class Google::Apis::WebsecurityscannerV1::Finding

A Finding resource represents a vulnerability instance identified during a ScanRun.

Attributes

body[RW]

Output only. The body of the request that triggered the vulnerability. Corresponds to the JSON property `body` @return [String]

description[RW]

Output only. The description of the vulnerability. Corresponds to the JSON property `description` @return [String]

final_url[RW]

Output only. The URL where the browser lands when the vulnerability is detected. Corresponds to the JSON property `finalUrl` @return [String]

finding_type[RW]

Output only. The type of the Finding. Detailed and up-to-date information on findings can be found here: cloud.google.com/security-command-center/ docs/how-to-remediate-web-security-scanner-findings Corresponds to the JSON property `findingType` @return [String]

form[RW]

! Information about a vulnerability with an HTML. Corresponds to the JSON property `form` @return [Google::Apis::WebsecurityscannerV1::Form]

frame_url[RW]

Output only. If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported. Corresponds to the JSON property `frameUrl` @return [String]

fuzzed_url[RW]

Output only. The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability. Corresponds to the JSON property `fuzzedUrl` @return [String]

http_method[RW]

Output only. The http method of the request that triggered the vulnerability, in uppercase. Corresponds to the JSON property `httpMethod` @return [String]

name[RW]

Output only. The resource name of the Finding. The name follows the format of ' projects/`projectId`/scanConfigs/`scanConfigId`/scanruns/`scanRunId`/findings/` findingId`'. The finding IDs are generated by the system. Corresponds to the JSON property `name` @return [String]

outdated_library[RW]

Information reported for an outdated library. Corresponds to the JSON property `outdatedLibrary` @return [Google::Apis::WebsecurityscannerV1::OutdatedLibrary]

reproduction_url[RW]

Output only. The URL containing human-readable payload that user can leverage to reproduce the vulnerability. Corresponds to the JSON property `reproductionUrl` @return [String]

severity[RW]

Output only. The severity level of the reported vulnerability. Corresponds to the JSON property `severity` @return [String]

tracking_id[RW]

Output only. The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns. Corresponds to the JSON property `trackingId` @return [String]

violating_resource[RW]

Information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc. Corresponds to the JSON property `violatingResource` @return [Google::Apis::WebsecurityscannerV1::ViolatingResource]

vulnerable_headers[RW]

Information about vulnerable or missing HTTP Headers. Corresponds to the JSON property `vulnerableHeaders` @return [Google::Apis::WebsecurityscannerV1::VulnerableHeaders]

vulnerable_parameters[RW]

Information about vulnerable request parameters. Corresponds to the JSON property `vulnerableParameters` @return [Google::Apis::WebsecurityscannerV1::VulnerableParameters]

xss[RW]

Information reported for an XSS. Corresponds to the JSON property `xss` @return [Google::Apis::WebsecurityscannerV1::Xss]

Public Class Methods

new(**args) click to toggle source
# File lib/google/apis/websecurityscanner_v1/classes.rb, line 240
def initialize(**args)
   update!(**args)
end

Public Instance Methods

update!(**args) click to toggle source

Update properties of this object

# File lib/google/apis/websecurityscanner_v1/classes.rb, line 245
def update!(**args)
  @body = args[:body] if args.key?(:body)
  @description = args[:description] if args.key?(:description)
  @final_url = args[:final_url] if args.key?(:final_url)
  @finding_type = args[:finding_type] if args.key?(:finding_type)
  @form = args[:form] if args.key?(:form)
  @frame_url = args[:frame_url] if args.key?(:frame_url)
  @fuzzed_url = args[:fuzzed_url] if args.key?(:fuzzed_url)
  @http_method = args[:http_method] if args.key?(:http_method)
  @name = args[:name] if args.key?(:name)
  @outdated_library = args[:outdated_library] if args.key?(:outdated_library)
  @reproduction_url = args[:reproduction_url] if args.key?(:reproduction_url)
  @severity = args[:severity] if args.key?(:severity)
  @tracking_id = args[:tracking_id] if args.key?(:tracking_id)
  @violating_resource = args[:violating_resource] if args.key?(:violating_resource)
  @vulnerable_headers = args[:vulnerable_headers] if args.key?(:vulnerable_headers)
  @vulnerable_parameters = args[:vulnerable_parameters] if args.key?(:vulnerable_parameters)
  @xss = args[:xss] if args.key?(:xss)
end