Event Notification - Variables
Purpose
This document provides users with a detailed list of Variables for the Event Notifications module in OUTSCAN and HIAB.
Description
The variables in Notification Settings are dynamic placeholders for data in templates, automating workflows by inserting real-time data into messages or configurations. This ensures relevant information in changing contexts, enhances customization, reduces manual effort, and minimizes errors.
Available variables depend on the selected event trigger, for a list of triggers, see Event Notification - Triggers.
Variable | Description |
---|---|
{{ asset.activeSubscriptionTypes|join(', ') }} | The asset's active subscription types |
{{ asset.assetIdentifierIds|join(', ') }} | The asset identifiers (deprecated) |
{{ asset.assetIdentifiers|join(', ') }} | The asset links |
{{ asset.assetIdentifierTypes|join(', ') }} | The asset identifier types (deprecated) |
{{ asset.compliant }} | The asset compliance status |
{{ asset.created }} | The created date |
{{ asset.createdBy }} | The name of who created the object |
{{ asset.createdById }} | The userid of the person that created the object |
{{ asset.customerId }} | The customer id the object belongs to |
{{ asset.cvssV2EnvironmentalVector }} | The CVSS V2 environmental vector |
{{ asset.cvssV3EnvironmentalVector }} | The CVSS V3 environmental vector |
{{ asset.dockerImageOs }} | The docker image operating system name |
{{ asset.dockerImageProperties }} | The asset base properties |
{{ asset.firstScanId }} | The id of the first scan performed on the asset |
{{ asset.id }} | The asset id |
{{ asset.lastScanId }} | The id of last scan performed on the asset |
{{ asset.name }} | The asset name |
{{ asset.source|join(', ') }} | The asset sources |
{{ asset.tags|join(', ') }} | The tags |
{{ asset.tojson }} | The asset |
{{ asset.updated }} | The updated date |
{{ asset.updatedBy }} | The name of who updated the object |
{{ asset.updatedById }} | The userid of the person that updated the object |
{{ asset.uuid }} | The asset uuid |
{{ assetGroup.activeSubscriptionTypes|join(', ') }} | The assetgroup's active subscription types |
{{ assetGroup.assetGroupIds|join(', ') }} | The children asset groups |
{{ assetGroup.assetIds|join(', ') }} | The component assets |
{{ assetGroup.created }} | The created date |
{{ assetGroup.createdBy }} | The name of who created the object |
{{ assetGroup.createdById }} | The userid of the person that created the object |
{{ assetGroup.customerId }} | The customer id the object belongs to |
{{ assetGroup.id }} | The id of the object |
{{ assetGroup.name }} | The name of the asset group |
{{ assetGroup.parentId }} | The parent asset group |
{{ assetGroup.path|join(', ') }} | The path of the asset group tree |
{{ assetGroup.source|join(', ') }} | The asset group's sources |
{{ assetGroup.summary }} | The content of the executive summary |
{{ assetGroup.summaryPublishedAt }} | When the executive summary was published |
{{ assetGroup.tags|tojson }} | The tags |
{{ assetGroup.updated }} | The updated date |
{{ assetGroup.updatedBy }} | The name of who updated the object |
{{ assetGroup.updatedById }} | The userid of the person that updated the object |
{{ comment.comment }} | The content of the comment |
{{ comment.created }} | The created date |
{{ comment.createdBy }} | The name of who created the object |
{{ comment.createdById }} | The userid of the person that created the object |
{{ comment.customerId }} | The customer id the object belongs to |
{{ comment.deleted }} | When the comment was deleted |
{{ comment.entityId }} | The ID of the object this comment is made for |
{{ comment.entityType }} | The type of object this comment is made for |
{{ comment.id }} | The id of the object |
{{ comment.parentId }} | ID of the parent comment if this comment is a reply |
{{ comment.supportStatus }} | Current support status of the comment |
{{ comment.updated }} | The updated date |
{{ comment.updatedBy }} | The name of who updated the object |
{{ comment.updatedById }} | The userid of the person that updated the object |
