pulumi-oci 1.19.0a1705693078__py3-none-any.whl → 1.20.0__py3-none-any.whl

pulumi_oci/adm/outputs.py

@@ -80,6 +80,8 @@ class RemediationRecipeDetectConfiguration(dict):
             suggest = "max_permissible_cvss_v2score"
         elif key == "maxPermissibleCvssV3score":
             suggest = "max_permissible_cvss_v3score"
+        elif key == "maxPermissibleSeverity":
+            suggest = "max_permissible_severity"
         elif key == "upgradePolicy":
             suggest = "upgrade_policy"
 
@@ -98,11 +100,13 @@ class RemediationRecipeDetectConfiguration(dict):
                  exclusions: Optional[Sequence[str]] = None,
                  max_permissible_cvss_v2score: Optional[float] = None,
                  max_permissible_cvss_v3score: Optional[float] = None,
+                 max_permissible_severity: Optional[str] = None,
                  upgrade_policy: Optional[str] = None):
         """
         :param Sequence[str] exclusions: (Updatable) The list of dependencies to be ignored by the recommendation algorithm. The dependency pattern is matched against the 'group:artifact:version' or the purl of a dependency. An asterisk (*) at the end in the dependency pattern acts as a wildcard and matches zero or more characters.
         :param float max_permissible_cvss_v2score: (Updatable) The maximum Common Vulnerability Scoring System Version 2 (CVSS V2) score. An artifact with a CVSS V2 score below this value is not considered for patching.
         :param float max_permissible_cvss_v3score: (Updatable) The maximum Common Vulnerability Scoring System Version 3 (CVSS V3) score. An artifact with a CVSS V3 score below this value is not considered for patching.
+        :param str max_permissible_severity: (Updatable) The maximum ADM Severity. An artifact with an ADM Severity below this value is not considered for patching.
         :param str upgrade_policy: (Updatable) The upgrade policy for recommendations. The `Nearest` upgrade policy upgrades a dependency to the oldest version that meets both of the following criteria: it is newer than the current version and it is not affected by a vulnerability.
         """
         if exclusions is not None:
@@ -111,6 +115,8 @@ class RemediationRecipeDetectConfiguration(dict):
             pulumi.set(__self__, "max_permissible_cvss_v2score", max_permissible_cvss_v2score)
         if max_permissible_cvss_v3score is not None:
             pulumi.set(__self__, "max_permissible_cvss_v3score", max_permissible_cvss_v3score)
+        if max_permissible_severity is not None:
+            pulumi.set(__self__, "max_permissible_severity", max_permissible_severity)
         if upgrade_policy is not None:
             pulumi.set(__self__, "upgrade_policy", upgrade_policy)
 
@@ -138,6 +144,14 @@ class RemediationRecipeDetectConfiguration(dict):
         """
         return pulumi.get(self, "max_permissible_cvss_v3score")
 
+    @property
+    @pulumi.getter(name="maxPermissibleSeverity")
+    def max_permissible_severity(self) -> Optional[str]:
+        """
+        (Updatable) The maximum ADM Severity. An artifact with an ADM Severity below this value is not considered for patching.
+        """
+        return pulumi.get(self, "max_permissible_severity")
+
     @property
     @pulumi.getter(name="upgradePolicy")
     def upgrade_policy(self) -> Optional[str]:
@@ -606,26 +620,23 @@ class VulnerabilityAuditApplicationDependency(dict):
         return super().get(key, default)
 
     def __init__(__self__, *,
-                 gav: str,
                  node_id: str,
-                 application_dependency_node_ids: Optional[Sequence[str]] = None):
+                 application_dependency_node_ids: Optional[Sequence[str]] = None,
+                 gav: Optional[str] = None,
+                 purl: Optional[str] = None):
         """
-        :param str gav: Group Artifact Version (GAV) identifier (Group:Artifact:Version), e.g. org.graalvm.nativeimage:svm:21.1.0.
         :param str node_id: Unique identifier of an application dependency, for example nodeId1. The nodeId can be generated by assigning a unique id to each application dependency in the tree of application dependencies. Every node, even those who share the same GAV, should have a different nodeId. The preferred way of constructing a nodeId is to assign incremental integers during a breadth first or depth first search. A nodeId can be reused only it refers to the same subtree of application dependencies. (This is not equivalent to referring to the same GAV, that is, a GAV can have multiple transitive dependencies.)
         :param Sequence[str] application_dependency_node_ids: List of application dependencies on which this application dependency depends, each identified by its nodeId.
+        :param str gav: Group Artifact Version (GAV) identifier (Group:Artifact:Version). Example: org.graalvm.nativeimage:svm:21.1.0. "N/A" for non-maven artifacts.
+        :param str purl: Package URL defined in https://github.com/package-url/purl-spec, e.g. pkg:maven/org.graalvm.nativeimage/svm@21.1.0
         """
-        pulumi.set(__self__, "gav", gav)
         pulumi.set(__self__, "node_id", node_id)
         if application_dependency_node_ids is not None:
             pulumi.set(__self__, "application_dependency_node_ids", application_dependency_node_ids)
-
-    @property
-    @pulumi.getter
-    def gav(self) -> str:
-        """
-        Group Artifact Version (GAV) identifier (Group:Artifact:Version), e.g. org.graalvm.nativeimage:svm:21.1.0.
-        """
-        return pulumi.get(self, "gav")
+        if gav is not None:
+            pulumi.set(__self__, "gav", gav)
+        if purl is not None:
+            pulumi.set(__self__, "purl", purl)
 
