Webhooks (beta)

Beta

Webhooks are currently in beta. This means that Data Theorem may make API-breaking changes to them, or they may not look exactly like the final version.

Configuration

See our Webhook Integration guide for instructions on how to enable webhooks.

Webhook Schema

The JSON Schema for the webhook events included below is available at https://docs.securetheorem.com/schema/webhook_schema.json

Example Data Theorem IAM Events

User Created

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "last_name": "one",
      "user_login_email": "someone@somewhere.com",
      "can_access_app_search": true,
      "can_access_app_secure": true,
      "allowed_app_ids": [],
      "notification_email": "someone@datatheorem.io",
      "can_access_brand_protect": true,
      "first_name": "some",
      "can_access_api_inspect": true,
      "created_by": "someone@datatheorem.io",
      "can_download_reports": true,
      "role": "MANAGER",
      "can_invite_users": true,
      "auth_strategy": "OTP"
    },
    "version": 1,
    "type": "MOBILE_SECURE__USER_CREATED"
  },
  "time": 123456789
}

User Deleted

1
2
3
4
5
6
7
8
9
10
11
12
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "user_login_email": "someone@somewhere.com",
      "deleted_by": "someone@datatheorem.io"
    },
    "version": 1,
    "type": "MOBILE_SECURE__USER_DELETED"
  },
  "time": 123456789
}

User Login Failed

1
2
3
4
5
6
7
8
9
10
11
12
13
14
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "user_login_email": "someone@example.com",
      "auth_strategy": "OTP",
      "ip_address": "127.0.0.1",
      "auth_failed_reason": "INVALID_PASSWORD"
    },
    "version": 1,
    "type": "MOBILE_SECURE__USER_LOGIN_FAILED"
  },
  "time": 123456789
}

User Login Successful

1
2
3
4
5
6
7
8
9
10
11
12
13
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "user_login_email": "someone@example.com",
      "ip_address": "127.0.0.1",
      "auth_strategy": "OTP"
    },
    "version": 1,
    "type": "MOBILE_SECURE__USER_LOGIN_SUCCESSFUL"
  },
  "time": 123456789
}

User Updated

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "login_email_updated": {
        "new": "somebody@somewhere.com",
        "old": "someone@somewhere.com"
      },
      "updated_by": "someone@datatheorem.io",
      "user_login_email": "someone@example.com",
      "auth_strategy_updated": {
        "new": "SAML",
        "old": "OTP"
      },
      "role_updated": {
        "new": "MANAGER",
        "old": "DEVELOPER"
      },
      "otp_reset": false
    },
    "version": 1,
    "type": "MOBILE_SECURE__USER_UPDATED"
  },
  "time": 123456789
}

API Key Created

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "has_access_to_brand_protect_public_api": true,
      "has_access_to_api_inspect_public_api": false,
      "has_access_to_management_api": false,
      "name": "example api key",
      "has_access_to_cloud_secure_scans_api": true,
      "has_access_to_results_api": true,
      "owned_by": "someone@example.com",
      "id": 2,
      "has_access_to_api_secure_scans_api": true,
      "has_access_to_web_secure_scans_api": false
    },
    "version": 1,
    "type": "MOBILE_SECURE__CUSTOMER_API_KEY_CREATED"
  },
  "time": 123456789
}

API Key Deleted

1
2
3
4
5
6
7
8
9
10
11
12
13
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "owned_by": "someone@example.com",
      "id": 123456,
      "name": "test"
    },
    "version": 1,
    "type": "MOBILE_SECURE__CUSTOMER_API_KEY_DELETED"
  },
  "time": 123456789
}

