1. Packages
  2. Google Cloud Native
  3. API Docs
  4. containeranalysis
  5. containeranalysis/v1
  6. getNote

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

google-native.containeranalysis/v1.getNote

Explore with Pulumi AI

google-native logo

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

    Gets the specified note.

    Using getNote

    Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

    function getNote(args: GetNoteArgs, opts?: InvokeOptions): Promise<GetNoteResult>
    function getNoteOutput(args: GetNoteOutputArgs, opts?: InvokeOptions): Output<GetNoteResult>
    def get_note(note_id: Optional[str] = None,
                 project: Optional[str] = None,
                 opts: Optional[InvokeOptions] = None) -> GetNoteResult
    def get_note_output(note_id: Optional[pulumi.Input[str]] = None,
                 project: Optional[pulumi.Input[str]] = None,
                 opts: Optional[InvokeOptions] = None) -> Output[GetNoteResult]
    func LookupNote(ctx *Context, args *LookupNoteArgs, opts ...InvokeOption) (*LookupNoteResult, error)
    func LookupNoteOutput(ctx *Context, args *LookupNoteOutputArgs, opts ...InvokeOption) LookupNoteResultOutput

    > Note: This function is named LookupNote in the Go SDK.

    public static class GetNote 
    {
        public static Task<GetNoteResult> InvokeAsync(GetNoteArgs args, InvokeOptions? opts = null)
        public static Output<GetNoteResult> Invoke(GetNoteInvokeArgs args, InvokeOptions? opts = null)
    }
    public static CompletableFuture<GetNoteResult> getNote(GetNoteArgs args, InvokeOptions options)
    // Output-based functions aren't available in Java yet
    
    fn::invoke:
      function: google-native:containeranalysis/v1:getNote
      arguments:
        # arguments dictionary

    The following arguments are supported:

    NoteId string
    Project string
    NoteId string
    Project string
    noteId String
    project String
    noteId string
    project string
    noteId String
    project String

    getNote Result

    The following output properties are available:

    Attestation Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.AttestationNoteResponse
    A note describing an attestation role.
    Build Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.BuildNoteResponse
    A note describing build provenance for a verifiable build.
    Compliance Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.ComplianceNoteResponse
    A note describing a compliance check.
    CreateTime string
    The time this note was created. This field can be used as a filter in list requests.
    Deployment Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.DeploymentNoteResponse
    A note describing something that can be deployed.
    Discovery Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.DiscoveryNoteResponse
    A note describing the initial analysis of a resource.
    DsseAttestation Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.DSSEAttestationNoteResponse
    A note describing a dsse attestation note.
    ExpirationTime string
    Time of expiration for this note. Empty if note does not expire.
    Image Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.ImageNoteResponse
    A note describing a base image.
    Kind string
    The type of analysis. This field can be used as a filter in list requests.
    LongDescription string
    A detailed description of this note.
    Name string
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    Package Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.PackageNoteResponse
    A note describing a package hosted by various package managers.
    RelatedNoteNames List<string>
    Other notes related to this note.
    RelatedUrl List<Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.RelatedUrlResponse>
    URLs associated with this note.
    SbomReference Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.SBOMReferenceNoteResponse
    A note describing an SBOM reference.
    ShortDescription string
    A one sentence description of this note.
    UpdateTime string
    The time this note was last updated. This field can be used as a filter in list requests.
    Upgrade Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.UpgradeNoteResponse
    A note describing available package upgrades.
    Vulnerability Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.VulnerabilityNoteResponse
    A note describing a package vulnerability.
    VulnerabilityAssessment Pulumi.GoogleNative.ContainerAnalysis.V1.Outputs.VulnerabilityAssessmentNoteResponse
    A note describing a vulnerability assessment.
    Attestation AttestationNoteResponse
    A note describing an attestation role.
    Build BuildNoteResponse
    A note describing build provenance for a verifiable build.
    Compliance ComplianceNoteResponse
    A note describing a compliance check.
    CreateTime string
    The time this note was created. This field can be used as a filter in list requests.
    Deployment DeploymentNoteResponse
    A note describing something that can be deployed.
    Discovery DiscoveryNoteResponse
    A note describing the initial analysis of a resource.
    DsseAttestation DSSEAttestationNoteResponse
    A note describing a dsse attestation note.
    ExpirationTime string
    Time of expiration for this note. Empty if note does not expire.
    Image ImageNoteResponse
    A note describing a base image.
    Kind string
    The type of analysis. This field can be used as a filter in list requests.
    LongDescription string
    A detailed description of this note.
    Name string
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    Package PackageNoteResponse
    A note describing a package hosted by various package managers.
    RelatedNoteNames []string
    Other notes related to this note.
    RelatedUrl []RelatedUrlResponse
    URLs associated with this note.
    SbomReference SBOMReferenceNoteResponse
    A note describing an SBOM reference.
    ShortDescription string
    A one sentence description of this note.
    UpdateTime string
    The time this note was last updated. This field can be used as a filter in list requests.
    Upgrade UpgradeNoteResponse
    A note describing available package upgrades.
    Vulnerability VulnerabilityNoteResponse
    A note describing a package vulnerability.
    VulnerabilityAssessment VulnerabilityAssessmentNoteResponse
    A note describing a vulnerability assessment.
    attestation AttestationNoteResponse
    A note describing an attestation role.
    build BuildNoteResponse
    A note describing build provenance for a verifiable build.
    compliance ComplianceNoteResponse
    A note describing a compliance check.
    createTime String
    The time this note was created. This field can be used as a filter in list requests.
    deployment DeploymentNoteResponse
    A note describing something that can be deployed.
    discovery DiscoveryNoteResponse
    A note describing the initial analysis of a resource.
    dsseAttestation DSSEAttestationNoteResponse
    A note describing a dsse attestation note.
    expirationTime String
    Time of expiration for this note. Empty if note does not expire.
    image ImageNoteResponse
    A note describing a base image.
    kind String
    The type of analysis. This field can be used as a filter in list requests.
    longDescription String
    A detailed description of this note.
    name String
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    package_ PackageNoteResponse
    A note describing a package hosted by various package managers.
    relatedNoteNames List<String>
    Other notes related to this note.
    relatedUrl List<RelatedUrlResponse>
    URLs associated with this note.
    sbomReference SBOMReferenceNoteResponse
    A note describing an SBOM reference.
    shortDescription String
    A one sentence description of this note.
    updateTime String
    The time this note was last updated. This field can be used as a filter in list requests.
    upgrade UpgradeNoteResponse
    A note describing available package upgrades.
    vulnerability VulnerabilityNoteResponse
    A note describing a package vulnerability.
    vulnerabilityAssessment VulnerabilityAssessmentNoteResponse
    A note describing a vulnerability assessment.
    attestation AttestationNoteResponse
    A note describing an attestation role.
    build BuildNoteResponse
    A note describing build provenance for a verifiable build.
    compliance ComplianceNoteResponse
    A note describing a compliance check.
    createTime string
    The time this note was created. This field can be used as a filter in list requests.
    deployment DeploymentNoteResponse
    A note describing something that can be deployed.
    discovery DiscoveryNoteResponse
    A note describing the initial analysis of a resource.
    dsseAttestation DSSEAttestationNoteResponse
    A note describing a dsse attestation note.
    expirationTime string
    Time of expiration for this note. Empty if note does not expire.
    image ImageNoteResponse
    A note describing a base image.
    kind string
    The type of analysis. This field can be used as a filter in list requests.
    longDescription string
    A detailed description of this note.
    name string
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    package PackageNoteResponse
    A note describing a package hosted by various package managers.
    relatedNoteNames string[]
    Other notes related to this note.
    relatedUrl RelatedUrlResponse[]
    URLs associated with this note.
    sbomReference SBOMReferenceNoteResponse
    A note describing an SBOM reference.
    shortDescription string
    A one sentence description of this note.
    updateTime string
    The time this note was last updated. This field can be used as a filter in list requests.
    upgrade UpgradeNoteResponse
    A note describing available package upgrades.
    vulnerability VulnerabilityNoteResponse
    A note describing a package vulnerability.
    vulnerabilityAssessment VulnerabilityAssessmentNoteResponse
    A note describing a vulnerability assessment.
    attestation AttestationNoteResponse
    A note describing an attestation role.
    build BuildNoteResponse
    A note describing build provenance for a verifiable build.
    compliance ComplianceNoteResponse
    A note describing a compliance check.
    create_time str
    The time this note was created. This field can be used as a filter in list requests.
    deployment DeploymentNoteResponse
    A note describing something that can be deployed.
    discovery DiscoveryNoteResponse
    A note describing the initial analysis of a resource.
    dsse_attestation DSSEAttestationNoteResponse
    A note describing a dsse attestation note.
    expiration_time str
    Time of expiration for this note. Empty if note does not expire.
    image ImageNoteResponse
    A note describing a base image.
    kind str
    The type of analysis. This field can be used as a filter in list requests.
    long_description str
    A detailed description of this note.
    name str
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    package PackageNoteResponse
    A note describing a package hosted by various package managers.
    related_note_names Sequence[str]
    Other notes related to this note.
    related_url Sequence[RelatedUrlResponse]
    URLs associated with this note.
    sbom_reference SBOMReferenceNoteResponse
    A note describing an SBOM reference.
    short_description str
    A one sentence description of this note.
    update_time str
    The time this note was last updated. This field can be used as a filter in list requests.
    upgrade UpgradeNoteResponse
    A note describing available package upgrades.
    vulnerability VulnerabilityNoteResponse
    A note describing a package vulnerability.
    vulnerability_assessment VulnerabilityAssessmentNoteResponse
    A note describing a vulnerability assessment.
    attestation Property Map
    A note describing an attestation role.
    build Property Map
    A note describing build provenance for a verifiable build.
    compliance Property Map
    A note describing a compliance check.
    createTime String
    The time this note was created. This field can be used as a filter in list requests.
    deployment Property Map
    A note describing something that can be deployed.
    discovery Property Map
    A note describing the initial analysis of a resource.
    dsseAttestation Property Map
    A note describing a dsse attestation note.
    expirationTime String
    Time of expiration for this note. Empty if note does not expire.
    image Property Map
    A note describing a base image.
    kind String
    The type of analysis. This field can be used as a filter in list requests.
    longDescription String
    A detailed description of this note.
    name String
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    package Property Map
    A note describing a package hosted by various package managers.
    relatedNoteNames List<String>
    Other notes related to this note.
    relatedUrl List<Property Map>
    URLs associated with this note.
    sbomReference Property Map
    A note describing an SBOM reference.
    shortDescription String
    A one sentence description of this note.
    updateTime String
    The time this note was last updated. This field can be used as a filter in list requests.
    upgrade Property Map
    A note describing available package upgrades.
    vulnerability Property Map
    A note describing a package vulnerability.
    vulnerabilityAssessment Property Map
    A note describing a vulnerability assessment.