     @property
     @pulumi.getter(name="nodeId")
@@ -643,6 +654,22 @@ class VulnerabilityAuditApplicationDependency(dict):
         """
         return pulumi.get(self, "application_dependency_node_ids")
 
+    @property
+    @pulumi.getter
+    def gav(self) -> Optional[str]:
+        """
+        Group Artifact Version (GAV) identifier (Group:Artifact:Version). Example: org.graalvm.nativeimage:svm:21.1.0. "N/A" for non-maven artifacts.
+        """
+        return pulumi.get(self, "gav")
+
+    @property
+    @pulumi.getter
+    def purl(self) -> Optional[str]:
+        """
+        Package URL defined in https://github.com/package-url/purl-spec, e.g. pkg:maven/org.graalvm.nativeimage/svm@21.1.0
+        """
+        return pulumi.get(self, "purl")
+
 
 @pulumi.output_type
 class VulnerabilityAuditConfiguration(dict):
@@ -653,6 +680,8 @@ class VulnerabilityAuditConfiguration(dict):
             suggest = "max_permissible_cvss_v2score"
         elif key == "maxPermissibleCvssV3score":
             suggest = "max_permissible_cvss_v3score"
+        elif key == "maxPermissibleSeverity":
+            suggest = "max_permissible_severity"
 
         if suggest:
             pulumi.log.warn(f"Key '{key}' not found in VulnerabilityAuditConfiguration. Access the value via the '{suggest}' property getter instead.")
@@ -668,11 +697,13 @@ class VulnerabilityAuditConfiguration(dict):
     def __init__(__self__, *,
                  exclusions: Optional[Sequence[str]] = None,
                  max_permissible_cvss_v2score: Optional[float] = None,
-                 max_permissible_cvss_v3score: Optional[float] = None):
+                 max_permissible_cvss_v3score: Optional[float] = None,
+                 max_permissible_severity: Optional[str] = None):
         """
         :param Sequence[str] exclusions: A vulnerable application dependency is ignored if its name matches any of the items in `exclusions`. An asterisk (*) in the dependency pattern acts as a wildcard and matches zero or more characters.
         :param float max_permissible_cvss_v2score: A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
         :param float max_permissible_cvss_v3score: A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
+        :param str max_permissible_severity: A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleSeverity.
         """
         if exclusions is not None:
             pulumi.set(__self__, "exclusions", exclusions)
@@ -680,6 +711,8 @@ class VulnerabilityAuditConfiguration(dict):
             pulumi.set(__self__, "max_permissible_cvss_v2score", max_permissible_cvss_v2score)
         if max_permissible_cvss_v3score is not None:
             pulumi.set(__self__, "max_permissible_cvss_v3score", max_permissible_cvss_v3score)
+        if max_permissible_severity is not None:
+            pulumi.set(__self__, "max_permissible_severity", max_permissible_severity)
 
     @property
     @pulumi.getter
@@ -705,6 +738,14 @@ class VulnerabilityAuditConfiguration(dict):
         """
         return pulumi.get(self, "max_permissible_cvss_v3score")
 
+    @property
+    @pulumi.getter(name="maxPermissibleSeverity")
+    def max_permissible_severity(self) -> Optional[str]:
+        """
+        A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleSeverity.
+        """
+        return pulumi.get(self, "max_permissible_severity")
+
 
 @pulumi.output_type
 class VulnerabilityAuditSource(dict):
@@ -871,13 +912,17 @@ class VulnerabilityAuditVulnerability(dict):
                  cvss_v3score: Optional[float] = None,
                  id: Optional[str] = None,
                  is_false_positive: Optional[bool] = None,
-                 is_ignored: Optional[bool] = None):
+                 is_ignored: Optional[bool] = None,
+                 severity: Optional[str] = None,
+                 source: Optional[str] = None):
         """
         :param float cvss_v2score: Common Vulnerability Scoring System (CVSS) Version 2.
         :param float cvss_v3score: Common Vulnerability Scoring System (CVSS) Version 3.
         :param str id: Unique vulnerability identifier, e.g. CVE-1999-0067.
         :param bool is_false_positive: Indicates if the vulnerability is a false positive according to the usage data. If no usage data was provided or the service cannot infer usage of the vulnerable code then this property is `null`.
         :param bool is_ignored: Indicates if the vulnerability was ignored according to the audit configuration.
+        :param str severity: ADM qualitative severity score. Can be either NONE, LOW, MEDIUM, HIGH or CRITICAL.
+        :param str source: vulnerability audit source.
         """
         if cvss_v2score is not None:
             pulumi.set(__self__, "cvss_v2score", cvss_v2score)
@@ -889,6 +934,10 @@ class VulnerabilityAuditVulnerability(dict):
             pulumi.set(__self__, "is_false_positive", is_false_positive)
         if is_ignored is not None:
             pulumi.set(__self__, "is_ignored", is_ignored)
+        if severity is not None:
+            pulumi.set(__self__, "severity", severity)
+        if source is not None:
+            pulumi.set(__self__, "source", source)
 
     @property
     @pulumi.getter(name="cvssV2score")
@@ -930,6 +979,22 @@ class VulnerabilityAuditVulnerability(dict):
         """
         return pulumi.get(self, "is_ignored")
 
+    @property
+    @pulumi.getter
+    def severity(self) -> Optional[str]:
+        """
+        ADM qualitative severity score. Can be either NONE, LOW, MEDIUM, HIGH or CRITICAL.
+        """
+        return pulumi.get(self, "severity")
+
+    @property
+    @pulumi.getter
+    def source(self) -> Optional[str]:
+        """
+        vulnerability audit source.
+        """
+        return pulumi.get(self, "source")
+
 
