Google Native
getNote
Gets the specified note.
Using getNote
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getNote(args: GetNoteArgs, opts?: InvokeOptions): Promise<GetNoteResult>
function getNoteOutput(args: GetNoteOutputArgs, opts?: InvokeOptions): Output<GetNoteResult>
def get_note(note_id: Optional[str] = None,
project: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetNoteResult
def get_note_output(note_id: Optional[pulumi.Input[str]] = None,
project: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetNoteResult]
func LookupNote(ctx *Context, args *LookupNoteArgs, opts ...InvokeOption) (*LookupNoteResult, error)
func LookupNoteOutput(ctx *Context, args *LookupNoteOutputArgs, opts ...InvokeOption) LookupNoteResultOutput
> Note: This function is named LookupNote
in the Go SDK.
public static class GetNote
{
public static Task<GetNoteResult> InvokeAsync(GetNoteArgs args, InvokeOptions? opts = null)
public static Output<GetNoteResult> Invoke(GetNoteInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetNoteResult> getNote(GetNoteArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
Fn::Invoke:
Function: google-native:containeranalysis/v1:getNote
Arguments:
# Arguments dictionary
The following arguments are supported:
getNote Result
The following output properties are available:
- Attestation
Pulumi.
Google Native. Container Analysis. V1. Outputs. Attestation Note Response A note describing an attestation role.
- Build
Pulumi.
Google Native. Container Analysis. V1. Outputs. Build Note Response A note describing build provenance for a verifiable build.
- Compliance
Pulumi.
Google Native. Container Analysis. V1. Outputs. Compliance Note Response A note describing a compliance check.
- Create
Time string The time this note was created. This field can be used as a filter in list requests.
- Deployment
Pulumi.
Google Native. Container Analysis. V1. Outputs. Deployment Note Response A note describing something that can be deployed.
- Discovery
Pulumi.
Google Native. Container Analysis. V1. Outputs. Discovery Note Response A note describing the initial analysis of a resource.
- Dsse
Attestation Pulumi.Google Native. Container Analysis. V1. Outputs. DSSEAttestation Note Response A note describing a dsse attestation note.
- Expiration
Time string Time of expiration for this note. Empty if note does not expire.
- Image
Pulumi.
Google Native. Container Analysis. V1. Outputs. Image Note Response A note describing a base image.
- Kind string
The type of analysis. This field can be used as a filter in list requests.
- Long
Description string A detailed description of this note.
- Name string
The name of the note in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]
.- Package
Pulumi.
Google Native. Container Analysis. V1. Outputs. Package Note Response A note describing a package hosted by various package managers.
- List<string>
Other notes related to this note.
- List<Pulumi.
Google Native. Container Analysis. V1. Outputs. Related Url Response> URLs associated with this note.
- Short
Description string A one sentence description of this note.
- Update
Time string The time this note was last updated. This field can be used as a filter in list requests.
- Upgrade
Pulumi.
Google Native. Container Analysis. V1. Outputs. Upgrade Note Response A note describing available package upgrades.
- Vulnerability
Pulumi.
Google Native. Container Analysis. V1. Outputs. Vulnerability Note Response A note describing a package vulnerability.
- Attestation
Attestation
Note Response A note describing an attestation role.
- Build
Build
Note Response A note describing build provenance for a verifiable build.
- Compliance
Compliance
Note Response A note describing a compliance check.
- Create
Time string The time this note was created. This field can be used as a filter in list requests.
- Deployment
Deployment
Note Response A note describing something that can be deployed.
- Discovery
Discovery
Note Response A note describing the initial analysis of a resource.
- Dsse
Attestation DSSEAttestationNote Response A note describing a dsse attestation note.
- Expiration
Time string Time of expiration for this note. Empty if note does not expire.
- Image
Image
Note Response A note describing a base image.
- Kind string
The type of analysis. This field can be used as a filter in list requests.
- Long
Description string A detailed description of this note.
- Name string
The name of the note in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]
.- Package
Package
Note Response A note describing a package hosted by various package managers.
- []string
Other notes related to this note.
- []Related
Url Response URLs associated with this note.
- Short
Description string A one sentence description of this note.
- Update
Time string The time this note was last updated. This field can be used as a filter in list requests.
- Upgrade
Upgrade
Note Response A note describing available package upgrades.
- Vulnerability
Vulnerability
Note Response A note describing a package vulnerability.
- attestation
Attestation
Note Response A note describing an attestation role.
- build
Build
Note Response A note describing build provenance for a verifiable build.
- compliance
Compliance
Note Response A note describing a compliance check.
- create
Time String The time this note was created. This field can be used as a filter in list requests.
- deployment
Deployment
Note Response A note describing something that can be deployed.
- discovery
Discovery
Note Response A note describing the initial analysis of a resource.
- dsse
Attestation DSSEAttestationNote Response A note describing a dsse attestation note.
- expiration
Time String Time of expiration for this note. Empty if note does not expire.
- image
Image
Note Response A note describing a base image.
- kind String
The type of analysis. This field can be used as a filter in list requests.
- long
Description String A detailed description of this note.
- name String
The name of the note in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]
.- package_
Package
Note Response A note describing a package hosted by various package managers.
- List<String>
Other notes related to this note.
- List<Related
Url Response> URLs associated with this note.
- short
Description String A one sentence description of this note.
- update
Time String The time this note was last updated. This field can be used as a filter in list requests.
