Qualys Container Support

the qualys container support connector allows for seamless integration with qualys' container security services, enabling automated vulnerability management and container security insights qualys container security provides comprehensive visibility into container related security issues, enabling organizations to enforce compliance and protect their container environments the qualys container security connector for swimlane turbine allows users to automate the retrieval of container image information, vulnerability reports, and inventory management directly within their security workflows by integrating with qualys, security teams can enhance their container security posture, streamline vulnerability management, and maintain an up to date inventory of container images, all through the swimlane turbine platform prerequisites to effectively utilize the qualys container support connector with swimlane, ensure you have the following prerequisites api key authentication with the following parameters url the endpoint url for qualys api services username your qualys account username password your qualys account password capabilities this connector provides the following capabilities capabilities go here e g manage firewall policies instead of listing each individual tasks limitations include information about known limitations here, including supported or minimum versions, especially known unsupported versions asset setup the content here should discuss asset setup in a conversational manner be sure to include any known login and test connection errors tasks setup special task setup as needed depending on plugin, exclude if empty known available allowed input options from enum type selection notes any other notes not fitting other sections go here any reference urls to external docs or other resources configurations api key authentication authenticates using an api key configuration parameters parameter description type required url a url to the target host string required username username string required password password string required verify ssl verify ssl certificate boolean optional http proxy a proxy to route requests through string optional actions get container image info retrieve detailed information for a specific container image using its sha identifier in qualys container support endpoint url /csapi/v1 3/images/{{image sha}} method get input argument name type required description path parameters image sha string required parameters for the get container image info action parameters scandetails string optional scan details to fetch valid values are malware, secrets input example {"path parameters" {"image sha" "string"},"parameters" {"scandetails" "all"}} output parameter type description status code number http status code of the response reason string response reason phrase created string output field created updated string output field updated lastuseddate string date value author string output field author repo array output field repo repo registry string output field repo registry repo tag string output field repo tag repo repository string output field repo repository repodigests \['array', 'null'] output field repodigests label array output field label label key string output field label key label value string value for the parameter uuid string unique identifier sha string output field sha operatingsystem string output field operatingsystem customeruuid string unique identifier dockerversion string output field dockerversion size number output field size layers array output field layers layers size \['number', 'null'] output field layers size layers createdby string output field layers createdby layers created string output field layers created layers id string unique identifier output example {"status code" 200,"response headers" {},"reason" "ok","json body" {}} get container image vulnerabilities retrieve a detailed vulnerability report for a specific container image by its sha identifier in qualys container support endpoint url /csapi/v1 3/images/{{image sha}}/vuln method get input argument name type required description path parameters image sha string required parameters for the get container image vulnerabilities action parameters type string optional type of vulnerabilities to retrieve parameters filter string optional specify vulnerability filter input example {"path parameters" {"image sha" "string"},"parameters" {"type" "all","filter" "string"}} output parameter type description status code number http status code of the response reason string response reason phrase details array image vulnerability details vulnsummary object output field vulnsummary vulnsummary confirmed object output field vulnsummary confirmed vulnsummary confirmed sev1count number count value vulnsummary confirmed sev2count number count value vulnsummary confirmed sev3count number count value vulnsummary confirmed sev4count number count value vulnsummary confirmed sev5count number count value vulnsummary potential object output field vulnsummary potential vulnsummary potential sev1count number count value vulnsummary potential sev2count number count value vulnsummary potential sev3count number count value vulnsummary potential sev4count number count value vulnsummary potential sev5count number count value vulnsummary patchavailability object output field vulnsummary patchavailability vulnsummary patchavailability confirmed object output field vulnsummary patchavailability confirmed vulnsummary patchavailability confirmed sev1count number count value vulnsummary patchavailability confirmed sev2count number count value vulnsummary patchavailability confirmed sev3count number count value vulnsummary patchavailability confirmed sev4count number count value vulnsummary patchavailability confirmed sev5count number count value vulnsummary patchavailability potential object output field vulnsummary patchavailability potential vulnsummary patchavailability potential sev1count number count value output example {"status code" 200,"response headers" {},"reason" "ok","json body" {}} list container images retrieve a comprehensive list of container images from a qualys account, with customizable report types via the 'action' parameter endpoint url /csapi/v1 3/images method get input argument name type required description parameters pagenumber number optional specify page number parameters pagesize number optional specify page size parameters sort string optional specifies the sort criteria input example {"parameters" {"pagenumber" 123,"pagesize" 123,"sort" "string"}} output parameter type description status code number http status code of the response reason string response reason phrase data array list of images count number number of images in response output example {"status code" 200,"response headers" {},"reason" "ok","json body" {}} response headers header description example content type the media type of the resource application/json date the date and time at which the message was originated thu, 01 jan 2024 00 00 00 gmt