Example API Secure Events

Policy Violation Created

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
{
  "event": {
    "type": "API_SECURE__POLICY_VIOLATION_CREATED",
    "data": {
      "uuid": "3acfe377-9655-49bd-a625-88d9b5bfe275",
      "affected_asset": {
        "uuid": "64c61ca0-e764-487f-969b-f96b96892ff4",
        "name": "test-unencrypted",
        "portal_url": "https://www.securetheorem.com/api/cloud-resources/64c61ca0-e764-487f-969b-f96b96892ff4",
        "date_created": "2021-02-08T09:26:56.949870+00:00",
        "discovered_via": "AMAZON_WEB_SERVICES",
        "url": null,
        "hosted_on": "AMAZON_WEB_SERVICES",
        "type": "CLOUD_RESOURCE",
        "belongs_to_asset_group": {
          "name": "CA Business Unit",
          "uuid": "8cc7e379-1c9a-47df-aad1-a129afba337a"
        },
        "cloud_console_url": "https://console.aws.amazon.com/dynamodb/home?region=us-east-1#cache-cluster:selected=test-unencrypted"
      },
      "policy_violation_status": "OPEN",
      "date_created": "2021-02-08T09:26:57.216670+00:00",
      "relevance": "PROACTIVE",
      "description": "The AWS DynamoDB DAX cluster has encryption at rest disabled, which can result in data leak in the case of unauthorized\naccess.",
      "recommendation": "It is impossible to enable encryption after a cluster has been created.\nThe cluster must be re-created to enable encryption at rest.\n\nLook at the relevant AWS documentation:\n\n - [DAX Encryption at Rest](https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/DAXEncryptionAtRest.html)\n - [Deleting a DAX Cluster](https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/DAX.cluster-management.html#DAX.cluster-management.deleting)\n - [Creating a DAX Cluster](https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/DAX.create-cluster.html)",
      "additional_information": null,
      "portal_url": "https://www.securetheorem.com/api/inspect/policy-violations/3acfe377-9655-49bd-a625-88d9b5bfe275",
      "policy_name": "Data Theorem",
      "policy_uuid": "17e0e14d-e6f1-4b35-a5c0-976dbbf41436",
      "policy_portal_url": "https://www.securetheorem.com/api/policy/17e0e14d-e6f1-4b35-a5c0-976dbbf41436",
      "violated_policy_rule_uuid": "3ddb30d9-9d4e-452f-a720-318e4b73edd0",
      "violated_policy_rule_type_uuid": "0036907f-40e0-58cf-9a92-be93d06e3c29",
      "exception_explanation": null,
      "exception_date_created": null
    },
    "version": 1
  },
  "time": 1612776417,
  "host": "securetheorem.com"
}

Policy Violation Exception Added

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
{
  "event": {
    "type": "API_SECURE__POLICY_VIOLATION_EXCEPTION_ADDED",
    "data": {
      "uuid": "bd1f785b-0d92-4b0d-9f24-60c8209b33e1",
      "affected_asset": {
        "uuid": "d38bcb77-c75a-4935-837f-de42849cea92",
        "name": "tstream",
        "portal_url": "https://www.securetheorem.com/cloud/cloud-resources/d38bcb77-c75a-4935-837f-de42849cea92",
        "date_created": "2020-04-07T12:20:15.946189+00:00",
        "discovered_via": "AMAZON_WEB_SERVICES",
        "type": "CLOUD_RESOURCE",
        "url": null,
        "hosted_on": "AMAZON_WEB_SERVICES",
        "belongs_to_asset_group": {
          "name": "CA Business Unit",
          "uuid": "8cc7e379-1c9a-47df-aad1-a129afba337a"
        },
        "cloud_console_url": "https://console.aws.amazon.com/kinesis/home?region=us-east-1#/streams/details?streamName=tstream&tab=details"
      },
      "policy_violation_status": "WONT_FIX",
      "date_created": "2020-10-23T23:51:42.008493+00:00",
      "date_resolved": null,
      "relevance": "PROACTIVE",
      "description": "The AWS Kinesis Stream is configured with server-side encryption disabled, which can result in data leakage in the case\nof unauthorized access.",
      "recommendation": "In the navigation panel, under Amazon Kinesis, choose Streams and select the Kinesis stream id.\nOn the details panel, go to Server-side encryption click on edit and add an encryption key.",
      "additional_information": null,
      "portal_url": "https://www.securetheorem.com/api/inspect/policy-violations/bd1f785b-0d92-4b0d-9f24-60c8209b33e1",
      "policy_name": "Data Theorem",
      "policy_uuid": "17e0e14d-e6f1-4b35-a5c0-976dbbf41436",
      "policy_portal_url": "https://www.securetheorem.com/api/policy/17e0e14d-e6f1-4b35-a5c0-976dbbf41436",
      "violated_policy_rule_uuid": "f6c1caf4-06b7-42ef-8f76-aa12cde8f897",
      "violated_policy_rule_type_uuid": "9eb4bdb9-64aa-5ae1-8c55-03d198f92fee",
      "exception_explanation": "Risk is low.",
      "exception_date_created": "2021-02-16T16:48:56.236744+00:00"
    },
    "version": 1
  },
  "time": 1613494138,
  "host": "securetheorem.com"
}