- upgrade
Upgrade
Note Response A note describing available package upgrades.
- vulnerability
Vulnerability
Note Response A note describing a package vulnerability.
- attestation
Attestation
Note Response A note describing an attestation role.
- build
Build
Note Response A note describing build provenance for a verifiable build.
- compliance
Compliance
Note Response A note describing a compliance check.
- create
Time string The time this note was created. This field can be used as a filter in list requests.
- deployment
Deployment
Note Response A note describing something that can be deployed.
- discovery
Discovery
Note Response A note describing the initial analysis of a resource.
- dsse
Attestation DSSEAttestationNote Response A note describing a dsse attestation note.
- expiration
Time string Time of expiration for this note. Empty if note does not expire.
- image
Image
Note Response A note describing a base image.
- kind string
The type of analysis. This field can be used as a filter in list requests.
- long
Description string A detailed description of this note.
- name string
The name of the note in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]
.- package
Package
Note Response A note describing a package hosted by various package managers.
- string[]
Other notes related to this note.
- Related
Url Response[] URLs associated with this note.
- short
Description string A one sentence description of this note.
- update
Time string The time this note was last updated. This field can be used as a filter in list requests.
- upgrade
Upgrade
Note Response A note describing available package upgrades.
- vulnerability
Vulnerability
Note Response A note describing a package vulnerability.
- attestation
Attestation
Note Response A note describing an attestation role.
- build
Build
Note Response A note describing build provenance for a verifiable build.
- compliance
Compliance
Note Response A note describing a compliance check.
- create_
time str The time this note was created. This field can be used as a filter in list requests.
- deployment
Deployment
Note Response A note describing something that can be deployed.
- discovery
Discovery
Note Response A note describing the initial analysis of a resource.
- dsse_
attestation DSSEAttestationNote Response A note describing a dsse attestation note.
- expiration_
time str Time of expiration for this note. Empty if note does not expire.
- image
Image
Note Response A note describing a base image.
- kind str
The type of analysis. This field can be used as a filter in list requests.
- long_
description str A detailed description of this note.
- name str
The name of the note in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]
.- package
Package
Note Response A note describing a package hosted by various package managers.
- Sequence[str]
Other notes related to this note.
- Sequence[Related
Url Response] URLs associated with this note.
- short_
description str A one sentence description of this note.
- update_
time str The time this note was last updated. This field can be used as a filter in list requests.
- upgrade
Upgrade
Note Response A note describing available package upgrades.
- vulnerability
Vulnerability
Note Response A note describing a package vulnerability.
- attestation Property Map
A note describing an attestation role.
- build Property Map
A note describing build provenance for a verifiable build.
- compliance Property Map
A note describing a compliance check.
- create
Time String The time this note was created. This field can be used as a filter in list requests.
- deployment Property Map
A note describing something that can be deployed.
- discovery Property Map
A note describing the initial analysis of a resource.
- dsse
Attestation Property Map A note describing a dsse attestation note.
- expiration
Time String Time of expiration for this note. Empty if note does not expire.
- image Property Map
A note describing a base image.
- kind String
The type of analysis. This field can be used as a filter in list requests.
- long
Description String A detailed description of this note.
- name String
The name of the note in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]
.- package Property Map
A note describing a package hosted by various package managers.
- List<String>
Other notes related to this note.
- List<Property Map>
URLs associated with this note.
- short
Description String A one sentence description of this note.
- update
Time String The time this note was last updated. This field can be used as a filter in list requests.
- upgrade Property Map
A note describing available package upgrades.
- vulnerability Property Map
A note describing a package vulnerability.
Supporting Types
AttestationNoteResponse
- Hint
Pulumi.
Google Native. Container Analysis. V1. Inputs. Hint Response Hint hints at the purpose of the attestation authority.
- Hint
Hint
Response Hint hints at the purpose of the attestation authority.
- hint
Hint
Response Hint hints at the purpose of the attestation authority.
- hint
Hint
Response Hint hints at the purpose of the attestation authority.
- hint
Hint
Response Hint hints at the purpose of the attestation authority.
- hint Property Map
Hint hints at the purpose of the attestation authority.
BuildNoteResponse
- Builder
Version string Immutable. Version of the builder which produced this build.
- Builder
Version string Immutable. Version of the builder which produced this build.
- builder
Version String Immutable. Version of the builder which produced this build.
- builder
Version string Immutable. Version of the builder which produced this build.
- builder_
version str Immutable. Version of the builder which produced this build.
- builder
Version String Immutable. Version of the builder which produced this build.
CVSSv3Response
- Attack
Complexity string - Attack
Vector string Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
- Availability
Impact string - Base
Score double The base score is a function of the base metric scores.
- Confidentiality
Impact string - Exploitability
Score double - Impact
Score double - Integrity
Impact string - Privileges
Required string - Scope string
- User
Interaction string
- Attack
Complexity string - Attack
Vector string Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
- Availability
Impact string - Base
Score float64 The base score is a function of the base metric scores.
- Confidentiality
Impact string - Exploitability
Score float64 - Impact
Score float64 - Integrity
Impact string - Privileges
Required string - Scope string
- User
Interaction string
- attack
Complexity String - attack
Vector String Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
- availability
Impact String - base
Score Double The base score is a function of the base metric scores.