    Supporting Types

    AssessmentResponse

    Cve string
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Impacts List<string>
    Contains information about the impact of this vulnerability, this will change with time.
    Justification Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.JustificationResponse
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    LongDescription string
    A detailed description of this Vex.
    RelatedUris List<Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.RelatedUrlResponse>
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    Remediations List<Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.RemediationResponse>
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    ShortDescription string
    A one sentence description of this Vex.
    State string
    Provides the state of this Vulnerability assessment.
    VulnerabilityId string
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    Cve string
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Impacts []string
    Contains information about the impact of this vulnerability, this will change with time.
    Justification JustificationResponse
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    LongDescription string
    A detailed description of this Vex.
    RelatedUris []RelatedUrlResponse
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    Remediations []RemediationResponse
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    ShortDescription string
    A one sentence description of this Vex.
    State string
    Provides the state of this Vulnerability assessment.
    VulnerabilityId string
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve String
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts List<String>
    Contains information about the impact of this vulnerability, this will change with time.
    justification JustificationResponse
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    longDescription String
    A detailed description of this Vex.
    relatedUris List<RelatedUrlResponse>
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations List<RemediationResponse>
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    shortDescription String
    A one sentence description of this Vex.
    state String
    Provides the state of this Vulnerability assessment.
    vulnerabilityId String
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve string
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts string[]
    Contains information about the impact of this vulnerability, this will change with time.
    justification JustificationResponse
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    longDescription string
    A detailed description of this Vex.
    relatedUris RelatedUrlResponse[]
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations RemediationResponse[]
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    shortDescription string
    A one sentence description of this Vex.
    state string
    Provides the state of this Vulnerability assessment.
    vulnerabilityId string
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve str
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts Sequence[str]
    Contains information about the impact of this vulnerability, this will change with time.
    justification JustificationResponse
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    long_description str
    A detailed description of this Vex.
    related_uris Sequence[RelatedUrlResponse]
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations Sequence[RemediationResponse]
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    short_description str
    A one sentence description of this Vex.
    state str
    Provides the state of this Vulnerability assessment.
    vulnerability_id str
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve String
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts List<String>
    Contains information about the impact of this vulnerability, this will change with time.
    justification Property Map
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    longDescription String
    A detailed description of this Vex.
    relatedUris List<Property Map>
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations List<Property Map>
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    shortDescription String
    A one sentence description of this Vex.
    state String
    Provides the state of this Vulnerability assessment.
    vulnerabilityId String
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.

    AttestationNoteResponse

    Hint Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.HintResponse
    Hint hints at the purpose of the attestation authority.
    Hint HintResponse
    Hint hints at the purpose of the attestation authority.
    hint HintResponse
    Hint hints at the purpose of the attestation authority.
    hint HintResponse
    Hint hints at the purpose of the attestation authority.
    hint HintResponse
    Hint hints at the purpose of the attestation authority.
    hint Property Map
    Hint hints at the purpose of the attestation authority.