Policy Violation Exception Removed

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
{
  "event": {
    "type": "API_SECURE__POLICY_VIOLATION_EXCEPTION_REMOVED",
    "data": {
      "uuid": "bd1f785b-0d92-4b0d-9f24-60c8209b33e1",
      "affected_asset": {
        "uuid": "d38bcb77-c75a-4935-837f-de42849cea92",
        "name": "tstream",
        "portal_url": "https://www.securetheorem.com/cloud/cloud-resources/d38bcb77-c75a-4935-837f-de42849cea92",
        "date_created": "2020-04-07T12:20:15.946189+00:00",
        "discovered_via": "AMAZON_WEB_SERVICES",
        "type": "CLOUD_RESOURCE",
        "url": null,
        "hosted_on": "AMAZON_WEB_SERVICES",
        "belongs_to_asset_group": {
          "name": "CA Business Unit",
          "uuid": "8cc7e379-1c9a-47df-aad1-a129afba337a"
        },
        "cloud_console_url": "https://console.aws.amazon.com/kinesis/home?region=us-east-1#/streams/details?streamName=tstream&tab=details"
      },
      "policy_violation_status": "OPEN",
      "date_created": "2020-10-23T23:51:42.008493+00:00",
      "date_resolved": null,
      "relevance": "PROACTIVE",
      "description": "The AWS Kinesis Stream is configured with server-side encryption disabled, which can result in data leakage in the case\nof unauthorized access.",
      "recommendation": "In the navigation panel, under Amazon Kinesis, choose Streams and select the Kinesis stream id.\nOn the details panel, go to Server-side encryption click on edit and add an encryption key.",
      "additional_information": null,
      "portal_url": "https://www.securetheorem.com/api/inspect/policy-violations/bd1f785b-0d92-4b0d-9f24-60c8209b33e1",
      "policy_name": "Data Theorem",
      "policy_uuid": "17e0e14d-e6f1-4b35-a5c0-976dbbf41436",
      "policy_portal_url": "https://www.securetheorem.com/api/policy/17e0e14d-e6f1-4b35-a5c0-976dbbf41436",
      "violated_policy_rule_uuid": "f6c1caf4-06b7-42ef-8f76-aa12cde8f897",
      "violated_policy_rule_type_uuid": "9eb4bdb9-64aa-5ae1-8c55-03d198f92fee",
      "exception_explanation": null,
      "exception_date_removed": "2021-02-16T16:48:56.236744+00:00"
    },
    "version": 1
  },
  "time": 1613494138,
  "host": "securetheorem.com"
}

