Class: Google::Cloud::WebSecurityScanner::V1::Finding

Inherits:

Object

• Object
• Google::Cloud::WebSecurityScanner::V1::Finding

Extended by:

Protobuf::MessageExts::ClassMethods

Includes:

Protobuf::MessageExts

Defined in:

proto_docs/google/cloud/websecurityscanner/v1/finding.rb

Overview

A Finding resource represents a vulnerability instance identified during a ScanRun.

Defined Under Namespace

Modules: Severity

Instance Attribute Summary

• #body ⇒ ::String

  Output only.

• #description ⇒ ::String

  Output only.

• #final_url ⇒ ::String

  Output only.

• #finding_type ⇒ ::String

  Output only.

• #form ⇒ ::Google::Cloud::WebSecurityScanner::V1::Form

  Output only.

• #frame_url ⇒ ::String

  Output only.

• #fuzzed_url ⇒ ::String

  Output only.

• #http_method ⇒ ::String

  Output only.

• #name ⇒ ::String

  Output only.

• #outdated_library ⇒ ::Google::Cloud::WebSecurityScanner::V1::OutdatedLibrary

  Output only.

• #reproduction_url ⇒ ::String

  Output only.

• #severity ⇒ ::Google::Cloud::WebSecurityScanner::V1::Finding::Severity readonly

  Output only.

• #tracking_id ⇒ ::String

  Output only.

• #violating_resource ⇒ ::Google::Cloud::WebSecurityScanner::V1::ViolatingResource

  Output only.

• #vulnerable_headers ⇒ ::Google::Cloud::WebSecurityScanner::V1::VulnerableHeaders

  Output only.

• #vulnerable_parameters ⇒ ::Google::Cloud::WebSecurityScanner::V1::VulnerableParameters

  Output only.

• #xss ⇒ ::Google::Cloud::WebSecurityScanner::V1::Xss

  Output only.

• #xxe ⇒ ::Google::Cloud::WebSecurityScanner::V1::Xxe readonly

  Output only.

Instance Attribute Details

#body ⇒ ::String

Returns Output only. The body of the request that triggered the vulnerability.

Returns:

• (::String) —

  Output only. The body of the request that triggered the vulnerability.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#description ⇒ ::String

Returns Output only. The description of the vulnerability.

Returns:

• (::String) —

  Output only. The description of the vulnerability.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#final_url ⇒ ::String

Returns Output only. The URL where the browser lands when the vulnerability is detected.

Returns:

• (::String) —

  Output only. The URL where the browser lands when the vulnerability is detected.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#finding_type ⇒ ::String

Returns Output only. The type of the Finding. Detailed and up-to-date information on findings can be found here: https://cloud.google.com/security-command-center/docs/how-to-remediate-web-security-scanner-findings.

Returns:

• (::String) —

  Output only. The type of the Finding. Detailed and up-to-date information on findings can be found here: https://cloud.google.com/security-command-center/docs/how-to-remediate-web-security-scanner-findings

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#form ⇒ ::Google::Cloud::WebSecurityScanner::V1::Form

Returns Output only. An addon containing information reported for a vulnerability with an HTML form, if any.

Returns:

• (::Google::Cloud::WebSecurityScanner::V1::Form) —

  Output only. An addon containing information reported for a vulnerability with an HTML form, if any.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#frame_url ⇒ ::String

Returns Output only. If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported.

Returns:

• (::String) —

  Output only. If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#fuzzed_url ⇒ ::String

Returns Output only. The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability.

Returns:

• (::String) —

  Output only. The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#http_method ⇒ ::String

Returns Output only. The http method of the request that triggered the vulnerability, in uppercase.

Returns:

• (::String) —

  Output only. The http method of the request that triggered the vulnerability, in uppercase.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#name ⇒ ::String

Returns Output only. The resource name of the Finding. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findings/{findingId}'. The finding IDs are generated by the system.

Returns:

• (::String) —

  Output only. The resource name of the Finding. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findings/{findingId}'. The finding IDs are generated by the system.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#outdated_library ⇒ ::Google::Cloud::WebSecurityScanner::V1::OutdatedLibrary

Returns Output only. An addon containing information about outdated libraries.

Returns:

• (::Google::Cloud::WebSecurityScanner::V1::OutdatedLibrary) —

  Output only. An addon containing information about outdated libraries.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#reproduction_url ⇒ ::String

Returns Output only. The URL containing human-readable payload that user can leverage to reproduce the vulnerability.

Returns:

• (::String) —

  Output only. The URL containing human-readable payload that user can leverage to reproduce the vulnerability.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#severity ⇒ ::Google::Cloud::WebSecurityScanner::V1::Finding::Severity (readonly)

Returns Output only. The severity level of the reported vulnerability.

Returns:

• (::Google::Cloud::WebSecurityScanner::V1::Finding::Severity) —

  Output only. The severity level of the reported vulnerability.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#tracking_id ⇒ ::String

Returns Output only. The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns.

Returns:

• (::String) —

  Output only. The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#violating_resource ⇒ ::Google::Cloud::WebSecurityScanner::V1::ViolatingResource

Returns Output only. An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.

Returns:

• (::Google::Cloud::WebSecurityScanner::V1::ViolatingResource) —

  Output only. An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#vulnerable_headers ⇒ ::Google::Cloud::WebSecurityScanner::V1::VulnerableHeaders

Returns Output only. An addon containing information about vulnerable or missing HTTP headers.

Returns:

• (::Google::Cloud::WebSecurityScanner::V1::VulnerableHeaders) —

  Output only. An addon containing information about vulnerable or missing HTTP headers.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#vulnerable_parameters ⇒ ::Google::Cloud::WebSecurityScanner::V1::VulnerableParameters

Returns Output only. An addon containing information about request parameters which were found to be vulnerable.

Returns:

• (::Google::Cloud::WebSecurityScanner::V1::VulnerableParameters) —

  Output only. An addon containing information about request parameters which were found to be vulnerable.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#xss ⇒ ::Google::Cloud::WebSecurityScanner::V1::Xss

Returns Output only. An addon containing information reported for an XSS, if any.

Returns:

• (::Google::Cloud::WebSecurityScanner::V1::Xss) —

  Output only. An addon containing information reported for an XSS, if any.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end

#xxe ⇒ ::Google::Cloud::WebSecurityScanner::V1::Xxe (readonly)

Returns Output only. An addon containing information reported for an XXE, if any.

Returns:

• (::Google::Cloud::WebSecurityScanner::V1::Xxe) —

  Output only. An addon containing information reported for an XXE, if any.

# File 'proto_docs/google/cloud/websecurityscanner/v1/finding.rb', line 92

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # The severity level of a vulnerability.
  module Severity
    # No severity specified. The default value.
    SEVERITY_UNSPECIFIED = 0

    # Critical severity.
    CRITICAL = 1

    # High severity.
    HIGH = 2

    # Medium severity.
    MEDIUM = 3

    # Low severity.
    LOW = 4
  end
end