Palo Alto Networks · Schema
IncidentDetail
Detailed information about a SASE security incident for enrichment and correlation.
Cloud SecurityCybersecurityFirewallNetwork SecuritySASESOARThreat IntelligenceXDR
Properties
| Name | Type | Description |
|---|---|---|
| incidentId | string | Unique incident identifier. |
| type | string | Incident type classification. |
| severity | string | |
| title | string | Incident title. |
| description | string | Incident description. |
| tsg_id | string | Tenant Service Group identifier. |
| category | string | Incident category. |
| detectionSource | string | Source of the incident detection. |
| timestamp | string |
JSON Schema
{
"$schema": "https://json-schema.org/draft/2020-12/schema",
"title": "IncidentDetail",
"description": "Detailed information about a SASE security incident for enrichment and correlation.",
"$id": "https://raw.githubusercontent.com/api-evangelist/palo-alto-networks/refs/heads/main/json-schema/sase-notifications-incident-detail-schema.json",
"type": "object",
"properties": {
"incidentId": {
"type": "string",
"description": "Unique incident identifier."
},
"type": {
"type": "string",
"description": "Incident type classification."
},
"severity": {
"type": "string",
"enum": [
"informational",
"low",
"medium",
"high",
"critical"
]
},
"title": {
"type": "string",
"description": "Incident title."
},
"description": {
"type": "string",
"description": "Incident description."
},
"tsg_id": {
"type": "string",
"description": "Tenant Service Group identifier."
},
"category": {
"type": "string",
"description": "Incident category."
},
"detectionSource": {
"type": "string",
"description": "Source of the incident detection."
},
"timestamp": {
"type": "string",
"format": "date-time"
}
}
}