| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 1 | <html><body> |
| 2 | <style> |
| 3 | |
| 4 | body, h1, h2, h3, div, span, p, pre, a { |
| 5 | margin: 0; |
| 6 | padding: 0; |
| 7 | border: 0; |
| 8 | font-weight: inherit; |
| 9 | font-style: inherit; |
| 10 | font-size: 100%; |
| 11 | font-family: inherit; |
| 12 | vertical-align: baseline; |
| 13 | } |
| 14 | |
| 15 | body { |
| 16 | font-size: 13px; |
| 17 | padding: 1em; |
| 18 | } |
| 19 | |
| 20 | h1 { |
| 21 | font-size: 26px; |
| 22 | margin-bottom: 1em; |
| 23 | } |
| 24 | |
| 25 | h2 { |
| 26 | font-size: 24px; |
| 27 | margin-bottom: 1em; |
| 28 | } |
| 29 | |
| 30 | h3 { |
| 31 | font-size: 20px; |
| 32 | margin-bottom: 1em; |
| 33 | margin-top: 1em; |
| 34 | } |
| 35 | |
| 36 | pre, code { |
| 37 | line-height: 1.5; |
| 38 | font-family: Monaco, 'DejaVu Sans Mono', 'Bitstream Vera Sans Mono', 'Lucida Console', monospace; |
| 39 | } |
| 40 | |
| 41 | pre { |
| 42 | margin-top: 0.5em; |
| 43 | } |
| 44 | |
| 45 | h1, h2, h3, p { |
| 46 | font-family: Arial, sans serif; |
| 47 | } |
| 48 | |
| 49 | h1, h2, h3 { |
| 50 | border-bottom: solid #CCC 1px; |
| 51 | } |
| 52 | |
| 53 | .toc_element { |
| 54 | margin-top: 0.5em; |
| 55 | } |
| 56 | |
| 57 | .firstline { |
| 58 | margin-left: 2 em; |
| 59 | } |
| 60 | |
| 61 | .method { |
| 62 | margin-top: 1em; |
| 63 | border: solid 1px #CCC; |
| 64 | padding: 1em; |
| 65 | background: #EEE; |
| 66 | } |
| 67 | |
| 68 | .details { |
| 69 | font-weight: bold; |
| 70 | font-size: 14px; |
| 71 | } |
| 72 | |
| 73 | </style> |
| 74 | |
| 75 | <h1><a href="websecurityscanner_v1beta.html">Web Security Scanner API</a> . <a href="websecurityscanner_v1beta.projects.html">projects</a> . <a href="websecurityscanner_v1beta.projects.scanConfigs.html">scanConfigs</a> . <a href="websecurityscanner_v1beta.projects.scanConfigs.scanRuns.html">scanRuns</a> . <a href="websecurityscanner_v1beta.projects.scanConfigs.scanRuns.findings.html">findings</a></h1> |
| 76 | <h2>Instance Methods</h2> |
| 77 | <p class="toc_element"> |
| 78 | <code><a href="#get">get(name, x__xgafv=None)</a></code></p> |
| 79 | <p class="firstline">Gets a Finding.</p> |
| 80 | <p class="toc_element"> |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 81 | <code><a href="#list">list(parent, pageSize=None, filter=None, pageToken=None, x__xgafv=None)</a></code></p> |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 82 | <p class="firstline">List Findings under a given ScanRun.</p> |
| 83 | <p class="toc_element"> |
| 84 | <code><a href="#list_next">list_next(previous_request, previous_response)</a></code></p> |
| 85 | <p class="firstline">Retrieves the next page of results.</p> |
| 86 | <h3>Method Details</h3> |
| 87 | <div class="method"> |
| 88 | <code class="details" id="get">get(name, x__xgafv=None)</code> |
| 89 | <pre>Gets a Finding. |
| 90 | |
| 91 | Args: |
| Dan O'Meara | dd49464 | 2020-05-01 07:42:23 -0700 | [diff] [blame] | 92 | name: string, Required. The resource name of the Finding to be returned. The name follows the |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 93 | format of |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 94 | 'projects/{projectId}/scanConfigs/{scanConfigId}/scanRuns/{scanRunId}/findings/{findingId}'. (required) |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 95 | x__xgafv: string, V1 error format. |
| 96 | Allowed values |
| 97 | 1 - v1 error format |
| 98 | 2 - v2 error format |
| 99 | |
| 100 | Returns: |
| 101 | An object of the form: |
| 102 | |
| 103 | { # A Finding resource represents a vulnerability instance identified during a |
| 104 | # ScanRun. |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 105 | "severity": "A String", # The severity level of the reported vulnerability. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 106 | "httpMethod": "A String", # The http method of the request that triggered the vulnerability, in |
| 107 | # uppercase. |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 108 | "reproductionUrl": "A String", # The URL containing human-readable payload that user can leverage to |
| 109 | # reproduce the vulnerability. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 110 | "vulnerableHeaders": { # Information about vulnerable or missing HTTP Headers. # An addon containing information about vulnerable or missing HTTP headers. |
| 111 | "headers": [ # List of vulnerable headers. |
