Oracle Cloud Infrastructure v0.12.0, Mar 17 23

oci.Adm.VulnerabilityAudit

This resource provides the Vulnerability Audit resource in Oracle Cloud Infrastructure Adm service.

Creates a new Vulnerability Audit by providing a tree of Application Dependencies.

Example Usage

using System.Collections.Generic;
using Pulumi;
using Oci = Pulumi.Oci;

return await Deployment.RunAsync(() => 
{
    var testVulnerabilityAudit = new Oci.Adm.VulnerabilityAudit("testVulnerabilityAudit", new()
    {
        BuildType = @var.Vulnerability_audit_build_type,
        KnowledgeBaseId = oci_adm_knowledge_base.Test_knowledge_base.Id,
        ApplicationDependencies = new[]
        {
            new Oci.Adm.Inputs.VulnerabilityAuditApplicationDependencyArgs
            {
                Gav = @var.Vulnerability_audit_application_dependencies_gav,
                NodeId = oci_adm_node.Test_node.Id,
                ApplicationDependencyNodeIds = @var.Vulnerability_audit_application_dependencies_application_dependency_node_ids,
            },
        },
        CompartmentId = @var.Compartment_id,
        Configuration = new Oci.Adm.Inputs.VulnerabilityAuditConfigurationArgs
        {
            Exclusions = @var.Vulnerability_audit_configuration_exclusions,
            MaxPermissibleCvssV2score = @var.Vulnerability_audit_configuration_max_permissible_cvss_v2score,
            MaxPermissibleCvssV3score = @var.Vulnerability_audit_configuration_max_permissible_cvss_v3score,
        },
        DefinedTags = 
        {
            { "foo-namespace.bar-key", "value" },
        },
        DisplayName = @var.Vulnerability_audit_display_name,
        FreeformTags = 
        {
            { "bar-key", "value" },
        },
        Source = new Oci.Adm.Inputs.VulnerabilityAuditSourceArgs
        {
            Type = @var.Vulnerability_audit_source_type,
            Description = @var.Vulnerability_audit_source_description,
            OciResourceId = oci_adm_oci_resource.Test_oci_resource.Id,
        },
    });

});

package main

import (
	"github.com/pulumi/pulumi-oci/sdk/go/oci/Adm"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := Adm.NewVulnerabilityAudit(ctx, "testVulnerabilityAudit", &Adm.VulnerabilityAuditArgs{
			BuildType:       pulumi.Any(_var.Vulnerability_audit_build_type),
			KnowledgeBaseId: pulumi.Any(oci_adm_knowledge_base.Test_knowledge_base.Id),
			ApplicationDependencies: adm.VulnerabilityAuditApplicationDependencyArray{
				&adm.VulnerabilityAuditApplicationDependencyArgs{
					Gav:                          pulumi.Any(_var.Vulnerability_audit_application_dependencies_gav),
					NodeId:                       pulumi.Any(oci_adm_node.Test_node.Id),
					ApplicationDependencyNodeIds: pulumi.Any(_var.Vulnerability_audit_application_dependencies_application_dependency_node_ids),
				},
			},
			CompartmentId: pulumi.Any(_var.Compartment_id),
			Configuration: &adm.VulnerabilityAuditConfigurationArgs{
				Exclusions:                pulumi.Any(_var.Vulnerability_audit_configuration_exclusions),
				MaxPermissibleCvssV2score: pulumi.Any(_var.Vulnerability_audit_configuration_max_permissible_cvss_v2score),
				MaxPermissibleCvssV3score: pulumi.Any(_var.Vulnerability_audit_configuration_max_permissible_cvss_v3score),
			},
			DefinedTags: pulumi.AnyMap{
				"foo-namespace.bar-key": pulumi.Any("value"),
			},
			DisplayName: pulumi.Any(_var.Vulnerability_audit_display_name),
			FreeformTags: pulumi.AnyMap{
				"bar-key": pulumi.Any("value"),
			},
			Source: &adm.VulnerabilityAuditSourceArgs{
				Type:          pulumi.Any(_var.Vulnerability_audit_source_type),
				Description:   pulumi.Any(_var.Vulnerability_audit_source_description),
				OciResourceId: pulumi.Any(oci_adm_oci_resource.Test_oci_resource.Id),
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.Adm.VulnerabilityAudit;
import com.pulumi.oci.Adm.VulnerabilityAuditArgs;
import com.pulumi.oci.Adm.inputs.VulnerabilityAuditApplicationDependencyArgs;
import com.pulumi.oci.Adm.inputs.VulnerabilityAuditConfigurationArgs;
import com.pulumi.oci.Adm.inputs.VulnerabilityAuditSourceArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var testVulnerabilityAudit = new VulnerabilityAudit("testVulnerabilityAudit", VulnerabilityAuditArgs.builder()        
            .buildType(var_.vulnerability_audit_build_type())
            .knowledgeBaseId(oci_adm_knowledge_base.test_knowledge_base().id())
            .applicationDependencies(VulnerabilityAuditApplicationDependencyArgs.builder()
                .gav(var_.vulnerability_audit_application_dependencies_gav())
                .nodeId(oci_adm_node.test_node().id())
                .applicationDependencyNodeIds(var_.vulnerability_audit_application_dependencies_application_dependency_node_ids())
                .build())
            .compartmentId(var_.compartment_id())
            .configuration(VulnerabilityAuditConfigurationArgs.builder()
                .exclusions(var_.vulnerability_audit_configuration_exclusions())
                .maxPermissibleCvssV2score(var_.vulnerability_audit_configuration_max_permissible_cvss_v2score())
                .maxPermissibleCvssV3score(var_.vulnerability_audit_configuration_max_permissible_cvss_v3score())
                .build())
            .definedTags(Map.of("foo-namespace.bar-key", "value"))
            .displayName(var_.vulnerability_audit_display_name())
            .freeformTags(Map.of("bar-key", "value"))
            .source(VulnerabilityAuditSourceArgs.builder()
                .type(var_.vulnerability_audit_source_type())
                .description(var_.vulnerability_audit_source_description())
                .ociResourceId(oci_adm_oci_resource.test_oci_resource().id())
                .build())
            .build());