 @pulumi.output_type
 class GetKnowledgebasesFilterResult(dict):
@@ -1082,16 +1147,19 @@ class GetRemediationRecipeDetectConfigurationResult(dict):
                  exclusions: Sequence[str],
                  max_permissible_cvss_v2score: float,
                  max_permissible_cvss_v3score: float,
+                 max_permissible_severity: str,
                  upgrade_policy: str):
         """
         :param Sequence[str] exclusions: The list of dependencies to be ignored by the recommendation algorithm. The dependency pattern is matched against the 'group:artifact:version' or the purl of a dependency. An asterisk (*) at the end in the dependency pattern acts as a wildcard and matches zero or more characters.
         :param float max_permissible_cvss_v2score: The maximum Common Vulnerability Scoring System Version 2 (CVSS V2) score. An artifact with a CVSS V2 score below this value is not considered for patching.
         :param float max_permissible_cvss_v3score: The maximum Common Vulnerability Scoring System Version 3 (CVSS V3) score. An artifact with a CVSS V3 score below this value is not considered for patching.
+        :param str max_permissible_severity: The maximum ADM Severity. An artifact with an ADM Severity below this value is not considered for patching.
         :param str upgrade_policy: The upgrade policy for recommendations. The `Nearest` upgrade policy upgrades a dependency to the oldest version that meets both of the following criteria: it is newer than the current version and it is not affected by a vulnerability.
         """
         pulumi.set(__self__, "exclusions", exclusions)
         pulumi.set(__self__, "max_permissible_cvss_v2score", max_permissible_cvss_v2score)
         pulumi.set(__self__, "max_permissible_cvss_v3score", max_permissible_cvss_v3score)
+        pulumi.set(__self__, "max_permissible_severity", max_permissible_severity)
         pulumi.set(__self__, "upgrade_policy", upgrade_policy)
 
     @property
@@ -1118,6 +1186,14 @@ class GetRemediationRecipeDetectConfigurationResult(dict):
         """
         return pulumi.get(self, "max_permissible_cvss_v3score")
 
+    @property
+    @pulumi.getter(name="maxPermissibleSeverity")
+    def max_permissible_severity(self) -> str:
+        """
+        The maximum ADM Severity. An artifact with an ADM Severity below this value is not considered for patching.
+        """
+        return pulumi.get(self, "max_permissible_severity")
+
     @property
     @pulumi.getter(name="upgradePolicy")
     def upgrade_policy(self) -> str:
@@ -1596,16 +1672,19 @@ class GetRemediationRecipesRemediationRecipeCollectionItemDetectConfigurationRes
                  exclusions: Sequence[str],
                  max_permissible_cvss_v2score: float,
                  max_permissible_cvss_v3score: float,
+                 max_permissible_severity: str,
                  upgrade_policy: str):
         """
         :param Sequence[str] exclusions: The list of dependencies to be ignored by the recommendation algorithm. The dependency pattern is matched against the 'group:artifact:version' or the purl of a dependency. An asterisk (*) at the end in the dependency pattern acts as a wildcard and matches zero or more characters.
         :param float max_permissible_cvss_v2score: The maximum Common Vulnerability Scoring System Version 2 (CVSS V2) score. An artifact with a CVSS V2 score below this value is not considered for patching.
         :param float max_permissible_cvss_v3score: The maximum Common Vulnerability Scoring System Version 3 (CVSS V3) score. An artifact with a CVSS V3 score below this value is not considered for patching.
+        :param str max_permissible_severity: The maximum ADM Severity. An artifact with an ADM Severity below this value is not considered for patching.
         :param str upgrade_policy: The upgrade policy for recommendations. The `Nearest` upgrade policy upgrades a dependency to the oldest version that meets both of the following criteria: it is newer than the current version and it is not affected by a vulnerability.
         """
         pulumi.set(__self__, "exclusions", exclusions)
         pulumi.set(__self__, "max_permissible_cvss_v2score", max_permissible_cvss_v2score)
         pulumi.set(__self__, "max_permissible_cvss_v3score", max_permissible_cvss_v3score)
+        pulumi.set(__self__, "max_permissible_severity", max_permissible_severity)
         pulumi.set(__self__, "upgrade_policy", upgrade_policy)
 
     @property
@@ -1632,6 +1711,14 @@ class GetRemediationRecipesRemediationRecipeCollectionItemDetectConfigurationRes
         """
         return pulumi.get(self, "max_permissible_cvss_v3score")
 
+    @property
+    @pulumi.getter(name="maxPermissibleSeverity")
+    def max_permissible_severity(self) -> str:
+        """
+        The maximum ADM Severity. An artifact with an ADM Severity below this value is not considered for patching.
+        """
+        return pulumi.get(self, "max_permissible_severity")
+
     @property
     @pulumi.getter(name="upgradePolicy")
     def upgrade_policy(self) -> str:
@@ -1917,17 +2004,23 @@ class GetRemediationRunApplicationDependencyRecommendationsApplicationDependency
                  application_dependency_node_ids: Sequence[str],
                  gav: str,
                  node_id: str,
-                 recommended_gav: str):
+                 purl: str,
+                 recommended_gav: str,
+                 recommended_purl: str):
         """
         :param Sequence[str] application_dependency_node_ids: List of (application dependencies) node identifiers from which this node depends.
         :param str gav: A filter to return only resources that match the entire GAV (Group Artifact Version) identifier given.
         :param str node_id: Unique node identifier of an application dependency with an associated Recommendation, e.g. nodeId1.
+        :param str purl: A filter to return only resources that match the entire PURL given (https://github.com/package-url/purl-spec/).
         :param str recommended_gav: Recommended application dependency in "group:artifact:version" (GAV) format, e.g. org.graalvm.nativeimage:svm:21.2.0.
+        :param str recommended_purl: Recommended application dependency in PURL format, e.g. pkg:maven/org.graalvm.nativeimage/svm@21.2.0
         """
         pulumi.set(__self__, "application_dependency_node_ids", application_dependency_node_ids)
         pulumi.set(__self__, "gav", gav)
         pulumi.set(__self__, "node_id", node_id)
+        pulumi.set(__self__, "purl", purl)
         pulumi.set(__self__, "recommended_gav", recommended_gav)
+        pulumi.set(__self__, "recommended_purl", recommended_purl)
 
