Vulnerabilities API - GET remediation item details

  • Reference

Lists the details of a remediation tracking process group of a third-party vulnerability (or, in the case of Kubernetes vulnerabilities, the parameters of a remediation tracking Kubernetes node).

The request produces an application/json payload.

GETManagedDynatrace for Governmenthttps://{your-domain}/e/{your-environment-id}/api/v2/securityProblems/{id}/remediationItems/{remediationItemId}
Environment and Cluster ActiveGate (default port 9999)https://{your-activegate-domain}:9999/e/{your-environment-id}/api/v2/securityProblems/{id}/remediationItems/{remediationItemId}

Authentication

To execute this request, you need an access token with securityProblems.read scope.

To learn how to obtain and use it, see Tokens and authentication.

Parameters

ParameterTypeDescriptionInRequired
idstring

The ID of the requested third-party security problem.

pathRequired
remediationItemIdstring

The ID of the remediation item.

pathRequired

Response

Response codes

CodeTypeDescription
200RemediationDetailsItem

Success. The response contains details of a single remediation item of a security problem.

4XXErrorEnvelope

Client side error.

5XXErrorEnvelope

Server side error.

Response body objects

The RemediationDetailsItem object

Detailed information of a remediation item for a security problem.

ElementTypeDescription
assessmentRemediationAssessment

Assessment of the remediation item.

entityIdsstring[]-
firstAffectedTimestampinteger-
idstring-
muteStateRemediationItemMuteState

The mute state of a remediation item of a security problem.

namestring-
remediationProgressRemediationProgress

The progress of this remediation item. It contains affected and unaffected entities.

resolvedTimestampinteger-
trackingLinkTrackingLink

External tracking link URL associated with the remediable entity of the security problem.

vulnerabilityStatestring-
The element can hold these values
  • RESOLVED
  • VULNERABLE
vulnerableComponentsRemediationItemDetailsVulnerableComponent[]

A list of vulnerable components of the remediation item.

A vulnerable component is what causes the security problem.

The RemediationAssessment object

Assessment of the remediation item.

ElementTypeDescription
assessmentAccuracystring

The accuracy of the assessment.

The element can hold these values
  • FULL
  • NOT_AVAILABLE
  • REDUCED
assessmentAccuracyDetailsAssessmentAccuracyDetails

The assessment accuracy details.

dataAssetsstring

The reachability of related data assets by affected entities.

The element can hold these values
  • NOT_AVAILABLE
  • NOT_DETECTED
  • REACHABLE
exposurestring

The level of exposure of affected entities.

The element can hold these values
  • NOT_AVAILABLE
  • NOT_DETECTED
  • PUBLIC_NETWORK
numberOfDataAssetsinteger

The number of related data assets.

vulnerableFunctionRestartRequiredboolean

Whether a restart is required for the latest vulnerable function data.

vulnerableFunctionUsagestring

The usage of vulnerable functions

The element can hold these values
  • IN_USE
  • NOT_AVAILABLE
  • NOT_IN_USE
vulnerableFunctionsInUseVulnerableFunction[]

A list of vulnerable functions that are in use.

vulnerableFunctionsNotAvailableVulnerableFunction[]

A list of vulnerable functions that are not available.

vulnerableFunctionsNotInUseVulnerableFunction[]

A list of vulnerable functions that are not in use.

The AssessmentAccuracyDetails object

The assessment accuracy details.

ElementTypeDescription
reducedReasonsstring[]

The reason for a reduced accuracy of the assessment.

The element can hold these values
  • LIMITED_AGENT_SUPPORT
  • LIMITED_BY_CONFIGURATION

The VulnerableFunction object

Defines an vulnerable function.

ElementTypeDescription
classNamestring

The class name of the vulnerable function.

filePathstring

The file path of the vulnerable function.

functionNamestring

The function name of the vulnerable function.

The RemediationItemMuteState object

The mute state of a remediation item of a security problem.

ElementTypeDescription
commentstring

A short comment about the most recent mute state change.

lastUpdatedTimestampinteger

The timestamp (UTC milliseconds) of the last update of the mute state.

mutedboolean

The remediation is (true) or is not (false) muted.

reasonstring

The reason for the most recent mute state change.

The element can hold these values
  • AFFECTED
  • CONFIGURATION_NOT_AFFECTED
  • FALSE_POSITIVE
  • IGNORE
  • INITIAL_STATE
  • OTHER
  • VULNERABLE_CODE_NOT_IN_USE
userstring

The user who last changed the mute state.

The RemediationProgress object

The progress of this remediation item. It contains affected and unaffected entities.

ElementTypeDescription
affectedEntitiesstring[]

A list of related entities that are affected by the security problem.

unaffectedEntitiesstring[]

A list of related entities that are affected by the security problem.

External tracking link URL associated with the remediable entity of the security problem.

ElementTypeDescription
displayNamestring

Display name (title) set for the tracking link, e.g. 'ISSUE-123'.

lastUpdatedTimestampinteger

The timestamp (UTC milliseconds) of the last update of the tracking link.

urlstring

URL set for the tracking link, e.g. https://example.com/ISSUE-123

userstring

The user who last changed the tracking link.