{{ configuration.assetIdentifierIds|join(', ') }} | The asset links |
{{ configuration.assetIds|join(', ') }} | The asset IDs associated with this scan configuration |
{{ configuration.configuration|tojson }} | The scan configuration |
{{ configuration.created }} | The created date |
{{ configuration.createdBy }} | The name of who created the object |
{{ configuration.createdById }} | The userid of the person that created the object |
{{ configuration.customerId }} | The customer id the object belongs to |
{{ configuration.enabled }} | The scan status. Set to true when enabled |
{{ configuration.groupId }} | The scan group id |
{{ configuration.id }} | The id of the object |
{{ configuration.lastScan }} | Last time a scan was performed using this configuration |
{{ configuration.name }} | The scan name |
{{ configuration.nextOccurrence }} | The scan next occurrence date |
{{ configuration.scannerId }} | The scanner id |
{{ configuration.scheduleIds|join(', ') }} | The schedule ids associated with this scan configuration |
{{ configuration.tags|join(', ') }} | The tags |
{{ configuration.template }} | The scan template |
{{ configuration.tojson }} | The configuration |
{{ configuration.updated }} | The updated date |
{{ configuration.updatedBy }} | The name of who updated the object |
{{ configuration.updatedById }} | The userid of the person that updated the object |
{{ consumption.appliancePeriodEnd }} | The appliance consumption period start date |
{{ consumption.cloudDiscoveryApplianceScans }} | The cloud discovery appliance scans |
{{ consumption.cloudDiscoveryScans }} | The cloud discovery scans |
{{ consumption.cloudsecAssets }} | The cloudsec assets |
{{ consumption.cloudsecScans }} | The cloudsec scans |
{{ consumption.complianceApplianceAssets }} | The compliance appliance assets |
{{ consumption.complianceApplianceExternalAssets }} | The compliance appliance external assets |
{{ consumption.complianceApplianceExternalScans }} | The compliance appliance external scans |
{{ consumption.complianceApplianceScans }} | The compliance appliance scans |
{{ consumption.complianceAssets }} | The compliance assets |
{{ consumption.complianceInternalAssets }} | The compliance internal assets |
{{ consumption.complianceInternalScans }} | The compliance internal scans |
{{ consumption.complianceScans }} | The compliance scans |
{{ consumption.created }} | The created date |
{{ consumption.createdBy }} | The name of who created the object |
{{ consumption.createdById }} | The userid of the person that created the object |
{{ consumption.dockerImageApplianceAssets }} | The docker image appliance assets |
{{ consumption.dockerImageApplianceScans }} | The docker image appliance scans |
{{ consumption.dockerImageAssets }} | The docker image assets |
{{ consumption.dockerImageDiscoveryApplianceScans }} | The docker image discovery appliance scans |
{{ consumption.dockerImageDiscoveryScans }} | The docker image discovery scans |
{{ consumption.dockerImageScans }} | The docker image scans |
{{ consumption.id }} | The id of the object |
{{ consumption.netsecApplianceAssets }} | The netsec appliance assets |
{{ consumption.netsecApplianceExternalAssets }} | The netsec appliance external assets |
{{ consumption.netsecApplianceExternalScans }} | The netsec appliance external scans |
{{ consumption.netsecApplianceScans }} | The netsec appliance scans |
{{ consumption.netsecAssets }} | The netsec assets |
{{ consumption.netsecInternalAssets }} | The netsec internal assets |
{{ consumption.netsecInternalScans }} | The netsec internal scans |
{{ consumption.netsecScans }} | The netsec scans |
{{ consumption.networkApplianceAssets }} | The network appliance assets |
{{ consumption.networkApplianceScans }} | The network appliance scans |
{{ consumption.networkAssets }} | The network assets |
{{ consumption.networkDiscoveryApplianceScans }} | The network discovery appliance scans |
{{ consumption.networkDiscoveryScans }} | The network discovery scans |
{{ consumption.networkScans }} | The network scans |
{{ consumption.outscanNXApplianceAssets }} | The Outscan NX appliance assets |
