import type { ToolConfig } from '@/tools/types' import { VANTA_PAGE_INFO_OUTPUT_PROPERTIES, VANTA_VULNERABILITY_REMEDIATION_OUTPUT_PROPERTIES, } from '@/tools/vanta/outputs' import type { VantaListVulnerabilityRemediationsParams, VantaListVulnerabilityRemediationsResponse, } from '@/tools/vanta/types' import { createVantaTransformResponse, VANTA_QUERY_ROUTE } from '@/tools/vanta/utils' export const vantaListVulnerabilityRemediationsTool: ToolConfig< VantaListVulnerabilityRemediationsParams, VantaListVulnerabilityRemediationsResponse > = { id: 'vanta_list_vulnerability_remediations', name: 'Vanta List Vulnerability Remediations', description: 'List remediated vulnerabilities in a Vanta account with detection, SLA deadline, and remediation dates', version: '1.0.0', params: { clientId: { type: 'string', required: true, visibility: 'user-only', description: 'Vanta OAuth application client ID', }, clientSecret: { type: 'string', required: true, visibility: 'user-only', description: 'Vanta OAuth application client secret', }, region: { type: 'string', required: false, visibility: 'user-only', description: 'Vanta API region: "us" (api.vanta.com, default) or "gov" (api.vanta-gov.com)', }, integrationId: { type: 'string', required: false, visibility: 'user-or-llm', description: 'Filter by the integration that detected the vulnerability', }, severity: { type: 'string', required: false, visibility: 'user-or-llm', description: 'Filter by severity: LOW, MEDIUM, HIGH, or CRITICAL', }, isRemediatedOnTime: { type: 'boolean', required: false, visibility: 'user-or-llm', description: 'Filter by whether the vulnerability was remediated before its SLA deadline', }, remediatedAfterDate: { type: 'string', required: false, visibility: 'user-or-llm', description: 'Only include remediations completed after this ISO 8601 date', }, remediatedBeforeDate: { type: 'string', required: false, visibility: 'user-or-llm', description: 'Only include remediations completed before this ISO 8601 date', }, pageSize: { type: 'number', required: false, visibility: 'user-or-llm', description: 'Maximum number of items per page (1-100, default 10)', }, pageCursor: { type: 'string', required: false, visibility: 'user-or-llm', description: 'Pagination cursor: pass the endCursor from the previous response to fetch the next page', }, }, request: { url: VANTA_QUERY_ROUTE, method: 'POST', headers: () => ({ 'Content-Type': 'application/json' }), body: (params) => ({ operation: 'vanta_list_vulnerability_remediations', clientId: params.clientId, clientSecret: params.clientSecret, region: params.region, integrationId: params.integrationId, severity: params.severity, isRemediatedOnTime: params.isRemediatedOnTime, remediatedAfterDate: params.remediatedAfterDate, remediatedBeforeDate: params.remediatedBeforeDate, pageSize: params.pageSize, pageCursor: params.pageCursor, }), }, transformResponse: createVantaTransformResponse( 'Failed to list Vanta vulnerability remediations' ), outputs: { remediations: { type: 'array', description: 'Vulnerability remediations matching the filters', items: { type: 'object', properties: VANTA_VULNERABILITY_REMEDIATION_OUTPUT_PROPERTIES }, }, pageInfo: { type: 'json', description: 'Cursor pagination info for the returned page; pass endCursor as pageCursor to fetch the next page', optional: true, properties: VANTA_PAGE_INFO_OUTPUT_PROPERTIES, }, }, }