| 112 | { # Describes a HTTP Header. |
| 113 | "value": "A String", # Header value. |
| 114 | "name": "A String", # Header name. |
| 115 | }, |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 116 | ], |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 117 | "missingHeaders": [ # List of missing headers. |
| 118 | { # Describes a HTTP Header. |
| 119 | "value": "A String", # Header value. |
| 120 | "name": "A String", # Header name. |
| 121 | }, |
| 122 | ], |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 123 | }, |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 124 | "finalUrl": "A String", # The URL where the browser lands when the vulnerability is detected. |
| 125 | "description": "A String", # The description of the vulnerability. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 126 | "violatingResource": { # Information regarding any resource causing the vulnerability such # An addon containing detailed information regarding any resource causing the |
| Dan O'Meara | dd49464 | 2020-05-01 07:42:23 -0700 | [diff] [blame] | 127 | # vulnerability such as JavaScript sources, image, audio files, etc. |
| 128 | # as JavaScript sources, image, audio files, etc. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 129 | "resourceUrl": "A String", # URL of this violating resource. |
| 130 | "contentType": "A String", # The MIME type of this resource. |
| Dan O'Meara | dd49464 | 2020-05-01 07:42:23 -0700 | [diff] [blame] | 131 | }, |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 132 | "fuzzedUrl": "A String", # The URL produced by the server-side fuzzer and used in the request that |
| 133 | # triggered the vulnerability. |
| 134 | "name": "A String", # The resource name of the Finding. The name follows the format of |
| 135 | # 'projects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findings/{findingId}'. |
| 136 | # The finding IDs are generated by the system. |
| 137 | "vulnerableParameters": { # Information about vulnerable request parameters. # An addon containing information about request parameters which were found |
| 138 | # to be vulnerable. |
| 139 | "parameterNames": [ # The vulnerable parameter names. |
| 140 | "A String", |
| 141 | ], |
| 142 | }, |
| 143 | "outdatedLibrary": { # Information reported for an outdated library. # An addon containing information about outdated libraries. |
| 144 | "learnMoreUrls": [ # URLs to learn more information about the vulnerabilities in the library. |
| 145 | "A String", |
| 146 | ], |
| 147 | "libraryName": "A String", # The name of the outdated library. |
| 148 | "version": "A String", # The version number. |
| 149 | }, |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 150 | "xss": { # Information reported for an XSS. # An addon containing information reported for an XSS, if any. |
| 151 | "errorMessage": "A String", # An error message generated by a javascript breakage. |
| 152 | "stackTraces": [ # Stack traces leading to the point where the XSS occurred. |
| 153 | "A String", |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 154 | ], |
| 155 | }, |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 156 | "form": { # ! Information about a vulnerability with an HTML. # An addon containing information reported for a vulnerability with an HTML |
| 157 | # form, if any. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 158 | "fields": [ # ! The names of form fields related to the vulnerability. |
| 159 | "A String", |
| 160 | ], |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 161 | "actionUri": "A String", # ! The URI where to send the form when it's submitted. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 162 | }, |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 163 | "findingType": "A String", # The type of the Finding. |
| 164 | # Detailed and up-to-date information on findings can be found here: |
| 165 | # https://cloud.google.com/security-command-center/docs/how-to-remediate-web-security-scanner |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 166 | "frameUrl": "A String", # If the vulnerability was originated from nested IFrame, the immediate |
| Dan O'Meara | dd49464 | 2020-05-01 07:42:23 -0700 | [diff] [blame] | 167 | # parent IFrame is reported. |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 168 | "body": "A String", # The body of the request that triggered the vulnerability. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 169 | "trackingId": "A String", # The tracking ID uniquely identifies a vulnerability instance across |
