Versions Compared

Old Version 64

changes.mady.by.user Michelle Friedman

Saved on

compared with

New Version 65

changes.mady.by.user Michelle Friedman

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Active - Alerts that are in active state appear in the dashboards and reportss. This is the default status.

  • Ignored - Alerts marked as ignored will not appear in dashboards and reportss. You can reactivate ignored alerts, whereby they will revert to active state and be restored in the application and re-appear in dashboards and reportss.

  • Resolved - Alerts that are no longer relevant will have the resolved status.

...

Parameter

Value

name

ID in the vulnerability DB (CVE or WS)

type

CVE or WS

severity

Severity of the CVSS 2 vulnerability (low, medium, high)

score

CVSS 2 base score [0.0 - 10.0]

cvss3_severity

CVSS 3 score severity: 

  • 0-3.9 = Low 

  • 4-6.9 = Medium 

  • 7-10 = High

cvss3_score

CVSS 3 base score [0.0 - 10.0]

scoreMetadataVector

See specification link

publishDate

Original release date

url

URL of the CVE

description

Short description of the security vulnerability

topFix

Top recommended fix (when available)

allFixes

List of all fixes (when available)

fixResolutionText

The actual resolution text to display for the given fix

Vulnerability-Based Security Alerts

...

ing

For details of the API requests for generating reports s of all security alerts detailed by vulnerability (in the scope of organization, product, or project), see https://whitesource.atlassian.net/wiki/spaces/WD/pages/1730543766/Reports+API#Get-Security-Alerts-by-Vulnerability-Report.

For details on the API requests for generating reports s of all vulnerability-based alerts that are associated with a specific library (in the scope of organization, product, or project), see https://whitesource.atlassian.net/wiki/spaces/WD/pages/1730543766/Reports+API#Get-Security-Alerts-by-Library-Report.  

...

By default, alerts are in active state - meaning they will appear in dashboards and reportss. If they are no longer relevant, you can change their status to ignored and they will no longer be displayed.

...

Code Block
{
  "requestType":"ignoreAlerts",
  "orgToken": "organization_api_key",
  "userKey": "user_key",
  "alertUuids": ["22f72c74-c2ea-4ed9-b37f-75d77bc52045","22f72c74174a332b-c2ea7470-4ed9436b-b37f82fe-75d77bc52046c6e4644362e0"],
  "comments": "alerts not relevant to service"
}

...

Code Block
{
  "requestType":"ignoreAlerts",
  "productToken": "product_key",
  "userKey": "user_key",
  "alertUuids": ["22f72c74-c2ea-4ed9-b37f-75d77bc52045","22f72c74174a332b-c2ea7470-4ed9436b-b37f82fe-75d77bc52046c6e4644362e0"],
  "comments": "alerts not relevant to service"
}

...

Code Block
{
  "requestType":"ignoreAlerts",
  "projectToken": "project_key",
  "userKey": "user_key",
  "alertUuids": ["22f72c74-c2ea-4ed9-b37f-75d77bc52045","22f72c74174a332b-c2ea7470-4ed9436b-b37f82fe-75d77bc52046c6e4644362e0"],
  "comments": "alerts not relevant to service"
}

...