    }
}

import pulumi
import pulumi_oci as oci

test_vulnerability_audit = oci.adm.VulnerabilityAudit("testVulnerabilityAudit",
    build_type=var["vulnerability_audit_build_type"],
    knowledge_base_id=oci_adm_knowledge_base["test_knowledge_base"]["id"],
    application_dependencies=[oci.adm.VulnerabilityAuditApplicationDependencyArgs(
        gav=var["vulnerability_audit_application_dependencies_gav"],
        node_id=oci_adm_node["test_node"]["id"],
        application_dependency_node_ids=var["vulnerability_audit_application_dependencies_application_dependency_node_ids"],
    )],
    compartment_id=var["compartment_id"],
    configuration=oci.adm.VulnerabilityAuditConfigurationArgs(
        exclusions=var["vulnerability_audit_configuration_exclusions"],
        max_permissible_cvss_v2score=var["vulnerability_audit_configuration_max_permissible_cvss_v2score"],
        max_permissible_cvss_v3score=var["vulnerability_audit_configuration_max_permissible_cvss_v3score"],
    ),
    defined_tags={
        "foo-namespace.bar-key": "value",
    },
    display_name=var["vulnerability_audit_display_name"],
    freeform_tags={
        "bar-key": "value",
    },
    source=oci.adm.VulnerabilityAuditSourceArgs(
        type=var["vulnerability_audit_source_type"],
        description=var["vulnerability_audit_source_description"],
        oci_resource_id=oci_adm_oci_resource["test_oci_resource"]["id"],
    ))

import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";

const testVulnerabilityAudit = new oci.adm.VulnerabilityAudit("testVulnerabilityAudit", {
    buildType: _var.vulnerability_audit_build_type,
    knowledgeBaseId: oci_adm_knowledge_base.test_knowledge_base.id,
    applicationDependencies: [{
        gav: _var.vulnerability_audit_application_dependencies_gav,
        nodeId: oci_adm_node.test_node.id,
        applicationDependencyNodeIds: _var.vulnerability_audit_application_dependencies_application_dependency_node_ids,
    }],
    compartmentId: _var.compartment_id,
    configuration: {
        exclusions: _var.vulnerability_audit_configuration_exclusions,
        maxPermissibleCvssV2score: _var.vulnerability_audit_configuration_max_permissible_cvss_v2score,
        maxPermissibleCvssV3score: _var.vulnerability_audit_configuration_max_permissible_cvss_v3score,
    },
    definedTags: {
        "foo-namespace.bar-key": "value",
    },
    displayName: _var.vulnerability_audit_display_name,
    freeformTags: {
        "bar-key": "value",
    },
    source: {
        type: _var.vulnerability_audit_source_type,
        description: _var.vulnerability_audit_source_description,
        ociResourceId: oci_adm_oci_resource.test_oci_resource.id,
    },
});

resources:
  testVulnerabilityAudit:
    type: oci:Adm:VulnerabilityAudit
    properties:
      #Required
      buildType: ${var.vulnerability_audit_build_type}
      knowledgeBaseId: ${oci_adm_knowledge_base.test_knowledge_base.id}
      #Optional
      applicationDependencies:
        - gav: ${var.vulnerability_audit_application_dependencies_gav}
          nodeId: ${oci_adm_node.test_node.id}
          applicationDependencyNodeIds: ${var.vulnerability_audit_application_dependencies_application_dependency_node_ids}
      compartmentId: ${var.compartment_id}
      configuration:
        exclusions: ${var.vulnerability_audit_configuration_exclusions}
        maxPermissibleCvssV2score: ${var.vulnerability_audit_configuration_max_permissible_cvss_v2score}
        maxPermissibleCvssV3score: ${var.vulnerability_audit_configuration_max_permissible_cvss_v3score}
      definedTags:
        foo-namespace.bar-key: value
      displayName: ${var.vulnerability_audit_display_name}
      freeformTags:
        bar-key: value
      source:
        type: ${var.vulnerability_audit_source_type}
        description: ${var.vulnerability_audit_source_description}
        ociResourceId: ${oci_adm_oci_resource.test_oci_resource.id}