     @property
     @pulumi.getter(name="applicationDependencyNodeIds")
@@ -1953,6 +2046,14 @@ class GetRemediationRunApplicationDependencyRecommendationsApplicationDependency
         """
         return pulumi.get(self, "node_id")
 
+    @property
+    @pulumi.getter
+    def purl(self) -> str:
+        """
+        A filter to return only resources that match the entire PURL given (https://github.com/package-url/purl-spec/).
+        """
+        return pulumi.get(self, "purl")
+
     @property
     @pulumi.getter(name="recommendedGav")
     def recommended_gav(self) -> str:
@@ -1961,6 +2062,14 @@ class GetRemediationRunApplicationDependencyRecommendationsApplicationDependency
         """
         return pulumi.get(self, "recommended_gav")
 
+    @property
+    @pulumi.getter(name="recommendedPurl")
+    def recommended_purl(self) -> str:
+        """
+        Recommended application dependency in PURL format, e.g. pkg:maven/org.graalvm.nativeimage/svm@21.2.0
+        """
+        return pulumi.get(self, "recommended_purl")
+
 
 @pulumi.output_type
 class GetRemediationRunApplicationDependencyRecommendationsFilterResult(dict):
@@ -2634,10 +2743,12 @@ class GetVulnerabilityAuditApplicationDependencyResult(dict):
     def __init__(__self__, *,
                  application_dependency_node_ids: Sequence[str],
                  gav: str,
-                 node_id: str):
+                 node_id: str,
+                 purl: str):
         pulumi.set(__self__, "application_dependency_node_ids", application_dependency_node_ids)
         pulumi.set(__self__, "gav", gav)
         pulumi.set(__self__, "node_id", node_id)
+        pulumi.set(__self__, "purl", purl)
 
     @property
     @pulumi.getter(name="applicationDependencyNodeIds")
@@ -2654,6 +2765,11 @@ class GetVulnerabilityAuditApplicationDependencyResult(dict):
     def node_id(self) -> str:
         return pulumi.get(self, "node_id")
 
+    @property
+    @pulumi.getter
+    def purl(self) -> str:
+        return pulumi.get(self, "purl")
+
 
 @pulumi.output_type
 class GetVulnerabilityAuditApplicationDependencyVulnerabilitiesApplicationDependencyVulnerabilityCollectionResult(dict):
@@ -2680,18 +2796,21 @@ class GetVulnerabilityAuditApplicationDependencyVulnerabilitiesApplicationDepend
                  gav: str,
                  is_found_in_knowledge_base: bool,
                  node_id: str,
+                 purl: str,
                  vulnerabilities: Sequence['outputs.GetVulnerabilityAuditApplicationDependencyVulnerabilitiesApplicationDependencyVulnerabilityCollectionItemVulnerabilityResult']):
         """
         :param Sequence[str] application_dependency_node_ids: List of application dependencies on which this application dependency depends, each identified by its nodeId.
         :param str gav: A filter to return only resources that match the entire GAV (Group Artifact Version) identifier given.
         :param bool is_found_in_knowledge_base: Indicates if the artifact is found in the knowledge base.
         :param str node_id: Unique identifier of an application dependency, for example nodeId1.
+        :param str purl: A filter to return only resources that match the entire PURL given (https://github.com/package-url/purl-spec/).
         :param Sequence['GetVulnerabilityAuditApplicationDependencyVulnerabilitiesApplicationDependencyVulnerabilityCollectionItemVulnerabilityArgs'] vulnerabilities: List of vulnerabilities for the application dependency.
         """
         pulumi.set(__self__, "application_dependency_node_ids", application_dependency_node_ids)
         pulumi.set(__self__, "gav", gav)
         pulumi.set(__self__, "is_found_in_knowledge_base", is_found_in_knowledge_base)
         pulumi.set(__self__, "node_id", node_id)
+        pulumi.set(__self__, "purl", purl)
         pulumi.set(__self__, "vulnerabilities", vulnerabilities)
 
     @property
@@ -2726,6 +2845,14 @@ class GetVulnerabilityAuditApplicationDependencyVulnerabilitiesApplicationDepend
         """
         return pulumi.get(self, "node_id")
 
