CloudFinding
No description
type CloudFinding implements BaseFields, FindingInterface, IssueInterface {
aiAgentAnalysis: AiAgentAnalysis
asset: Asset!
assignedUsers: [PortalUserBasicInfoType!]
author: PortalUser!
category: String
controlSyncStatus: ControlSyncStatus
createdAt: ISO8601DateTime!
description: String!
fingerprint: String!
history: [IssueHistory!]
id: ID
impactLevel: ImpactLevelCategory
originalIssueIdFromTool: String
patterns: [String!]
permittedStatus: [IssueStatusLabel!]!
probabilityLevel: ProbabilityLevelCategory
project: Project
reference: String
riskAcceptedUntil: ISO8601DateTime
runningRetestProject: Project
scanSource: String
severity: SeverityCategory
solution: String
status: IssueStatusLabel!
statusHistory: [IssueStatusHistory!]!
title: String!
type: Issue!
updatedAt: ISO8601DateTime!
}
Fields
CloudFinding.aiAgentAnalysis ● AiAgentAnalysis object
AI agent analysis information for this issue
CloudFinding.asset ● Asset! non-null object
The asset associated with the vulnerability
CloudFinding.assignedUsers ● [PortalUserBasicInfoType!] list object
CloudFinding.author ● PortalUser! non-null object
The author who created the vulnerability
CloudFinding.category ● String scalar
CWE Categories
CloudFinding.controlSyncStatus ● ControlSyncStatus object
The scan/sync that brought this vulnerability to Conviso Platform
CloudFinding.createdAt ● ISO8601DateTime! non-null scalar
The date when record was created
CloudFinding.description ● String! non-null scalar
A detailed description of the vulnerability
CloudFinding.fingerprint ● String! non-null scalar
A unique identifier for the vulnerability
CloudFinding.history ● [IssueHistory!] list object
CloudFinding.id ● ID scalar
The ID scalar type represents a unique identifier
CloudFinding.impactLevel ● ImpactLevelCategory enum
The impact level of the vulnerability
CloudFinding.originalIssueIdFromTool ● String scalar
The original vulnerability ID from the tool that detected the vulnerability
CloudFinding.patterns ● [String!] list scalar
OWASP Patterns
CloudFinding.permittedStatus ● [IssueStatusLabel!]! non-null enum
List of statuses available for change
CloudFinding.probabilityLevel ● ProbabilityLevelCategory enum
The probability level of the vulnerability being exploited
CloudFinding.project ● Project object
Associated project
CloudFinding.reference ● String scalar
Links for further information
CloudFinding.riskAcceptedUntil ● ISO8601DateTime scalar
The datetime until which the risk is accepted
CloudFinding.runningRetestProject ● Project object
Active Vulnerability Retest project associated with this vulnerability
CloudFinding.scanSource ● String scalar
Source of the vulnerability; Retrieves the name of the source (e.g.: Dependency Track)
CloudFinding.severity ● SeverityCategory enum
The severity of the vulnerability
CloudFinding.solution ● String scalar
The solution or mitigation for the vulnerability
CloudFinding.status ● IssueStatusLabel! non-null enum
The current status of the vulnerability
CloudFinding.statusHistory ● [IssueStatusHistory!]! non-null object
List of previous statuses
CloudFinding.title ● String! non-null scalar
The title of the vulnerability
CloudFinding.type ● Issue! non-null enum
The type of the vulnerability (e.g., SAST, SCA, Web, Network, etc.)
CloudFinding.updatedAt ● ISO8601DateTime! non-null scalar
The date when record was updated
Interfaces
BaseFields interface
FindingInterface interface
IssueInterface interface
Contribute to the Docs
Found something outdated or missing? Help us improve the documentation with a quick suggestion or edit.
How to contributeResources
By exploring our content, you'll find resources that will enhance your understanding of the importance of a Security Application Program.
Conviso Blog: Explore our blog, which offers a collection of articles and posts covering a wide range of AppSec topics. The content on the blog is primarily in English.
Conviso's YouTube Channel: Access a wealth of informative videos covering various topics related to AppSec. Please note that the content is primarily in Portuguese.