1. Packages
  2. Google Cloud Native
  3. API Docs
  4. containeranalysis
  5. containeranalysis/v1beta1
  6. Note

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

google-native.containeranalysis/v1beta1.Note

Explore with Pulumi AI

google-native logo

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

    Creates a new note. Auto-naming is currently not supported for this resource.

    Create Note Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new Note(name: string, args: NoteArgs, opts?: CustomResourceOptions);
    @overload
    def Note(resource_name: str,
             args: NoteArgs,
             opts: Optional[ResourceOptions] = None)
    
    @overload
    def Note(resource_name: str,
             opts: Optional[ResourceOptions] = None,
             note_id: Optional[str] = None,
             project: Optional[str] = None,
             spdx_relationship: Optional[RelationshipNoteArgs] = None,
             deployable: Optional[DeployableArgs] = None,
             discovery: Optional[DiscoveryArgs] = None,
             expiration_time: Optional[str] = None,
             intoto: Optional[InTotoArgs] = None,
             long_description: Optional[str] = None,
             related_note_names: Optional[Sequence[str]] = None,
             vulnerability_assessment: Optional[VulnerabilityAssessmentNoteArgs] = None,
             build: Optional[BuildArgs] = None,
             base_image: Optional[BasisArgs] = None,
             related_url: Optional[Sequence[RelatedUrlArgs]] = None,
             sbom: Optional[DocumentNoteArgs] = None,
             sbom_reference: Optional[SBOMReferenceNoteArgs] = None,
             short_description: Optional[str] = None,
             spdx_file: Optional[FileNoteArgs] = None,
             spdx_package: Optional[PackageInfoNoteArgs] = None,
             attestation_authority: Optional[AuthorityArgs] = None,
             vulnerability: Optional[VulnerabilityArgs] = None,
             package: Optional[PackageArgs] = None)
    func NewNote(ctx *Context, name string, args NoteArgs, opts ...ResourceOption) (*Note, error)
    public Note(string name, NoteArgs args, CustomResourceOptions? opts = null)
    public Note(String name, NoteArgs args)
    public Note(String name, NoteArgs args, CustomResourceOptions options)
    
    type: google-native:containeranalysis/v1beta1:Note
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args NoteArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args NoteArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args NoteArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args NoteArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args NoteArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var examplenoteResourceResourceFromContaineranalysisv1beta1 = new GoogleNative.ContainerAnalysis.V1Beta1.Note("examplenoteResourceResourceFromContaineranalysisv1beta1", new()
    {
        NoteId = "string",
        Project = "string",
        SpdxRelationship = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelationshipNoteArgs
        {
            Type = GoogleNative.ContainerAnalysis.V1Beta1.RelationshipNoteType.RelationshipTypeUnspecified,
        },
        Deployable = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DeployableArgs
        {
            ResourceUri = new[]
            {
                "string",
            },
        },
        Discovery = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DiscoveryArgs
        {
            AnalysisKind = GoogleNative.ContainerAnalysis.V1Beta1.DiscoveryAnalysisKind.NoteKindUnspecified,
        },
        ExpirationTime = "string",
        Intoto = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.InTotoArgs
        {
            ExpectedCommand = new[]
            {
                "string",
            },
            ExpectedMaterials = new[]
            {
                new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ArtifactRuleArgs
                {
                    ArtifactRule = new[]
                    {
                        "string",
                    },
                },
            },
            ExpectedProducts = new[]
            {
                new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ArtifactRuleArgs
                {
                    ArtifactRule = new[]
                    {
                        "string",
                    },
                },
            },
            SigningKeys = new[]
            {
                new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SigningKeyArgs
                {
                    KeyId = "string",
                    KeyScheme = "string",
                    KeyType = "string",
                    PublicKeyValue = "string",
                },
            },
            StepName = "string",
            Threshold = "string",
        },
        LongDescription = "string",
        RelatedNoteNames = new[]
        {
            "string",
        },
        VulnerabilityAssessment = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VulnerabilityAssessmentNoteArgs
        {
            Assessment = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.AssessmentArgs
            {
                Impacts = new[]
                {
                    "string",
                },
                Justification = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.JustificationArgs
                {
                    Details = "string",
                    JustificationType = GoogleNative.ContainerAnalysis.V1Beta1.JustificationJustificationType.JustificationTypeUnspecified,
                },
                LongDescription = "string",
                RelatedUris = new[]
                {
                    new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelatedUrlArgs
                    {
                        Label = "string",
                        Url = "string",
                    },
                },
                Remediations = new[]
                {
                    new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RemediationArgs
                    {
                        Details = "string",
                        RemediationType = GoogleNative.ContainerAnalysis.V1Beta1.RemediationRemediationType.RemediationTypeUnspecified,
                        RemediationUri = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelatedUrlArgs
                        {
                            Label = "string",
                            Url = "string",
                        },
                    },
                },
                ShortDescription = "string",
                State = GoogleNative.ContainerAnalysis.V1Beta1.AssessmentState.StateUnspecified,
                VulnerabilityId = "string",
            },
            LanguageCode = "string",
            LongDescription = "string",
            Product = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ProductArgs
            {
                GenericUri = "string",
                Id = "string",
                Name = "string",
            },
            Publisher = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.PublisherArgs
            {
                IssuingAuthority = "string",
                Name = "string",
                PublisherNamespace = "string",
            },
            ShortDescription = "string",
            Title = "string",
        },
        Build = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.BuildArgs
        {
            BuilderVersion = "string",
            Signature = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.BuildSignatureArgs
            {
                Signature = "string",
                KeyId = "string",
                KeyType = GoogleNative.ContainerAnalysis.V1Beta1.BuildSignatureKeyType.KeyTypeUnspecified,
                PublicKey = "string",
            },
        },
        BaseImage = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.BasisArgs
        {
            Fingerprint = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.FingerprintArgs
            {
                V1Name = "string",
                V2Blob = new[]
                {
                    "string",
                },
            },
            ResourceUrl = "string",
        },
        RelatedUrl = new[]
        {
            new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelatedUrlArgs
            {
                Label = "string",
                Url = "string",
            },
        },
        Sbom = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DocumentNoteArgs
        {
            DataLicence = "string",
            SpdxVersion = "string",
        },
        SbomReference = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SBOMReferenceNoteArgs
        {
            Format = "string",
            Version = "string",
        },
        ShortDescription = "string",
        SpdxFile = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.FileNoteArgs
        {
            Checksum = new[]
            {
                "string",
            },
            FileType = GoogleNative.ContainerAnalysis.V1Beta1.FileNoteFileType.FileTypeUnspecified,
            Title = "string",
        },
        SpdxPackage = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.PackageInfoNoteArgs
        {
            Analyzed = false,
            Attribution = "string",
            Checksum = "string",
            Copyright = "string",
            DetailedDescription = "string",
            DownloadLocation = "string",
            ExternalRefs = new[]
            {
                new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ExternalRefArgs
                {
                    Category = GoogleNative.ContainerAnalysis.V1Beta1.ExternalRefCategory.CategoryUnspecified,
                    Comment = "string",
                    Locator = "string",
                    Type = "string",
                },
            },
            FilesLicenseInfo = new[]
            {
                "string",
            },
            HomePage = "string",
            LicenseDeclared = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.LicenseArgs
            {
                Comments = "string",
                Expression = "string",
            },
            Originator = "string",
            PackageType = "string",
            SummaryDescription = "string",
            Supplier = "string",
            Title = "string",
            VerificationCode = "string",
            Version = "string",
        },
        AttestationAuthority = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.AuthorityArgs
        {
            Hint = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.HintArgs
            {
                HumanReadableName = "string",
            },
        },
        Vulnerability = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VulnerabilityArgs
        {
            CvssScore = 0,
            CvssV2 = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.CVSSArgs
            {
                AttackComplexity = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAttackComplexity.AttackComplexityUnspecified,
                AttackVector = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAttackVector.AttackVectorUnspecified,
                Authentication = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAuthentication.AuthenticationUnspecified,
                AvailabilityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAvailabilityImpact.ImpactUnspecified,
                BaseScore = 0,
                ConfidentialityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSConfidentialityImpact.ImpactUnspecified,
                ExploitabilityScore = 0,
                ImpactScore = 0,
                IntegrityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSIntegrityImpact.ImpactUnspecified,
                PrivilegesRequired = GoogleNative.ContainerAnalysis.V1Beta1.CVSSPrivilegesRequired.PrivilegesRequiredUnspecified,
                Scope = GoogleNative.ContainerAnalysis.V1Beta1.CVSSScope.ScopeUnspecified,
                UserInteraction = GoogleNative.ContainerAnalysis.V1Beta1.CVSSUserInteraction.UserInteractionUnspecified,
            },
            CvssV3 = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.CVSSv3Args
            {
                AttackComplexity = GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3AttackComplexity.AttackComplexityUnspecified,
                AttackVector = GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3AttackVector.AttackVectorUnspecified,
                AvailabilityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3AvailabilityImpact.ImpactUnspecified,
                BaseScore = 0,
                ConfidentialityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3ConfidentialityImpact.ImpactUnspecified,
                ExploitabilityScore = 0,
                ImpactScore = 0,
                IntegrityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3IntegrityImpact.ImpactUnspecified,
                PrivilegesRequired = GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3PrivilegesRequired.PrivilegesRequiredUnspecified,
                Scope = GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3Scope.ScopeUnspecified,
                UserInteraction = GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3UserInteraction.UserInteractionUnspecified,
            },
            CvssVersion = GoogleNative.ContainerAnalysis.V1Beta1.VulnerabilityCvssVersion.CvssVersionUnspecified,
            Cwe = new[]
            {
                "string",
            },
            Details = new[]
            {
                new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DetailArgs
                {
                    CpeUri = "string",
                    Package = "string",
                    Description = "string",
                    FixedLocation = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VulnerabilityLocationArgs
                    {
                        CpeUri = "string",
                        Package = "string",
                        Version = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionArgs
                        {
                            Kind = GoogleNative.ContainerAnalysis.V1Beta1.VersionKind.VersionKindUnspecified,
                            Epoch = 0,
                            Inclusive = false,
                            Name = "string",
                            Revision = "string",
                        },
                    },
                    IsObsolete = false,
                    MaxAffectedVersion = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionArgs
                    {
                        Kind = GoogleNative.ContainerAnalysis.V1Beta1.VersionKind.VersionKindUnspecified,
                        Epoch = 0,
                        Inclusive = false,
                        Name = "string",
                        Revision = "string",
                    },
                    MinAffectedVersion = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionArgs
                    {
                        Kind = GoogleNative.ContainerAnalysis.V1Beta1.VersionKind.VersionKindUnspecified,
                        Epoch = 0,
                        Inclusive = false,
                        Name = "string",
                        Revision = "string",
                    },
                    PackageType = "string",
                    SeverityName = "string",
                    Source = "string",
                    SourceUpdateTime = "string",
                    Vendor = "string",
                },
            },
            Severity = GoogleNative.ContainerAnalysis.V1Beta1.VulnerabilitySeverity.SeverityUnspecified,
            SourceUpdateTime = "string",
            WindowsDetails = new[]
            {
                new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.WindowsDetailArgs
                {
                    CpeUri = "string",
                    FixingKbs = new[]
                    {
                        new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.KnowledgeBaseArgs
                        {
                            Name = "string",
                            Url = "string",
                        },
                    },
                    Name = "string",
                    Description = "string",
                },
            },
        },
        Package = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.PackageArgs
        {
            Name = "string",
            Architecture = GoogleNative.ContainerAnalysis.V1Beta1.PackageArchitecture.ArchitectureUnspecified,
            CpeUri = "string",
            Description = "string",
            Digest = new[]
            {
                new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DigestArgs
                {
                    Algo = "string",
                    DigestBytes = "string",
                },
            },
            Distribution = new[]
            {
                new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DistributionArgs
                {
                    CpeUri = "string",
                    Architecture = GoogleNative.ContainerAnalysis.V1Beta1.DistributionArchitecture.ArchitectureUnspecified,
                    Description = "string",
                    LatestVersion = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionArgs
                    {
                        Kind = GoogleNative.ContainerAnalysis.V1Beta1.VersionKind.VersionKindUnspecified,
                        Epoch = 0,
                        Inclusive = false,
                        Name = "string",
                        Revision = "string",
                    },
                    Maintainer = "string",
                    Url = "string",
                },
            },
            License = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.LicenseArgs
            {
                Comments = "string",
                Expression = "string",
            },
            Maintainer = "string",
            PackageType = "string",
            Url = "string",
            Version = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionArgs
            {
                Kind = GoogleNative.ContainerAnalysis.V1Beta1.VersionKind.VersionKindUnspecified,
                Epoch = 0,
                Inclusive = false,
                Name = "string",
                Revision = "string",
            },
        },
    });
    
    example, err := containeranalysisv1beta1.NewNote(ctx, "examplenoteResourceResourceFromContaineranalysisv1beta1", &containeranalysisv1beta1.NoteArgs{
    NoteId: pulumi.String("string"),
    Project: pulumi.String("string"),
    SpdxRelationship: &containeranalysis.RelationshipNoteArgs{
    Type: containeranalysisv1beta1.RelationshipNoteTypeRelationshipTypeUnspecified,
    },
    Deployable: &containeranalysis.DeployableArgs{
    ResourceUri: pulumi.StringArray{
    pulumi.String("string"),
    },
    },
    Discovery: &containeranalysis.DiscoveryArgs{
    AnalysisKind: containeranalysisv1beta1.DiscoveryAnalysisKindNoteKindUnspecified,
    },
    ExpirationTime: pulumi.String("string"),
    Intoto: &containeranalysis.InTotoArgs{
    ExpectedCommand: pulumi.StringArray{
    pulumi.String("string"),
    },
    ExpectedMaterials: containeranalysis.ArtifactRuleArray{
    &containeranalysis.ArtifactRuleArgs{
    ArtifactRule: pulumi.StringArray{
    pulumi.String("string"),
    },
    },
    },
    ExpectedProducts: containeranalysis.ArtifactRuleArray{
    &containeranalysis.ArtifactRuleArgs{
    ArtifactRule: pulumi.StringArray{
    pulumi.String("string"),
    },
    },
    },
    SigningKeys: containeranalysis.SigningKeyArray{
    &containeranalysis.SigningKeyArgs{
    KeyId: pulumi.String("string"),
    KeyScheme: pulumi.String("string"),
    KeyType: pulumi.String("string"),
    PublicKeyValue: pulumi.String("string"),
    },
    },
    StepName: pulumi.String("string"),
    Threshold: pulumi.String("string"),
    },
    LongDescription: pulumi.String("string"),
    RelatedNoteNames: pulumi.StringArray{
    pulumi.String("string"),
    },
    VulnerabilityAssessment: &containeranalysis.VulnerabilityAssessmentNoteArgs{
    Assessment: &containeranalysis.AssessmentArgs{
    Impacts: pulumi.StringArray{
    pulumi.String("string"),
    },
    Justification: &containeranalysis.JustificationArgs{
    Details: pulumi.String("string"),
    JustificationType: containeranalysisv1beta1.JustificationJustificationTypeJustificationTypeUnspecified,
    },
    LongDescription: pulumi.String("string"),
    RelatedUris: containeranalysis.RelatedUrlArray{
    &containeranalysis.RelatedUrlArgs{
    Label: pulumi.String("string"),
    Url: pulumi.String("string"),
    },
    },
    Remediations: containeranalysis.RemediationArray{
    &containeranalysis.RemediationArgs{
    Details: pulumi.String("string"),
    RemediationType: containeranalysisv1beta1.RemediationRemediationTypeRemediationTypeUnspecified,
    RemediationUri: &containeranalysis.RelatedUrlArgs{
    Label: pulumi.String("string"),
    Url: pulumi.String("string"),
    },
    },
    },
    ShortDescription: pulumi.String("string"),
    State: containeranalysisv1beta1.AssessmentStateStateUnspecified,
    VulnerabilityId: pulumi.String("string"),
    },
    LanguageCode: pulumi.String("string"),
    LongDescription: pulumi.String("string"),
    Product: &containeranalysis.ProductArgs{
    GenericUri: pulumi.String("string"),
    Id: pulumi.String("string"),
    Name: pulumi.String("string"),
    },
    Publisher: &containeranalysis.PublisherArgs{
    IssuingAuthority: pulumi.String("string"),
    Name: pulumi.String("string"),
    PublisherNamespace: pulumi.String("string"),
    },
    ShortDescription: pulumi.String("string"),
    Title: pulumi.String("string"),
    },
    Build: &containeranalysis.BuildArgs{
    BuilderVersion: pulumi.String("string"),
    Signature: &containeranalysis.BuildSignatureArgs{
    Signature: pulumi.String("string"),
    KeyId: pulumi.String("string"),
    KeyType: containeranalysisv1beta1.BuildSignatureKeyTypeKeyTypeUnspecified,
    PublicKey: pulumi.String("string"),
    },
    },
    BaseImage: &containeranalysis.BasisArgs{
    Fingerprint: &containeranalysis.FingerprintArgs{
    V1Name: pulumi.String("string"),
    V2Blob: pulumi.StringArray{
    pulumi.String("string"),
    },
    },
    ResourceUrl: pulumi.String("string"),
    },
    RelatedUrl: containeranalysis.RelatedUrlArray{
    &containeranalysis.RelatedUrlArgs{
    Label: pulumi.String("string"),
    Url: pulumi.String("string"),
    },
    },
    Sbom: &containeranalysis.DocumentNoteArgs{
    DataLicence: pulumi.String("string"),
    SpdxVersion: pulumi.String("string"),
    },
    SbomReference: &containeranalysis.SBOMReferenceNoteArgs{
    Format: pulumi.String("string"),
    Version: pulumi.String("string"),
    },
    ShortDescription: pulumi.String("string"),
    SpdxFile: &containeranalysis.FileNoteArgs{
    Checksum: pulumi.StringArray{
    pulumi.String("string"),
    },
    FileType: containeranalysisv1beta1.FileNoteFileTypeFileTypeUnspecified,
    Title: pulumi.String("string"),
    },
    SpdxPackage: &containeranalysis.PackageInfoNoteArgs{
    Analyzed: pulumi.Bool(false),
    Attribution: pulumi.String("string"),
    Checksum: pulumi.String("string"),
    Copyright: pulumi.String("string"),
    DetailedDescription: pulumi.String("string"),
    DownloadLocation: pulumi.String("string"),
    ExternalRefs: containeranalysis.ExternalRefArray{
    &containeranalysis.ExternalRefArgs{
    Category: containeranalysisv1beta1.ExternalRefCategoryCategoryUnspecified,
    Comment: pulumi.String("string"),
    Locator: pulumi.String("string"),
    Type: pulumi.String("string"),
    },
    },
    FilesLicenseInfo: pulumi.StringArray{
    pulumi.String("string"),
    },
    HomePage: pulumi.String("string"),
    LicenseDeclared: &containeranalysis.LicenseArgs{
    Comments: pulumi.String("string"),
    Expression: pulumi.String("string"),
    },
    Originator: pulumi.String("string"),
    PackageType: pulumi.String("string"),
    SummaryDescription: pulumi.String("string"),
    Supplier: pulumi.String("string"),
    Title: pulumi.String("string"),
    VerificationCode: pulumi.String("string"),
    Version: pulumi.String("string"),
    },
    AttestationAuthority: &containeranalysis.AuthorityArgs{
    Hint: &containeranalysis.HintArgs{
    HumanReadableName: pulumi.String("string"),
    },
    },
    Vulnerability: &containeranalysis.VulnerabilityArgs{
    CvssScore: pulumi.Float64(0),
    CvssV2: &containeranalysis.CVSSArgs{
    AttackComplexity: containeranalysisv1beta1.CVSSAttackComplexityAttackComplexityUnspecified,
    AttackVector: containeranalysisv1beta1.CVSSAttackVectorAttackVectorUnspecified,
    Authentication: containeranalysisv1beta1.CVSSAuthenticationAuthenticationUnspecified,
    AvailabilityImpact: containeranalysisv1beta1.CVSSAvailabilityImpactImpactUnspecified,
    BaseScore: pulumi.Float64(0),
    ConfidentialityImpact: containeranalysisv1beta1.CVSSConfidentialityImpactImpactUnspecified,
    ExploitabilityScore: pulumi.Float64(0),
    ImpactScore: pulumi.Float64(0),
    IntegrityImpact: containeranalysisv1beta1.CVSSIntegrityImpactImpactUnspecified,
    PrivilegesRequired: containeranalysisv1beta1.CVSSPrivilegesRequiredPrivilegesRequiredUnspecified,
    Scope: containeranalysisv1beta1.CVSSScopeScopeUnspecified,
    UserInteraction: containeranalysisv1beta1.CVSSUserInteractionUserInteractionUnspecified,
    },
    CvssV3: &containeranalysis.CVSSv3Args{
    AttackComplexity: containeranalysisv1beta1.CVSSv3AttackComplexityAttackComplexityUnspecified,
    AttackVector: containeranalysisv1beta1.CVSSv3AttackVectorAttackVectorUnspecified,
    AvailabilityImpact: containeranalysisv1beta1.CVSSv3AvailabilityImpactImpactUnspecified,
    BaseScore: pulumi.Float64(0),
    ConfidentialityImpact: containeranalysisv1beta1.CVSSv3ConfidentialityImpactImpactUnspecified,
    ExploitabilityScore: pulumi.Float64(0),
    ImpactScore: pulumi.Float64(0),
    IntegrityImpact: containeranalysisv1beta1.CVSSv3IntegrityImpactImpactUnspecified,
    PrivilegesRequired: containeranalysisv1beta1.CVSSv3PrivilegesRequiredPrivilegesRequiredUnspecified,
    Scope: containeranalysisv1beta1.CVSSv3ScopeScopeUnspecified,
    UserInteraction: containeranalysisv1beta1.CVSSv3UserInteractionUserInteractionUnspecified,
    },
    CvssVersion: containeranalysisv1beta1.VulnerabilityCvssVersionCvssVersionUnspecified,
    Cwe: pulumi.StringArray{
    pulumi.String("string"),
    },
    Details: containeranalysis.DetailArray{
    &containeranalysis.DetailArgs{
    CpeUri: pulumi.String("string"),
    Package: pulumi.String("string"),
    Description: pulumi.String("string"),
    FixedLocation: &containeranalysis.VulnerabilityLocationArgs{
    CpeUri: pulumi.String("string"),
    Package: pulumi.String("string"),
    Version: &containeranalysis.VersionArgs{
    Kind: containeranalysisv1beta1.VersionKindVersionKindUnspecified,
    Epoch: pulumi.Int(0),
    Inclusive: pulumi.Bool(false),
    Name: pulumi.String("string"),
    Revision: pulumi.String("string"),
    },
    },
    IsObsolete: pulumi.Bool(false),
    MaxAffectedVersion: &containeranalysis.VersionArgs{
    Kind: containeranalysisv1beta1.VersionKindVersionKindUnspecified,
    Epoch: pulumi.Int(0),
    Inclusive: pulumi.Bool(false),
    Name: pulumi.String("string"),
    Revision: pulumi.String("string"),
    },
    MinAffectedVersion: &containeranalysis.VersionArgs{
    Kind: containeranalysisv1beta1.VersionKindVersionKindUnspecified,
    Epoch: pulumi.Int(0),
    Inclusive: pulumi.Bool(false),
    Name: pulumi.String("string"),
    Revision: pulumi.String("string"),
    },
    PackageType: pulumi.String("string"),
    SeverityName: pulumi.String("string"),
    Source: pulumi.String("string"),
    SourceUpdateTime: pulumi.String("string"),
    Vendor: pulumi.String("string"),
    },
    },
    Severity: containeranalysisv1beta1.VulnerabilitySeveritySeverityUnspecified,
    SourceUpdateTime: pulumi.String("string"),
    WindowsDetails: containeranalysis.WindowsDetailArray{
    &containeranalysis.WindowsDetailArgs{
    CpeUri: pulumi.String("string"),
    FixingKbs: containeranalysis.KnowledgeBaseArray{
    &containeranalysis.KnowledgeBaseArgs{
    Name: pulumi.String("string"),
    Url: pulumi.String("string"),
    },
    },
    Name: pulumi.String("string"),
    Description: pulumi.String("string"),
    },
    },
    },
    Package: &containeranalysis.PackageArgs{
    Name: pulumi.String("string"),
    Architecture: containeranalysisv1beta1.PackageArchitectureArchitectureUnspecified,
    CpeUri: pulumi.String("string"),
    Description: pulumi.String("string"),
    Digest: containeranalysis.DigestArray{
    &containeranalysis.DigestArgs{
    Algo: pulumi.String("string"),
    DigestBytes: pulumi.String("string"),
    },
    },
    Distribution: containeranalysis.DistributionArray{
    &containeranalysis.DistributionArgs{
    CpeUri: pulumi.String("string"),
    Architecture: containeranalysisv1beta1.DistributionArchitectureArchitectureUnspecified,
    Description: pulumi.String("string"),
    LatestVersion: &containeranalysis.VersionArgs{
    Kind: containeranalysisv1beta1.VersionKindVersionKindUnspecified,
    Epoch: pulumi.Int(0),
    Inclusive: pulumi.Bool(false),
    Name: pulumi.String("string"),
    Revision: pulumi.String("string"),
    },
    Maintainer: pulumi.String("string"),
    Url: pulumi.String("string"),
    },
    },
    License: &containeranalysis.LicenseArgs{
    Comments: pulumi.String("string"),
    Expression: pulumi.String("string"),
    },
    Maintainer: pulumi.String("string"),
    PackageType: pulumi.String("string"),
    Url: pulumi.String("string"),
    Version: &containeranalysis.VersionArgs{
    Kind: containeranalysisv1beta1.VersionKindVersionKindUnspecified,
    Epoch: pulumi.Int(0),
    Inclusive: pulumi.Bool(false),
    Name: pulumi.String("string"),
    Revision: pulumi.String("string"),
    },
    },
    })
    
    var examplenoteResourceResourceFromContaineranalysisv1beta1 = new Note("examplenoteResourceResourceFromContaineranalysisv1beta1", NoteArgs.builder()
        .noteId("string")
        .project("string")
        .spdxRelationship(RelationshipNoteArgs.builder()
            .type("RELATIONSHIP_TYPE_UNSPECIFIED")
            .build())
        .deployable(DeployableArgs.builder()
            .resourceUri("string")
            .build())
        .discovery(DiscoveryArgs.builder()
            .analysisKind("NOTE_KIND_UNSPECIFIED")
            .build())
        .expirationTime("string")
        .intoto(InTotoArgs.builder()
            .expectedCommand("string")
            .expectedMaterials(ArtifactRuleArgs.builder()
                .artifactRule("string")
                .build())
            .expectedProducts(ArtifactRuleArgs.builder()
                .artifactRule("string")
                .build())
            .signingKeys(SigningKeyArgs.builder()
                .keyId("string")
                .keyScheme("string")
                .keyType("string")
                .publicKeyValue("string")
                .build())
            .stepName("string")
            .threshold("string")
            .build())
        .longDescription("string")
        .relatedNoteNames("string")
        .vulnerabilityAssessment(VulnerabilityAssessmentNoteArgs.builder()
            .assessment(AssessmentArgs.builder()
                .impacts("string")
                .justification(JustificationArgs.builder()
                    .details("string")
                    .justificationType("JUSTIFICATION_TYPE_UNSPECIFIED")
                    .build())
                .longDescription("string")
                .relatedUris(RelatedUrlArgs.builder()
                    .label("string")
                    .url("string")
                    .build())
                .remediations(RemediationArgs.builder()
                    .details("string")
                    .remediationType("REMEDIATION_TYPE_UNSPECIFIED")
                    .remediationUri(RelatedUrlArgs.builder()
                        .label("string")
                        .url("string")
                        .build())
                    .build())
                .shortDescription("string")
                .state("STATE_UNSPECIFIED")
                .vulnerabilityId("string")
                .build())
            .languageCode("string")
            .longDescription("string")
            .product(ProductArgs.builder()
                .genericUri("string")
                .id("string")
                .name("string")
                .build())
            .publisher(PublisherArgs.builder()
                .issuingAuthority("string")
                .name("string")
                .publisherNamespace("string")
                .build())
            .shortDescription("string")
            .title("string")
            .build())
        .build(BuildArgs.builder()
            .builderVersion("string")
            .signature(BuildSignatureArgs.builder()
                .signature("string")
                .keyId("string")
                .keyType("KEY_TYPE_UNSPECIFIED")
                .publicKey("string")
                .build())
            .build())
        .baseImage(BasisArgs.builder()
            .fingerprint(FingerprintArgs.builder()
                .v1Name("string")
                .v2Blob("string")
                .build())
            .resourceUrl("string")
            .build())
        .relatedUrl(RelatedUrlArgs.builder()
            .label("string")
            .url("string")
            .build())
        .sbom(DocumentNoteArgs.builder()
            .dataLicence("string")
            .spdxVersion("string")
            .build())
        .sbomReference(SBOMReferenceNoteArgs.builder()
            .format("string")
            .version("string")
            .build())
        .shortDescription("string")
        .spdxFile(FileNoteArgs.builder()
            .checksum("string")
            .fileType("FILE_TYPE_UNSPECIFIED")
            .title("string")
            .build())
        .spdxPackage(PackageInfoNoteArgs.builder()
            .analyzed(false)
            .attribution("string")
            .checksum("string")
            .copyright("string")
            .detailedDescription("string")
            .downloadLocation("string")
            .externalRefs(ExternalRefArgs.builder()
                .category("CATEGORY_UNSPECIFIED")
                .comment("string")
                .locator("string")
                .type("string")
                .build())
            .filesLicenseInfo("string")
            .homePage("string")
            .licenseDeclared(LicenseArgs.builder()
                .comments("string")
                .expression("string")
                .build())
            .originator("string")
            .packageType("string")
            .summaryDescription("string")
            .supplier("string")
            .title("string")
            .verificationCode("string")
            .version("string")
            .build())
        .attestationAuthority(AuthorityArgs.builder()
            .hint(HintArgs.builder()
                .humanReadableName("string")
                .build())
            .build())
        .vulnerability(VulnerabilityArgs.builder()
            .cvssScore(0)
            .cvssV2(CVSSArgs.builder()
                .attackComplexity("ATTACK_COMPLEXITY_UNSPECIFIED")
                .attackVector("ATTACK_VECTOR_UNSPECIFIED")
                .authentication("AUTHENTICATION_UNSPECIFIED")
                .availabilityImpact("IMPACT_UNSPECIFIED")
                .baseScore(0)
                .confidentialityImpact("IMPACT_UNSPECIFIED")
                .exploitabilityScore(0)
                .impactScore(0)
                .integrityImpact("IMPACT_UNSPECIFIED")
                .privilegesRequired("PRIVILEGES_REQUIRED_UNSPECIFIED")
                .scope("SCOPE_UNSPECIFIED")
                .userInteraction("USER_INTERACTION_UNSPECIFIED")
                .build())
            .cvssV3(CVSSv3Args.builder()
                .attackComplexity("ATTACK_COMPLEXITY_UNSPECIFIED")
                .attackVector("ATTACK_VECTOR_UNSPECIFIED")
                .availabilityImpact("IMPACT_UNSPECIFIED")
                .baseScore(0)
                .confidentialityImpact("IMPACT_UNSPECIFIED")
                .exploitabilityScore(0)
                .impactScore(0)
                .integrityImpact("IMPACT_UNSPECIFIED")
                .privilegesRequired("PRIVILEGES_REQUIRED_UNSPECIFIED")
                .scope("SCOPE_UNSPECIFIED")
                .userInteraction("USER_INTERACTION_UNSPECIFIED")
                .build())
            .cvssVersion("CVSS_VERSION_UNSPECIFIED")
            .cwe("string")
            .details(DetailArgs.builder()
                .cpeUri("string")
                .package_("string")
                .description("string")
                .fixedLocation(VulnerabilityLocationArgs.builder()
                    .cpeUri("string")
                    .package_("string")
                    .version(VersionArgs.builder()
                        .kind("VERSION_KIND_UNSPECIFIED")
                        .epoch(0)
                        .inclusive(false)
                        .name("string")
                        .revision("string")
                        .build())
                    .build())
                .isObsolete(false)
                .maxAffectedVersion(VersionArgs.builder()
                    .kind("VERSION_KIND_UNSPECIFIED")
                    .epoch(0)
                    .inclusive(false)
                    .name("string")
                    .revision("string")
                    .build())
                .minAffectedVersion(VersionArgs.builder()
                    .kind("VERSION_KIND_UNSPECIFIED")
                    .epoch(0)
                    .inclusive(false)
                    .name("string")
                    .revision("string")
                    .build())
                .packageType("string")
                .severityName("string")
                .source("string")
                .sourceUpdateTime("string")
                .vendor("string")
                .build())
            .severity("SEVERITY_UNSPECIFIED")
            .sourceUpdateTime("string")
            .windowsDetails(WindowsDetailArgs.builder()
                .cpeUri("string")
                .fixingKbs(KnowledgeBaseArgs.builder()
                    .name("string")
                    .url("string")
                    .build())
                .name("string")
                .description("string")
                .build())
            .build())
        .package_(PackageArgs.builder()
            .name("string")
            .architecture("ARCHITECTURE_UNSPECIFIED")
            .cpeUri("string")
            .description("string")
            .digest(DigestArgs.builder()
                .algo("string")
                .digestBytes("string")
                .build())
            .distribution(DistributionArgs.builder()
                .cpeUri("string")
                .architecture("ARCHITECTURE_UNSPECIFIED")
                .description("string")
                .latestVersion(VersionArgs.builder()
                    .kind("VERSION_KIND_UNSPECIFIED")
                    .epoch(0)
                    .inclusive(false)
                    .name("string")
                    .revision("string")
                    .build())
                .maintainer("string")
                .url("string")
                .build())
            .license(LicenseArgs.builder()
                .comments("string")
                .expression("string")
                .build())
            .maintainer("string")
            .packageType("string")
            .url("string")
            .version(VersionArgs.builder()
                .kind("VERSION_KIND_UNSPECIFIED")
                .epoch(0)
                .inclusive(false)
                .name("string")
                .revision("string")
                .build())
            .build())
        .build());
    