- confidentiality
Impact String - exploitability
Score Double - impact
Score Double - integrity
Impact String - privileges
Required String - scope String
- user
Interaction String
- attack
Complexity string - attack
Vector string Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
- availability
Impact string - base
Score number The base score is a function of the base metric scores.
- confidentiality
Impact string - exploitability
Score number - impact
Score number - integrity
Impact string - privileges
Required string - scope string
- user
Interaction string
- attack_
complexity str - attack_
vector str Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
- availability_
impact str - base_
score float The base score is a function of the base metric scores.
- confidentiality_
impact str - exploitability_
score float - impact_
score float - integrity_
impact str - privileges_
required str - scope str
- user_
interaction str
- attack
Complexity String - attack
Vector String Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
- availability
Impact String - base
Score Number The base score is a function of the base metric scores.
- confidentiality
Impact String - exploitability
Score Number - impact
Score Number - integrity
Impact String - privileges
Required String - scope String
- user
Interaction String
CategoryResponse
- Category
Id string The identifier of the category.
- Name string
The localized name of the category.
- Category
Id string The identifier of the category.
- Name string
The localized name of the category.
- category
Id String The identifier of the category.
- name String
The localized name of the category.
- category
Id string The identifier of the category.
- name string
The localized name of the category.
- category_
id str The identifier of the category.
- name str
The localized name of the category.
- category
Id String The identifier of the category.
- name String
The localized name of the category.
CisBenchmarkResponse
- Profile
Level int - Severity string
- Profile
Level int - Severity string
- profile
Level Integer - severity String
- profile
Level number - severity string
- profile_
level int - severity str
- profile
Level Number - severity String
ComplianceNoteResponse
- Cis
Benchmark Pulumi.Google Native. Container Analysis. V1. Inputs. Cis Benchmark Response - Description string
A description about this compliance check.
- Rationale string
A rationale for the existence of this compliance check.
- Remediation string
A description of remediation steps if the compliance check fails.
- Scan
Instructions string Serialized scan instructions with a predefined format.
- Title string
The title that identifies this compliance check.
- Version
List<Pulumi.
Google Native. Container Analysis. V1. Inputs. Compliance Version Response> The OS and config versions the benchmark applies to.
- Cis
Benchmark CisBenchmark Response - Description string
A description about this compliance check.
- Rationale string
A rationale for the existence of this compliance check.
- Remediation string
A description of remediation steps if the compliance check fails.
- Scan
Instructions string Serialized scan instructions with a predefined format.
- Title string
The title that identifies this compliance check.
- Version
[]Compliance
Version Response The OS and config versions the benchmark applies to.
- cis
Benchmark CisBenchmark Response - description String
A description about this compliance check.
- rationale String
A rationale for the existence of this compliance check.
- remediation String
A description of remediation steps if the compliance check fails.
- scan
Instructions String Serialized scan instructions with a predefined format.
- title String
The title that identifies this compliance check.
- version
List<Compliance
Version Response> The OS and config versions the benchmark applies to.
- cis
Benchmark CisBenchmark Response - description string
A description about this compliance check.
- rationale string
A rationale for the existence of this compliance check.
- remediation string
A description of remediation steps if the compliance check fails.
- scan
Instructions string Serialized scan instructions with a predefined format.
- title string
The title that identifies this compliance check.
- version
Compliance
Version Response[] The OS and config versions the benchmark applies to.
- cis_
benchmark CisBenchmark Response - description str
A description about this compliance check.
- rationale str
A rationale for the existence of this compliance check.
- remediation str
A description of remediation steps if the compliance check fails.
- scan_
instructions str Serialized scan instructions with a predefined format.
- title str
The title that identifies this compliance check.
- version
Sequence[Compliance
Version Response] The OS and config versions the benchmark applies to.
- cis
Benchmark Property Map - description String
A description about this compliance check.
- rationale String
A rationale for the existence of this compliance check.
- remediation String
A description of remediation steps if the compliance check fails.
- scan
Instructions String Serialized scan instructions with a predefined format.
- title String
The title that identifies this compliance check.
- version List<Property Map>
The OS and config versions the benchmark applies to.
ComplianceVersionResponse
- Benchmark
Document string The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
- Cpe
Uri string The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
- Version string
The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.
- Benchmark
Document string The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
- Cpe
Uri string The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
- Version string
The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.
- benchmark
Document String The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
- cpe
Uri String The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
- version String
The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.
- benchmark
Document string The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
- cpe
Uri string The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
- version string
The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.
- benchmark_
document str The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
- cpe_
uri str The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
- version str
The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.
- benchmark
Document String The name of the document that defines this benchmark, e.g. "CIS Container-Optimized OS".
- cpe
Uri String The CPE URI (https://cpe.mitre.org/specification/) this benchmark is applicable to.
- version String
The version of the benchmark. This is set to the version of the OS-specific CIS document the benchmark is defined in.
DSSEAttestationNoteResponse
- Hint
Pulumi.
Google Native. Container Analysis. V1. Inputs. DSSEHint Response DSSEHint hints at the purpose of the attestation authority.
- Hint
DSSEHint
Response DSSEHint hints at the purpose of the attestation authority.
- hint
DSSEHint
Response DSSEHint hints at the purpose of the attestation authority.
- hint
DSSEHint
Response DSSEHint hints at the purpose of the attestation authority.
- hint
DSSEHint
Response DSSEHint hints at the purpose of the attestation authority.
- hint Property Map
DSSEHint hints at the purpose of the attestation authority.