    BuildNoteResponse

    BuilderVersion string
    Immutable. Version of the builder which produced this build.
    BuilderVersion string
    Immutable. Version of the builder which produced this build.
    builderVersion String
    Immutable. Version of the builder which produced this build.
    builderVersion string
    Immutable. Version of the builder which produced this build.
    builder_version str
    Immutable. Version of the builder which produced this build.
    builderVersion String
    Immutable. Version of the builder which produced this build.

    CVSSResponse

    AttackComplexity string
    AttackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    Authentication string
    AvailabilityImpact string
    BaseScore double
    The base score is a function of the base metric scores.
    ConfidentialityImpact string
    ExploitabilityScore double
    ImpactScore double
    IntegrityImpact string
    PrivilegesRequired string
    Scope string
    UserInteraction string
    AttackComplexity string
    AttackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    Authentication string
    AvailabilityImpact string
    BaseScore float64
    The base score is a function of the base metric scores.
    ConfidentialityImpact string
    ExploitabilityScore float64
    ImpactScore float64
    IntegrityImpact string
    PrivilegesRequired string
    Scope string
    UserInteraction string
    attackComplexity String
    attackVector String
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    authentication String
    availabilityImpact String
    baseScore Double
    The base score is a function of the base metric scores.
    confidentialityImpact String
    exploitabilityScore Double
    impactScore Double
    integrityImpact String
    privilegesRequired String
    scope String
    userInteraction String
    attackComplexity string
    attackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    authentication string
    availabilityImpact string
    baseScore number
    The base score is a function of the base metric scores.
    confidentialityImpact string
    exploitabilityScore number
    impactScore number
    integrityImpact string
    privilegesRequired string
    scope string
    userInteraction string
    attack_complexity str
    attack_vector str
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    authentication str
    availability_impact str
    base_score float
    The base score is a function of the base metric scores.
    confidentiality_impact str
    exploitability_score float
    impact_score float
    integrity_impact str
    privileges_required str
    scope str
    user_interaction str
    attackComplexity String
    attackVector String
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    authentication String
    availabilityImpact String
    baseScore Number
    The base score is a function of the base metric scores.
    confidentialityImpact String
    exploitabilityScore Number
    impactScore Number
    integrityImpact String
    privilegesRequired String
    scope String
    userInteraction String

    CVSSv3Response

    AttackComplexity string
    AttackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    AvailabilityImpact string
    BaseScore double
    The base score is a function of the base metric scores.
    ConfidentialityImpact string
    ExploitabilityScore double
    ImpactScore double
    IntegrityImpact string
    PrivilegesRequired string
    Scope string
    UserInteraction string
    AttackComplexity string
    AttackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    AvailabilityImpact string
    BaseScore float64
    The base score is a function of the base metric scores.
    ConfidentialityImpact string
    ExploitabilityScore float64
    ImpactScore float64
    IntegrityImpact string
    PrivilegesRequired string
    Scope string
    UserInteraction string
    attackComplexity String
    attackVector String
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    availabilityImpact String
    baseScore Double
    The base score is a function of the base metric scores.
    confidentialityImpact String
    exploitabilityScore Double
    impactScore Double
    integrityImpact String
    privilegesRequired String
    scope String
    userInteraction String
    attackComplexity string
    attackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    availabilityImpact string
    baseScore number
    The base score is a function of the base metric scores.
    confidentialityImpact string
    exploitabilityScore number
    impactScore number
    integrityImpact string
    privilegesRequired string
    scope string
    userInteraction string
    attack_complexity str
    attack_vector str
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    availability_impact str
    base_score float
    The base score is a function of the base metric scores.
    confidentiality_impact str
    exploitability_score float
    impact_score float
    integrity_impact str
    privileges_required str
    scope str
    user_interaction str
    attackComplexity String
    attackVector String
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    availabilityImpact String
    baseScore Number
    The base score is a function of the base metric scores.
    confidentialityImpact String
    exploitabilityScore Number
    impactScore Number
    integrityImpact String
    privilegesRequired String
    scope String
    userInteraction String

    CategoryResponse

    CategoryId string
    The identifier of the category.
    Name string
    The localized name of the category.
    CategoryId string
    The identifier of the category.
    Name string
    The localized name of the category.
    categoryId String
    The identifier of the category.
    name String
    The localized name of the category.
    categoryId string
    The identifier of the category.
    name string
    The localized name of the category.
    category_id str
    The identifier of the category.
    name str
    The localized name of the category.
    categoryId String
    The identifier of the category.
    name String
    The localized name of the category.

    CisBenchmarkResponse

    profileLevel Integer
    severity String
    profileLevel number
    severity string
    profileLevel Number
    severity String

    ComplianceNoteResponse

    CisBenchmark Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.CisBenchmarkResponse
    Description string
    A description about this compliance check.
    Rationale string
    A rationale for the existence of this compliance check.
    Remediation string
    A description of remediation steps if the compliance check fails.
    ScanInstructions string
    Serialized scan instructions with a predefined format.
    Title string
    The title that identifies this compliance check.
    Version List<Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.ComplianceVersionResponse>
    The OS and config versions the benchmark applies to.
    CisBenchmark CisBenchmarkResponse
    Description string
    A description about this compliance check.
    Rationale string
    A rationale for the existence of this compliance check.
    Remediation string
    A description of remediation steps if the compliance check fails.
    ScanInstructions string
    Serialized scan instructions with a predefined format.
    Title string
    The title that identifies this compliance check.
    Version []ComplianceVersionResponse
    The OS and config versions the benchmark applies to.
    cisBenchmark CisBenchmarkResponse
    description String
    A description about this compliance check.
    rationale String
    A rationale for the existence of this compliance check.
    remediation String
    A description of remediation steps if the compliance check fails.
    scanInstructions String
    Serialized scan instructions with a predefined format.
    title String
    The title that identifies this compliance check.
    version List<ComplianceVersionResponse>
    The OS and config versions the benchmark applies to.
    cisBenchmark CisBenchmarkResponse
    description string
    A description about this compliance check.
    rationale string
    A rationale for the existence of this compliance check.
    remediation string
    A description of remediation steps if the compliance check fails.
    scanInstructions string
    Serialized scan instructions with a predefined format.
    title string
    The title that identifies this compliance check.
    version ComplianceVersionResponse[]
    The OS and config versions the benchmark applies to.
    cis_benchmark CisBenchmarkResponse
    description str
    A description about this compliance check.
    rationale str
    A rationale for the existence of this compliance check.
    remediation str
    A description of remediation steps if the compliance check fails.
    scan_instructions str
    Serialized scan instructions with a predefined format.
    title str
    The title that identifies this compliance check.
    version Sequence[ComplianceVersionResponse]
    The OS and config versions the benchmark applies to.
    cisBenchmark Property Map
    description String
    A description about this compliance check.
    rationale String
    A rationale for the existence of this compliance check.
    remediation String
    A description of remediation steps if the compliance check fails.
    scanInstructions String
    Serialized scan instructions with a predefined format.
    title String
    The title that identifies this compliance check.
    version List<Property Map>
    The OS and config versions the benchmark applies to.

