{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "title": "VulnerabilityPolicy",
  "description": "VulnerabilityPolicy schema from Palo Alto Networks Prisma Cloud Compute API",
  "$id": "https://raw.githubusercontent.com/api-evangelist/palo-alto-networks/refs/heads/main/json-schema/prisma-cloud-compute-api-vulnerability-policy-schema.json",
  "type": "object",
  "properties": {
    "rules": {
      "type": "array",
      "description": "Ordered list of vulnerability policy rules.",
      "items": {
        "type": "object",
        "properties": {
          "name": {
            "type": "string",
            "description": "Rule name."
          },
          "collections": {
            "type": "array",
            "items": {
              "type": "string"
            },
            "description": "Collections this rule applies to."
          },
          "effect": {
            "type": "string",
            "enum": [
              "ignore",
              "alert",
              "block"
            ],
            "description": "Action to take for matching vulnerabilities."
          },
          "condition": {
            "type": "object",
            "description": "Conditions that trigger this rule.",
            "properties": {
              "cves": {
                "type": "object",
                "properties": {
                  "ids": {
                    "type": "array",
                    "items": {
                      "type": "string"
                    }
                  },
                  "effect": {
                    "type": "string"
                  }
                }
              },
              "severities": {
                "type": "array",
                "items": {
                  "type": "string",
                  "enum": [
                    "critical",
                    "high",
                    "medium",
                    "low"
                  ]
                }
              }
            }
          }
        }
      }
    }
  }
}