Palo Alto Networks · Schema
ThreatSignature
Threat signature metadata record.
Cloud SecurityCybersecurityFirewallNetwork SecuritySASESOARThreat IntelligenceXDR
Properties
| Name | Type | Description |
|---|---|---|
| id | integer | Unique signature identifier. |
| name | string | Signature name. |
| type | string | Signature type category. |
| subtype | string | Signature subtype (e.g., virus, trojan, exploit). |
| severity | string | |
| description | string | Human-readable description of the threat. |
| cve | array | Associated CVE identifiers. |
| default_action | string | Default action applied to traffic matching this signature. |
| min_version | string | Minimum PAN-OS version supporting this signature. |
| max_version | string | Maximum PAN-OS version supporting this signature (empty if still active). |
| status | string | |
| ori_release_version | string | Content version in which this signature was first released. |
| latest_release_version | string | Most recent content version that updated this signature. |
| first_release_time | string | Timestamp when the signature was first released. |
| latest_release_time | string | Timestamp of the most recent signature update. |
| sha256 | array | SHA-256 hashes associated with this signature (antivirus). |