{"$schema":"https://json-schema.org/draft/2020-12/schema","$id":"https://fedramp.gov/schemas/fedramp-historical-ver-activity-schema-2026-06-24.json","$schemaVersion":"0.0.1","type":"object","title":"FedRAMP Historical Vulnerability Evaluation and Reporting Activity (VER-TFR-MRH)","description":"Machine-readable historical Vulnerability Evaluation and Reporting activity for automated retrieval per VER-TFR-MRH.","required":["certificationPackageOverviewUri","generatedAt","activeVulnerabilities","acceptedVulnerabilities"],"properties":{"certificationPackageOverviewUri":{"$ref":"https://fedramp.gov/schemas/fedramp-common-definitions-schema-2026-06-24.json/$defs/certificationPackageOverviewUri"},"generatedAt":{"type":"string","format":"date-time","title":"Generated At","description":"When this snapshot was generated."},"activeVulnerabilities":{"type":"array","title":"Active Vulnerabilities","description":"All non-accepted vulnerabilities. Each record follows the fields required by VER-RPT-VDT.","items":{"$ref":"https://fedramp.gov/schemas/fedramp-common-definitions-schema-2026-06-24.json/$defs/vulnerabilityDetail"}},"acceptedVulnerabilities":{"type":"array","title":"Accepted Vulnerabilities","description":"All accepted vulnerabilities. Each record follows the fields required by VER-RPT-AVI.","items":{"$ref":"https://fedramp.gov/schemas/fedramp-common-definitions-schema-2026-06-24.json/$defs/acceptedVulnerabilityInfo"}}}}