GraphQL schema update (#52784)

docs-bot · rachmari · jc-clark · web-flow · commit dd535e505a9f · 2024-10-18T22:03:26.000Z
Co-authored-by: rachmari &lt;9831992+rachmari@users.noreply.github.com&gt;
Co-authored-by: Joe Clark &lt;31087804+jc-clark@users.noreply.github.com&gt;
diff --git a/src/graphql/data/fpt/changelog.json b/src/graphql/data/fpt/changelog.json
@@ -1,4 +1,22 @@
 [
+  {
+    "schemaChanges": [
+      {
+        "title": "The GraphQL schema includes these changes:",
+        "changes": [
+          "<p>Type <code>EPSS</code> was added</p>",
+          "<p>Type <code>UserViewType</code> was added</p>",
+          "<p>Argument <code>epssPercentage: Float</code> added to field <code>Query.securityAdvisories</code></p>",
+          "<p>Argument <code>epssPercentile: Float</code> added to field <code>Query.securityAdvisories</code></p>",
+          "<p>Field <code>epss</code> was added to object type <code>SecurityAdvisory</code></p>",
+          "<p>Field <code>userViewType</code> was added to object type <code>User</code></p>"
+        ]
+      }
+    ],
+    "previewChanges": [],
+    "upcomingChanges": [],
+    "date": "2024-10-18"
+  },
   {
     "schemaChanges": [
       {
diff --git a/src/graphql/data/fpt/schema.docs.graphql b/src/graphql/data/fpt/schema.docs.graphql
@@ -12662,6 +12662,21 @@ input DraftPullRequestReviewThread {
   startSide: DiffSide = RIGHT
 }
 
+"""
+The Exploit Prediction Scoring System
+"""
+type EPSS {
+  """
+  The EPSS percentage represents the likelihood of a CVE being exploited.
+  """
+  percentage: Float
+
+  """
+  The EPSS percentile represents the relative rank of the CVE's likelihood of being exploited compared to other CVEs.
+  """
+  percentile: Float
+}
+
 """
 Autogenerated input type of EnablePullRequestAutoMerge
 """
@@ -40066,6 +40081,16 @@ type Query implements Node {
     """
     classifications: [SecurityAdvisoryClassification!]
 
+    """
+    The EPSS percentage to filter advisories by.
+    """
+    epssPercentage: Float
+
+    """
+    The EPSS percentile to filter advisories by.
+    """
+    epssPercentile: Float
+
     """
     Returns the first _n_ elements from the list.
     """
@@ -50013,6 +50038,11 @@ type SecurityAdvisory implements Node {
   """
   description: String!
 
+  """
+  The Exploit Prediction Scoring System
+  """
+  epss: EPSS
+
   """
   The GitHub Security Advisory ID
   """
@@ -62697,6 +62727,11 @@ type User implements Actor & Node & PackageOwner & ProfileOwner & ProjectOwner &
   """
   url: URI!
 
+  """
+  Whether the request returns publicly visible information or privately visible information about the user
+  """
+  userViewType: UserViewType!
+
   """
   Can the viewer pin repositories and gists to the profile?
   """
@@ -63300,6 +63335,21 @@ enum UserStatusOrderField {
   UPDATED_AT
 }
 
