List the image vulnerabilities discovered in an account
List the container image vulnerabilities that have been found running in all clusters of the account
query Parameters
The response body contains the list of vulnerabilities, or nothing if Container Security is not deployed into any clusters.
Something about your request didn't quite make sense. The error message should help you figure out what went wrong.
Did you forget to include an API Key in your request? You need to include a valid authentication header in your request. See API reference documentation for details on available authentication methods.
You tried to do something that you're not allowed to do, you naughty scamp. Check your privileges to see what you're actually allowed to do. This could also mean that your token has expired.
The resource you were looking for doesn't exist.
You have made too many requests too quickly. Check the Retry-After
header for an indication of when you might be able to try again.
Something has gone terribly wrong. Sorry! The error message may help you figure out what went wrong, but it's unlikely that you'll be able to do anything about it unless you're the server administrator. It's possible that trying again will help, but it's more likely that you're out of luck for the moment.
The service is temporarily unavailable, likely due to maintenance. It
should be available soon, check the Retry-After header for an
indication of when you might be able to try again.
- Shell/Curl
- Node
- Python3
- Go
curl --request GET \ --url 'https://container.us-1.cloudone.trendmicro.com/api/vulnerabilities?cursor=SOME_STRING_VALUE&limit=SOME_INTEGER_VALUE&severity=SOME_STRING_VALUE&name=SOME_STRING_VALUE&filter=SOME_STRING_VALUE&sort=SOME_STRING_VALUE' \ --header 'Authorization: REPLACE_KEY_VALUE'
- 200
- 400
- 401
- 403
- 404
- 429
- 500
- 503
{- "vulnerabilities": [
- {
- "name": "CVE-2022-27775",
- "digest": "sha256:temp",
- "repository": "ubuntu",
- "registry": "gcr.io",
- "imageID": "gcr.io/ubuntu@sha256:6d5d0e4065777eec8237cefac4821702a31cd5b6255483ac50c334c057ffecfa",
- "clusterID": "gke_prod-27LciLy2igWWwo9CbRk5OE2",
- "severity": "critical",
- "description": "RESI Gemini-Net Web 4.2 is affected by Improper Access Control in authorization logic. An unauthenticated user is able to access some critical resources.",
- "fixedVersion": "1.1.1",
- "packageVersion": "1.1.0",
- "packageName": "curl",
- "cvssv3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
- "id": "0ujsswThIGTUYm2K8FjOOfXtY1K"
}
], - "next": "dGhpcyB2YWx1ZSBpcyBvcGFxdWUsIGRlY29kaW5nIGl0IHdvbid0IGJlIHVzZWZ1bAo="
}List the image vulnerabilities discovered in a cluster
List the container image vulnerabilities that have been found running in a particular cluster of an account
query Parameters
The response body contains the list of vulnerabilities, or nothing if Container Security is not deployed into any clusters.
Something about your request didn't quite make sense. The error message should help you figure out what went wrong.
Did you forget to include an API Key in your request? You need to include a valid authentication header in your request. See API reference documentation for details on available authentication methods.
You tried to do something that you're not allowed to do, you naughty scamp. Check your privileges to see what you're actually allowed to do. This could also mean that your token has expired.
The resource you were looking for doesn't exist.
You have made too many requests too quickly. Check the Retry-After
header for an indication of when you might be able to try again.
Something has gone terribly wrong. Sorry! The error message may help you figure out what went wrong, but it's unlikely that you'll be able to do anything about it unless you're the server administrator. It's possible that trying again will help, but it's more likely that you're out of luck for the moment.
The service is temporarily unavailable, likely due to maintenance. It
should be available soon, check the Retry-After header for an
indication of when you might be able to try again.