    examplenote_resource_resource_from_containeranalysisv1beta1 = google_native.containeranalysis.v1beta1.Note("examplenoteResourceResourceFromContaineranalysisv1beta1",
        note_id="string",
        project="string",
        spdx_relationship=google_native.containeranalysis.v1beta1.RelationshipNoteArgs(
            type=google_native.containeranalysis.v1beta1.RelationshipNoteType.RELATIONSHIP_TYPE_UNSPECIFIED,
        ),
        deployable=google_native.containeranalysis.v1beta1.DeployableArgs(
            resource_uri=["string"],
        ),
        discovery=google_native.containeranalysis.v1beta1.DiscoveryArgs(
            analysis_kind=google_native.containeranalysis.v1beta1.DiscoveryAnalysisKind.NOTE_KIND_UNSPECIFIED,
        ),
        expiration_time="string",
        intoto=google_native.containeranalysis.v1beta1.InTotoArgs(
            expected_command=["string"],
            expected_materials=[google_native.containeranalysis.v1beta1.ArtifactRuleArgs(
                artifact_rule=["string"],
            )],
            expected_products=[google_native.containeranalysis.v1beta1.ArtifactRuleArgs(
                artifact_rule=["string"],
            )],
            signing_keys=[google_native.containeranalysis.v1beta1.SigningKeyArgs(
                key_id="string",
                key_scheme="string",
                key_type="string",
                public_key_value="string",
            )],
            step_name="string",
            threshold="string",
        ),
        long_description="string",
        related_note_names=["string"],
        vulnerability_assessment=google_native.containeranalysis.v1beta1.VulnerabilityAssessmentNoteArgs(
            assessment=google_native.containeranalysis.v1beta1.AssessmentArgs(
                impacts=["string"],
                justification=google_native.containeranalysis.v1beta1.JustificationArgs(
                    details="string",
                    justification_type=google_native.containeranalysis.v1beta1.JustificationJustificationType.JUSTIFICATION_TYPE_UNSPECIFIED,
                ),
                long_description="string",
                related_uris=[google_native.containeranalysis.v1beta1.RelatedUrlArgs(
                    label="string",
                    url="string",
                )],
                remediations=[google_native.containeranalysis.v1beta1.RemediationArgs(
                    details="string",
                    remediation_type=google_native.containeranalysis.v1beta1.RemediationRemediationType.REMEDIATION_TYPE_UNSPECIFIED,
                    remediation_uri=google_native.containeranalysis.v1beta1.RelatedUrlArgs(
                        label="string",
                        url="string",
                    ),
                )],
                short_description="string",
                state=google_native.containeranalysis.v1beta1.AssessmentState.STATE_UNSPECIFIED,
                vulnerability_id="string",
            ),
            language_code="string",
            long_description="string",
            product=google_native.containeranalysis.v1beta1.ProductArgs(
                generic_uri="string",
                id="string",
                name="string",
            ),
            publisher=google_native.containeranalysis.v1beta1.PublisherArgs(
                issuing_authority="string",
                name="string",
                publisher_namespace="string",
            ),
            short_description="string",
            title="string",
        ),
        build=google_native.containeranalysis.v1beta1.BuildArgs(
            builder_version="string",
            signature=google_native.containeranalysis.v1beta1.BuildSignatureArgs(
                signature="string",
                key_id="string",
                key_type=google_native.containeranalysis.v1beta1.BuildSignatureKeyType.KEY_TYPE_UNSPECIFIED,
                public_key="string",
            ),
        ),
        base_image=google_native.containeranalysis.v1beta1.BasisArgs(
            fingerprint=google_native.containeranalysis.v1beta1.FingerprintArgs(
                v1_name="string",
                v2_blob=["string"],
            ),
            resource_url="string",
        ),
        related_url=[google_native.containeranalysis.v1beta1.RelatedUrlArgs(
            label="string",
            url="string",
        )],
        sbom=google_native.containeranalysis.v1beta1.DocumentNoteArgs(
            data_licence="string",
            spdx_version="string",
        ),
        sbom_reference=google_native.containeranalysis.v1beta1.SBOMReferenceNoteArgs(
            format="string",
            version="string",
        ),
        short_description="string",
        spdx_file=google_native.containeranalysis.v1beta1.FileNoteArgs(
            checksum=["string"],
            file_type=google_native.containeranalysis.v1beta1.FileNoteFileType.FILE_TYPE_UNSPECIFIED,
            title="string",
        ),
        spdx_package=google_native.containeranalysis.v1beta1.PackageInfoNoteArgs(
            analyzed=False,
            attribution="string",
            checksum="string",
            copyright="string",
            detailed_description="string",
            download_location="string",
            external_refs=[google_native.containeranalysis.v1beta1.ExternalRefArgs(
                category=google_native.containeranalysis.v1beta1.ExternalRefCategory.CATEGORY_UNSPECIFIED,
                comment="string",
                locator="string",
                type="string",
            )],
            files_license_info=["string"],
            home_page="string",
            license_declared=google_native.containeranalysis.v1beta1.LicenseArgs(
                comments="string",
                expression="string",
            ),
            originator="string",
            package_type="string",
            summary_description="string",
            supplier="string",
            title="string",
            verification_code="string",
            version="string",
        ),
        attestation_authority=google_native.containeranalysis.v1beta1.AuthorityArgs(
            hint=google_native.containeranalysis.v1beta1.HintArgs(
                human_readable_name="string",
            ),
        ),
        vulnerability=google_native.containeranalysis.v1beta1.VulnerabilityArgs(
            cvss_score=0,
            cvss_v2=google_native.containeranalysis.v1beta1.CVSSArgs(
                attack_complexity=google_native.containeranalysis.v1beta1.CVSSAttackComplexity.ATTACK_COMPLEXITY_UNSPECIFIED,
                attack_vector=google_native.containeranalysis.v1beta1.CVSSAttackVector.ATTACK_VECTOR_UNSPECIFIED,
                authentication=google_native.containeranalysis.v1beta1.CVSSAuthentication.AUTHENTICATION_UNSPECIFIED,
                availability_impact=google_native.containeranalysis.v1beta1.CVSSAvailabilityImpact.IMPACT_UNSPECIFIED,
                base_score=0,
                confidentiality_impact=google_native.containeranalysis.v1beta1.CVSSConfidentialityImpact.IMPACT_UNSPECIFIED,
                exploitability_score=0,
                impact_score=0,
                integrity_impact=google_native.containeranalysis.v1beta1.CVSSIntegrityImpact.IMPACT_UNSPECIFIED,
                privileges_required=google_native.containeranalysis.v1beta1.CVSSPrivilegesRequired.PRIVILEGES_REQUIRED_UNSPECIFIED,
                scope=google_native.containeranalysis.v1beta1.CVSSScope.SCOPE_UNSPECIFIED,
                user_interaction=google_native.containeranalysis.v1beta1.CVSSUserInteraction.USER_INTERACTION_UNSPECIFIED,
            ),
            cvss_v3=google_native.containeranalysis.v1beta1.CVSSv3Args(
                attack_complexity=google_native.containeranalysis.v1beta1.CVSSv3AttackComplexity.ATTACK_COMPLEXITY_UNSPECIFIED,
                attack_vector=google_native.containeranalysis.v1beta1.CVSSv3AttackVector.ATTACK_VECTOR_UNSPECIFIED,
                availability_impact=google_native.containeranalysis.v1beta1.CVSSv3AvailabilityImpact.IMPACT_UNSPECIFIED,
                base_score=0,
                confidentiality_impact=google_native.containeranalysis.v1beta1.CVSSv3ConfidentialityImpact.IMPACT_UNSPECIFIED,
                exploitability_score=0,
                impact_score=0,
                integrity_impact=google_native.containeranalysis.v1beta1.CVSSv3IntegrityImpact.IMPACT_UNSPECIFIED,
                privileges_required=google_native.containeranalysis.v1beta1.CVSSv3PrivilegesRequired.PRIVILEGES_REQUIRED_UNSPECIFIED,
                scope=google_native.containeranalysis.v1beta1.CVSSv3Scope.SCOPE_UNSPECIFIED,
                user_interaction=google_native.containeranalysis.v1beta1.CVSSv3UserInteraction.USER_INTERACTION_UNSPECIFIED,
            ),
            cvss_version=google_native.containeranalysis.v1beta1.VulnerabilityCvssVersion.CVSS_VERSION_UNSPECIFIED,
            cwe=["string"],
            details=[google_native.containeranalysis.v1beta1.DetailArgs(
                cpe_uri="string",
                package="string",
                description="string",
                fixed_location=google_native.containeranalysis.v1beta1.VulnerabilityLocationArgs(
                    cpe_uri="string",
                    package="string",
                    version=google_native.containeranalysis.v1beta1.VersionArgs(
                        kind=google_native.containeranalysis.v1beta1.VersionKind.VERSION_KIND_UNSPECIFIED,
                        epoch=0,
                        inclusive=False,
                        name="string",
                        revision="string",
                    ),
                ),
                is_obsolete=False,
                max_affected_version=google_native.containeranalysis.v1beta1.VersionArgs(
                    kind=google_native.containeranalysis.v1beta1.VersionKind.VERSION_KIND_UNSPECIFIED,
                    epoch=0,
                    inclusive=False,
                    name="string",
                    revision="string",
                ),
                min_affected_version=google_native.containeranalysis.v1beta1.VersionArgs(
                    kind=google_native.containeranalysis.v1beta1.VersionKind.VERSION_KIND_UNSPECIFIED,
                    epoch=0,
                    inclusive=False,
                    name="string",
                    revision="string",
                ),
                package_type="string",
                severity_name="string",
                source="string",
                source_update_time="string",
                vendor="string",
            )],
            severity=google_native.containeranalysis.v1beta1.VulnerabilitySeverity.SEVERITY_UNSPECIFIED,
            source_update_time="string",
            windows_details=[google_native.containeranalysis.v1beta1.WindowsDetailArgs(
                cpe_uri="string",
                fixing_kbs=[google_native.containeranalysis.v1beta1.KnowledgeBaseArgs(
                    name="string",
                    url="string",
                )],
                name="string",
                description="string",
            )],
        ),
        package=google_native.containeranalysis.v1beta1.PackageArgs(
            name="string",
            architecture=google_native.containeranalysis.v1beta1.PackageArchitecture.ARCHITECTURE_UNSPECIFIED,
            cpe_uri="string",
            description="string",
            digest=[google_native.containeranalysis.v1beta1.DigestArgs(
                algo="string",
                digest_bytes="string",
            )],
            distribution=[google_native.containeranalysis.v1beta1.DistributionArgs(
                cpe_uri="string",
                architecture=google_native.containeranalysis.v1beta1.DistributionArchitecture.ARCHITECTURE_UNSPECIFIED,
                description="string",
                latest_version=google_native.containeranalysis.v1beta1.VersionArgs(
                    kind=google_native.containeranalysis.v1beta1.VersionKind.VERSION_KIND_UNSPECIFIED,
                    epoch=0,
                    inclusive=False,
                    name="string",
                    revision="string",
                ),
                maintainer="string",
                url="string",
            )],
            license=google_native.containeranalysis.v1beta1.LicenseArgs(
                comments="string",
                expression="string",
            ),
            maintainer="string",
            package_type="string",
            url="string",
            version=google_native.containeranalysis.v1beta1.VersionArgs(
                kind=google_native.containeranalysis.v1beta1.VersionKind.VERSION_KIND_UNSPECIFIED,
                epoch=0,
                inclusive=False,
                name="string",
                revision="string",
            ),
        ))
    
    const examplenoteResourceResourceFromContaineranalysisv1beta1 = new google_native.containeranalysis.v1beta1.Note("examplenoteResourceResourceFromContaineranalysisv1beta1", {
        noteId: "string",
        project: "string",
        spdxRelationship: {
            type: google_native.containeranalysis.v1beta1.RelationshipNoteType.RelationshipTypeUnspecified,
        },
        deployable: {
            resourceUri: ["string"],
        },
        discovery: {
            analysisKind: google_native.containeranalysis.v1beta1.DiscoveryAnalysisKind.NoteKindUnspecified,
        },
        expirationTime: "string",
        intoto: {
            expectedCommand: ["string"],
            expectedMaterials: [{
                artifactRule: ["string"],
            }],
            expectedProducts: [{
                artifactRule: ["string"],
            }],
            signingKeys: [{
                keyId: "string",
                keyScheme: "string",
                keyType: "string",
                publicKeyValue: "string",
            }],
            stepName: "string",
            threshold: "string",
        },
        longDescription: "string",
        relatedNoteNames: ["string"],
        vulnerabilityAssessment: {
            assessment: {
                impacts: ["string"],
                justification: {
                    details: "string",
                    justificationType: google_native.containeranalysis.v1beta1.JustificationJustificationType.JustificationTypeUnspecified,
                },
                longDescription: "string",
                relatedUris: [{
                    label: "string",
                    url: "string",
                }],
                remediations: [{
                    details: "string",
                    remediationType: google_native.containeranalysis.v1beta1.RemediationRemediationType.RemediationTypeUnspecified,
                    remediationUri: {
                        label: "string",
                        url: "string",
                    },
                }],
                shortDescription: "string",
                state: google_native.containeranalysis.v1beta1.AssessmentState.StateUnspecified,
                vulnerabilityId: "string",
            },
            languageCode: "string",
            longDescription: "string",
            product: {
                genericUri: "string",
                id: "string",
                name: "string",
            },
            publisher: {
                issuingAuthority: "string",
                name: "string",
                publisherNamespace: "string",
            },
            shortDescription: "string",
            title: "string",
        },
        build: {
            builderVersion: "string",
            signature: {
                signature: "string",
                keyId: "string",
                keyType: google_native.containeranalysis.v1beta1.BuildSignatureKeyType.KeyTypeUnspecified,
                publicKey: "string",
            },
        },
        baseImage: {
            fingerprint: {
                v1Name: "string",
                v2Blob: ["string"],
            },
            resourceUrl: "string",
        },
        relatedUrl: [{
            label: "string",
            url: "string",
        }],
        sbom: {
            dataLicence: "string",
            spdxVersion: "string",
        },
        sbomReference: {
            format: "string",
            version: "string",
        },
        shortDescription: "string",
        spdxFile: {
            checksum: ["string"],
            fileType: google_native.containeranalysis.v1beta1.FileNoteFileType.FileTypeUnspecified,
            title: "string",
        },
        spdxPackage: {
            analyzed: false,
            attribution: "string",
            checksum: "string",
            copyright: "string",
            detailedDescription: "string",
            downloadLocation: "string",
            externalRefs: [{
                category: google_native.containeranalysis.v1beta1.ExternalRefCategory.CategoryUnspecified,
                comment: "string",
                locator: "string",
                type: "string",
            }],
            filesLicenseInfo: ["string"],
            homePage: "string",
            licenseDeclared: {
                comments: "string",
                expression: "string",
            },
            originator: "string",
            packageType: "string",
            summaryDescription: "string",
            supplier: "string",
            title: "string",
            verificationCode: "string",
            version: "string",
        },
        attestationAuthority: {
            hint: {
                humanReadableName: "string",
            },
        },
        vulnerability: {
            cvssScore: 0,
            cvssV2: {
                attackComplexity: google_native.containeranalysis.v1beta1.CVSSAttackComplexity.AttackComplexityUnspecified,
                attackVector: google_native.containeranalysis.v1beta1.CVSSAttackVector.AttackVectorUnspecified,
                authentication: google_native.containeranalysis.v1beta1.CVSSAuthentication.AuthenticationUnspecified,
                availabilityImpact: google_native.containeranalysis.v1beta1.CVSSAvailabilityImpact.ImpactUnspecified,
                baseScore: 0,
                confidentialityImpact: google_native.containeranalysis.v1beta1.CVSSConfidentialityImpact.ImpactUnspecified,
                exploitabilityScore: 0,
                impactScore: 0,
                integrityImpact: google_native.containeranalysis.v1beta1.CVSSIntegrityImpact.ImpactUnspecified,
                privilegesRequired: google_native.containeranalysis.v1beta1.CVSSPrivilegesRequired.PrivilegesRequiredUnspecified,
                scope: google_native.containeranalysis.v1beta1.CVSSScope.ScopeUnspecified,
                userInteraction: google_native.containeranalysis.v1beta1.CVSSUserInteraction.UserInteractionUnspecified,
            },
            cvssV3: {
                attackComplexity: google_native.containeranalysis.v1beta1.CVSSv3AttackComplexity.AttackComplexityUnspecified,
                attackVector: google_native.containeranalysis.v1beta1.CVSSv3AttackVector.AttackVectorUnspecified,
                availabilityImpact: google_native.containeranalysis.v1beta1.CVSSv3AvailabilityImpact.ImpactUnspecified,
                baseScore: 0,
                confidentialityImpact: google_native.containeranalysis.v1beta1.CVSSv3ConfidentialityImpact.ImpactUnspecified,
                exploitabilityScore: 0,
                impactScore: 0,
                integrityImpact: google_native.containeranalysis.v1beta1.CVSSv3IntegrityImpact.ImpactUnspecified,
                privilegesRequired: google_native.containeranalysis.v1beta1.CVSSv3PrivilegesRequired.PrivilegesRequiredUnspecified,
                scope: google_native.containeranalysis.v1beta1.CVSSv3Scope.ScopeUnspecified,
                userInteraction: google_native.containeranalysis.v1beta1.CVSSv3UserInteraction.UserInteractionUnspecified,
            },
            cvssVersion: google_native.containeranalysis.v1beta1.VulnerabilityCvssVersion.CvssVersionUnspecified,
            cwe: ["string"],
            details: [{
                cpeUri: "string",
                "package": "string",
                description: "string",
                fixedLocation: {
                    cpeUri: "string",
                    "package": "string",
                    version: {
                        kind: google_native.containeranalysis.v1beta1.VersionKind.VersionKindUnspecified,
                        epoch: 0,
                        inclusive: false,
                        name: "string",
                        revision: "string",
                    },
                },
                isObsolete: false,
                maxAffectedVersion: {
                    kind: google_native.containeranalysis.v1beta1.VersionKind.VersionKindUnspecified,
                    epoch: 0,
                    inclusive: false,
                    name: "string",
                    revision: "string",
                },
                minAffectedVersion: {
                    kind: google_native.containeranalysis.v1beta1.VersionKind.VersionKindUnspecified,
                    epoch: 0,
                    inclusive: false,
                    name: "string",
                    revision: "string",
                },
                packageType: "string",
                severityName: "string",
                source: "string",
                sourceUpdateTime: "string",
                vendor: "string",
            }],
            severity: google_native.containeranalysis.v1beta1.VulnerabilitySeverity.SeverityUnspecified,
            sourceUpdateTime: "string",
            windowsDetails: [{
                cpeUri: "string",
                fixingKbs: [{
                    name: "string",
                    url: "string",
                }],
                name: "string",
                description: "string",
            }],
        },
        "package": {
            name: "string",
            architecture: google_native.containeranalysis.v1beta1.PackageArchitecture.ArchitectureUnspecified,
            cpeUri: "string",
            description: "string",
            digest: [{
                algo: "string",
                digestBytes: "string",
            }],
            distribution: [{
                cpeUri: "string",
                architecture: google_native.containeranalysis.v1beta1.DistributionArchitecture.ArchitectureUnspecified,
                description: "string",
                latestVersion: {
                    kind: google_native.containeranalysis.v1beta1.VersionKind.VersionKindUnspecified,
                    epoch: 0,
                    inclusive: false,
                    name: "string",
                    revision: "string",
                },
                maintainer: "string",
                url: "string",
            }],
            license: {
                comments: "string",
                expression: "string",
            },
            maintainer: "string",
            packageType: "string",
            url: "string",
            version: {
                kind: google_native.containeranalysis.v1beta1.VersionKind.VersionKindUnspecified,
                epoch: 0,
                inclusive: false,
                name: "string",
                revision: "string",
            },
        },
    });
    
    type: google-native:containeranalysis/v1beta1:Note
    properties:
        attestationAuthority:
            hint:
                humanReadableName: string
        baseImage:
            fingerprint:
                v1Name: string
                v2Blob:
                    - string
            resourceUrl: string
        build:
            builderVersion: string
            signature:
                keyId: string
                keyType: KEY_TYPE_UNSPECIFIED
                publicKey: string
                signature: string
        deployable:
            resourceUri:
                - string
        discovery:
            analysisKind: NOTE_KIND_UNSPECIFIED
        expirationTime: string
        intoto:
            expectedCommand:
                - string
            expectedMaterials:
                - artifactRule:
                    - string
            expectedProducts:
                - artifactRule:
                    - string
            signingKeys:
                - keyId: string
                  keyScheme: string
                  keyType: string
                  publicKeyValue: string
            stepName: string
            threshold: string
        longDescription: string
        noteId: string
        package:
            architecture: ARCHITECTURE_UNSPECIFIED
            cpeUri: string
            description: string
            digest:
                - algo: string
                  digestBytes: string
            distribution:
                - architecture: ARCHITECTURE_UNSPECIFIED
                  cpeUri: string
                  description: string
                  latestVersion:
                    epoch: 0
                    inclusive: false
                    kind: VERSION_KIND_UNSPECIFIED
                    name: string
                    revision: string
                  maintainer: string
                  url: string
            license:
                comments: string
                expression: string
            maintainer: string
            name: string
            packageType: string
            url: string
            version:
                epoch: 0
                inclusive: false
                kind: VERSION_KIND_UNSPECIFIED
                name: string
                revision: string
        project: string
        relatedNoteNames:
            - string
        relatedUrl:
            - label: string
              url: string
        sbom:
            dataLicence: string
            spdxVersion: string
        sbomReference:
            format: string
            version: string
        shortDescription: string
        spdxFile:
            checksum:
                - string
            fileType: FILE_TYPE_UNSPECIFIED
            title: string
        spdxPackage:
            analyzed: false
            attribution: string
            checksum: string
            copyright: string
            detailedDescription: string
            downloadLocation: string
            externalRefs:
                - category: CATEGORY_UNSPECIFIED
                  comment: string
                  locator: string
                  type: string
            filesLicenseInfo:
                - string
            homePage: string
            licenseDeclared:
                comments: string
                expression: string
            originator: string
            packageType: string
            summaryDescription: string
            supplier: string
            title: string
            verificationCode: string
            version: string
        spdxRelationship:
            type: RELATIONSHIP_TYPE_UNSPECIFIED
        vulnerability:
            cvssScore: 0
            cvssV2:
                attackComplexity: ATTACK_COMPLEXITY_UNSPECIFIED
                attackVector: ATTACK_VECTOR_UNSPECIFIED
                authentication: AUTHENTICATION_UNSPECIFIED
                availabilityImpact: IMPACT_UNSPECIFIED
                baseScore: 0
                confidentialityImpact: IMPACT_UNSPECIFIED
                exploitabilityScore: 0
                impactScore: 0
                integrityImpact: IMPACT_UNSPECIFIED
                privilegesRequired: PRIVILEGES_REQUIRED_UNSPECIFIED
                scope: SCOPE_UNSPECIFIED
                userInteraction: USER_INTERACTION_UNSPECIFIED
            cvssV3:
                attackComplexity: ATTACK_COMPLEXITY_UNSPECIFIED
                attackVector: ATTACK_VECTOR_UNSPECIFIED
                availabilityImpact: IMPACT_UNSPECIFIED
                baseScore: 0
                confidentialityImpact: IMPACT_UNSPECIFIED
                exploitabilityScore: 0
                impactScore: 0
                integrityImpact: IMPACT_UNSPECIFIED
                privilegesRequired: PRIVILEGES_REQUIRED_UNSPECIFIED
                scope: SCOPE_UNSPECIFIED
                userInteraction: USER_INTERACTION_UNSPECIFIED
            cvssVersion: CVSS_VERSION_UNSPECIFIED
            cwe:
                - string
            details:
                - cpeUri: string
                  description: string
                  fixedLocation:
                    cpeUri: string
                    package: string
                    version:
                        epoch: 0
                        inclusive: false
                        kind: VERSION_KIND_UNSPECIFIED
                        name: string
                        revision: string
                  isObsolete: false
                  maxAffectedVersion:
                    epoch: 0
                    inclusive: false
                    kind: VERSION_KIND_UNSPECIFIED
                    name: string
                    revision: string
                  minAffectedVersion:
                    epoch: 0
                    inclusive: false
                    kind: VERSION_KIND_UNSPECIFIED
                    name: string
                    revision: string
                  package: string
                  packageType: string
                  severityName: string
                  source: string
                  sourceUpdateTime: string
                  vendor: string
            severity: SEVERITY_UNSPECIFIED
            sourceUpdateTime: string
            windowsDetails:
                - cpeUri: string
                  description: string
                  fixingKbs:
                    - name: string
                      url: string
                  name: string
        vulnerabilityAssessment:
            assessment:
                impacts:
                    - string
                justification:
                    details: string
                    justificationType: JUSTIFICATION_TYPE_UNSPECIFIED
                longDescription: string
                relatedUris:
                    - label: string
                      url: string
                remediations:
                    - details: string
                      remediationType: REMEDIATION_TYPE_UNSPECIFIED
                      remediationUri:
                        label: string
                        url: string
                shortDescription: string
                state: STATE_UNSPECIFIED
                vulnerabilityId: string
            languageCode: string
            longDescription: string
            product:
                genericUri: string
                id: string
                name: string
            publisher:
                issuingAuthority: string
                name: string
                publisherNamespace: string
            shortDescription: string
            title: string
    

    Note Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The Note resource accepts the following input properties:

    NoteId string
    Required. The ID to use for this note.
    AttestationAuthority Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Authority
    A note describing an attestation role.
    BaseImage Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Basis
    A note describing a base image.
    Build Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Build
    A note describing build provenance for a verifiable build.
    Deployable Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Deployable
    A note describing something that can be deployed.
    Discovery Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Discovery
    A note describing the initial analysis of a resource.
    ExpirationTime string
    Time of expiration for this note. Empty if note does not expire.
    Intoto Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.InToto
    A note describing an in-toto link.
    LongDescription string
    A detailed description of this note.
    Package Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Package
    A note describing a package hosted by various package managers.
    Project string
    RelatedNoteNames List<string>
    Other notes related to this note.
    RelatedUrl List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelatedUrl>
    URLs associated with this note.
    Sbom Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DocumentNote
    A note describing a software bill of materials.
    SbomReference Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SBOMReferenceNote
    A note describing an SBOM reference.
    ShortDescription string
    A one sentence description of this note.
    SpdxFile Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.FileNote
    A note describing an SPDX File.
    SpdxPackage Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.PackageInfoNote
    A note describing an SPDX Package.
    SpdxRelationship Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelationshipNote
    A note describing an SPDX File.
    Vulnerability Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Vulnerability
    A note describing a package vulnerability.
    VulnerabilityAssessment Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VulnerabilityAssessmentNote
    A note describing a vulnerability assessment.
    NoteId string
    Required. The ID to use for this note.
    AttestationAuthority AuthorityArgs
    A note describing an attestation role.
    BaseImage BasisArgs
    A note describing a base image.
    Build BuildArgs
    A note describing build provenance for a verifiable build.
    Deployable DeployableArgs
    A note describing something that can be deployed.
    Discovery DiscoveryArgs
    A note describing the initial analysis of a resource.
    ExpirationTime string
    Time of expiration for this note. Empty if note does not expire.
    Intoto InTotoArgs
    A note describing an in-toto link.
    LongDescription string
    A detailed description of this note.
    Package PackageArgs
    A note describing a package hosted by various package managers.
    Project string
    RelatedNoteNames []string
    Other notes related to this note.
    RelatedUrl []RelatedUrlArgs
    URLs associated with this note.
    Sbom DocumentNoteArgs
    A note describing a software bill of materials.
    SbomReference SBOMReferenceNoteArgs
    A note describing an SBOM reference.
    ShortDescription string
    A one sentence description of this note.
    SpdxFile FileNoteArgs
    A note describing an SPDX File.
    SpdxPackage PackageInfoNoteArgs
    A note describing an SPDX Package.
    SpdxRelationship RelationshipNoteArgs
    A note describing an SPDX File.
    Vulnerability VulnerabilityArgs
    A note describing a package vulnerability.
    VulnerabilityAssessment VulnerabilityAssessmentNoteArgs
    A note describing a vulnerability assessment.
    noteId String
    Required. The ID to use for this note.
    attestationAuthority Authority
    A note describing an attestation role.
    baseImage Basis
    A note describing a base image.
    build Build
    A note describing build provenance for a verifiable build.
    deployable Deployable
    A note describing something that can be deployed.
    discovery Discovery
    A note describing the initial analysis of a resource.
    expirationTime String
    Time of expiration for this note. Empty if note does not expire.
    intoto InToto
    A note describing an in-toto link.
    longDescription String
    A detailed description of this note.
    package_ Package
    A note describing a package hosted by various package managers.
    project String
    relatedNoteNames List<String>
    Other notes related to this note.
    relatedUrl List<RelatedUrl>
    URLs associated with this note.
    sbom DocumentNote
    A note describing a software bill of materials.
    sbomReference SBOMReferenceNote
    A note describing an SBOM reference.
    shortDescription String
    A one sentence description of this note.
    spdxFile FileNote
    A note describing an SPDX File.
    spdxPackage PackageInfoNote
    A note describing an SPDX Package.
    spdxRelationship RelationshipNote
    A note describing an SPDX File.
    vulnerability Vulnerability
    A note describing a package vulnerability.
    vulnerabilityAssessment VulnerabilityAssessmentNote
    A note describing a vulnerability assessment.
    noteId string
    Required. The ID to use for this note.
    attestationAuthority Authority
    A note describing an attestation role.
    baseImage Basis
    A note describing a base image.
    build Build
    A note describing build provenance for a verifiable build.
    deployable Deployable
    A note describing something that can be deployed.
    discovery Discovery
    A note describing the initial analysis of a resource.
    expirationTime string
    Time of expiration for this note. Empty if note does not expire.
    intoto InToto
    A note describing an in-toto link.
    longDescription string
    A detailed description of this note.
    package Package
    A note describing a package hosted by various package managers.
    project string
    relatedNoteNames string[]
    Other notes related to this note.
    relatedUrl RelatedUrl[]
    URLs associated with this note.
    sbom DocumentNote
    A note describing a software bill of materials.
    sbomReference SBOMReferenceNote
    A note describing an SBOM reference.
    shortDescription string
    A one sentence description of this note.
    spdxFile FileNote
    A note describing an SPDX File.
    spdxPackage PackageInfoNote
    A note describing an SPDX Package.
    spdxRelationship RelationshipNote
    A note describing an SPDX File.
    vulnerability Vulnerability
    A note describing a package vulnerability.
    vulnerabilityAssessment VulnerabilityAssessmentNote
    A note describing a vulnerability assessment.
    note_id str
    Required. The ID to use for this note.
    attestation_authority AuthorityArgs
    A note describing an attestation role.
    base_image BasisArgs
    A note describing a base image.
    build BuildArgs
    A note describing build provenance for a verifiable build.
    deployable DeployableArgs
    A note describing something that can be deployed.
    discovery DiscoveryArgs
    A note describing the initial analysis of a resource.
    expiration_time str
    Time of expiration for this note. Empty if note does not expire.
    intoto InTotoArgs
    A note describing an in-toto link.
    long_description str
    A detailed description of this note.
    package PackageArgs
    A note describing a package hosted by various package managers.
    project str
    related_note_names Sequence[str]
    Other notes related to this note.
    related_url Sequence[RelatedUrlArgs]
    URLs associated with this note.
    sbom DocumentNoteArgs
    A note describing a software bill of materials.
    sbom_reference SBOMReferenceNoteArgs
    A note describing an SBOM reference.
    short_description str
    A one sentence description of this note.
    spdx_file FileNoteArgs
    A note describing an SPDX File.
    spdx_package PackageInfoNoteArgs
    A note describing an SPDX Package.
    spdx_relationship RelationshipNoteArgs
    A note describing an SPDX File.
    vulnerability VulnerabilityArgs
    A note describing a package vulnerability.
    vulnerability_assessment VulnerabilityAssessmentNoteArgs
    A note describing a vulnerability assessment.
    noteId String
    Required. The ID to use for this note.
    attestationAuthority Property Map
    A note describing an attestation role.
    baseImage Property Map
    A note describing a base image.
    build Property Map
    A note describing build provenance for a verifiable build.
    deployable Property Map
    A note describing something that can be deployed.
    discovery Property Map
    A note describing the initial analysis of a resource.
    expirationTime String
    Time of expiration for this note. Empty if note does not expire.
    intoto Property Map
    A note describing an in-toto link.
    longDescription String
    A detailed description of this note.
    package Property Map
    A note describing a package hosted by various package managers.
    project String
    relatedNoteNames List<String>
    Other notes related to this note.
    relatedUrl List<Property Map>
    URLs associated with this note.
    sbom Property Map
    A note describing a software bill of materials.
    sbomReference Property Map
    A note describing an SBOM reference.
    shortDescription String
    A one sentence description of this note.
    spdxFile Property Map
    A note describing an SPDX File.
    spdxPackage Property Map
    A note describing an SPDX Package.
    spdxRelationship Property Map
    A note describing an SPDX File.
    vulnerability Property Map
    A note describing a package vulnerability.
    vulnerabilityAssessment Property Map
    A note describing a vulnerability assessment.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the Note resource produces the following output properties:

    CreateTime string
    The time this note was created. This field can be used as a filter in list requests.
    Id string
    The provider-assigned unique ID for this managed resource.
    Kind string
    The type of analysis. This field can be used as a filter in list requests.
    Name string
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    UpdateTime string
    The time this note was last updated. This field can be used as a filter in list requests.
    CreateTime string
    The time this note was created. This field can be used as a filter in list requests.
    Id string
    The provider-assigned unique ID for this managed resource.
    Kind string
    The type of analysis. This field can be used as a filter in list requests.
    Name string
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    UpdateTime string
    The time this note was last updated. This field can be used as a filter in list requests.
    createTime String
    The time this note was created. This field can be used as a filter in list requests.
    id String
    The provider-assigned unique ID for this managed resource.
    kind String
    The type of analysis. This field can be used as a filter in list requests.
    name String
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    updateTime String
    The time this note was last updated. This field can be used as a filter in list requests.
    createTime string
    The time this note was created. This field can be used as a filter in list requests.
    id string
    The provider-assigned unique ID for this managed resource.
    kind string
    The type of analysis. This field can be used as a filter in list requests.
    name string
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    updateTime string
    The time this note was last updated. This field can be used as a filter in list requests.
    create_time str
    The time this note was created. This field can be used as a filter in list requests.
    id str
    The provider-assigned unique ID for this managed resource.
    kind str
    The type of analysis. This field can be used as a filter in list requests.
    name str
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    update_time str
    The time this note was last updated. This field can be used as a filter in list requests.
    createTime String
    The time this note was created. This field can be used as a filter in list requests.
    id String
    The provider-assigned unique ID for this managed resource.
    kind String
    The type of analysis. This field can be used as a filter in list requests.
    name String
    The name of the note in the form of projects/[PROVIDER_ID]/notes/[NOTE_ID].
    updateTime String
    The time this note was last updated. This field can be used as a filter in list requests.

