{"meta":{"title":"Security advisories","intro":"Reference documentation for GraphQL schema types in the Security advisories category.","product":"GraphQL API","breadcrumbs":[{"href":"/en/graphql","title":"GraphQL API"},{"href":"/en/graphql/reference","title":"Reference"},{"href":"/en/graphql/reference/security-advisories","title":"Security advisories"}],"documentType":"article"},"body":"# Security advisories\n\nReference documentation for GraphQL schema types in the Security advisories category.\n\n## CVSS - object\n\nThe Common Vulnerability Scoring System.\n\n### Fields for `CVSS`\n\n* `score` (Float!): The CVSS score associated with this advisory.\n* `vectorString` (String): The CVSS vector string associated with this advisory.\n\n## CvssSeverities - object\n\nThe Common Vulnerability Scoring System.\n\n### Fields for `CvssSeverities`\n\n* `cvssV3` (CVSS): The CVSS v3 severity associated with this advisory.\n* `cvssV4` (CVSS): The CVSS v4 severity associated with this advisory.\n\n## CWE - object\n\nA common weakness enumeration.\n\n**Implements:** Node\n\n### Fields for `CWE`\n\n* `cweId` (String!): The id of the CWE.\n* `description` (String!): A detailed description of this CWE.\n* `id` (ID!): The Node ID of the CWE object.\n* `name` (String!): The name of this CWE.\n\n## CWEConnection - object\n\nThe connection type for CWE.\n\n### Fields for `CWEConnection`\n\n* `edges` ([CWEEdge]): A list of edges.\n* `nodes` ([CWE]): A list of nodes.\n* `pageInfo` (PageInfo!): Information to aid in pagination.\n* `totalCount` (Int!): Identifies the total count of items in the connection.\n\n## CWEEdge - object\n\nAn edge in a connection.\n\n### Fields for `CWEEdge`\n\n* `cursor` (String!): A cursor for use in pagination.\n* `node` (CWE): The item at the end of the edge.\n\n## EPSS - object\n\nThe Exploit Prediction Scoring System.\n\n### Fields for `EPSS`\n\n* `percentage` (Float): The EPSS percentage represents the likelihood of a CVE being exploited.\n* `percentile` (Float): The EPSS percentile represents the relative rank of the CVE's likelihood of being exploited compared to other CVEs.\n\n## securityAdvisories - query\n\nGitHub Security Advisories.\n\n**Type:** SecurityAdvisoryConnection!\n\n### Arguments for `securityAdvisories`\n\n* `after` (String): Returns the elements in the list that come after the specified cursor.\n* `before` (String): Returns the elements in the list that come before the specified cursor.\n* `classifications` ([SecurityAdvisoryClassification!]): A list of classifications to filter advisories by.\n* `epssPercentage` (Float): The EPSS percentage to filter advisories by.\n* `epssPercentile` (Float): The EPSS percentile to filter advisories by.\n* `first` (Int): Returns the first n elements from the list.\n* `identifier` (SecurityAdvisoryIdentifierFilter): Filter advisories by identifier, e.g. GHSA or CVE.\n* `last` (Int): Returns the last n elements from the list.\n* `orderBy` (SecurityAdvisoryOrder): Ordering options for the returned topics.\n* `publishedSince` (DateTime): Filter advisories to those published since a time in the past.\n* `updatedSince` (DateTime): Filter advisories to those updated since a time in the past.\n\n## SecurityAdvisory - object\n\nA GitHub Security Advisory.\n\n**Implements:** Node\n\n### Fields for `SecurityAdvisory`\n\n* `classification` (SecurityAdvisoryClassification!): The classification of the advisory.\n* `cvss` (CVSS!): The CVSS associated with this advisory. **Deprecated:** cvss will be removed. New cvss_severities field will now contain both cvss_v3 and cvss_v4 properties. Removal on 2025-10-01 UTC.\n* `cvssSeverities` (CvssSeverities!): The CVSS associated with this advisory.\n* `cwes` (CWEConnection!): CWEs associated with this Advisory. _(Pagination: `after`, `before`, `first`, `last`)_\n* `databaseId` (Int): Identifies the primary key from the database.\n* `description` (String!): This is a long plaintext description of the advisory.\n* `epss` (EPSS): The Exploit Prediction Scoring System.\n* `ghsaId` (String!): The GitHub Security Advisory ID.\n* `id` (ID!): The Node ID of the SecurityAdvisory object.\n* `identifiers` ([SecurityAdvisoryIdentifier!]!): A list of identifiers for this advisory.\n* `notificationsPermalink` (URI): The permalink for the advisory's dependabot alerts page.