Create VulnerabilityAudit Resource

new VulnerabilityAudit(name: string, args: VulnerabilityAuditArgs, opts?: CustomResourceOptions);

@overload
def VulnerabilityAudit(resource_name: str,
                       opts: Optional[ResourceOptions] = None,
                       application_dependencies: Optional[Sequence[_adm.VulnerabilityAuditApplicationDependencyArgs]] = None,
                       build_type: Optional[str] = None,
                       compartment_id: Optional[str] = None,
                       configuration: Optional[_adm.VulnerabilityAuditConfigurationArgs] = None,
                       defined_tags: Optional[Mapping[str, Any]] = None,
                       display_name: Optional[str] = None,
                       freeform_tags: Optional[Mapping[str, Any]] = None,
                       knowledge_base_id: Optional[str] = None,
                       source: Optional[_adm.VulnerabilityAuditSourceArgs] = None)
@overload
def VulnerabilityAudit(resource_name: str,
                       args: VulnerabilityAuditArgs,
                       opts: Optional[ResourceOptions] = None)

func NewVulnerabilityAudit(ctx *Context, name string, args VulnerabilityAuditArgs, opts ...ResourceOption) (*VulnerabilityAudit, error)

public VulnerabilityAudit(string name, VulnerabilityAuditArgs args, CustomResourceOptions? opts = null)

public VulnerabilityAudit(String name, VulnerabilityAuditArgs args)
public VulnerabilityAudit(String name, VulnerabilityAuditArgs args, CustomResourceOptions options)

type: oci:Adm:VulnerabilityAudit
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string: The unique name of the resource.
args VulnerabilityAuditArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args VulnerabilityAuditArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args VulnerabilityAuditArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args VulnerabilityAuditArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args VulnerabilityAuditArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

VulnerabilityAudit Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The VulnerabilityAudit resource accepts the following input properties:

BuildType string: The type of the build tool.
KnowledgeBaseId string: The Oracle Cloud identifier (OCID) of the Knowledge Base.
ApplicationDependencies List<VulnerabilityAuditApplicationDependencyArgs>: List of Application Dependencies (without vulnerabilities).
CompartmentId string: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
Configuration VulnerabilityAuditConfigurationArgs: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
DefinedTags Dictionary<string, object>: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
DisplayName string: (Updatable) The name of the Vulnerability Audit.
FreeformTags Dictionary<string, object>: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
Source VulnerabilityAuditSourceArgs: Vulnerability Audit source.

BuildType string: The type of the build tool.
KnowledgeBaseId string: The Oracle Cloud identifier (OCID) of the Knowledge Base.
ApplicationDependencies []VulnerabilityAuditApplicationDependencyArgs: List of Application Dependencies (without vulnerabilities).
CompartmentId string: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
Configuration VulnerabilityAuditConfigurationArgs: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
DefinedTags map[string]interface{}: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
DisplayName string: (Updatable) The name of the Vulnerability Audit.
FreeformTags map[string]interface{}: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
Source VulnerabilityAuditSourceArgs: Vulnerability Audit source.

buildType String: The type of the build tool.
knowledgeBaseId String: The Oracle Cloud identifier (OCID) of the Knowledge Base.
applicationDependencies List<VulnerabilityAuditApplicationDependencyArgs>: List of Application Dependencies (without vulnerabilities).
compartmentId String: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
configuration VulnerabilityAuditConfigurationArgs: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
definedTags Map<String,Object>: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
displayName String: (Updatable) The name of the Vulnerability Audit.
freeformTags Map<String,Object>: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
source VulnerabilityAuditSourceArgs: Vulnerability Audit source.

buildType string: The type of the build tool.
knowledgeBaseId string: The Oracle Cloud identifier (OCID) of the Knowledge Base.
applicationDependencies VulnerabilityAuditApplicationDependencyArgs[]: List of Application Dependencies (without vulnerabilities).
compartmentId string: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
configuration VulnerabilityAuditConfigurationArgs: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
definedTags {[key: string]: any}: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
displayName string: (Updatable) The name of the Vulnerability Audit.
freeformTags {[key: string]: any}: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
source VulnerabilityAuditSourceArgs: Vulnerability Audit source.

build_type str: The type of the build tool.
knowledge_base_id str: The Oracle Cloud identifier (OCID) of the Knowledge Base.
application_dependencies VulnerabilityAuditApplicationDependencyArgs]: List of Application Dependencies (without vulnerabilities).
compartment_id str: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
configuration VulnerabilityAuditConfigurationArgs: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
defined_tags Mapping[str, Any]: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
display_name str: (Updatable) The name of the Vulnerability Audit.
freeform_tags Mapping[str, Any]: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
source VulnerabilityAuditSourceArgs: Vulnerability Audit source.

buildType String: The type of the build tool.
knowledgeBaseId String: The Oracle Cloud identifier (OCID) of the Knowledge Base.
applicationDependencies List<Property Map>: List of Application Dependencies (without vulnerabilities).
compartmentId String: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
configuration Property Map: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
definedTags Map<Any>: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
displayName String: (Updatable) The name of the Vulnerability Audit.
freeformTags Map<Any>: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
source Property Map: Vulnerability Audit source.