    Supporting Types

    ArtifactRule, ArtifactRuleArgs

    ArtifactRule List<string>
    ArtifactRule []string
    artifactRule List<String>
    artifactRule string[]
    artifact_rule Sequence[str]
    artifactRule List<String>

    ArtifactRuleResponse, ArtifactRuleResponseArgs

    ArtifactRule List<string>
    ArtifactRule []string
    artifactRule List<String>
    artifactRule string[]
    artifact_rule Sequence[str]
    artifactRule List<String>

    Assessment, AssessmentArgs

    Cve string
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Impacts List<string>
    Contains information about the impact of this vulnerability, this will change with time.
    Justification Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Justification
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    LongDescription string
    A detailed description of this Vex.
    RelatedUris List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelatedUrl>
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    Remediations List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Remediation>
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    ShortDescription string
    A one sentence description of this Vex.
    State Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.AssessmentState
    Provides the state of this Vulnerability assessment.
    VulnerabilityId string
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    Cve string
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Impacts []string
    Contains information about the impact of this vulnerability, this will change with time.
    Justification Justification
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    LongDescription string
    A detailed description of this Vex.
    RelatedUris []RelatedUrl
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    Remediations []Remediation
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    ShortDescription string
    A one sentence description of this Vex.
    State AssessmentState
    Provides the state of this Vulnerability assessment.
    VulnerabilityId string
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve String
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts List<String>
    Contains information about the impact of this vulnerability, this will change with time.
    justification Justification
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    longDescription String
    A detailed description of this Vex.
    relatedUris List<RelatedUrl>
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations List<Remediation>
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    shortDescription String
    A one sentence description of this Vex.
    state AssessmentState
    Provides the state of this Vulnerability assessment.
    vulnerabilityId String
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve string
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts string[]
    Contains information about the impact of this vulnerability, this will change with time.
    justification Justification
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    longDescription string
    A detailed description of this Vex.
    relatedUris RelatedUrl[]
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations Remediation[]
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    shortDescription string
    A one sentence description of this Vex.
    state AssessmentState
    Provides the state of this Vulnerability assessment.
    vulnerabilityId string
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve str
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts Sequence[str]
    Contains information about the impact of this vulnerability, this will change with time.
    justification Justification
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    long_description str
    A detailed description of this Vex.
    related_uris Sequence[RelatedUrl]
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations Sequence[Remediation]
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    short_description str
    A one sentence description of this Vex.
    state AssessmentState
    Provides the state of this Vulnerability assessment.
    vulnerability_id str
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve String
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts List<String>
    Contains information about the impact of this vulnerability, this will change with time.
    justification Property Map
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    longDescription String
    A detailed description of this Vex.
    relatedUris List<Property Map>
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations List<Property Map>
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    shortDescription String
    A one sentence description of this Vex.
    state "STATE_UNSPECIFIED" | "AFFECTED" | "NOT_AFFECTED" | "FIXED" | "UNDER_INVESTIGATION"
    Provides the state of this Vulnerability assessment.
    vulnerabilityId String
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.

    AssessmentResponse, AssessmentResponseArgs

    Cve string
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Impacts List<string>
    Contains information about the impact of this vulnerability, this will change with time.
    Justification Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.JustificationResponse
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    LongDescription string
    A detailed description of this Vex.
    RelatedUris List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelatedUrlResponse>
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    Remediations List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RemediationResponse>
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    ShortDescription string
    A one sentence description of this Vex.
    State string
    Provides the state of this Vulnerability assessment.
    VulnerabilityId string
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    Cve string
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Impacts []string
    Contains information about the impact of this vulnerability, this will change with time.
    Justification JustificationResponse
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    LongDescription string
    A detailed description of this Vex.
    RelatedUris []RelatedUrlResponse
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    Remediations []RemediationResponse
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    ShortDescription string
    A one sentence description of this Vex.
    State string
    Provides the state of this Vulnerability assessment.
    VulnerabilityId string
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve String
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts List<String>
    Contains information about the impact of this vulnerability, this will change with time.
    justification JustificationResponse
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    longDescription String
    A detailed description of this Vex.
    relatedUris List<RelatedUrlResponse>
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations List<RemediationResponse>
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    shortDescription String
    A one sentence description of this Vex.
    state String
    Provides the state of this Vulnerability assessment.
    vulnerabilityId String
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve string
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts string[]
    Contains information about the impact of this vulnerability, this will change with time.
    justification JustificationResponse
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    longDescription string
    A detailed description of this Vex.
    relatedUris RelatedUrlResponse[]
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations RemediationResponse[]
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    shortDescription string
    A one sentence description of this Vex.
    state string
    Provides the state of this Vulnerability assessment.
    vulnerabilityId string
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve str
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts Sequence[str]
    Contains information about the impact of this vulnerability, this will change with time.
    justification JustificationResponse
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    long_description str
    A detailed description of this Vex.
    related_uris Sequence[RelatedUrlResponse]
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations Sequence[RemediationResponse]
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    short_description str
    A one sentence description of this Vex.
    state str
    Provides the state of this Vulnerability assessment.
    vulnerability_id str
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
    cve String
    Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    Deprecated: Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.

    impacts List<String>
    Contains information about the impact of this vulnerability, this will change with time.
    justification Property Map
    Justification provides the justification when the state of the assessment if NOT_AFFECTED.
    longDescription String
    A detailed description of this Vex.
    relatedUris List<Property Map>
    Holds a list of references associated with this vulnerability item and assessment. These uris have additional information about the vulnerability and the assessment itself. E.g. Link to a document which details how this assessment concluded the state of this vulnerability.
    remediations List<Property Map>
    Specifies details on how to handle (and presumably, fix) a vulnerability.
    shortDescription String
    A one sentence description of this Vex.
    state String
    Provides the state of this Vulnerability assessment.
    vulnerabilityId String
    The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.

    AssessmentState, AssessmentStateArgs

    StateUnspecified
    STATE_UNSPECIFIEDNo state is specified.
    Affected
    AFFECTEDThis product is known to be affected by this vulnerability.
    NotAffected
    NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
    Fixed
    FIXEDThis product contains a fix for this vulnerability.
    UnderInvestigation
    UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.
    AssessmentStateStateUnspecified
    STATE_UNSPECIFIEDNo state is specified.
    AssessmentStateAffected
    AFFECTEDThis product is known to be affected by this vulnerability.
    AssessmentStateNotAffected
    NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
    AssessmentStateFixed
    FIXEDThis product contains a fix for this vulnerability.
    AssessmentStateUnderInvestigation
    UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.
    StateUnspecified
    STATE_UNSPECIFIEDNo state is specified.
    Affected
    AFFECTEDThis product is known to be affected by this vulnerability.
    NotAffected
    NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
    Fixed
    FIXEDThis product contains a fix for this vulnerability.
    UnderInvestigation
    UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.
    StateUnspecified
    STATE_UNSPECIFIEDNo state is specified.
    Affected
    AFFECTEDThis product is known to be affected by this vulnerability.
    NotAffected
    NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
    Fixed
    FIXEDThis product contains a fix for this vulnerability.
    UnderInvestigation
    UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.
    STATE_UNSPECIFIED
    STATE_UNSPECIFIEDNo state is specified.
    AFFECTED
    AFFECTEDThis product is known to be affected by this vulnerability.
    NOT_AFFECTED
    NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
    FIXED
    FIXEDThis product contains a fix for this vulnerability.
    UNDER_INVESTIGATION
    UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.
    "STATE_UNSPECIFIED"
    STATE_UNSPECIFIEDNo state is specified.
    "AFFECTED"
    AFFECTEDThis product is known to be affected by this vulnerability.
    "NOT_AFFECTED"
    NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
    "FIXED"
    FIXEDThis product contains a fix for this vulnerability.
    "UNDER_INVESTIGATION"
    UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.

    Authority, AuthorityArgs

    Hint Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Hint
    Hint hints at the purpose of the attestation authority.
    Hint Hint
    Hint hints at the purpose of the attestation authority.
    hint Hint
    Hint hints at the purpose of the attestation authority.
    hint Hint
    Hint hints at the purpose of the attestation authority.
    hint Hint
    Hint hints at the purpose of the attestation authority.
    hint Property Map
    Hint hints at the purpose of the attestation authority.

    AuthorityResponse, AuthorityResponseArgs

    Hint Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.HintResponse
    Hint hints at the purpose of the attestation authority.
    Hint HintResponse
    Hint hints at the purpose of the attestation authority.
    hint HintResponse
    Hint hints at the purpose of the attestation authority.
    hint HintResponse
    Hint hints at the purpose of the attestation authority.
    hint HintResponse
    Hint hints at the purpose of the attestation authority.
    hint Property Map
    Hint hints at the purpose of the attestation authority.

    Basis, BasisArgs

    Fingerprint Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Fingerprint
    Immutable. The fingerprint of the base image.
    ResourceUrl string
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    Fingerprint Fingerprint
    Immutable. The fingerprint of the base image.
    ResourceUrl string
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint Fingerprint
    Immutable. The fingerprint of the base image.
    resourceUrl String
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint Fingerprint
    Immutable. The fingerprint of the base image.
    resourceUrl string
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint Fingerprint
    Immutable. The fingerprint of the base image.
    resource_url str
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint Property Map
    Immutable. The fingerprint of the base image.
    resourceUrl String
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.

    BasisResponse, BasisResponseArgs

    Fingerprint Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.FingerprintResponse
    Immutable. The fingerprint of the base image.
    ResourceUrl string
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    Fingerprint FingerprintResponse
    Immutable. The fingerprint of the base image.
    ResourceUrl string
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint FingerprintResponse
    Immutable. The fingerprint of the base image.
    resourceUrl String
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint FingerprintResponse
    Immutable. The fingerprint of the base image.
    resourceUrl string
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint FingerprintResponse
    Immutable. The fingerprint of the base image.
    resource_url str
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.
    fingerprint Property Map
    Immutable. The fingerprint of the base image.
    resourceUrl String
    Immutable. The resource_url for the resource representing the basis of associated occurrence images.

    Build, BuildArgs

    BuilderVersion string
    Immutable. Version of the builder which produced this build.
    Signature Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.BuildSignature
    Signature of the build in occurrences pointing to this build note containing build details.
    BuilderVersion string
    Immutable. Version of the builder which produced this build.
    Signature BuildSignature
    Signature of the build in occurrences pointing to this build note containing build details.
    builderVersion String
    Immutable. Version of the builder which produced this build.
    signature BuildSignature
    Signature of the build in occurrences pointing to this build note containing build details.
    builderVersion string
    Immutable. Version of the builder which produced this build.
    signature BuildSignature
    Signature of the build in occurrences pointing to this build note containing build details.
    builder_version str
    Immutable. Version of the builder which produced this build.
    signature BuildSignature
    Signature of the build in occurrences pointing to this build note containing build details.
    builderVersion String
    Immutable. Version of the builder which produced this build.
    signature Property Map
    Signature of the build in occurrences pointing to this build note containing build details.

    BuildResponse, BuildResponseArgs

    BuilderVersion string
    Immutable. Version of the builder which produced this build.
    Signature Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.BuildSignatureResponse
    Signature of the build in occurrences pointing to this build note containing build details.
    BuilderVersion string
    Immutable. Version of the builder which produced this build.
    Signature BuildSignatureResponse
    Signature of the build in occurrences pointing to this build note containing build details.
    builderVersion String
    Immutable. Version of the builder which produced this build.
    signature BuildSignatureResponse
    Signature of the build in occurrences pointing to this build note containing build details.
    builderVersion string
    Immutable. Version of the builder which produced this build.
    signature BuildSignatureResponse
    Signature of the build in occurrences pointing to this build note containing build details.
    builder_version str
    Immutable. Version of the builder which produced this build.
    signature BuildSignatureResponse
    Signature of the build in occurrences pointing to this build note containing build details.
    builderVersion String
    Immutable. Version of the builder which produced this build.
    signature Property Map
    Signature of the build in occurrences pointing to this build note containing build details.

    BuildSignature, BuildSignatureArgs

    Signature string
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.
    KeyId string
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    KeyType Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.BuildSignatureKeyType
    The type of the key, either stored in public_key or referenced in key_id.
    PublicKey string
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin
    Signature string
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.
    KeyId string
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    KeyType BuildSignatureKeyType
    The type of the key, either stored in public_key or referenced in key_id.
    PublicKey string
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin
    signature String
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.
    keyId String
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    keyType BuildSignatureKeyType
    The type of the key, either stored in public_key or referenced in key_id.
    publicKey String
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin
    signature string
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.
    keyId string
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    keyType BuildSignatureKeyType
    The type of the key, either stored in public_key or referenced in key_id.
    publicKey string
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin
    signature str
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.
    key_id str
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    key_type BuildSignatureKeyType
    The type of the key, either stored in public_key or referenced in key_id.
    public_key str
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin
    signature String
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.
    keyId String
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    keyType "KEY_TYPE_UNSPECIFIED" | "PGP_ASCII_ARMORED" | "PKIX_PEM"
    The type of the key, either stored in public_key or referenced in key_id.
    publicKey String
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin

    BuildSignatureKeyType, BuildSignatureKeyTypeArgs

    KeyTypeUnspecified
    KEY_TYPE_UNSPECIFIEDKeyType is not set.
    PgpAsciiArmored
    PGP_ASCII_ARMOREDPGP ASCII Armored public key.
    PkixPem
    PKIX_PEMPKIX PEM public key.
    BuildSignatureKeyTypeKeyTypeUnspecified
    KEY_TYPE_UNSPECIFIEDKeyType is not set.
    BuildSignatureKeyTypePgpAsciiArmored
    PGP_ASCII_ARMOREDPGP ASCII Armored public key.
    BuildSignatureKeyTypePkixPem
    PKIX_PEMPKIX PEM public key.
    KeyTypeUnspecified
    KEY_TYPE_UNSPECIFIEDKeyType is not set.
    PgpAsciiArmored
    PGP_ASCII_ARMOREDPGP ASCII Armored public key.
    PkixPem
    PKIX_PEMPKIX PEM public key.
    KeyTypeUnspecified
    KEY_TYPE_UNSPECIFIEDKeyType is not set.
    PgpAsciiArmored
    PGP_ASCII_ARMOREDPGP ASCII Armored public key.
    PkixPem
    PKIX_PEMPKIX PEM public key.
    KEY_TYPE_UNSPECIFIED
    KEY_TYPE_UNSPECIFIEDKeyType is not set.
    PGP_ASCII_ARMORED
    PGP_ASCII_ARMOREDPGP ASCII Armored public key.
    PKIX_PEM
    PKIX_PEMPKIX PEM public key.
    "KEY_TYPE_UNSPECIFIED"
    KEY_TYPE_UNSPECIFIEDKeyType is not set.
    "PGP_ASCII_ARMORED"
    PGP_ASCII_ARMOREDPGP ASCII Armored public key.
    "PKIX_PEM"
    PKIX_PEMPKIX PEM public key.

    BuildSignatureResponse, BuildSignatureResponseArgs

    KeyId string
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    KeyType string
    The type of the key, either stored in public_key or referenced in key_id.
    PublicKey string
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin
    Signature string
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.
    KeyId string
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    KeyType string
    The type of the key, either stored in public_key or referenced in key_id.
    PublicKey string
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin
    Signature string
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.
    keyId String
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    keyType String
    The type of the key, either stored in public_key or referenced in key_id.
    publicKey String
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin
    signature String
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.
    keyId string
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    keyType string
    The type of the key, either stored in public_key or referenced in key_id.
    publicKey string
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin
    signature string
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.
    key_id str
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    key_type str
    The type of the key, either stored in public_key or referenced in key_id.
    public_key str
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin
    signature str
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.
    keyId String
    An ID for the key used to sign. This could be either an ID for the key stored in public_key (such as the ID or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
    keyType String
    The type of the key, either stored in public_key or referenced in key_id.
    publicKey String
    Public key of the builder which can be used to verify that the related findings are valid and unchanged. If key_type is empty, this defaults to PEM encoded public keys. This field may be empty if key_id references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from BuildDetails are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: openssl sha256 -verify public.pem -signature signature.bin signed.bin
    signature String
    Signature of the related BuildProvenance. In JSON, this is base-64 encoded.

    CVSS, CVSSArgs

    AttackComplexity Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSAttackComplexity
    Defined in CVSS v3, CVSS v2
    AttackVector Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSAttackVector
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    Authentication Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSAuthentication
    Defined in CVSS v2
    AvailabilityImpact Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSAvailabilityImpact
    Defined in CVSS v3, CVSS v2
    BaseScore double
    The base score is a function of the base metric scores.
    ConfidentialityImpact Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSConfidentialityImpact
    Defined in CVSS v3, CVSS v2
    ExploitabilityScore double
    ImpactScore double
    IntegrityImpact Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSIntegrityImpact
    Defined in CVSS v3, CVSS v2
    PrivilegesRequired Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSPrivilegesRequired
    Defined in CVSS v3
    Scope Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSScope
    Defined in CVSS v3
    UserInteraction Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSUserInteraction
    Defined in CVSS v3
    AttackComplexity CVSSAttackComplexity
    Defined in CVSS v3, CVSS v2
    AttackVector CVSSAttackVector
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    Authentication CVSSAuthentication
    Defined in CVSS v2
    AvailabilityImpact CVSSAvailabilityImpact
    Defined in CVSS v3, CVSS v2
    BaseScore float64
    The base score is a function of the base metric scores.
    ConfidentialityImpact CVSSConfidentialityImpact
    Defined in CVSS v3, CVSS v2
    ExploitabilityScore float64
    ImpactScore float64
    IntegrityImpact CVSSIntegrityImpact
    Defined in CVSS v3, CVSS v2
    PrivilegesRequired CVSSPrivilegesRequired
    Defined in CVSS v3
    Scope CVSSScope
    Defined in CVSS v3
    UserInteraction CVSSUserInteraction
    Defined in CVSS v3
    attackComplexity CVSSAttackComplexity
    Defined in CVSS v3, CVSS v2
    attackVector CVSSAttackVector
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    authentication CVSSAuthentication
    Defined in CVSS v2
    availabilityImpact CVSSAvailabilityImpact
    Defined in CVSS v3, CVSS v2
    baseScore Double
    The base score is a function of the base metric scores.
    confidentialityImpact CVSSConfidentialityImpact
    Defined in CVSS v3, CVSS v2
    exploitabilityScore Double
    impactScore Double
    integrityImpact CVSSIntegrityImpact
    Defined in CVSS v3, CVSS v2
    privilegesRequired CVSSPrivilegesRequired
    Defined in CVSS v3
    scope CVSSScope
    Defined in CVSS v3
    userInteraction CVSSUserInteraction
    Defined in CVSS v3
    attackComplexity CVSSAttackComplexity
    Defined in CVSS v3, CVSS v2
    attackVector CVSSAttackVector
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    authentication CVSSAuthentication
    Defined in CVSS v2
    availabilityImpact CVSSAvailabilityImpact
    Defined in CVSS v3, CVSS v2
    baseScore number
    The base score is a function of the base metric scores.
    confidentialityImpact CVSSConfidentialityImpact
    Defined in CVSS v3, CVSS v2
    exploitabilityScore number
    impactScore number
    integrityImpact CVSSIntegrityImpact
    Defined in CVSS v3, CVSS v2
    privilegesRequired CVSSPrivilegesRequired
    Defined in CVSS v3
    scope CVSSScope
    Defined in CVSS v3
    userInteraction CVSSUserInteraction
    Defined in CVSS v3
    attack_complexity CVSSAttackComplexity
    Defined in CVSS v3, CVSS v2
    attack_vector CVSSAttackVector
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    authentication CVSSAuthentication
    Defined in CVSS v2
    availability_impact CVSSAvailabilityImpact
    Defined in CVSS v3, CVSS v2
    base_score float
    The base score is a function of the base metric scores.
    confidentiality_impact CVSSConfidentialityImpact
    Defined in CVSS v3, CVSS v2
    exploitability_score float
    impact_score float
    integrity_impact CVSSIntegrityImpact
    Defined in CVSS v3, CVSS v2
    privileges_required CVSSPrivilegesRequired
    Defined in CVSS v3
    scope CVSSScope
    Defined in CVSS v3
    user_interaction CVSSUserInteraction
    Defined in CVSS v3
    attackComplexity "ATTACK_COMPLEXITY_UNSPECIFIED" | "ATTACK_COMPLEXITY_LOW" | "ATTACK_COMPLEXITY_HIGH" | "ATTACK_COMPLEXITY_MEDIUM"
    Defined in CVSS v3, CVSS v2
    attackVector "ATTACK_VECTOR_UNSPECIFIED" | "ATTACK_VECTOR_NETWORK" | "ATTACK_VECTOR_ADJACENT" | "ATTACK_VECTOR_LOCAL" | "ATTACK_VECTOR_PHYSICAL"
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    authentication "AUTHENTICATION_UNSPECIFIED" | "AUTHENTICATION_MULTIPLE" | "AUTHENTICATION_SINGLE" | "AUTHENTICATION_NONE"
    Defined in CVSS v2
    availabilityImpact "IMPACT_UNSPECIFIED" | "IMPACT_HIGH" | "IMPACT_LOW" | "IMPACT_NONE" | "IMPACT_PARTIAL" | "IMPACT_COMPLETE"
    Defined in CVSS v3, CVSS v2
    baseScore Number
    The base score is a function of the base metric scores.
    confidentialityImpact "IMPACT_UNSPECIFIED" | "IMPACT_HIGH" | "IMPACT_LOW" | "IMPACT_NONE" | "IMPACT_PARTIAL" | "IMPACT_COMPLETE"
    Defined in CVSS v3, CVSS v2
    exploitabilityScore Number
    impactScore Number
    integrityImpact "IMPACT_UNSPECIFIED" | "IMPACT_HIGH" | "IMPACT_LOW" | "IMPACT_NONE" | "IMPACT_PARTIAL" | "IMPACT_COMPLETE"
    Defined in CVSS v3, CVSS v2
    privilegesRequired "PRIVILEGES_REQUIRED_UNSPECIFIED" | "PRIVILEGES_REQUIRED_NONE" | "PRIVILEGES_REQUIRED_LOW" | "PRIVILEGES_REQUIRED_HIGH"
    Defined in CVSS v3
    scope "SCOPE_UNSPECIFIED" | "SCOPE_UNCHANGED" | "SCOPE_CHANGED"
    Defined in CVSS v3
    userInteraction "USER_INTERACTION_UNSPECIFIED" | "USER_INTERACTION_NONE" | "USER_INTERACTION_REQUIRED"
    Defined in CVSS v3

    CVSSAttackComplexity, CVSSAttackComplexityArgs

    AttackComplexityUnspecified
    ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    AttackComplexityLow
    ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
    AttackComplexityHigh
    ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
    AttackComplexityMedium
    ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2
    CVSSAttackComplexityAttackComplexityUnspecified
    ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    CVSSAttackComplexityAttackComplexityLow
    ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
    CVSSAttackComplexityAttackComplexityHigh
    ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
    CVSSAttackComplexityAttackComplexityMedium
    ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2
    AttackComplexityUnspecified
    ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    AttackComplexityLow
    ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
    AttackComplexityHigh
    ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
    AttackComplexityMedium
    ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2
    AttackComplexityUnspecified
    ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    AttackComplexityLow
    ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
    AttackComplexityHigh
    ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
    AttackComplexityMedium
    ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2
    ATTACK_COMPLEXITY_UNSPECIFIED
    ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    ATTACK_COMPLEXITY_LOW
    ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
    ATTACK_COMPLEXITY_HIGH
    ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
    ATTACK_COMPLEXITY_MEDIUM
    ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2
    "ATTACK_COMPLEXITY_UNSPECIFIED"
    ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    "ATTACK_COMPLEXITY_LOW"
    ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
    "ATTACK_COMPLEXITY_HIGH"
    ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
    "ATTACK_COMPLEXITY_MEDIUM"
    ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2

    CVSSAttackVector, CVSSAttackVectorArgs

    AttackVectorUnspecified
    ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    AttackVectorNetwork
    ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
    AttackVectorAdjacent
    ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
    AttackVectorLocal
    ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
    AttackVectorPhysical
    ATTACK_VECTOR_PHYSICALDefined in CVSS v3
    CVSSAttackVectorAttackVectorUnspecified
    ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    CVSSAttackVectorAttackVectorNetwork
    ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
    CVSSAttackVectorAttackVectorAdjacent
    ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
    CVSSAttackVectorAttackVectorLocal
    ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
    CVSSAttackVectorAttackVectorPhysical
    ATTACK_VECTOR_PHYSICALDefined in CVSS v3
    AttackVectorUnspecified
    ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    AttackVectorNetwork
    ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
    AttackVectorAdjacent
    ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
    AttackVectorLocal
    ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
    AttackVectorPhysical
    ATTACK_VECTOR_PHYSICALDefined in CVSS v3
    AttackVectorUnspecified
    ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    AttackVectorNetwork
    ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
    AttackVectorAdjacent
    ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
    AttackVectorLocal
    ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
    AttackVectorPhysical
    ATTACK_VECTOR_PHYSICALDefined in CVSS v3
    ATTACK_VECTOR_UNSPECIFIED
    ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    ATTACK_VECTOR_NETWORK
    ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
    ATTACK_VECTOR_ADJACENT
    ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
    ATTACK_VECTOR_LOCAL
    ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
    ATTACK_VECTOR_PHYSICAL
    ATTACK_VECTOR_PHYSICALDefined in CVSS v3
    "ATTACK_VECTOR_UNSPECIFIED"
    ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    "ATTACK_VECTOR_NETWORK"
    ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
    "ATTACK_VECTOR_ADJACENT"
    ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
    "ATTACK_VECTOR_LOCAL"
    ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
    "ATTACK_VECTOR_PHYSICAL"
    ATTACK_VECTOR_PHYSICALDefined in CVSS v3

    CVSSAuthentication, CVSSAuthenticationArgs

    AuthenticationUnspecified
    AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
    AuthenticationMultiple
    AUTHENTICATION_MULTIPLEDefined in CVSS v2
    AuthenticationSingle
    AUTHENTICATION_SINGLEDefined in CVSS v2
    AuthenticationNone
    AUTHENTICATION_NONEDefined in CVSS v2
    CVSSAuthenticationAuthenticationUnspecified
    AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
    CVSSAuthenticationAuthenticationMultiple
    AUTHENTICATION_MULTIPLEDefined in CVSS v2
    CVSSAuthenticationAuthenticationSingle
    AUTHENTICATION_SINGLEDefined in CVSS v2
    CVSSAuthenticationAuthenticationNone
    AUTHENTICATION_NONEDefined in CVSS v2
    AuthenticationUnspecified
    AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
    AuthenticationMultiple
    AUTHENTICATION_MULTIPLEDefined in CVSS v2
    AuthenticationSingle
    AUTHENTICATION_SINGLEDefined in CVSS v2
    AuthenticationNone
    AUTHENTICATION_NONEDefined in CVSS v2
    AuthenticationUnspecified
    AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
    AuthenticationMultiple
    AUTHENTICATION_MULTIPLEDefined in CVSS v2
    AuthenticationSingle
    AUTHENTICATION_SINGLEDefined in CVSS v2
    AuthenticationNone
    AUTHENTICATION_NONEDefined in CVSS v2
    AUTHENTICATION_UNSPECIFIED
    AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
    AUTHENTICATION_MULTIPLE
    AUTHENTICATION_MULTIPLEDefined in CVSS v2
    AUTHENTICATION_SINGLE
    AUTHENTICATION_SINGLEDefined in CVSS v2
    AUTHENTICATION_NONE
    AUTHENTICATION_NONEDefined in CVSS v2
    "AUTHENTICATION_UNSPECIFIED"
    AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
    "AUTHENTICATION_MULTIPLE"
    AUTHENTICATION_MULTIPLEDefined in CVSS v2
    "AUTHENTICATION_SINGLE"
    AUTHENTICATION_SINGLEDefined in CVSS v2
    "AUTHENTICATION_NONE"
    AUTHENTICATION_NONEDefined in CVSS v2

    CVSSAvailabilityImpact, CVSSAvailabilityImpactArgs

    ImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    ImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    ImpactLow
    IMPACT_LOWDefined in CVSS v3
    ImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    ImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    ImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    CVSSAvailabilityImpactImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    CVSSAvailabilityImpactImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    CVSSAvailabilityImpactImpactLow
    IMPACT_LOWDefined in CVSS v3
    CVSSAvailabilityImpactImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    CVSSAvailabilityImpactImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    CVSSAvailabilityImpactImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    ImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    ImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    ImpactLow
    IMPACT_LOWDefined in CVSS v3
    ImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    ImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    ImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    ImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    ImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    ImpactLow
    IMPACT_LOWDefined in CVSS v3
    ImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    ImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    ImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    IMPACT_UNSPECIFIED
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    IMPACT_HIGH
    IMPACT_HIGHDefined in CVSS v3
    IMPACT_LOW
    IMPACT_LOWDefined in CVSS v3
    IMPACT_NONE
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    IMPACT_PARTIAL
    IMPACT_PARTIALDefined in CVSS v2
    IMPACT_COMPLETE
    IMPACT_COMPLETEDefined in CVSS v2
    "IMPACT_UNSPECIFIED"
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    "IMPACT_HIGH"
    IMPACT_HIGHDefined in CVSS v3
    "IMPACT_LOW"
    IMPACT_LOWDefined in CVSS v3
    "IMPACT_NONE"
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    "IMPACT_PARTIAL"
    IMPACT_PARTIALDefined in CVSS v2
    "IMPACT_COMPLETE"
    IMPACT_COMPLETEDefined in CVSS v2

    CVSSConfidentialityImpact, CVSSConfidentialityImpactArgs

    ImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    ImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    ImpactLow
    IMPACT_LOWDefined in CVSS v3
    ImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    ImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    ImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    CVSSConfidentialityImpactImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    CVSSConfidentialityImpactImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    CVSSConfidentialityImpactImpactLow
    IMPACT_LOWDefined in CVSS v3
    CVSSConfidentialityImpactImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    CVSSConfidentialityImpactImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    CVSSConfidentialityImpactImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    ImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    ImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    ImpactLow
    IMPACT_LOWDefined in CVSS v3
    ImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    ImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    ImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    ImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    ImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    ImpactLow
    IMPACT_LOWDefined in CVSS v3
    ImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    ImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    ImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    IMPACT_UNSPECIFIED
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    IMPACT_HIGH
    IMPACT_HIGHDefined in CVSS v3
    IMPACT_LOW
    IMPACT_LOWDefined in CVSS v3
    IMPACT_NONE
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    IMPACT_PARTIAL
    IMPACT_PARTIALDefined in CVSS v2
    IMPACT_COMPLETE
    IMPACT_COMPLETEDefined in CVSS v2
    "IMPACT_UNSPECIFIED"
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    "IMPACT_HIGH"
    IMPACT_HIGHDefined in CVSS v3
    "IMPACT_LOW"
    IMPACT_LOWDefined in CVSS v3
    "IMPACT_NONE"
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    "IMPACT_PARTIAL"
    IMPACT_PARTIALDefined in CVSS v2
    "IMPACT_COMPLETE"
    IMPACT_COMPLETEDefined in CVSS v2