Policy Violation Resolved

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
{
  "event": {
    "type": "API_SECURE__POLICY_VIOLATION_RESOLVED",
    "data": {
      "uuid": "924f1fb0-ebaa-4dfd-9297-390c0df18b44",
      "affected_asset": {
        "uuid": "ed1d9485-5672-4db0-81aa-f8e5c96ba750",
        "name": "gumtree.com.au",
        "portal_url": "https://www.securetheorem.com/api/network-services/ed1d9485-5672-4db0-81aa-f8e5c96ba750",
        "date_created": "2020-07-23T08:18:30.450602+00:00",
        "discovered_via": "WEBSITE_CRAWLER",
        "url": "https://gumtree.com.au",
        "hosted_on": "UNKNOWN",
        "type": "NETWORK_SERVICE",
        "belongs_to_asset_group": null,
        "cloud_console_url": null
      },
      "policy_violation_status": "RESOLVED",
      "date_created": "2021-01-19T12:04:15.714371+00:00",
      "relevance": "IMPORTANT",
      "description": "The server leverages a certificate for SSL/TLS connections that will expire in less than the configured number of days.\\n\\nIf the SSL certificate is not renewed in time, clients including browsers and mobile applications will not allow\\nconnecting to the server, and will instead display an error to the end-user stating that the connection is not secure.",
      "recommendation": "Deploy a new SSL/TLS certificate on the affected server.",
      "additional_information": null,
      "portal_url": "https://www.securetheorem.com/api/inspect/policy-violations/924f1fb0-ebaa-4dfd-9297-390c0df18b44",
      "policy_name": "Data Theorem",
      "policy_uuid": "17e0e14d-e6f1-4b35-a5c0-976dbbf41436",
      "policy_portal_url": "https://www.securetheorem.com/api/policy/17e0e14d-e6f1-4b35-a5c0-976dbbf41436",
      "violated_policy_rule_uuid": "471284cb-e96a-49e0-a729-674cfe18f506",
      "violated_policy_rule_type_uuid": "5c3b1f37-8509-5c6e-abed-6ee9f3497c17",
      "exception_explanation": null,
      "exception_date_created": null
    },
    "version": 1
  },
  "time": 1611733052,
  "host": "securetheorem.com"
}

Network Service Discovered

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
{
  "event": {
    "type": "API_SECURE__NETWORK_SERVICE_DISCOVERED",
    "data": {
      "uuid": "14286cc6-7f6f-4a3e-9484-e06977e7c923",
      "status": "ONLINE",
      "date_created": "2021-02-04T08:10:04.955520+00:00",
      "domain_name_uuid": "358e0e04-f9e1-48f7-ae49-437eeabe2250",
      "domain_name": "bibliothequehistorique-visitevirtuelle.paris.fr",
      "port": 80,
      "application_layer_protocol": "HTTP",
      "is_tls_encrypted": false,
      "url": "http://bibliothequehistorique-visitevirtuelle.paris.fr",
      "discovered_via": "WEBSITE_CRAWLER",
      "hosted_on": "UNKNOWN"
    },
    "version": 1
  },
  "time": 1612426206,
  "host": "securetheorem.com"
}

API Key Updated

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "has_access_to_api_inspect_public_api_updated": {
        "new": true,
        "old": false
      },
      "has_access_to_cloud_secure_scans_api_updated": {
        "new": false,
        "old": true
      },
      "has_access_to_api_secure_scans_api_updated": {
        "new": false,
        "old": true
      },
      "name_updated": {
        "new": "b",
        "old": "a"
      },
      "has_access_to_results_api_updated": {
        "new": false,
        "old": true
      },
      "owned_by_updated": {
        "new": "someone.else@example.com",
        "old": "someone@example.com"
      },
      "has_access_to_web_secure_scans_api_updated": {
        "new": true,
        "old": false
      },
      "has_access_to_management_api_updated": {
        "new": true,
        "old": false
      },
      "has_access_to_brand_protect_public_api_updated": {
        "new": false,
        "old": true
      },
      "id": 2
    },
    "version": 1,
    "type": "MOBILE_SECURE__CUSTOMER_API_KEY_UPDATED"
  },
  "time": 123456789
}

Example Mobile Secure Events

Application Added

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "upload_source": "DT_UPLOAD_API",
      "mobile_app": {
        "platform": "IOS",
        "id": 3,
        "release_type": "APP_STORE",
        "bundle_id": "com.example.mobile.app"
      },
      "request_customer_approval": true
    },
    "version": 1,
    "type": "MOBILE_SECURE__APPLICATION_ADDED"
  },
  "time": 123456789
}