Outputs

All input properties are implicitly available as output properties. Additionally, the VulnerabilityAudit resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
IsSuccess bool: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
MaxObservedCvssV2score double: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
MaxObservedCvssV2scoreWithIgnored double: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
MaxObservedCvssV3score double: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
MaxObservedCvssV3scoreWithIgnored double: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
State string: The current lifecycle state of the Vulnerability Audit.
SystemTags Dictionary<string, object>: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
TimeCreated string: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
TimeUpdated string: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
Vulnerabilities List<VulnerabilityAuditVulnerability>: List of vulnerabilities found in the Vulnerability Audit.
VulnerableArtifactsCount int: Count of non-ignored vulnerable Application Dependencies.
VulnerableArtifactsCountWithIgnored int: Count of all vulnerable Application Dependencies.

Id string: The provider-assigned unique ID for this managed resource.
IsSuccess bool: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
MaxObservedCvssV2score float64: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
MaxObservedCvssV2scoreWithIgnored float64: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
MaxObservedCvssV3score float64: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
MaxObservedCvssV3scoreWithIgnored float64: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
State string: The current lifecycle state of the Vulnerability Audit.
SystemTags map[string]interface{}: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
TimeCreated string: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
TimeUpdated string: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
Vulnerabilities []VulnerabilityAuditVulnerability: List of vulnerabilities found in the Vulnerability Audit.
VulnerableArtifactsCount int: Count of non-ignored vulnerable Application Dependencies.
VulnerableArtifactsCountWithIgnored int: Count of all vulnerable Application Dependencies.

id String: The provider-assigned unique ID for this managed resource.
isSuccess Boolean: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
maxObservedCvssV2score Double: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV2scoreWithIgnored Double: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
maxObservedCvssV3score Double: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV3scoreWithIgnored Double: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
state String: The current lifecycle state of the Vulnerability Audit.
systemTags Map<String,Object>: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated String: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
timeUpdated String: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
vulnerabilities List<VulnerabilityAuditVulnerability>: List of vulnerabilities found in the Vulnerability Audit.
vulnerableArtifactsCount Integer: Count of non-ignored vulnerable Application Dependencies.
vulnerableArtifactsCountWithIgnored Integer: Count of all vulnerable Application Dependencies.

id string: The provider-assigned unique ID for this managed resource.
isSuccess boolean: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
maxObservedCvssV2score number: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV2scoreWithIgnored number: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
maxObservedCvssV3score number: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV3scoreWithIgnored number: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
state string: The current lifecycle state of the Vulnerability Audit.
systemTags {[key: string]: any}: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated string: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
timeUpdated string: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
vulnerabilities VulnerabilityAuditVulnerability[]: List of vulnerabilities found in the Vulnerability Audit.
vulnerableArtifactsCount number: Count of non-ignored vulnerable Application Dependencies.
vulnerableArtifactsCountWithIgnored number: Count of all vulnerable Application Dependencies.

id str: The provider-assigned unique ID for this managed resource.
is_success bool: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
max_observed_cvss_v2score float: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
max_observed_cvss_v2score_with_ignored float: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
max_observed_cvss_v3score float: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
max_observed_cvss_v3score_with_ignored float: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
state str: The current lifecycle state of the Vulnerability Audit.
system_tags Mapping[str, Any]: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
time_created str: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
time_updated str: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
vulnerabilities VulnerabilityAuditVulnerability]: List of vulnerabilities found in the Vulnerability Audit.
vulnerable_artifacts_count int: Count of non-ignored vulnerable Application Dependencies.
vulnerable_artifacts_count_with_ignored int: Count of all vulnerable Application Dependencies.

id String: The provider-assigned unique ID for this managed resource.
isSuccess Boolean: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
maxObservedCvssV2score Number: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV2scoreWithIgnored Number: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
maxObservedCvssV3score Number: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV3scoreWithIgnored Number: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
state String: The current lifecycle state of the Vulnerability Audit.
systemTags Map<Any>: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated String: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
timeUpdated String: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
vulnerabilities List<Property Map>: List of vulnerabilities found in the Vulnerability Audit.
vulnerableArtifactsCount Number: Count of non-ignored vulnerable Application Dependencies.
vulnerableArtifactsCountWithIgnored Number: Count of all vulnerable Application Dependencies.