    CVSSIntegrityImpact, CVSSIntegrityImpactArgs

    ImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    ImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    ImpactLow
    IMPACT_LOWDefined in CVSS v3
    ImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    ImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    ImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    CVSSIntegrityImpactImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    CVSSIntegrityImpactImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    CVSSIntegrityImpactImpactLow
    IMPACT_LOWDefined in CVSS v3
    CVSSIntegrityImpactImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    CVSSIntegrityImpactImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    CVSSIntegrityImpactImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    ImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    ImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    ImpactLow
    IMPACT_LOWDefined in CVSS v3
    ImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    ImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    ImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    ImpactUnspecified
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    ImpactHigh
    IMPACT_HIGHDefined in CVSS v3
    ImpactLow
    IMPACT_LOWDefined in CVSS v3
    ImpactNone
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    ImpactPartial
    IMPACT_PARTIALDefined in CVSS v2
    ImpactComplete
    IMPACT_COMPLETEDefined in CVSS v2
    IMPACT_UNSPECIFIED
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    IMPACT_HIGH
    IMPACT_HIGHDefined in CVSS v3
    IMPACT_LOW
    IMPACT_LOWDefined in CVSS v3
    IMPACT_NONE
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    IMPACT_PARTIAL
    IMPACT_PARTIALDefined in CVSS v2
    IMPACT_COMPLETE
    IMPACT_COMPLETEDefined in CVSS v2
    "IMPACT_UNSPECIFIED"
    IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
    "IMPACT_HIGH"
    IMPACT_HIGHDefined in CVSS v3
    "IMPACT_LOW"
    IMPACT_LOWDefined in CVSS v3
    "IMPACT_NONE"
    IMPACT_NONEDefined in CVSS v3, CVSS v2
    "IMPACT_PARTIAL"
    IMPACT_PARTIALDefined in CVSS v2
    "IMPACT_COMPLETE"
    IMPACT_COMPLETEDefined in CVSS v2

    CVSSPrivilegesRequired, CVSSPrivilegesRequiredArgs

    PrivilegesRequiredUnspecified
    PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
    PrivilegesRequiredNone
    PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
    PrivilegesRequiredLow
    PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
    PrivilegesRequiredHigh
    PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3
    CVSSPrivilegesRequiredPrivilegesRequiredUnspecified
    PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
    CVSSPrivilegesRequiredPrivilegesRequiredNone
    PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
    CVSSPrivilegesRequiredPrivilegesRequiredLow
    PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
    CVSSPrivilegesRequiredPrivilegesRequiredHigh
    PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3
    PrivilegesRequiredUnspecified
    PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
    PrivilegesRequiredNone
    PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
    PrivilegesRequiredLow
    PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
    PrivilegesRequiredHigh
    PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3
    PrivilegesRequiredUnspecified
    PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
    PrivilegesRequiredNone
    PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
    PrivilegesRequiredLow
    PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
    PrivilegesRequiredHigh
    PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3
    PRIVILEGES_REQUIRED_UNSPECIFIED
    PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
    PRIVILEGES_REQUIRED_NONE
    PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
    PRIVILEGES_REQUIRED_LOW
    PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
    PRIVILEGES_REQUIRED_HIGH
    PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3
    "PRIVILEGES_REQUIRED_UNSPECIFIED"
    PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
    "PRIVILEGES_REQUIRED_NONE"
    PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
    "PRIVILEGES_REQUIRED_LOW"
    PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
    "PRIVILEGES_REQUIRED_HIGH"
    PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3

    CVSSResponse, CVSSResponseArgs

    AttackComplexity string
    Defined in CVSS v3, CVSS v2
    AttackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    Authentication string
    Defined in CVSS v2
    AvailabilityImpact string
    Defined in CVSS v3, CVSS v2
    BaseScore double
    The base score is a function of the base metric scores.
    ConfidentialityImpact string
    Defined in CVSS v3, CVSS v2
    ExploitabilityScore double
    ImpactScore double
    IntegrityImpact string
    Defined in CVSS v3, CVSS v2
    PrivilegesRequired string
    Defined in CVSS v3
    Scope string
    Defined in CVSS v3
    UserInteraction string
    Defined in CVSS v3
    AttackComplexity string
    Defined in CVSS v3, CVSS v2
    AttackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    Authentication string
    Defined in CVSS v2
    AvailabilityImpact string
    Defined in CVSS v3, CVSS v2
    BaseScore float64
    The base score is a function of the base metric scores.
    ConfidentialityImpact string
    Defined in CVSS v3, CVSS v2
    ExploitabilityScore float64
    ImpactScore float64
    IntegrityImpact string
    Defined in CVSS v3, CVSS v2
    PrivilegesRequired string
    Defined in CVSS v3
    Scope string
    Defined in CVSS v3
    UserInteraction string
    Defined in CVSS v3
    attackComplexity String
    Defined in CVSS v3, CVSS v2
    attackVector String
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    authentication String
    Defined in CVSS v2
    availabilityImpact String
    Defined in CVSS v3, CVSS v2
    baseScore Double
    The base score is a function of the base metric scores.
    confidentialityImpact String
    Defined in CVSS v3, CVSS v2
    exploitabilityScore Double
    impactScore Double
    integrityImpact String
    Defined in CVSS v3, CVSS v2
    privilegesRequired String
    Defined in CVSS v3
    scope String
    Defined in CVSS v3
    userInteraction String
    Defined in CVSS v3
    attackComplexity string
    Defined in CVSS v3, CVSS v2
    attackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    authentication string
    Defined in CVSS v2
    availabilityImpact string
    Defined in CVSS v3, CVSS v2
    baseScore number
    The base score is a function of the base metric scores.
    confidentialityImpact string
    Defined in CVSS v3, CVSS v2
    exploitabilityScore number
    impactScore number
    integrityImpact string
    Defined in CVSS v3, CVSS v2
    privilegesRequired string
    Defined in CVSS v3
    scope string
    Defined in CVSS v3
    userInteraction string
    Defined in CVSS v3
    attack_complexity str
    Defined in CVSS v3, CVSS v2
    attack_vector str
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    authentication str
    Defined in CVSS v2
    availability_impact str
    Defined in CVSS v3, CVSS v2
    base_score float
    The base score is a function of the base metric scores.
    confidentiality_impact str
    Defined in CVSS v3, CVSS v2
    exploitability_score float
    impact_score float
    integrity_impact str
    Defined in CVSS v3, CVSS v2
    privileges_required str
    Defined in CVSS v3
    scope str
    Defined in CVSS v3
    user_interaction str
    Defined in CVSS v3
    attackComplexity String
    Defined in CVSS v3, CVSS v2
    attackVector String
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
    authentication String
    Defined in CVSS v2
    availabilityImpact String
    Defined in CVSS v3, CVSS v2
    baseScore Number
    The base score is a function of the base metric scores.
    confidentialityImpact String
    Defined in CVSS v3, CVSS v2
    exploitabilityScore Number
    impactScore Number
    integrityImpact String
    Defined in CVSS v3, CVSS v2
    privilegesRequired String
    Defined in CVSS v3
    scope String
    Defined in CVSS v3
    userInteraction String
    Defined in CVSS v3

    CVSSScope, CVSSScopeArgs

    ScopeUnspecified
    SCOPE_UNSPECIFIEDDefined in CVSS v3
    ScopeUnchanged
    SCOPE_UNCHANGEDDefined in CVSS v3
    ScopeChanged
    SCOPE_CHANGEDDefined in CVSS v3
    CVSSScopeScopeUnspecified
    SCOPE_UNSPECIFIEDDefined in CVSS v3
    CVSSScopeScopeUnchanged
    SCOPE_UNCHANGEDDefined in CVSS v3
    CVSSScopeScopeChanged
    SCOPE_CHANGEDDefined in CVSS v3
    ScopeUnspecified
    SCOPE_UNSPECIFIEDDefined in CVSS v3
    ScopeUnchanged
    SCOPE_UNCHANGEDDefined in CVSS v3
    ScopeChanged
    SCOPE_CHANGEDDefined in CVSS v3
    ScopeUnspecified
    SCOPE_UNSPECIFIEDDefined in CVSS v3
    ScopeUnchanged
    SCOPE_UNCHANGEDDefined in CVSS v3
    ScopeChanged
    SCOPE_CHANGEDDefined in CVSS v3
    SCOPE_UNSPECIFIED
    SCOPE_UNSPECIFIEDDefined in CVSS v3
    SCOPE_UNCHANGED
    SCOPE_UNCHANGEDDefined in CVSS v3
    SCOPE_CHANGED
    SCOPE_CHANGEDDefined in CVSS v3
    "SCOPE_UNSPECIFIED"
    SCOPE_UNSPECIFIEDDefined in CVSS v3
    "SCOPE_UNCHANGED"
    SCOPE_UNCHANGEDDefined in CVSS v3
    "SCOPE_CHANGED"
    SCOPE_CHANGEDDefined in CVSS v3

    CVSSUserInteraction, CVSSUserInteractionArgs

    UserInteractionUnspecified
    USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
    UserInteractionNone
    USER_INTERACTION_NONEDefined in CVSS v3
    UserInteractionRequired
    USER_INTERACTION_REQUIREDDefined in CVSS v3
    CVSSUserInteractionUserInteractionUnspecified
    USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
    CVSSUserInteractionUserInteractionNone
    USER_INTERACTION_NONEDefined in CVSS v3
    CVSSUserInteractionUserInteractionRequired
    USER_INTERACTION_REQUIREDDefined in CVSS v3
    UserInteractionUnspecified
    USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
    UserInteractionNone
    USER_INTERACTION_NONEDefined in CVSS v3
    UserInteractionRequired
    USER_INTERACTION_REQUIREDDefined in CVSS v3
    UserInteractionUnspecified
    USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
    UserInteractionNone
    USER_INTERACTION_NONEDefined in CVSS v3
    UserInteractionRequired
    USER_INTERACTION_REQUIREDDefined in CVSS v3
    USER_INTERACTION_UNSPECIFIED
    USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
    USER_INTERACTION_NONE
    USER_INTERACTION_NONEDefined in CVSS v3
    USER_INTERACTION_REQUIRED
    USER_INTERACTION_REQUIREDDefined in CVSS v3
    "USER_INTERACTION_UNSPECIFIED"
    USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
    "USER_INTERACTION_NONE"
    USER_INTERACTION_NONEDefined in CVSS v3
    "USER_INTERACTION_REQUIRED"
    USER_INTERACTION_REQUIREDDefined in CVSS v3

    CVSSv3, CVSSv3Args

    AttackComplexity Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3AttackComplexity
    AttackVector Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3AttackVector
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    AvailabilityImpact Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3AvailabilityImpact
    BaseScore double
    The base score is a function of the base metric scores.
    ConfidentialityImpact Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3ConfidentialityImpact
    ExploitabilityScore double
    ImpactScore double
    IntegrityImpact Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3IntegrityImpact
    PrivilegesRequired Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3PrivilegesRequired
    Scope Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3Scope
    UserInteraction Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.CVSSv3UserInteraction
    attackComplexity "ATTACK_COMPLEXITY_UNSPECIFIED" | "ATTACK_COMPLEXITY_LOW" | "ATTACK_COMPLEXITY_HIGH"
    attackVector "ATTACK_VECTOR_UNSPECIFIED" | "ATTACK_VECTOR_NETWORK" | "ATTACK_VECTOR_ADJACENT" | "ATTACK_VECTOR_LOCAL" | "ATTACK_VECTOR_PHYSICAL"
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    availabilityImpact "IMPACT_UNSPECIFIED" | "IMPACT_HIGH" | "IMPACT_LOW" | "IMPACT_NONE"
    baseScore Number
    The base score is a function of the base metric scores.
    confidentialityImpact "IMPACT_UNSPECIFIED" | "IMPACT_HIGH" | "IMPACT_LOW" | "IMPACT_NONE"
    exploitabilityScore Number
    impactScore Number
    integrityImpact "IMPACT_UNSPECIFIED" | "IMPACT_HIGH" | "IMPACT_LOW" | "IMPACT_NONE"
    privilegesRequired "PRIVILEGES_REQUIRED_UNSPECIFIED" | "PRIVILEGES_REQUIRED_NONE" | "PRIVILEGES_REQUIRED_LOW" | "PRIVILEGES_REQUIRED_HIGH"
    scope "SCOPE_UNSPECIFIED" | "SCOPE_UNCHANGED" | "SCOPE_CHANGED"
    userInteraction "USER_INTERACTION_UNSPECIFIED" | "USER_INTERACTION_NONE" | "USER_INTERACTION_REQUIRED"

    CVSSv3AttackComplexity, CVSSv3AttackComplexityArgs

    AttackComplexityUnspecified
    ATTACK_COMPLEXITY_UNSPECIFIED
    AttackComplexityLow
    ATTACK_COMPLEXITY_LOW
    AttackComplexityHigh
    ATTACK_COMPLEXITY_HIGH
    CVSSv3AttackComplexityAttackComplexityUnspecified
    ATTACK_COMPLEXITY_UNSPECIFIED
    CVSSv3AttackComplexityAttackComplexityLow
    ATTACK_COMPLEXITY_LOW
    CVSSv3AttackComplexityAttackComplexityHigh
    ATTACK_COMPLEXITY_HIGH
    AttackComplexityUnspecified
    ATTACK_COMPLEXITY_UNSPECIFIED
    AttackComplexityLow
    ATTACK_COMPLEXITY_LOW
    AttackComplexityHigh
    ATTACK_COMPLEXITY_HIGH
    AttackComplexityUnspecified
    ATTACK_COMPLEXITY_UNSPECIFIED
    AttackComplexityLow
    ATTACK_COMPLEXITY_LOW
    AttackComplexityHigh
    ATTACK_COMPLEXITY_HIGH
    ATTACK_COMPLEXITY_UNSPECIFIED
    ATTACK_COMPLEXITY_UNSPECIFIED
    ATTACK_COMPLEXITY_LOW
    ATTACK_COMPLEXITY_LOW
    ATTACK_COMPLEXITY_HIGH
    ATTACK_COMPLEXITY_HIGH
    "ATTACK_COMPLEXITY_UNSPECIFIED"
    ATTACK_COMPLEXITY_UNSPECIFIED
    "ATTACK_COMPLEXITY_LOW"
    ATTACK_COMPLEXITY_LOW
    "ATTACK_COMPLEXITY_HIGH"
    ATTACK_COMPLEXITY_HIGH

    CVSSv3AttackVector, CVSSv3AttackVectorArgs

    AttackVectorUnspecified
    ATTACK_VECTOR_UNSPECIFIED
    AttackVectorNetwork
    ATTACK_VECTOR_NETWORK
    AttackVectorAdjacent
    ATTACK_VECTOR_ADJACENT
    AttackVectorLocal
    ATTACK_VECTOR_LOCAL
    AttackVectorPhysical
    ATTACK_VECTOR_PHYSICAL
    CVSSv3AttackVectorAttackVectorUnspecified
    ATTACK_VECTOR_UNSPECIFIED
    CVSSv3AttackVectorAttackVectorNetwork
    ATTACK_VECTOR_NETWORK
    CVSSv3AttackVectorAttackVectorAdjacent
    ATTACK_VECTOR_ADJACENT
    CVSSv3AttackVectorAttackVectorLocal
    ATTACK_VECTOR_LOCAL
    CVSSv3AttackVectorAttackVectorPhysical
    ATTACK_VECTOR_PHYSICAL
    AttackVectorUnspecified
    ATTACK_VECTOR_UNSPECIFIED
    AttackVectorNetwork
    ATTACK_VECTOR_NETWORK
    AttackVectorAdjacent
    ATTACK_VECTOR_ADJACENT
    AttackVectorLocal
    ATTACK_VECTOR_LOCAL
    AttackVectorPhysical
    ATTACK_VECTOR_PHYSICAL
    AttackVectorUnspecified
    ATTACK_VECTOR_UNSPECIFIED
    AttackVectorNetwork
    ATTACK_VECTOR_NETWORK
    AttackVectorAdjacent
    ATTACK_VECTOR_ADJACENT
    AttackVectorLocal
    ATTACK_VECTOR_LOCAL
    AttackVectorPhysical
    ATTACK_VECTOR_PHYSICAL
    ATTACK_VECTOR_UNSPECIFIED
    ATTACK_VECTOR_UNSPECIFIED
    ATTACK_VECTOR_NETWORK
    ATTACK_VECTOR_NETWORK
    ATTACK_VECTOR_ADJACENT
    ATTACK_VECTOR_ADJACENT
    ATTACK_VECTOR_LOCAL
    ATTACK_VECTOR_LOCAL
    ATTACK_VECTOR_PHYSICAL
    ATTACK_VECTOR_PHYSICAL
    "ATTACK_VECTOR_UNSPECIFIED"
    ATTACK_VECTOR_UNSPECIFIED
    "ATTACK_VECTOR_NETWORK"
    ATTACK_VECTOR_NETWORK
    "ATTACK_VECTOR_ADJACENT"
    ATTACK_VECTOR_ADJACENT
    "ATTACK_VECTOR_LOCAL"
    ATTACK_VECTOR_LOCAL
    "ATTACK_VECTOR_PHYSICAL"
    ATTACK_VECTOR_PHYSICAL

    CVSSv3AvailabilityImpact, CVSSv3AvailabilityImpactArgs

    ImpactUnspecified
    IMPACT_UNSPECIFIED
    ImpactHigh
    IMPACT_HIGH
    ImpactLow
    IMPACT_LOW
    ImpactNone
    IMPACT_NONE
    CVSSv3AvailabilityImpactImpactUnspecified
    IMPACT_UNSPECIFIED
    CVSSv3AvailabilityImpactImpactHigh
    IMPACT_HIGH
    CVSSv3AvailabilityImpactImpactLow
    IMPACT_LOW
    CVSSv3AvailabilityImpactImpactNone
    IMPACT_NONE
    ImpactUnspecified
    IMPACT_UNSPECIFIED
    ImpactHigh
    IMPACT_HIGH
    ImpactLow
    IMPACT_LOW
    ImpactNone
    IMPACT_NONE
    ImpactUnspecified
    IMPACT_UNSPECIFIED
    ImpactHigh
    IMPACT_HIGH
    ImpactLow
    IMPACT_LOW
    ImpactNone
    IMPACT_NONE
    IMPACT_UNSPECIFIED
    IMPACT_UNSPECIFIED
    IMPACT_HIGH
    IMPACT_HIGH
    IMPACT_LOW
    IMPACT_LOW
    IMPACT_NONE
    IMPACT_NONE
    "IMPACT_UNSPECIFIED"
    IMPACT_UNSPECIFIED
    "IMPACT_HIGH"
    IMPACT_HIGH
    "IMPACT_LOW"
    IMPACT_LOW
    "IMPACT_NONE"
    IMPACT_NONE

    CVSSv3ConfidentialityImpact, CVSSv3ConfidentialityImpactArgs

    ImpactUnspecified
    IMPACT_UNSPECIFIED
    ImpactHigh
    IMPACT_HIGH
    ImpactLow
    IMPACT_LOW
    ImpactNone
    IMPACT_NONE
    CVSSv3ConfidentialityImpactImpactUnspecified
    IMPACT_UNSPECIFIED
    CVSSv3ConfidentialityImpactImpactHigh
    IMPACT_HIGH
    CVSSv3ConfidentialityImpactImpactLow
    IMPACT_LOW
    CVSSv3ConfidentialityImpactImpactNone
    IMPACT_NONE
    ImpactUnspecified
    IMPACT_UNSPECIFIED
    ImpactHigh
    IMPACT_HIGH
    ImpactLow
    IMPACT_LOW
    ImpactNone
    IMPACT_NONE
    ImpactUnspecified
    IMPACT_UNSPECIFIED
    ImpactHigh
    IMPACT_HIGH
    ImpactLow
    IMPACT_LOW
    ImpactNone
    IMPACT_NONE
    IMPACT_UNSPECIFIED
    IMPACT_UNSPECIFIED
    IMPACT_HIGH
    IMPACT_HIGH
    IMPACT_LOW
    IMPACT_LOW
    IMPACT_NONE
    IMPACT_NONE
    "IMPACT_UNSPECIFIED"
    IMPACT_UNSPECIFIED
    "IMPACT_HIGH"
    IMPACT_HIGH
    "IMPACT_LOW"
    IMPACT_LOW
    "IMPACT_NONE"
    IMPACT_NONE

    CVSSv3IntegrityImpact, CVSSv3IntegrityImpactArgs

    ImpactUnspecified
    IMPACT_UNSPECIFIED
    ImpactHigh
    IMPACT_HIGH
    ImpactLow
    IMPACT_LOW
    ImpactNone
    IMPACT_NONE
    CVSSv3IntegrityImpactImpactUnspecified
    IMPACT_UNSPECIFIED
    CVSSv3IntegrityImpactImpactHigh
    IMPACT_HIGH
    CVSSv3IntegrityImpactImpactLow
    IMPACT_LOW
    CVSSv3IntegrityImpactImpactNone
    IMPACT_NONE
    ImpactUnspecified
    IMPACT_UNSPECIFIED
    ImpactHigh
    IMPACT_HIGH
    ImpactLow
    IMPACT_LOW
    ImpactNone
    IMPACT_NONE
    ImpactUnspecified
    IMPACT_UNSPECIFIED
    ImpactHigh
    IMPACT_HIGH
    ImpactLow
    IMPACT_LOW
    ImpactNone
    IMPACT_NONE
    IMPACT_UNSPECIFIED
    IMPACT_UNSPECIFIED
    IMPACT_HIGH
    IMPACT_HIGH
    IMPACT_LOW
    IMPACT_LOW
    IMPACT_NONE
    IMPACT_NONE
    "IMPACT_UNSPECIFIED"
    IMPACT_UNSPECIFIED
    "IMPACT_HIGH"
    IMPACT_HIGH
    "IMPACT_LOW"
    IMPACT_LOW
    "IMPACT_NONE"
    IMPACT_NONE

    CVSSv3PrivilegesRequired, CVSSv3PrivilegesRequiredArgs

    PrivilegesRequiredUnspecified
    PRIVILEGES_REQUIRED_UNSPECIFIED
    PrivilegesRequiredNone
    PRIVILEGES_REQUIRED_NONE
    PrivilegesRequiredLow
    PRIVILEGES_REQUIRED_LOW
    PrivilegesRequiredHigh
    PRIVILEGES_REQUIRED_HIGH
    CVSSv3PrivilegesRequiredPrivilegesRequiredUnspecified
    PRIVILEGES_REQUIRED_UNSPECIFIED
    CVSSv3PrivilegesRequiredPrivilegesRequiredNone
    PRIVILEGES_REQUIRED_NONE
    CVSSv3PrivilegesRequiredPrivilegesRequiredLow
    PRIVILEGES_REQUIRED_LOW
    CVSSv3PrivilegesRequiredPrivilegesRequiredHigh
    PRIVILEGES_REQUIRED_HIGH
    PrivilegesRequiredUnspecified
    PRIVILEGES_REQUIRED_UNSPECIFIED
    PrivilegesRequiredNone
    PRIVILEGES_REQUIRED_NONE
    PrivilegesRequiredLow
    PRIVILEGES_REQUIRED_LOW
    PrivilegesRequiredHigh
    PRIVILEGES_REQUIRED_HIGH
    PrivilegesRequiredUnspecified
    PRIVILEGES_REQUIRED_UNSPECIFIED
    PrivilegesRequiredNone
    PRIVILEGES_REQUIRED_NONE
    PrivilegesRequiredLow
    PRIVILEGES_REQUIRED_LOW
    PrivilegesRequiredHigh
    PRIVILEGES_REQUIRED_HIGH
    PRIVILEGES_REQUIRED_UNSPECIFIED
    PRIVILEGES_REQUIRED_UNSPECIFIED
    PRIVILEGES_REQUIRED_NONE
    PRIVILEGES_REQUIRED_NONE
    PRIVILEGES_REQUIRED_LOW
    PRIVILEGES_REQUIRED_LOW
    PRIVILEGES_REQUIRED_HIGH
    PRIVILEGES_REQUIRED_HIGH
    "PRIVILEGES_REQUIRED_UNSPECIFIED"
    PRIVILEGES_REQUIRED_UNSPECIFIED
    "PRIVILEGES_REQUIRED_NONE"
    PRIVILEGES_REQUIRED_NONE
    "PRIVILEGES_REQUIRED_LOW"
    PRIVILEGES_REQUIRED_LOW
    "PRIVILEGES_REQUIRED_HIGH"
    PRIVILEGES_REQUIRED_HIGH

    CVSSv3Response, CVSSv3ResponseArgs

    AttackComplexity string
    AttackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    AvailabilityImpact string
    BaseScore double
    The base score is a function of the base metric scores.
    ConfidentialityImpact string
    ExploitabilityScore double
    ImpactScore double
    IntegrityImpact string
    PrivilegesRequired string
    Scope string
    UserInteraction string
    AttackComplexity string
    AttackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    AvailabilityImpact string
    BaseScore float64
    The base score is a function of the base metric scores.
    ConfidentialityImpact string
    ExploitabilityScore float64
    ImpactScore float64
    IntegrityImpact string
    PrivilegesRequired string
    Scope string
    UserInteraction string
    attackComplexity String
    attackVector String
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    availabilityImpact String
    baseScore Double
    The base score is a function of the base metric scores.
    confidentialityImpact String
    exploitabilityScore Double
    impactScore Double
    integrityImpact String
    privilegesRequired String
    scope String
    userInteraction String
    attackComplexity string
    attackVector string
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    availabilityImpact string
    baseScore number
    The base score is a function of the base metric scores.
    confidentialityImpact string
    exploitabilityScore number
    impactScore number
    integrityImpact string
    privilegesRequired string
    scope string
    userInteraction string
    attack_complexity str
    attack_vector str
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    availability_impact str
    base_score float
    The base score is a function of the base metric scores.
    confidentiality_impact str
    exploitability_score float
    impact_score float
    integrity_impact str
    privileges_required str
    scope str
    user_interaction str
    attackComplexity String
    attackVector String
    Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments.
    availabilityImpact String
    baseScore Number
    The base score is a function of the base metric scores.
    confidentialityImpact String
    exploitabilityScore Number
    impactScore Number
    integrityImpact String
    privilegesRequired String
    scope String
    userInteraction String

    CVSSv3Scope, CVSSv3ScopeArgs

    ScopeUnspecified
    SCOPE_UNSPECIFIED
    ScopeUnchanged
    SCOPE_UNCHANGED
    ScopeChanged
    SCOPE_CHANGED
    CVSSv3ScopeScopeUnspecified
    SCOPE_UNSPECIFIED
    CVSSv3ScopeScopeUnchanged
    SCOPE_UNCHANGED
    CVSSv3ScopeScopeChanged
    SCOPE_CHANGED
    ScopeUnspecified
    SCOPE_UNSPECIFIED
    ScopeUnchanged
    SCOPE_UNCHANGED
    ScopeChanged
    SCOPE_CHANGED
    ScopeUnspecified
    SCOPE_UNSPECIFIED
    ScopeUnchanged
    SCOPE_UNCHANGED
    ScopeChanged
    SCOPE_CHANGED
    SCOPE_UNSPECIFIED
    SCOPE_UNSPECIFIED
    SCOPE_UNCHANGED
    SCOPE_UNCHANGED
    SCOPE_CHANGED
    SCOPE_CHANGED
    "SCOPE_UNSPECIFIED"
    SCOPE_UNSPECIFIED
    "SCOPE_UNCHANGED"
    SCOPE_UNCHANGED
    "SCOPE_CHANGED"
    SCOPE_CHANGED

    CVSSv3UserInteraction, CVSSv3UserInteractionArgs

    UserInteractionUnspecified
    USER_INTERACTION_UNSPECIFIED
    UserInteractionNone
    USER_INTERACTION_NONE
    UserInteractionRequired
    USER_INTERACTION_REQUIRED
    CVSSv3UserInteractionUserInteractionUnspecified
    USER_INTERACTION_UNSPECIFIED
    CVSSv3UserInteractionUserInteractionNone
    USER_INTERACTION_NONE
    CVSSv3UserInteractionUserInteractionRequired
    USER_INTERACTION_REQUIRED
    UserInteractionUnspecified
    USER_INTERACTION_UNSPECIFIED
    UserInteractionNone
    USER_INTERACTION_NONE
    UserInteractionRequired
    USER_INTERACTION_REQUIRED
    UserInteractionUnspecified
    USER_INTERACTION_UNSPECIFIED
    UserInteractionNone
    USER_INTERACTION_NONE
    UserInteractionRequired
    USER_INTERACTION_REQUIRED
    USER_INTERACTION_UNSPECIFIED
    USER_INTERACTION_UNSPECIFIED
    USER_INTERACTION_NONE
    USER_INTERACTION_NONE
    USER_INTERACTION_REQUIRED
    USER_INTERACTION_REQUIRED
    "USER_INTERACTION_UNSPECIFIED"
    USER_INTERACTION_UNSPECIFIED
    "USER_INTERACTION_NONE"
    USER_INTERACTION_NONE
    "USER_INTERACTION_REQUIRED"
    USER_INTERACTION_REQUIRED

    Deployable, DeployableArgs

    ResourceUri List<string>
    Resource URI for the artifact being deployed.
    ResourceUri []string
    Resource URI for the artifact being deployed.
    resourceUri List<String>
    Resource URI for the artifact being deployed.
    resourceUri string[]
    Resource URI for the artifact being deployed.
    resource_uri Sequence[str]
    Resource URI for the artifact being deployed.
    resourceUri List<String>
    Resource URI for the artifact being deployed.

    DeployableResponse, DeployableResponseArgs

    ResourceUri List<string>
    Resource URI for the artifact being deployed.
    ResourceUri []string
    Resource URI for the artifact being deployed.
    resourceUri List<String>
    Resource URI for the artifact being deployed.
    resourceUri string[]
    Resource URI for the artifact being deployed.
    resource_uri Sequence[str]
    Resource URI for the artifact being deployed.
    resourceUri List<String>
    Resource URI for the artifact being deployed.

    Detail, DetailArgs

    CpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    Package string
    The name of the package where the vulnerability was found.
    Description string
    A vendor-specific description of this note.
    FixedLocation Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VulnerabilityLocation
    The fix for this specific package version.
    IsObsolete bool
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    MaxAffectedVersion Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Version
    The max version of the package in which the vulnerability exists.
    MinAffectedVersion Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Version
    The min version of the package in which the vulnerability exists.
    PackageType string
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    SeverityName string
    The severity (eg: distro assigned severity) for this vulnerability.
    Source string
    The source from which the information in this Detail was obtained.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    Vendor string
    The name of the vendor of the product.
    CpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    Package string
    The name of the package where the vulnerability was found.
    Description string
    A vendor-specific description of this note.
    FixedLocation VulnerabilityLocation
    The fix for this specific package version.
    IsObsolete bool
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    MaxAffectedVersion Version
    The max version of the package in which the vulnerability exists.
    MinAffectedVersion Version
    The min version of the package in which the vulnerability exists.
    PackageType string
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    SeverityName string
    The severity (eg: distro assigned severity) for this vulnerability.
    Source string
    The source from which the information in this Detail was obtained.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    Vendor string
    The name of the vendor of the product.
    cpeUri String
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    package_ String
    The name of the package where the vulnerability was found.
    description String
    A vendor-specific description of this note.
    fixedLocation VulnerabilityLocation
    The fix for this specific package version.
    isObsolete Boolean
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    maxAffectedVersion Version
    The max version of the package in which the vulnerability exists.
    minAffectedVersion Version
    The min version of the package in which the vulnerability exists.
    packageType String
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    severityName String
    The severity (eg: distro assigned severity) for this vulnerability.
    source String
    The source from which the information in this Detail was obtained.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor String
    The name of the vendor of the product.
    cpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    package string
    The name of the package where the vulnerability was found.
    description string
    A vendor-specific description of this note.
    fixedLocation VulnerabilityLocation
    The fix for this specific package version.
    isObsolete boolean
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    maxAffectedVersion Version
    The max version of the package in which the vulnerability exists.
    minAffectedVersion Version
    The min version of the package in which the vulnerability exists.
    packageType string
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    severityName string
    The severity (eg: distro assigned severity) for this vulnerability.
    source string
    The source from which the information in this Detail was obtained.
    sourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor string
    The name of the vendor of the product.
    cpe_uri str
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    package str
    The name of the package where the vulnerability was found.
    description str
    A vendor-specific description of this note.
    fixed_location VulnerabilityLocation
    The fix for this specific package version.
    is_obsolete bool
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    max_affected_version Version
    The max version of the package in which the vulnerability exists.
    min_affected_version Version
    The min version of the package in which the vulnerability exists.
    package_type str
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    severity_name str
    The severity (eg: distro assigned severity) for this vulnerability.
    source str
    The source from which the information in this Detail was obtained.
    source_update_time str
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor str
    The name of the vendor of the product.
    cpeUri String
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    package String
    The name of the package where the vulnerability was found.
    description String
    A vendor-specific description of this note.
    fixedLocation Property Map
    The fix for this specific package version.
    isObsolete Boolean
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    maxAffectedVersion Property Map
    The max version of the package in which the vulnerability exists.
    minAffectedVersion Property Map
    The min version of the package in which the vulnerability exists.
    packageType String
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    severityName String
    The severity (eg: distro assigned severity) for this vulnerability.
    source String
    The source from which the information in this Detail was obtained.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor String
    The name of the vendor of the product.

