The Affected Code object describes details about a code block identified as vulnerable.
Attributes
Section titled “Attributes”file
- Type:
file - Requirement: required
Details about the file that contains the affected code block.
end_column
- Type:
integer_t - Requirement: recommended
The column number of the last part of the assessed code identified as vulnerable.
end_line
- Type:
integer_t - Requirement: recommended
The line number of the last line of code block identified as vulnerable.
rule
- Type:
rule - Requirement: recommended
Details about the specific rule, e.g., those defined as part of a larger policy, that triggered the finding.
start_column
- Type:
integer_t - Requirement: recommended
The column number of the first part of the assessed code identified as vulnerable.
start_line
- Type:
integer_t - Requirement: recommended
The line number of the first line of code block identified as vulnerable.
owner
- Type:
user - Requirement: optional
Details about the user that owns the affected file.
remediation
- Type:
remediation - Requirement: optional
Describes the recommended remediation steps to address identified issue(s).