- Shell/Curl
- Node
- Python3
- Go
curl --request GET \ --url 'https://container.us-1.cloudone.trendmicro.com/api/clusters/{id}/vulnerabilities?cursor=SOME_STRING_VALUE&limit=SOME_INTEGER_VALUE&severity=SOME_STRING_VALUE&name=SOME_STRING_VALUE&filter=SOME_STRING_VALUE' \ --header 'Authorization: REPLACE_KEY_VALUE'
- 200
- 400
- 401
- 403
- 404
- 429
- 500
- 503
{- "vulnerabilities": [
- {
- "name": "CVE-2022-27775",
- "digest": "sha256:temp",
- "repository": "ubuntu",
- "registry": "gcr.io",
- "imageID": "gcr.io/ubuntu@sha256:6d5d0e4065777eec8237cefac4821702a31cd5b6255483ac50c334c057ffecfa",
- "clusterID": "gke_prod-27LciLy2igWWwo9CbRk5OE2",
- "severity": "critical",
- "description": "RESI Gemini-Net Web 4.2 is affected by Improper Access Control in authorization logic. An unauthenticated user is able to access some critical resources.",
- "fixedVersion": "1.1.1",
- "packageVersion": "1.1.0",
- "packageName": "curl",
- "cvssv3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
- "id": "0ujsswThIGTUYm2K8FjOOfXtY1K"
}
], - "next": "dGhpcyB2YWx1ZSBpcyBvcGFxdWUsIGRlY29kaW5nIGl0IHdvbid0IGJlIHVzZWZ1bAo="
}List the vulnerabilities discovered in an image
List the container image vulnerabilities that have been found running in a particular image of a particular cluster of an account
query Parameters
The response body contains the list of vulnerabilities, or nothing if Container Security is not deployed into any clusters.
Something about your request didn't quite make sense. The error message should help you figure out what went wrong.
Did you forget to include an API Key in your request? You need to include a valid authentication header in your request. See API reference documentation for details on available authentication methods.
You tried to do something that you're not allowed to do, you naughty scamp. Check your privileges to see what you're actually allowed to do. This could also mean that your token has expired.
The resource you were looking for doesn't exist.
You have made too many requests too quickly. Check the Retry-After
header for an indication of when you might be able to try again.
Something has gone terribly wrong. Sorry! The error message may help you figure out what went wrong, but it's unlikely that you'll be able to do anything about it unless you're the server administrator. It's possible that trying again will help, but it's more likely that you're out of luck for the moment.
The service is temporarily unavailable, likely due to maintenance. It
should be available soon, check the Retry-After header for an
indication of when you might be able to try again.
- Shell/Curl
- Node
- Python3
- Go
curl --request GET \ --url 'https://container.us-1.cloudone.trendmicro.com/api/clusters/{id}/images/{image}/vulnerabilities?cursor=SOME_STRING_VALUE&limit=SOME_INTEGER_VALUE&severity=SOME_STRING_VALUE&name=SOME_STRING_VALUE&filter=SOME_STRING_VALUE' \ --header 'Authorization: REPLACE_KEY_VALUE'
- 200
- 400
- 401
- 403
- 404
- 429
- 500
- 503
{- "vulnerabilities": [
- {
- "name": "CVE-2022-27775",
- "digest": "sha256:temp",
- "repository": "ubuntu",
- "registry": "gcr.io",
- "imageID": "gcr.io/ubuntu@sha256:6d5d0e4065777eec8237cefac4821702a31cd5b6255483ac50c334c057ffecfa",
- "clusterID": "gke_prod-27LciLy2igWWwo9CbRk5OE2",
- "severity": "critical",
- "description": "RESI Gemini-Net Web 4.2 is affected by Improper Access Control in authorization logic. An unauthenticated user is able to access some critical resources.",
- "fixedVersion": "1.1.1",
- "packageVersion": "1.1.0",
- "packageName": "curl",
- "cvssv3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
- "id": "0ujsswThIGTUYm2K8FjOOfXtY1K"
}
], - "next": "dGhpcyB2YWx1ZSBpcyBvcGFxdWUsIGRlY29kaW5nIGl0IHdvbid0IGJlIHVzZWZ1bAo="
}