Performs operations on detected vulnerabilities. You can fix or ignore vulnerabilities. You can also verify the vulnerability fixes.

Debugging

OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer.OpenAPI Explorer dynamically generates the sample code of the operation for different SDKs.

Request parameters

Parameter Type Required Example Description
Action String Yes ModifyOperateVul

The operation that you want to perform.

Set the value to ModifyOperateVul.

Info String Yes [{"name":"oval:com.redhat.rhsa:def:20171100","uuid":"e49fb179-bbe7-4b6c-ab65-e106fb58****","tag":"oval"}]

The details of the vulnerability on which you want to perform operations. This parameter is an array that consists of JSON structs. Each JSON struct consists of the following fields:

  • name: the name of the vulnerability
  • uuid: the UUID of the server
  • tag: the tag that is added to the vulnerability
Note You can call the DescribeVulLIst operation to query the details of vulnerabilities.
OperateType String Yes vul_fix

The operation that you want to perform on the vulnerability. Valid values:

  • vul_fix: fixes the vulnerability.
  • vul_verify: verifies the vulnerability fix.
  • vul_rollback: rolls back the vulnerability fix.
  • vul_ignore: ignores the vulnerability.
  • vul_undo_ignore: cancels the ignore operation on the vulnerability.
  • vul_delete: deletes the vulnerability.
Type String Yes cve

The type of the vulnerability on which you want to perform operations. Valid values:

  • cve: Linux software vulnerabilities
  • sys: Windows system vulnerabilities
  • cms: Web-CMS vulnerabilities
  • emg: urgent vulnerabilities
  • app: application vulnerabilities
  • sca: vulnerabilities that are detected based on software component analysis
Note You cannot fix the urgent vulnerabilities, application vulnerabilities, and vulnerabilities that are detected based on software component analysis.
Reason String No Postpone the fix

The reason why the vulnerability is ignored.

Note This parameter is required only when OperateType is set to vul_ignore.

All Alibaba Cloud API operations must include common request parameters. For more information about common request parameters, see Common parameters.

For more information about sample requests, see the "Examples" section of this topic.

Response parameters

Parameter Type Example Description
RequestId String DFE4F166-1AC9-4FAC-A4E4-F0608AD705A6

The ID of the request.

Examples

Sample requests

http(s)://[Endpoint]/?Action=ModifyOperateVul
&Info=[{"name":"oval:com.redhat.rhsa:def:20171100","uuid":"e49fb179-bbe7-4b6c-ab65-e106fb58****","tag":"oval"}]
&OperateType=vul_fix
&Type=cve
&<Common request parameters>

Sample success responses

XML format 

<ModifyOperateVulResponse>
      <RequestId>DFE4F166-1AC9-4FAC-A4E4-F0608AD705A6</RequestId>
</ModifyOperateVulResponse>

JSON format 

{
    "RequestId":"DFE4F166-1AC9-4FAC-A4E4-F0608AD705A6"
}

Error codes

For a list of error codes, visit the API Error Center.