DSSEHintResponse
- Human
Readable stringName The human readable name of this attestation authority, for example "cloudbuild-prod".
- Human
Readable stringName The human readable name of this attestation authority, for example "cloudbuild-prod".
- human
Readable StringName The human readable name of this attestation authority, for example "cloudbuild-prod".
- human
Readable stringName The human readable name of this attestation authority, for example "cloudbuild-prod".
- human_
readable_ strname The human readable name of this attestation authority, for example "cloudbuild-prod".
- human
Readable StringName The human readable name of this attestation authority, for example "cloudbuild-prod".
DeploymentNoteResponse
- Resource
Uri List<string> Resource URI for the artifact being deployed.
- Resource
Uri []string Resource URI for the artifact being deployed.
- resource
Uri List<String> Resource URI for the artifact being deployed.
- resource
Uri string[] Resource URI for the artifact being deployed.
- resource_
uri Sequence[str] Resource URI for the artifact being deployed.
- resource
Uri List<String> Resource URI for the artifact being deployed.
DetailResponse
- Affected
Cpe stringUri The CPE URI this vulnerability affects.
- Affected
Package string The package this vulnerability affects.
- Affected
Version Pulumi.End Google Native. Container Analysis. V1. Inputs. Version Response The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- Affected
Version Pulumi.Start Google Native. Container Analysis. V1. Inputs. Version Response The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- Description string
A vendor-specific description of this vulnerability.
- Fixed
Cpe stringUri The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
- Fixed
Package string The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
- Fixed
Version Pulumi.Google Native. Container Analysis. V1. Inputs. Version Response The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
- Is
Obsolete bool Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
- Package
Type string The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- Severity
Name string The distro assigned severity of this vulnerability.
- Source string
The source from which the information in this Detail was obtained.
- Source
Update stringTime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- Vendor string
The name of the vendor of the product.
- Affected
Cpe stringUri The CPE URI this vulnerability affects.
- Affected
Package string The package this vulnerability affects.
- Affected
Version VersionEnd Response The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- Affected
Version VersionStart Response The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- Description string
A vendor-specific description of this vulnerability.
- Fixed
Cpe stringUri The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
- Fixed
Package string The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
- Fixed
Version VersionResponse The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
- Is
Obsolete bool Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
- Package
Type string The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- Severity
Name string The distro assigned severity of this vulnerability.
- Source string
The source from which the information in this Detail was obtained.
- Source
Update stringTime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- Vendor string
The name of the vendor of the product.
- affected
Cpe StringUri The CPE URI this vulnerability affects.
- affected
Package String The package this vulnerability affects.
- affected
Version VersionEnd Response The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- affected
Version VersionStart Response The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- description String
A vendor-specific description of this vulnerability.
- fixed
Cpe StringUri The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
- fixed
Package String The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
- fixed
Version VersionResponse The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
- is
Obsolete Boolean Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
- package
Type String The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- severity
Name String The distro assigned severity of this vulnerability.
- source String
The source from which the information in this Detail was obtained.
- source
Update StringTime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- vendor String
The name of the vendor of the product.
- affected
Cpe stringUri The CPE URI this vulnerability affects.
- affected
Package string The package this vulnerability affects.
- affected
Version VersionEnd Response The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- affected
Version VersionStart Response The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- description string
A vendor-specific description of this vulnerability.
- fixed
Cpe stringUri The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
- fixed
Package string The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
- fixed
Version VersionResponse The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
- is
Obsolete boolean Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
- package
Type string The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- severity
Name string The distro assigned severity of this vulnerability.
- source string
The source from which the information in this Detail was obtained.
- source
Update stringTime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- vendor string
The name of the vendor of the product.
- affected_
cpe_ struri The CPE URI this vulnerability affects.
- affected_
package str The package this vulnerability affects.
- affected_
version_ Versionend Response The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- affected_
version_ Versionstart Response The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- description str
A vendor-specific description of this vulnerability.
- fixed_
cpe_ struri The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
- fixed_
package str The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
- fixed_
version VersionResponse The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
- is_
obsolete bool Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
- package_
type str The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- severity_
name str The distro assigned severity of this vulnerability.
- source str
The source from which the information in this Detail was obtained.
- source_
update_ strtime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- vendor str
The name of the vendor of the product.
- affected
Cpe StringUri The CPE URI this vulnerability affects.
- affected
Package String The package this vulnerability affects.
- affected
Version Property MapEnd The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- affected
Version Property MapStart The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.
- description String
A vendor-specific description of this vulnerability.
- fixed
Cpe StringUri The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.
- fixed
Package String The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.
- fixed
Version Property Map The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.
- is
Obsolete Boolean Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
- package
Type String The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- severity
Name String The distro assigned severity of this vulnerability.
- source String
The source from which the information in this Detail was obtained.
- source
Update StringTime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- vendor String
The name of the vendor of the product.
DigestResponse
- Algo string
SHA1
,SHA512
etc.- Digest
Bytes string Value of the digest.
- Algo string
SHA1
,SHA512
etc.- Digest
Bytes string Value of the digest.
- algo String
SHA1
,SHA512
etc.- digest
Bytes String Value of the digest.
- algo string
SHA1
,SHA512
etc.- digest
Bytes string Value of the digest.
- algo str
SHA1
,SHA512
etc.- digest_
bytes str Value of the digest.
- algo String
SHA1
,SHA512
etc.- digest
Bytes String Value of the digest.
