Class: Google::Apis::WebsecurityscannerV1alpha::Finding

Inherits:
Object
  • Object
show all
Includes:
Core::Hashable, Core::JsonObjectSupport
Defined in:
generated/google/apis/websecurityscanner_v1alpha/classes.rb,
generated/google/apis/websecurityscanner_v1alpha/representations.rb,
generated/google/apis/websecurityscanner_v1alpha/representations.rb

Overview

A Finding resource represents a vulnerability instance identified during a ScanRun.

Instance Attribute Summary collapse

Instance Method Summary collapse

Methods included from Core::JsonObjectSupport

#to_json

Methods included from Core::Hashable

process_value, #to_h

Constructor Details

#initialize(**args) ⇒ Finding

Returns a new instance of Finding



231
232
233
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 231

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#bodyString

Output only. The body of the request that triggered the vulnerability. Corresponds to the JSON property body

Returns:

  • (String)


144
145
146
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 144

def body
  @body
end

#descriptionString

Output only. The description of the vulnerability. Corresponds to the JSON property description

Returns:

  • (String)


149
150
151
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 149

def description
  @description
end

#final_urlString

Output only. The URL where the browser lands when the vulnerability is detected. Corresponds to the JSON property finalUrl

Returns:

  • (String)


155
156
157
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 155

def final_url
  @final_url
end

#finding_typeString

Output only. The type of the Finding. Corresponds to the JSON property findingType

Returns:

  • (String)


160
161
162
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 160

def finding_type
  @finding_type
end

#frame_urlString

Output only. If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported. Corresponds to the JSON property frameUrl

Returns:

  • (String)


167
168
169
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 167

def frame_url
  @frame_url
end

#fuzzed_urlString

Output only. The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability. Corresponds to the JSON property fuzzedUrl

Returns:

  • (String)


174
175
176
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 174

def fuzzed_url
  @fuzzed_url
end

#http_methodString

Output only. The http method of the request that triggered the vulnerability, in uppercase. Corresponds to the JSON property httpMethod

Returns:

  • (String)


181
182
183
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 181

def http_method
  @http_method
end

#nameString

Output only. The resource name of the Finding. The name follows the format of 'projects/projectId/scanConfigs/scanConfigId/scanruns/scanRunId/findings/ findingId'. The finding IDs are generated by the system. Corresponds to the JSON property name

Returns:

  • (String)


189
190
191
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 189

def name
  @name
end

#outdated_libraryGoogle::Apis::WebsecurityscannerV1alpha::OutdatedLibrary

Information reported for an outdated library. Corresponds to the JSON property outdatedLibrary



194
195
196
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 194

def outdated_library
  @outdated_library
end

#reproduction_urlString

Output only. The URL containing human-readable payload that user can leverage to reproduce the vulnerability. Corresponds to the JSON property reproductionUrl

Returns:

  • (String)


201
202
203
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 201

def reproduction_url
  @reproduction_url
end

#tracking_idString

Output only. The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns. Corresponds to the JSON property trackingId

Returns:

  • (String)


208
209
210
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 208

def tracking_id
  @tracking_id
end

#violating_resourceGoogle::Apis::WebsecurityscannerV1alpha::ViolatingResource

Information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc. Corresponds to the JSON property violatingResource



214
215
216
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 214

def violating_resource
  @violating_resource
end

#vulnerable_headersGoogle::Apis::WebsecurityscannerV1alpha::VulnerableHeaders

Information about vulnerable or missing HTTP Headers. Corresponds to the JSON property vulnerableHeaders



219
220
221
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 219

def vulnerable_headers
  @vulnerable_headers
end

#vulnerable_parametersGoogle::Apis::WebsecurityscannerV1alpha::VulnerableParameters

Information about vulnerable request parameters. Corresponds to the JSON property vulnerableParameters



224
225
226
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 224

def vulnerable_parameters
  @vulnerable_parameters
end

#xssGoogle::Apis::WebsecurityscannerV1alpha::Xss

Information reported for an XSS. Corresponds to the JSON property xss



229
230
231
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 229

def xss
  @xss
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object



236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
# File 'generated/google/apis/websecurityscanner_v1alpha/classes.rb', line 236

def update!(**args)
  @body = args[:body] if args.key?(:body)
  @description = args[:description] if args.key?(:description)
  @final_url = args[:final_url] if args.key?(:final_url)
  @finding_type = args[:finding_type] if args.key?(:finding_type)
  @frame_url = args[:frame_url] if args.key?(:frame_url)
  @fuzzed_url = args[:fuzzed_url] if args.key?(:fuzzed_url)
  @http_method = args[:http_method] if args.key?(:http_method)
  @name = args[:name] if args.key?(:name)
  @outdated_library = args[:outdated_library] if args.key?(:outdated_library)
  @reproduction_url = args[:reproduction_url] if args.key?(:reproduction_url)
  @tracking_id = args[:tracking_id] if args.key?(:tracking_id)
  @violating_resource = args[:violating_resource] if args.key?(:violating_resource)
  @vulnerable_headers = args[:vulnerable_headers] if args.key?(:vulnerable_headers)
  @vulnerable_parameters = args[:vulnerable_parameters] if args.key?(:vulnerable_parameters)
  @xss = args[:xss] if args.key?(:xss)
end