    DetailResponse, DetailResponseArgs

    CpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    Description string
    A vendor-specific description of this note.
    FixedLocation Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VulnerabilityLocationResponse
    The fix for this specific package version.
    IsObsolete bool
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    MaxAffectedVersion Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionResponse
    The max version of the package in which the vulnerability exists.
    MinAffectedVersion Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionResponse
    The min version of the package in which the vulnerability exists.
    Package string
    The name of the package where the vulnerability was found.
    PackageType string
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    SeverityName string
    The severity (eg: distro assigned severity) for this vulnerability.
    Source string
    The source from which the information in this Detail was obtained.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    Vendor string
    The name of the vendor of the product.
    CpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    Description string
    A vendor-specific description of this note.
    FixedLocation VulnerabilityLocationResponse
    The fix for this specific package version.
    IsObsolete bool
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    MaxAffectedVersion VersionResponse
    The max version of the package in which the vulnerability exists.
    MinAffectedVersion VersionResponse
    The min version of the package in which the vulnerability exists.
    Package string
    The name of the package where the vulnerability was found.
    PackageType string
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    SeverityName string
    The severity (eg: distro assigned severity) for this vulnerability.
    Source string
    The source from which the information in this Detail was obtained.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    Vendor string
    The name of the vendor of the product.
    cpeUri String
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    description String
    A vendor-specific description of this note.
    fixedLocation VulnerabilityLocationResponse
    The fix for this specific package version.
    isObsolete Boolean
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    maxAffectedVersion VersionResponse
    The max version of the package in which the vulnerability exists.
    minAffectedVersion VersionResponse
    The min version of the package in which the vulnerability exists.
    packageType String
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    package_ String
    The name of the package where the vulnerability was found.
    severityName String
    The severity (eg: distro assigned severity) for this vulnerability.
    source String
    The source from which the information in this Detail was obtained.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor String
    The name of the vendor of the product.
    cpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    description string
    A vendor-specific description of this note.
    fixedLocation VulnerabilityLocationResponse
    The fix for this specific package version.
    isObsolete boolean
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    maxAffectedVersion VersionResponse
    The max version of the package in which the vulnerability exists.
    minAffectedVersion VersionResponse
    The min version of the package in which the vulnerability exists.
    package string
    The name of the package where the vulnerability was found.
    packageType string
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    severityName string
    The severity (eg: distro assigned severity) for this vulnerability.
    source string
    The source from which the information in this Detail was obtained.
    sourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor string
    The name of the vendor of the product.
    cpe_uri str
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    description str
    A vendor-specific description of this note.
    fixed_location VulnerabilityLocationResponse
    The fix for this specific package version.
    is_obsolete bool
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    max_affected_version VersionResponse
    The max version of the package in which the vulnerability exists.
    min_affected_version VersionResponse
    The min version of the package in which the vulnerability exists.
    package str
    The name of the package where the vulnerability was found.
    package_type str
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    severity_name str
    The severity (eg: distro assigned severity) for this vulnerability.
    source str
    The source from which the information in this Detail was obtained.
    source_update_time str
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor str
    The name of the vendor of the product.
    cpeUri String
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    description String
    A vendor-specific description of this note.
    fixedLocation Property Map
    The fix for this specific package version.
    isObsolete Boolean
    Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
    maxAffectedVersion Property Map
    The max version of the package in which the vulnerability exists.
    minAffectedVersion Property Map
    The min version of the package in which the vulnerability exists.
    package String
    The name of the package where the vulnerability was found.
    packageType String
    The type of package; whether native or non native(ruby gems, node.js packages etc).
    severityName String
    The severity (eg: distro assigned severity) for this vulnerability.
    source String
    The source from which the information in this Detail was obtained.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    vendor String
    The name of the vendor of the product.

    Digest, DigestArgs

    Algo string
    SHA1, SHA512 etc.
    DigestBytes string
    Value of the digest.
    Algo string
    SHA1, SHA512 etc.
    DigestBytes string
    Value of the digest.
    algo String
    SHA1, SHA512 etc.
    digestBytes String
    Value of the digest.
    algo string
    SHA1, SHA512 etc.
    digestBytes string
    Value of the digest.
    algo str
    SHA1, SHA512 etc.
    digest_bytes str
    Value of the digest.
    algo String
    SHA1, SHA512 etc.
    digestBytes String
    Value of the digest.

    DigestResponse, DigestResponseArgs

    Algo string
    SHA1, SHA512 etc.
    DigestBytes string
    Value of the digest.
    Algo string
    SHA1, SHA512 etc.
    DigestBytes string
    Value of the digest.
    algo String
    SHA1, SHA512 etc.
    digestBytes String
    Value of the digest.
    algo string
    SHA1, SHA512 etc.
    digestBytes string
    Value of the digest.
    algo str
    SHA1, SHA512 etc.
    digest_bytes str
    Value of the digest.
    algo String
    SHA1, SHA512 etc.
    digestBytes String
    Value of the digest.

    Discovery, DiscoveryArgs

    AnalysisKind Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.DiscoveryAnalysisKind
    Immutable. The kind of analysis that is handled by this discovery.
    AnalysisKind DiscoveryAnalysisKind
    Immutable. The kind of analysis that is handled by this discovery.
    analysisKind DiscoveryAnalysisKind
    Immutable. The kind of analysis that is handled by this discovery.
    analysisKind DiscoveryAnalysisKind
    Immutable. The kind of analysis that is handled by this discovery.
    analysis_kind DiscoveryAnalysisKind
    Immutable. The kind of analysis that is handled by this discovery.

    DiscoveryAnalysisKind, DiscoveryAnalysisKindArgs

    NoteKindUnspecified
    NOTE_KIND_UNSPECIFIEDDefault value. This value is unused.
    Vulnerability
    VULNERABILITYThe note and occurrence represent a package vulnerability.
    Build
    BUILDThe note and occurrence assert build provenance.
    Image
    IMAGEThis represents an image basis relationship.
    Package
    PACKAGEThis represents a package installed via a package manager.
    Deployment
    DEPLOYMENTThe note and occurrence track deployment events.
    Discovery
    DISCOVERYThe note and occurrence track the initial discovery status of a resource.
    Attestation
    ATTESTATIONThis represents a logical "role" that can attest to artifacts.
    Intoto
    INTOTOThis represents an in-toto link.
    Sbom
    SBOMThis represents a software bill of materials.
    SpdxPackage
    SPDX_PACKAGEThis represents an SPDX Package.
    SpdxFile
    SPDX_FILEThis represents an SPDX File.
    SpdxRelationship
    SPDX_RELATIONSHIPThis represents an SPDX Relationship.
    VulnerabilityAssessment
    VULNERABILITY_ASSESSMENTThis represents a Vulnerability Assessment.
    SbomReference
    SBOM_REFERENCEThis represents an SBOM Reference.
    DiscoveryAnalysisKindNoteKindUnspecified
    NOTE_KIND_UNSPECIFIEDDefault value. This value is unused.
    DiscoveryAnalysisKindVulnerability
    VULNERABILITYThe note and occurrence represent a package vulnerability.
    DiscoveryAnalysisKindBuild
    BUILDThe note and occurrence assert build provenance.
    DiscoveryAnalysisKindImage
    IMAGEThis represents an image basis relationship.
    DiscoveryAnalysisKindPackage
    PACKAGEThis represents a package installed via a package manager.
    DiscoveryAnalysisKindDeployment
    DEPLOYMENTThe note and occurrence track deployment events.
    DiscoveryAnalysisKindDiscovery
    DISCOVERYThe note and occurrence track the initial discovery status of a resource.
    DiscoveryAnalysisKindAttestation
    ATTESTATIONThis represents a logical "role" that can attest to artifacts.
    DiscoveryAnalysisKindIntoto
    INTOTOThis represents an in-toto link.
    DiscoveryAnalysisKindSbom
    SBOMThis represents a software bill of materials.
    DiscoveryAnalysisKindSpdxPackage
    SPDX_PACKAGEThis represents an SPDX Package.
    DiscoveryAnalysisKindSpdxFile
    SPDX_FILEThis represents an SPDX File.
    DiscoveryAnalysisKindSpdxRelationship
    SPDX_RELATIONSHIPThis represents an SPDX Relationship.
    DiscoveryAnalysisKindVulnerabilityAssessment
    VULNERABILITY_ASSESSMENTThis represents a Vulnerability Assessment.
    DiscoveryAnalysisKindSbomReference
    SBOM_REFERENCEThis represents an SBOM Reference.
    NoteKindUnspecified
    NOTE_KIND_UNSPECIFIEDDefault value. This value is unused.
    Vulnerability
    VULNERABILITYThe note and occurrence represent a package vulnerability.
    Build
    BUILDThe note and occurrence assert build provenance.
    Image
    IMAGEThis represents an image basis relationship.
    Package
    PACKAGEThis represents a package installed via a package manager.
    Deployment
    DEPLOYMENTThe note and occurrence track deployment events.
    Discovery
    DISCOVERYThe note and occurrence track the initial discovery status of a resource.
    Attestation
    ATTESTATIONThis represents a logical "role" that can attest to artifacts.
    Intoto
    INTOTOThis represents an in-toto link.
    Sbom
    SBOMThis represents a software bill of materials.
    SpdxPackage
    SPDX_PACKAGEThis represents an SPDX Package.
    SpdxFile
    SPDX_FILEThis represents an SPDX File.
    SpdxRelationship
    SPDX_RELATIONSHIPThis represents an SPDX Relationship.
    VulnerabilityAssessment
    VULNERABILITY_ASSESSMENTThis represents a Vulnerability Assessment.
    SbomReference
    SBOM_REFERENCEThis represents an SBOM Reference.
    NoteKindUnspecified
    NOTE_KIND_UNSPECIFIEDDefault value. This value is unused.
    Vulnerability
    VULNERABILITYThe note and occurrence represent a package vulnerability.
    Build
    BUILDThe note and occurrence assert build provenance.
    Image
    IMAGEThis represents an image basis relationship.
    Package
    PACKAGEThis represents a package installed via a package manager.
    Deployment
    DEPLOYMENTThe note and occurrence track deployment events.
    Discovery
    DISCOVERYThe note and occurrence track the initial discovery status of a resource.
    Attestation
    ATTESTATIONThis represents a logical "role" that can attest to artifacts.
    Intoto
    INTOTOThis represents an in-toto link.
    Sbom
    SBOMThis represents a software bill of materials.
    SpdxPackage
    SPDX_PACKAGEThis represents an SPDX Package.
    SpdxFile
    SPDX_FILEThis represents an SPDX File.
    SpdxRelationship
    SPDX_RELATIONSHIPThis represents an SPDX Relationship.
    VulnerabilityAssessment
    VULNERABILITY_ASSESSMENTThis represents a Vulnerability Assessment.
    SbomReference
    SBOM_REFERENCEThis represents an SBOM Reference.
    NOTE_KIND_UNSPECIFIED
    NOTE_KIND_UNSPECIFIEDDefault value. This value is unused.
    VULNERABILITY
    VULNERABILITYThe note and occurrence represent a package vulnerability.
    BUILD
    BUILDThe note and occurrence assert build provenance.
    IMAGE
    IMAGEThis represents an image basis relationship.
    PACKAGE
    PACKAGEThis represents a package installed via a package manager.
    DEPLOYMENT
    DEPLOYMENTThe note and occurrence track deployment events.
    DISCOVERY
    DISCOVERYThe note and occurrence track the initial discovery status of a resource.
    ATTESTATION
    ATTESTATIONThis represents a logical "role" that can attest to artifacts.
    INTOTO
    INTOTOThis represents an in-toto link.
    SBOM
    SBOMThis represents a software bill of materials.
    SPDX_PACKAGE
    SPDX_PACKAGEThis represents an SPDX Package.
    SPDX_FILE
    SPDX_FILEThis represents an SPDX File.
    SPDX_RELATIONSHIP
    SPDX_RELATIONSHIPThis represents an SPDX Relationship.
    VULNERABILITY_ASSESSMENT
    VULNERABILITY_ASSESSMENTThis represents a Vulnerability Assessment.
    SBOM_REFERENCE
    SBOM_REFERENCEThis represents an SBOM Reference.
    "NOTE_KIND_UNSPECIFIED"
    NOTE_KIND_UNSPECIFIEDDefault value. This value is unused.
    "VULNERABILITY"
    VULNERABILITYThe note and occurrence represent a package vulnerability.
    "BUILD"
    BUILDThe note and occurrence assert build provenance.
    "IMAGE"
    IMAGEThis represents an image basis relationship.
    "PACKAGE"
    PACKAGEThis represents a package installed via a package manager.
    "DEPLOYMENT"
    DEPLOYMENTThe note and occurrence track deployment events.
    "DISCOVERY"
    DISCOVERYThe note and occurrence track the initial discovery status of a resource.
    "ATTESTATION"
    ATTESTATIONThis represents a logical "role" that can attest to artifacts.
    "INTOTO"
    INTOTOThis represents an in-toto link.
    "SBOM"
    SBOMThis represents a software bill of materials.
    "SPDX_PACKAGE"
    SPDX_PACKAGEThis represents an SPDX Package.
    "SPDX_FILE"
    SPDX_FILEThis represents an SPDX File.
    "SPDX_RELATIONSHIP"
    SPDX_RELATIONSHIPThis represents an SPDX Relationship.
    "VULNERABILITY_ASSESSMENT"
    VULNERABILITY_ASSESSMENTThis represents a Vulnerability Assessment.
    "SBOM_REFERENCE"
    SBOM_REFERENCEThis represents an SBOM Reference.

    DiscoveryResponse, DiscoveryResponseArgs

    AnalysisKind string
    Immutable. The kind of analysis that is handled by this discovery.
    AnalysisKind string
    Immutable. The kind of analysis that is handled by this discovery.
    analysisKind String
    Immutable. The kind of analysis that is handled by this discovery.
    analysisKind string
    Immutable. The kind of analysis that is handled by this discovery.
    analysis_kind str
    Immutable. The kind of analysis that is handled by this discovery.
    analysisKind String
    Immutable. The kind of analysis that is handled by this discovery.

    Distribution, DistributionArgs

    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    Architecture Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.DistributionArchitecture
    The CPU architecture for which packages in this distribution channel were built.
    Description string
    The distribution channel-specific description of this package.
    LatestVersion Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Version
    The latest available version of this package in this distribution channel.
    Maintainer string
    A freeform string denoting the maintainer of this package.
    Url string
    The distribution channel-specific homepage for this package.
    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    Architecture DistributionArchitecture
    The CPU architecture for which packages in this distribution channel were built.
    Description string
    The distribution channel-specific description of this package.
    LatestVersion Version
    The latest available version of this package in this distribution channel.
    Maintainer string
    A freeform string denoting the maintainer of this package.
    Url string
    The distribution channel-specific homepage for this package.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    architecture DistributionArchitecture
    The CPU architecture for which packages in this distribution channel were built.
    description String
    The distribution channel-specific description of this package.
    latestVersion Version
    The latest available version of this package in this distribution channel.
    maintainer String
    A freeform string denoting the maintainer of this package.
    url String
    The distribution channel-specific homepage for this package.
    cpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    architecture DistributionArchitecture
    The CPU architecture for which packages in this distribution channel were built.
    description string
    The distribution channel-specific description of this package.
    latestVersion Version
    The latest available version of this package in this distribution channel.
    maintainer string
    A freeform string denoting the maintainer of this package.
    url string
    The distribution channel-specific homepage for this package.
    cpe_uri str
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    architecture DistributionArchitecture
    The CPU architecture for which packages in this distribution channel were built.
    description str
    The distribution channel-specific description of this package.
    latest_version Version
    The latest available version of this package in this distribution channel.
    maintainer str
    A freeform string denoting the maintainer of this package.
    url str
    The distribution channel-specific homepage for this package.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    architecture "ARCHITECTURE_UNSPECIFIED" | "X86" | "X64"
    The CPU architecture for which packages in this distribution channel were built.
    description String
    The distribution channel-specific description of this package.
    latestVersion Property Map
    The latest available version of this package in this distribution channel.
    maintainer String
    A freeform string denoting the maintainer of this package.
    url String
    The distribution channel-specific homepage for this package.

    DistributionArchitecture, DistributionArchitectureArgs

    ArchitectureUnspecified
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    X86
    X86X86 architecture.
    X64
    X64X64 architecture.
    DistributionArchitectureArchitectureUnspecified
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    DistributionArchitectureX86
    X86X86 architecture.
    DistributionArchitectureX64
    X64X64 architecture.
    ArchitectureUnspecified
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    X86
    X86X86 architecture.
    X64
    X64X64 architecture.
    ArchitectureUnspecified
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    X86
    X86X86 architecture.
    X64
    X64X64 architecture.
    ARCHITECTURE_UNSPECIFIED
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    X86
    X86X86 architecture.
    X64
    X64X64 architecture.
    "ARCHITECTURE_UNSPECIFIED"
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    "X86"
    X86X86 architecture.
    "X64"
    X64X64 architecture.

    DistributionResponse, DistributionResponseArgs

    Architecture string
    The CPU architecture for which packages in this distribution channel were built.
    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    Description string
    The distribution channel-specific description of this package.
    LatestVersion Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionResponse
    The latest available version of this package in this distribution channel.
    Maintainer string
    A freeform string denoting the maintainer of this package.
    Url string
    The distribution channel-specific homepage for this package.
    Architecture string
    The CPU architecture for which packages in this distribution channel were built.
    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    Description string
    The distribution channel-specific description of this package.
    LatestVersion VersionResponse
    The latest available version of this package in this distribution channel.
    Maintainer string
    A freeform string denoting the maintainer of this package.
    Url string
    The distribution channel-specific homepage for this package.
    architecture String
    The CPU architecture for which packages in this distribution channel were built.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    description String
    The distribution channel-specific description of this package.
    latestVersion VersionResponse
    The latest available version of this package in this distribution channel.
    maintainer String
    A freeform string denoting the maintainer of this package.
    url String
    The distribution channel-specific homepage for this package.
    architecture string
    The CPU architecture for which packages in this distribution channel were built.
    cpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    description string
    The distribution channel-specific description of this package.
    latestVersion VersionResponse
    The latest available version of this package in this distribution channel.
    maintainer string
    A freeform string denoting the maintainer of this package.
    url string
    The distribution channel-specific homepage for this package.
    architecture str
    The CPU architecture for which packages in this distribution channel were built.
    cpe_uri str
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    description str
    The distribution channel-specific description of this package.
    latest_version VersionResponse
    The latest available version of this package in this distribution channel.
    maintainer str
    A freeform string denoting the maintainer of this package.
    url str
    The distribution channel-specific homepage for this package.
    architecture String
    The CPU architecture for which packages in this distribution channel were built.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package.
    description String
    The distribution channel-specific description of this package.
    latestVersion Property Map
    The latest available version of this package in this distribution channel.
    maintainer String
    A freeform string denoting the maintainer of this package.
    url String
    The distribution channel-specific homepage for this package.

    DocumentNote, DocumentNoteArgs

    DataLicence string
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    SpdxVersion string
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file
    DataLicence string
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    SpdxVersion string
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file
    dataLicence String
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    spdxVersion String
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file
    dataLicence string
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    spdxVersion string
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file
    data_licence str
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    spdx_version str
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file
    dataLicence String
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    spdxVersion String
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file

    DocumentNoteResponse, DocumentNoteResponseArgs

    DataLicence string
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    SpdxVersion string
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file
    DataLicence string
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    SpdxVersion string
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file
    dataLicence String
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    spdxVersion String
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file
    dataLicence string
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    spdxVersion string
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file
    data_licence str
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    spdx_version str
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file
    dataLicence String
    Compliance with the SPDX specification includes populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
    spdxVersion String
    Provide a reference number that can be used to understand how to parse and interpret the rest of the file

    ExternalRef, ExternalRefArgs

    Category Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.ExternalRefCategory
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    Comment string
    Human-readable information about the purpose and target of the reference
    Locator string
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    Type string
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)
    Category ExternalRefCategory
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    Comment string
    Human-readable information about the purpose and target of the reference
    Locator string
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    Type string
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)
    category ExternalRefCategory
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    comment String
    Human-readable information about the purpose and target of the reference
    locator String
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    type String
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)
    category ExternalRefCategory
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    comment string
    Human-readable information about the purpose and target of the reference
    locator string
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    type string
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)
    category ExternalRefCategory
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    comment str
    Human-readable information about the purpose and target of the reference
    locator str
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    type str
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)
    category "CATEGORY_UNSPECIFIED" | "SECURITY" | "PACKAGE_MANAGER" | "PERSISTENT_ID" | "OTHER"
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    comment String
    Human-readable information about the purpose and target of the reference
    locator String
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    type String
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)

    ExternalRefCategory, ExternalRefCategoryArgs

    CategoryUnspecified
    CATEGORY_UNSPECIFIEDUnspecified
    Security
    SECURITYSecurity (e.g. cpe22Type, cpe23Type)
    PackageManager
    PACKAGE_MANAGERPackage Manager (e.g. maven-central, npm, nuget, bower, purl)
    PersistentId
    PERSISTENT_IDPersistent-Id (e.g. swh)
    Other
    OTHEROther
    ExternalRefCategoryCategoryUnspecified
    CATEGORY_UNSPECIFIEDUnspecified
    ExternalRefCategorySecurity
    SECURITYSecurity (e.g. cpe22Type, cpe23Type)
    ExternalRefCategoryPackageManager
    PACKAGE_MANAGERPackage Manager (e.g. maven-central, npm, nuget, bower, purl)
    ExternalRefCategoryPersistentId
    PERSISTENT_IDPersistent-Id (e.g. swh)
    ExternalRefCategoryOther
    OTHEROther
    CategoryUnspecified
    CATEGORY_UNSPECIFIEDUnspecified
    Security
    SECURITYSecurity (e.g. cpe22Type, cpe23Type)
    PackageManager
    PACKAGE_MANAGERPackage Manager (e.g. maven-central, npm, nuget, bower, purl)
    PersistentId
    PERSISTENT_IDPersistent-Id (e.g. swh)
    Other
    OTHEROther
    CategoryUnspecified
    CATEGORY_UNSPECIFIEDUnspecified
    Security
    SECURITYSecurity (e.g. cpe22Type, cpe23Type)
    PackageManager
    PACKAGE_MANAGERPackage Manager (e.g. maven-central, npm, nuget, bower, purl)
    PersistentId
    PERSISTENT_IDPersistent-Id (e.g. swh)
    Other
    OTHEROther
    CATEGORY_UNSPECIFIED
    CATEGORY_UNSPECIFIEDUnspecified
    SECURITY
    SECURITYSecurity (e.g. cpe22Type, cpe23Type)
    PACKAGE_MANAGER
    PACKAGE_MANAGERPackage Manager (e.g. maven-central, npm, nuget, bower, purl)
    PERSISTENT_ID
    PERSISTENT_IDPersistent-Id (e.g. swh)
    OTHER
    OTHEROther
    "CATEGORY_UNSPECIFIED"
    CATEGORY_UNSPECIFIEDUnspecified
    "SECURITY"
    SECURITYSecurity (e.g. cpe22Type, cpe23Type)
    "PACKAGE_MANAGER"
    PACKAGE_MANAGERPackage Manager (e.g. maven-central, npm, nuget, bower, purl)
    "PERSISTENT_ID"
    PERSISTENT_IDPersistent-Id (e.g. swh)
    "OTHER"
    OTHEROther

    ExternalRefResponse, ExternalRefResponseArgs

    Category string
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    Comment string
    Human-readable information about the purpose and target of the reference
    Locator string
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    Type string
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)
    Category string
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    Comment string
    Human-readable information about the purpose and target of the reference
    Locator string
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    Type string
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)
    category String
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    comment String
    Human-readable information about the purpose and target of the reference
    locator String
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    type String
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)
    category string
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    comment string
    Human-readable information about the purpose and target of the reference
    locator string
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    type string
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)
    category str
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    comment str
    Human-readable information about the purpose and target of the reference
    locator str
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    type str
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)
    category String
    An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package
    comment String
    Human-readable information about the purpose and target of the reference
    locator String
    The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location
    type String
    Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)

    FileNote, FileNoteArgs

    Checksum List<string>
    Provide a unique identifier to match analysis information on each specific file in a package
    FileType Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.FileNoteFileType
    This field provides information about the type of file identified
    Title string
    Identify the full path and filename that corresponds to the file information in this section
    Checksum []string
    Provide a unique identifier to match analysis information on each specific file in a package
    FileType FileNoteFileType
    This field provides information about the type of file identified
    Title string
    Identify the full path and filename that corresponds to the file information in this section
    checksum List<String>
    Provide a unique identifier to match analysis information on each specific file in a package
    fileType FileNoteFileType
    This field provides information about the type of file identified
    title String
    Identify the full path and filename that corresponds to the file information in this section
    checksum string[]
    Provide a unique identifier to match analysis information on each specific file in a package
    fileType FileNoteFileType
    This field provides information about the type of file identified
    title string
    Identify the full path and filename that corresponds to the file information in this section
    checksum Sequence[str]
    Provide a unique identifier to match analysis information on each specific file in a package
    file_type FileNoteFileType
    This field provides information about the type of file identified
    title str
    Identify the full path and filename that corresponds to the file information in this section
    checksum List<String>
    Provide a unique identifier to match analysis information on each specific file in a package
    fileType "FILE_TYPE_UNSPECIFIED" | "SOURCE" | "BINARY" | "ARCHIVE" | "APPLICATION" | "AUDIO" | "IMAGE" | "TEXT" | "VIDEO" | "DOCUMENTATION" | "SPDX" | "OTHER"
    This field provides information about the type of file identified
    title String
    Identify the full path and filename that corresponds to the file information in this section

    FileNoteFileType, FileNoteFileTypeArgs

    FileTypeUnspecified
    FILE_TYPE_UNSPECIFIEDUnspecified
    Source
    SOURCEThe file is human readable source code (.c, .html, etc.)
    Binary
    BINARYThe file is a compiled object, target image or binary executable (.o, .a, etc.)
    Archive
    ARCHIVEThe file represents an archive (.tar, .jar, etc.)
    Application
    APPLICATIONThe file is associated with a specific application type (MIME type of application/*)
    Audio
    AUDIOThe file is associated with an audio file (MIME type of audio/* , e.g. .mp3)
    Image
    IMAGEThe file is associated with an picture image file (MIME type of image/*, e.g., .jpg, .gif)
    Text
    TEXTThe file is human readable text file (MIME type of text/*)
    Video
    VIDEOThe file is associated with a video file type (MIME type of video/*)
    Documentation
    DOCUMENTATIONThe file serves as documentation
    Spdx
    SPDXThe file is an SPDX document
    Other
    OTHERThe file doesn't fit into the above categories (generated artifacts, data files, etc.)
    FileNoteFileTypeFileTypeUnspecified
    FILE_TYPE_UNSPECIFIEDUnspecified
    FileNoteFileTypeSource
    SOURCEThe file is human readable source code (.c, .html, etc.)
    FileNoteFileTypeBinary
    BINARYThe file is a compiled object, target image or binary executable (.o, .a, etc.)
    FileNoteFileTypeArchive
    ARCHIVEThe file represents an archive (.tar, .jar, etc.)
    FileNoteFileTypeApplication
    APPLICATIONThe file is associated with a specific application type (MIME type of application/*)
    FileNoteFileTypeAudio
    AUDIOThe file is associated with an audio file (MIME type of audio/* , e.g. .mp3)
    FileNoteFileTypeImage
    IMAGEThe file is associated with an picture image file (MIME type of image/*, e.g., .jpg, .gif)
    FileNoteFileTypeText
    TEXTThe file is human readable text file (MIME type of text/*)
    FileNoteFileTypeVideo
    VIDEOThe file is associated with a video file type (MIME type of video/*)
    FileNoteFileTypeDocumentation
    DOCUMENTATIONThe file serves as documentation
    FileNoteFileTypeSpdx
    SPDXThe file is an SPDX document
    FileNoteFileTypeOther
    OTHERThe file doesn't fit into the above categories (generated artifacts, data files, etc.)
    FileTypeUnspecified
    FILE_TYPE_UNSPECIFIEDUnspecified
    Source
    SOURCEThe file is human readable source code (.c, .html, etc.)
    Binary
    BINARYThe file is a compiled object, target image or binary executable (.o, .a, etc.)
    Archive
    ARCHIVEThe file represents an archive (.tar, .jar, etc.)
    Application
    APPLICATIONThe file is associated with a specific application type (MIME type of application/*)
    Audio
    AUDIOThe file is associated with an audio file (MIME type of audio/* , e.g. .mp3)
    Image
    IMAGEThe file is associated with an picture image file (MIME type of image/*, e.g., .jpg, .gif)
    Text
    TEXTThe file is human readable text file (MIME type of text/*)
    Video
    VIDEOThe file is associated with a video file type (MIME type of video/*)
    Documentation
    DOCUMENTATIONThe file serves as documentation
    Spdx
    SPDXThe file is an SPDX document
    Other
    OTHERThe file doesn't fit into the above categories (generated artifacts, data files, etc.)
    FileTypeUnspecified
    FILE_TYPE_UNSPECIFIEDUnspecified
    Source
    SOURCEThe file is human readable source code (.c, .html, etc.)
    Binary
    BINARYThe file is a compiled object, target image or binary executable (.o, .a, etc.)
    Archive
    ARCHIVEThe file represents an archive (.tar, .jar, etc.)
    Application
    APPLICATIONThe file is associated with a specific application type (MIME type of application/*)
    Audio
    AUDIOThe file is associated with an audio file (MIME type of audio/* , e.g. .mp3)
    Image
    IMAGEThe file is associated with an picture image file (MIME type of image/*, e.g., .jpg, .gif)
    Text
    TEXTThe file is human readable text file (MIME type of text/*)
    Video
    VIDEOThe file is associated with a video file type (MIME type of video/*)
    Documentation
    DOCUMENTATIONThe file serves as documentation
    Spdx
    SPDXThe file is an SPDX document
    Other
    OTHERThe file doesn't fit into the above categories (generated artifacts, data files, etc.)
    FILE_TYPE_UNSPECIFIED
    FILE_TYPE_UNSPECIFIEDUnspecified
    SOURCE
    SOURCEThe file is human readable source code (.c, .html, etc.)
    BINARY
    BINARYThe file is a compiled object, target image or binary executable (.o, .a, etc.)
    ARCHIVE
    ARCHIVEThe file represents an archive (.tar, .jar, etc.)
    APPLICATION
    APPLICATIONThe file is associated with a specific application type (MIME type of application/*)
    AUDIO
    AUDIOThe file is associated with an audio file (MIME type of audio/* , e.g. .mp3)
    IMAGE
    IMAGEThe file is associated with an picture image file (MIME type of image/*, e.g., .jpg, .gif)
    TEXT
    TEXTThe file is human readable text file (MIME type of text/*)
    VIDEO
    VIDEOThe file is associated with a video file type (MIME type of video/*)
    DOCUMENTATION
    DOCUMENTATIONThe file serves as documentation
    SPDX
    SPDXThe file is an SPDX document
    OTHER
    OTHERThe file doesn't fit into the above categories (generated artifacts, data files, etc.)
    "FILE_TYPE_UNSPECIFIED"
    FILE_TYPE_UNSPECIFIEDUnspecified
    "SOURCE"
    SOURCEThe file is human readable source code (.c, .html, etc.)
    "BINARY"
    BINARYThe file is a compiled object, target image or binary executable (.o, .a, etc.)
    "ARCHIVE"
    ARCHIVEThe file represents an archive (.tar, .jar, etc.)
    "APPLICATION"
    APPLICATIONThe file is associated with a specific application type (MIME type of application/*)
    "AUDIO"
    AUDIOThe file is associated with an audio file (MIME type of audio/* , e.g. .mp3)
    "IMAGE"
    IMAGEThe file is associated with an picture image file (MIME type of image/*, e.g., .jpg, .gif)
    "TEXT"
    TEXTThe file is human readable text file (MIME type of text/*)
    "VIDEO"
    VIDEOThe file is associated with a video file type (MIME type of video/*)
    "DOCUMENTATION"
    DOCUMENTATIONThe file serves as documentation
    "SPDX"
    SPDXThe file is an SPDX document
    "OTHER"
    OTHERThe file doesn't fit into the above categories (generated artifacts, data files, etc.)