{{ consumption.outscanNXAssets }} | The Outscan NX assets |
{{ consumption.pciAssets }} | The pci assets |
{{ consumption.pciScans }} | The pci scans |
{{ consumption.periodEnd }} | The consumption period end date |
{{ consumption.periodStart }} | The consumption period start date |
{{ consumption.scaleApplianceAssets }} | The scale appliance assets |
{{ consumption.scaleApplianceExternalAssets }} | The scale appliance external assets |
{{ consumption.scaleApplianceExternalScans }} | The scale appliance external scans |
{{ consumption.scaleApplianceScans }} | The scale appliance scans |
{{ consumption.scaleAssets }} | The scale assets |
{{ consumption.scaleInternalAssets }} | The scale internal assets |
{{ consumption.scaleScans }} | The scale scans |
{{ consumption.tojson }} | The consumption |
{{ consumption.updated }} | The updated date |
{{ consumption.updatedBy }} | The name of who updated the object |
{{ consumption.updatedById }} | The userid of the person that updated the object |
{{ data.releaseVersion }} | The release version |
{{ event.timestamp }} | The event date |
{{ event.trigger }} | The event trigger |
{{ finding.accepted }} | The date when risk marked as accepted |
{{ finding.acceptedComment }} | The accepted comment |
{{ finding.acceptedUntil }} | The date until risk marked as accepted |
{{ finding.activeSubscriptionTypes|join(', ') }} | The finding's active subscription types |
{{ finding.age }} | The finding's age in days since creation |
{{ finding.alternativeRecreation }} | The alternate recreation |
{{ finding.assetId }} | The asset id |
{{ finding.assetName }} | The asset name |
{{ finding.attachmentIds|join(', ') }} | The attachments ids |
{{ finding.bugTraq|join(', ') }} | The bug track |
{{ finding.capec|join(', ') }} | The CAPEC scores |
{{ finding.checkId }} | The check id associated with the finding |
{{ finding.classifications }} | The classifications such as CAPEC, OWASP20XX |
{{ finding.commentPendingSince }} | The date since comment is pending |
{{ finding.commentsCount }} | The number of comments |
{{ finding.created }} | The created date |
{{ finding.createdBy }} | The name of who created the object |
{{ finding.createdById }} | The userid of the person that created the object |
{{ finding.customBugTraq }} | The custom bug track |
{{ finding.customCve }} | The custom CVE |
{{ finding.customCvssV2Vector }} | The custom CVSS V2 vector |
{{ finding.customCvssV3Vector }} | The custom CVSS V3 vector |
{{ finding.customCwe }} | The custom CWE |
{{ finding.customDescription }} | The custom description |
{{ finding.customerId }} | The customer id the object belongs to |
{{ finding.customName }} | The custom name |
{{ finding.customSolution }} | The custom solution |
{{ finding.cve }} | The finding CVE |
{{ finding.cvssScore }} | The CVSS score, take CVSS V3 if available, otherwise CVSS V2 |
{{ finding.cvssV2BaseScore }} | The CVSS V2 base score |
{{ finding.cvssV2EnvironmentalScore }} | The CVSS V2 environmental score |
{{ finding.cvssV2Score }} | The CVSS V2 score |
{{ finding.cvssV2Severity }} | The CVSS V2 severity |
{{ finding.cvssV2TemporalScore }} | The CVSS V2 temporal score |
{{ finding.cvssV2Vector }} | The CVSS V2 vector |
{{ finding.cvssV3BaseScore }} | The CVSS V3 base score |
{{ finding.cvssV3EnvironmentalScore }} | The CVSS V3 environmental score |
{{ finding.cvssV3Score }} | The CVSS V3 score |
{{ finding.cvssV3Severity }} | The CVSS V3 severity |
{{ finding.cvssV3TemporalScore }} | The CVSS V3 temporal score |
{{ finding.cvssV3Vector }} | The CVSS V3 vector |
{{ finding.cwe }} | The finding CWE |
{{ finding.cyrating }} | The cyrating |
{{ finding.cyratingDelta }} | The cyrating delta |
{{ finding.cyratingLastSeen }} | The cyrating last seen date |
{{ finding.cyratingUpdated }} | The cyrating updated date |
{{ finding.description }} | The finding description |
{{ finding.exploitAvailable }} | Set to true when exploits are available |
{{ finding.exploitProbability }} | The exploit probability |
{{ finding.exploitProbabilityDelta }} | The exploit probability delta |
