{ "$schema": "https://json-structure.org/meta/core/v0/#", "$id": "https://raw.githubusercontent.com/api-evangelist/amazon-ec2-image-builder/refs/heads/main/json-structure/ec2-image-builder-package-vulnerability-details-structure.json", "name": "PackageVulnerabilityDetails", "description": "Information about package vulnerability findings.", "type": "object", "properties": { "vulnerabilityId": { "allOf": [ { "$ref": "#/components/schemas/VulnerabilityId" }, { "description": "A unique identifier for this vulnerability." } ] }, "vulnerablePackages": { "allOf": [ { "$ref": "#/components/schemas/VulnerablePackageList" }, { "description": "The packages that this vulnerability impacts." } ] }, "source": { "allOf": [ { "$ref": "#/components/schemas/NonEmptyString" }, { "description": "The source of the vulnerability information." } ] }, "cvss": { "allOf": [ { "$ref": "#/components/schemas/CvssScoreList" }, { "description": "CVSS scores for one or more vulnerabilities that Amazon Inspector identified for a package." } ] }, "relatedVulnerabilities": { "allOf": [ { "$ref": "#/components/schemas/VulnerabilityIdList" }, { "description": "Vulnerabilities that are often related to the findings for the package." } ] }, "sourceUrl": { "allOf": [ { "$ref": "#/components/schemas/NonEmptyString" }, { "description": "A link to the source of the vulnerability information." } ] }, "vendorSeverity": { "allOf": [ { "$ref": "#/components/schemas/NonEmptyString" }, { "description": "The severity that the vendor assigned to this vulnerability type." } ] }, "vendorCreatedAt": { "allOf": [ { "$ref": "#/components/schemas/DateTimeTimestamp" }, { "description": "The date and time when this vulnerability was first added to the vendor's database." } ] }, "vendorUpdatedAt": { "allOf": [ { "$ref": "#/components/schemas/DateTimeTimestamp" }, { "description": "The date and time when the vendor last updated this vulnerability in their database." } ] }, "referenceUrls": { "allOf": [ { "$ref": "#/components/schemas/NonEmptyStringList" }, { "description": "Links to web pages that contain details about the vulnerabilities that Amazon Inspector identified for the package." } ] } }, "required": [ "vulnerabilityId" ] }