Look up Existing VulnerabilityAudit Resource

Get an existing VulnerabilityAudit resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: VulnerabilityAuditState, opts?: CustomResourceOptions): VulnerabilityAudit

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        application_dependencies: Optional[Sequence[_adm.VulnerabilityAuditApplicationDependencyArgs]] = None,
        build_type: Optional[str] = None,
        compartment_id: Optional[str] = None,
        configuration: Optional[_adm.VulnerabilityAuditConfigurationArgs] = None,
        defined_tags: Optional[Mapping[str, Any]] = None,
        display_name: Optional[str] = None,
        freeform_tags: Optional[Mapping[str, Any]] = None,
        is_success: Optional[bool] = None,
        knowledge_base_id: Optional[str] = None,
        max_observed_cvss_v2score: Optional[float] = None,
        max_observed_cvss_v2score_with_ignored: Optional[float] = None,
        max_observed_cvss_v3score: Optional[float] = None,
        max_observed_cvss_v3score_with_ignored: Optional[float] = None,
        source: Optional[_adm.VulnerabilityAuditSourceArgs] = None,
        state: Optional[str] = None,
        system_tags: Optional[Mapping[str, Any]] = None,
        time_created: Optional[str] = None,
        time_updated: Optional[str] = None,
        vulnerabilities: Optional[Sequence[_adm.VulnerabilityAuditVulnerabilityArgs]] = None,
        vulnerable_artifacts_count: Optional[int] = None,
        vulnerable_artifacts_count_with_ignored: Optional[int] = None) -> VulnerabilityAudit

func GetVulnerabilityAudit(ctx *Context, name string, id IDInput, state *VulnerabilityAuditState, opts ...ResourceOption) (*VulnerabilityAudit, error)

public static VulnerabilityAudit Get(string name, Input<string> id, VulnerabilityAuditState? state, CustomResourceOptions? opts = null)

public static VulnerabilityAudit get(String name, Output<String> id, VulnerabilityAuditState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

ApplicationDependencies List<VulnerabilityAuditApplicationDependencyArgs>: List of Application Dependencies (without vulnerabilities).
BuildType string: The type of the build tool.
CompartmentId string: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
Configuration VulnerabilityAuditConfigurationArgs: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
DefinedTags Dictionary<string, object>: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
DisplayName string: (Updatable) The name of the Vulnerability Audit.
FreeformTags Dictionary<string, object>: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
IsSuccess bool: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
KnowledgeBaseId string: The Oracle Cloud identifier (OCID) of the Knowledge Base.
MaxObservedCvssV2score double: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
MaxObservedCvssV2scoreWithIgnored double: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
MaxObservedCvssV3score double: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
MaxObservedCvssV3scoreWithIgnored double: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
Source VulnerabilityAuditSourceArgs: Vulnerability Audit source.
State string: The current lifecycle state of the Vulnerability Audit.
SystemTags Dictionary<string, object>: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
TimeCreated string: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
TimeUpdated string: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
Vulnerabilities List<VulnerabilityAuditVulnerabilityArgs>: List of vulnerabilities found in the Vulnerability Audit.
VulnerableArtifactsCount int: Count of non-ignored vulnerable Application Dependencies.
VulnerableArtifactsCountWithIgnored int: Count of all vulnerable Application Dependencies.

ApplicationDependencies []VulnerabilityAuditApplicationDependencyArgs: List of Application Dependencies (without vulnerabilities).
BuildType string: The type of the build tool.
CompartmentId string: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
Configuration VulnerabilityAuditConfigurationArgs: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
DefinedTags map[string]interface{}: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
DisplayName string: (Updatable) The name of the Vulnerability Audit.
FreeformTags map[string]interface{}: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
IsSuccess bool: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
KnowledgeBaseId string: The Oracle Cloud identifier (OCID) of the Knowledge Base.
MaxObservedCvssV2score float64: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
MaxObservedCvssV2scoreWithIgnored float64: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
MaxObservedCvssV3score float64: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
MaxObservedCvssV3scoreWithIgnored float64: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
Source VulnerabilityAuditSourceArgs: Vulnerability Audit source.
State string: The current lifecycle state of the Vulnerability Audit.
SystemTags map[string]interface{}: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
TimeCreated string: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
TimeUpdated string: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
Vulnerabilities []VulnerabilityAuditVulnerabilityArgs: List of vulnerabilities found in the Vulnerability Audit.
VulnerableArtifactsCount int: Count of non-ignored vulnerable Application Dependencies.
VulnerableArtifactsCountWithIgnored int: Count of all vulnerable Application Dependencies.