{{ finding.falsePositive }} | The date when marked as false positive |
{{ finding.falsePositiveComment }} | The false positive comment |
{{ finding.farsight }} | The farsight concists in additional information on risk such as likelihood, threat activity |
{{ finding.firstScanId }} | The id of the first scan |
{{ finding.firstSeen }} | The date when first seen |
{{ finding.fixed }} | The date when the risk was fixed |
{{ finding.id }} | The id of the object |
{{ finding.impact }} | The impact |
{{ finding.isAccepted }} | Set to true when the risk is accepted |
{{ finding.lastScanId }} | The id of the last scan |
{{ finding.lastSeen }} | The date when last seen |
{{ finding.matches|join(', ') }} | The match list |
{{ finding.matchIds|join(', ') }} | The match ids |
{{ finding.name }} | The finding name |
{{ finding.owasp2004|join(', ') }} | The OWASP 2004 scores |
{{ finding.owasp2007|join(', ') }} | The OWASP 2007 scores |
{{ finding.owasp2010|join(', ') }} | The OWASP 2010 scores |
{{ finding.owasp2013|join(', ') }} | The OWASP 2013 scores |
{{ finding.owasp2017|join(', ') }} | The OWASP 2017 scores |
{{ finding.owasp2021|join(', ') }} | The OWASP 2021 scores |
{{ finding.potential }} | The finding potential. Set to true when potential false positive |
{{ finding.qualityAssured }} | The quality assured date |
{{ finding.recreation }} | The recreation |
{{ finding.reviewed }} | The finding reviewed date |
{{ finding.sans25 }} | The SANS 25 score |
{{ finding.secureCodeWarrior }} | The secure code warrior information on the vulnerability description and training |
{{ finding.seenLastScan }} | Set to true if finding was seen in last scan |
{{ finding.softwareComponent }} | The software component |
{{ finding.solution }} | The solution |
{{ finding.solutionProduct }} | The solution product |
{{ finding.solutionTitle }} | The solution title |
{{ finding.solutionType }} | The solution type |
{{ finding.solutionUuid }} | The solution uuid |
{{ finding.source|join(', ') }} | The scan sources |
{{ finding.status }} | The finding status |
{{ finding.tags|join(', ') }} | The tags |
{{ finding.tojson }} | The finding |
{{ finding.updated }} | The updated date |
{{ finding.updatedBy }} | The name of who updated the object |
{{ finding.updatedById }} | The userid of the person that updated the object |
{{ finding.watching }} | Whether the current user is watching this finding |
{{ resourceGroup.created }} | The created date |
{{ resourceGroup.createdBy }} | The name of who created the object |
{{ resourceGroup.createdById }} | The userid of the person that created the object |
{{ resourceGroup.customerId }} | The customer id the object belongs to |
{{ resourceGroup.id }} | The id of the object |
{{ resourceGroup.name }} | The resource group name |
{{ resourceGroup.resources|join(', ') }} | The resource group resources |
{{ resourceGroup.system }} | Set to true when resource group is system resource group |
{{ resourceGroup.tojson }} | The resourceGroup |
{{ resourceGroup.updated }} | The updated date |
{{ resourceGroup.updatedBy }} | The name of who updated the object |
{{ resourceGroup.updatedById }} | The userid of the person that updated the object |
{{ role.created }} | The created date |
{{ role.createdBy }} | The name of who created the object |
{{ role.createdById }} | The userid of the person that created the object |
{{ role.customerId }} | The customer id the object belongs to |
{{ role.id }} | The id of the object |
{{ role.name }} | The user role name |
{{ role.permissionIds|join(', ') }} | The user role permission ids |
{{ role.system }} | Set to true when system role |
{{ role.tojson }} | The role |
{{ role.updated }} | The updated date |
{{ role.updatedBy }} | The name of who updated the object |
{{ role.updatedById }} | The userid of the person that updated the object |
{{ scan.assetId }} | The id of asset on which the scan is performed |
{{ scan.assetIdentifierId }} | The link id of asset on which the scan is performed |
{{ scan.assetIdentifierName }} | The name of asset on which the scan is performed |