+    @property
+    @pulumi.getter
+    def purl(self) -> str:
+        """
+        A filter to return only resources that match the entire PURL given (https://github.com/package-url/purl-spec/).
+        """
+        return pulumi.get(self, "purl")
+
     @property
     @pulumi.getter
     def vulnerabilities(self) -> Sequence['outputs.GetVulnerabilityAuditApplicationDependencyVulnerabilitiesApplicationDependencyVulnerabilityCollectionItemVulnerabilityResult']:
@@ -2742,19 +2869,25 @@ class GetVulnerabilityAuditApplicationDependencyVulnerabilitiesApplicationDepend
                  cvss_v3score: float,
                  id: str,
                  is_false_positive: bool,
-                 is_ignored: bool):
+                 is_ignored: bool,
+                 severity: str,
+                 source: str):
         """
         :param float cvss_v2score: Common Vulnerability Scoring System (CVSS) Version 2.
         :param float cvss_v3score: Common Vulnerability Scoring System (CVSS) Version 3.
         :param str id: Unique vulnerability identifier, e.g. CVE-1999-0067.
         :param bool is_false_positive: Indicates if the vulnerability is a false positive according to the usage data. If no usage data was provided or the service cannot infer usage of the vulnerable code then this property is `null`.
         :param bool is_ignored: Indicates if the vulnerability was ignored according to the audit configuration.
+        :param str severity: ADM qualitative severity score. Can be either NONE, LOW, MEDIUM, HIGH or CRITICAL.
+        :param str source: Source that published the vulnerability
         """
         pulumi.set(__self__, "cvss_v2score", cvss_v2score)
         pulumi.set(__self__, "cvss_v3score", cvss_v3score)
         pulumi.set(__self__, "id", id)
         pulumi.set(__self__, "is_false_positive", is_false_positive)
         pulumi.set(__self__, "is_ignored", is_ignored)
+        pulumi.set(__self__, "severity", severity)
+        pulumi.set(__self__, "source", source)
 
     @property
     @pulumi.getter(name="cvssV2score")
@@ -2796,6 +2929,22 @@ class GetVulnerabilityAuditApplicationDependencyVulnerabilitiesApplicationDepend
         """
         return pulumi.get(self, "is_ignored")
 
+    @property
+    @pulumi.getter
+    def severity(self) -> str:
+        """
+        ADM qualitative severity score. Can be either NONE, LOW, MEDIUM, HIGH or CRITICAL.
+        """
+        return pulumi.get(self, "severity")
+
+    @property
+    @pulumi.getter
+    def source(self) -> str:
+        """
+        Source that published the vulnerability
+        """
+        return pulumi.get(self, "source")
+
 
 @pulumi.output_type
 class GetVulnerabilityAuditApplicationDependencyVulnerabilitiesFilterResult(dict):
@@ -2831,6 +2980,7 @@ class GetVulnerabilityAuditApplicationDependencyVulnerabilityItemResult(dict):
                  gav: str,
                  is_found_in_knowledge_base: bool,
                  node_id: str,
+                 purl: str,
                  vulnerabilities: Sequence['outputs.GetVulnerabilityAuditApplicationDependencyVulnerabilityItemVulnerabilityResult']):
         """
         :param Sequence[str] application_dependency_node_ids: List of Application Dependencies on which this Application Dependency depends, each identified by its nodeId.
@@ -2843,6 +2993,7 @@ class GetVulnerabilityAuditApplicationDependencyVulnerabilityItemResult(dict):
         pulumi.set(__self__, "gav", gav)
         pulumi.set(__self__, "is_found_in_knowledge_base", is_found_in_knowledge_base)
         pulumi.set(__self__, "node_id", node_id)
+        pulumi.set(__self__, "purl", purl)
         pulumi.set(__self__, "vulnerabilities", vulnerabilities)
 
     @property
@@ -2877,6 +3028,11 @@ class GetVulnerabilityAuditApplicationDependencyVulnerabilityItemResult(dict):
         """
         return pulumi.get(self, "node_id")
 
+    @property
+    @pulumi.getter
+    def purl(self) -> str:
+        return pulumi.get(self, "purl")
+
     @property
     @pulumi.getter
     def vulnerabilities(self) -> Sequence['outputs.GetVulnerabilityAuditApplicationDependencyVulnerabilityItemVulnerabilityResult']:
@@ -2893,7 +3049,9 @@ class GetVulnerabilityAuditApplicationDependencyVulnerabilityItemVulnerabilityRe
                  cvss_v3score: float,
                  id: str,
                  is_false_positive: bool,
-                 is_ignored: bool):
+                 is_ignored: bool,
+                 severity: str,
+                 source: str):
         """
         :param float cvss_v2score: Common Vulnerability Scoring System (CVSS) Version 2.
         :param float cvss_v3score: Common Vulnerability Scoring System (CVSS) Version 3.
@@ -2905,6 +3063,8 @@ class GetVulnerabilityAuditApplicationDependencyVulnerabilityItemVulnerabilityRe
         pulumi.set(__self__, "id", id)
         pulumi.set(__self__, "is_false_positive", is_false_positive)
         pulumi.set(__self__, "is_ignored", is_ignored)
+        pulumi.set(__self__, "severity", severity)
+        pulumi.set(__self__, "source", source)
 
     @property
     @pulumi.getter(name="cvssV2score")
@@ -2943,21 +3103,34 @@ class GetVulnerabilityAuditApplicationDependencyVulnerabilityItemVulnerabilityRe
         """
         return pulumi.get(self, "is_ignored")
 
+    @property
+    @pulumi.getter
+    def severity(self) -> str:
+        return pulumi.get(self, "severity")
+
+    @property
+    @pulumi.getter
+    def source(self) -> str:
+        return pulumi.get(self, "source")
+
 
