Class: Google::Apis::ContaineranalysisV1beta1::Vulnerability

Inherits:
Object
  • Object
show all
Includes:
Google::Apis::Core::Hashable, Google::Apis::Core::JsonObjectSupport
Defined in:
lib/google/apis/containeranalysis_v1beta1/classes.rb,
lib/google/apis/containeranalysis_v1beta1/representations.rb,
lib/google/apis/containeranalysis_v1beta1/representations.rb

Overview

Vulnerability provides metadata about a security vulnerability in a Note.

Instance Attribute Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(**args) ⇒ Vulnerability

Returns a new instance of Vulnerability.



6698
6699
6700
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6698

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#cvss_scoreFloat

The CVSS score for this vulnerability. Corresponds to the JSON property cvssScore

Returns:

  • (Float)


6638
6639
6640
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6638

def cvss_score
  @cvss_score
end

#cvss_v2Google::Apis::ContaineranalysisV1beta1::Cvss

Common Vulnerability Scoring System. This message is compatible with CVSS v2 and v3. For CVSS v2 details, see https://www.first.org/cvss/v2/guide CVSS v2 calculator: https://nvd.nist.gov/vuln-metrics/cvss/v2-calculator For CVSS v3 details, see https://www.first.org/cvss/specification-document CVSS v3 calculator: https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator Corresponds to the JSON property cvssV2



6647
6648
6649
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6647

def cvss_v2
  @cvss_v2
end

#cvss_v3Google::Apis::ContaineranalysisV1beta1::CvsSv3

Deprecated. Common Vulnerability Scoring System version 3. For details, see https://www.first.org/cvss/specification-document Corresponds to the JSON property cvssV3



6653
6654
6655
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6653

def cvss_v3
  @cvss_v3
end

#cvss_versionString

CVSS version used to populate cvss_score and severity. Corresponds to the JSON property cvssVersion

Returns:

  • (String)


6658
6659
6660
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6658

def cvss_version
  @cvss_version
end

#cweArray<String>

A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/ index.html Corresponds to the JSON property cwe

Returns:

  • (Array<String>)


6664
6665
6666
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6664

def cwe
  @cwe
end

#detailsArray<Google::Apis::ContaineranalysisV1beta1::Detail>

All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in. Corresponds to the JSON property details



6671
6672
6673
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6671

def details
  @details
end

#extra_detailsString

Occurrence-specific extra details about the vulnerability. Corresponds to the JSON property extraDetails

Returns:

  • (String)


6676
6677
6678
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6676

def extra_details
  @extra_details
end

#severityString

Note provider assigned impact of the vulnerability. Corresponds to the JSON property severity

Returns:

  • (String)


6681
6682
6683
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6681

def severity
  @severity
end

#source_update_timeString

The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker. Corresponds to the JSON property sourceUpdateTime

Returns:

  • (String)


6688
6689
6690
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6688

def source_update_time
  @source_update_time
end

#windows_detailsArray<Google::Apis::ContaineranalysisV1beta1::WindowsDetail>

Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version. Corresponds to the JSON property windowsDetails



6696
6697
6698
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6696

def windows_details
  @windows_details
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object



6703
6704
6705
6706
6707
6708
6709
6710
6711
6712
6713
6714
# File 'lib/google/apis/containeranalysis_v1beta1/classes.rb', line 6703

def update!(**args)
  @cvss_score = args[:cvss_score] if args.key?(:cvss_score)
  @cvss_v2 = args[:cvss_v2] if args.key?(:cvss_v2)
  @cvss_v3 = args[:cvss_v3] if args.key?(:cvss_v3)
  @cvss_version = args[:cvss_version] if args.key?(:cvss_version)
  @cwe = args[:cwe] if args.key?(:cwe)
  @details = args[:details] if args.key?(:details)
  @extra_details = args[:extra_details] if args.key?(:extra_details)
  @severity = args[:severity] if args.key?(:severity)
  @source_update_time = args[:source_update_time] if args.key?(:source_update_time)
  @windows_details = args[:windows_details] if args.key?(:windows_details)
end