environment | string | Identifies the variable values associated with the environment in which the analysis that generated this alert instance was performed, such as the language that was analyzed. |
location | object | Describe a region within a file for the alert. |
state | string | State of a code scanning alert. |
classifications | array | Classifications that have been applied to the file that triggered the alert.
For example identifying it as documentation, or a generated file. |
message | object | |
analysis_key | string | Identifies the configuration under which the analysis was executed. For example, in GitHub Actions this includes the workflow filename and job name. |
category | string | Identifies the configuration under which the analysis was executed. Used to distinguish between multiple analyses for the same tool and commit, but performed on different languages or different parts of the code. |
html_url | string | |
ref | string | The full Git reference, formatted as refs/heads/<branch name>,
refs/pull/<number>/merge, or refs/pull/<number>/head. |
commit_sha | string | |