The RemediationItemDetailsVulnerableComponent object

A vulnerable component with details for a remediation item (PG).

ElementTypeDescription
affectedEntitiesstring[]

A list of affected entities.

displayNamestring

The display name of the vulnerable component.

fileNamestring

The file name of the vulnerable component.

idstring

The Dynatrace entity ID of the vulnerable component.

loadOriginsstring[]

The load origins of the vulnerable components.

numberOfAffectedEntitiesinteger

The number of affected entities.

shortNamestring

The short, component-only name of the vulnerable component.

The ErrorEnvelope object

ElementTypeDescription
errorError-

The Error object

ElementTypeDescription
codeinteger

The HTTP status code

constraintViolationsConstraintViolation[]

A list of constraint violations

messagestring

The error message

The ConstraintViolation object

A list of constraint violations

ElementTypeDescription
locationstring-
messagestring-
parameterLocationstring-
The element can hold these values
  • HEADER
  • PATH
  • PAYLOAD_BODY
  • QUERY
pathstring-

Response body JSON models

{
  "assessment": {
    "assessmentAccuracy": "FULL",
    "assessmentAccuracyDetails": {
      "reducedReasons": [
        "LIMITED_AGENT_SUPPORT"
      ]
    },
    "dataAssets": "NOT_AVAILABLE",
    "exposure": "NOT_AVAILABLE",
    "numberOfDataAssets": 1,
    "vulnerableFunctionRestartRequired": true,
    "vulnerableFunctionUsage": "IN_USE",
    "vulnerableFunctionsInUse": [
      {
        "className": "string",
        "filePath": "string",
        "functionName": "string"
      }
    ],
    "vulnerableFunctionsNotAvailable": [
      {}
    ],
    "vulnerableFunctionsNotInUse": [
      {}
    ]
  },
  "entityIds": [
    "string"
  ],
  "firstAffectedTimestamp": 1,
  "id": "string",
  "muteState": {
    "comment": "string",
    "lastUpdatedTimestamp": 1,
    "muted": true,
    "reason": "AFFECTED",
    "user": "string"
  },
  "name": "string",
  "remediationProgress": {
    "affectedEntities": [
      "string"
    ],
    "unaffectedEntities": [
      "string"
    ]
  },
  "resolvedTimestamp": 1,
  "trackingLink": {
    "displayName": "string",
    "lastUpdatedTimestamp": 1,
    "url": "string",
    "user": "string"
  },
  "vulnerabilityState": "RESOLVED",
  "vulnerableComponents": [
    {
      "affectedEntities": [
        "string"
      ],
      "displayName": "string",
      "fileName": "string",
      "id": "string",
      "loadOrigins": [
        "string"
      ],
      "numberOfAffectedEntities": 1,
      "shortName": "string"
    }
  ]
}
{
  "error": {
    "code": 1,
    "constraintViolations": [
      {
        "location": "string",
        "message": "string",
        "parameterLocation": "HEADER",
        "path": "string"
      }
    ],
    "message": "string"
  }
}

Example

Query a remediable entity.

Required filters:

  • securityProblemid
  • remediationItemId

Curl

curl -X 'GET' 'https://mySampleEnv.live.dynatrace.com/api/v2/securityProblems/7412525767433554374/remediationItems/PROCESS_GROUP-F32C09AEDCB7A450' \
-H 'accept: application/json; charset=utf-8' \
-H 'Authorization: Api-Token [your_token]'

Request URL

https://mySampleEnv.live.dynatrace.com/api/v2/securityProblems/7412525767433554374/remediationItems/PROCESS_GROUP-F32C09AEDCB7A4

Response body

{
  "id": "PROCESS_GROUP-F32C09AEDCB7A450",
  "entityIds": [
    "PROCESS_GROUP-F32C09AEDCB7A450"
  ],
  "name": "app.js (frontend) unguard-frontend-*",
  "firstAffectedTimestamp": 1725894871213,
  "assessment": {
    "exposure": "PUBLIC_NETWORK",
    "dataAssets": "NOT_DETECTED",
    "numberOfDataAssets": 0,
    "vulnerableFunctionRestartRequired": false,
    "vulnerableFunctionUsage": "NOT_AVAILABLE",
    "vulnerableFunctionsInUse": [],
    "vulnerableFunctionsNotInUse": [],
    "vulnerableFunctionsNotAvailable": [],
    "assessmentAccuracy": "FULL",
    "assessmentAccuracyDetails": {
      "reducedReasons": []
    }
  },
  "vulnerabilityState": "VULNERABLE",
  "muteState": {
    "muted": false,
    "user": "unknown",
    "reason": "INITIAL_STATE"
  },
  "vulnerableComponents": [
    {
      "id": "SOFTWARE_COMPONENT-30CF12729DF87E61",
      "displayName": "minimatch:3.0.4",
      "shortName": "minimatch",
      "numberOfAffectedEntities": 1,
      "affectedEntities": [
        "PROCESS_GROUP_INSTANCE-66B8C7F0FA77E541"
      ]
    }
  ],
  "remediationProgress": {
    "affectedEntities": [
      "PROCESS_GROUP_INSTANCE-66B8C7F0FA77E541"
    ],
    "unaffectedEntities": []
  }
}