`cyclonedx.model.impact_analysis`

Module Contents

Classes

`ImpactAnalysisAffectedStatus`	Enum object that defines the permissible impact analysis affected states.
`ImpactAnalysisJustification`	Enum object that defines the rationale of why the impact analysis state was asserted.
`ImpactAnalysisResponse`	Enum object that defines the valid rationales as to why the impact analysis state was asserted.
`ImpactAnalysisState`	Enum object that defines the permissible impact analysis states.

class cyclonedx.model.impact_analysis.ImpactAnalysisAffectedStatus[source]

Bases: str, enum.Enum

Enum object that defines the permissible impact analysis affected states.

The vulnerability status of a given version or range of versions of a product.

The statuses ‘affected’ and ‘unaffected’ indicate that the version is affected or unaffected by the vulnerability.

The status ‘unknown’ indicates that it is unknown or unspecified whether the given version is affected. There can be many reasons for an ‘unknown’ status, including that an investigation has not been undertaken or that a vendor has not disclosed the status.

Note

See the CycloneDX Schema definition: https://cyclonedx.org/docs/1.4/#type_impactAnalysisAffectedStatusType

AFFECTED = 'affected'[source]

UNAFFECTED = 'unaffected'[source]

UNKNOWN = 'unknown'[source]

class cyclonedx.model.impact_analysis.ImpactAnalysisJustification[source]

Bases: str, enum.Enum

Enum object that defines the rationale of why the impact analysis state was asserted.

Note

See the CycloneDX Schema definition: https://cyclonedx.org/docs/1.4/#type_impactAnalysisJustificationType

CODE_NOT_PRESENT = 'code_not_present'[source]

CODE_NOT_REACHABLE = 'code_not_reachable'[source]

PROTECTED_AT_PERIMITER = 'protected_at_perimeter'[source]

PROTECTED_AT_RUNTIME = 'protected_at_runtime'[source]

PROTECTED_BY_COMPILER = 'protected_by_compiler'[source]

PROTECTED_BY_MITIGATING_CONTROL = 'protected_by_mitigating_control'[source]

REQUIRES_CONFIGURATION = 'requires_configuration'[source]

REQUIRES_DEPENDENCY = 'requires_dependency'[source]

REQUIRES_ENVIRONMENT = 'requires_environment'[source]

class cyclonedx.model.impact_analysis.ImpactAnalysisResponse[source]

Bases: str, enum.Enum

Enum object that defines the valid rationales as to why the impact analysis state was asserted.

Note

See the CycloneDX Schema definition: https://cyclonedx.org/docs/1.4/#type_impactAnalysisResponsesType

CAN_NOT_FIX = 'can_not_fix'[source]

ROLLBACK = 'rollback'[source]

UPDATE = 'update'[source]

WILL_NOT_FIX = 'will_not_fix'[source]

WORKAROUND_AVAILABLE = 'workaround_available'[source]

class cyclonedx.model.impact_analysis.ImpactAnalysisState[source]

Bases: str, enum.Enum

Enum object that defines the permissible impact analysis states.

Note

See the CycloneDX Schema definition: https://cyclonedx.org/docs/1.4/#type_impactAnalysisStateType

RESOLVED = 'resolved'[source]

RESOLVED_WITH_PEDIGREE = 'resolved_with_pedigree'[source]

EXPLOITABLE = 'exploitable'[source]

IN_TRIAGE = 'in_triage'[source]

FALSE_POSITIVE = 'false_positive'[source]

NOT_AFFECTED = 'not_affected'[source]

cyclonedx.model.impact_analysis

Module Contents

Classes

`cyclonedx.model.impact_analysis`