VulnerabilityOccurrence
import type { VulnerabilityOccurrence } from "https://googleapis.deno.dev/v1/containeranalysis:v1.ts";
An occurrence of a severity vulnerability on a resource.
§Properties
Output only. The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
Output only. CVSS version used to populate cvss_score and severity.
The distro assigned severity for this vulnerability when it is available, otherwise this is the note provider assigned severity. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
Output only. Whether at least one of the affected packages has a fix available.
Required. The set of affected locations and their fixes (if available) within the associated resource.
Output only. The note provider assigned severity of this vulnerability.
The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).