Class: Google::Apis::ContaineranalysisV1::VulnerabilityOccurrence

Inherits:

Object

• Object
• Google::Apis::ContaineranalysisV1::VulnerabilityOccurrence

Includes:

Google::Apis::Core::Hashable, Google::Apis::Core::JsonObjectSupport

Defined in:

lib/google/apis/containeranalysis_v1/classes.rb,
lib/google/apis/containeranalysis_v1/representations.rb,
lib/google/apis/containeranalysis_v1/representations.rb

Overview

An occurrence of a severity vulnerability on a resource.

Instance Attribute Summary

• #cvss_score ⇒ Float

  Output only.

• #cvss_v2 ⇒ Google::Apis::ContaineranalysisV1::Cvss

  Common Vulnerability Scoring System.

• #cvss_version ⇒ String

  Output only.

• #cvssv3 ⇒ Google::Apis::ContaineranalysisV1::Cvss

  Common Vulnerability Scoring System.

• #effective_severity ⇒ String

  The distro assigned severity for this vulnerability when it is available, otherwise this is the note provider assigned severity.

• #fix_available ⇒ Boolean (also: #fix_available?)

  Output only.

• #long_description ⇒ String

  Output only.

• #package_issue ⇒ Array<Google::Apis::ContaineranalysisV1::PackageIssue>

  Required.

• #related_urls ⇒ Array<Google::Apis::ContaineranalysisV1::RelatedUrl>

  Output only.

• #severity ⇒ String

  Output only.

• #short_description ⇒ String

  Output only.

• #type ⇒ String

  The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).

• #vex_assessment ⇒ Google::Apis::ContaineranalysisV1::VexAssessment

  VexAssessment provides all publisher provided Vex information that is related to this vulnerability.

Instance Method Summary

• #initialize(**args) ⇒ VulnerabilityOccurrence constructor

  A new instance of VulnerabilityOccurrence.

• #update!(**args) ⇒ Object

  Update properties of this object.

Constructor Details

#initialize(**args) ⇒ VulnerabilityOccurrence

Returns a new instance of VulnerabilityOccurrence.

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6405

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#cvss_score ⇒ Float

Output only. The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity. Corresponds to the JSON property cvssScore

Returns:

• (Float)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6326

def cvss_score
  @cvss_score
end

#cvss_v2 ⇒ Google::Apis::ContaineranalysisV1::Cvss

Common Vulnerability Scoring System. For details, see https://www.first.org/ cvss/specification-document This is a message we will try to use for storing various versions of CVSS rather than making a separate proto for storing a specific version. Corresponds to the JSON property cvssV2

Returns:

• (Google::Apis::ContaineranalysisV1::Cvss)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6334

def cvss_v2
  @cvss_v2
end

#cvss_version ⇒ String

Output only. CVSS version used to populate cvss_score and severity. Corresponds to the JSON property cvssVersion

Returns:

• (String)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6339

def cvss_version
  @cvss_version
end

#cvssv3 ⇒ Google::Apis::ContaineranalysisV1::Cvss

Common Vulnerability Scoring System. For details, see https://www.first.org/ cvss/specification-document This is a message we will try to use for storing various versions of CVSS rather than making a separate proto for storing a specific version. Corresponds to the JSON property cvssv3

Returns:

• (Google::Apis::ContaineranalysisV1::Cvss)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6347

def cvssv3
  @cvssv3
end

#effective_severity ⇒ String

The distro assigned severity for this vulnerability when it is available, otherwise this is the note provider assigned severity. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues. Corresponds to the JSON property effectiveSeverity

Returns:

• (String)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6359

def effective_severity
  @effective_severity
end

#fix_available ⇒ Boolean Also known as: fix_available?

Output only. Whether at least one of the affected packages has a fix available. Corresponds to the JSON property fixAvailable

Returns:

• (Boolean)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6364

def fix_available
  @fix_available
end

#long_description ⇒ String

Output only. A detailed description of this vulnerability. Corresponds to the JSON property longDescription

Returns:

• (String)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6370

def long_description
  @long_description
end

#package_issue ⇒ Array<Google::Apis::ContaineranalysisV1::PackageIssue>

Required. The set of affected locations and their fixes (if available) within the associated resource. Corresponds to the JSON property packageIssue

Returns:

• (Array<Google::Apis::ContaineranalysisV1::PackageIssue>)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6376

def package_issue
  @package_issue
end

#related_urls ⇒ Array<Google::Apis::ContaineranalysisV1::RelatedUrl>

Output only. URLs related to this vulnerability. Corresponds to the JSON property relatedUrls

Returns:

• (Array<Google::Apis::ContaineranalysisV1::RelatedUrl>)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6381

def related_urls
  @related_urls
end

#severity ⇒ String

Output only. The note provider assigned severity of this vulnerability. Corresponds to the JSON property severity

Returns:

• (String)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6386

def severity
  @severity
end

#short_description ⇒ String

Output only. A one sentence description of this vulnerability. Corresponds to the JSON property shortDescription

Returns:

• (String)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6391

def short_description
  @short_description
end

#type ⇒ String

The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.). Corresponds to the JSON property type

Returns:

• (String)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6397

def type
  @type
end

#vex_assessment ⇒ Google::Apis::ContaineranalysisV1::VexAssessment

VexAssessment provides all publisher provided Vex information that is related to this vulnerability. Corresponds to the JSON property vexAssessment

Returns:

• (Google::Apis::ContaineranalysisV1::VexAssessment)

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6403

def vex_assessment
  @vex_assessment
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object

# File 'lib/google/apis/containeranalysis_v1/classes.rb', line 6410

def update!(**args)
  @cvss_score = args[:cvss_score] if args.key?(:cvss_score)
  @cvss_v2 = args[:cvss_v2] if args.key?(:cvss_v2)
  @cvss_version = args[:cvss_version] if args.key?(:cvss_version)
  @cvssv3 = args[:cvssv3] if args.key?(:cvssv3)
  @effective_severity = args[:effective_severity] if args.key?(:effective_severity)
  @fix_available = args[:fix_available] if args.key?(:fix_available)
  @long_description = args[:long_description] if args.key?(:long_description)
  @package_issue = args[:package_issue] if args.key?(:package_issue)
  @related_urls = args[:related_urls] if args.key?(:related_urls)
  @severity = args[:severity] if args.key?(:severity)
  @short_description = args[:short_description] if args.key?(:short_description)
  @type = args[:type] if args.key?(:type)
  @vex_assessment = args[:vex_assessment] if args.key?(:vex_assessment)
end