Scans (History of Scans)

Field	Description
id	same thing
saltminer.scan.id	Unique id for the scan. Note: Used as key field for flow down fields. type: Keyword example: 123B
saltminer.scan.critical saltminer.scan.high saltminer.scan.medium saltminer.scan.low	System generated sum for the scan for this severity required: Yes type: integer example: 100
saltminer.scan.scan_date	Timestamp from the related scan Note: Replaces last_scan_date at the issue level, represents the scan that generated this issue required: Yes type: timestamp example: 2018-06-29T12:36:52.430+0000
saltminer.scan.report_id	keyword Yes No unique identifier for this assessement 10112 report_id in related issues
saltminer.scan.assessment_type	Engine category (SAST, DAST, OPEN, PENTEST) SAST Configure allowable values required: Yes type: keyword
saltminer.scan.product_type	Source specific type of scan (i.e. SCA, mobile, static, etc.) SCA Not sure if this is redundant or not required: Yes type: keyword
saltminer.scan.product	Product used to run the scan required: Yes type: keyword example: SCA
saltminer.scan.vendor	Vendor for the scanner used to identify this issue required: Yes type: keyword example: Fortify
saltminer.scan.rulepacks	Rulepack(s) used to identify vulnerabilities in this scan required: No type: keyword
SaltMiner Internal fields related to scans
saltminer.internal.agent_id	Agent identifier for Sync Agent that was the source of this scan required: Yes type: keyword

Flow down fields

For Issues that were found as part of an engagement the following fields flow down