{{ scan.assetIdentifierType }} | The type of asset on which the scan is performed |
{{ scan.assetName }} | The name of asset on which the scan is performed |
{{ scan.blueprintAvailable }} | Set to true when scan blueprint is available |
{{ scan.created }} | The created date |
{{ scan.createdBy }} | The name of who created the object |
{{ scan.createdById }} | The userid of the person that created the object |
{{ scan.customerId }} | The customer id the object belongs to |
{{ scan.ended }} | The scan ended date |
{{ scan.expectedEnd }} | The scan expected end date |
{{ scan.expectedStart }} | The scan expected start date |
{{ scan.id }} | The id of the object |
{{ scan.jobId }} | The id of the scan job |
{{ scan.latestRuleDate }} | The latest rule date taken into account to perform the scan |
{{ scan.parentId }} | The id of the parent scan. |
{{ scan.scanConfigurationId }} | The id of the scan configuration |
{{ scan.scanConfigurationName }} | The name of the scan configuration |
{{ scan.scanless }} | Set to true when scan is scanless (only detection performed) |
{{ scan.scheduleId }} | The schedule id when scan triggered by a schedule. |
{{ scan.source }} | The scan source |
{{ scan.started }} | The scan started date |
{{ scan.status }} | The scan status |
{{ scan.statusDetails }} | The scan status details |
{{ scan.tags|join(', ') }} | The tags |
{{ scan.tojson }} | The scan |
{{ scan.updated }} | The updated date |
{{ scan.updatedBy }} | The name of who updated the object |
{{ scan.updatedById }} | The userid of the person that updated the object |
{{ scan.workflowId }} | The id of the workflow |
{{ scan.workflowName }} | The name of the workflow |
{{ schedule.blockedTimeSlots }} | The schedule blocked time slots |
{{ schedule.created }} | The created date |
{{ schedule.createdBy }} | The name of who created the object |
{{ schedule.createdById }} | The userid of the person that created the object |
{{ schedule.customerId }} | The customer id the object belongs to |
{{ schedule.days|join(', ') }} | The schedule days set what days have been selected for recurrence |
{{ schedule.enabled }} | The schedule status. Set to true when enabled |
{{ schedule.frequency }} | The schedule frequency |
{{ schedule.id }} | The id of the object |
{{ schedule.interval }} | The schedule interval |
{{ schedule.months|join(', ') }} | The schedule months set what months have been selected for recurrence |
{{ schedule.name }} | The schedule name |
{{ schedule.nextOccurrence }} | The schedule next occurrence date |
{{ schedule.nthDays|join(', ') }} | The schedule nthDays set what ordinal days have been selected for recurrence |
{{ schedule.remainingOccurrences }} | The schedule remaining occurrences |
{{ schedule.scanConfigurationIds|join(', ') }} | The scan configuration IDs associated with this schedule |
{{ schedule.scanWindowDuration }} | The schedule scan window duration. |
{{ schedule.scheduledReportIds|join(', ') }} | The report IDs associated with this schedule |
{{ schedule.startsFrom }} | The schedule starts from date |
{{ schedule.timezone }} | The schedule time zone |
{{ schedule.tojson }} | The schedule |
{{ schedule.until }} | The schedule until date |
{{ schedule.updated }} | The updated date |
{{ schedule.updatedBy }} | The name of who updated the object |
{{ schedule.updatedById }} | The userid of the person that updated the object |
{{ schedule.weekdays|join(', ') }} | The schedule weekdays set what weekdays have been selected for recurrence |
{{ schedule.weeks|join(', ') }} | The schedule weeks set what weeks have been selected for recurrence |
{{ schedule.workflowIds|join(', ') }} | The workflow IDs associated with this schedule |
{{ setting.entityType }} | The type of the target on which the comment is made |
{{ setting.from }} | The old/new finding status before/after transitioning, respectively. See {{ setting.to }} |
{{ setting.limit }} | The consumption limit |
{{ setting.metric }} | The consumption metric |
{{ setting.originalTrigger }} | The actual change to the watched finding |
{{ setting.timeBefore }} | The number of days in advance of acceptance expiration to trigger the event |
