Reference documentation and code samples for the Google Cloud Web Security Scanner V1 Client class Finding.
A Finding resource represents a vulnerability instance identified during a ScanRun.
Generated from protobuf message google.cloud.websecurityscanner.v1.Finding
Namespace
Google \ Cloud \ WebSecurityScanner \ V1Methods
__construct
Constructor.
data
array
Optional. Data for populating the Message object.
↳ name
string
Output only. The resource name of the Finding. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findings/{findingId}'. The finding IDs are generated by the system.
↳ finding_type
string
Output only. The type of the Finding. Detailed and up-to-date information on findings can be found here: https://cloud.google.com/security-command-center/docs/how-to-remediate-web-security-scanner-findings
↳ severity
int
Output only. The severity level of the reported vulnerability.
↳ http_method
string
Output only. The http method of the request that triggered the vulnerability, in uppercase.
↳ fuzzed_url
string
Output only. The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability.
↳ body
string
Output only. The body of the request that triggered the vulnerability.
↳ description
string
Output only. The description of the vulnerability.
↳ reproduction_url
string
Output only. The URL containing human-readable payload that user can leverage to reproduce the vulnerability.
↳ frame_url
string
Output only. If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported.
↳ final_url
string
Output only. The URL where the browser lands when the vulnerability is detected.
↳ tracking_id
string
Output only. The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns.
↳ form
Form
Output only. An addon containing information reported for a vulnerability with an HTML form, if any.
↳ outdated_library
↳ violating_resource
ViolatingResource
Output only. An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.
↳ vulnerable_headers
VulnerableHeaders
Output only. An addon containing information about vulnerable or missing HTTP headers.
↳ vulnerable_parameters
VulnerableParameters
Output only. An addon containing information about request parameters which were found to be vulnerable.
↳ xss
↳ xxe
getName
Output only. The resource name of the Finding. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findings/{findingId}'.
The finding IDs are generated by the system.
string
setName
Output only. The resource name of the Finding. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findings/{findingId}'.
The finding IDs are generated by the system.
var
string
$this
getFindingType
Output only. The type of the Finding.
Detailed and up-to-date information on findings can be found here: https://cloud.google.com/security-command-center/docs/how-to-remediate-web-security-scanner-findings
string
setFindingType
Output only. The type of the Finding.
Detailed and up-to-date information on findings can be found here: https://cloud.google.com/security-command-center/docs/how-to-remediate-web-security-scanner-findings
var
string
$this
getSeverity
Output only. The severity level of the reported vulnerability.
int
setSeverity
Output only. The severity level of the reported vulnerability.
var
int
$this
getHttpMethod
Output only. The http method of the request that triggered the vulnerability, in uppercase.
string
setHttpMethod
Output only. The http method of the request that triggered the vulnerability, in uppercase.
var
string
$this
getFuzzedUrl
Output only. The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability.
string
setFuzzedUrl
Output only. The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability.
var
string
$this
getBody
Output only. The body of the request that triggered the vulnerability.
string
setBody
Output only. The body of the request that triggered the vulnerability.
var
string
$this
getDescription
Output only. The description of the vulnerability.
string
setDescription
Output only. The description of the vulnerability.
var
string
$this
getReproductionUrl
Output only. The URL containing human-readable payload that user can leverage to reproduce the vulnerability.
string
setReproductionUrl
Output only. The URL containing human-readable payload that user can leverage to reproduce the vulnerability.
var
string
$this
getFrameUrl
Output only. If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported.
string
setFrameUrl
Output only. If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported.
var
string
$this
getFinalUrl
Output only. The URL where the browser lands when the vulnerability is detected.
string
setFinalUrl
Output only. The URL where the browser lands when the vulnerability is detected.
var
string
$this
getTrackingId
Output only. The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns.
string
setTrackingId
Output only. The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns.
var
string
$this
getForm
Output only. An addon containing information reported for a vulnerability with an HTML form, if any.
hasForm
clearForm
setForm
Output only. An addon containing information reported for a vulnerability with an HTML form, if any.
$this
getOutdatedLibrary
Output only. An addon containing information about outdated libraries.
hasOutdatedLibrary
clearOutdatedLibrary
setOutdatedLibrary
Output only. An addon containing information about outdated libraries.
$this
getViolatingResource
Output only. An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.
hasViolatingResource
clearViolatingResource
setViolatingResource
Output only. An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.
$this
getVulnerableHeaders
Output only. An addon containing information about vulnerable or missing HTTP headers.
hasVulnerableHeaders
clearVulnerableHeaders
setVulnerableHeaders
Output only. An addon containing information about vulnerable or missing HTTP headers.
$this
getVulnerableParameters
Output only. An addon containing information about request parameters which were found to be vulnerable.
hasVulnerableParameters
clearVulnerableParameters
setVulnerableParameters
Output only. An addon containing information about request parameters which were found to be vulnerable.
$this
getXss
Output only. An addon containing information reported for an XSS, if any.
hasXss
clearXss
setXss
Output only. An addon containing information reported for an XSS, if any.
$this
getXxe
Output only. An addon containing information reported for an XXE, if any.
hasXxe
clearXxe
setXxe
Output only. An addon containing information reported for an XXE, if any.
$this