    ComplianceVersionResponse

    BenchmarkDocument string
    The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
    CpeUri string
    The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
    Version string
    The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.
    BenchmarkDocument string
    The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
    CpeUri string
    The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
    Version string
    The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.
    benchmarkDocument String
    The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
    cpeUri String
    The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
    version String
    The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.
    benchmarkDocument string
    The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
    cpeUri string
    The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
    version string
    The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.
    benchmark_document str
    The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
    cpe_uri str
    The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
    version str
    The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.
    benchmarkDocument String
    The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
    cpeUri String
    The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
    version String
    The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.

    DSSEAttestationNoteResponse

    Hint Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.DSSEHintResponse
    DSSEHint hints at the purpose of the attestation authority.
    Hint DSSEHintResponse
    DSSEHint hints at the purpose of the attestation authority.
    hint DSSEHintResponse
    DSSEHint hints at the purpose of the attestation authority.
    hint DSSEHintResponse
    DSSEHint hints at the purpose of the attestation authority.
    hint DSSEHintResponse
    DSSEHint hints at the purpose of the attestation authority.
    hint Property Map
    DSSEHint hints at the purpose of the attestation authority.

    DSSEHintResponse

    HumanReadableName string
    The human readable name of this attestation authority, for example "cloudbuild-prod".
    HumanReadableName string
    The human readable name of this attestation authority, for example "cloudbuild-prod".
    humanReadableName String
    The human readable name of this attestation authority, for example "cloudbuild-prod".
    humanReadableName string
    The human readable name of this attestation authority, for example "cloudbuild-prod".
    human_readable_name str
    The human readable name of this attestation authority, for example "cloudbuild-prod".
    humanReadableName String
    The human readable name of this attestation authority, for example "cloudbuild-prod".

    DeploymentNoteResponse

    ResourceUri List<string>
    Resource URI for the artifact being deployed.
    ResourceUri []string
    Resource URI for the artifact being deployed.
    resourceUri List<String>
    Resource URI for the artifact being deployed.
    resourceUri string[]
    Resource URI for the artifact being deployed.
    resource_uri Sequence[str]
    Resource URI for the artifact being deployed.
    resourceUri List<String>
    Resource URI for the artifact being deployed.

    DetailResponse

    AffectedCpeUri string
    The CPE URI this vulnerability affects.
    AffectedPackage string
    The package this vulnerability affects.
    AffectedVersionEnd Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.VersionResponse
    The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    AffectedVersionStart Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.VersionResponse
    The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    Description string
    A vendor-specific description of this vulnerability.
    FixedCpeUri string
    The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
    FixedPackage string
    The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
    FixedVersion Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.VersionResponse
    The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
    IsObsolete bool
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    PackageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    SeverityName string
    The distro assigned severity of this vulnerability.
    Source string
    The source from which the information in this Detail was obtained.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    Vendor string
    The name of the vendor of the product.
    AffectedCpeUri string
    The CPE URI this vulnerability affects.
    AffectedPackage string
    The package this vulnerability affects.
    AffectedVersionEnd VersionResponse
    The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    AffectedVersionStart VersionResponse
    The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    Description string
    A vendor-specific description of this vulnerability.
    FixedCpeUri string
    The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
    FixedPackage string
    The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
    FixedVersion VersionResponse
    The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
    IsObsolete bool
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    PackageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    SeverityName string
    The distro assigned severity of this vulnerability.
    Source string
    The source from which the information in this Detail was obtained.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    Vendor string
    The name of the vendor of the product.
    affectedCpeUri String
    The CPE URI this vulnerability affects.
    affectedPackage String
    The package this vulnerability affects.
    affectedVersionEnd VersionResponse
    The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    affectedVersionStart VersionResponse
    The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    description String
    A vendor-specific description of this vulnerability.
    fixedCpeUri String
    The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
    fixedPackage String
    The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
    fixedVersion VersionResponse
    The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
    isObsolete Boolean
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    packageType String
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    severityName String
    The distro assigned severity of this vulnerability.
    source String
    The source from which the information in this Detail was obtained.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor String
    The name of the vendor of the product.
    affectedCpeUri string
    The CPE URI this vulnerability affects.
    affectedPackage string
    The package this vulnerability affects.
    affectedVersionEnd VersionResponse
    The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    affectedVersionStart VersionResponse
    The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    description string
    A vendor-specific description of this vulnerability.
    fixedCpeUri string
    The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
    fixedPackage string
    The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
    fixedVersion VersionResponse
    The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
    isObsolete boolean
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    packageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    severityName string
    The distro assigned severity of this vulnerability.
    source string
    The source from which the information in this Detail was obtained.
    sourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor string
    The name of the vendor of the product.
    affected_cpe_uri str
    The CPE URI this vulnerability affects.
    affected_package str
    The package this vulnerability affects.
    affected_version_end VersionResponse
    The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    affected_version_start VersionResponse
    The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    description str
    A vendor-specific description of this vulnerability.
    fixed_cpe_uri str
    The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
    fixed_package str
    The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
    fixed_version VersionResponse
    The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
    is_obsolete bool
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    package_type str
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    severity_name str
    The distro assigned severity of this vulnerability.
    source str
    The source from which the information in this Detail was obtained.
    source_update_time str
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor str
    The name of the vendor of the product.
    affectedCpeUri String
    The CPE URI this vulnerability affects.
    affectedPackage String
    The package this vulnerability affects.
    affectedVersionEnd Property Map
    The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    affectedVersionStart Property Map
    The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
    description String
    A vendor-specific description of this vulnerability.
    fixedCpeUri String
    The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
    fixedPackage String
    The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
    fixedVersion Property Map
    The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
    isObsolete Boolean
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    packageType String
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    severityName String
    The distro assigned severity of this vulnerability.
    source String
    The source from which the information in this Detail was obtained.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor String
    The name of the vendor of the product.

    DigestResponse

    Algo string
    SHA1, SHA512 etc.
    DigestBytes string
    Value of the digest.
    Algo string
    SHA1, SHA512 etc.
    DigestBytes string
    Value of the digest.
    algo String
    SHA1, SHA512 etc.
    digestBytes String
    Value of the digest.
    algo string
    SHA1, SHA512 etc.
    digestBytes string
    Value of the digest.
    algo str
    SHA1, SHA512 etc.
    digest_bytes str
    Value of the digest.
    algo String
    SHA1, SHA512 etc.
    digestBytes String
    Value of the digest.