{{ setting.to }} | The old/new finding status before/after transitioning, respectively. See {{ setting.from }} |
{{ user.countryCode }} | The user country code |
{{ user.customerId }} | The user customer id |
{{ user.email }} | The user email address |
{{ user.emailEncryptionKey }} | The user public key for email encryption |
{{ user.firstName }} | The user first name |
{{ user.id }} | The user id |
{{ user.language }} | The user language |
{{ user.lastLogonDate }} | The user last logon date |
{{ user.lastLogonIp }} | The user last logon ip address |
{{ user.lastName }} | The user last name |
{{ user.logons }} | The user logon numbers |
{{ user.mobilePhone }} | The user mobile phone number |
{{ user.portalPreferences }} | The user portal preferences |
{{ user.snapshotSubscriptions }} | The snapshot subscriptions |
{{ user.snapshotSubscriptionsRemaining }} | The remaining snapshot subscriptions |
{{ user.stateCode }} | The user state code |
{{ user.swatSubscriptions }} | The SWAT subscriptions |
{{ user.swatSubscriptionsRemaining }} | The remaining SWAT subscriptions |
{{ user.tags|join(', ') }} | The tags |
{{ user.timezone }} | The user time zone |
{{ user.tojson }} | The user |
{{ user.username }} | The user name |
{{ userAccount.countryCode }} | The user country code |
{{ userAccount.customerId }} | The user customer id |
{{ userAccount.email }} | The user email address |
{{ userAccount.emailEncryptionKey }} | The user public key for email encryption |
{{ userAccount.firstName }} | The user first name |
{{ userAccount.id }} | The user id |
{{ userAccount.language }} | The user language |
{{ userAccount.lastLogonDate }} | The user last logon date |
{{ userAccount.lastLogonIp }} | The user last logon ip address |
{{ userAccount.lastName }} | The user last name |
{{ userAccount.logons }} | The user logon numbers |
{{ userAccount.mobilePhone }} | The user mobile phone number |
{{ userAccount.portalPreferences }} | The user portal preferences |
{{ userAccount.snapshotSubscriptions }} | The snapshot subscriptions |
{{ userAccount.snapshotSubscriptionsRemaining }} | The remaining snapshot subscriptions |
{{ userAccount.stateCode }} | The user state code |
{{ userAccount.swatSubscriptions }} | The SWAT subscriptions |
{{ userAccount.swatSubscriptionsRemaining }} | The remaining SWAT subscriptions |
{{ userAccount.tags|join(', ') }} | The tags |
{{ userAccount.timezone }} | The user time zone |
{{ userAccount.tojson }} | The userAccount |
{{ userAccount.username }} | The user name |
{{ workflow.configurations|tojson }} | The workflow configurations |
{{ workflow.created }} | The created date |
{{ workflow.createdBy }} | The name of who created the object |
{{ workflow.createdById }} | The userid of the person that created the object |
{{ workflow.customerId }} | The customer id the object belongs to |
{{ workflow.enabled }} | The workflow status. Set to true when enabled |
{{ workflow.id }} | The id of the object |
{{ workflow.lastScan }} | Last time a scan was performed using this workflow |
{{ workflow.name }} | The workflow name |
{{ workflow.nextOccurrence }} | The scan next occurrence date |
{{ workflow.scannerId }} | The scanner id |
{{ workflow.scheduleIds|join(', ') }} | The schedule ids associated with this workflow |
{{ workflow.tags|tojson }} | The tags |
{{ workflow.tojson }} | The workflow |
{{ workflow.updated }} | The updated date |
{{ workflow.updatedBy }} | The name of who updated the object |
{{ workflow.updatedById }} | The userid of the person that updated the object |
Related Articles
Copyright
© 2024 Outpost24® All rights reserved. This document may only be redistributed unedited and unaltered. This document may be cited and referenced only if clearly crediting Outpost24® and this document as the source. Any other reproduction and redistribution in print or electronically is strictly prohibited without explicit permission.
Trademark
Outpost24® and OUTSCAN™ are trademarks of Outpost24® and its affiliated companies. All other brand names, product names or trademarks belong to their respective owners.