SecurityVulnerabilities
Lists software vulnerabilities documented by GitHub Security Advisories.
View-Specific Information
Select
The 本製品 uses the GitHub API to process WHERE clause conditions that are built with the following columns and operators:
- PackageName supports the '=' comparison operator.
- PackageEcosystem supports the '=' comparison operator.
- Severity supports the '=,IN' comparison operators.
- GhsaId supports the '=,IN' comparison operators.
- AdvisoryId supports the '=,IN' comparison operators.
- AdvisoryClassification supports the '=,IN' comparison operators.
For example, the following queries are processed server-side:
SELECT * FROM [SecurityVulnerabilities]
SELECT * FROM [SecurityVulnerabilities] WHERE [PackageName] = 'Val1'
SELECT * FROM [SecurityVulnerabilities] WHERE [PackageEcosystem] = 'ACTIONS'
SELECT * FROM [SecurityVulnerabilities] WHERE [Severity] = 'LOW'
SELECT * FROM [SecurityVulnerabilities] WHERE [GhsaId] = 'Val1'
SELECT * FROM [SecurityVulnerabilities] WHERE [AdvisoryId] = 'Val1'
SELECT * FROM [SecurityVulnerabilities] WHERE [AdvisoryClassification] = 'GENERAL'
The 本製品 processes other filters client-side within the 本製品.
The 本製品 uses the GitHub API to process ORDER BY clause conditions that are built with the following column: UpdatedAt
SELECT * FROM [SecurityVulnerabilities] ORDER BY [UpdatedAt]
The 本製品 processes ordering by other columns client-side within the 本製品.
Columns
| Name | Type | References | OrderBySupport | Description |
| PackageName | String | The package name. | ||
| PackageEcosystem | String | The ecosystem the package belongs to (e.g., RUBYGEMS, NPM, MAVEN, PIP, NUGET, etc.). | ||
| Severity | String | The severity of the vulnerability within this package. | ||
| VulnerableVersionRange | String | A string that describes the vulnerable package versions. Follows syntax like: '= 0.2.0', '<= 1.0.8', '>= 4.3.0,< 4.3.5'. | ||
| FirstPatchedVersionIdentifier | String | The first version containing a fix for the vulnerability. | ||
| UpdatedAt | Datetime | When the vulnerability was last updated. | ||
| GhsaId | String | The GitHub Security Advisory ID. | ||
| AdvisoryId | String | The Node ID of the SecurityAdvisory object associated with this vulnerability. | ||
| AdvisoryClassification | String | The classification of the advisory. |