Get Remediation Status

POST 
/uve/api/v1/remediation/vuln-remediation-status

Get the remediation action status of assets. You can get the remediation status at two levels:

• Asset level - Get the remediation status of an asset by asset ID
• Group level - Get the remediation status of all assets of a specific asset type. To get group level status, specify only the asset type and not the asset ID.

Note: You need 'vulnerabilityRemediation' feature with 'View' permission to access this endpoint. Verify if your permission group includes this feature using the Get Permission Group by ID endpoint. You can also check this in the Prisma Cloud console by ensuring that Alerts > Remediate Vulnerabilities is enabled.

Request

application/json

Body

required

cveId stringrequired

CVE ID of the vulnerability.

prismaId stringrequired

Prisma ID allocated to the customer.

assetType stringrequired

Possible values: [iac, package, deployedImage, serverlessFunction, host, registryImage, vmImage]

Asset type

assetId string[]

List of asset UAI IDs

Responses

200

OK

application/json

Schema

Schema

values object[]
Array [
prismaId string
prisma ID of the customer
unifiedAssetId string
Unified asset ID of the asset
assetType string
Possible values: [iac, package, deployedImage, serverlessFunction, host, registryImage, vmImage]
Asset type of the asset
assetLifecycle string
Possible values: [code, build, deploy, run]
Life cycle of the asset
cveId string
CVE ID affecting the asset
source string
Possible values: [COMPUTE, BRIDGECREW]
If the asset if Bridgecrew/Compute (placeholder, usually empty/null)
remediationAction object[]
Remediation actions available for the asset type
Array [
action string
Possible values: [createTask, createPr, suppress]
The remediation action
status string
Possible values: [AVAILABLE, IN_PROGRESS, SUBMITTED, DONE, UNAVAILABLE, SUPPRESSED]
If the asset is AVAILABLE/ not so because of a certain reason
actionResult string
The JIRA link/PR link of the remediated asset if applicable
message string
Reason for the current 'status' if applicable
]
lastUpdatedTimestamp integer
The timestamp as of which the status was identified
]

Example (from schema)

{
  "values": [
    {
      "prismaId": "string",
      "unifiedAssetId": "string",
      "assetType": "iac",
      "assetLifecycle": "code",
      "cveId": "string",
      "source": "COMPUTE",
      "remediationAction": [
        {
          "action": "createTask",
          "status": "AVAILABLE",
          "actionResult": "string",
          "message": "string"
        }
      ],
      "lastUpdatedTimestamp": 0
    }
  ]
}

assetLevel

{
  "values": [
    {
      "prismaId": "1115545679050296320",
      "unifiedAssetId": "0230eb1308fcf8dad743549e4092f4af",
      "assetType": "host",
      "assetLifecycle": "code",
      "cveId": "CVE-2022-32207",
      "source": "COMPUTE",
      "remediationAction": [
        {
          "action": "createTask",
          "status": "UNAVAILABLE",
          "actionResult": "null",
          "message": "Invalid Assets"
        }
      ],
      "lastUpdatedTimestamp": 1701782645308
    }
  ]
}

groupLevel

{
  "values": [
    {
      "prismaId": "1115545679050296320",
      "unifiedAssetId": "code",
      "assetType": "host",
      "assetLifecycle": "code",
      "cveId": "CVE-2022-32207",
      "source": "COMPUTE",
      "remediationAction": [
        {
          "action": "createTask",
          "status": "AVAILABLE",
          "actionResult": "null",
          "message": "null"
        }
      ],
      "lastUpdatedTimestamp": 1701782708619
    }
  ]
}

Loading...