vulnerabilities
Creates, updates, deletes, gets or lists a vulnerabilities resource.
Overview
| Name | vulnerabilities |
| Type | Resource |
| Id | google.ondemandscanning.vulnerabilities |
Fields
The following fields are returned by SELECT queries:
- list
Successful response
| Name | Datatype | Description |
|---|---|---|
name | string | Output only. The name of the occurrence in the form of projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]. |
attestation | object | Describes an attestation of an artifact. (id: AttestationOccurrence) |
build | object | Describes a verifiable build. (id: BuildOccurrence) |
compliance | object | Describes a compliance violation on a linked resource. (id: ComplianceOccurrence) |
createTime | string (google-datetime) | Output only. The time this occurrence was created. |
deployment | object | Describes the deployment of an artifact on a runtime. (id: DeploymentOccurrence) |
discovery | object | Describes when a resource was discovered. (id: DiscoveryOccurrence) |
dsseAttestation | object | Describes an attestation of an artifact using dsse. (id: DSSEAttestationOccurrence) |
envelope | object | https://github.com/secure-systems-lab/dsse (id: Envelope) |
image | object | Describes how this resource derives from the basis in the associated note. (id: ImageOccurrence) |
kind | string | Output only. This explicitly denotes which of the occurrence details are specified. This field can be used as a filter in list requests. |
noteName | string | Required. Immutable. The analysis note associated with this occurrence, in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID]. This field can be used as a filter in list requests. |
package | object | Describes the installation of a package on the linked resource. (id: PackageOccurrence) |
remediation | string | A description of actions that can be taken to remedy the note. |
resourceUri | string | Required. Immutable. A URI that represents the resource for which the occurrence applies. For example, https://gcr.io/project/image@sha256:123abc for a Docker image. |
sbomReference | object | Describes a specific SBOM reference occurrences. (id: SBOMReferenceOccurrence) |
secret | object | Describes a secret. (id: SecretOccurrence) |
updateTime | string (google-datetime) | Output only. The time this occurrence was last updated. |
upgrade | object | Describes an available package upgrade on the linked resource. (id: UpgradeOccurrence) |
vulnerability | object | Describes a security vulnerability. (id: VulnerabilityOccurrence) |
Methods
The following methods are available for this resource:
| Name | Accessible by | Required Params | Optional Params | Description |
|---|---|---|---|---|
list | select | projectsId, locationsId, scansId | pageSize, pageToken | Lists vulnerabilities resulting from a successfully completed scan. |
Parameters
Parameters can be passed in the WHERE clause of a query. Check the Methods section to see which parameters are required or optional for each operation.
| Name | Datatype | Description |
|---|---|---|
locationsId | string | |
projectsId | string | |
scansId | string | |
pageSize | integer (int32) | |
pageToken | string |
SELECT examples
- list
Lists vulnerabilities resulting from a successfully completed scan.
SELECT
name,
attestation,
build,
compliance,
createTime,
deployment,
discovery,
dsseAttestation,
envelope,
image,
kind,
noteName,
package,
remediation,
resourceUri,
sbomReference,
secret,
updateTime,
upgrade,
vulnerability
FROM google.ondemandscanning.vulnerabilities
WHERE projectsId = '{{ projectsId }}' -- required
AND locationsId = '{{ locationsId }}' -- required
AND scansId = '{{ scansId }}' -- required
AND pageSize = '{{ pageSize }}'
AND pageToken = '{{ pageToken }}';