    DiscoveryNoteResponse

    AnalysisKind string
    Immutable. The kind of analysis that is handled by this discovery.
    AnalysisKind string
    Immutable. The kind of analysis that is handled by this discovery.
    analysisKind String
    Immutable. The kind of analysis that is handled by this discovery.
    analysisKind string
    Immutable. The kind of analysis that is handled by this discovery.
    analysis_kind str
    Immutable. The kind of analysis that is handled by this discovery.
    analysisKind String
    Immutable. The kind of analysis that is handled by this discovery.

    DistributionResponse

    Architecture string
    The CPU architecture for which packages in this distribution channel were built.
    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    Description string
    The distribution channel-specific description of this package.
    LatestVersion Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.VersionResponse
    The latest available version of this package in this distribution channel.
    Maintainer string
    A freeform string denoting the maintainer of this package.
    Url string
    The distribution channel-specific homepage for this package.
    Architecture string
    The CPU architecture for which packages in this distribution channel were built.
    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    Description string
    The distribution channel-specific description of this package.
    LatestVersion VersionResponse
    The latest available version of this package in this distribution channel.
    Maintainer string
    A freeform string denoting the maintainer of this package.
    Url string
    The distribution channel-specific homepage for this package.
    architecture String
    The CPU architecture for which packages in this distribution channel were built.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    description String
    The distribution channel-specific description of this package.
    latestVersion VersionResponse
    The latest available version of this package in this distribution channel.
    maintainer String
    A freeform string denoting the maintainer of this package.
    url String
    The distribution channel-specific homepage for this package.
    architecture string
    The CPU architecture for which packages in this distribution channel were built.
    cpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    description string
    The distribution channel-specific description of this package.
    latestVersion VersionResponse
    The latest available version of this package in this distribution channel.
    maintainer string
    A freeform string denoting the maintainer of this package.
    url string
    The distribution channel-specific homepage for this package.
    architecture str
    The CPU architecture for which packages in this distribution channel were built.
    cpe_uri str
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    description str
    The distribution channel-specific description of this package.
    latest_version VersionResponse
    The latest available version of this package in this distribution channel.
    maintainer str
    A freeform string denoting the maintainer of this package.
    url str
    The distribution channel-specific homepage for this package.
    architecture String
    The CPU architecture for which packages in this distribution channel were built.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    description String
    The distribution channel-specific description of this package.
    latestVersion Property Map
    The latest available version of this package in this distribution channel.
    maintainer String
    A freeform string denoting the maintainer of this package.
    url String
    The distribution channel-specific homepage for this package.

    FingerprintResponse

    V1Name string
    The layer ID of the final layer in the Docker image's v1 representation.
    V2Blob List<string>
    The ordered list of v2 blobs that represent a given image.
    V2Name string
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
    V1Name string
    The layer ID of the final layer in the Docker image's v1 representation.
    V2Blob []string
    The ordered list of v2 blobs that represent a given image.
    V2Name string
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
    v1Name String
    The layer ID of the final layer in the Docker image's v1 representation.
    v2Blob List<String>
    The ordered list of v2 blobs that represent a given image.
    v2Name String
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
    v1Name string
    The layer ID of the final layer in the Docker image's v1 representation.
    v2Blob string[]
    The ordered list of v2 blobs that represent a given image.
    v2Name string
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
    v1_name str
    The layer ID of the final layer in the Docker image's v1 representation.
    v2_blob Sequence[str]
    The ordered list of v2 blobs that represent a given image.
    v2_name str
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
    v1Name String
    The layer ID of the final layer in the Docker image's v1 representation.
    v2Blob List<String>
    The ordered list of v2 blobs that represent a given image.
    v2Name String
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.

    HintResponse

    HumanReadableName string
    The human readable name of this attestation authority, for example "qa".
    HumanReadableName string
    The human readable name of this attestation authority, for example "qa".
    humanReadableName String
    The human readable name of this attestation authority, for example "qa".
    humanReadableName string
    The human readable name of this attestation authority, for example "qa".
    human_readable_name str
    The human readable name of this attestation authority, for example "qa".
    humanReadableName String
    The human readable name of this attestation authority, for example "qa".

    IdentityResponse

    Revision int
    The revision number of the update.
    UpdateId string
    The revision independent identifier of the update.
    Revision int
    The revision number of the update.
    UpdateId string
    The revision independent identifier of the update.
    revision Integer
    The revision number of the update.
    updateId String
    The revision independent identifier of the update.
    revision number
    The revision number of the update.
    updateId string
    The revision independent identifier of the update.
    revision int
    The revision number of the update.
    update_id str
    The revision independent identifier of the update.
    revision Number
    The revision number of the update.
    updateId String
    The revision independent identifier of the update.

    ImageNoteResponse

    Fingerprint Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.FingerprintResponse
    Immutable. The fingerprint of the base image.
    ResourceUrl string
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    Fingerprint FingerprintResponse
    Immutable. The fingerprint of the base image.
    ResourceUrl string
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint FingerprintResponse
    Immutable. The fingerprint of the base image.
    resourceUrl String
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint FingerprintResponse
    Immutable. The fingerprint of the base image.
    resourceUrl string
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint FingerprintResponse
    Immutable. The fingerprint of the base image.
    resource_url str
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint Property Map
    Immutable. The fingerprint of the base image.
    resourceUrl String
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.

    JustificationResponse

    Details string
    Additional details on why this justification was chosen.
    JustificationType string
    The justification type for this vulnerability.
    Details string
    Additional details on why this justification was chosen.
    JustificationType string
    The justification type for this vulnerability.
    details String
    Additional details on why this justification was chosen.
    justificationType String
    The justification type for this vulnerability.
    details string
    Additional details on why this justification was chosen.
    justificationType string
    The justification type for this vulnerability.
    details str
    Additional details on why this justification was chosen.
    justification_type str
    The justification type for this vulnerability.
    details String
    Additional details on why this justification was chosen.
    justificationType String
    The justification type for this vulnerability.

    KnowledgeBaseResponse

    Name string
    The KB name (generally of the form KB[0-9]+ (e.g., KB123456)).
    Url string
    A link to the KB in the [Windows update catalog] (https://www.catalog.update.microsoft.com/).
    Name string
    The KB name (generally of the form KB[0-9]+ (e.g., KB123456)).
    Url string
    A link to the KB in the [Windows update catalog] (https://www.catalog.update.microsoft.com/).
    name String
    The KB name (generally of the form KB[0-9]+ (e.g., KB123456)).
    url String
    A link to the KB in the [Windows update catalog] (https://www.catalog.update.microsoft.com/).
    name string
    The KB name (generally of the form KB[0-9]+ (e.g., KB123456)).
    url string
    A link to the KB in the [Windows update catalog] (https://www.catalog.update.microsoft.com/).
    name str
    The KB name (generally of the form KB[0-9]+ (e.g., KB123456)).
    url str
    A link to the KB in the [Windows update catalog] (https://www.catalog.update.microsoft.com/).
    name String
    The KB name (generally of the form KB[0-9]+ (e.g., KB123456)).
    url String
    A link to the KB in the [Windows update catalog] (https://www.catalog.update.microsoft.com/).