When The Application Has Been Added With A Linked App Store App

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "upload_source": "DT_UPLOAD_API",
      "app_store_mobile_app": {
        "platform": "ANDROID",
        "id": 3,
        "release_type": "APP_STORE",
        "bundle_id": "com.example.mobile.app"
      },
      "uploading_user_email": "someone@example.com",
      "mobile_app": {
        "platform": "IOS",
        "id": 5,
        "release_type": "PRE_PROD",
        "bundle_id": "com.example.mobile.app.preprod"
      },
      "request_customer_approval": true
    },
    "version": 1,
    "type": "MOBILE_SECURE__APPLICATION_ADDED"
  },
  "time": 123456789
}

Application Removed

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "mobile_app": {
        "platform": "ANDROID",
        "id": 3,
        "release_type": "APP_STORE",
        "bundle_id": "com.example.mobile.app"
      }
    },
    "version": 1,
    "type": "MOBILE_SECURE__APPLICATION_REMOVED"
  },
  "time": 123456789
}

Application Updated

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "app_store_mobile_app_updated": {
        "new": {
          "platform": "IOS",
          "id": 3,
          "release_type": "APP_STORE",
          "bundle_id": "com.example.mobile.app"
        },
        "old": null
      },
      "subscription_updated": {
        "new": "STATIC",
        "old": "NO_SUBSCRIPTION"
      },
      "mobile_app": {
        "platform": "IOS",
        "id": 5,
        "release_type": "APP_STORE",
        "bundle_id": "com.example.mobile.app"
      }
    },
    "version": 1,
    "type": "MOBILE_SECURE__APPLICATION_UPDATED"
  },
  "time": 123456789
}

Security Finding Note Created

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "finding": {
        "is_permanently_closed": false,
        "associated_cwe_ids": [],
        "links": [
          {
            "href": "mobile_apps/2",
            "type": "GET",
            "rel": "mobile_apps"
          },
          {
            "href": "security_findings?mobile_app_id=2",
            "type": "GET",
            "rel": "self"
          },
          {
            "href": "security_finding_targets?mobile_app_id=2",
            "type": "GET",
            "rel": "security_finding_targets"
          }
        ],
        "compliance_policy_references": [],
        "severity": "LOW",
        "mobile_app_id": 2,
        "aggregated_status": "NEW",
        "associated_cve_ids": [],
        "recommendation": "Some recommandation from datataheorem",
        "id": "006564",
        "description": "Some description from datatheorem",
        "category": "DATA_LOSS_TO_HACKERS",
        "importance_tags": [
          "SECURITY"
        ],
        "issue_type_id": "709fe45d-391b-51c0-a8a0-40845871cb25",
        "notes": [
          {
            "is_internal_comment": false,
            "author_email": "someone@example.com",
            "is_question_for_datatheorem": true,
            "date_created": "2021-09-30T12:49:01.643532",
            "is_reply_from_datatheorem": false,
            "text": "Some question about this issue.",
            "id": 4
          }
        ],
        "title": "Security Finding title",
        "portal_url": "https://www.securetheorem.com/mobile/app/2/issues/006564",
        "results_last_updated": "2021-09-30T12:49:01.612201",
        "exploitability": "EASY"
      },
      "finding_note": {
        "is_internal_comment": false,
        "author_email": "someone@example.com",
        "is_question_for_datatheorem": true,
        "date_created": "2021-09-30T12:49:01.643532",
        "is_reply_from_datatheorem": false,
        "text": "Some question about this issue",
        "id": 4
      },
      "mobile_app": {
        "platform": "IOS",
        "id": 2,
        "release_type": "APP_STORE",
        "bundle_id": "com.example.mobile.app"
      }
    },
    "version": 1,
    "type": "MOBILE_SECURE__CUSTOMER_SECURITY_FINDING_NOTE_CREATED"
  },
  "time": 123456789
}