applicationDependencies List<VulnerabilityAuditApplicationDependencyArgs>: List of Application Dependencies (without vulnerabilities).
buildType String: The type of the build tool.
compartmentId String: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
configuration VulnerabilityAuditConfigurationArgs: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
definedTags Map<String,Object>: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
displayName String: (Updatable) The name of the Vulnerability Audit.
freeformTags Map<String,Object>: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
isSuccess Boolean: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
knowledgeBaseId String: The Oracle Cloud identifier (OCID) of the Knowledge Base.
maxObservedCvssV2score Double: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV2scoreWithIgnored Double: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
maxObservedCvssV3score Double: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV3scoreWithIgnored Double: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
source VulnerabilityAuditSourceArgs: Vulnerability Audit source.
state String: The current lifecycle state of the Vulnerability Audit.
systemTags Map<String,Object>: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated String: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
timeUpdated String: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
vulnerabilities List<VulnerabilityAuditVulnerabilityArgs>: List of vulnerabilities found in the Vulnerability Audit.
vulnerableArtifactsCount Integer: Count of non-ignored vulnerable Application Dependencies.
vulnerableArtifactsCountWithIgnored Integer: Count of all vulnerable Application Dependencies.

applicationDependencies VulnerabilityAuditApplicationDependencyArgs[]: List of Application Dependencies (without vulnerabilities).
buildType string: The type of the build tool.
compartmentId string: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
configuration VulnerabilityAuditConfigurationArgs: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
definedTags {[key: string]: any}: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
displayName string: (Updatable) The name of the Vulnerability Audit.
freeformTags {[key: string]: any}: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
isSuccess boolean: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
knowledgeBaseId string: The Oracle Cloud identifier (OCID) of the Knowledge Base.
maxObservedCvssV2score number: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV2scoreWithIgnored number: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
maxObservedCvssV3score number: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV3scoreWithIgnored number: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
source VulnerabilityAuditSourceArgs: Vulnerability Audit source.
state string: The current lifecycle state of the Vulnerability Audit.
systemTags {[key: string]: any}: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated string: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
timeUpdated string: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
vulnerabilities VulnerabilityAuditVulnerabilityArgs[]: List of vulnerabilities found in the Vulnerability Audit.
vulnerableArtifactsCount number: Count of non-ignored vulnerable Application Dependencies.
vulnerableArtifactsCountWithIgnored number: Count of all vulnerable Application Dependencies.

application_dependencies VulnerabilityAuditApplicationDependencyArgs]: List of Application Dependencies (without vulnerabilities).
build_type str: The type of the build tool.
compartment_id str: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
configuration VulnerabilityAuditConfigurationArgs: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
defined_tags Mapping[str, Any]: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
display_name str: (Updatable) The name of the Vulnerability Audit.
freeform_tags Mapping[str, Any]: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
is_success bool: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
knowledge_base_id str: The Oracle Cloud identifier (OCID) of the Knowledge Base.
max_observed_cvss_v2score float: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
max_observed_cvss_v2score_with_ignored float: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
max_observed_cvss_v3score float: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
max_observed_cvss_v3score_with_ignored float: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
source VulnerabilityAuditSourceArgs: Vulnerability Audit source.
state str: The current lifecycle state of the Vulnerability Audit.
system_tags Mapping[str, Any]: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
time_created str: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
time_updated str: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
vulnerabilities VulnerabilityAuditVulnerabilityArgs]: List of vulnerabilities found in the Vulnerability Audit.
vulnerable_artifacts_count int: Count of non-ignored vulnerable Application Dependencies.
vulnerable_artifacts_count_with_ignored int: Count of all vulnerable Application Dependencies.

applicationDependencies List<Property Map>: List of Application Dependencies (without vulnerabilities).
buildType String: The type of the build tool.
compartmentId String: (Updatable) The Oracle Cloud identifier (OCID) of the compartment associated with the Vulnerability Audit. If compartment identifier is not provided the compartment of the associated Knowledge Base will be used instead.
configuration Property Map: Configuration for a Vulnerability Audit. A vulnerable Application Dependency is ignored if its name does match any of the items in exclusions, or all of the associated Vulnerabilies have a CVSS v2 score below maxPermissibleCvssV2Score and a CVSS v3 score below maxPermissibleCvssV3Score. type: object
definedTags Map<Any>: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: {"foo-namespace.bar-key": "value"}
displayName String: (Updatable) The name of the Vulnerability Audit.
freeformTags Map<Any>: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}
isSuccess Boolean: Indicates if an audit succeeded according to the configuration. The value is null if the audit is in the CREATING state.
knowledgeBaseId String: The Oracle Cloud identifier (OCID) of the Knowledge Base.
maxObservedCvssV2score Number: Maximum Common Vulnerability Scoring System Version 2 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV2scoreWithIgnored Number: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable Application Dependencies including ignored ones.
maxObservedCvssV3score Number: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable Application Dependencies.
maxObservedCvssV3scoreWithIgnored Number: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable Application Dependencies including ignored ones.
source Property Map: Vulnerability Audit source.
state String: The current lifecycle state of the Vulnerability Audit.
systemTags Map<Any>: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: {"orcl-cloud.free-tier-retained": "true"}
timeCreated String: The creation date and time of the Vulnerability Audit (formatted according to RFC3339).
timeUpdated String: The update date and time of the Vulnerability Audit (formatted according to RFC3339).
vulnerabilities List<Property Map>: List of vulnerabilities found in the Vulnerability Audit.
vulnerableArtifactsCount Number: Count of non-ignored vulnerable Application Dependencies.
vulnerableArtifactsCountWithIgnored Number: Count of all vulnerable Application Dependencies.