\n* `origin` (String!): The organization that originated the advisory.\n* `permalink` (URI): The permalink for the advisory.\n* `publishedAt` (DateTime!): When the advisory was published.\n* `references` ([SecurityAdvisoryReference!]!): A list of references for this advisory.\n* `severity` (SecurityAdvisorySeverity!): The severity of the advisory.\n* `summary` (String!): A short plaintext summary of the advisory.\n* `updatedAt` (DateTime!): When the advisory was last updated.\n* `vulnerabilities` (SecurityVulnerabilityConnection!): Vulnerabilities associated with this Advisory.\n  * `after` (String): Returns the elements in the list that come after the specified cursor.\n  * `before` (String): Returns the elements in the list that come before the specified cursor.\n  * `classifications` ([SecurityAdvisoryClassification!]): A list of advisory classifications to filter vulnerabilities by.\n  * `ecosystem` (SecurityAdvisoryEcosystem): An ecosystem to filter vulnerabilities by.\n  * `first` (Int): Returns the first n elements from the list.\n  * `last` (Int): Returns the last n elements from the list.\n  * `orderBy` (SecurityVulnerabilityOrder): Ordering options for the returned topics.\n  * `package` (String): A package name to filter vulnerabilities by.\n  * `severities` ([SecurityAdvisorySeverity!]): A list of severities to filter vulnerabilities by.\n\n* `withdrawnAt` (DateTime): When the advisory was withdrawn, if it has been withdrawn.\n\n## securityAdvisory - query\n\nFetch a Security Advisory by its GHSA ID.\n\n**Type:** SecurityAdvisory\n\n### Arguments for `securityAdvisory`\n\n* `ghsaId` (String!): GitHub Security Advisory ID.\n\n## SecurityAdvisoryClassification - enum\n\nClassification of the advisory.\n\n### Values for `SecurityAdvisoryClassification`\n\n* `GENERAL`: Classification of general advisories.\n* `MALWARE`: Classification of malware advisories.\n\n## SecurityAdvisoryConnection - object\n\nThe connection type for SecurityAdvisory.\n\n### Fields for `SecurityAdvisoryConnection`\n\n* `edges` ([SecurityAdvisoryEdge]): A list of edges.\n* `nodes` ([SecurityAdvisory]): A list of nodes.\n* `pageInfo` (PageInfo!): Information to aid in pagination.\n* `totalCount` (Int!): Identifies the total count of items in the connection.\n\n## SecurityAdvisoryEcosystem - enum\n\nThe possible ecosystems of a security vulnerability's package.\n\n### Values for `SecurityAdvisoryEcosystem`\n\n* `ACTIONS`: GitHub Actions.\n* `COMPOSER`: PHP packages hosted at packagist.org.\n* `ERLANG`: Erlang/Elixir packages hosted at hex.pm.\n* `GO`: Go modules.\n* `MAVEN`: Java artifacts hosted at the Maven central repository.\n* `NPM`: JavaScript packages hosted at npmjs.com.\n* `NUGET`: .NET packages hosted at the NuGet Gallery.\n* `PIP`: Python packages hosted at PyPI.org.\n* `PUB`: Dart packages hosted at pub.dev.\n* `RUBYGEMS`: Ruby gems hosted at RubyGems.org.\n* `RUST`: Rust crates.\n* `SWIFT`: Swift packages.\n\n## SecurityAdvisoryEdge - object\n\nAn edge in a connection.\n\n### Fields for `SecurityAdvisoryEdge`\n\n* `cursor` (String!): A cursor for use in pagination.\n* `node` (SecurityAdvisory): The item at the end of the edge.\n\n## SecurityAdvisoryIdentifier - object\n\nA GitHub Security Advisory Identifier.\n\n### Fields for `SecurityAdvisoryIdentifier`\n\n* `type` (String!): The identifier type, e.g. GHSA, CVE.\n* `value` (String!): The identifier.\n\n## SecurityAdvisoryIdentifierFilter - input object\n\nAn advisory identifier to filter results on.\n\n### Input fields for `SecurityAdvisoryIdentifierFilter`\n\n* `type` (SecurityAdvisoryIdentifierType!): The identifier type.\n* `value` (String!): The identifier string. Supports exact or partial matching.\n\n## SecurityAdvisoryIdentifierType - enum\n\nIdentifier formats available for advisories.\n\n### Values for `SecurityAdvisoryIdentifierType`\n\n* `CVE`: Common Vulnerabilities and Exposures Identifier.\n* `GHSA`: GitHub Security Advisory ID.\n\n## SecurityAdvisoryOrder - input object\n\nOrdering options for security advisory connections.\n\n### Input fields for `SecurityAdvisoryOrder`\n\n* `direction` (OrderDirection!): The ordering direction.\n* `field` (SecurityAdvisoryOrderField!): The field to order security advisories by.\n\n## SecurityAdvisoryOrderField - enum\n\nProperties by which security advisory connections can be ordered.