DiscoveryNoteResponse
- Analysis
Kind string Immutable. The kind of analysis that is handled by this discovery.
- Analysis
Kind string Immutable. The kind of analysis that is handled by this discovery.
- analysis
Kind String Immutable. The kind of analysis that is handled by this discovery.
- analysis
Kind string Immutable. The kind of analysis that is handled by this discovery.
- analysis_
kind str Immutable. The kind of analysis that is handled by this discovery.
- analysis
Kind String Immutable. The kind of analysis that is handled by this discovery.
DistributionResponse
- Architecture string
The CPU architecture for which packages in this distribution channel were built.
- Cpe
Uri string The cpe_uri in CPE format denoting the package manager version distributing a package.
- Description string
The distribution channel-specific description of this package.
- Latest
Version Pulumi.Google Native. Container Analysis. V1. Inputs. Version Response The latest available version of this package in this distribution channel.
- Maintainer string
A freeform string denoting the maintainer of this package.
- Url string
The distribution channel-specific homepage for this package.
- Architecture string
The CPU architecture for which packages in this distribution channel were built.
- Cpe
Uri string The cpe_uri in CPE format denoting the package manager version distributing a package.
- Description string
The distribution channel-specific description of this package.
- Latest
Version VersionResponse The latest available version of this package in this distribution channel.
- Maintainer string
A freeform string denoting the maintainer of this package.
- Url string
The distribution channel-specific homepage for this package.
- architecture String
The CPU architecture for which packages in this distribution channel were built.
- cpe
Uri String The cpe_uri in CPE format denoting the package manager version distributing a package.
- description String
The distribution channel-specific description of this package.
- latest
Version VersionResponse The latest available version of this package in this distribution channel.
- maintainer String
A freeform string denoting the maintainer of this package.
- url String
The distribution channel-specific homepage for this package.
- architecture string
The CPU architecture for which packages in this distribution channel were built.
- cpe
Uri string The cpe_uri in CPE format denoting the package manager version distributing a package.
- description string
The distribution channel-specific description of this package.
- latest
Version VersionResponse The latest available version of this package in this distribution channel.
- maintainer string
A freeform string denoting the maintainer of this package.
- url string
The distribution channel-specific homepage for this package.
- architecture str
The CPU architecture for which packages in this distribution channel were built.
- cpe_
uri str The cpe_uri in CPE format denoting the package manager version distributing a package.
- description str
The distribution channel-specific description of this package.
- latest_
version VersionResponse The latest available version of this package in this distribution channel.
- maintainer str
A freeform string denoting the maintainer of this package.
- url str
The distribution channel-specific homepage for this package.
- architecture String
The CPU architecture for which packages in this distribution channel were built.
- cpe
Uri String The cpe_uri in CPE format denoting the package manager version distributing a package.
- description String
The distribution channel-specific description of this package.
- latest
Version Property Map The latest available version of this package in this distribution channel.
- maintainer String
A freeform string denoting the maintainer of this package.
- url String
The distribution channel-specific homepage for this package.
FingerprintResponse
- V1Name string
The layer ID of the final layer in the Docker image's v1 representation.
- V2Blob List<string>
The ordered list of v2 blobs that represent a given image.
- V2Name string
The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
- V1Name string
The layer ID of the final layer in the Docker image's v1 representation.
- V2Blob []string
The ordered list of v2 blobs that represent a given image.
- V2Name string
The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
- v1Name String
The layer ID of the final layer in the Docker image's v1 representation.
- v2Blob List<String>
The ordered list of v2 blobs that represent a given image.
- v2Name String
The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
- v1Name string
The layer ID of the final layer in the Docker image's v1 representation.
- v2Blob string[]
The ordered list of v2 blobs that represent a given image.
- v2Name string
The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
- v1_
name str The layer ID of the final layer in the Docker image's v1 representation.
- v2_
blob Sequence[str] The ordered list of v2 blobs that represent a given image.
- v2_
name str The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
- v1Name String
The layer ID of the final layer in the Docker image's v1 representation.
- v2Blob List<String>
The ordered list of v2 blobs that represent a given image.
- v2Name String
The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
HintResponse
- Human
Readable stringName The human readable name of this attestation authority, for example "qa".
- Human
Readable stringName The human readable name of this attestation authority, for example "qa".
- human
Readable StringName The human readable name of this attestation authority, for example "qa".
- human
Readable stringName The human readable name of this attestation authority, for example "qa".
- human_
readable_ strname The human readable name of this attestation authority, for example "qa".
- human
Readable StringName The human readable name of this attestation authority, for example "qa".
IdentityResponse
ImageNoteResponse
- Fingerprint
Pulumi.
Google Native. Container Analysis. V1. Inputs. Fingerprint Response Immutable. The fingerprint of the base image.
- Resource
Url string Immutable. The resource_url for the resource representing the basis of associated occurrence images.
- Fingerprint
Fingerprint
Response Immutable. The fingerprint of the base image.
- Resource
Url string Immutable. The resource_url for the resource representing the basis of associated occurrence images.
- fingerprint
Fingerprint
Response Immutable. The fingerprint of the base image.
- resource
Url String Immutable. The resource_url for the resource representing the basis of associated occurrence images.
- fingerprint
Fingerprint
Response Immutable. The fingerprint of the base image.
- resource
Url string Immutable. The resource_url for the resource representing the basis of associated occurrence images.
