Class Finding (2.43.0)

public final class Finding extends GeneratedMessageV3 implements FindingOrBuilder

A Finding resource represents a vulnerability instance identified during a ScanRun.

Protobuf type google.cloud.websecurityscanner.v1.Finding

Implements

FindingOrBuilder

Static Fields

BODY_FIELD_NUMBER

public static final int BODY_FIELD_NUMBER
Field Value
Type Description
int

DESCRIPTION_FIELD_NUMBER

public static final int DESCRIPTION_FIELD_NUMBER
Field Value
Type Description
int

FINAL_URL_FIELD_NUMBER

public static final int FINAL_URL_FIELD_NUMBER
Field Value
Type Description
int

FINDING_TYPE_FIELD_NUMBER

public static final int FINDING_TYPE_FIELD_NUMBER
Field Value
Type Description
int

FORM_FIELD_NUMBER

public static final int FORM_FIELD_NUMBER
Field Value
Type Description
int

FRAME_URL_FIELD_NUMBER

public static final int FRAME_URL_FIELD_NUMBER
Field Value
Type Description
int

FUZZED_URL_FIELD_NUMBER

public static final int FUZZED_URL_FIELD_NUMBER
Field Value
Type Description
int

HTTP_METHOD_FIELD_NUMBER

public static final int HTTP_METHOD_FIELD_NUMBER
Field Value
Type Description
int

NAME_FIELD_NUMBER

public static final int NAME_FIELD_NUMBER
Field Value
Type Description
int

OUTDATED_LIBRARY_FIELD_NUMBER

public static final int OUTDATED_LIBRARY_FIELD_NUMBER
Field Value
Type Description
int

REPRODUCTION_URL_FIELD_NUMBER

public static final int REPRODUCTION_URL_FIELD_NUMBER
Field Value
Type Description
int

SEVERITY_FIELD_NUMBER

public static final int SEVERITY_FIELD_NUMBER
Field Value
Type Description
int

TRACKING_ID_FIELD_NUMBER

public static final int TRACKING_ID_FIELD_NUMBER
Field Value
Type Description
int

VIOLATING_RESOURCE_FIELD_NUMBER

public static final int VIOLATING_RESOURCE_FIELD_NUMBER
Field Value
Type Description
int

VULNERABLE_HEADERS_FIELD_NUMBER

public static final int VULNERABLE_HEADERS_FIELD_NUMBER
Field Value
Type Description
int

VULNERABLE_PARAMETERS_FIELD_NUMBER

public static final int VULNERABLE_PARAMETERS_FIELD_NUMBER
Field Value
Type Description
int

XSS_FIELD_NUMBER

public static final int XSS_FIELD_NUMBER
Field Value
Type Description
int

XXE_FIELD_NUMBER

public static final int XXE_FIELD_NUMBER
Field Value
Type Description
int

Static Methods

getDefaultInstance()

public static Finding getDefaultInstance()
Returns
Type Description
Finding

getDescriptor()

public static final Descriptors.Descriptor getDescriptor()
Returns
Type Description
Descriptor

newBuilder()

public static Finding.Builder newBuilder()
Returns
Type Description
Finding.Builder

newBuilder(Finding prototype)

public static Finding.Builder newBuilder(Finding prototype)
Parameter
Name Description
prototype Finding
Returns
Type Description
Finding.Builder

parseDelimitedFrom(InputStream input)

public static Finding parseDelimitedFrom(InputStream input)
Parameter
Name Description
input InputStream
Returns
Type Description
Finding
Exceptions
Type Description
IOException

parseDelimitedFrom(InputStream input, ExtensionRegistryLite extensionRegistry)

public static Finding parseDelimitedFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
Parameters
Name Description
input InputStream
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Finding
Exceptions
Type Description
IOException

parseFrom(byte[] data)

public static Finding parseFrom(byte[] data)
Parameter
Name Description
data byte[]
Returns
Type Description
Finding
Exceptions
Type Description
InvalidProtocolBufferException

parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)

public static Finding parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)
Parameters
Name Description
data byte[]
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Finding
Exceptions
Type Description
InvalidProtocolBufferException

parseFrom(ByteString data)

public static Finding parseFrom(ByteString data)
Parameter
Name Description
data ByteString
Returns
Type Description
Finding
Exceptions
Type Description
InvalidProtocolBufferException

parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)

