/AWS1/CL_SAGFINDING¶
Represents a security finding discovered during a pentest job. A finding contains details about a vulnerability, including its risk level, confidence, and remediation status.
CONSTRUCTOR¶
IMPORTING¶
Required arguments:¶
iv_findingid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The unique identifier of the finding.
iv_agentspaceid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The unique identifier of the agent space associated with the finding.
Optional arguments:¶
iv_pentestid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The unique identifier of the pentest associated with the finding.
iv_pentestjobid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The unique identifier of the pentest job that produced the finding.
iv_codereviewid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The unique identifier of the code review associated with the finding.
iv_codereviewjobid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The unique identifier of the code review job that produced the finding.
iv_taskid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The unique identifier of the task that produced the finding.
iv_name TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The name of the finding.
iv_description TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
A description of the finding.
iv_status TYPE /AWS1/SAGFINDINGSTATUS /AWS1/SAGFINDINGSTATUS¶
The current status of the finding. Valid values include ACTIVE, RESOLVED, ACCEPTED, and FALSE_POSITIVE.
iv_risktype TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The type of security risk identified by the finding.
iv_risklevel TYPE /AWS1/SAGRISKLEVEL /AWS1/SAGRISKLEVEL¶
The risk level of the finding. Valid values include UNKNOWN, INFORMATIONAL, LOW, MEDIUM, HIGH, and CRITICAL.
iv_riskscore TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The numerical risk score of the finding.
iv_reasoning TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The reasoning behind the finding, explaining why it was identified as a vulnerability.
iv_confidence TYPE /AWS1/SAGCONFIDENCELEVEL /AWS1/SAGCONFIDENCELEVEL¶
The confidence level of the finding. Valid values include FALSE_POSITIVE, UNCONFIRMED, LOW, MEDIUM, and HIGH.
iv_attackscript TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The attack script used to reproduce the finding.
io_coderemediationtask TYPE REF TO /AWS1/CL_SAGCODEREMEDTASK /AWS1/CL_SAGCODEREMEDTASK¶
The code remediation task associated with the finding, if code remediation was initiated.
iv_lastupdatedby TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING¶
The identifier of the entity that last updated the finding.
it_codelocations TYPE /AWS1/CL_SAGCODELOCATION=>TT_CODELOCATIONLIST TT_CODELOCATIONLIST¶
The file locations involved in the vulnerability, as reported by the code scanner.
io_verificationscript TYPE REF TO /AWS1/CL_SAGVERIFICATIONSCRIPT /AWS1/CL_SAGVERIFICATIONSCRIPT¶
The verification script metadata for reproducing the finding, including download URL, instructions, and required environment variables.
iv_createdat TYPE /AWS1/SAGTIMESTAMP /AWS1/SAGTIMESTAMP¶
The date and time the finding was created, in UTC format.
iv_updatedat TYPE /AWS1/SAGTIMESTAMP /AWS1/SAGTIMESTAMP¶
The date and time the finding was last updated, in UTC format.
Queryable Attributes¶
findingId¶
The unique identifier of the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_FINDINGID() |
Getter for FINDINGID, with configurable default |
ASK_FINDINGID() |
Getter for FINDINGID w/ exceptions if field has no value |
HAS_FINDINGID() |
Determine if FINDINGID has a value |
agentSpaceId¶
The unique identifier of the agent space associated with the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_AGENTSPACEID() |
Getter for AGENTSPACEID, with configurable default |
ASK_AGENTSPACEID() |
Getter for AGENTSPACEID w/ exceptions if field has no value |
HAS_AGENTSPACEID() |
Determine if AGENTSPACEID has a value |
pentestId¶
The unique identifier of the pentest associated with the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_PENTESTID() |
Getter for PENTESTID, with configurable default |
ASK_PENTESTID() |
Getter for PENTESTID w/ exceptions if field has no value |
HAS_PENTESTID() |
Determine if PENTESTID has a value |
pentestJobId¶
The unique identifier of the pentest job that produced the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_PENTESTJOBID() |
Getter for PENTESTJOBID, with configurable default |
ASK_PENTESTJOBID() |
Getter for PENTESTJOBID w/ exceptions if field has no value |
HAS_PENTESTJOBID() |
Determine if PENTESTJOBID has a value |
codeReviewId¶
The unique identifier of the code review associated with the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_CODEREVIEWID() |
Getter for CODEREVIEWID, with configurable default |
ASK_CODEREVIEWID() |
Getter for CODEREVIEWID w/ exceptions if field has no value |
HAS_CODEREVIEWID() |
Determine if CODEREVIEWID has a value |
codeReviewJobId¶
The unique identifier of the code review job that produced the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_CODEREVIEWJOBID() |
Getter for CODEREVIEWJOBID, with configurable default |
ASK_CODEREVIEWJOBID() |
Getter for CODEREVIEWJOBID w/ exceptions if field has no val |
HAS_CODEREVIEWJOBID() |