Security Finding Note Deleted

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "finding": {
        "is_permanently_closed": false,
        "associated_cwe_ids": [],
        "links": [
          {
            "href": "mobile_apps/2",
            "type": "GET",
            "rel": "mobile_apps"
          },
          {
            "href": "security_findings?mobile_app_id=2",
            "type": "GET",
            "rel": "self"
          },
          {
            "href": "security_finding_targets?mobile_app_id=2",
            "type": "GET",
            "rel": "security_finding_targets"
          }
        ],
        "compliance_policy_references": [],
        "severity": "LOW",
        "mobile_app_id": 2,
        "aggregated_status": "NEW",
        "associated_cve_ids": [],
        "recommendation": "Some recommandation from datataheorem",
        "id": "006564",
        "description": "Some description from datatheorem",
        "category": "DATA_LOSS_TO_HACKERS",
        "importance_tags": [
          "SECURITY"
        ],
        "issue_type_id": "709fe45d-391b-51c0-a8a0-40845871cb25",
        "notes": [
          {
            "is_internal_comment": false,
            "author_email": "someone@example.com",
            "is_question_for_datatheorem": true,
            "date_created": "2021-09-30T12:49:01.643532",
            "is_reply_from_datatheorem": false,
            "text": "Some question about this issue.",
            "id": 4
          }
        ],
        "title": "Security Finding title",
        "portal_url": "https://www.securetheorem.com/mobile/app/2/issues/006564",
        "results_last_updated": "2021-09-30T12:49:01.612201",
        "exploitability": "EASY"
      },
      "finding_note": {
        "is_internal_comment": false,
        "author_email": "someone@example.com",
        "is_question_for_datatheorem": true,
        "date_created": "2021-09-30T12:49:01.643532",
        "is_reply_from_datatheorem": false,
        "text": "Some question about this issue",
        "id": 4
      },
      "mobile_app": {
        "platform": "IOS",
        "id": 2,
        "release_type": "APP_STORE",
        "bundle_id": "com.example.mobile.app"
      }
    },
    "version": 1,
    "type": "MOBILE_SECURE__CUSTOMER_SECURITY_FINDING_NOTE_DELETED"
  },
  "time": 123456789
}

Security Finding Target Closed Because Compensating Controls Exists

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "finding": {
        "is_permanently_closed": false,
        "associated_cwe_ids": [],
        "links": [
          {
            "href": "mobile_apps/2",
            "type": "GET",
            "rel": "mobile_apps"
          },
          {
            "href": "security_findings?mobile_app_id=2",
            "type": "GET",
            "rel": "self"
          },
          {
            "href": "security_finding_targets?mobile_app_id=2",
            "type": "GET",
            "rel": "security_finding_targets"
          }
        ],
        "compliance_policy_references": [],
        "severity": "HIGH",
        "mobile_app_id": 2,
        "aggregated_status": "NEW",
        "associated_cve_ids": [],
        "recommendation": "Some recommendation from datatheorem",
        "id": "004727",
        "description": "Description of the issue",
        "category": "DATA_IN_TRANSIT_EXPOSURE",
        "importance_tags": [
          "SECURITY"
        ],
        "issue_type_id": "db11bae9-9a59-56b9-9732-7d3493a617f3",
        "notes": [],
        "title": "Title of the security finding",
        "portal_url": "https://www.securetheorem.com/mobile/app/2/issues/004727",
        "results_last_updated": "2021-09-30T12:49:05.140960",
        "exploitability": "DIFFICULT"
      },
      "finding_target": {
        "additional_contexts": [],
        "security_finding_id": "004727",
        "links": [
          {
            "href": "mobile_apps/2",
            "type": "GET",
            "rel": "mobile_apps"
          },
          {
            "href": "security_findings?mobile_app_id=2",
            "type": "GET",
            "rel": "security_findings"
          },
          {
            "href": "security_finding_targets?mobile_app_id=2",
            "type": "GET",
            "rel": "self"
          }
        ],
        "current_status_date": "2021-09-30T12:49:05.140960",
        "text": "default value",
        "mobile_app_id": 2,
        "current_status": "CLOSED_COMPENSATING_CONTROL",
        "issue_type_id": "db11bae9-9a59-56b9-9732-7d3493a617f3",
        "portal_url": "https://www.securetheorem.com/mobile/app/2/issues/004727/targets/10",
        "id": 10,
        "statuses": [],
        "results_last_updated": "2021-09-30T12:49:05.140960"
      },
      "mobile_app": {
        "platform": "IOS",
        "id": 2,
        "release_type": "APP_STORE",
        "bundle_id": "com.example.mobile.app"
      }
    },
    "version": 1,
    "type": "MOBILE_SECURE__CUSTOMER_SECURITY_FINDING_TARGET_CLOSED_COMPENSATING_CONTROL"
  },
  "time": 123456789
}

