Class Finding (2.11.0)

A Finding resource represents a vulnerability instance identified during a ScanRun.

Protobuf type google.cloud.websecurityscanner.v1beta.Finding

The body of the request that triggered the vulnerability.

string body = 5;

The body of the request that triggered the vulnerability.

string body = 5;

The description of the vulnerability.

string description = 6;

The description of the vulnerability.

string description = 6;

The URL where the browser lands when the vulnerability is detected.

string final_url = 9;

The URL where the browser lands when the vulnerability is detected.

string final_url = 9;

The type of the Finding. Detailed and up-to-date information on findings can be found here: https://cloud.google.com/security-scanner/docs/scan-result-details

string finding_type = 2;

The type of the Finding. Detailed and up-to-date information on findings can be found here: https://cloud.google.com/security-scanner/docs/scan-result-details

string finding_type = 2;

An addon containing information reported for a vulnerability with an HTML form, if any.

.google.cloud.websecurityscanner.v1beta.Form form = 16;

An addon containing information reported for a vulnerability with an HTML form, if any.

.google.cloud.websecurityscanner.v1beta.Form form = 16;

If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported.

string frame_url = 8;

If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported.

string frame_url = 8;

The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability.

string fuzzed_url = 4;

The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability.

string fuzzed_url = 4;

The http method of the request that triggered the vulnerability, in uppercase.

string http_method = 3;

The http method of the request that triggered the vulnerability, in uppercase.

string http_method = 3;

The resource name of the Finding. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findings/{findingId}'. The finding IDs are generated by the system.

string name = 1;

The resource name of the Finding. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findings/{findingId}'. The finding IDs are generated by the system.

string name = 1;

An addon containing information about outdated libraries.

.google.cloud.websecurityscanner.v1beta.OutdatedLibrary outdated_library = 11;

An addon containing information about outdated libraries.

.google.cloud.websecurityscanner.v1beta.OutdatedLibrary outdated_library = 11;

The URL containing human-readable payload that user can leverage to reproduce the vulnerability.

string reproduction_url = 7;

The URL containing human-readable payload that user can leverage to reproduce the vulnerability.

string reproduction_url = 7;

The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns.

string tracking_id = 10;

The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns.

string tracking_id = 10;

An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.

.google.cloud.websecurityscanner.v1beta.ViolatingResource violating_resource = 12;

An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.

.google.cloud.websecurityscanner.v1beta.ViolatingResource violating_resource = 12;

An addon containing information about vulnerable or missing HTTP headers.

.google.cloud.websecurityscanner.v1beta.VulnerableHeaders vulnerable_headers = 15;

An addon containing information about vulnerable or missing HTTP headers.

.google.cloud.websecurityscanner.v1beta.VulnerableHeaders vulnerable_headers = 15;

An addon containing information about request parameters which were found to be vulnerable.

.google.cloud.websecurityscanner.v1beta.VulnerableParameters vulnerable_parameters = 13;

An addon containing information about request parameters which were found to be vulnerable.

.google.cloud.websecurityscanner.v1beta.VulnerableParameters vulnerable_parameters = 13;

An addon containing information reported for an XSS, if any.

.google.cloud.websecurityscanner.v1beta.Xss xss = 14;

An addon containing information reported for an XSS, if any.

.google.cloud.websecurityscanner.v1beta.Xss xss = 14;

An addon containing information reported for a vulnerability with an HTML form, if any.

.google.cloud.websecurityscanner.v1beta.Form form = 16;

An addon containing information about outdated libraries.

.google.cloud.websecurityscanner.v1beta.OutdatedLibrary outdated_library = 11;

An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.

.google.cloud.websecurityscanner.v1beta.ViolatingResource violating_resource = 12;

An addon containing information about vulnerable or missing HTTP headers.

.google.cloud.websecurityscanner.v1beta.VulnerableHeaders vulnerable_headers = 15;

An addon containing information about request parameters which were found to be vulnerable.

.google.cloud.websecurityscanner.v1beta.VulnerableParameters vulnerable_parameters = 13;

An addon containing information reported for an XSS, if any.

.google.cloud.websecurityscanner.v1beta.Xss xss = 14;