- fingerprint
Fingerprint
Response Immutable. The fingerprint of the base image.
- resource_
url str Immutable. The resource_url for the resource representing the basis of associated occurrence images.
- fingerprint Property Map
Immutable. The fingerprint of the base image.
- resource
Url String Immutable. The resource_url for the resource representing the basis of associated occurrence images.
KnowledgeBaseResponse
LicenseResponse
- Comments string
Comments
- Expression string
Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- Comments string
Comments
- Expression string
Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments String
Comments
- expression String
Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments string
Comments
- expression string
Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments str
Comments
- expression str
Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments String
Comments
- expression String
Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
PackageNoteResponse
- Architecture string
The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- Cpe
Uri string The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- Description string
The description of this package.
- Digest
List<Pulumi.
Google Native. Container Analysis. V1. Inputs. Digest Response> Hash value, typically a file digest, that allows unique identification a specific package.
- Distribution
List<Pulumi.
Google Native. Container Analysis. V1. Inputs. Distribution Response> Deprecated. The various channels by which a package is distributed.
Deprecated. The various channels by which a package is distributed.
- License
Pulumi.
Google Native. Container Analysis. V1. Inputs. License Response Licenses that have been declared by the authors of the package.
- Maintainer string
A freeform text denoting the maintainer of this package.
- Name string
Immutable. The name of the package.
- Package
Type string The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- Url string
The homepage for this package.
- Version
Pulumi.
Google Native. Container Analysis. V1. Inputs. Version Response The version of the package.
- Architecture string
The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- Cpe
Uri string The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- Description string
The description of this package.
- Digest
[]Digest
Response Hash value, typically a file digest, that allows unique identification a specific package.
- Distribution
[]Distribution
Response Deprecated. The various channels by which a package is distributed.
Deprecated. The various channels by which a package is distributed.
- License
License
Response Licenses that have been declared by the authors of the package.
- Maintainer string
A freeform text denoting the maintainer of this package.
- Name string
Immutable. The name of the package.
- Package
Type string The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- Url string
The homepage for this package.
- Version
Version
Response The version of the package.
- architecture String
The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- cpe
Uri String The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- description String
The description of this package.
- digest
List<Digest
Response> Hash value, typically a file digest, that allows unique identification a specific package.
- distribution
List<Distribution
Response> Deprecated. The various channels by which a package is distributed.
Deprecated. The various channels by which a package is distributed.
- license
License
Response Licenses that have been declared by the authors of the package.
- maintainer String
A freeform text denoting the maintainer of this package.
- name String
Immutable. The name of the package.
- package
Type String The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- url String
The homepage for this package.
- version
Version
Response The version of the package.
- architecture string
The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- cpe
Uri string The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- description string
The description of this package.
- digest
Digest
Response[] Hash value, typically a file digest, that allows unique identification a specific package.
- distribution
Distribution
Response[] Deprecated. The various channels by which a package is distributed.
Deprecated. The various channels by which a package is distributed.
- license
License
Response Licenses that have been declared by the authors of the package.
- maintainer string
A freeform text denoting the maintainer of this package.
- name string
Immutable. The name of the package.
- package
Type string The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- url string
The homepage for this package.
- version
Version
Response The version of the package.
- architecture str
The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- cpe_
uri str The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- description str
The description of this package.
- digest
Sequence[Digest
Response] Hash value, typically a file digest, that allows unique identification a specific package.
- distribution
Sequence[Distribution
Response] Deprecated. The various channels by which a package is distributed.
Deprecated. The various channels by which a package is distributed.
- license
License
Response Licenses that have been declared by the authors of the package.
- maintainer str
A freeform text denoting the maintainer of this package.
- name str
Immutable. The name of the package.
- package_
type str The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- url str
The homepage for this package.
- version
Version
Response The version of the package.
- architecture String
The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- cpe
Uri String The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- description String
The description of this package.
- digest List<Property Map>
Hash value, typically a file digest, that allows unique identification a specific package.
- distribution List<Property Map>
Deprecated. The various channels by which a package is distributed.
Deprecated. The various channels by which a package is distributed.
- license Property Map
Licenses that have been declared by the authors of the package.
- maintainer String
A freeform text denoting the maintainer of this package.
- name String
Immutable. The name of the package.
- package
Type String The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- url String
The homepage for this package.
- version Property Map
The version of the package.
RelatedUrlResponse
UpgradeDistributionResponse
- Classification string
The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
- Cpe
Uri string Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
- Cve List<string>
The cve tied to this Upgrade.
- Severity string
The severity as specified by the upstream operating system.
- Classification string
The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
- Cpe
Uri string Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
- Cve []string
The cve tied to this Upgrade.
- Severity string
The severity as specified by the upstream operating system.
- classification String
The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
- cpe
Uri String Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
- cve List<String>
The cve tied to this Upgrade.
- severity String
The severity as specified by the upstream operating system.
- classification string
The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
- cpe
Uri string Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
- cve string[]
The cve tied to this Upgrade.
- severity string
The severity as specified by the upstream operating system.
- classification str
The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
- cpe_
uri str Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
- cve Sequence[str]
The cve tied to this Upgrade.
- severity str
The severity as specified by the upstream operating system.
- classification String
The operating system classification of this Upgrade, as specified by the upstream operating system upgrade feed. For Windows the classification is one of the category_ids listed at https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ff357803(v=vs.85)
- cpe
Uri String Required - The specific operating system this metadata applies to. See https://cpe.mitre.org/specification/.