| 170 | # multiple ScanRuns. |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 171 | }</pre> |
| 172 | </div> |
| 173 | |
| 174 | <div class="method"> |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 175 | <code class="details" id="list">list(parent, pageSize=None, filter=None, pageToken=None, x__xgafv=None)</code> |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 176 | <pre>List Findings under a given ScanRun. |
| 177 | |
| 178 | Args: |
| Dan O'Meara | dd49464 | 2020-05-01 07:42:23 -0700 | [diff] [blame] | 179 | parent: string, Required. The parent resource name, which should be a scan run resource name in the |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 180 | format |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 181 | 'projects/{projectId}/scanConfigs/{scanConfigId}/scanRuns/{scanRunId}'. (required) |
| 182 | pageSize: integer, The maximum number of Findings to return, can be limited by server. |
| 183 | If not specified or not positive, the implementation will select a |
| 184 | reasonable value. |
| 185 | filter: string, Required. The filter expression. The expression must be in the format: <field> |
| 186 | <operator> <value>. |
| 187 | Supported field: 'finding_type'. |
| 188 | Supported operator: '='. |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 189 | pageToken: string, A token identifying a page of results to be returned. This should be a |
| 190 | `next_page_token` value returned from a previous List request. |
| 191 | If unspecified, the first page of results is returned. |
| 192 | x__xgafv: string, V1 error format. |
| 193 | Allowed values |
| 194 | 1 - v1 error format |
| 195 | 2 - v2 error format |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 196 | |
| 197 | Returns: |
| 198 | An object of the form: |
| 199 | |
| 200 | { # Response for the `ListFindings` method. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 201 | "findings": [ # The list of Findings returned. |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 202 | { # A Finding resource represents a vulnerability instance identified during a |
| 203 | # ScanRun. |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 204 | "severity": "A String", # The severity level of the reported vulnerability. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 205 | "httpMethod": "A String", # The http method of the request that triggered the vulnerability, in |
| 206 | # uppercase. |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 207 | "reproductionUrl": "A String", # The URL containing human-readable payload that user can leverage to |
| 208 | # reproduce the vulnerability. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 209 | "vulnerableHeaders": { # Information about vulnerable or missing HTTP Headers. # An addon containing information about vulnerable or missing HTTP headers. |
| 210 | "headers": [ # List of vulnerable headers. |
| 211 | { # Describes a HTTP Header. |
| 212 | "value": "A String", # Header value. |
| 213 | "name": "A String", # Header name. |
| 214 | }, |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 215 | ], |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 216 | "missingHeaders": [ # List of missing headers. |
| 217 | { # Describes a HTTP Header. |
| 218 | "value": "A String", # Header value. |
| 219 | "name": "A String", # Header name. |
| 220 | }, |
| 221 | ], |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 222 | }, |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 223 | "finalUrl": "A String", # The URL where the browser lands when the vulnerability is detected. |
| 224 | "description": "A String", # The description of the vulnerability. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 225 | "violatingResource": { # Information regarding any resource causing the vulnerability such # An addon containing detailed information regarding any resource causing the |
| Dan O'Meara | dd49464 | 2020-05-01 07:42:23 -0700 | [diff] [blame] | 226 | # vulnerability such as JavaScript sources, image, audio files, etc. |
| 227 | # as JavaScript sources, image, audio files, etc. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 228 | "resourceUrl": "A String", # URL of this violating resource. |