    FileNoteResponse, FileNoteResponseArgs

    Checksum List<string>
    Provide a unique identifier to match analysis information on each specific file in a package
    FileType string
    This field provides information about the type of file identified
    Title string
    Identify the full path and filename that corresponds to the file information in this section
    Checksum []string
    Provide a unique identifier to match analysis information on each specific file in a package
    FileType string
    This field provides information about the type of file identified
    Title string
    Identify the full path and filename that corresponds to the file information in this section
    checksum List<String>
    Provide a unique identifier to match analysis information on each specific file in a package
    fileType String
    This field provides information about the type of file identified
    title String
    Identify the full path and filename that corresponds to the file information in this section
    checksum string[]
    Provide a unique identifier to match analysis information on each specific file in a package
    fileType string
    This field provides information about the type of file identified
    title string
    Identify the full path and filename that corresponds to the file information in this section
    checksum Sequence[str]
    Provide a unique identifier to match analysis information on each specific file in a package
    file_type str
    This field provides information about the type of file identified
    title str
    Identify the full path and filename that corresponds to the file information in this section
    checksum List<String>
    Provide a unique identifier to match analysis information on each specific file in a package
    fileType String
    This field provides information about the type of file identified
    title String
    Identify the full path and filename that corresponds to the file information in this section

    Fingerprint, FingerprintArgs

    V1Name string
    The layer ID of the final layer in the Docker image's v1 representation.
    V2Blob List<string>
    The ordered list of v2 blobs that represent a given image.
    V1Name string
    The layer ID of the final layer in the Docker image's v1 representation.
    V2Blob []string
    The ordered list of v2 blobs that represent a given image.
    v1Name String
    The layer ID of the final layer in the Docker image's v1 representation.
    v2Blob List<String>
    The ordered list of v2 blobs that represent a given image.
    v1Name string
    The layer ID of the final layer in the Docker image's v1 representation.
    v2Blob string[]
    The ordered list of v2 blobs that represent a given image.
    v1_name str
    The layer ID of the final layer in the Docker image's v1 representation.
    v2_blob Sequence[str]
    The ordered list of v2 blobs that represent a given image.
    v1Name String
    The layer ID of the final layer in the Docker image's v1 representation.
    v2Blob List<String>
    The ordered list of v2 blobs that represent a given image.

    FingerprintResponse, FingerprintResponseArgs

    V1Name string
    The layer ID of the final layer in the Docker image's v1 representation.
    V2Blob List<string>
    The ordered list of v2 blobs that represent a given image.
    V2Name string
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
    V1Name string
    The layer ID of the final layer in the Docker image's v1 representation.
    V2Blob []string
    The ordered list of v2 blobs that represent a given image.
    V2Name string
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
    v1Name String
    The layer ID of the final layer in the Docker image's v1 representation.
    v2Blob List<String>
    The ordered list of v2 blobs that represent a given image.
    v2Name String
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
    v1Name string
    The layer ID of the final layer in the Docker image's v1 representation.
    v2Blob string[]
    The ordered list of v2 blobs that represent a given image.
    v2Name string
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
    v1_name str
    The layer ID of the final layer in the Docker image's v1 representation.
    v2_blob Sequence[str]
    The ordered list of v2 blobs that represent a given image.
    v2_name str
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
    v1Name String
    The layer ID of the final layer in the Docker image's v1 representation.
    v2Blob List<String>
    The ordered list of v2 blobs that represent a given image.
    v2Name String
    The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.

    Hint, HintArgs

    HumanReadableName string
    The human readable name of this attestation authority, for example "qa".
    HumanReadableName string
    The human readable name of this attestation authority, for example "qa".
    humanReadableName String
    The human readable name of this attestation authority, for example "qa".
    humanReadableName string
    The human readable name of this attestation authority, for example "qa".
    human_readable_name str
    The human readable name of this attestation authority, for example "qa".
    humanReadableName String
    The human readable name of this attestation authority, for example "qa".

    HintResponse, HintResponseArgs

    HumanReadableName string
    The human readable name of this attestation authority, for example "qa".
    HumanReadableName string
    The human readable name of this attestation authority, for example "qa".
    humanReadableName String
    The human readable name of this attestation authority, for example "qa".
    humanReadableName string
    The human readable name of this attestation authority, for example "qa".
    human_readable_name str
    The human readable name of this attestation authority, for example "qa".
    humanReadableName String
    The human readable name of this attestation authority, for example "qa".

    InToto, InTotoArgs

    ExpectedCommand List<string>
    This field contains the expected command used to perform the step.
    ExpectedMaterials List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ArtifactRule>
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    ExpectedProducts List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ArtifactRule>
    SigningKeys List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SigningKey>
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    StepName string
    This field identifies the name of the step in the supply chain.
    Threshold string
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.
    ExpectedCommand []string
    This field contains the expected command used to perform the step.
    ExpectedMaterials []ArtifactRule
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    ExpectedProducts []ArtifactRule
    SigningKeys []SigningKey
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    StepName string
    This field identifies the name of the step in the supply chain.
    Threshold string
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.
    expectedCommand List<String>
    This field contains the expected command used to perform the step.
    expectedMaterials List<ArtifactRule>
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    expectedProducts List<ArtifactRule>
    signingKeys List<SigningKey>
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    stepName String
    This field identifies the name of the step in the supply chain.
    threshold String
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.
    expectedCommand string[]
    This field contains the expected command used to perform the step.
    expectedMaterials ArtifactRule[]
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    expectedProducts ArtifactRule[]
    signingKeys SigningKey[]
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    stepName string
    This field identifies the name of the step in the supply chain.
    threshold string
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.
    expected_command Sequence[str]
    This field contains the expected command used to perform the step.
    expected_materials Sequence[ArtifactRule]
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    expected_products Sequence[ArtifactRule]
    signing_keys Sequence[SigningKey]
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    step_name str
    This field identifies the name of the step in the supply chain.
    threshold str
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.
    expectedCommand List<String>
    This field contains the expected command used to perform the step.
    expectedMaterials List<Property Map>
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    expectedProducts List<Property Map>
    signingKeys List<Property Map>
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    stepName String
    This field identifies the name of the step in the supply chain.
    threshold String
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.

    InTotoResponse, InTotoResponseArgs

    ExpectedCommand List<string>
    This field contains the expected command used to perform the step.
    ExpectedMaterials List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ArtifactRuleResponse>
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    ExpectedProducts List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ArtifactRuleResponse>
    SigningKeys List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SigningKeyResponse>
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    StepName string
    This field identifies the name of the step in the supply chain.
    Threshold string
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.
    ExpectedCommand []string
    This field contains the expected command used to perform the step.
    ExpectedMaterials []ArtifactRuleResponse
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    ExpectedProducts []ArtifactRuleResponse
    SigningKeys []SigningKeyResponse
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    StepName string
    This field identifies the name of the step in the supply chain.
    Threshold string
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.
    expectedCommand List<String>
    This field contains the expected command used to perform the step.
    expectedMaterials List<ArtifactRuleResponse>
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    expectedProducts List<ArtifactRuleResponse>
    signingKeys List<SigningKeyResponse>
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    stepName String
    This field identifies the name of the step in the supply chain.
    threshold String
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.
    expectedCommand string[]
    This field contains the expected command used to perform the step.
    expectedMaterials ArtifactRuleResponse[]
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    expectedProducts ArtifactRuleResponse[]
    signingKeys SigningKeyResponse[]
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    stepName string
    This field identifies the name of the step in the supply chain.
    threshold string
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.
    expected_command Sequence[str]
    This field contains the expected command used to perform the step.
    expected_materials Sequence[ArtifactRuleResponse]
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    expected_products Sequence[ArtifactRuleResponse]
    signing_keys Sequence[SigningKeyResponse]
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    step_name str
    This field identifies the name of the step in the supply chain.
    threshold str
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.
    expectedCommand List<String>
    This field contains the expected command used to perform the step.
    expectedMaterials List<Property Map>
    The following fields contain in-toto artifact rules identifying the artifacts that enter this supply chain step, and exit the supply chain step, i.e. materials and products of the step.
    expectedProducts List<Property Map>
    signingKeys List<Property Map>
    This field contains the public keys that can be used to verify the signatures on the step metadata.
    stepName String
    This field identifies the name of the step in the supply chain.
    threshold String
    This field contains a value that indicates the minimum number of keys that need to be used to sign the step's in-toto link.

    Justification, JustificationArgs

    Details string
    Additional details on why this justification was chosen.
    JustificationType Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.JustificationJustificationType
    The justification type for this vulnerability.
    Details string
    Additional details on why this justification was chosen.
    JustificationType JustificationJustificationType
    The justification type for this vulnerability.
    details String
    Additional details on why this justification was chosen.
    justificationType JustificationJustificationType
    The justification type for this vulnerability.
    details string
    Additional details on why this justification was chosen.
    justificationType JustificationJustificationType
    The justification type for this vulnerability.
    details str
    Additional details on why this justification was chosen.
    justification_type JustificationJustificationType
    The justification type for this vulnerability.

    JustificationJustificationType, JustificationJustificationTypeArgs

    JustificationTypeUnspecified
    JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
    ComponentNotPresent
    COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
    VulnerableCodeNotPresent
    VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
    VulnerableCodeNotInExecutePath
    VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
    VulnerableCodeCannotBeControlledByAdversary
    VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
    InlineMitigationsAlreadyExist
    INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.
    JustificationJustificationTypeJustificationTypeUnspecified
    JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
    JustificationJustificationTypeComponentNotPresent
    COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
    JustificationJustificationTypeVulnerableCodeNotPresent
    VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
    JustificationJustificationTypeVulnerableCodeNotInExecutePath
    VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
    JustificationJustificationTypeVulnerableCodeCannotBeControlledByAdversary
    VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
    JustificationJustificationTypeInlineMitigationsAlreadyExist
    INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.
    JustificationTypeUnspecified
    JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
    ComponentNotPresent
    COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
    VulnerableCodeNotPresent
    VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
    VulnerableCodeNotInExecutePath
    VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
    VulnerableCodeCannotBeControlledByAdversary
    VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
    InlineMitigationsAlreadyExist
    INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.
    JustificationTypeUnspecified
    JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
    ComponentNotPresent
    COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
    VulnerableCodeNotPresent
    VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
    VulnerableCodeNotInExecutePath
    VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
    VulnerableCodeCannotBeControlledByAdversary
    VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
    InlineMitigationsAlreadyExist
    INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.
    JUSTIFICATION_TYPE_UNSPECIFIED
    JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
    COMPONENT_NOT_PRESENT
    COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
    VULNERABLE_CODE_NOT_PRESENT
    VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
    VULNERABLE_CODE_NOT_IN_EXECUTE_PATH
    VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
    VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARY
    VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
    INLINE_MITIGATIONS_ALREADY_EXIST
    INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.
    "JUSTIFICATION_TYPE_UNSPECIFIED"
    JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
    "COMPONENT_NOT_PRESENT"
    COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
    "VULNERABLE_CODE_NOT_PRESENT"
    VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
    "VULNERABLE_CODE_NOT_IN_EXECUTE_PATH"
    VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
    "VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARY"
    VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
    "INLINE_MITIGATIONS_ALREADY_EXIST"
    INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.

    JustificationResponse, JustificationResponseArgs

    Details string
    Additional details on why this justification was chosen.
    JustificationType string
    The justification type for this vulnerability.
    Details string
    Additional details on why this justification was chosen.
    JustificationType string
    The justification type for this vulnerability.
    details String
    Additional details on why this justification was chosen.
    justificationType String
    The justification type for this vulnerability.
    details string
    Additional details on why this justification was chosen.
    justificationType string
    The justification type for this vulnerability.
    details str
    Additional details on why this justification was chosen.
    justification_type str
    The justification type for this vulnerability.
    details String
    Additional details on why this justification was chosen.
    justificationType String
    The justification type for this vulnerability.

    KnowledgeBase, KnowledgeBaseArgs

    Name string
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    Url string
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/
    Name string
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    Url string
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/
    name String
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    url String
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/
    name string
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    url string
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/
    name str
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    url str
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/
    name String
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    url String
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/

    KnowledgeBaseResponse, KnowledgeBaseResponseArgs

    Name string
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    Url string
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/
    Name string
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    Url string
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/
    name String
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    url String
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/
    name string
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    url string
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/
    name str
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    url str
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/
    name String
    The KB name (generally of the form KB[0-9]+ i.e. KB123456).
    url String
    A link to the KB in the Windows update catalog - https://www.catalog.update.microsoft.com/

    License, LicenseArgs

    Comments string
    Comments
    Expression string
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    Comments string
    Comments
    Expression string
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments String
    Comments
    expression String
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments string
    Comments
    expression string
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments str
    Comments
    expression str
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments String
    Comments
    expression String
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".

    LicenseResponse, LicenseResponseArgs

    Comments string
    Comments
    Expression string
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    Comments string
    Comments
    Expression string
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments String
    Comments
    expression String
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments string
    Comments
    expression string
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments str
    Comments
    expression str
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
    comments String
    Comments
    expression String
    Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".

    Package, PackageArgs

    Name string
    Immutable. The name of the package.
    Architecture Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.PackageArchitecture
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    Description string
    The description of this package.
    Digest List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Digest>
    Hash value, typically a file digest, that allows unique identification a specific package.
    Distribution List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Distribution>
    The various channels by which a package is distributed.
    License Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.License
    Licenses that have been declared by the authors of the package.
    Maintainer string
    A freeform text denoting the maintainer of this package.
    PackageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    Url string
    The homepage for this package.
    Version Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Version
    The version of the package.
    Name string
    Immutable. The name of the package.
    Architecture PackageArchitecture
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    Description string
    The description of this package.
    Digest []Digest
    Hash value, typically a file digest, that allows unique identification a specific package.
    Distribution []Distribution
    The various channels by which a package is distributed.
    License License
    Licenses that have been declared by the authors of the package.
    Maintainer string
    A freeform text denoting the maintainer of this package.
    PackageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    Url string
    The homepage for this package.
    Version Version
    The version of the package.
    name String
    Immutable. The name of the package.
    architecture PackageArchitecture
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description String
    The description of this package.
    digest List<Digest>
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution List<Distribution>
    The various channels by which a package is distributed.
    license License
    Licenses that have been declared by the authors of the package.
    maintainer String
    A freeform text denoting the maintainer of this package.
    packageType String
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url String
    The homepage for this package.
    version Version
    The version of the package.
    name string
    Immutable. The name of the package.
    architecture PackageArchitecture
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description string
    The description of this package.
    digest Digest[]
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution Distribution[]
    The various channels by which a package is distributed.
    license License
    Licenses that have been declared by the authors of the package.
    maintainer string
    A freeform text denoting the maintainer of this package.
    packageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url string
    The homepage for this package.
    version Version
    The version of the package.
    name str
    Immutable. The name of the package.
    architecture PackageArchitecture
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpe_uri str
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description str
    The description of this package.
    digest Sequence[Digest]
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution Sequence[Distribution]
    The various channels by which a package is distributed.
    license License
    Licenses that have been declared by the authors of the package.
    maintainer str
    A freeform text denoting the maintainer of this package.
    package_type str
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url str
    The homepage for this package.
    version Version
    The version of the package.
    name String
    Immutable. The name of the package.
    architecture "ARCHITECTURE_UNSPECIFIED" | "X86" | "X64"
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description String
    The description of this package.
    digest List<Property Map>
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution List<Property Map>
    The various channels by which a package is distributed.
    license Property Map
    Licenses that have been declared by the authors of the package.
    maintainer String
    A freeform text denoting the maintainer of this package.
    packageType String
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url String
    The homepage for this package.
    version Property Map
    The version of the package.

    PackageArchitecture, PackageArchitectureArgs

    ArchitectureUnspecified
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    X86
    X86X86 architecture.
    X64
    X64X64 architecture.
    PackageArchitectureArchitectureUnspecified
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    PackageArchitectureX86
    X86X86 architecture.
    PackageArchitectureX64
    X64X64 architecture.
    ArchitectureUnspecified
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    X86
    X86X86 architecture.
    X64
    X64X64 architecture.
    ArchitectureUnspecified
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    X86
    X86X86 architecture.
    X64
    X64X64 architecture.
    ARCHITECTURE_UNSPECIFIED
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    X86
    X86X86 architecture.
    X64
    X64X64 architecture.
    "ARCHITECTURE_UNSPECIFIED"
    ARCHITECTURE_UNSPECIFIEDUnknown architecture.
    "X86"
    X86X86 architecture.
    "X64"
    X64X64 architecture.

    PackageInfoNote, PackageInfoNoteArgs

    Analyzed bool
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    Attribution string
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    Checksum string
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    Copyright string
    Identify the copyright holders of the package, as well as any dates present
    DetailedDescription string
    A more detailed description of the package
    DownloadLocation string
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    ExternalRefs List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ExternalRef>
    ExternalRef
    FilesLicenseInfo List<string>
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    HomePage string
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    LicenseDeclared Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.License
    List the licenses that have been declared by the authors of the package
    Originator string
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    PackageType string
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    SummaryDescription string
    A short description of the package
    Supplier string
    Identify the actual distribution source for the package/directory identified in the SPDX file
    Title string
    Identify the full name of the package as given by the Package Originator
    VerificationCode string
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    Version string
    Identify the version of the package
    Analyzed bool
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    Attribution string
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    Checksum string
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    Copyright string
    Identify the copyright holders of the package, as well as any dates present
    DetailedDescription string
    A more detailed description of the package
    DownloadLocation string
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    ExternalRefs []ExternalRef
    ExternalRef
    FilesLicenseInfo []string
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    HomePage string
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    LicenseDeclared License
    List the licenses that have been declared by the authors of the package
    Originator string
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    PackageType string
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    SummaryDescription string
    A short description of the package
    Supplier string
    Identify the actual distribution source for the package/directory identified in the SPDX file
    Title string
    Identify the full name of the package as given by the Package Originator
    VerificationCode string
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    Version string
    Identify the version of the package
    analyzed Boolean
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    attribution String
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    checksum String
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    copyright String
    Identify the copyright holders of the package, as well as any dates present
    detailedDescription String
    A more detailed description of the package
    downloadLocation String
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    externalRefs List<ExternalRef>
    ExternalRef
    filesLicenseInfo List<String>
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    homePage String
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    licenseDeclared License
    List the licenses that have been declared by the authors of the package
    originator String
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    packageType String
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    summaryDescription String
    A short description of the package
    supplier String
    Identify the actual distribution source for the package/directory identified in the SPDX file
    title String
    Identify the full name of the package as given by the Package Originator
    verificationCode String
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    version String
    Identify the version of the package
    analyzed boolean
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    attribution string
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    checksum string
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    copyright string
    Identify the copyright holders of the package, as well as any dates present
    detailedDescription string
    A more detailed description of the package
    downloadLocation string
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    externalRefs ExternalRef[]
    ExternalRef
    filesLicenseInfo string[]
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    homePage string
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    licenseDeclared License
    List the licenses that have been declared by the authors of the package
    originator string
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    packageType string
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    summaryDescription string
    A short description of the package
    supplier string
    Identify the actual distribution source for the package/directory identified in the SPDX file
    title string
    Identify the full name of the package as given by the Package Originator
    verificationCode string
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    version string
    Identify the version of the package
    analyzed bool
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    attribution str
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    checksum str
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    copyright str
    Identify the copyright holders of the package, as well as any dates present
    detailed_description str
    A more detailed description of the package
    download_location str
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    external_refs Sequence[ExternalRef]
    ExternalRef
    files_license_info Sequence[str]
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    home_page str
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    license_declared License
    List the licenses that have been declared by the authors of the package
    originator str
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    package_type str
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    summary_description str
    A short description of the package
    supplier str
    Identify the actual distribution source for the package/directory identified in the SPDX file
    title str
    Identify the full name of the package as given by the Package Originator
    verification_code str
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    version str
    Identify the version of the package
    analyzed Boolean
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    attribution String
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    checksum String
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    copyright String
    Identify the copyright holders of the package, as well as any dates present
    detailedDescription String
    A more detailed description of the package
    downloadLocation String
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    externalRefs List<Property Map>
    ExternalRef
    filesLicenseInfo List<String>
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    homePage String
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    licenseDeclared Property Map
    List the licenses that have been declared by the authors of the package
    originator String
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    packageType String
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    summaryDescription String
    A short description of the package
    supplier String
    Identify the actual distribution source for the package/directory identified in the SPDX file
    title String
    Identify the full name of the package as given by the Package Originator
    verificationCode String
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    version String
    Identify the version of the package

    PackageInfoNoteResponse, PackageInfoNoteResponseArgs

    Analyzed bool
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    Attribution string
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    Checksum string
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    Copyright string
    Identify the copyright holders of the package, as well as any dates present
    DetailedDescription string
    A more detailed description of the package
    DownloadLocation string
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    ExternalRefs List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ExternalRefResponse>
    ExternalRef
    FilesLicenseInfo List<string>
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    HomePage string
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    LicenseDeclared Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.LicenseResponse
    List the licenses that have been declared by the authors of the package
    Originator string
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    PackageType string
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    SummaryDescription string
    A short description of the package
    Supplier string
    Identify the actual distribution source for the package/directory identified in the SPDX file
    Title string
    Identify the full name of the package as given by the Package Originator
    VerificationCode string
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    Version string
    Identify the version of the package
    Analyzed bool
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    Attribution string
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    Checksum string
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    Copyright string
    Identify the copyright holders of the package, as well as any dates present
    DetailedDescription string
    A more detailed description of the package
    DownloadLocation string
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    ExternalRefs []ExternalRefResponse
    ExternalRef
    FilesLicenseInfo []string
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    HomePage string
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    LicenseDeclared LicenseResponse
    List the licenses that have been declared by the authors of the package
    Originator string
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    PackageType string
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    SummaryDescription string
    A short description of the package
    Supplier string
    Identify the actual distribution source for the package/directory identified in the SPDX file
    Title string
    Identify the full name of the package as given by the Package Originator
    VerificationCode string
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    Version string
    Identify the version of the package
    analyzed Boolean
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    attribution String
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    checksum String
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    copyright String
    Identify the copyright holders of the package, as well as any dates present
    detailedDescription String
    A more detailed description of the package
    downloadLocation String
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    externalRefs List<ExternalRefResponse>
    ExternalRef
    filesLicenseInfo List<String>
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    homePage String
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    licenseDeclared LicenseResponse
    List the licenses that have been declared by the authors of the package
    originator String
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    packageType String
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    summaryDescription String
    A short description of the package
    supplier String
    Identify the actual distribution source for the package/directory identified in the SPDX file
    title String
    Identify the full name of the package as given by the Package Originator
    verificationCode String
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    version String
    Identify the version of the package
    analyzed boolean
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    attribution string
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    checksum string
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    copyright string
    Identify the copyright holders of the package, as well as any dates present
    detailedDescription string
    A more detailed description of the package
    downloadLocation string
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    externalRefs ExternalRefResponse[]
    ExternalRef
    filesLicenseInfo string[]
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    homePage string
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    licenseDeclared LicenseResponse
    List the licenses that have been declared by the authors of the package
    originator string
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    packageType string
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    summaryDescription string
    A short description of the package
    supplier string
    Identify the actual distribution source for the package/directory identified in the SPDX file
    title string
    Identify the full name of the package as given by the Package Originator
    verificationCode string
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    version string
    Identify the version of the package
    analyzed bool
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    attribution str
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    checksum str
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    copyright str
    Identify the copyright holders of the package, as well as any dates present
    detailed_description str
    A more detailed description of the package
    download_location str
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    external_refs Sequence[ExternalRefResponse]
    ExternalRef
    files_license_info Sequence[str]
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    home_page str
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    license_declared LicenseResponse
    List the licenses that have been declared by the authors of the package
    originator str
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    package_type str
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    summary_description str
    A short description of the package
    supplier str
    Identify the actual distribution source for the package/directory identified in the SPDX file
    title str
    Identify the full name of the package as given by the Package Originator
    verification_code str
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    version str
    Identify the version of the package
    analyzed Boolean
    Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document
    attribution String
    A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts
    checksum String
    Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file
    copyright String
    Identify the copyright holders of the package, as well as any dates present
    detailedDescription String
    A more detailed description of the package
    downloadLocation String
    This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created
    externalRefs List<Property Map>
    ExternalRef
    filesLicenseInfo List<String>
    Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found
    homePage String
    Provide a place for the SPDX file creator to record a web site that serves as the package's home page
    licenseDeclared Property Map
    List the licenses that have been declared by the authors of the package
    originator String
    If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came
    packageType String
    The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
    summaryDescription String
    A short description of the package
    supplier String
    Identify the actual distribution source for the package/directory identified in the SPDX file
    title String
    Identify the full name of the package as given by the Package Originator
    verificationCode String
    This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file
    version String
    Identify the version of the package

    PackageResponse, PackageResponseArgs

    Architecture string
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    Description string
    The description of this package.
    Digest List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DigestResponse>
    Hash value, typically a file digest, that allows unique identification a specific package.
    Distribution List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DistributionResponse>
    The various channels by which a package is distributed.
    License Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.LicenseResponse
    Licenses that have been declared by the authors of the package.
    Maintainer string
    A freeform text denoting the maintainer of this package.
    Name string
    Immutable. The name of the package.
    PackageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    Url string
    The homepage for this package.
    Version Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionResponse
    The version of the package.
    Architecture string
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    CpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    Description string
    The description of this package.
    Digest []DigestResponse
    Hash value, typically a file digest, that allows unique identification a specific package.
    Distribution []DistributionResponse
    The various channels by which a package is distributed.
    License LicenseResponse
    Licenses that have been declared by the authors of the package.
    Maintainer string
    A freeform text denoting the maintainer of this package.
    Name string
    Immutable. The name of the package.
    PackageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    Url string
    The homepage for this package.
    Version VersionResponse
    The version of the package.
    architecture String
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description String
    The description of this package.
    digest List<DigestResponse>
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution List<DistributionResponse>
    The various channels by which a package is distributed.
    license LicenseResponse
    Licenses that have been declared by the authors of the package.
    maintainer String
    A freeform text denoting the maintainer of this package.
    name String
    Immutable. The name of the package.
    packageType String
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url String
    The homepage for this package.
    version VersionResponse
    The version of the package.
    architecture string
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpeUri string
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description string
    The description of this package.
    digest DigestResponse[]
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution DistributionResponse[]
    The various channels by which a package is distributed.
    license LicenseResponse
    Licenses that have been declared by the authors of the package.
    maintainer string
    A freeform text denoting the maintainer of this package.
    name string
    Immutable. The name of the package.
    packageType string
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url string
    The homepage for this package.
    version VersionResponse
    The version of the package.
    architecture str
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpe_uri str
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description str
    The description of this package.
    digest Sequence[DigestResponse]
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution Sequence[DistributionResponse]
    The various channels by which a package is distributed.
    license LicenseResponse
    Licenses that have been declared by the authors of the package.
    maintainer str
    A freeform text denoting the maintainer of this package.
    name str
    Immutable. The name of the package.
    package_type str
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url str
    The homepage for this package.
    version VersionResponse
    The version of the package.
    architecture String
    The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
    cpeUri String
    The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
    description String
    The description of this package.
    digest List<Property Map>
    Hash value, typically a file digest, that allows unique identification a specific package.
    distribution List<Property Map>
    The various channels by which a package is distributed.
    license Property Map
    Licenses that have been declared by the authors of the package.
    maintainer String
    A freeform text denoting the maintainer of this package.
    name String
    Immutable. The name of the package.
    packageType String
    The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
    url String
    The homepage for this package.
    version Property Map
    The version of the package.

    Product, ProductArgs

    GenericUri string
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    Id string
    Token that identifies a product so that it can be referred to from other parts in the document. There is no predefined format as long as it uniquely identifies a group in the context of the current document.
    Name string
    Name of the product.
    GenericUri string
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    Id string
    Token that identifies a product so that it can be referred to from other parts in the document. There is no predefined format as long as it uniquely identifies a group in the context of the current document.
    Name string
    Name of the product.
    genericUri String
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    id String
    Token that identifies a product so that it can be referred to from other parts in the document. There is no predefined format as long as it uniquely identifies a group in the context of the current document.
    name String
    Name of the product.
    genericUri string
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    id string
    Token that identifies a product so that it can be referred to from other parts in the document. There is no predefined format as long as it uniquely identifies a group in the context of the current document.
    name string
    Name of the product.
    generic_uri str
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    id str
    Token that identifies a product so that it can be referred to from other parts in the document. There is no predefined format as long as it uniquely identifies a group in the context of the current document.
    name str
    Name of the product.
    genericUri String
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    id String
    Token that identifies a product so that it can be referred to from other parts in the document. There is no predefined format as long as it uniquely identifies a group in the context of the current document.
    name String
    Name of the product.

    ProductResponse, ProductResponseArgs

    GenericUri string
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    Name string
    Name of the product.
    GenericUri string
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    Name string
    Name of the product.
    genericUri String
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    name String
    Name of the product.
    genericUri string
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    name string
    Name of the product.
    generic_uri str
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    name str
    Name of the product.
    genericUri String
    Contains a URI which is vendor-specific. Example: The artifact repository URL of an image.
    name String
    Name of the product.

    Publisher, PublisherArgs

    IssuingAuthority string
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    Name string
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    PublisherNamespace string
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    IssuingAuthority string
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    Name string
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    PublisherNamespace string
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuingAuthority String
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name String
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisherNamespace String
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuingAuthority string
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name string
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisherNamespace string
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuing_authority str
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name str
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisher_namespace str
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuingAuthority String
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name String
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisherNamespace String
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io

    PublisherResponse, PublisherResponseArgs

    IssuingAuthority string
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    Name string
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    PublisherNamespace string
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    IssuingAuthority string
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    Name string
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    PublisherNamespace string
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuingAuthority String
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name String
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisherNamespace String
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuingAuthority string
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name string
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisherNamespace string
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuing_authority str
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name str
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisher_namespace str
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io
    issuingAuthority String
    Provides information about the authority of the issuing party to release the document, in particular, the party's constituency and responsibilities or other obligations.
    name String
    Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
    publisherNamespace String
    The context or namespace. Contains a URL which is under control of the issuing party and can be used as a globally unique identifier for that issuing party. Example: https://csaf.io

    RelatedUrl, RelatedUrlArgs

    Label string
    Label to describe usage of the URL.
    Url string
    Specific URL associated with the resource.
    Label string
    Label to describe usage of the URL.
    Url string
    Specific URL associated with the resource.
    label String
    Label to describe usage of the URL.
    url String
    Specific URL associated with the resource.
    label string
    Label to describe usage of the URL.
    url string
    Specific URL associated with the resource.
    label str
    Label to describe usage of the URL.
    url str
    Specific URL associated with the resource.
    label String
    Label to describe usage of the URL.
    url String
    Specific URL associated with the resource.

    RelatedUrlResponse, RelatedUrlResponseArgs

    Label string
    Label to describe usage of the URL.
    Url string
    Specific URL associated with the resource.
    Label string
    Label to describe usage of the URL.
    Url string
    Specific URL associated with the resource.
    label String
    Label to describe usage of the URL.
    url String
    Specific URL associated with the resource.
    label string
    Label to describe usage of the URL.
    url string
    Specific URL associated with the resource.
    label str
    Label to describe usage of the URL.
    url str
    Specific URL associated with the resource.
    label String
    Label to describe usage of the URL.
    url String
    Specific URL associated with the resource.

