For {project}, either project-number or project-id can be provided. For {instance}, either Compute Engine instance-id or instance-name can be provided.
Request body
The request body must be empty.
Response body
If successful, the response body contains an instance of VulnerabilityReport.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-07-28 UTC."],[[["\u003cp\u003eThis endpoint retrieves the vulnerability report for a specific VM instance, but only if the VM has associated inventory data.\u003c/p\u003e\n"],["\u003cp\u003eThe HTTP request uses a \u003ccode\u003eGET\u003c/code\u003e method and requires a specific URL format, including project, location, and instance details.\u003c/p\u003e\n"],["\u003cp\u003eThe request body must be empty when querying for a vulnerability report.\u003c/p\u003e\n"],["\u003cp\u003eA successful request returns a \u003ccode\u003eVulnerabilityReport\u003c/code\u003e object containing details about the VM's vulnerabilities.\u003c/p\u003e\n"],["\u003cp\u003eAccess to this data requires the \u003ccode\u003eosconfig.vulnerabilityReports.get\u003c/code\u003e IAM permission and the \u003ccode\u003ehttps://www.googleapis.com/auth/cloud-platform\u003c/code\u003e OAuth scope.\u003c/p\u003e\n"]]],[],null,[]]