Activity events."
     },
     "unmanned_systems": {
+      "uid": 8,
       "caption": "Unmanned Systems",
-      "description": "Unmanned Systems events report the activity, existence, and/or state of unmanned systems for tracking, mission planning, and other related activities.",
-      "uid": 8
+      "description": "Unmanned Systems events report the activity, existence, and/or state of unmanned systems for tracking, mission planning, and other related activities."
     }
   }
-}
+}