Optional
data: PartialMessage<cdx_16.Vulnerability>Published advisories of the vulnerability if provided.
from field: repeated cyclonedx.v1_6.Advisory advisories = 10;
affects
from field: repeated cyclonedx.v1_6.VulnerabilityAffects affects = 17;
Optional
analysisAn assessment of the impact and exploitability of the vulnerability.
from field: optional cyclonedx.v1_6.VulnerabilityAnalysis analysis = 16;
Optional
bomAn optional identifier which can be used to reference the vulnerability elsewhere in the BOM. Uniqueness is enforced within all elements and children of the root-level bom element.
from field: optional string bom_ref = 1;
Optional
createdThe date and time (timestamp) when the vulnerability record was created in the vulnerability database.
from field: optional google.protobuf.Timestamp created = 11;
Optional
creditsIndividuals or organizations credited with the discovery of the vulnerability.
from field: optional cyclonedx.v1_6.VulnerabilityCredits credits = 14;
List of Common Weaknesses Enumerations (CWEs) codes that describe this vulnerability. For example, 399 (of https://cwe.mitre.org/data/definitions/399.html)
from field: repeated int32 cwes = 6;
Optional
descriptionA description of the vulnerability as provided by the source.
from field: optional string description = 7;
Optional
detailIf available, an in-depth description of the vulnerability as provided by the source organization. Details often include information useful in understanding the root cause.
from field: optional string detail = 8;
Optional
idThe identifier that uniquely identifies the vulnerability.
from field: optional string id = 2;
Optional
proofEvidence used to reproduce the vulnerability.
from field: optional cyclonedx.v1_6.ProofOfConcept proofOfConcept = 20;
Specifies optional, custom, properties
from field: repeated cyclonedx.v1_6.Property properties = 18;
Optional
publishedThe date and time (timestamp) when the vulnerability record was first published.
from field: optional google.protobuf.Timestamp published = 12;
List of vulnerability ratings
from field: repeated cyclonedx.v1_6.VulnerabilityRating ratings = 5;
Optional
recommendationRecommendations of how the vulnerability can be remediated or mitigated.
from field: optional string recommendation = 9;
Zero or more pointers to vulnerabilities that are the equivalent of the vulnerability specified. Oftentimes, the same vulnerability may exist in multiple sources of vulnerability intelligence but have different identifiers. References provide a way to correlate vulnerabilities across multiple sources of vulnerability intelligence.
from field: repeated cyclonedx.v1_6.VulnerabilityReference references = 4;
Optional
rejectedThe date and time (timestamp) when the vulnerability record was rejected (if applicable).
from field: optional google.protobuf.Timestamp rejected = 19;
Optional
sourceThe source that published the vulnerability.
from field: optional cyclonedx.v1_6.Source source = 3;
Optional
toolsThe tool(s) used to identify, confirm, or score the vulnerability.
from field: optional cyclonedx.v1_6.Tool tools = 15;
Optional
updatedThe date and time (timestamp) when the vulnerability record was last updated.
from field: optional google.protobuf.Timestamp updated = 13;
Optional
workaroundA bypass, usually temporary, of the vulnerability that reduces its likelihood and/or impact. Workarounds often involve changes to configuration or deployments.
from field: optional string workaround = 21;
Static
Readonly
fieldsStatic
Readonly
runtimeStatic
Readonly
typeCreate a deep copy.
Compare with a message of the same type.
Parse from binary data, merging fields.
Repeated fields are appended. Map entries are added, overwriting existing keys.
If a message field is already present, it will be merged with the new data.
Optional
options: Partial<BinaryReadOptions>Retrieve the MessageType of this message - a singleton that represents the protobuf message declaration and provides metadata for reflection- based operations.
Protected
toJSONOverride for serialization behavior. This will be invoked when calling JSON.stringify on this message (i.e. JSON.stringify(msg)).
Note that this will not serialize google.protobuf.Any with a packed message because the protobuf JSON format specifies that it needs to be unpacked, and this is only possible with a type registry to look up the message type. As a result, attempting to serialize a message with this type will throw an Error.
This method is protected because you should not need to invoke it directly -- instead use JSON.stringify or toJsonString for stringified JSON. Alternatively, if actual JSON is desired, you should use toJson.
Static
equalsStatic
fromOptional
options: Partial<BinaryReadOptions>Static
fromOptional
options: Partial<JsonReadOptions>Static
fromOptional
options: Partial<JsonReadOptions>
Generated
from message cyclonedx.v1_6.Vulnerability