Supporting Types

VulnerabilityAuditApplicationDependency

Gav string: Group Artifact Version (GAV) identifier (Group:Artifact:Version), e.g. org.graalvm.nativeimage:svm:21.1.0.
NodeId string: Unique identifier of an Application Dependency, for example nodeId1. The nodeId can be generated by assigning a unique id to each application dependency in the tree of application dependencies. Every node, even those who share the same GAV, should have a different nodeId. The preferred way of constructing a nodeId is to assign incremental integers during a breadth first or depth first search. A nodeId can be reused only it refers to the same subtree of application dependencies. (This is not equivalent to referring to the same GAV, that is, a GAV can have multiple transitive dependencies.)
ApplicationDependencyNodeIds List<string>: List of Application Dependencies on which this Application Dependency depends, each identified by its nodeId.

Gav string: Group Artifact Version (GAV) identifier (Group:Artifact:Version), e.g. org.graalvm.nativeimage:svm:21.1.0.
NodeId string: Unique identifier of an Application Dependency, for example nodeId1. The nodeId can be generated by assigning a unique id to each application dependency in the tree of application dependencies. Every node, even those who share the same GAV, should have a different nodeId. The preferred way of constructing a nodeId is to assign incremental integers during a breadth first or depth first search. A nodeId can be reused only it refers to the same subtree of application dependencies. (This is not equivalent to referring to the same GAV, that is, a GAV can have multiple transitive dependencies.)
ApplicationDependencyNodeIds []string: List of Application Dependencies on which this Application Dependency depends, each identified by its nodeId.

gav String: Group Artifact Version (GAV) identifier (Group:Artifact:Version), e.g. org.graalvm.nativeimage:svm:21.1.0.
nodeId String: Unique identifier of an Application Dependency, for example nodeId1. The nodeId can be generated by assigning a unique id to each application dependency in the tree of application dependencies. Every node, even those who share the same GAV, should have a different nodeId. The preferred way of constructing a nodeId is to assign incremental integers during a breadth first or depth first search. A nodeId can be reused only it refers to the same subtree of application dependencies. (This is not equivalent to referring to the same GAV, that is, a GAV can have multiple transitive dependencies.)
applicationDependencyNodeIds List<String>: List of Application Dependencies on which this Application Dependency depends, each identified by its nodeId.

gav string: Group Artifact Version (GAV) identifier (Group:Artifact:Version), e.g. org.graalvm.nativeimage:svm:21.1.0.
nodeId string: Unique identifier of an Application Dependency, for example nodeId1. The nodeId can be generated by assigning a unique id to each application dependency in the tree of application dependencies. Every node, even those who share the same GAV, should have a different nodeId. The preferred way of constructing a nodeId is to assign incremental integers during a breadth first or depth first search. A nodeId can be reused only it refers to the same subtree of application dependencies. (This is not equivalent to referring to the same GAV, that is, a GAV can have multiple transitive dependencies.)
applicationDependencyNodeIds string[]: List of Application Dependencies on which this Application Dependency depends, each identified by its nodeId.

gav str: Group Artifact Version (GAV) identifier (Group:Artifact:Version), e.g. org.graalvm.nativeimage:svm:21.1.0.
node_id str: Unique identifier of an Application Dependency, for example nodeId1. The nodeId can be generated by assigning a unique id to each application dependency in the tree of application dependencies. Every node, even those who share the same GAV, should have a different nodeId. The preferred way of constructing a nodeId is to assign incremental integers during a breadth first or depth first search. A nodeId can be reused only it refers to the same subtree of application dependencies. (This is not equivalent to referring to the same GAV, that is, a GAV can have multiple transitive dependencies.)
application_dependency_node_ids Sequence[str]: List of Application Dependencies on which this Application Dependency depends, each identified by its nodeId.

gav String: Group Artifact Version (GAV) identifier (Group:Artifact:Version), e.g. org.graalvm.nativeimage:svm:21.1.0.
nodeId String: Unique identifier of an Application Dependency, for example nodeId1. The nodeId can be generated by assigning a unique id to each application dependency in the tree of application dependencies. Every node, even those who share the same GAV, should have a different nodeId. The preferred way of constructing a nodeId is to assign incremental integers during a breadth first or depth first search. A nodeId can be reused only it refers to the same subtree of application dependencies. (This is not equivalent to referring to the same GAV, that is, a GAV can have multiple transitive dependencies.)
applicationDependencyNodeIds List<String>: List of Application Dependencies on which this Application Dependency depends, each identified by its nodeId.