+"""
+Whether a user being viewed contains public or private information.
+"""
+enum UserViewType {
+  """
+  A user containing information only visible to the authenticated user.
+  """
+  PRIVATE
+
+  """
+  A user that is publicly visible.
+  """
+  PUBLIC
+}
+
 """
 A domain that can be verified or approved for an organization or an enterprise.
 """
diff --git a/src/graphql/data/fpt/schema.json b/src/graphql/data/fpt/schema.json
@@ -631,6 +631,22 @@
           "href": "/graphql/reference/enums#securityadvisoryclassification",
           "description": "<p>A list of classifications to filter advisories by.</p>"
         },
+        {
+          "name": "epssPercentage",
+          "type": "Float",
+          "id": "float",
+          "kind": "scalars",
+          "href": "/graphql/reference/scalars#float",
+          "description": "<p>The EPSS percentage to filter advisories by.</p>"
+        },
+        {
+          "name": "epssPercentile",
+          "type": "Float",
+          "id": "float",
+          "kind": "scalars",
+          "href": "/graphql/reference/scalars#float",
+          "description": "<p>The EPSS percentile to filter advisories by.</p>"
+        },
         {
           "name": "first",
           "type": "Int",
@@ -21047,6 +21063,31 @@
         }
       ]
     },
+    {
+      "name": "EPSS",
+      "kind": "objects",
+      "id": "epss",
+      "href": "/graphql/reference/objects#epss",
+      "description": "<p>The Exploit Prediction Scoring System.</p>",
+      "fields": [
+        {
+          "name": "percentage",
+          "description": "<p>The EPSS percentage represents the likelihood of a CVE being exploited.</p>",
+          "type": "Float",
+          "id": "float",
+          "kind": "scalars",
+          "href": "/graphql/reference/scalars#float"
+        },
+        {
+          "name": "percentile",
+          "description": "<p>The EPSS percentile represents the relative rank of the CVE's likelihood of being exploited compared to other CVEs.</p>",
+          "type": "Float",
+          "id": "float",
+          "kind": "scalars",
+          "href": "/graphql/reference/scalars#float"
+        }
+      ]
+    },
     {
       "name": "Enterprise",
       "kind": "objects",
@@ -66883,6 +66924,14 @@
           "kind": "scalars",
           "href": "/graphql/reference/scalars#string"
         },
+        {
+          "name": "epss",
+          "description": "<p>The Exploit Prediction Scoring System.</p>",
+          "type": "EPSS",
+          "id": "epss",
+          "kind": "objects",
+          "href": "/graphql/reference/objects#epss"
+        },
         {
           "name": "ghsaId",
           "description": "<p>The GitHub Security Advisory ID.</p>",
@@ -77601,6 +77650,14 @@
           "kind": "scalars",
           "href": "/graphql/reference/scalars#uri"
         },
+        {
+          "name": "userViewType",
+          "description": "<p>Whether the request returns publicly visible information or privately visible information about the user.</p>",
+          "type": "UserViewType!",
+          "id": "userviewtype",
+          "kind": "enums",
+          "href": "/graphql/reference/enums#userviewtype"
+        },
         {
           "name": "viewerCanChangePinnedItems",
           "description": "<p>Can the viewer pin repositories and gists to the profile?.</p>",
@@ -89778,6 +89835,23 @@
         }
       ]
     },
+    {
+      "name": "UserViewType",
+      "kind": "enums",
+      "id": "userviewtype",
+      "href": "/graphql/reference/enums#userviewtype",
+      "description": "<p>Whether a user being viewed contains public or private information.</p>",
+      "values": [
+        {
+          "name": "PRIVATE",
+          "description": "<p>A user containing information only visible to the authenticated user.</p>"
+        },
+        {
+          "name": "PUBLIC",
+          "description": "<p>A user that is publicly visible.</p>"
+        }
+      ]
+    },
     {
       "name": "VerifiableDomainOrderField",
       "kind": "enums",
diff --git a/src/graphql/data/ghec/schema.docs.graphql b/src/graphql/data/ghec/schema.docs.graphql
@@ -12662,6 +12662,21 @@ input DraftPullRequestReviewThread {
   startSide: DiffSide = RIGHT
 }
 
+"""
+The Exploit Prediction Scoring System
+"""
+type EPSS {
+  """
+  The EPSS percentage represents the likelihood of a CVE being exploited.
+  """
+  percentage: Float
+
+  """
+  The EPSS percentile represents the relative rank of the CVE's likelihood of being exploited compared to other CVEs.
+  """
+  percentile: Float
+}
+
 """
 Autogenerated input type of EnablePullRequestAutoMerge
 """
@@ -40066,6 +40081,16 @@ type Query implements Node {
     """
     classifications: [SecurityAdvisoryClassification!]
 
+    """
+    The EPSS percentage to filter advisories by.
+    """
+    epssPercentage: Float
+
+    """
+    The EPSS percentile to filter advisories by.
+    """
+    epssPercentile: Float
+
     """
     Returns the first _n_ elements from the list.
     """
@@ -50013,6 +50038,11 @@ type SecurityAdvisory implements Node {
   """
   description: String!
 
+  """
+  The Exploit Prediction Scoring System
+  """
+  epss: EPSS
+
   """
   The GitHub Security Advisory ID
   """
@@ -62697,6 +62727,11 @@ type User implements Actor & Node & PackageOwner & ProfileOwner & ProjectOwner &
   """
   url: URI!
 
+  """
+  Whether the request returns publicly visible information or privately visible information about the user
+  """
+  userViewType: UserViewType!
+
   """
   Can the viewer pin repositories and gists to the profile?
   """
@@ -63300,6 +63335,21 @@ enum UserStatusOrderField {
   UPDATED_AT
 }
 
+"""
+Whether a user being viewed contains public or private information.
+"""
+enum UserViewType {
+  """
+  A user containing information only visible to the authenticated user.
+  """
+  PRIVATE
+
+  """
+  A user that is publicly visible.
+  """
+  PUBLIC
+}
+
 """
 A domain that can be verified or approved for an organization or an enterprise.
 """
diff --git a/src/graphql/data/ghec/schema.json b/src/graphql/data/ghec/schema.json