    LicenseResponse

    Comments string
    Comments
    Expression string
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    Comments string
    Comments
    Expression string
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments String
    Comments
    expression String
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments string
    Comments
    expression string
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments str
    Comments
    expression str
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments String
    Comments
    expression String
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".

    PackageNoteResponse

    Architecture string
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    Description string
    The description of this package.
    Digest List<Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.DigestResponse>
    Hash value, typically a file digest, that allows unique identification a specific package.
    Distribution List<Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.DistributionResponse>
    Deprecated. The various channels by which a package is distributed.

    Deprecated: Deprecated. The various channels by which a package is distributed.

    License Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.LicenseResponse
    Licenses that have been declared by the authors of the package.
    Maintainer string
    A freeform text denoting the maintainer of this package.
    Name string
    Immutable. The name of the package.
    PackageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    Url string
    The homepage for this package.
    Version Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.VersionResponse
    The version of the package.
    Architecture string
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    Description string
    The description of this package.
    Digest []DigestResponse
    Hash value, typically a file digest, that allows unique identification a specific package.
    Distribution []DistributionResponse
    Deprecated. The various channels by which a package is distributed.

    Deprecated: Deprecated. The various channels by which a package is distributed.

    License LicenseResponse
    Licenses that have been declared by the authors of the package.
    Maintainer string
    A freeform text denoting the maintainer of this package.
    Name string
    Immutable. The name of the package.
    PackageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    Url string
    The homepage for this package.
    Version VersionResponse
    The version of the package.
    architecture String
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description String
    The description of this package.
    digest List<DigestResponse>
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution List<DistributionResponse>
    Deprecated. The various channels by which a package is distributed.

    Deprecated: Deprecated. The various channels by which a package is distributed.

    license LicenseResponse
    Licenses that have been declared by the authors of the package.
    maintainer String
    A freeform text denoting the maintainer of this package.
    name String
    Immutable. The name of the package.
    packageType String
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url String
    The homepage for this package.
    version VersionResponse
    The version of the package.
    architecture string
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description string
    The description of this package.
    digest DigestResponse[]
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution DistributionResponse[]
    Deprecated. The various channels by which a package is distributed.

    Deprecated: Deprecated. The various channels by which a package is distributed.

    license LicenseResponse
    Licenses that have been declared by the authors of the package.
    maintainer string
    A freeform text denoting the maintainer of this package.
    name string
    Immutable. The name of the package.
    packageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url string
    The homepage for this package.
    version VersionResponse
    The version of the package.
    architecture str
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpe_uri str
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description str
    The description of this package.
    digest Sequence[DigestResponse]
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution Sequence[DistributionResponse]
    Deprecated. The various channels by which a package is distributed.

    Deprecated: Deprecated. The various channels by which a package is distributed.

    license LicenseResponse
    Licenses that have been declared by the authors of the package.
    maintainer str
    A freeform text denoting the maintainer of this package.
    name str
    Immutable. The name of the package.
    package_type str
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url str
    The homepage for this package.
    version VersionResponse
    The version of the package.
    architecture String
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description String
    The description of this package.
    digest List<Property Map>
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution List<Property Map>
    Deprecated. The various channels by which a package is distributed.

    Deprecated: Deprecated. The various channels by which a package is distributed.

    license Property Map
    Licenses that have been declared by the authors of the package.
    maintainer String
    A freeform text denoting the maintainer of this package.
    name String
    Immutable. The name of the package.
    packageType String
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url String
    The homepage for this package.
    version Property Map
    The version of the package.

    ProductResponse

    GenericUri string
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    Name string
    Name of the product.
    GenericUri string
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    Name string
    Name of the product.
    genericUri String
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    name String
    Name of the product.
    genericUri string
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    name string
    Name of the product.
    generic_uri str
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    name str
    Name of the product.
    genericUri String
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    name String
    Name of the product.

    PublisherResponse

    IssuingAuthority string
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    Name string
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    PublisherNamespace string
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    IssuingAuthority string
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    Name string
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    PublisherNamespace string
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuingAuthority String
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name String
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisherNamespace String
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuingAuthority string
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name string
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisherNamespace string
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuing_authority str
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name str
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisher_namespace str
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuingAuthority String
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name String
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisherNamespace String
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io

    RelatedUrlResponse

    Label string
    Label to describe usage of the URL.
    Url string
    Specific URL associated with the resource.
    Label string
    Label to describe usage of the URL.
    Url string
    Specific URL associated with the resource.
    label String
    Label to describe usage of the URL.
    url String
    Specific URL associated with the resource.
    label string
    Label to describe usage of the URL.
    url string
    Specific URL associated with the resource.
    label str
    Label to describe usage of the URL.
    url str
    Specific URL associated with the resource.
    label String
    Label to describe usage of the URL.
    url String
    Specific URL associated with the resource.

    RemediationResponse

    Details string
    Contains a comprehensive human-readable discussion of the remediation.
    RemediationType string
    The type of remediation that can be applied.
    RemediationUri Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.RelatedUrlResponse
    Contains the URL where to obtain the remediation.
    Details string
    Contains a comprehensive human-readable discussion of the remediation.
    RemediationType string
    The type of remediation that can be applied.
    RemediationUri RelatedUrlResponse
    Contains the URL where to obtain the remediation.
    details String
    Contains a comprehensive human-readable discussion of the remediation.
    remediationType String
    The type of remediation that can be applied.
    remediationUri RelatedUrlResponse
    Contains the URL where to obtain the remediation.
    details string
    Contains a comprehensive human-readable discussion of the remediation.
    remediationType string
    The type of remediation that can be applied.
    remediationUri RelatedUrlResponse
    Contains the URL where to obtain the remediation.
    details str
    Contains a comprehensive human-readable discussion of the remediation.
    remediation_type str
    The type of remediation that can be applied.
    remediation_uri RelatedUrlResponse
    Contains the URL where to obtain the remediation.
    details String
    Contains a comprehensive human-readable discussion of the remediation.
    remediationType String
    The type of remediation that can be applied.
    remediationUri Property Map
    Contains the URL where to obtain the remediation.

    SBOMReferenceNoteResponse

    Format string
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    Version string
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    Format string
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    Version string
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format String
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version String
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format string
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version string
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format str
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version str
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format String
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version String
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.

    UpgradeDistributionResponse

    Classification string
    The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
    CpeUri string
    Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
    Cve List<string>
    The cve tied to this Upgrade.
    Severity string
    The severity as specified by the upstream operating system.
    Classification string
    The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
    CpeUri string
    Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
    Cve []string
    The cve tied to this Upgrade.
    Severity string
    The severity as specified by the upstream operating system.
    classification String
    The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
    cpeUri String
    Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
    cve List<String>
    The cve tied to this Upgrade.
    severity String
    The severity as specified by the upstream operating system.
    classification string
    The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
    cpeUri string
    Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
    cve string[]
    The cve tied to this Upgrade.
    severity string
    The severity as specified by the upstream operating system.
    classification str
    The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
    cpe_uri str
    Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
    cve Sequence[str]
    The cve tied to this Upgrade.
    severity str
    The severity as specified by the upstream operating system.
    classification String
    The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
    cpeUri String
    Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
    cve List<String>
    The cve tied to this Upgrade.
    severity String
    The severity as specified by the upstream operating system.