Determine if CODEREVIEWJOBID has a value |
taskId¶
The unique identifier of the task that produced the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_TASKID() |
Getter for TASKID, with configurable default |
ASK_TASKID() |
Getter for TASKID w/ exceptions if field has no value |
HAS_TASKID() |
Determine if TASKID has a value |
name¶
The name of the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_NAME() |
Getter for NAME, with configurable default |
ASK_NAME() |
Getter for NAME w/ exceptions if field has no value |
HAS_NAME() |
Determine if NAME has a value |
description¶
A description of the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_DESCRIPTION() |
Getter for DESCRIPTION, with configurable default |
ASK_DESCRIPTION() |
Getter for DESCRIPTION w/ exceptions if field has no value |
HAS_DESCRIPTION() |
Determine if DESCRIPTION has a value |
status¶
The current status of the finding. Valid values include ACTIVE, RESOLVED, ACCEPTED, and FALSE_POSITIVE.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_STATUS() |
Getter for STATUS, with configurable default |
ASK_STATUS() |
Getter for STATUS w/ exceptions if field has no value |
HAS_STATUS() |
Determine if STATUS has a value |
riskType¶
The type of security risk identified by the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_RISKTYPE() |
Getter for RISKTYPE, with configurable default |
ASK_RISKTYPE() |
Getter for RISKTYPE w/ exceptions if field has no value |
HAS_RISKTYPE() |
Determine if RISKTYPE has a value |
riskLevel¶
The risk level of the finding. Valid values include UNKNOWN, INFORMATIONAL, LOW, MEDIUM, HIGH, and CRITICAL.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_RISKLEVEL() |
Getter for RISKLEVEL, with configurable default |
ASK_RISKLEVEL() |
Getter for RISKLEVEL w/ exceptions if field has no value |
HAS_RISKLEVEL() |
Determine if RISKLEVEL has a value |
riskScore¶
The numerical risk score of the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_RISKSCORE() |
Getter for RISKSCORE, with configurable default |
ASK_RISKSCORE() |
Getter for RISKSCORE w/ exceptions if field has no value |
HAS_RISKSCORE() |
Determine if RISKSCORE has a value |
reasoning¶
The reasoning behind the finding, explaining why it was identified as a vulnerability.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_REASONING() |
Getter for REASONING, with configurable default |
ASK_REASONING() |
Getter for REASONING w/ exceptions if field has no value |
HAS_REASONING() |
Determine if REASONING has a value |
confidence¶
The confidence level of the finding. Valid values include FALSE_POSITIVE, UNCONFIRMED, LOW, MEDIUM, and HIGH.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_CONFIDENCE() |
Getter for CONFIDENCE, with configurable default |
ASK_CONFIDENCE() |
Getter for CONFIDENCE w/ exceptions if field has no value |
HAS_CONFIDENCE() |
Determine if CONFIDENCE has a value |
attackScript¶
The attack script used to reproduce the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_ATTACKSCRIPT() |
Getter for ATTACKSCRIPT, with configurable default |
ASK_ATTACKSCRIPT() |
Getter for ATTACKSCRIPT w/ exceptions if field has no value |
HAS_ATTACKSCRIPT() |
Determine if ATTACKSCRIPT has a value |
codeRemediationTask¶
The code remediation task associated with the finding, if code remediation was initiated.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_CODEREMEDIATIONTASK() |
Getter for CODEREMEDIATIONTASK |
lastUpdatedBy¶
The identifier of the entity that last updated the finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_LASTUPDATEDBY() |
Getter for LASTUPDATEDBY, with configurable default |
ASK_LASTUPDATEDBY() |
Getter for LASTUPDATEDBY w/ exceptions if field has no value |
HAS_LASTUPDATEDBY() |
Determine if LASTUPDATEDBY has a value |
codeLocations¶
The file locations involved in the vulnerability, as reported by the code scanner.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_CODELOCATIONS() |
Getter for CODELOCATIONS, with configurable default |
ASK_CODELOCATIONS() |
Getter for CODELOCATIONS w/ exceptions if field has no value |
HAS_CODELOCATIONS() |
Determine if CODELOCATIONS has a value |
verificationScript¶
The verification script metadata for reproducing the finding, including download URL, instructions, and required environment variables.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_VERIFICATIONSCRIPT() |
Getter for VERIFICATIONSCRIPT |
createdAt¶
The date and time the finding was created, in UTC format.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_CREATEDAT() |
Getter for CREATEDAT, with configurable default |
ASK_CREATEDAT() |
Getter for CREATEDAT w/ exceptions if field has no value |
HAS_CREATEDAT() |
Determine if CREATEDAT has a value |
updatedAt¶
The date and time the finding was last updated, in UTC format.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_UPDATEDAT() |
Getter for UPDATEDAT, with configurable default |
ASK_UPDATEDAT() |
Getter for UPDATEDAT w/ exceptions if field has no value |
HAS_UPDATEDAT() |
Determine if UPDATEDAT has a value |
Public Local Types In This Class¶
Internal table types, representing arrays and maps of this class, are defined as local types:
TT_FINDINGLIST¶
TYPES TT_FINDINGLIST TYPE STANDARD TABLE OF REF TO /AWS1/CL_SAGFINDING WITH DEFAULT KEY
.