Security Finding Target Closed Because The Issue Has Been Fixed

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "finding": {
        "is_permanently_closed": false,
        "associated_cwe_ids": [],
        "links": [
          {
            "href": "mobile_apps/2",
            "type": "GET",
            "rel": "mobile_apps"
          },
          {
            "href": "security_findings?mobile_app_id=2",
            "type": "GET",
            "rel": "self"
          },
          {
            "href": "security_finding_targets?mobile_app_id=2",
            "type": "GET",
            "rel": "security_finding_targets"
          }
        ],
        "compliance_policy_references": [],
        "severity": "MEDIUM",
        "mobile_app_id": 2,
        "aggregated_status": "NEW",
        "associated_cve_ids": [],
        "recommendation": "Some recommendation from datatheorem",
        "id": "006843",
        "description": "Description for this issue",
        "category": "UNAUTHORIZED_DATA_COLLECTION",
        "importance_tags": [
          "SECURITY"
        ],
        "issue_type_id": "82b2e067-bacf-50d7-b651-e4b07583c76b",
        "notes": [],
        "title": "Title of the security finding",
        "portal_url": "https://www.securetheorem.com/mobile/app/2/issues/006843",
        "results_last_updated": "2021-09-30T12:49:02.577982",
        "exploitability": "MODERATE"
      },
      "finding_target": {
        "additional_contexts": [],
        "security_finding_id": "006843",
        "links": [
          {
            "href": "mobile_apps/2",
            "type": "GET",
            "rel": "mobile_apps"
          },
          {
            "href": "security_findings?mobile_app_id=2",
            "type": "GET",
            "rel": "security_findings"
          },
          {
            "href": "security_finding_targets?mobile_app_id=2",
            "type": "GET",
            "rel": "self"
          }
        ],
        "current_status_date": "2021-09-30T12:49:02.577982",
        "text": "default value",
        "mobile_app_id": 2,
        "current_status": "CLOSED_FIXED",
        "issue_type_id": "82b2e067-bacf-50d7-b651-e4b07583c76b",
        "portal_url": "https://www.securetheorem.com/mobile/app/2/issues/006843/targets/10",
        "id": 10,
        "statuses": [],
        "results_last_updated": "2021-09-30T12:49:02.577982"
      },
      "mobile_app": {
        "platform": "IOS",
        "id": 2,
        "release_type": "APP_STORE",
        "bundle_id": "com.example.mobile.app"
      }
    },
    "version": 1,
    "type": "MOBILE_SECURE__CUSTOMER_SECURITY_FINDING_TARGET_CLOSED_FIXED"
  },
  "time": 123456789
}