    UpgradeNoteResponse

    Distributions List<Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.UpgradeDistributionResponse>
    Metadata about the upgrade for each specific operating system.
    Package string
    Required for non-Windows OS. The package this Upgrade is for.
    Version Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.VersionResponse
    Required for non-Windows OS. The version of the package in machine + human readable form.
    WindowsUpdate Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.WindowsUpdateResponse
    Required for Windows OS. Represents the metadata about the Windows update.
    Distributions []UpgradeDistributionResponse
    Metadata about the upgrade for each specific operating system.
    Package string
    Required for non-Windows OS. The package this Upgrade is for.
    Version VersionResponse
    Required for non-Windows OS. The version of the package in machine + human readable form.
    WindowsUpdate WindowsUpdateResponse
    Required for Windows OS. Represents the metadata about the Windows update.
    distributions List<UpgradeDistributionResponse>
    Metadata about the upgrade for each specific operating system.
    package_ String
    Required for non-Windows OS. The package this Upgrade is for.
    version VersionResponse
    Required for non-Windows OS. The version of the package in machine + human readable form.
    windowsUpdate WindowsUpdateResponse
    Required for Windows OS. Represents the metadata about the Windows update.
    distributions UpgradeDistributionResponse[]
    Metadata about the upgrade for each specific operating system.
    package string
    Required for non-Windows OS. The package this Upgrade is for.
    version VersionResponse
    Required for non-Windows OS. The version of the package in machine + human readable form.
    windowsUpdate WindowsUpdateResponse
    Required for Windows OS. Represents the metadata about the Windows update.
    distributions Sequence[UpgradeDistributionResponse]
    Metadata about the upgrade for each specific operating system.
    package str
    Required for non-Windows OS. The package this Upgrade is for.
    version VersionResponse
    Required for non-Windows OS. The version of the package in machine + human readable form.
    windows_update WindowsUpdateResponse
    Required for Windows OS. Represents the metadata about the Windows update.
    distributions List<Property Map>
    Metadata about the upgrade for each specific operating system.
    package String
    Required for non-Windows OS. The package this Upgrade is for.
    version Property Map
    Required for non-Windows OS. The version of the package in machine + human readable form.
    windowsUpdate Property Map
    Required for Windows OS. Represents the metadata about the Windows update.

    VersionResponse

    Epoch int
    Used to correct mistakes in the version numbering scheme.
    FullName string
    Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
    Inclusive bool
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    Kind string
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    Name string
    Required only when version kind is NORMAL. The main part of the version name.
    Revision string
    The iteration of the package build from the above version.
    Epoch int
    Used to correct mistakes in the version numbering scheme.
    FullName string
    Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
    Inclusive bool
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    Kind string
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    Name string
    Required only when version kind is NORMAL. The main part of the version name.
    Revision string
    The iteration of the package build from the above version.
    epoch Integer
    Used to correct mistakes in the version numbering scheme.
    fullName String
    Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
    inclusive Boolean
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    kind String
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    name String
    Required only when version kind is NORMAL. The main part of the version name.
    revision String
    The iteration of the package build from the above version.
    epoch number
    Used to correct mistakes in the version numbering scheme.
    fullName string
    Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
    inclusive boolean
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    kind string
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    name string
    Required only when version kind is NORMAL. The main part of the version name.
    revision string
    The iteration of the package build from the above version.
    epoch int
    Used to correct mistakes in the version numbering scheme.
    full_name str
    Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
    inclusive bool
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    kind str
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    name str
    Required only when version kind is NORMAL. The main part of the version name.
    revision str
    The iteration of the package build from the above version.
    epoch Number
    Used to correct mistakes in the version numbering scheme.
    fullName String
    Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
    inclusive Boolean
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    kind String
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    name String
    Required only when version kind is NORMAL. The main part of the version name.
    revision String
    The iteration of the package build from the above version.

    VulnerabilityAssessmentNoteResponse

    Assessment Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.AssessmentResponse
    Represents a vulnerability assessment for the product.
    LanguageCode string
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    LongDescription string
    A detailed description of this Vex.
    Product Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.ProductResponse
    The product affected by this vex.
    Publisher Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.PublisherResponse
    Publisher details of this Note.
    ShortDescription string
    A one sentence description of this Vex.
    Title string
    The title of the note. E.g. Vex-Debian-11.4
    Assessment AssessmentResponse
    Represents a vulnerability assessment for the product.
    LanguageCode string
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    LongDescription string
    A detailed description of this Vex.
    Product ProductResponse
    The product affected by this vex.
    Publisher PublisherResponse
    Publisher details of this Note.
    ShortDescription string
    A one sentence description of this Vex.
    Title string
    The title of the note. E.g. Vex-Debian-11.4
    assessment AssessmentResponse
    Represents a vulnerability assessment for the product.
    languageCode String
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    longDescription String
    A detailed description of this Vex.
    product ProductResponse
    The product affected by this vex.
    publisher PublisherResponse
    Publisher details of this Note.
    shortDescription String
    A one sentence description of this Vex.
    title String
    The title of the note. E.g. Vex-Debian-11.4
    assessment AssessmentResponse
    Represents a vulnerability assessment for the product.
    languageCode string
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    longDescription string
    A detailed description of this Vex.
    product ProductResponse
    The product affected by this vex.
    publisher PublisherResponse
    Publisher details of this Note.
    shortDescription string
    A one sentence description of this Vex.
    title string
    The title of the note. E.g. Vex-Debian-11.4
    assessment AssessmentResponse
    Represents a vulnerability assessment for the product.
    language_code str
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    long_description str
    A detailed description of this Vex.
    product ProductResponse
    The product affected by this vex.
    publisher PublisherResponse
    Publisher details of this Note.
    short_description str
    A one sentence description of this Vex.
    title str
    The title of the note. E.g. Vex-Debian-11.4
    assessment Property Map
    Represents a vulnerability assessment for the product.
    languageCode String
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    longDescription String
    A detailed description of this Vex.
    product Property Map
    The product affected by this vex.
    publisher Property Map
    Publisher details of this Note.
    shortDescription String
    A one sentence description of this Vex.
    title String
    The title of the note. E.g. Vex-Debian-11.4