\n\n### Values for `SecurityAdvisoryOrderField`\n\n* `EPSS_PERCENTAGE`: Order advisories by EPSS percentage.\n* `EPSS_PERCENTILE`: Order advisories by EPSS percentile.\n* `PUBLISHED_AT`: Order advisories by publication time.\n* `UPDATED_AT`: Order advisories by update time.\n\n## SecurityAdvisoryPackage - object\n\nAn individual package.\n\n### Fields for `SecurityAdvisoryPackage`\n\n* `ecosystem` (SecurityAdvisoryEcosystem!): The ecosystem the package belongs to, e.g. RUBYGEMS, NPM.\n* `name` (String!): The package name.\n\n## SecurityAdvisoryPackageVersion - object\n\nAn individual package version.\n\n### Fields for `SecurityAdvisoryPackageVersion`\n\n* `identifier` (String!): The package name or version.\n\n## SecurityAdvisoryReference - object\n\nA GitHub Security Advisory Reference.\n\n### Fields for `SecurityAdvisoryReference`\n\n* `url` (URI!): A publicly accessible reference.\n\n## SecurityAdvisorySeverity - enum\n\nSeverity of the vulnerability.\n\n### Values for `SecurityAdvisorySeverity`\n\n* `CRITICAL`: Critical.\n* `HIGH`: High.\n* `LOW`: Low.\n* `MODERATE`: Moderate.\n* `UNKNOWN`: Unknown.\n\n## securityVulnerabilities - query\n\nSoftware Vulnerabilities documented by GitHub Security Advisories.\n\n**Type:** SecurityVulnerabilityConnection!\n\n### Arguments for `securityVulnerabilities`\n\n* `after` (String): Returns the elements in the list that come after the specified cursor.\n* `before` (String): Returns the elements in the list that come before the specified cursor.\n* `classifications` ([SecurityAdvisoryClassification!]): A list of advisory classifications to filter vulnerabilities by.\n* `ecosystem` (SecurityAdvisoryEcosystem): An ecosystem to filter vulnerabilities by.\n* `first` (Int): Returns the first n elements from the list.\n* `last` (Int): Returns the last n elements from the list.\n* `orderBy` (SecurityVulnerabilityOrder): Ordering options for the returned topics.\n* `package` (String): A package name to filter vulnerabilities by.\n* `severities` ([SecurityAdvisorySeverity!]): A list of severities to filter vulnerabilities by.\n\n## SecurityVulnerability - object\n\nAn individual vulnerability within an Advisory.\n\n### Fields for `SecurityVulnerability`\n\n* `advisory` (SecurityAdvisory!): The Advisory associated with this Vulnerability.\n* `firstPatchedVersion` (SecurityAdvisoryPackageVersion): The first version containing a fix for the vulnerability.\n* `package` (SecurityAdvisoryPackage!): A description of the vulnerable package.\n* `severity` (SecurityAdvisorySeverity!): The severity of the vulnerability within this package.\n* `updatedAt` (DateTime!): When the vulnerability was last updated.\n* `vulnerableVersionRange` (String!): A string that describes the vulnerable package versions.\nThis string follows a basic syntax with a few forms.\n\n= 0.2.0 denotes a single vulnerable version.\n<= 1.0.8 denotes a version range up to and including the specified version\n< 0.1.11 denotes a version range up to, but excluding, the specified version\n>= 4.3.0, < 4.3.5 denotes a version range with a known minimum and maximum version.\n>= 0.0.1 denotes a version range with a known minimum, but no known maximum.\n\n## SecurityVulnerabilityConnection - object\n\nThe connection type for SecurityVulnerability.\n\n### Fields for `SecurityVulnerabilityConnection`\n\n* `edges` ([SecurityVulnerabilityEdge]): A list of edges.\n* `nodes` ([SecurityVulnerability]): A list of nodes.\n* `pageInfo` (PageInfo!): Information to aid in pagination.\n* `totalCount` (Int!): Identifies the total count of items in the connection.\n\n## SecurityVulnerabilityEdge - object\n\nAn edge in a connection.\n\n### Fields for `SecurityVulnerabilityEdge`\n\n* `cursor` (String!): A cursor for use in pagination.\n* `node` (SecurityVulnerability): The item at the end of the edge.\n\n## SecurityVulnerabilityOrder - input object\n\nOrdering options for security vulnerability connections.\n\n### Input fields for `SecurityVulnerabilityOrder`\n\n* `direction` (OrderDirection!): The ordering direction.\n* `field` (SecurityVulnerabilityOrderField!): The field to order security vulnerabilities by.\n\n## SecurityVulnerabilityOrderField - enum\n\nProperties by which security vulnerability connections can be ordered.\n\n### Values for `SecurityVulnerabilityOrderField`\n\n* `UPDATED_AT`: Order vulnerability by update time."}