 @pulumi.output_type
 class GetVulnerabilityAuditConfigurationResult(dict):
     def __init__(__self__, *,
                  exclusions: Sequence[str],
                  max_permissible_cvss_v2score: float,
-                 max_permissible_cvss_v3score: float):
+                 max_permissible_cvss_v3score: float,
+                 max_permissible_severity: str):
         """
         :param Sequence[str] exclusions: A vulnerable application dependency is ignored if its name matches any of the items in `exclusions`. An asterisk (*) in the dependency pattern acts as a wildcard and matches zero or more characters.
         :param float max_permissible_cvss_v2score: A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
         :param float max_permissible_cvss_v3score: A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
+        :param str max_permissible_severity: A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleSeverity.
         """
         pulumi.set(__self__, "exclusions", exclusions)
         pulumi.set(__self__, "max_permissible_cvss_v2score", max_permissible_cvss_v2score)
         pulumi.set(__self__, "max_permissible_cvss_v3score", max_permissible_cvss_v3score)
+        pulumi.set(__self__, "max_permissible_severity", max_permissible_severity)
 
     @property
     @pulumi.getter
@@ -2983,6 +3156,14 @@ class GetVulnerabilityAuditConfigurationResult(dict):
         """
         return pulumi.get(self, "max_permissible_cvss_v3score")
 
+    @property
+    @pulumi.getter(name="maxPermissibleSeverity")
+    def max_permissible_severity(self) -> str:
+        """
+        A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleSeverity.
+        """
+        return pulumi.get(self, "max_permissible_severity")
+
 
 @pulumi.output_type
 class GetVulnerabilityAuditSourceResult(dict):
@@ -3082,19 +3263,25 @@ class GetVulnerabilityAuditVulnerabilityResult(dict):
                  cvss_v3score: float,
                  id: str,
                  is_false_positive: bool,
-                 is_ignored: bool):
+                 is_ignored: bool,
+                 severity: str,
+                 source: str):
         """
         :param float cvss_v2score: Common Vulnerability Scoring System (CVSS) Version 2.
         :param float cvss_v3score: Common Vulnerability Scoring System (CVSS) Version 3.
         :param str id: Unique vulnerability identifier, e.g. CVE-1999-0067.
         :param bool is_false_positive: Indicates if the vulnerability is a false positive according to the usage data. If no usage data was provided or the service cannot infer usage of the vulnerable code then this property is `null`.
         :param bool is_ignored: Indicates if the vulnerability was ignored according to the audit configuration.
+        :param str severity: ADM qualitative severity score. Can be either NONE, LOW, MEDIUM, HIGH or CRITICAL.
+        :param str source: Source that published the vulnerability
         """
         pulumi.set(__self__, "cvss_v2score", cvss_v2score)
         pulumi.set(__self__, "cvss_v3score", cvss_v3score)
         pulumi.set(__self__, "id", id)
         pulumi.set(__self__, "is_false_positive", is_false_positive)
         pulumi.set(__self__, "is_ignored", is_ignored)
+        pulumi.set(__self__, "severity", severity)
+        pulumi.set(__self__, "source", source)
 
     @property
     @pulumi.getter(name="cvssV2score")
@@ -3136,6 +3323,22 @@ class GetVulnerabilityAuditVulnerabilityResult(dict):
         """
         return pulumi.get(self, "is_ignored")
 
+    @property
+    @pulumi.getter
+    def severity(self) -> str:
+        """
+        ADM qualitative severity score. Can be either NONE, LOW, MEDIUM, HIGH or CRITICAL.
+        """
+        return pulumi.get(self, "severity")
+
+    @property
+    @pulumi.getter
+    def source(self) -> str:
+        """
+        Source that published the vulnerability
+        """
+        return pulumi.get(self, "source")
+
 