Security Finding Target Closed Because The Risk Is Accepted

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "finding": {
        "is_permanently_closed": false,
        "associated_cwe_ids": [],
        "links": [
          {
            "href": "mobile_apps/2",
            "type": "GET",
            "rel": "mobile_apps"
          },
          {
            "href": "security_findings?mobile_app_id=2",
            "type": "GET",
            "rel": "self"
          },
          {
            "href": "security_finding_targets?mobile_app_id=2",
            "type": "GET",
            "rel": "security_finding_targets"
          }
        ],
        "compliance_policy_references": [],
        "severity": "MEDIUM",
        "mobile_app_id": 2,
        "aggregated_status": "NEW",
        "associated_cve_ids": [],
        "recommendation": "Some recommendation from datatheorem",
        "id": "005366",
        "description": "Description for this issue",
        "category": "DATA_LOSS_TO_HACKERS",
        "importance_tags": [
          "SECURITY"
        ],
        "issue_type_id": "c674d58b-e9a9-5003-bae6-93e881872375",
        "notes": [],
        "title": "Title of the security finding",
        "portal_url": "https://www.securetheorem.com/mobile/app/2/issues/005366",
        "results_last_updated": "2021-09-30T12:49:05.749302",
        "exploitability": "MODERATE"
      },
      "finding_target": {
        "additional_contexts": [],
        "security_finding_id": "005366",
        "links": [
          {
            "href": "mobile_apps/2",
            "type": "GET",
            "rel": "mobile_apps"
          },
          {
            "href": "security_findings?mobile_app_id=2",
            "type": "GET",
            "rel": "security_findings"
          },
          {
            "href": "security_finding_targets?mobile_app_id=2",
            "type": "GET",
            "rel": "self"
          }
        ],
        "current_status_date": "2021-09-30T12:49:05.749302",
        "text": "default value",
        "mobile_app_id": 2,
        "current_status": "CLOSED_RISK_ACCEPTED",
        "issue_type_id": "c674d58b-e9a9-5003-bae6-93e881872375",
        "portal_url": "https://www.securetheorem.com/mobile/app/2/issues/005366/targets/10",
        "id": 10,
        "statuses": [],
        "results_last_updated": "2021-09-30T12:49:05.749302"
      },
      "mobile_app": {
        "platform": "ANDROID",
        "id": 2,
        "release_type": "APP_STORE",
        "bundle_id": "com.example.mobile.app"
      }
    },
    "version": 1,
    "type": "MOBILE_SECURE__CUSTOMER_SECURITY_FINDING_TARGET_CLOSED_RISK_ACCEPTED"
  },
  "time": 123456789
}

Security Finding Target Created

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
{
  "host": "securetheorem.com",
  "event": {
    "data": {
      "finding": {
        "is_permanently_closed": false,
        "associated_cwe_ids": [],
        "links": [
          {
            "href": "mobile_apps/2",
            "type": "GET",
            "rel": "mobile_apps"
          },
          {
            "href": "security_findings?mobile_app_id=2",
            "type": "GET",
            "rel": "self"
          },
          {
            "href": "security_finding_targets?mobile_app_id=2",
            "type": "GET",
            "rel": "security_finding_targets"
          }
        ],
        "compliance_policy_references": [],
        "severity": "LOW",
        "mobile_app_id": 2,
        "aggregated_status": "NEW",
        "associated_cve_ids": [],
        "recommendation": "Some recommendation from datatheorem",
        "id": "006470",
        "description": "Description of the issue",
        "category": "DATA_AT_REST_EXPOSURE",
        "importance_tags": [
          "SECURITY"
        ],
        "issue_type_id": "f16949d9-7170-5e3a-b95e-472e74c31382",
        "notes": [],
        "title": "Title of the security finding",
        "portal_url": "https://www.securetheorem.com/mobile/app/2/issues/006470",
        "results_last_updated": "2021-09-30T12:49:03.222689",
        "exploitability": "EASY"
      },
      "finding_target": {
        "additional_contexts": [],
        "security_finding_id": "006470",
        "links": [
          {
            "href": "mobile_apps/2",
            "type": "GET",
            "rel": "mobile_apps"
          },
          {
            "href": "security_findings?mobile_app_id=2",
            "type": "GET",
            "rel": "security_findings"
          },
          {
            "href": "security_finding_targets?mobile_app_id=2",
            "type": "GET",
            "rel": "self"
          }
        ],
        "current_status_date": "2021-09-30T12:49:03.222689",
        "text": "default value",
        "mobile_app_id": 2,
        "current_status": "NEW",
        "issue_type_id": "f16949d9-7170-5e3a-b95e-472e74c31382",
        "portal_url": "https://www.securetheorem.com/mobile/app/2/issues/006470/targets/8",
        "id": 8,
        "statuses": [],
        "results_last_updated": "2021-09-30T12:49:03.222689"
      },
      "mobile_app": {
        "platform": "ANDROID",
        "id": 2,
        "release_type": "APP_STORE",
        "bundle_id": "com.example.mobile.app"
      }
    },
    "version": 1,
    "type": "MOBILE_SECURE__CUSTOMER_SECURITY_FINDING_TARGET_CREATED"
  },
  "time": 123456789
}