VulnerabilityAuditConfiguration

Exclusions List<string>: A vulnerable Application Dependency is ignored if its name matches any of the items in exclusions.
MaxPermissibleCvssV2score double: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
MaxPermissibleCvssV3score double: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.

Exclusions []string: A vulnerable Application Dependency is ignored if its name matches any of the items in exclusions.
MaxPermissibleCvssV2score float64: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
MaxPermissibleCvssV3score float64: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.

exclusions List<String>: A vulnerable Application Dependency is ignored if its name matches any of the items in exclusions.
maxPermissibleCvssV2score Double: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
maxPermissibleCvssV3score Double: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.

exclusions string[]: A vulnerable Application Dependency is ignored if its name matches any of the items in exclusions.
maxPermissibleCvssV2score number: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
maxPermissibleCvssV3score number: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.

exclusions Sequence[str]: A vulnerable Application Dependency is ignored if its name matches any of the items in exclusions.
max_permissible_cvss_v2score float: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
max_permissible_cvss_v3score float: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.

exclusions List<String>: A vulnerable Application Dependency is ignored if its name matches any of the items in exclusions.
maxPermissibleCvssV2score Number: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
maxPermissibleCvssV3score Number: A vulnerable Application Dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.

VulnerabilityAuditSource

Type string: Source type of the Vulnerability Audit.
Description string: Description of the external resource source.
OciResourceId string: The Oracle Cloud identifier (OCID) of the Oracle Cloud Infrastructure resource that triggered the Vulnerability Audit.

Type string: Source type of the Vulnerability Audit.
Description string: Description of the external resource source.
OciResourceId string: The Oracle Cloud identifier (OCID) of the Oracle Cloud Infrastructure resource that triggered the Vulnerability Audit.

type String: Source type of the Vulnerability Audit.
description String: Description of the external resource source.
ociResourceId String: The Oracle Cloud identifier (OCID) of the Oracle Cloud Infrastructure resource that triggered the Vulnerability Audit.

type string: Source type of the Vulnerability Audit.
description string: Description of the external resource source.
ociResourceId string: The Oracle Cloud identifier (OCID) of the Oracle Cloud Infrastructure resource that triggered the Vulnerability Audit.

type str: Source type of the Vulnerability Audit.
description str: Description of the external resource source.
oci_resource_id str: The Oracle Cloud identifier (OCID) of the Oracle Cloud Infrastructure resource that triggered the Vulnerability Audit.

type String: Source type of the Vulnerability Audit.
description String: Description of the external resource source.
ociResourceId String: The Oracle Cloud identifier (OCID) of the Oracle Cloud Infrastructure resource that triggered the Vulnerability Audit.

VulnerabilityAuditVulnerability

CvssV2score double: Common Vulnerability Scoring System (CVSS) Version 2.
CvssV3score double: Common Vulnerability Scoring System (CVSS) Version 3.
Id string: Unique vulnerability identifier, e.g. CVE-1999-0067.
IsIgnored bool: Indicates if the vulnerability was ignored according to the audit configuration.

CvssV2score float64: Common Vulnerability Scoring System (CVSS) Version 2.
CvssV3score float64: Common Vulnerability Scoring System (CVSS) Version 3.
Id string: Unique vulnerability identifier, e.g. CVE-1999-0067.
IsIgnored bool: Indicates if the vulnerability was ignored according to the audit configuration.

cvssV2score Double: Common Vulnerability Scoring System (CVSS) Version 2.
cvssV3score Double: Common Vulnerability Scoring System (CVSS) Version 3.
id String: Unique vulnerability identifier, e.g. CVE-1999-0067.
isIgnored Boolean: Indicates if the vulnerability was ignored according to the audit configuration.

cvssV2score number: Common Vulnerability Scoring System (CVSS) Version 2.
cvssV3score number: Common Vulnerability Scoring System (CVSS) Version 3.
id string: Unique vulnerability identifier, e.g. CVE-1999-0067.
isIgnored boolean: Indicates if the vulnerability was ignored according to the audit configuration.

cvss_v2score float: Common Vulnerability Scoring System (CVSS) Version 2.
cvss_v3score float: Common Vulnerability Scoring System (CVSS) Version 3.
id str: Unique vulnerability identifier, e.g. CVE-1999-0067.
is_ignored bool: Indicates if the vulnerability was ignored according to the audit configuration.

cvssV2score Number: Common Vulnerability Scoring System (CVSS) Version 2.
cvssV3score Number: Common Vulnerability Scoring System (CVSS) Version 3.
id String: Unique vulnerability identifier, e.g. CVE-1999-0067.
isIgnored Boolean: Indicates if the vulnerability was ignored according to the audit configuration.

Import

VulnerabilityAudits can be imported using the id, e.g.

 $ pulumi import oci:Adm/vulnerabilityAudit:VulnerabilityAudit test_vulnerability_audit "id"

Package Details

Repository: oci pulumi/pulumi-oci
License: Apache-2.0
Notes: This Pulumi package is based on the oci Terraform Provider.