 @pulumi.output_type
 class GetVulnerabilityAuditsFilterResult(dict):
@@ -3194,6 +3397,8 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemResult(dict):
                  max_observed_cvss_v2score_with_ignored: float,
                  max_observed_cvss_v3score: float,
                  max_observed_cvss_v3score_with_ignored: float,
+                 max_observed_severity: str,
+                 max_observed_severity_with_ignored: str,
                  sources: Sequence['outputs.GetVulnerabilityAuditsVulnerabilityAuditCollectionItemSourceResult'],
                  state: str,
                  system_tags: Mapping[str, Any],
@@ -3204,7 +3409,7 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemResult(dict):
                  vulnerable_artifacts_count: int,
                  vulnerable_artifacts_count_with_ignored: int):
         """
-        :param str build_type: The type of the build tool.
+        :param str build_type: The type of the build tool is restricted to only two values MAVEN or UNSET. Use UNSET when the list of application dependencies is not Maven-related or is a mix of Maven and other ecosystems. This option is soon to be deprecated.
         :param str compartment_id: A filter to return only resources that belong to the specified compartment identifier. Required only if the id query param is not specified.
         :param Sequence['GetVulnerabilityAuditsVulnerabilityAuditCollectionItemConfigurationArgs'] configurations: Configuration for a vulnerability audit. A vulnerable application dependency is ignored if its name does match any of the items in `exclusions`, or all of the associated Vulnerabilies have a CVSS v2 score below `maxPermissibleCvssV2Score` and a CVSS v3 score below `maxPermissibleCvssV3Score`. type: object
         :param Mapping[str, Any] defined_tags: Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: `{"foo-namespace.bar-key": "value"}`
@@ -3218,13 +3423,15 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemResult(dict):
         :param float max_observed_cvss_v2score_with_ignored: Maximum Common Vulnerability Scoring System Version 2 score observed for vulnerable application dependencies including ignored ones.
         :param float max_observed_cvss_v3score: Maximum Common Vulnerability Scoring System Version 3 score observed for non-ignored vulnerable application dependencies.
         :param float max_observed_cvss_v3score_with_ignored: Maximum Common Vulnerability Scoring System Version 3 score observed for vulnerable application dependencies including ignored ones.
-        :param Sequence['GetVulnerabilityAuditsVulnerabilityAuditCollectionItemSourceArgs'] sources: vulnerability audit source.
+        :param str max_observed_severity: Maximum ADM Severity observed for non-ignored vulnerable application dependencies.
+        :param str max_observed_severity_with_ignored: Maximum ADM Severity observed for vulnerable application dependencies including ignored ones.
+        :param Sequence['GetVulnerabilityAuditsVulnerabilityAuditCollectionItemSourceArgs'] sources: Source that published the vulnerability
         :param str state: A filter to return only Vulnerability Audits that match the specified lifecycleState.
         :param Mapping[str, Any] system_tags: Usage of system tag keys. These predefined keys are scoped to namespaces. Example: `{"orcl-cloud.free-tier-retained": "true"}`
         :param str time_created: The creation date and time of the vulnerability audit (formatted according to [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339)).
         :param str time_updated: The update date and time of the vulnerability audit (formatted according to [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339)).
-        :param Sequence['GetVulnerabilityAuditsVulnerabilityAuditCollectionItemUsageDataArgs'] usage_datas: The source details of the usage data on Object Storage. Set `sourceType` to `objectStorageTuple` and use [UsageDataViaObjectStorageTupleDetails](https://docs.cloud.oracle.com/iaas/api/#/en/adm/latest/requests/UsageDataViaObjectStorageTupleDetails) when specifying the namespace, bucket name, and object name.
-        :param Sequence['GetVulnerabilityAuditsVulnerabilityAuditCollectionItemVulnerabilityArgs'] vulnerabilities: List of vulnerabilities found in the vulnerability audit.
+        :param Sequence['GetVulnerabilityAuditsVulnerabilityAuditCollectionItemUsageDataArgs'] usage_datas: The source details of the usage data in object storage. The usage data file uploaded to object storage must be a gzip archive of the JSON usage data returned from the GraalVM native-image-inspect tool after a native-image build. Set `sourceType` to `objectStorageTuple` and use [UsageDataViaObjectStorageTupleDetails](https://docs.cloud.oracle.com/iaas/api/#/en/adm/latest/requests/UsageDataViaObjectStorageTupleDetails) when specifying the namespace, bucket name, and object name.
+        :param Sequence['GetVulnerabilityAuditsVulnerabilityAuditCollectionItemVulnerabilityArgs'] vulnerabilities: List of vulnerabilities found in the vulnerability audit. If a vulnerability affects multiple dependencies, the metadata returned here consists of audit-wide aggregates.
         :param int vulnerable_artifacts_count: Count of non-ignored vulnerable application dependencies.
         :param int vulnerable_artifacts_count_with_ignored: Count of all vulnerable application dependencies.
         """
@@ -3243,6 +3450,8 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemResult(dict):
         pulumi.set(__self__, "max_observed_cvss_v2score_with_ignored", max_observed_cvss_v2score_with_ignored)
         pulumi.set(__self__, "max_observed_cvss_v3score", max_observed_cvss_v3score)
         pulumi.set(__self__, "max_observed_cvss_v3score_with_ignored", max_observed_cvss_v3score_with_ignored)
+        pulumi.set(__self__, "max_observed_severity", max_observed_severity)
+        pulumi.set(__self__, "max_observed_severity_with_ignored", max_observed_severity_with_ignored)
         pulumi.set(__self__, "sources", sources)
         pulumi.set(__self__, "state", state)
         pulumi.set(__self__, "system_tags", system_tags)
@@ -3262,7 +3471,7 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemResult(dict):
     @pulumi.getter(name="buildType")
     def build_type(self) -> str:
         """
-        The type of the build tool.
+        The type of the build tool is restricted to only two values MAVEN or UNSET. Use UNSET when the list of application dependencies is not Maven-related or is a mix of Maven and other ecosystems. This option is soon to be deprecated.
         """
         return pulumi.get(self, "build_type")
 
@@ -3370,11 +3579,27 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemResult(dict):
         """
         return pulumi.get(self, "max_observed_cvss_v3score_with_ignored")
 
+    @property
+    @pulumi.getter(name="maxObservedSeverity")
+    def max_observed_severity(self) -> str:
+        """
+        Maximum ADM Severity observed for non-ignored vulnerable application dependencies.
+        """
+        return pulumi.get(self, "max_observed_severity")
+
+    @property
+    @pulumi.getter(name="maxObservedSeverityWithIgnored")
+    def max_observed_severity_with_ignored(self) -> str:
+        """
+        Maximum ADM Severity observed for vulnerable application dependencies including ignored ones.
+        """
+        return pulumi.get(self, "max_observed_severity_with_ignored")
+
     @property
     @pulumi.getter
     def sources(self) -> Sequence['outputs.GetVulnerabilityAuditsVulnerabilityAuditCollectionItemSourceResult']:
         """
-        vulnerability audit source.
+        Source that published the vulnerability
         """
         return pulumi.get(self, "sources")
 
@@ -3414,7 +3639,7 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemResult(dict):
     @pulumi.getter(name="usageDatas")
     def usage_datas(self) -> Sequence['outputs.GetVulnerabilityAuditsVulnerabilityAuditCollectionItemUsageDataResult']:
         """
-        The source details of the usage data on Object Storage. Set `sourceType` to `objectStorageTuple` and use [UsageDataViaObjectStorageTupleDetails](https://docs.cloud.oracle.com/iaas/api/#/en/adm/latest/requests/UsageDataViaObjectStorageTupleDetails) when specifying the namespace, bucket name, and object name.
+        The source details of the usage data in object storage. The usage data file uploaded to object storage must be a gzip archive of the JSON usage data returned from the GraalVM native-image-inspect tool after a native-image build. Set `sourceType` to `objectStorageTuple` and use [UsageDataViaObjectStorageTupleDetails](https://docs.cloud.oracle.com/iaas/api/#/en/adm/latest/requests/UsageDataViaObjectStorageTupleDetails) when specifying the namespace, bucket name, and object name.
         """
         return pulumi.get(self, "usage_datas")
 