    VulnerabilityNoteResponse

    CvssScore double
    The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
    CvssV2 Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.CVSSResponse
    The full description of the v2 CVSS for this vulnerability.
    CvssV3 Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.CVSSv3Response
    The full description of the CVSSv3 for this vulnerability.
    CvssVersion string
    CVSS version used to populate cvss_score and severity.
    Details List<Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.DetailResponse>
    Details of all known distros and packages affected by this vulnerability.
    Severity string
    The note provider assigned severity of this vulnerability.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    WindowsDetails List<Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.WindowsDetailResponse>
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    CvssScore float64
    The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
    CvssV2 CVSSResponse
    The full description of the v2 CVSS for this vulnerability.
    CvssV3 CVSSv3Response
    The full description of the CVSSv3 for this vulnerability.
    CvssVersion string
    CVSS version used to populate cvss_score and severity.
    Details []DetailResponse
    Details of all known distros and packages affected by this vulnerability.
    Severity string
    The note provider assigned severity of this vulnerability.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    WindowsDetails []WindowsDetailResponse
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvssScore Double
    The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
    cvssV2 CVSSResponse
    The full description of the v2 CVSS for this vulnerability.
    cvssV3 CVSSv3Response
    The full description of the CVSSv3 for this vulnerability.
    cvssVersion String
    CVSS version used to populate cvss_score and severity.
    details List<DetailResponse>
    Details of all known distros and packages affected by this vulnerability.
    severity String
    The note provider assigned severity of this vulnerability.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windowsDetails List<WindowsDetailResponse>
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvssScore number
    The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
    cvssV2 CVSSResponse
    The full description of the v2 CVSS for this vulnerability.
    cvssV3 CVSSv3Response
    The full description of the CVSSv3 for this vulnerability.
    cvssVersion string
    CVSS version used to populate cvss_score and severity.
    details DetailResponse[]
    Details of all known distros and packages affected by this vulnerability.
    severity string
    The note provider assigned severity of this vulnerability.
    sourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windowsDetails WindowsDetailResponse[]
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvss_score float
    The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
    cvss_v2 CVSSResponse
    The full description of the v2 CVSS for this vulnerability.
    cvss_v3 CVSSv3Response
    The full description of the CVSSv3 for this vulnerability.
    cvss_version str
    CVSS version used to populate cvss_score and severity.
    details Sequence[DetailResponse]
    Details of all known distros and packages affected by this vulnerability.
    severity str
    The note provider assigned severity of this vulnerability.
    source_update_time str
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windows_details Sequence[WindowsDetailResponse]
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvssScore Number
    The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
    cvssV2 Property Map
    The full description of the v2 CVSS for this vulnerability.
    cvssV3 Property Map
    The full description of the CVSSv3 for this vulnerability.
    cvssVersion String
    CVSS version used to populate cvss_score and severity.
    details List<Property Map>
    Details of all known distros and packages affected by this vulnerability.
    severity String
    The note provider assigned severity of this vulnerability.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windowsDetails List<Property Map>
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.

    WindowsDetailResponse

    CpeUri string
    The CPE URI this vulnerability affects.
    Description string
    The description of this vulnerability.
    FixingKbs List<Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.KnowledgeBaseResponse>
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
    Name string
    The name of this vulnerability.
    CpeUri string
    The CPE URI this vulnerability affects.
    Description string
    The description of this vulnerability.
    FixingKbs []KnowledgeBaseResponse
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
    Name string
    The name of this vulnerability.
    cpeUri String
    The CPE URI this vulnerability affects.
    description String
    The description of this vulnerability.
    fixingKbs List<KnowledgeBaseResponse>
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
    name String
    The name of this vulnerability.
    cpeUri string
    The CPE URI this vulnerability affects.
    description string
    The description of this vulnerability.
    fixingKbs KnowledgeBaseResponse[]
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
    name string
    The name of this vulnerability.
    cpe_uri str
    The CPE URI this vulnerability affects.
    description str
    The description of this vulnerability.
    fixing_kbs Sequence[KnowledgeBaseResponse]
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
    name str
    The name of this vulnerability.
    cpeUri String
    The CPE URI this vulnerability affects.
    description String
    The description of this vulnerability.
    fixingKbs List<Property Map>
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
    name String
    The name of this vulnerability.

    WindowsUpdateResponse

    Categories List<Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.CategoryResponse>
    The list of categories to which the update belongs.
    Description string
    The localized description of the update.
    Identity Pulumi.GoogleNative.ContainerAnalysis.V1.Inputs.IdentityResponse
    Required - The unique identifier for the update.
    KbArticleIds List<string>
    The Microsoft Knowledge Base article IDs that are associated with the update.
    LastPublishedTimestamp string
    The last published timestamp of the update.
    SupportUrl string
    The hyperlink to the support information for the update.
    Title string
    The localized title of the update.
    Categories []CategoryResponse
    The list of categories to which the update belongs.
    Description string
    The localized description of the update.
    Identity IdentityResponse
    Required - The unique identifier for the update.
    KbArticleIds []string
    The Microsoft Knowledge Base article IDs that are associated with the update.
    LastPublishedTimestamp string
    The last published timestamp of the update.
    SupportUrl string
    The hyperlink to the support information for the update.
    Title string
    The localized title of the update.
    categories List<CategoryResponse>
    The list of categories to which the update belongs.
    description String
    The localized description of the update.
    identity IdentityResponse
    Required - The unique identifier for the update.
    kbArticleIds List<String>
    The Microsoft Knowledge Base article IDs that are associated with the update.
    lastPublishedTimestamp String
    The last published timestamp of the update.
    supportUrl String
    The hyperlink to the support information for the update.
    title String
    The localized title of the update.
    categories CategoryResponse[]
    The list of categories to which the update belongs.
    description string
    The localized description of the update.
    identity IdentityResponse
    Required - The unique identifier for the update.
    kbArticleIds string[]
    The Microsoft Knowledge Base article IDs that are associated with the update.
    lastPublishedTimestamp string
    The last published timestamp of the update.
    supportUrl string
    The hyperlink to the support information for the update.
    title string
    The localized title of the update.
    categories Sequence[CategoryResponse]
    The list of categories to which the update belongs.
    description str
    The localized description of the update.
    identity IdentityResponse
    Required - The unique identifier for the update.
    kb_article_ids Sequence[str]
    The Microsoft Knowledge Base article IDs that are associated with the update.
    last_published_timestamp str
    The last published timestamp of the update.
    support_url str
    The hyperlink to the support information for the update.
    title str
    The localized title of the update.
    categories List<Property Map>
    The list of categories to which the update belongs.
    description String
    The localized description of the update.
    identity Property Map
    Required - The unique identifier for the update.
    kbArticleIds List<String>
    The Microsoft Knowledge Base article IDs that are associated with the update.
    lastPublishedTimestamp String
    The last published timestamp of the update.
    supportUrl String
    The hyperlink to the support information for the update.
    title String
    The localized title of the update.

    Package Details

    Repository
    Google Cloud Native pulumi/pulumi-google-native
    License
    Apache-2.0
    google-native logo

    Google Cloud Native is in preview. Google Cloud Classic is fully supported.

    Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi