VexAssessment
import type { VexAssessment } from "https://googleapis.deno.dev/v1/containeranalysis:v1.ts";
VexAssessment provides all publisher provided Vex information that is related to this vulnerability.
interface VexAssessment {
cve?: string;
impacts?: string[];
justification?: Justification;
noteName?: string;
relatedUris?: RelatedUrl[];
remediations?: Remediation[];
state?:
| "STATE_UNSPECIFIED"
| "AFFECTED"
| "NOT_AFFECTED"
| "FIXED"
| "UNDER_INVESTIGATION";
vulnerabilityId?: string;
}§Properties
§
cve?: string
[src]Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
§
impacts?: string[]
[src]Contains information about the impact of this vulnerability, this will change with time.
§
justification?: Justification
[src]Justification provides the justification when the state of the assessment if NOT_AFFECTED.
§
noteName?: string
[src]The VulnerabilityAssessment note from which this VexAssessment was
generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]
.
§
remediations?: Remediation[]
[src]Specifies details on how to handle (and presumably, fix) a vulnerability.