{
  "$schema": "https://json-structure.org/meta/core/v0/#",
  "$id": "https://raw.githubusercontent.com/api-evangelist/palo-alto-networks/refs/heads/main/json-structure/prisma-airs-ai-red-teaming-api-scan-report-structure.json",
  "name": "ScanReport",
  "description": "ScanReport schema from Palo Alto Networks Prisma AIRS AI Red Teaming API",
  "type": "object",
  "properties": {
    "scan_id": {
      "type": "string",
      "description": "Unique identifier of the scan."
    },
    "target_id": {
      "type": "string",
      "description": "ID of the assessed target."
    },
    "target_name": {
      "type": "string",
      "description": "Display name of the assessed target."
    },
    "overall_risk_score": {
      "type": "float",
      "description": "Overall vulnerability risk score from 0.0 (no risk) to 10.0 (critical).",
      "minimum": 0.0,
      "maximum": 10.0
    },
    "total_attacks_executed": {
      "type": "int32",
      "description": "Total number of attack probes executed."
    },
    "vulnerabilities_found": {
      "type": "int32",
      "description": "Total number of vulnerabilities discovered."
    },
    "category_summaries": {
      "type": "array",
      "description": "Vulnerability summary per attack category.",
      "items": {
        "type": "object",
        "properties": {
          "category_id": {
            "type": "string"
          },
          "category_name": {
            "type": "string"
          },
          "attacks_executed": {
            "type": "int32"
          },
          "vulnerabilities_found": {
            "type": "int32"
          },
          "risk_score": {
            "type": "float"
          }
        }
      }
    },
    "findings": {
      "type": "array",
      "description": "Individual vulnerability findings.",
      "items": {
        "type": "object",
        "properties": {
          "finding_id": {
            "type": "string",
            "description": "Unique identifier of the finding."
          },
          "category_id": {
            "type": "string",
            "description": "Attack category identifier."
          },
          "category_name": {
            "type": "string",
            "description": "Human-readable attack category name."
          },
          "severity": {
            "type": "string",
            "description": "Severity level of the vulnerability.",
            "enum": [
              "informational",
              "low",
              "medium",
              "high",
              "critical"
            ]
          },
          "title": {
            "type": "string",
            "description": "Brief title describing the vulnerability."
          },
          "description": {
            "type": "string",
            "description": "Detailed description of the vulnerability and its impact."
          },
          "attack_prompt": {
            "type": "string",
            "description": "The adversarial prompt that revealed the vulnerability."
          },
          "model_response": {
            "type": "string",
            "description": "The AI model's response to the attack prompt, demonstrating the vulnerability. May be truncated."
          },
          "remediation": {
            "type": "string",
            "description": "Recommended steps to mitigate the vulnerability."
          }
        }
      }
    },
    "generated_at": {
      "type": "datetime",
      "description": "Timestamp when the report was generated."
    }
  }
}