public static Finding parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)
Parameters
Name Description
data ByteString
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Finding
Exceptions
Type Description
InvalidProtocolBufferException

parseFrom(CodedInputStream input)

public static Finding parseFrom(CodedInputStream input)
Parameter
Name Description
input CodedInputStream
Returns
Type Description
Finding
Exceptions
Type Description
IOException

parseFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)

public static Finding parseFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
Parameters
Name Description
input CodedInputStream
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Finding
Exceptions
Type Description
IOException

parseFrom(InputStream input)

public static Finding parseFrom(InputStream input)
Parameter
Name Description
input InputStream
Returns
Type Description
Finding
Exceptions
Type Description
IOException

parseFrom(InputStream input, ExtensionRegistryLite extensionRegistry)

public static Finding parseFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
Parameters
Name Description
input InputStream
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Finding
Exceptions
Type Description
IOException

parseFrom(ByteBuffer data)

public static Finding parseFrom(ByteBuffer data)
Parameter
Name Description
data ByteBuffer
Returns
Type Description
Finding
Exceptions
Type Description
InvalidProtocolBufferException

parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)

public static Finding parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)
Parameters
Name Description
data ByteBuffer
extensionRegistry ExtensionRegistryLite
Returns
Type Description
Finding
Exceptions
Type Description
InvalidProtocolBufferException

parser()

public static Parser<Finding> parser()
Returns
Type Description
Parser<Finding>

Methods

equals(Object obj)

public boolean equals(Object obj)
Parameter
Name Description
obj Object
Returns
Type Description
boolean
Overrides

getBody()

public String getBody()

Output only. The body of the request that triggered the vulnerability.

string body = 5;

Returns
Type Description
String

The body.

getBodyBytes()

public ByteString getBodyBytes()

Output only. The body of the request that triggered the vulnerability.

string body = 5;

Returns
Type Description
ByteString

The bytes for body.

getDefaultInstanceForType()

public Finding getDefaultInstanceForType()
Returns
Type Description
Finding

getDescription()

public String getDescription()

Output only. The description of the vulnerability.

string description = 6;

Returns
Type Description
String

The description.

getDescriptionBytes()

public ByteString getDescriptionBytes()

Output only. The description of the vulnerability.

string description = 6;

Returns
Type Description
ByteString

The bytes for description.

getFinalUrl()

public String getFinalUrl()

Output only. The URL where the browser lands when the vulnerability is detected.

string final_url = 9;

Returns
Type Description
String

The finalUrl.

getFinalUrlBytes()

public ByteString getFinalUrlBytes()

Output only. The URL where the browser lands when the vulnerability is detected.

string final_url = 9;

Returns
Type Description
ByteString

The bytes for finalUrl.

getFindingType()

public String getFindingType()

Output only. The type of the Finding. Detailed and up-to-date information on findings can be found here: https://cloud.google.com/security-command-center/docs/how-to-remediate-web-security-scanner-findings

string finding_type = 2;

Returns
Type Description
String

The findingType.

getFindingTypeBytes()

public ByteString getFindingTypeBytes()

Output only. The type of the Finding. Detailed and up-to-date information on findings can be found here: https://cloud.google.com/security-command-center/docs/how-to-remediate-web-security-scanner-findings

string finding_type = 2;

Returns
Type Description
ByteString

The bytes for findingType.

getForm()

public Form getForm()

Output only. An addon containing information reported for a vulnerability with an HTML form, if any.

.google.cloud.websecurityscanner.v1.Form form = 16;

Returns
Type Description
Form

The form.

getFormOrBuilder()

public FormOrBuilder getFormOrBuilder()

Output only. An addon containing information reported for a vulnerability with an HTML form, if any.

.google.cloud.websecurityscanner.v1.Form form = 16;

Returns
Type Description
FormOrBuilder

getFrameUrl()

public String getFrameUrl()

Output only. If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported.

string frame_url = 8;

Returns
Type Description
String

The frameUrl.

getFrameUrlBytes()

public ByteString getFrameUrlBytes()

Output only. If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported.

string frame_url = 8;

Returns
Type Description
ByteString

The bytes for frameUrl.

getFuzzedUrl()

public String getFuzzedUrl()

Output only. The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability.

string fuzzed_url = 4;

Returns
Type Description
String

The fuzzedUrl.

getFuzzedUrlBytes()

public ByteString getFuzzedUrlBytes()

Output only. The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability.

