cdx-proto
    Preparing search index...

    Type Alias VulnerabilityAnalysis

    VulnerabilityAnalysis: Message<"cyclonedx.v1_6.VulnerabilityAnalysis"> & {
        detail?: string;
        firstIssued?: Timestamp;
        justification?: ImpactAnalysisJustification;
        lastUpdated?: Timestamp;
        response: VulnerabilityResponse[];
        state?: ImpactAnalysisState;
    }

    Type declaration

    • Optionaldetail?: string

      Detailed description of the impact, including methods used during the assessment. If a vulnerability is not exploitable, this field should include specific details on why the component or service is not impacted by this vulnerability.

      from field: optional string detail = 4;

    • OptionalfirstIssued?: Timestamp

      The date and time (timestamp) when the analysis was first issued.

      from field: optional google.protobuf.Timestamp firstIssued = 5;

    • Optionaljustification?: ImpactAnalysisJustification

      The rationale of why the impact analysis state was asserted.

      from field: optional cyclonedx.v1_6.ImpactAnalysisJustification justification = 2;

    • OptionallastUpdated?: Timestamp

      The date and time (timestamp) when the analysis was last updated.

      from field: optional google.protobuf.Timestamp lastUpdated = 6;

    • response: VulnerabilityResponse[]

      A response to the vulnerability by the manufacturer, supplier, or project responsible for the affected component or service. More than one response is allowed. Responses are strongly encouraged for vulnerabilities where the analysis state is exploitable.

      from field: repeated cyclonedx.v1_6.VulnerabilityResponse response = 3;

    • Optionalstate?: ImpactAnalysisState

      Declares the current state of an occurrence of a vulnerability after automated or manual analysis.

      from field: optional cyclonedx.v1_6.ImpactAnalysisState state = 1;

    from message cyclonedx.v1_6.VulnerabilityAnalysis

    Settings

    Member Visibility