Vulnerability
data class VulnerabilityOccurrenceArgs(val cvssV2: Output<CVSSArgs>? = null, val cvssv3: Output<CVSSArgs>? = null, val effectiveSeverity: Output<VulnerabilityOccurrenceEffectiveSeverity>? = null, val packageIssue: Output<List<PackageIssueArgs>>, val type: Output<String>? = null, val vexAssessment: Output<VexAssessmentArgs>? = null) : ConvertibleToJava<VulnerabilityOccurrenceArgs>
An occurrence of a severity vulnerability on a resource.
Constructors
Link copied to clipboard
constructor(cvssV2: Output<CVSSArgs>? = null, cvssv3: Output<CVSSArgs>? = null, effectiveSeverity: Output<VulnerabilityOccurrenceEffectiveSeverity>? = null, packageIssue: Output<List<PackageIssueArgs>>, type: Output<String>? = null, vexAssessment: Output<VexAssessmentArgs>? = null)
Properties
Link copied to clipboard
The distro assigned severity for this vulnerability when it is available, otherwise this is the note provider assigned severity. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
Link copied to clipboard
The set of affected locations and their fixes (if available) within the associated resource.
Link copied to clipboard