string fuzzed_url = 4;

Returns
Type Description
ByteString

The bytes for fuzzedUrl.

getHttpMethod()

public String getHttpMethod()

Output only. The http method of the request that triggered the vulnerability, in uppercase.

string http_method = 3;

Returns
Type Description
String

The httpMethod.

getHttpMethodBytes()

public ByteString getHttpMethodBytes()

Output only. The http method of the request that triggered the vulnerability, in uppercase.

string http_method = 3;

Returns
Type Description
ByteString

The bytes for httpMethod.

getName()

public String getName()

Output only. The resource name of the Finding. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findings/{findingId}'. The finding IDs are generated by the system.

string name = 1;

Returns
Type Description
String

The name.

getNameBytes()

public ByteString getNameBytes()

Output only. The resource name of the Finding. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findings/{findingId}'. The finding IDs are generated by the system.

string name = 1;

Returns
Type Description
ByteString

The bytes for name.

getOutdatedLibrary()

public OutdatedLibrary getOutdatedLibrary()

Output only. An addon containing information about outdated libraries.

.google.cloud.websecurityscanner.v1.OutdatedLibrary outdated_library = 11;

Returns
Type Description
OutdatedLibrary

The outdatedLibrary.

getOutdatedLibraryOrBuilder()

public OutdatedLibraryOrBuilder getOutdatedLibraryOrBuilder()

Output only. An addon containing information about outdated libraries.

.google.cloud.websecurityscanner.v1.OutdatedLibrary outdated_library = 11;

Returns
Type Description
OutdatedLibraryOrBuilder

getParserForType()

public Parser<Finding> getParserForType()
Returns
Type Description
Parser<Finding>
Overrides

getReproductionUrl()

public String getReproductionUrl()

Output only. The URL containing human-readable payload that user can leverage to reproduce the vulnerability.

string reproduction_url = 7;

Returns
Type Description
String

The reproductionUrl.

getReproductionUrlBytes()

public ByteString getReproductionUrlBytes()

Output only. The URL containing human-readable payload that user can leverage to reproduce the vulnerability.

string reproduction_url = 7;

Returns
Type Description
ByteString

The bytes for reproductionUrl.

getSerializedSize()

public int getSerializedSize()
Returns
Type Description
int
Overrides

getSeverity()

public Finding.Severity getSeverity()

Output only. The severity level of the reported vulnerability.

.google.cloud.websecurityscanner.v1.Finding.Severity severity = 17 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
Finding.Severity

The severity.

getSeverityValue()

public int getSeverityValue()

Output only. The severity level of the reported vulnerability.

.google.cloud.websecurityscanner.v1.Finding.Severity severity = 17 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
int

The enum numeric value on the wire for severity.

getTrackingId()

public String getTrackingId()

Output only. The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns.

string tracking_id = 10;

Returns
Type Description
String

The trackingId.

getTrackingIdBytes()

public ByteString getTrackingIdBytes()

Output only. The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns.

string tracking_id = 10;

Returns
Type Description
ByteString

The bytes for trackingId.

getViolatingResource()

public ViolatingResource getViolatingResource()

Output only. An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.

.google.cloud.websecurityscanner.v1.ViolatingResource violating_resource = 12;

Returns
Type Description
ViolatingResource

The violatingResource.

getViolatingResourceOrBuilder()

public ViolatingResourceOrBuilder getViolatingResourceOrBuilder()

Output only. An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.

.google.cloud.websecurityscanner.v1.ViolatingResource violating_resource = 12;

Returns
Type Description
ViolatingResourceOrBuilder

getVulnerableHeaders()

public VulnerableHeaders getVulnerableHeaders()

Output only. An addon containing information about vulnerable or missing HTTP headers.

.google.cloud.websecurityscanner.v1.VulnerableHeaders vulnerable_headers = 15;

Returns
Type Description
VulnerableHeaders

The vulnerableHeaders.

getVulnerableHeadersOrBuilder()

public VulnerableHeadersOrBuilder getVulnerableHeadersOrBuilder()

Output only. An addon containing information about vulnerable or missing HTTP headers.

.google.cloud.websecurityscanner.v1.VulnerableHeaders vulnerable_headers = 15;

Returns
Type Description
VulnerableHeadersOrBuilder

getVulnerableParameters()

public VulnerableParameters getVulnerableParameters()

Output only. An addon containing information about request parameters which were found to be vulnerable.