- cve List<String>
The cve tied to this Upgrade.
- severity String
The severity as specified by the upstream operating system.
UpgradeNoteResponse
- Distributions
List<Pulumi.
Google Native. Container Analysis. V1. Inputs. Upgrade Distribution Response> Metadata about the upgrade for each specific operating system.
- Package string
Required for non-Windows OS. The package this Upgrade is for.
- Version
Pulumi.
Google Native. Container Analysis. V1. Inputs. Version Response Required for non-Windows OS. The version of the package in machine + human readable form.
- Windows
Update Pulumi.Google Native. Container Analysis. V1. Inputs. Windows Update Response Required for Windows OS. Represents the metadata about the Windows update.
- Distributions
[]Upgrade
Distribution Response Metadata about the upgrade for each specific operating system.
- Package string
Required for non-Windows OS. The package this Upgrade is for.
- Version
Version
Response Required for non-Windows OS. The version of the package in machine + human readable form.
- Windows
Update WindowsUpdate Response Required for Windows OS. Represents the metadata about the Windows update.
- distributions
List<Upgrade
Distribution Response> Metadata about the upgrade for each specific operating system.
- package_ String
Required for non-Windows OS. The package this Upgrade is for.
- version
Version
Response Required for non-Windows OS. The version of the package in machine + human readable form.
- windows
Update WindowsUpdate Response Required for Windows OS. Represents the metadata about the Windows update.
- distributions
Upgrade
Distribution Response[] Metadata about the upgrade for each specific operating system.
- package string
Required for non-Windows OS. The package this Upgrade is for.
- version
Version
Response Required for non-Windows OS. The version of the package in machine + human readable form.
- windows
Update WindowsUpdate Response Required for Windows OS. Represents the metadata about the Windows update.
- distributions
Sequence[Upgrade
Distribution Response] Metadata about the upgrade for each specific operating system.
- package str
Required for non-Windows OS. The package this Upgrade is for.
- version
Version
Response Required for non-Windows OS. The version of the package in machine + human readable form.
- windows_
update WindowsUpdate Response Required for Windows OS. Represents the metadata about the Windows update.
- distributions List<Property Map>
Metadata about the upgrade for each specific operating system.
- package String
Required for non-Windows OS. The package this Upgrade is for.
- version Property Map
Required for non-Windows OS. The version of the package in machine + human readable form.
- windows
Update Property Map Required for Windows OS. Represents the metadata about the Windows update.
VersionResponse
- Epoch int
Used to correct mistakes in the version numbering scheme.
- Full
Name string Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
- Inclusive bool
Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- Kind string
Distinguishes between sentinel MIN/MAX versions and normal versions.
- Name string
Required only when version kind is NORMAL. The main part of the version name.
- Revision string
The iteration of the package build from the above version.
- Epoch int
Used to correct mistakes in the version numbering scheme.
- Full
Name string Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
- Inclusive bool
Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- Kind string
Distinguishes between sentinel MIN/MAX versions and normal versions.
- Name string
Required only when version kind is NORMAL. The main part of the version name.
- Revision string
The iteration of the package build from the above version.
- epoch Integer
Used to correct mistakes in the version numbering scheme.
- full
Name String Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
- inclusive Boolean
Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- kind String
Distinguishes between sentinel MIN/MAX versions and normal versions.
- name String
Required only when version kind is NORMAL. The main part of the version name.
- revision String
The iteration of the package build from the above version.
- epoch number
Used to correct mistakes in the version numbering scheme.
- full
Name string Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
- inclusive boolean
Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- kind string
Distinguishes between sentinel MIN/MAX versions and normal versions.
- name string
Required only when version kind is NORMAL. The main part of the version name.
- revision string
The iteration of the package build from the above version.
- epoch int
Used to correct mistakes in the version numbering scheme.
- full_
name str Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
- inclusive bool
Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- kind str
Distinguishes between sentinel MIN/MAX versions and normal versions.
- name str
Required only when version kind is NORMAL. The main part of the version name.
- revision str
The iteration of the package build from the above version.
- epoch Number
Used to correct mistakes in the version numbering scheme.
- full
Name String Human readable version string. This string is of the form :- and is only set when kind is NORMAL.
- inclusive Boolean
Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- kind String
Distinguishes between sentinel MIN/MAX versions and normal versions.
- name String
Required only when version kind is NORMAL. The main part of the version name.
- revision String
The iteration of the package build from the above version.
VulnerabilityNoteResponse
- Cvss
Score double The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
- Cvss
V3 Pulumi.Google Native. Container Analysis. V1. Inputs. CVSSv3Response The full description of the CVSSv3 for this vulnerability.
- Details
List<Pulumi.
Google Native. Container Analysis. V1. Inputs. Detail Response> Details of all known distros and packages affected by this vulnerability.
- Severity string
The note provider assigned severity of this vulnerability.
- Source
Update stringTime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- Windows
Details List<Pulumi.Google Native. Container Analysis. V1. Inputs. Windows Detail Response> Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
- Cvss
Score float64 The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
- Cvss
V3 CVSSv3Response The full description of the CVSSv3 for this vulnerability.
- Details
[]Detail
Response Details of all known distros and packages affected by this vulnerability.
- Severity string
The note provider assigned severity of this vulnerability.