| 229 | "contentType": "A String", # The MIME type of this resource. |
| Dan O'Meara | dd49464 | 2020-05-01 07:42:23 -0700 | [diff] [blame] | 230 | }, |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 231 | "fuzzedUrl": "A String", # The URL produced by the server-side fuzzer and used in the request that |
| 232 | # triggered the vulnerability. |
| 233 | "name": "A String", # The resource name of the Finding. The name follows the format of |
| 234 | # 'projects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findings/{findingId}'. |
| 235 | # The finding IDs are generated by the system. |
| 236 | "vulnerableParameters": { # Information about vulnerable request parameters. # An addon containing information about request parameters which were found |
| 237 | # to be vulnerable. |
| 238 | "parameterNames": [ # The vulnerable parameter names. |
| 239 | "A String", |
| 240 | ], |
| 241 | }, |
| 242 | "outdatedLibrary": { # Information reported for an outdated library. # An addon containing information about outdated libraries. |
| 243 | "learnMoreUrls": [ # URLs to learn more information about the vulnerabilities in the library. |
| 244 | "A String", |
| 245 | ], |
| 246 | "libraryName": "A String", # The name of the outdated library. |
| 247 | "version": "A String", # The version number. |
| 248 | }, |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 249 | "xss": { # Information reported for an XSS. # An addon containing information reported for an XSS, if any. |
| 250 | "errorMessage": "A String", # An error message generated by a javascript breakage. |
| 251 | "stackTraces": [ # Stack traces leading to the point where the XSS occurred. |
| 252 | "A String", |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 253 | ], |
| 254 | }, |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 255 | "form": { # ! Information about a vulnerability with an HTML. # An addon containing information reported for a vulnerability with an HTML |
| 256 | # form, if any. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 257 | "fields": [ # ! The names of form fields related to the vulnerability. |
| 258 | "A String", |
| 259 | ], |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 260 | "actionUri": "A String", # ! The URI where to send the form when it's submitted. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 261 | }, |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 262 | "findingType": "A String", # The type of the Finding. |
| 263 | # Detailed and up-to-date information on findings can be found here: |
| 264 | # https://cloud.google.com/security-command-center/docs/how-to-remediate-web-security-scanner |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 265 | "frameUrl": "A String", # If the vulnerability was originated from nested IFrame, the immediate |
| Dan O'Meara | dd49464 | 2020-05-01 07:42:23 -0700 | [diff] [blame] | 266 | # parent IFrame is reported. |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 267 | "body": "A String", # The body of the request that triggered the vulnerability. |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 268 | "trackingId": "A String", # The tracking ID uniquely identifies a vulnerability instance across |
| 269 | # multiple ScanRuns. |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 270 | }, |
| 271 | ], |
| Bu Sun Kim | 4ed7d3f | 2020-05-27 12:20:54 -0700 | [diff] [blame^] | 272 | "nextPageToken": "A String", # Token to retrieve the next page of results, or empty if there are no |
| 273 | # more results in the list. |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 274 | }</pre> |
| 275 | </div> |
| 276 | |
| 277 | <div class="method"> |
| 278 | <code class="details" id="list_next">list_next(previous_request, previous_response)</code> |
| 279 | <pre>Retrieves the next page of results. |
| 280 | |
| 281 | Args: |
| 282 | previous_request: The request for the previous page. (required) |
| 283 | previous_response: The response from the request for the previous page. (required) |
| 284 | |
| 285 | Returns: |
| Bu Sun Kim | 6502091 | 2020-05-20 12:08:20 -0700 | [diff] [blame] | 286 | A request object that you can call 'execute()' on to request the next |
| Bu Sun Kim | 715bd7f | 2019-06-14 16:50:42 -0700 | [diff] [blame] | 287 | page. Returns None if there are no more items in the collection. |
| 288 | </pre> |
| 289 | </div> |
| 290 | |
| 291 | </body></html> |