.google.cloud.websecurityscanner.v1.VulnerableParameters vulnerable_parameters = 13;

Returns
Type Description
VulnerableParameters

The vulnerableParameters.

getVulnerableParametersOrBuilder()

public VulnerableParametersOrBuilder getVulnerableParametersOrBuilder()

Output only. An addon containing information about request parameters which were found to be vulnerable.

.google.cloud.websecurityscanner.v1.VulnerableParameters vulnerable_parameters = 13;

Returns
Type Description
VulnerableParametersOrBuilder

getXss()

public Xss getXss()

Output only. An addon containing information reported for an XSS, if any.

.google.cloud.websecurityscanner.v1.Xss xss = 14;

Returns
Type Description
Xss

The xss.

getXssOrBuilder()

public XssOrBuilder getXssOrBuilder()

Output only. An addon containing information reported for an XSS, if any.

.google.cloud.websecurityscanner.v1.Xss xss = 14;

Returns
Type Description
XssOrBuilder

getXxe()

public Xxe getXxe()

Output only. An addon containing information reported for an XXE, if any.

.google.cloud.websecurityscanner.v1.Xxe xxe = 18 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
Xxe

The xxe.

getXxeOrBuilder()

public XxeOrBuilder getXxeOrBuilder()

Output only. An addon containing information reported for an XXE, if any.

.google.cloud.websecurityscanner.v1.Xxe xxe = 18 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
XxeOrBuilder

hasForm()

public boolean hasForm()

Output only. An addon containing information reported for a vulnerability with an HTML form, if any.

.google.cloud.websecurityscanner.v1.Form form = 16;

Returns
Type Description
boolean

Whether the form field is set.

hasOutdatedLibrary()

public boolean hasOutdatedLibrary()

Output only. An addon containing information about outdated libraries.

.google.cloud.websecurityscanner.v1.OutdatedLibrary outdated_library = 11;

Returns
Type Description
boolean

Whether the outdatedLibrary field is set.

hasViolatingResource()

public boolean hasViolatingResource()

Output only. An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.

.google.cloud.websecurityscanner.v1.ViolatingResource violating_resource = 12;

Returns
Type Description
boolean

Whether the violatingResource field is set.

hasVulnerableHeaders()

public boolean hasVulnerableHeaders()

Output only. An addon containing information about vulnerable or missing HTTP headers.

.google.cloud.websecurityscanner.v1.VulnerableHeaders vulnerable_headers = 15;

Returns
Type Description
boolean

Whether the vulnerableHeaders field is set.

hasVulnerableParameters()

public boolean hasVulnerableParameters()

Output only. An addon containing information about request parameters which were found to be vulnerable.

.google.cloud.websecurityscanner.v1.VulnerableParameters vulnerable_parameters = 13;

Returns
Type Description
boolean

Whether the vulnerableParameters field is set.

hasXss()

public boolean hasXss()

Output only. An addon containing information reported for an XSS, if any.

.google.cloud.websecurityscanner.v1.Xss xss = 14;

Returns
Type Description
boolean

Whether the xss field is set.

hasXxe()

public boolean hasXxe()

Output only. An addon containing information reported for an XXE, if any.

.google.cloud.websecurityscanner.v1.Xxe xxe = 18 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
Type Description
boolean

Whether the xxe field is set.

hashCode()

public int hashCode()
Returns
Type Description
int
Overrides

internalGetFieldAccessorTable()

protected GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
Returns
Type Description
FieldAccessorTable
Overrides

isInitialized()

public final boolean isInitialized()
Returns
Type Description
boolean
Overrides

newBuilderForType()

public Finding.Builder newBuilderForType()
Returns
Type Description
Finding.Builder

newBuilderForType(GeneratedMessageV3.BuilderParent parent)

protected Finding.Builder newBuilderForType(GeneratedMessageV3.BuilderParent parent)
Parameter
Name Description
parent BuilderParent
Returns
Type Description
Finding.Builder
Overrides

newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)

protected Object newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)
Parameter
Name Description
unused UnusedPrivateParameter
Returns
Type Description
Object
Overrides

toBuilder()

public Finding.Builder toBuilder()
Returns
Type Description
Finding.Builder

writeTo(CodedOutputStream output)

public void writeTo(CodedOutputStream output)
Parameter
Name Description
output CodedOutputStream
Overrides
Exceptions
Type Description
IOException