- Source
Update stringTime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- Windows
Details []WindowsDetail Response Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
- cvss
Score Double The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
- cvss
V3 CVSSv3Response The full description of the CVSSv3 for this vulnerability.
- details
List<Detail
Response> Details of all known distros and packages affected by this vulnerability.
- severity String
The note provider assigned severity of this vulnerability.
- source
Update StringTime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- windows
Details List<WindowsDetail Response> Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
- cvss
Score number The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
- cvss
V3 CVSSv3Response The full description of the CVSSv3 for this vulnerability.
- details
Detail
Response[] Details of all known distros and packages affected by this vulnerability.
- severity string
The note provider assigned severity of this vulnerability.
- source
Update stringTime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- windows
Details WindowsDetail Response[] Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
- cvss_
score float The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
- cvss_
v3 CVSSv3Response The full description of the CVSSv3 for this vulnerability.
- details
Sequence[Detail
Response] Details of all known distros and packages affected by this vulnerability.
- severity str
The note provider assigned severity of this vulnerability.
- source_
update_ strtime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- windows_
details Sequence[WindowsDetail Response] Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
- cvss
Score Number The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
- cvss
V3 Property Map The full description of the CVSSv3 for this vulnerability.
- details List<Property Map>
Details of all known distros and packages affected by this vulnerability.
- severity String
The note provider assigned severity of this vulnerability.
- source
Update StringTime The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
- windows
Details List<Property Map> Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
WindowsDetailResponse
- Cpe
Uri string The CPE URI this vulnerability affects.
- Description string
The description of this vulnerability.
- Fixing
Kbs List<Pulumi.Google Native. Container Analysis. V1. Inputs. Knowledge Base Response> The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
- Name string
The name of this vulnerability.
- Cpe
Uri string The CPE URI this vulnerability affects.
- Description string
The description of this vulnerability.
- Fixing
Kbs []KnowledgeBase Response The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
- Name string
The name of this vulnerability.
- cpe
Uri String The CPE URI this vulnerability affects.
- description String
The description of this vulnerability.
- fixing
Kbs List<KnowledgeBase Response> The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
- name String
The name of this vulnerability.
- cpe
Uri string The CPE URI this vulnerability affects.
- description string
The description of this vulnerability.
- fixing
Kbs KnowledgeBase Response[] The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
- name string
The name of this vulnerability.
- cpe_
uri str The CPE URI this vulnerability affects.
- description str
The description of this vulnerability.
- fixing_
kbs Sequence[KnowledgeBase Response] The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
- name str
The name of this vulnerability.
- cpe
Uri String The CPE URI this vulnerability affects.
- description String
The description of this vulnerability.
- fixing
Kbs List<Property Map> The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed KBs presence is considered a fix.
- name String
The name of this vulnerability.
WindowsUpdateResponse
- Categories
List<Pulumi.
Google Native. Container Analysis. V1. Inputs. Category Response> The list of categories to which the update belongs.
- Description string
The localized description of the update.
- Identity
Pulumi.
Google Native. Container Analysis. V1. Inputs. Identity Response Required - The unique identifier for the update.
- Kb
Article List<string>Ids The Microsoft Knowledge Base article IDs that are associated with the update.
- Last
Published stringTimestamp The last published timestamp of the update.
- Support
Url string The hyperlink to the support information for the update.
- Title string
The localized title of the update.
- Categories
[]Category
Response The list of categories to which the update belongs.
- Description string
The localized description of the update.
- Identity
Identity
Response Required - The unique identifier for the update.
- Kb
Article []stringIds The Microsoft Knowledge Base article IDs that are associated with the update.
- Last
Published stringTimestamp The last published timestamp of the update.
- Support
Url string The hyperlink to the support information for the update.
- Title string
The localized title of the update.
- categories
List<Category
Response> The list of categories to which the update belongs.
- description String
The localized description of the update.
- identity
Identity
Response Required - The unique identifier for the update.
- kb
Article List<String>Ids The Microsoft Knowledge Base article IDs that are associated with the update.
- last
Published StringTimestamp The last published timestamp of the update.
- support
Url String The hyperlink to the support information for the update.
- title String
The localized title of the update.
- categories
Category
Response[] The list of categories to which the update belongs.
- description string
The localized description of the update.
- identity
Identity
Response Required - The unique identifier for the update.
- kb
Article string[]Ids The Microsoft Knowledge Base article IDs that are associated with the update.
- last
Published stringTimestamp The last published timestamp of the update.
- support
Url string The hyperlink to the support information for the update.
- title string
The localized title of the update.
- categories
Sequence[Category
Response] The list of categories to which the update belongs.
- description str
The localized description of the update.
- identity
Identity
Response Required - The unique identifier for the update.
- kb_
article_ Sequence[str]ids The Microsoft Knowledge Base article IDs that are associated with the update.
- last_
published_ strtimestamp The last published timestamp of the update.
- support_
url str The hyperlink to the support information for the update.
- title str
The localized title of the update.
- categories List<Property Map>
The list of categories to which the update belongs.
- description String
The localized description of the update.
- identity Property Map
Required - The unique identifier for the update.
- kb
Article List<String>Ids The Microsoft Knowledge Base article IDs that are associated with the update.
- last
Published StringTimestamp The last published timestamp of the update.
- support
Url String The hyperlink to the support information for the update.
- title String
The localized title of the update.
Package Details
- Repository
- https://github.com/pulumi/pulumi-google-native
- License
- Apache-2.0