Skip to content

/AWS1/CL_SAGFINDING

Represents a security vulnerability or issue discovered during testing

CONSTRUCTOR

IMPORTING

Required arguments:

iv_findingid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Unique identifier for the finding

iv_agentspaceid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Identifier of the agent space that created this finding

Optional arguments:

iv_pentestid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Identifier of the parent pentest

iv_pentestjobid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Identifier of the pentest job

iv_taskid TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Identifier of the associated task

iv_name TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Name or title of the finding

iv_description TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Detailed description of the security vulnerability

iv_status TYPE /AWS1/SAGFINDINGSTATUS /AWS1/SAGFINDINGSTATUS

Current status of the finding

iv_risktype TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Type of security risk identified

iv_risklevel TYPE /AWS1/SAGRISKLEVEL /AWS1/SAGRISKLEVEL

Severity level of the identified risk

iv_riskscore TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Risk score associated with the finding

iv_reasoning TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Justification for the assigned risk score

iv_confidence TYPE /AWS1/SAGCONFIDENCELEVEL /AWS1/SAGCONFIDENCELEVEL

Confidence level of the finding

iv_attackscript TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Proof-of-concept code demonstrating the vulnerability

io_coderemediationtask TYPE REF TO /AWS1/CL_SAGCODEREMEDTASK /AWS1/CL_SAGCODEREMEDTASK

Code remediation task associated with this finding

iv_lastupdatedby TYPE /AWS1/SAGSTRING /AWS1/SAGSTRING

Identifier of the task or agent that last updated this finding

iv_createdat TYPE /AWS1/SAGTIMESTAMP /AWS1/SAGTIMESTAMP

Timestamp when the finding was created

iv_updatedat TYPE /AWS1/SAGTIMESTAMP /AWS1/SAGTIMESTAMP

Timestamp when the finding was last updated

Queryable Attributes

findingId

Unique identifier for the finding

Accessible with the following methods

Method Description
GET_FINDINGID() Getter for FINDINGID, with configurable default
ASK_FINDINGID() Getter for FINDINGID w/ exceptions if field has no value
HAS_FINDINGID() Determine if FINDINGID has a value

agentSpaceId

Identifier of the agent space that created this finding

Accessible with the following methods

Method Description
GET_AGENTSPACEID() Getter for AGENTSPACEID, with configurable default
ASK_AGENTSPACEID() Getter for AGENTSPACEID w/ exceptions if field has no value
HAS_AGENTSPACEID() Determine if AGENTSPACEID has a value

pentestId

Identifier of the parent pentest

Accessible with the following methods

Method Description
GET_PENTESTID() Getter for PENTESTID, with configurable default
ASK_PENTESTID() Getter for PENTESTID w/ exceptions if field has no value
HAS_PENTESTID() Determine if PENTESTID has a value

pentestJobId

Identifier of the pentest job

Accessible with the following methods

Method Description
GET_PENTESTJOBID() Getter for PENTESTJOBID, with configurable default
ASK_PENTESTJOBID() Getter for PENTESTJOBID w/ exceptions if field has no value
HAS_PENTESTJOBID() Determine if PENTESTJOBID has a value

taskId

Identifier of the associated task

Accessible with the following methods

Method Description
GET_TASKID() Getter for TASKID, with configurable default
ASK_TASKID() Getter for TASKID w/ exceptions if field has no value
HAS_TASKID() Determine if TASKID has a value

name

Name or title of the finding

Accessible with the following methods

Method Description
GET_NAME() Getter for NAME, with configurable default
ASK_NAME() Getter for NAME w/ exceptions if field has no value
HAS_NAME() Determine if NAME has a value

description

Detailed description of the security vulnerability

Accessible with the following methods

Method Description
GET_DESCRIPTION() Getter for DESCRIPTION, with configurable default
ASK_DESCRIPTION() Getter for DESCRIPTION w/ exceptions if field has no value
HAS_DESCRIPTION() Determine if DESCRIPTION has a value

status

Current status of the finding

Accessible with the following methods

Method Description
GET_STATUS() Getter for STATUS, with configurable default
ASK_STATUS() Getter for STATUS w/ exceptions if field has no value
HAS_STATUS() Determine if STATUS has a value

riskType

Type of security risk identified

Accessible with the following methods

Method Description
GET_RISKTYPE() Getter for RISKTYPE, with configurable default
ASK_RISKTYPE() Getter for RISKTYPE w/ exceptions if field has no value
HAS_RISKTYPE() Determine if RISKTYPE has a value

riskLevel

Severity level of the identified risk

Accessible with the following methods

Method Description
GET_RISKLEVEL() Getter for RISKLEVEL, with configurable default
ASK_RISKLEVEL() Getter for RISKLEVEL w/ exceptions if field has no value
HAS_RISKLEVEL() Determine if RISKLEVEL has a value

riskScore

Risk score associated with the finding

Accessible with the following methods

Method Description
GET_RISKSCORE() Getter for RISKSCORE, with configurable default
ASK_RISKSCORE() Getter for RISKSCORE w/ exceptions if field has no value
HAS_RISKSCORE() Determine if RISKSCORE has a value

reasoning

Justification for the assigned risk score

Accessible with the following methods

Method Description
GET_REASONING() Getter for REASONING, with configurable default
ASK_REASONING() Getter for REASONING w/ exceptions if field has no value
HAS_REASONING() Determine if REASONING has a value

confidence

Confidence level of the finding

Accessible with the following methods

Method Description
GET_CONFIDENCE() Getter for CONFIDENCE, with configurable default
ASK_CONFIDENCE() Getter for CONFIDENCE w/ exceptions if field has no value
HAS_CONFIDENCE() Determine if CONFIDENCE has a value

attackScript

Proof-of-concept code demonstrating the vulnerability

Accessible with the following methods

Method Description
GET_ATTACKSCRIPT() Getter for ATTACKSCRIPT, with configurable default
ASK_ATTACKSCRIPT() Getter for ATTACKSCRIPT w/ exceptions if field has no value
HAS_ATTACKSCRIPT() Determine if ATTACKSCRIPT has a value

codeRemediationTask

Code remediation task associated with this finding

Accessible with the following methods

Method Description
GET_CODEREMEDIATIONTASK() Getter for CODEREMEDIATIONTASK

lastUpdatedBy

Identifier of the task or agent that last updated this finding

Accessible with the following methods

Method Description
GET_LASTUPDATEDBY() Getter for LASTUPDATEDBY, with configurable default
ASK_LASTUPDATEDBY() Getter for LASTUPDATEDBY w/ exceptions if field has no value
HAS_LASTUPDATEDBY() Determine if LASTUPDATEDBY has a value

createdAt

Timestamp when the finding was created

Accessible with the following methods

Method Description
GET_CREATEDAT() Getter for CREATEDAT, with configurable default
ASK_CREATEDAT() Getter for CREATEDAT w/ exceptions if field has no value
HAS_CREATEDAT() Determine if CREATEDAT has a value

updatedAt

Timestamp when the finding was last updated

Accessible with the following methods

Method Description
GET_UPDATEDAT() Getter for UPDATEDAT, with configurable default
ASK_UPDATEDAT() Getter for UPDATEDAT w/ exceptions if field has no value
HAS_UPDATEDAT() Determine if UPDATEDAT has a value

Public Local Types In This Class

Internal table types, representing arrays and maps of this class, are defined as local types:

TT_FINDINGLIST

TYPES TT_FINDINGLIST TYPE STANDARD TABLE OF REF TO /AWS1/CL_SAGFINDING WITH DEFAULT KEY
.