pulumi-google-native-kotlin/com.pulumi.googlenative.containeranalysis.v1beta1.kotlin.outputs/GrafeasV1beta1VulnerabilityDetailsResponse

GrafeasV1beta1VulnerabilityDetailsResponse

data class GrafeasV1beta1VulnerabilityDetailsResponse(val cvssScore: Double, val cvssV2: CVSSResponse, val cvssV3: CVSSResponse, val cvssVersion: String, val effectiveSeverity: String, val longDescription: String, val packageIssue: List<PackageIssueResponse>, val relatedUrls: List<RelatedUrlResponse>, val severity: String, val shortDescription: String, val type: String, val vexAssessment: VexAssessmentResponse)

Details of a vulnerability Occurrence.

Constructors

constructor(cvssScore: Double, cvssV2: CVSSResponse, cvssV3: CVSSResponse, cvssVersion: String, effectiveSeverity: String, longDescription: String, packageIssue: List<PackageIssueResponse>, relatedUrls: List<RelatedUrlResponse>, severity: String, shortDescription: String, type: String, vexAssessment: VexAssessmentResponse)

Types

Link copied to clipboard
object Companion

Properties

Link copied to clipboard
val cvssScore: Double

The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates low severity and 10 indicates high severity.

Link copied to clipboard
val cvssV2: CVSSResponse

The cvss v2 score for the vulnerability.

Link copied to clipboard
val cvssV3: CVSSResponse

The cvss v3 score for the vulnerability.

Link copied to clipboard
val cvssVersion: String

CVSS version used to populate cvss_score and severity.

Link copied to clipboard
val effectiveSeverity: String

The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.

Link copied to clipboard
val longDescription: String

A detailed description of this vulnerability.

Link copied to clipboard
val packageIssue: List<PackageIssueResponse>

The set of affected locations and their fixes (if available) within the associated resource.

Link copied to clipboard
val relatedUrls: List<RelatedUrlResponse>

URLs related to this vulnerability.

Link copied to clipboard
val severity: String

The note provider assigned Severity of the vulnerability.

Link copied to clipboard
val shortDescription: String

A one sentence description of this vulnerability.

Link copied to clipboard
val type: String

The type of package; whether native or non native(ruby gems, node.js packages etc)

Link copied to clipboard