@@ -3422,7 +3647,7 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemResult(dict):
     @pulumi.getter
     def vulnerabilities(self) -> Sequence['outputs.GetVulnerabilityAuditsVulnerabilityAuditCollectionItemVulnerabilityResult']:
         """
-        List of vulnerabilities found in the vulnerability audit.
+        List of vulnerabilities found in the vulnerability audit. If a vulnerability affects multiple dependencies, the metadata returned here consists of audit-wide aggregates.
         """
         return pulumi.get(self, "vulnerabilities")
 
@@ -3448,10 +3673,12 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemApplicationDependenc
     def __init__(__self__, *,
                  application_dependency_node_ids: Sequence[str],
                  gav: str,
-                 node_id: str):
+                 node_id: str,
+                 purl: str):
         pulumi.set(__self__, "application_dependency_node_ids", application_dependency_node_ids)
         pulumi.set(__self__, "gav", gav)
         pulumi.set(__self__, "node_id", node_id)
+        pulumi.set(__self__, "purl", purl)
 
     @property
     @pulumi.getter(name="applicationDependencyNodeIds")
@@ -3468,21 +3695,29 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemApplicationDependenc
     def node_id(self) -> str:
         return pulumi.get(self, "node_id")
 
+    @property
+    @pulumi.getter
+    def purl(self) -> str:
+        return pulumi.get(self, "purl")
+
 
 @pulumi.output_type
 class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemConfigurationResult(dict):
     def __init__(__self__, *,
                  exclusions: Sequence[str],
                  max_permissible_cvss_v2score: float,
-                 max_permissible_cvss_v3score: float):
+                 max_permissible_cvss_v3score: float,
+                 max_permissible_severity: str):
         """
         :param Sequence[str] exclusions: A vulnerable application dependency is ignored if its name matches any of the items in `exclusions`. An asterisk (*) in the dependency pattern acts as a wildcard and matches zero or more characters.
         :param float max_permissible_cvss_v2score: A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
         :param float max_permissible_cvss_v3score: A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score.
+        :param str max_permissible_severity: A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleSeverity.
         """
         pulumi.set(__self__, "exclusions", exclusions)
         pulumi.set(__self__, "max_permissible_cvss_v2score", max_permissible_cvss_v2score)
         pulumi.set(__self__, "max_permissible_cvss_v3score", max_permissible_cvss_v3score)
+        pulumi.set(__self__, "max_permissible_severity", max_permissible_severity)
 
     @property
     @pulumi.getter
@@ -3508,6 +3743,14 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemConfigurationResult(
         """
         return pulumi.get(self, "max_permissible_cvss_v3score")
 
+    @property
+    @pulumi.getter(name="maxPermissibleSeverity")
+    def max_permissible_severity(self) -> str:
+        """
+        A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleSeverity.
+        """
+        return pulumi.get(self, "max_permissible_severity")
+
 
 @pulumi.output_type
 class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemSourceResult(dict):
@@ -3607,19 +3850,25 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemVulnerabilityResult(
                  cvss_v3score: float,
                  id: str,
                  is_false_positive: bool,
-                 is_ignored: bool):
+                 is_ignored: bool,
+                 severity: str,
+                 source: str):
         """
         :param float cvss_v2score: Common Vulnerability Scoring System (CVSS) Version 2.
         :param float cvss_v3score: Common Vulnerability Scoring System (CVSS) Version 3.
         :param str id: A filter to return only resources that match the specified identifier. Required only if the compartmentId query parameter is not specified.
         :param bool is_false_positive: Indicates if the vulnerability is a false positive according to the usage data. If no usage data was provided or the service cannot infer usage of the vulnerable code then this property is `null`.
         :param bool is_ignored: Indicates if the vulnerability was ignored according to the audit configuration.
+        :param str severity: ADM qualitative severity score. Can be either NONE, LOW, MEDIUM, HIGH or CRITICAL.
+        :param str source: Source that published the vulnerability
         """
         pulumi.set(__self__, "cvss_v2score", cvss_v2score)
         pulumi.set(__self__, "cvss_v3score", cvss_v3score)
         pulumi.set(__self__, "id", id)
         pulumi.set(__self__, "is_false_positive", is_false_positive)
         pulumi.set(__self__, "is_ignored", is_ignored)
+        pulumi.set(__self__, "severity", severity)
+        pulumi.set(__self__, "source", source)
 
     @property
     @pulumi.getter(name="cvssV2score")
@@ -3661,4 +3910,20 @@ class GetVulnerabilityAuditsVulnerabilityAuditCollectionItemVulnerabilityResult(
         """
         return pulumi.get(self, "is_ignored")
 
+    @property
+    @pulumi.getter
+    def severity(self) -> str:
+        """
+        ADM qualitative severity score. Can be either NONE, LOW, MEDIUM, HIGH or CRITICAL.
+        """
+        return pulumi.get(self, "severity")
+
+    @property
+    @pulumi.getter
+    def source(self) -> str:
+        """
+        Source that published the vulnerability
+        """
+        return pulumi.get(self, "source")
+