naftiko: 1.0.0-alpha2
info:
  label: WebSphere Automation REST API — Vulnerabilities
  description: 'WebSphere Automation REST API — Vulnerabilities. 3 operations. Lead operation: List Vulnerabilities. Self-contained
    Naftiko capability covering one Websphere business surface.'
  tags:
  - Websphere
  - Vulnerabilities
  created: '2026-05-19'
  modified: '2026-05-19'
binds:
- namespace: env
  keys:
    WEBSPHERE_API_KEY: WEBSPHERE_API_KEY
capability:
  consumes:
  - type: http
    namespace: automation-rest-vulnerabilities
    baseUri: https://automation-api.example.com/v1
    description: WebSphere Automation REST API — Vulnerabilities business capability. Self-contained, no shared references.
    resources:
    - name: vulnerabilities
      path: /vulnerabilities
      operations:
      - name: listvulnerabilities
        method: GET
        description: List Vulnerabilities
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: severity
          in: query
          type: string
          description: Filter by severity
        - name: status
          in: query
          type: string
          description: Filter by remediation status
        - name: serverId
          in: query
          type: string
          description: Filter by affected server
        - name: cveId
          in: query
          type: string
          description: Filter by CVE identifier
    - name: vulnerabilities-vulnerabilityId
      path: /vulnerabilities/{vulnerabilityId}
      operations:
      - name: getvulnerability
        method: GET
        description: Get Vulnerability Details
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: vulnerabilityId
          in: path
          type: string
          description: Vulnerability identifier
          required: true
    - name: vulnerabilities-vulnerabilityId-resolve
      path: /vulnerabilities/{vulnerabilityId}/resolve
      operations:
      - name: resolvevulnerability
        method: POST
        description: Resolve a Vulnerability
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: vulnerabilityId
          in: path
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: false
    authentication:
      type: bearer
      token: '{{env.WEBSPHERE_API_KEY}}'
  exposes:
  - type: rest
    namespace: automation-rest-vulnerabilities-rest
    port: 8080
    description: REST adapter for WebSphere Automation REST API — Vulnerabilities. One Spectral-compliant resource per consumed
      operation, prefixed with /v1.
    resources:
    - path: /v1/vulnerabilities
      name: vulnerabilities
      description: REST surface for vulnerabilities.
      operations:
      - method: GET
        name: listvulnerabilities
        description: List Vulnerabilities
        call: automation-rest-vulnerabilities.listvulnerabilities
        with:
          severity: rest.severity
          status: rest.status
          serverId: rest.serverId
          cveId: rest.cveId
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/vulnerabilities/{vulnerabilityid}
      name: vulnerabilities-vulnerabilityid
      description: REST surface for vulnerabilities-vulnerabilityId.
      operations:
      - method: GET
        name: getvulnerability
        description: Get Vulnerability Details
        call: automation-rest-vulnerabilities.getvulnerability
        with:
          vulnerabilityId: rest.vulnerabilityId
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/vulnerabilities/{vulnerabilityid}/resolve
      name: vulnerabilities-vulnerabilityid-resolve
      description: REST surface for vulnerabilities-vulnerabilityId-resolve.
      operations:
      - method: POST
        name: resolvevulnerability
        description: Resolve a Vulnerability
        call: automation-rest-vulnerabilities.resolvevulnerability
        with:
          vulnerabilityId: rest.vulnerabilityId
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: automation-rest-vulnerabilities-mcp
    port: 9090
    transport: http
    description: MCP adapter for WebSphere Automation REST API — Vulnerabilities. One tool per consumed operation, routed
      inline through this capability's consumes block.
    tools:
    - name: list-vulnerabilities
      description: List Vulnerabilities
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: automation-rest-vulnerabilities.listvulnerabilities
      with:
        severity: tools.severity
        status: tools.status
        serverId: tools.serverId
        cveId: tools.cveId
      outputParameters:
      - type: object
        mapping: $.
    - name: get-vulnerability-details
      description: Get Vulnerability Details
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: automation-rest-vulnerabilities.getvulnerability
      with:
        vulnerabilityId: tools.vulnerabilityId
      outputParameters:
      - type: object
        mapping: $.
    - name: resolve-vulnerability
      description: Resolve a Vulnerability
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: automation-rest-vulnerabilities.resolvevulnerability
      with:
        vulnerabilityId: tools.vulnerabilityId
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.