    RelationshipNote, RelationshipNoteArgs

    Type Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.RelationshipNoteType
    The type of relationship between the source and target SPDX elements
    Type RelationshipNoteType
    The type of relationship between the source and target SPDX elements
    type RelationshipNoteType
    The type of relationship between the source and target SPDX elements
    type RelationshipNoteType
    The type of relationship between the source and target SPDX elements
    type RelationshipNoteType
    The type of relationship between the source and target SPDX elements
    type "RELATIONSHIP_TYPE_UNSPECIFIED" | "DESCRIBES" | "DESCRIBED_BY" | "CONTAINS" | "CONTAINED_BY" | "DEPENDS_ON" | "DEPENDENCY_OF" | "DEPENDENCY_MANIFEST_OF" | "BUILD_DEPENDENCY_OF" | "DEV_DEPENDENCY_OF" | "OPTIONAL_DEPENDENCY_OF" | "PROVIDED_DEPENDENCY_OF" | "TEST_DEPENDENCY_OF" | "RUNTIME_DEPENDENCY_OF" | "EXAMPLE_OF" | "GENERATES" | "GENERATED_FROM" | "ANCESTOR_OF" | "DESCENDANT_OF" | "VARIANT_OF" | "DISTRIBUTION_ARTIFACT" | "PATCH_FOR" | "PATCH_APPLIED" | "COPY_OF" | "FILE_ADDED" | "FILE_DELETED" | "FILE_MODIFIED" | "EXPANDED_FROM_ARCHIVE" | "DYNAMIC_LINK" | "STATIC_LINK" | "DATA_FILE_OF" | "TEST_CASE_OF" | "BUILD_TOOL_OF" | "DEV_TOOL_OF" | "TEST_OF" | "TEST_TOOL_OF" | "DOCUMENTATION_OF" | "OPTIONAL_COMPONENT_OF" | "METAFILE_OF" | "PACKAGE_OF" | "AMENDS" | "PREREQUISITE_FOR" | "HAS_PREREQUISITE" | "OTHER"
    The type of relationship between the source and target SPDX elements

    RelationshipNoteResponse, RelationshipNoteResponseArgs

    Type string
    The type of relationship between the source and target SPDX elements
    Type string
    The type of relationship between the source and target SPDX elements
    type String
    The type of relationship between the source and target SPDX elements
    type string
    The type of relationship between the source and target SPDX elements
    type str
    The type of relationship between the source and target SPDX elements
    type String
    The type of relationship between the source and target SPDX elements

    RelationshipNoteType, RelationshipNoteTypeArgs

    RelationshipTypeUnspecified
    RELATIONSHIP_TYPE_UNSPECIFIEDUnspecified
    Describes
    DESCRIBESIs to be used when SPDXRef-DOCUMENT describes SPDXRef-A
    DescribedBy
    DESCRIBED_BYIs to be used when SPDXRef-A is described by SPDXREF-Document
    Contains
    CONTAINSIs to be used when SPDXRef-A contains SPDXRef-B
    ContainedBy
    CONTAINED_BYIs to be used when SPDXRef-A is contained by SPDXRef-B
    DependsOn
    DEPENDS_ONIs to be used when SPDXRef-A depends on SPDXRef-B
    DependencyOf
    DEPENDENCY_OFIs to be used when SPDXRef-A is dependency of SPDXRef-B
    DependencyManifestOf
    DEPENDENCY_MANIFEST_OFIs to be used when SPDXRef-A is a manifest file that lists a set of dependencies for SPDXRef-B
    BuildDependencyOf
    BUILD_DEPENDENCY_OFIs to be used when SPDXRef-A is a build dependency of SPDXRef-B
    DevDependencyOf
    DEV_DEPENDENCY_OFIs to be used when SPDXRef-A is a development dependency of SPDXRef-B
    OptionalDependencyOf
    OPTIONAL_DEPENDENCY_OFIs to be used when SPDXRef-A is an optional dependency of SPDXRef-B
    ProvidedDependencyOf
    PROVIDED_DEPENDENCY_OFIs to be used when SPDXRef-A is a to be provided dependency of SPDXRef-B
    TestDependencyOf
    TEST_DEPENDENCY_OFIs to be used when SPDXRef-A is a test dependency of SPDXRef-B
    RuntimeDependencyOf
    RUNTIME_DEPENDENCY_OFIs to be used when SPDXRef-A is a dependency required for the execution of SPDXRef-B
    ExampleOf
    EXAMPLE_OFIs to be used when SPDXRef-A is an example of SPDXRef-B
    Generates
    GENERATESIs to be used when SPDXRef-A generates SPDXRef-B
    GeneratedFrom
    GENERATED_FROMIs to be used when SPDXRef-A was generated from SPDXRef-B
    AncestorOf
    ANCESTOR_OFIs to be used when SPDXRef-A is an ancestor (same lineage but pre-dates) SPDXRef-B
    DescendantOf
    DESCENDANT_OFIs to be used when SPDXRef-A is a descendant of (same lineage but postdates) SPDXRef-B
    VariantOf
    VARIANT_OFIs to be used when SPDXRef-A is a variant of (same lineage but not clear which came first) SPDXRef-B
    DistributionArtifact
    DISTRIBUTION_ARTIFACTIs to be used when distributing SPDXRef-A requires that SPDXRef-B also be distributed
    PatchFor
    PATCH_FORIs to be used when SPDXRef-A is a patch file for (to be applied to) SPDXRef-B
    PatchApplied
    PATCH_APPLIEDIs to be used when SPDXRef-A is a patch file that has been applied to SPDXRef-B
    CopyOf
    COPY_OFIs to be used when SPDXRef-A is an exact copy of SPDXRef-B
    FileAdded
    FILE_ADDEDIs to be used when SPDXRef-A is a file that was added to SPDXRef-B
    FileDeleted
    FILE_DELETEDIs to be used when SPDXRef-A is a file that was deleted from SPDXRef-B
    FileModified
    FILE_MODIFIEDIs to be used when SPDXRef-A is a file that was modified from SPDXRef-B
    ExpandedFromArchive
    EXPANDED_FROM_ARCHIVEIs to be used when SPDXRef-A is expanded from the archive SPDXRef-B
    DynamicLink
    DYNAMIC_LINKIs to be used when SPDXRef-A dynamically links to SPDXRef-B
    StaticLink
    STATIC_LINKIs to be used when SPDXRef-A statically links to SPDXRef-B
    DataFileOf
    DATA_FILE_OFIs to be used when SPDXRef-A is a data file used in SPDXRef-B
    TestCaseOf
    TEST_CASE_OFIs to be used when SPDXRef-A is a test case used in testing SPDXRef-B
    BuildToolOf
    BUILD_TOOL_OFIs to be used when SPDXRef-A is used to build SPDXRef-B
    DevToolOf
    DEV_TOOL_OFIs to be used when SPDXRef-A is used as a development tool for SPDXRef-B
    TestOf
    TEST_OFIs to be used when SPDXRef-A is used for testing SPDXRef-B
    TestToolOf
    TEST_TOOL_OFIs to be used when SPDXRef-A is used as a test tool for SPDXRef-B
    DocumentationOf
    DOCUMENTATION_OFIs to be used when SPDXRef-A provides documentation of SPDXRef-B
    OptionalComponentOf
    OPTIONAL_COMPONENT_OFIs to be used when SPDXRef-A is an optional component of SPDXRef-B
    MetafileOf
    METAFILE_OFIs to be used when SPDXRef-A is a metafile of SPDXRef-B
    PackageOf
    PACKAGE_OFIs to be used when SPDXRef-A is used as a package as part of SPDXRef-B
    Amends
    AMENDSIs to be used when (current) SPDXRef-DOCUMENT amends the SPDX information in SPDXRef-B
    PrerequisiteFor
    PREREQUISITE_FORIs to be used when SPDXRef-A is a prerequisite for SPDXRef-B
    HasPrerequisite
    HAS_PREREQUISITEIs to be used when SPDXRef-A has as a prerequisite SPDXRef-B
    Other
    OTHERIs to be used for a relationship which has not been defined in the formal SPDX specification. A description of the relationship should be included in the Relationship comments field
    RelationshipNoteTypeRelationshipTypeUnspecified
    RELATIONSHIP_TYPE_UNSPECIFIEDUnspecified
    RelationshipNoteTypeDescribes
    DESCRIBESIs to be used when SPDXRef-DOCUMENT describes SPDXRef-A
    RelationshipNoteTypeDescribedBy
    DESCRIBED_BYIs to be used when SPDXRef-A is described by SPDXREF-Document
    RelationshipNoteTypeContains
    CONTAINSIs to be used when SPDXRef-A contains SPDXRef-B
    RelationshipNoteTypeContainedBy
    CONTAINED_BYIs to be used when SPDXRef-A is contained by SPDXRef-B
    RelationshipNoteTypeDependsOn
    DEPENDS_ONIs to be used when SPDXRef-A depends on SPDXRef-B
    RelationshipNoteTypeDependencyOf
    DEPENDENCY_OFIs to be used when SPDXRef-A is dependency of SPDXRef-B
    RelationshipNoteTypeDependencyManifestOf
    DEPENDENCY_MANIFEST_OFIs to be used when SPDXRef-A is a manifest file that lists a set of dependencies for SPDXRef-B
    RelationshipNoteTypeBuildDependencyOf
    BUILD_DEPENDENCY_OFIs to be used when SPDXRef-A is a build dependency of SPDXRef-B
    RelationshipNoteTypeDevDependencyOf
    DEV_DEPENDENCY_OFIs to be used when SPDXRef-A is a development dependency of SPDXRef-B
    RelationshipNoteTypeOptionalDependencyOf
    OPTIONAL_DEPENDENCY_OFIs to be used when SPDXRef-A is an optional dependency of SPDXRef-B
    RelationshipNoteTypeProvidedDependencyOf
    PROVIDED_DEPENDENCY_OFIs to be used when SPDXRef-A is a to be provided dependency of SPDXRef-B
    RelationshipNoteTypeTestDependencyOf
    TEST_DEPENDENCY_OFIs to be used when SPDXRef-A is a test dependency of SPDXRef-B
    RelationshipNoteTypeRuntimeDependencyOf
    RUNTIME_DEPENDENCY_OFIs to be used when SPDXRef-A is a dependency required for the execution of SPDXRef-B
    RelationshipNoteTypeExampleOf
    EXAMPLE_OFIs to be used when SPDXRef-A is an example of SPDXRef-B
    RelationshipNoteTypeGenerates
    GENERATESIs to be used when SPDXRef-A generates SPDXRef-B
    RelationshipNoteTypeGeneratedFrom
    GENERATED_FROMIs to be used when SPDXRef-A was generated from SPDXRef-B
    RelationshipNoteTypeAncestorOf
    ANCESTOR_OFIs to be used when SPDXRef-A is an ancestor (same lineage but pre-dates) SPDXRef-B
    RelationshipNoteTypeDescendantOf
    DESCENDANT_OFIs to be used when SPDXRef-A is a descendant of (same lineage but postdates) SPDXRef-B
    RelationshipNoteTypeVariantOf
    VARIANT_OFIs to be used when SPDXRef-A is a variant of (same lineage but not clear which came first) SPDXRef-B
    RelationshipNoteTypeDistributionArtifact
    DISTRIBUTION_ARTIFACTIs to be used when distributing SPDXRef-A requires that SPDXRef-B also be distributed
    RelationshipNoteTypePatchFor
    PATCH_FORIs to be used when SPDXRef-A is a patch file for (to be applied to) SPDXRef-B
    RelationshipNoteTypePatchApplied
    PATCH_APPLIEDIs to be used when SPDXRef-A is a patch file that has been applied to SPDXRef-B
    RelationshipNoteTypeCopyOf
    COPY_OFIs to be used when SPDXRef-A is an exact copy of SPDXRef-B
    RelationshipNoteTypeFileAdded
    FILE_ADDEDIs to be used when SPDXRef-A is a file that was added to SPDXRef-B
    RelationshipNoteTypeFileDeleted
    FILE_DELETEDIs to be used when SPDXRef-A is a file that was deleted from SPDXRef-B
    RelationshipNoteTypeFileModified
    FILE_MODIFIEDIs to be used when SPDXRef-A is a file that was modified from SPDXRef-B
    RelationshipNoteTypeExpandedFromArchive
    EXPANDED_FROM_ARCHIVEIs to be used when SPDXRef-A is expanded from the archive SPDXRef-B
    RelationshipNoteTypeDynamicLink
    DYNAMIC_LINKIs to be used when SPDXRef-A dynamically links to SPDXRef-B
    RelationshipNoteTypeStaticLink
    STATIC_LINKIs to be used when SPDXRef-A statically links to SPDXRef-B
    RelationshipNoteTypeDataFileOf
    DATA_FILE_OFIs to be used when SPDXRef-A is a data file used in SPDXRef-B
    RelationshipNoteTypeTestCaseOf
    TEST_CASE_OFIs to be used when SPDXRef-A is a test case used in testing SPDXRef-B
    RelationshipNoteTypeBuildToolOf
    BUILD_TOOL_OFIs to be used when SPDXRef-A is used to build SPDXRef-B
    RelationshipNoteTypeDevToolOf
    DEV_TOOL_OFIs to be used when SPDXRef-A is used as a development tool for SPDXRef-B
    RelationshipNoteTypeTestOf
    TEST_OFIs to be used when SPDXRef-A is used for testing SPDXRef-B
    RelationshipNoteTypeTestToolOf
    TEST_TOOL_OFIs to be used when SPDXRef-A is used as a test tool for SPDXRef-B
    RelationshipNoteTypeDocumentationOf
    DOCUMENTATION_OFIs to be used when SPDXRef-A provides documentation of SPDXRef-B
    RelationshipNoteTypeOptionalComponentOf
    OPTIONAL_COMPONENT_OFIs to be used when SPDXRef-A is an optional component of SPDXRef-B
    RelationshipNoteTypeMetafileOf
    METAFILE_OFIs to be used when SPDXRef-A is a metafile of SPDXRef-B
    RelationshipNoteTypePackageOf
    PACKAGE_OFIs to be used when SPDXRef-A is used as a package as part of SPDXRef-B
    RelationshipNoteTypeAmends
    AMENDSIs to be used when (current) SPDXRef-DOCUMENT amends the SPDX information in SPDXRef-B
    RelationshipNoteTypePrerequisiteFor
    PREREQUISITE_FORIs to be used when SPDXRef-A is a prerequisite for SPDXRef-B
    RelationshipNoteTypeHasPrerequisite
    HAS_PREREQUISITEIs to be used when SPDXRef-A has as a prerequisite SPDXRef-B
    RelationshipNoteTypeOther
    OTHERIs to be used for a relationship which has not been defined in the formal SPDX specification. A description of the relationship should be included in the Relationship comments field
    RelationshipTypeUnspecified
    RELATIONSHIP_TYPE_UNSPECIFIEDUnspecified
    Describes
    DESCRIBESIs to be used when SPDXRef-DOCUMENT describes SPDXRef-A
    DescribedBy
    DESCRIBED_BYIs to be used when SPDXRef-A is described by SPDXREF-Document
    Contains
    CONTAINSIs to be used when SPDXRef-A contains SPDXRef-B
    ContainedBy
    CONTAINED_BYIs to be used when SPDXRef-A is contained by SPDXRef-B
    DependsOn
    DEPENDS_ONIs to be used when SPDXRef-A depends on SPDXRef-B
    DependencyOf
    DEPENDENCY_OFIs to be used when SPDXRef-A is dependency of SPDXRef-B
    DependencyManifestOf
    DEPENDENCY_MANIFEST_OFIs to be used when SPDXRef-A is a manifest file that lists a set of dependencies for SPDXRef-B
    BuildDependencyOf
    BUILD_DEPENDENCY_OFIs to be used when SPDXRef-A is a build dependency of SPDXRef-B
    DevDependencyOf
    DEV_DEPENDENCY_OFIs to be used when SPDXRef-A is a development dependency of SPDXRef-B
    OptionalDependencyOf
    OPTIONAL_DEPENDENCY_OFIs to be used when SPDXRef-A is an optional dependency of SPDXRef-B
    ProvidedDependencyOf
    PROVIDED_DEPENDENCY_OFIs to be used when SPDXRef-A is a to be provided dependency of SPDXRef-B
    TestDependencyOf
    TEST_DEPENDENCY_OFIs to be used when SPDXRef-A is a test dependency of SPDXRef-B
    RuntimeDependencyOf
    RUNTIME_DEPENDENCY_OFIs to be used when SPDXRef-A is a dependency required for the execution of SPDXRef-B
    ExampleOf
    EXAMPLE_OFIs to be used when SPDXRef-A is an example of SPDXRef-B
    Generates
    GENERATESIs to be used when SPDXRef-A generates SPDXRef-B
    GeneratedFrom
    GENERATED_FROMIs to be used when SPDXRef-A was generated from SPDXRef-B
    AncestorOf
    ANCESTOR_OFIs to be used when SPDXRef-A is an ancestor (same lineage but pre-dates) SPDXRef-B
    DescendantOf
    DESCENDANT_OFIs to be used when SPDXRef-A is a descendant of (same lineage but postdates) SPDXRef-B
    VariantOf
    VARIANT_OFIs to be used when SPDXRef-A is a variant of (same lineage but not clear which came first) SPDXRef-B
    DistributionArtifact
    DISTRIBUTION_ARTIFACTIs to be used when distributing SPDXRef-A requires that SPDXRef-B also be distributed
    PatchFor
    PATCH_FORIs to be used when SPDXRef-A is a patch file for (to be applied to) SPDXRef-B
    PatchApplied
    PATCH_APPLIEDIs to be used when SPDXRef-A is a patch file that has been applied to SPDXRef-B
    CopyOf
    COPY_OFIs to be used when SPDXRef-A is an exact copy of SPDXRef-B
    FileAdded
    FILE_ADDEDIs to be used when SPDXRef-A is a file that was added to SPDXRef-B
    FileDeleted
    FILE_DELETEDIs to be used when SPDXRef-A is a file that was deleted from SPDXRef-B
    FileModified
    FILE_MODIFIEDIs to be used when SPDXRef-A is a file that was modified from SPDXRef-B
    ExpandedFromArchive
    EXPANDED_FROM_ARCHIVEIs to be used when SPDXRef-A is expanded from the archive SPDXRef-B
    DynamicLink
    DYNAMIC_LINKIs to be used when SPDXRef-A dynamically links to SPDXRef-B
    StaticLink
    STATIC_LINKIs to be used when SPDXRef-A statically links to SPDXRef-B
    DataFileOf
    DATA_FILE_OFIs to be used when SPDXRef-A is a data file used in SPDXRef-B
    TestCaseOf
    TEST_CASE_OFIs to be used when SPDXRef-A is a test case used in testing SPDXRef-B
    BuildToolOf
    BUILD_TOOL_OFIs to be used when SPDXRef-A is used to build SPDXRef-B
    DevToolOf
    DEV_TOOL_OFIs to be used when SPDXRef-A is used as a development tool for SPDXRef-B
    TestOf
    TEST_OFIs to be used when SPDXRef-A is used for testing SPDXRef-B
    TestToolOf
    TEST_TOOL_OFIs to be used when SPDXRef-A is used as a test tool for SPDXRef-B
    DocumentationOf
    DOCUMENTATION_OFIs to be used when SPDXRef-A provides documentation of SPDXRef-B
    OptionalComponentOf
    OPTIONAL_COMPONENT_OFIs to be used when SPDXRef-A is an optional component of SPDXRef-B
    MetafileOf
    METAFILE_OFIs to be used when SPDXRef-A is a metafile of SPDXRef-B
    PackageOf
    PACKAGE_OFIs to be used when SPDXRef-A is used as a package as part of SPDXRef-B
    Amends
    AMENDSIs to be used when (current) SPDXRef-DOCUMENT amends the SPDX information in SPDXRef-B
    PrerequisiteFor
    PREREQUISITE_FORIs to be used when SPDXRef-A is a prerequisite for SPDXRef-B
    HasPrerequisite
    HAS_PREREQUISITEIs to be used when SPDXRef-A has as a prerequisite SPDXRef-B
    Other
    OTHERIs to be used for a relationship which has not been defined in the formal SPDX specification. A description of the relationship should be included in the Relationship comments field
    RelationshipTypeUnspecified
    RELATIONSHIP_TYPE_UNSPECIFIEDUnspecified
    Describes
    DESCRIBESIs to be used when SPDXRef-DOCUMENT describes SPDXRef-A
    DescribedBy
    DESCRIBED_BYIs to be used when SPDXRef-A is described by SPDXREF-Document
    Contains
    CONTAINSIs to be used when SPDXRef-A contains SPDXRef-B
    ContainedBy
    CONTAINED_BYIs to be used when SPDXRef-A is contained by SPDXRef-B
    DependsOn
    DEPENDS_ONIs to be used when SPDXRef-A depends on SPDXRef-B
    DependencyOf
    DEPENDENCY_OFIs to be used when SPDXRef-A is dependency of SPDXRef-B
    DependencyManifestOf
    DEPENDENCY_MANIFEST_OFIs to be used when SPDXRef-A is a manifest file that lists a set of dependencies for SPDXRef-B
    BuildDependencyOf
    BUILD_DEPENDENCY_OFIs to be used when SPDXRef-A is a build dependency of SPDXRef-B
    DevDependencyOf
    DEV_DEPENDENCY_OFIs to be used when SPDXRef-A is a development dependency of SPDXRef-B
    OptionalDependencyOf
    OPTIONAL_DEPENDENCY_OFIs to be used when SPDXRef-A is an optional dependency of SPDXRef-B
    ProvidedDependencyOf
    PROVIDED_DEPENDENCY_OFIs to be used when SPDXRef-A is a to be provided dependency of SPDXRef-B
    TestDependencyOf
    TEST_DEPENDENCY_OFIs to be used when SPDXRef-A is a test dependency of SPDXRef-B
    RuntimeDependencyOf
    RUNTIME_DEPENDENCY_OFIs to be used when SPDXRef-A is a dependency required for the execution of SPDXRef-B
    ExampleOf
    EXAMPLE_OFIs to be used when SPDXRef-A is an example of SPDXRef-B
    Generates
    GENERATESIs to be used when SPDXRef-A generates SPDXRef-B
    GeneratedFrom
    GENERATED_FROMIs to be used when SPDXRef-A was generated from SPDXRef-B
    AncestorOf
    ANCESTOR_OFIs to be used when SPDXRef-A is an ancestor (same lineage but pre-dates) SPDXRef-B
    DescendantOf
    DESCENDANT_OFIs to be used when SPDXRef-A is a descendant of (same lineage but postdates) SPDXRef-B
    VariantOf
    VARIANT_OFIs to be used when SPDXRef-A is a variant of (same lineage but not clear which came first) SPDXRef-B
    DistributionArtifact
    DISTRIBUTION_ARTIFACTIs to be used when distributing SPDXRef-A requires that SPDXRef-B also be distributed
    PatchFor
    PATCH_FORIs to be used when SPDXRef-A is a patch file for (to be applied to) SPDXRef-B
    PatchApplied
    PATCH_APPLIEDIs to be used when SPDXRef-A is a patch file that has been applied to SPDXRef-B
    CopyOf
    COPY_OFIs to be used when SPDXRef-A is an exact copy of SPDXRef-B
    FileAdded
    FILE_ADDEDIs to be used when SPDXRef-A is a file that was added to SPDXRef-B
    FileDeleted
    FILE_DELETEDIs to be used when SPDXRef-A is a file that was deleted from SPDXRef-B
    FileModified
    FILE_MODIFIEDIs to be used when SPDXRef-A is a file that was modified from SPDXRef-B
    ExpandedFromArchive
    EXPANDED_FROM_ARCHIVEIs to be used when SPDXRef-A is expanded from the archive SPDXRef-B
    DynamicLink
    DYNAMIC_LINKIs to be used when SPDXRef-A dynamically links to SPDXRef-B
    StaticLink
    STATIC_LINKIs to be used when SPDXRef-A statically links to SPDXRef-B
    DataFileOf
    DATA_FILE_OFIs to be used when SPDXRef-A is a data file used in SPDXRef-B
    TestCaseOf
    TEST_CASE_OFIs to be used when SPDXRef-A is a test case used in testing SPDXRef-B
    BuildToolOf
    BUILD_TOOL_OFIs to be used when SPDXRef-A is used to build SPDXRef-B
    DevToolOf
    DEV_TOOL_OFIs to be used when SPDXRef-A is used as a development tool for SPDXRef-B
    TestOf
    TEST_OFIs to be used when SPDXRef-A is used for testing SPDXRef-B
    TestToolOf
    TEST_TOOL_OFIs to be used when SPDXRef-A is used as a test tool for SPDXRef-B
    DocumentationOf
    DOCUMENTATION_OFIs to be used when SPDXRef-A provides documentation of SPDXRef-B
    OptionalComponentOf
    OPTIONAL_COMPONENT_OFIs to be used when SPDXRef-A is an optional component of SPDXRef-B
    MetafileOf
    METAFILE_OFIs to be used when SPDXRef-A is a metafile of SPDXRef-B
    PackageOf
    PACKAGE_OFIs to be used when SPDXRef-A is used as a package as part of SPDXRef-B
    Amends
    AMENDSIs to be used when (current) SPDXRef-DOCUMENT amends the SPDX information in SPDXRef-B
    PrerequisiteFor
    PREREQUISITE_FORIs to be used when SPDXRef-A is a prerequisite for SPDXRef-B
    HasPrerequisite
    HAS_PREREQUISITEIs to be used when SPDXRef-A has as a prerequisite SPDXRef-B
    Other
    OTHERIs to be used for a relationship which has not been defined in the formal SPDX specification. A description of the relationship should be included in the Relationship comments field
    RELATIONSHIP_TYPE_UNSPECIFIED
    RELATIONSHIP_TYPE_UNSPECIFIEDUnspecified
    DESCRIBES
    DESCRIBESIs to be used when SPDXRef-DOCUMENT describes SPDXRef-A
    DESCRIBED_BY
    DESCRIBED_BYIs to be used when SPDXRef-A is described by SPDXREF-Document
    CONTAINS
    CONTAINSIs to be used when SPDXRef-A contains SPDXRef-B
    CONTAINED_BY
    CONTAINED_BYIs to be used when SPDXRef-A is contained by SPDXRef-B
    DEPENDS_ON
    DEPENDS_ONIs to be used when SPDXRef-A depends on SPDXRef-B
    DEPENDENCY_OF
    DEPENDENCY_OFIs to be used when SPDXRef-A is dependency of SPDXRef-B
    DEPENDENCY_MANIFEST_OF
    DEPENDENCY_MANIFEST_OFIs to be used when SPDXRef-A is a manifest file that lists a set of dependencies for SPDXRef-B
    BUILD_DEPENDENCY_OF
    BUILD_DEPENDENCY_OFIs to be used when SPDXRef-A is a build dependency of SPDXRef-B
    DEV_DEPENDENCY_OF
    DEV_DEPENDENCY_OFIs to be used when SPDXRef-A is a development dependency of SPDXRef-B
    OPTIONAL_DEPENDENCY_OF
    OPTIONAL_DEPENDENCY_OFIs to be used when SPDXRef-A is an optional dependency of SPDXRef-B
    PROVIDED_DEPENDENCY_OF
    PROVIDED_DEPENDENCY_OFIs to be used when SPDXRef-A is a to be provided dependency of SPDXRef-B
    TEST_DEPENDENCY_OF
    TEST_DEPENDENCY_OFIs to be used when SPDXRef-A is a test dependency of SPDXRef-B
    RUNTIME_DEPENDENCY_OF
    RUNTIME_DEPENDENCY_OFIs to be used when SPDXRef-A is a dependency required for the execution of SPDXRef-B
    EXAMPLE_OF
    EXAMPLE_OFIs to be used when SPDXRef-A is an example of SPDXRef-B
    GENERATES
    GENERATESIs to be used when SPDXRef-A generates SPDXRef-B
    GENERATED_FROM
    GENERATED_FROMIs to be used when SPDXRef-A was generated from SPDXRef-B
    ANCESTOR_OF
    ANCESTOR_OFIs to be used when SPDXRef-A is an ancestor (same lineage but pre-dates) SPDXRef-B
    DESCENDANT_OF
    DESCENDANT_OFIs to be used when SPDXRef-A is a descendant of (same lineage but postdates) SPDXRef-B
    VARIANT_OF
    VARIANT_OFIs to be used when SPDXRef-A is a variant of (same lineage but not clear which came first) SPDXRef-B
    DISTRIBUTION_ARTIFACT
    DISTRIBUTION_ARTIFACTIs to be used when distributing SPDXRef-A requires that SPDXRef-B also be distributed
    PATCH_FOR
    PATCH_FORIs to be used when SPDXRef-A is a patch file for (to be applied to) SPDXRef-B
    PATCH_APPLIED
    PATCH_APPLIEDIs to be used when SPDXRef-A is a patch file that has been applied to SPDXRef-B
    COPY_OF
    COPY_OFIs to be used when SPDXRef-A is an exact copy of SPDXRef-B
    FILE_ADDED
    FILE_ADDEDIs to be used when SPDXRef-A is a file that was added to SPDXRef-B
    FILE_DELETED
    FILE_DELETEDIs to be used when SPDXRef-A is a file that was deleted from SPDXRef-B
    FILE_MODIFIED
    FILE_MODIFIEDIs to be used when SPDXRef-A is a file that was modified from SPDXRef-B
    EXPANDED_FROM_ARCHIVE
    EXPANDED_FROM_ARCHIVEIs to be used when SPDXRef-A is expanded from the archive SPDXRef-B
    DYNAMIC_LINK
    DYNAMIC_LINKIs to be used when SPDXRef-A dynamically links to SPDXRef-B
    STATIC_LINK
    STATIC_LINKIs to be used when SPDXRef-A statically links to SPDXRef-B
    DATA_FILE_OF
    DATA_FILE_OFIs to be used when SPDXRef-A is a data file used in SPDXRef-B
    TEST_CASE_OF
    TEST_CASE_OFIs to be used when SPDXRef-A is a test case used in testing SPDXRef-B
    BUILD_TOOL_OF
    BUILD_TOOL_OFIs to be used when SPDXRef-A is used to build SPDXRef-B
    DEV_TOOL_OF
    DEV_TOOL_OFIs to be used when SPDXRef-A is used as a development tool for SPDXRef-B
    TEST_OF
    TEST_OFIs to be used when SPDXRef-A is used for testing SPDXRef-B
    TEST_TOOL_OF
    TEST_TOOL_OFIs to be used when SPDXRef-A is used as a test tool for SPDXRef-B
    DOCUMENTATION_OF
    DOCUMENTATION_OFIs to be used when SPDXRef-A provides documentation of SPDXRef-B
    OPTIONAL_COMPONENT_OF
    OPTIONAL_COMPONENT_OFIs to be used when SPDXRef-A is an optional component of SPDXRef-B
    METAFILE_OF
    METAFILE_OFIs to be used when SPDXRef-A is a metafile of SPDXRef-B
    PACKAGE_OF
    PACKAGE_OFIs to be used when SPDXRef-A is used as a package as part of SPDXRef-B
    AMENDS
    AMENDSIs to be used when (current) SPDXRef-DOCUMENT amends the SPDX information in SPDXRef-B
    PREREQUISITE_FOR
    PREREQUISITE_FORIs to be used when SPDXRef-A is a prerequisite for SPDXRef-B
    HAS_PREREQUISITE
    HAS_PREREQUISITEIs to be used when SPDXRef-A has as a prerequisite SPDXRef-B
    OTHER
    OTHERIs to be used for a relationship which has not been defined in the formal SPDX specification. A description of the relationship should be included in the Relationship comments field
    "RELATIONSHIP_TYPE_UNSPECIFIED"
    RELATIONSHIP_TYPE_UNSPECIFIEDUnspecified
    "DESCRIBES"
    DESCRIBESIs to be used when SPDXRef-DOCUMENT describes SPDXRef-A
    "DESCRIBED_BY"
    DESCRIBED_BYIs to be used when SPDXRef-A is described by SPDXREF-Document
    "CONTAINS"
    CONTAINSIs to be used when SPDXRef-A contains SPDXRef-B
    "CONTAINED_BY"
    CONTAINED_BYIs to be used when SPDXRef-A is contained by SPDXRef-B
    "DEPENDS_ON"
    DEPENDS_ONIs to be used when SPDXRef-A depends on SPDXRef-B
    "DEPENDENCY_OF"
    DEPENDENCY_OFIs to be used when SPDXRef-A is dependency of SPDXRef-B
    "DEPENDENCY_MANIFEST_OF"
    DEPENDENCY_MANIFEST_OFIs to be used when SPDXRef-A is a manifest file that lists a set of dependencies for SPDXRef-B
    "BUILD_DEPENDENCY_OF"
    BUILD_DEPENDENCY_OFIs to be used when SPDXRef-A is a build dependency of SPDXRef-B
    "DEV_DEPENDENCY_OF"
    DEV_DEPENDENCY_OFIs to be used when SPDXRef-A is a development dependency of SPDXRef-B
    "OPTIONAL_DEPENDENCY_OF"
    OPTIONAL_DEPENDENCY_OFIs to be used when SPDXRef-A is an optional dependency of SPDXRef-B
    "PROVIDED_DEPENDENCY_OF"
    PROVIDED_DEPENDENCY_OFIs to be used when SPDXRef-A is a to be provided dependency of SPDXRef-B
    "TEST_DEPENDENCY_OF"
    TEST_DEPENDENCY_OFIs to be used when SPDXRef-A is a test dependency of SPDXRef-B
    "RUNTIME_DEPENDENCY_OF"
    RUNTIME_DEPENDENCY_OFIs to be used when SPDXRef-A is a dependency required for the execution of SPDXRef-B
    "EXAMPLE_OF"
    EXAMPLE_OFIs to be used when SPDXRef-A is an example of SPDXRef-B
    "GENERATES"
    GENERATESIs to be used when SPDXRef-A generates SPDXRef-B
    "GENERATED_FROM"
    GENERATED_FROMIs to be used when SPDXRef-A was generated from SPDXRef-B
    "ANCESTOR_OF"
    ANCESTOR_OFIs to be used when SPDXRef-A is an ancestor (same lineage but pre-dates) SPDXRef-B
    "DESCENDANT_OF"
    DESCENDANT_OFIs to be used when SPDXRef-A is a descendant of (same lineage but postdates) SPDXRef-B
    "VARIANT_OF"
    VARIANT_OFIs to be used when SPDXRef-A is a variant of (same lineage but not clear which came first) SPDXRef-B
    "DISTRIBUTION_ARTIFACT"
    DISTRIBUTION_ARTIFACTIs to be used when distributing SPDXRef-A requires that SPDXRef-B also be distributed
    "PATCH_FOR"
    PATCH_FORIs to be used when SPDXRef-A is a patch file for (to be applied to) SPDXRef-B
    "PATCH_APPLIED"
    PATCH_APPLIEDIs to be used when SPDXRef-A is a patch file that has been applied to SPDXRef-B
    "COPY_OF"
    COPY_OFIs to be used when SPDXRef-A is an exact copy of SPDXRef-B
    "FILE_ADDED"
    FILE_ADDEDIs to be used when SPDXRef-A is a file that was added to SPDXRef-B
    "FILE_DELETED"
    FILE_DELETEDIs to be used when SPDXRef-A is a file that was deleted from SPDXRef-B
    "FILE_MODIFIED"
    FILE_MODIFIEDIs to be used when SPDXRef-A is a file that was modified from SPDXRef-B
    "EXPANDED_FROM_ARCHIVE"
    EXPANDED_FROM_ARCHIVEIs to be used when SPDXRef-A is expanded from the archive SPDXRef-B
    "DYNAMIC_LINK"
    DYNAMIC_LINKIs to be used when SPDXRef-A dynamically links to SPDXRef-B
    "STATIC_LINK"
    STATIC_LINKIs to be used when SPDXRef-A statically links to SPDXRef-B
    "DATA_FILE_OF"
    DATA_FILE_OFIs to be used when SPDXRef-A is a data file used in SPDXRef-B
    "TEST_CASE_OF"
    TEST_CASE_OFIs to be used when SPDXRef-A is a test case used in testing SPDXRef-B
    "BUILD_TOOL_OF"
    BUILD_TOOL_OFIs to be used when SPDXRef-A is used to build SPDXRef-B
    "DEV_TOOL_OF"
    DEV_TOOL_OFIs to be used when SPDXRef-A is used as a development tool for SPDXRef-B
    "TEST_OF"
    TEST_OFIs to be used when SPDXRef-A is used for testing SPDXRef-B
    "TEST_TOOL_OF"
    TEST_TOOL_OFIs to be used when SPDXRef-A is used as a test tool for SPDXRef-B
    "DOCUMENTATION_OF"
    DOCUMENTATION_OFIs to be used when SPDXRef-A provides documentation of SPDXRef-B
    "OPTIONAL_COMPONENT_OF"
    OPTIONAL_COMPONENT_OFIs to be used when SPDXRef-A is an optional component of SPDXRef-B
    "METAFILE_OF"
    METAFILE_OFIs to be used when SPDXRef-A is a metafile of SPDXRef-B
    "PACKAGE_OF"
    PACKAGE_OFIs to be used when SPDXRef-A is used as a package as part of SPDXRef-B
    "AMENDS"
    AMENDSIs to be used when (current) SPDXRef-DOCUMENT amends the SPDX information in SPDXRef-B
    "PREREQUISITE_FOR"
    PREREQUISITE_FORIs to be used when SPDXRef-A is a prerequisite for SPDXRef-B
    "HAS_PREREQUISITE"
    HAS_PREREQUISITEIs to be used when SPDXRef-A has as a prerequisite SPDXRef-B
    "OTHER"
    OTHERIs to be used for a relationship which has not been defined in the formal SPDX specification. A description of the relationship should be included in the Relationship comments field

    Remediation, RemediationArgs

    Details string
    Contains a comprehensive human-readable discussion of the remediation.
    RemediationType Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.RemediationRemediationType
    The type of remediation that can be applied.
    RemediationUri Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelatedUrl
    Contains the URL where to obtain the remediation.
    Details string
    Contains a comprehensive human-readable discussion of the remediation.
    RemediationType RemediationRemediationType
    The type of remediation that can be applied.
    RemediationUri RelatedUrl
    Contains the URL where to obtain the remediation.
    details String
    Contains a comprehensive human-readable discussion of the remediation.
    remediationType RemediationRemediationType
    The type of remediation that can be applied.
    remediationUri RelatedUrl
    Contains the URL where to obtain the remediation.
    details string
    Contains a comprehensive human-readable discussion of the remediation.
    remediationType RemediationRemediationType
    The type of remediation that can be applied.
    remediationUri RelatedUrl
    Contains the URL where to obtain the remediation.
    details str
    Contains a comprehensive human-readable discussion of the remediation.
    remediation_type RemediationRemediationType
    The type of remediation that can be applied.
    remediation_uri RelatedUrl
    Contains the URL where to obtain the remediation.
    details String
    Contains a comprehensive human-readable discussion of the remediation.
    remediationType "REMEDIATION_TYPE_UNSPECIFIED" | "MITIGATION" | "NO_FIX_PLANNED" | "NONE_AVAILABLE" | "VENDOR_FIX" | "WORKAROUND"
    The type of remediation that can be applied.
    remediationUri Property Map
    Contains the URL where to obtain the remediation.

    RemediationRemediationType, RemediationRemediationTypeArgs

    RemediationTypeUnspecified
    REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
    Mitigation
    MITIGATIONA MITIGATION is available.
    NoFixPlanned
    NO_FIX_PLANNEDNo fix is planned.
    NoneAvailable
    NONE_AVAILABLENot available.
    VendorFix
    VENDOR_FIXA vendor fix is available.
    Workaround
    WORKAROUNDA workaround is available.
    RemediationRemediationTypeRemediationTypeUnspecified
    REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
    RemediationRemediationTypeMitigation
    MITIGATIONA MITIGATION is available.
    RemediationRemediationTypeNoFixPlanned
    NO_FIX_PLANNEDNo fix is planned.
    RemediationRemediationTypeNoneAvailable
    NONE_AVAILABLENot available.
    RemediationRemediationTypeVendorFix
    VENDOR_FIXA vendor fix is available.
    RemediationRemediationTypeWorkaround
    WORKAROUNDA workaround is available.
    RemediationTypeUnspecified
    REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
    Mitigation
    MITIGATIONA MITIGATION is available.
    NoFixPlanned
    NO_FIX_PLANNEDNo fix is planned.
    NoneAvailable
    NONE_AVAILABLENot available.
    VendorFix
    VENDOR_FIXA vendor fix is available.
    Workaround
    WORKAROUNDA workaround is available.
    RemediationTypeUnspecified
    REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
    Mitigation
    MITIGATIONA MITIGATION is available.
    NoFixPlanned
    NO_FIX_PLANNEDNo fix is planned.
    NoneAvailable
    NONE_AVAILABLENot available.
    VendorFix
    VENDOR_FIXA vendor fix is available.
    Workaround
    WORKAROUNDA workaround is available.
    REMEDIATION_TYPE_UNSPECIFIED
    REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
    MITIGATION
    MITIGATIONA MITIGATION is available.
    NO_FIX_PLANNED
    NO_FIX_PLANNEDNo fix is planned.
    NONE_AVAILABLE
    NONE_AVAILABLENot available.
    VENDOR_FIX
    VENDOR_FIXA vendor fix is available.
    WORKAROUND
    WORKAROUNDA workaround is available.
    "REMEDIATION_TYPE_UNSPECIFIED"
    REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
    "MITIGATION"
    MITIGATIONA MITIGATION is available.
    "NO_FIX_PLANNED"
    NO_FIX_PLANNEDNo fix is planned.
    "NONE_AVAILABLE"
    NONE_AVAILABLENot available.
    "VENDOR_FIX"
    VENDOR_FIXA vendor fix is available.
    "WORKAROUND"
    WORKAROUNDA workaround is available.

    RemediationResponse, RemediationResponseArgs

    Details string
    Contains a comprehensive human-readable discussion of the remediation.
    RemediationType string
    The type of remediation that can be applied.
    RemediationUri Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelatedUrlResponse
    Contains the URL where to obtain the remediation.
    Details string
    Contains a comprehensive human-readable discussion of the remediation.
    RemediationType string
    The type of remediation that can be applied.
    RemediationUri RelatedUrlResponse
    Contains the URL where to obtain the remediation.
    details String
    Contains a comprehensive human-readable discussion of the remediation.
    remediationType String
    The type of remediation that can be applied.
    remediationUri RelatedUrlResponse
    Contains the URL where to obtain the remediation.
    details string
    Contains a comprehensive human-readable discussion of the remediation.
    remediationType string
    The type of remediation that can be applied.
    remediationUri RelatedUrlResponse
    Contains the URL where to obtain the remediation.
    details str
    Contains a comprehensive human-readable discussion of the remediation.
    remediation_type str
    The type of remediation that can be applied.
    remediation_uri RelatedUrlResponse
    Contains the URL where to obtain the remediation.
    details String
    Contains a comprehensive human-readable discussion of the remediation.
    remediationType String
    The type of remediation that can be applied.
    remediationUri Property Map
    Contains the URL where to obtain the remediation.

    SBOMReferenceNote, SBOMReferenceNoteArgs

    Format string
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    Version string
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    Format string
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    Version string
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format String
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version String
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format string
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version string
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format str
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version str
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format String
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version String
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.

    SBOMReferenceNoteResponse, SBOMReferenceNoteResponseArgs

    Format string
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    Version string
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    Format string
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    Version string
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format String
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version String
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format string
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version string
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format str
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version str
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.
    format String
    The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
    version String
    The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.

    SigningKey, SigningKeyArgs

    KeyId string
    key_id is an identifier for the signing key.
    KeyScheme string
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    KeyType string
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    PublicKeyValue string
    This field contains the actual public key.
    KeyId string
    key_id is an identifier for the signing key.
    KeyScheme string
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    KeyType string
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    PublicKeyValue string
    This field contains the actual public key.
    keyId String
    key_id is an identifier for the signing key.
    keyScheme String
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    keyType String
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    publicKeyValue String
    This field contains the actual public key.
    keyId string
    key_id is an identifier for the signing key.
    keyScheme string
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    keyType string
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    publicKeyValue string
    This field contains the actual public key.
    key_id str
    key_id is an identifier for the signing key.
    key_scheme str
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    key_type str
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    public_key_value str
    This field contains the actual public key.
    keyId String
    key_id is an identifier for the signing key.
    keyScheme String
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    keyType String
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    publicKeyValue String
    This field contains the actual public key.

    SigningKeyResponse, SigningKeyResponseArgs

    KeyId string
    key_id is an identifier for the signing key.
    KeyScheme string
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    KeyType string
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    PublicKeyValue string
    This field contains the actual public key.
    KeyId string
    key_id is an identifier for the signing key.
    KeyScheme string
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    KeyType string
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    PublicKeyValue string
    This field contains the actual public key.
    keyId String
    key_id is an identifier for the signing key.
    keyScheme String
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    keyType String
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    publicKeyValue String
    This field contains the actual public key.
    keyId string
    key_id is an identifier for the signing key.
    keyScheme string
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    keyType string
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    publicKeyValue string
    This field contains the actual public key.
    key_id str
    key_id is an identifier for the signing key.
    key_scheme str
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    key_type str
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    public_key_value str
    This field contains the actual public key.
    keyId String
    key_id is an identifier for the signing key.
    keyScheme String
    This field contains the corresponding signature scheme. Eg: "rsassa-pss-sha256".
    keyType String
    This field identifies the specific signing method. Eg: "rsa", "ed25519", and "ecdsa".
    publicKeyValue String
    This field contains the actual public key.

    Version, VersionArgs

    Kind Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.VersionKind
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    Epoch int
    Used to correct mistakes in the version numbering scheme.
    Inclusive bool
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    Name string
    Required only when version kind is NORMAL. The main part of the version name.
    Revision string
    The iteration of the package build from the above version.
    Kind VersionKind
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    Epoch int
    Used to correct mistakes in the version numbering scheme.
    Inclusive bool
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    Name string
    Required only when version kind is NORMAL. The main part of the version name.
    Revision string
    The iteration of the package build from the above version.
    kind VersionKind
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    epoch Integer
    Used to correct mistakes in the version numbering scheme.
    inclusive Boolean
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    name String
    Required only when version kind is NORMAL. The main part of the version name.
    revision String
    The iteration of the package build from the above version.
    kind VersionKind
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    epoch number
    Used to correct mistakes in the version numbering scheme.
    inclusive boolean
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    name string
    Required only when version kind is NORMAL. The main part of the version name.
    revision string
    The iteration of the package build from the above version.
    kind VersionKind
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    epoch int
    Used to correct mistakes in the version numbering scheme.
    inclusive bool
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    name str
    Required only when version kind is NORMAL. The main part of the version name.
    revision str
    The iteration of the package build from the above version.
    kind "VERSION_KIND_UNSPECIFIED" | "NORMAL" | "MINIMUM" | "MAXIMUM"
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    epoch Number
    Used to correct mistakes in the version numbering scheme.
    inclusive Boolean
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    name String
    Required only when version kind is NORMAL. The main part of the version name.
    revision String
    The iteration of the package build from the above version.

    VersionKind, VersionKindArgs

    VersionKindUnspecified
    VERSION_KIND_UNSPECIFIEDUnknown.
    Normal
    NORMALA standard package version.
    Minimum
    MINIMUMA special version representing negative infinity.
    Maximum
    MAXIMUMA special version representing positive infinity.
    VersionKindVersionKindUnspecified
    VERSION_KIND_UNSPECIFIEDUnknown.
    VersionKindNormal
    NORMALA standard package version.
    VersionKindMinimum
    MINIMUMA special version representing negative infinity.
    VersionKindMaximum
    MAXIMUMA special version representing positive infinity.
    VersionKindUnspecified
    VERSION_KIND_UNSPECIFIEDUnknown.
    Normal
    NORMALA standard package version.
    Minimum
    MINIMUMA special version representing negative infinity.
    Maximum
    MAXIMUMA special version representing positive infinity.
    VersionKindUnspecified
    VERSION_KIND_UNSPECIFIEDUnknown.
    Normal
    NORMALA standard package version.
    Minimum
    MINIMUMA special version representing negative infinity.
    Maximum
    MAXIMUMA special version representing positive infinity.
    VERSION_KIND_UNSPECIFIED
    VERSION_KIND_UNSPECIFIEDUnknown.
    NORMAL
    NORMALA standard package version.
    MINIMUM
    MINIMUMA special version representing negative infinity.
    MAXIMUM
    MAXIMUMA special version representing positive infinity.
    "VERSION_KIND_UNSPECIFIED"
    VERSION_KIND_UNSPECIFIEDUnknown.
    "NORMAL"
    NORMALA standard package version.
    "MINIMUM"
    MINIMUMA special version representing negative infinity.
    "MAXIMUM"
    MAXIMUMA special version representing positive infinity.

    VersionResponse, VersionResponseArgs

    Epoch int
    Used to correct mistakes in the version numbering scheme.
    Inclusive bool
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    Kind string
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    Name string
    Required only when version kind is NORMAL. The main part of the version name.
    Revision string
    The iteration of the package build from the above version.
    Epoch int
    Used to correct mistakes in the version numbering scheme.
    Inclusive bool
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    Kind string
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    Name string
    Required only when version kind is NORMAL. The main part of the version name.
    Revision string
    The iteration of the package build from the above version.
    epoch Integer
    Used to correct mistakes in the version numbering scheme.
    inclusive Boolean
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    kind String
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    name String
    Required only when version kind is NORMAL. The main part of the version name.
    revision String
    The iteration of the package build from the above version.
    epoch number
    Used to correct mistakes in the version numbering scheme.
    inclusive boolean
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    kind string
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    name string
    Required only when version kind is NORMAL. The main part of the version name.
    revision string
    The iteration of the package build from the above version.
    epoch int
    Used to correct mistakes in the version numbering scheme.
    inclusive bool
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    kind str
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    name str
    Required only when version kind is NORMAL. The main part of the version name.
    revision str
    The iteration of the package build from the above version.
    epoch Number
    Used to correct mistakes in the version numbering scheme.
    inclusive Boolean
    Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
    kind String
    Distinguishes between sentinel MIN/MAX versions and normal versions.
    name String
    Required only when version kind is NORMAL. The main part of the version name.
    revision String
    The iteration of the package build from the above version.

    Vulnerability, VulnerabilityArgs

    CvssScore double
    The CVSS score for this vulnerability.
    CvssV2 Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.CVSS
    The full description of the CVSS for version 2.
    CvssV3 Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.CVSSv3
    The full description of the CVSS for version 3.
    CvssVersion Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.VulnerabilityCvssVersion
    CVSS version used to populate cvss_score and severity.
    Cwe List<string>
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    Details List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Detail>
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    Severity Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.VulnerabilitySeverity
    Note provider assigned impact of the vulnerability.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    WindowsDetails List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.WindowsDetail>
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    CvssScore float64
    The CVSS score for this vulnerability.
    CvssV2 CVSS
    The full description of the CVSS for version 2.
    CvssV3 CVSSv3
    The full description of the CVSS for version 3.
    CvssVersion VulnerabilityCvssVersion
    CVSS version used to populate cvss_score and severity.
    Cwe []string
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    Details []Detail
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    Severity VulnerabilitySeverity
    Note provider assigned impact of the vulnerability.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    WindowsDetails []WindowsDetail
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvssScore Double
    The CVSS score for this vulnerability.
    cvssV2 CVSS
    The full description of the CVSS for version 2.
    cvssV3 CVSSv3
    The full description of the CVSS for version 3.
    cvssVersion VulnerabilityCvssVersion
    CVSS version used to populate cvss_score and severity.
    cwe List<String>
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    details List<Detail>
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    severity VulnerabilitySeverity
    Note provider assigned impact of the vulnerability.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windowsDetails List<WindowsDetail>
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvssScore number
    The CVSS score for this vulnerability.
    cvssV2 CVSS
    The full description of the CVSS for version 2.
    cvssV3 CVSSv3
    The full description of the CVSS for version 3.
    cvssVersion VulnerabilityCvssVersion
    CVSS version used to populate cvss_score and severity.
    cwe string[]
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    details Detail[]
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    severity VulnerabilitySeverity
    Note provider assigned impact of the vulnerability.
    sourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windowsDetails WindowsDetail[]
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvss_score float
    The CVSS score for this vulnerability.
    cvss_v2 CVSS
    The full description of the CVSS for version 2.
    cvss_v3 CVSSv3
    The full description of the CVSS for version 3.
    cvss_version VulnerabilityCvssVersion
    CVSS version used to populate cvss_score and severity.
    cwe Sequence[str]
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    details Sequence[Detail]
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    severity VulnerabilitySeverity
    Note provider assigned impact of the vulnerability.
    source_update_time str
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windows_details Sequence[WindowsDetail]
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvssScore Number
    The CVSS score for this vulnerability.
    cvssV2 Property Map
    The full description of the CVSS for version 2.
    cvssV3 Property Map
    The full description of the CVSS for version 3.
    cvssVersion "CVSS_VERSION_UNSPECIFIED" | "CVSS_VERSION_2" | "CVSS_VERSION_3"
    CVSS version used to populate cvss_score and severity.
    cwe List<String>
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    details List<Property Map>
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    severity "SEVERITY_UNSPECIFIED" | "MINIMAL" | "LOW" | "MEDIUM" | "HIGH" | "CRITICAL"
    Note provider assigned impact of the vulnerability.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windowsDetails List<Property Map>
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.

    VulnerabilityAssessmentNote, VulnerabilityAssessmentNoteArgs

    Assessment Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Assessment
    Represents a vulnerability assessment for the product.
    LanguageCode string
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    LongDescription string
    A detailed description of this Vex.
    Product Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Product
    The product affected by this vex.
    Publisher Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Publisher
    Publisher details of this Note.
    ShortDescription string
    A one sentence description of this Vex.
    Title string
    The title of the note. E.g. Vex-Debian-11.4
    Assessment Assessment
    Represents a vulnerability assessment for the product.
    LanguageCode string
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    LongDescription string
    A detailed description of this Vex.
    Product Product
    The product affected by this vex.
    Publisher Publisher
    Publisher details of this Note.
    ShortDescription string
    A one sentence description of this Vex.
    Title string
    The title of the note. E.g. Vex-Debian-11.4
    assessment Assessment
    Represents a vulnerability assessment for the product.
    languageCode String
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    longDescription String
    A detailed description of this Vex.
    product Product
    The product affected by this vex.
    publisher Publisher
    Publisher details of this Note.
    shortDescription String
    A one sentence description of this Vex.
    title String
    The title of the note. E.g. Vex-Debian-11.4
    assessment Assessment
    Represents a vulnerability assessment for the product.
    languageCode string
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    longDescription string
    A detailed description of this Vex.
    product Product
    The product affected by this vex.
    publisher Publisher
    Publisher details of this Note.
    shortDescription string
    A one sentence description of this Vex.
    title string
    The title of the note. E.g. Vex-Debian-11.4
    assessment Assessment
    Represents a vulnerability assessment for the product.
    language_code str
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    long_description str
    A detailed description of this Vex.
    product Product
    The product affected by this vex.
    publisher Publisher
    Publisher details of this Note.
    short_description str
    A one sentence description of this Vex.
    title str
    The title of the note. E.g. Vex-Debian-11.4
    assessment Property Map
    Represents a vulnerability assessment for the product.
    languageCode String
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    longDescription String
    A detailed description of this Vex.
    product Property Map
    The product affected by this vex.
    publisher Property Map
    Publisher details of this Note.
    shortDescription String
    A one sentence description of this Vex.
    title String
    The title of the note. E.g. Vex-Debian-11.4

    VulnerabilityAssessmentNoteResponse, VulnerabilityAssessmentNoteResponseArgs

    Assessment Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.AssessmentResponse
    Represents a vulnerability assessment for the product.
    LanguageCode string
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    LongDescription string
    A detailed description of this Vex.
    Product Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ProductResponse
    The product affected by this vex.
    Publisher Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.PublisherResponse
    Publisher details of this Note.
    ShortDescription string
    A one sentence description of this Vex.
    Title string
    The title of the note. E.g. Vex-Debian-11.4
    Assessment AssessmentResponse
    Represents a vulnerability assessment for the product.
    LanguageCode string
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    LongDescription string
    A detailed description of this Vex.
    Product ProductResponse
    The product affected by this vex.
    Publisher PublisherResponse
    Publisher details of this Note.
    ShortDescription string
    A one sentence description of this Vex.
    Title string
    The title of the note. E.g. Vex-Debian-11.4
    assessment AssessmentResponse
    Represents a vulnerability assessment for the product.
    languageCode String
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    longDescription String
    A detailed description of this Vex.
    product ProductResponse
    The product affected by this vex.
    publisher PublisherResponse
    Publisher details of this Note.
    shortDescription String
    A one sentence description of this Vex.
    title String
    The title of the note. E.g. Vex-Debian-11.4
    assessment AssessmentResponse
    Represents a vulnerability assessment for the product.
    languageCode string
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    longDescription string
    A detailed description of this Vex.
    product ProductResponse
    The product affected by this vex.
    publisher PublisherResponse
    Publisher details of this Note.
    shortDescription string
    A one sentence description of this Vex.
    title string
    The title of the note. E.g. Vex-Debian-11.4
    assessment AssessmentResponse
    Represents a vulnerability assessment for the product.
    language_code str
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    long_description str
    A detailed description of this Vex.
    product ProductResponse
    The product affected by this vex.
    publisher PublisherResponse
    Publisher details of this Note.
    short_description str
    A one sentence description of this Vex.
    title str
    The title of the note. E.g. Vex-Debian-11.4
    assessment Property Map
    Represents a vulnerability assessment for the product.
    languageCode String
    Identifies the language used by this document, corresponding to IETF BCP 47 / RFC 5646.
    longDescription String
    A detailed description of this Vex.
    product Property Map
    The product affected by this vex.
    publisher Property Map
    Publisher details of this Note.
    shortDescription String
    A one sentence description of this Vex.
    title String
    The title of the note. E.g. Vex-Debian-11.4

    VulnerabilityCvssVersion, VulnerabilityCvssVersionArgs

    CvssVersionUnspecified
    CVSS_VERSION_UNSPECIFIED
    CvssVersion2
    CVSS_VERSION_2
    CvssVersion3
    CVSS_VERSION_3
    VulnerabilityCvssVersionCvssVersionUnspecified
    CVSS_VERSION_UNSPECIFIED
    VulnerabilityCvssVersionCvssVersion2
    CVSS_VERSION_2
    VulnerabilityCvssVersionCvssVersion3
    CVSS_VERSION_3
    CvssVersionUnspecified
    CVSS_VERSION_UNSPECIFIED
    CvssVersion2
    CVSS_VERSION_2
    CvssVersion3
    CVSS_VERSION_3
    CvssVersionUnspecified
    CVSS_VERSION_UNSPECIFIED
    CvssVersion2
    CVSS_VERSION_2
    CvssVersion3
    CVSS_VERSION_3
    CVSS_VERSION_UNSPECIFIED
    CVSS_VERSION_UNSPECIFIED
    CVSS_VERSION2
    CVSS_VERSION_2
    CVSS_VERSION3
    CVSS_VERSION_3
    "CVSS_VERSION_UNSPECIFIED"
    CVSS_VERSION_UNSPECIFIED
    "CVSS_VERSION_2"
    CVSS_VERSION_2
    "CVSS_VERSION_3"
    CVSS_VERSION_3

    VulnerabilityLocation, VulnerabilityLocationArgs

    CpeUri string
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    Package string
    The package being described.
    Version Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.Version
    The version of the package being described.
    CpeUri string
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    Package string
    The package being described.
    Version Version
    The version of the package being described.
    cpeUri String
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    package_ String
    The package being described.
    version Version
    The version of the package being described.
    cpeUri string
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    package string
    The package being described.
    version Version
    The version of the package being described.
    cpe_uri str
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    package str
    The package being described.
    version Version
    The version of the package being described.
    cpeUri String
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    package String
    The package being described.
    version Property Map
    The version of the package being described.

    VulnerabilityLocationResponse, VulnerabilityLocationResponseArgs

    CpeUri string
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    Package string
    The package being described.
    Version Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionResponse
    The version of the package being described.
    CpeUri string
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    Package string
    The package being described.
    Version VersionResponse
    The version of the package being described.
    cpeUri String
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    package_ String
    The package being described.
    version VersionResponse
    The version of the package being described.
    cpeUri string
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    package string
    The package being described.
    version VersionResponse
    The version of the package being described.
    cpe_uri str
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    package str
    The package being described.
    version VersionResponse
    The version of the package being described.
    cpeUri String
    The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
    package String
    The package being described.
    version Property Map
    The version of the package being described.

    VulnerabilityResponse, VulnerabilityResponseArgs

    CvssScore double
    The CVSS score for this vulnerability.
    CvssV2 Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.CVSSResponse
    The full description of the CVSS for version 2.
    CvssV3 Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.CVSSv3Response
    The full description of the CVSS for version 3.
    CvssVersion string
    CVSS version used to populate cvss_score and severity.
    Cwe List<string>
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    Details List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DetailResponse>
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    Severity string
    Note provider assigned impact of the vulnerability.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    WindowsDetails List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.WindowsDetailResponse>
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    CvssScore float64
    The CVSS score for this vulnerability.
    CvssV2 CVSSResponse
    The full description of the CVSS for version 2.
    CvssV3 CVSSv3Response
    The full description of the CVSS for version 3.
    CvssVersion string
    CVSS version used to populate cvss_score and severity.
    Cwe []string
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    Details []DetailResponse
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    Severity string
    Note provider assigned impact of the vulnerability.
    SourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    WindowsDetails []WindowsDetailResponse
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvssScore Double
    The CVSS score for this vulnerability.
    cvssV2 CVSSResponse
    The full description of the CVSS for version 2.
    cvssV3 CVSSv3Response
    The full description of the CVSS for version 3.
    cvssVersion String
    CVSS version used to populate cvss_score and severity.
    cwe List<String>
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    details List<DetailResponse>
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    severity String
    Note provider assigned impact of the vulnerability.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windowsDetails List<WindowsDetailResponse>
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvssScore number
    The CVSS score for this vulnerability.
    cvssV2 CVSSResponse
    The full description of the CVSS for version 2.
    cvssV3 CVSSv3Response
    The full description of the CVSS for version 3.
    cvssVersion string
    CVSS version used to populate cvss_score and severity.
    cwe string[]
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    details DetailResponse[]
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    severity string
    Note provider assigned impact of the vulnerability.
    sourceUpdateTime string
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windowsDetails WindowsDetailResponse[]
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvss_score float
    The CVSS score for this vulnerability.
    cvss_v2 CVSSResponse
    The full description of the CVSS for version 2.
    cvss_v3 CVSSv3Response
    The full description of the CVSS for version 3.
    cvss_version str
    CVSS version used to populate cvss_score and severity.
    cwe Sequence[str]
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    details Sequence[DetailResponse]
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    severity str
    Note provider assigned impact of the vulnerability.
    source_update_time str
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windows_details Sequence[WindowsDetailResponse]
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
    cvssScore Number
    The CVSS score for this vulnerability.
    cvssV2 Property Map
    The full description of the CVSS for version 2.
    cvssV3 Property Map
    The full description of the CVSS for version 3.
    cvssVersion String
    CVSS version used to populate cvss_score and severity.
    cwe List<String>
    A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html
    details List<Property Map>
    All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in.
    severity String
    Note provider assigned impact of the vulnerability.
    sourceUpdateTime String
    The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
    windowsDetails List<Property Map>
    Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.

    VulnerabilitySeverity, VulnerabilitySeverityArgs

    SeverityUnspecified
    SEVERITY_UNSPECIFIEDUnknown.
    Minimal
    MINIMALMinimal severity.
    Low
    LOWLow severity.
    Medium
    MEDIUMMedium severity.
    High
    HIGHHigh severity.
    Critical
    CRITICALCritical severity.
    VulnerabilitySeveritySeverityUnspecified
    SEVERITY_UNSPECIFIEDUnknown.
    VulnerabilitySeverityMinimal
    MINIMALMinimal severity.
    VulnerabilitySeverityLow
    LOWLow severity.
    VulnerabilitySeverityMedium
    MEDIUMMedium severity.
    VulnerabilitySeverityHigh
    HIGHHigh severity.
    VulnerabilitySeverityCritical
    CRITICALCritical severity.
    SeverityUnspecified
    SEVERITY_UNSPECIFIEDUnknown.
    Minimal
    MINIMALMinimal severity.
    Low
    LOWLow severity.
    Medium
    MEDIUMMedium severity.
    High
    HIGHHigh severity.
    Critical
    CRITICALCritical severity.
    SeverityUnspecified
    SEVERITY_UNSPECIFIEDUnknown.
    Minimal
    MINIMALMinimal severity.
    Low
    LOWLow severity.
    Medium
    MEDIUMMedium severity.
    High
    HIGHHigh severity.
    Critical
    CRITICALCritical severity.
    SEVERITY_UNSPECIFIED
    SEVERITY_UNSPECIFIEDUnknown.
    MINIMAL
    MINIMALMinimal severity.
    LOW
    LOWLow severity.
    MEDIUM
    MEDIUMMedium severity.
    HIGH
    HIGHHigh severity.
    CRITICAL
    CRITICALCritical severity.
    "SEVERITY_UNSPECIFIED"
    SEVERITY_UNSPECIFIEDUnknown.
    "MINIMAL"
    MINIMALMinimal severity.
    "LOW"
    LOWLow severity.
    "MEDIUM"
    MEDIUMMedium severity.
    "HIGH"
    HIGHHigh severity.
    "CRITICAL"
    CRITICALCritical severity.

    WindowsDetail, WindowsDetailArgs

    CpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    FixingKbs List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.KnowledgeBase>
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    Name string
    The name of the vulnerability.
    Description string
    The description of the vulnerability.
    CpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    FixingKbs []KnowledgeBase
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    Name string
    The name of the vulnerability.
    Description string
    The description of the vulnerability.
    cpeUri String
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    fixingKbs List<KnowledgeBase>
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    name String
    The name of the vulnerability.
    description String
    The description of the vulnerability.
    cpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    fixingKbs KnowledgeBase[]
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    name string
    The name of the vulnerability.
    description string
    The description of the vulnerability.
    cpe_uri str
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    fixing_kbs Sequence[KnowledgeBase]
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    name str
    The name of the vulnerability.
    description str
    The description of the vulnerability.
    cpeUri String
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    fixingKbs List<Property Map>
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    name String
    The name of the vulnerability.
    description String
    The description of the vulnerability.

    WindowsDetailResponse, WindowsDetailResponseArgs

    CpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    Description string
    The description of the vulnerability.
    FixingKbs List<Pulumi.GoogleNative.ContainerAnalysis.V1Beta1.Inputs.KnowledgeBaseResponse>
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    Name string
    The name of the vulnerability.
    CpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    Description string
    The description of the vulnerability.
    FixingKbs []KnowledgeBaseResponse
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    Name string
    The name of the vulnerability.
    cpeUri String
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    description String
    The description of the vulnerability.
    fixingKbs List<KnowledgeBaseResponse>
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    name String
    The name of the vulnerability.
    cpeUri string
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    description string
    The description of the vulnerability.
    fixingKbs KnowledgeBaseResponse[]
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    name string
    The name of the vulnerability.
    cpe_uri str
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    description str
    The description of the vulnerability.
    fixing_kbs Sequence[KnowledgeBaseResponse]
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    name str
    The name of the vulnerability.
    cpeUri String
    The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
    description String
    The description of the vulnerability.
    fixingKbs List<Property Map>
    The names of the KBs which have hotfixes to mitigate this vulnerability. Note that there may be multiple hotfixes (and thus multiple KBs) that mitigate a given vulnerability. Currently any listed kb's presence is considered a fix.
    name String
    The name of the vulnerability.

    Package Details

    Repository
    Google Cloud Native pulumi/pulumi-google-native
    License
    Apache-2.0
    google-native logo

    Google Cloud Native is in preview. Google Cloud Classic is fully supported.

    Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi