8
n8n 中文网amn8n.com

在ServiceNow中提取并创建漏洞

中级

这是一个SecOps, Multimodal AI领域的自动化工作流,包含 6 个节点。主要使用 SplitOut, ServiceNow, HttpRequest, ScheduleTrigger, LmChatOpenAi 等节点。 使用OpenAI处理自动化CVE监控以生成ServiceNow安全事件

前置要求
  • 可能需要目标 API 的认证凭证
  • OpenAI API Key

使用的节点 (6)

SplitOut
ServiceNow
HttpRequest
ScheduleTrigger
LmChatOpenAi
InformationExtractor

分类

安全运维
多模态 AI
工作流预览
可视化展示节点连接关系,支持缩放和平移
React Flow
导出工作流
复制以下 JSON 配置到 n8n 导入,即可使用此工作流
{
  "id": "VSUVQ0IMSqJG3w9T",
  "meta": {
    "instanceId": "6004a16b59a95da573dfac2b89c29cb3d5d09e00386053659b2f24878624b8d6",
    "templateId": "2552",
    "templateCredsSetupCompleted": true
  },
  "name": "在 ServiceNow 中提取并创建漏洞",
  "tags": [],
  "nodes": [
    {
      "id": "e0583472-a450-4582-83bc-84a014bea543",
      "name": "拆分输出",
      "type": "n8n-nodes-base.splitOut",
      "position": [
        2144,
        448
      ],
      "parameters": {
        "include": "selectedOtherFields",
        "options": {
          "destinationFieldName": "body"
        },
        "fieldToSplitOut": "output.results",
        "fieldsToInclude": "pubStartDate,pubEndDate,cveId,cvssV2Severity,Description"
      },
      "typeVersion": 1
    },
    {
      "id": "a63c3ab3-6aab-43b2-8af6-8b00e24e0ee6",
      "name": "OpenAI Chat Model",
      "type": "@n8n/n8n-nodes-langchain.lmChatOpenAi",
      "position": [
        1808,
        624
      ],
      "parameters": {
        "options": {}
      },
      "credentials": {
        "openAiApi": {
          "id": "ppNn03FE7vbsyINF",
          "name": "n8n free OpenAI API credits"
        }
      },
      "typeVersion": 1
    },
    {
      "id": "40326966-0c46-4df2-8d80-fa014e05b693",
      "name": "信息提取器",
      "type": "@n8n/n8n-nodes-langchain.informationExtractor",
      "position": [
        1760,
        448
      ],
      "parameters": {
        "text": "={{$json.data}}",
        "options": {
          "systemPromptTemplate": "You are an expert data extraction algorithm.\nYour task is to read any given text and extract only the relevant information for NVD CVE API search parameters.\n\nOutput format: Always return a single JSON object called \"results\".\nObject structure: The object may include only the following keys, matching their expected formats:\nstartIndex (integer, ≥ 0)\nresultsPerPage (integer, 1–2000)\npubStartDate (string, ISO 8601 date-time)\npubEndDate (string, ISO 8601 date-time)\nmodStartDate (string, ISO 8601 date-time)\nmodEndDate (string, ISO 8601 date-time)\ncvssV2Severity (string, one of: \"LOW\", \"MEDIUM\", \"HIGH\")\ncvssV3Severity (string, one of: \"LOW\", \"MEDIUM\", \"HIGH\", \"CRITICAL\")\nkeywordSearch (string)\ncpeName (string)\ncpeMatchString (string)\nhasCertAlerts (boolean)\nhasCertNotes (boolean)\nhasKev (boolean)\nisVulnerable (boolean)\ncveId (string, pattern: )\nDescription(string)\nIf you cannot find a value for a given attribute, omit that attribute.\nDo not include extra keys or commentary."
        },
        "schemaType": "manual",
        "inputSchema": "{\n  \"results\": {\n    \"startIndex\": 0,\n    \"resultsPerPage\": 10,\n    \"pubStartDate\": \"1988-10-01T04:00:00.000Z\",\n    \"pubEndDate\": \"1990-10-03T04:00:00.000Z\",\n    \"modStartDate\": \"2025-04-03T01:03:51.193Z\",\n    \"modEndDate\": \"2025-04-03T01:03:51.193Z\",\n    \"cvssV2Severity\": \"HIGH\",\n    \"cveId\": \"CVE-1999-0095\",\n    \"cpeName\": \"cpe:2.3:a:eric_allman:sendmail:5.58:*:*:*:*:*:*:*\",\n    \"cpeMatchString\": \"cpe:2.3:a:eric_allman:sendmail:5.58:*:*:*:*:*:*:*\",\n    \"isVulnerable\": true,\n    \"hasCertAlerts\": false,\n    \"hasCertNotes\": true,\n    \"hasKev\": false,\n    \"cvssV3Severity\": \"HIGH\",\n    \"keywordSearch\": \"sendmail\",\n    \"description\":\"String\"\n  }\n}\n"
      },
      "typeVersion": 1
    },
    {
      "id": "8ddca560-8da7-4090-b865-0523f95ca463",
      "name": "Jina 获取",
      "type": "n8n-nodes-base.httpRequest",
      "position": [
        1520,
        448
      ],
      "parameters": {
        "url": "https://r.jina.ai/https://services.nvd.nist.gov/rest/json/cves/2.0/?resultsPerPage=10",
        "options": {
          "allowUnauthorizedCerts": true
        }
      },
      "typeVersion": 4.1
    },
    {
      "id": "a18d7899-1e0c-49c7-83e9-04f26f695f66",
      "name": "创建事件",
      "type": "n8n-nodes-base.serviceNow",
      "position": [
        2400,
        448
      ],
      "parameters": {
        "resource": "incident",
        "operation": "create",
        "authentication": "basicAuth",
        "additionalFields": {
          "description": "=First Published on : {{$('Split Out').item.json.body.pubStartDate }}\nLast Published on : {{$('Split Out').item.json.body.pubEndDate }}\nSeverity : {{$('Split Out').item.json.body.cvssV2Severity }}\nCVEID : {{$('Split Out').item.json.body.cveId }}\nMatching String: {{$('Split Out').item.json.body.cpeMatchString }}"
        },
        "short_description": "={{ $json.body.description }}"
      },
      "credentials": {
        "serviceNowBasicApi": {
          "id": "keHrNdS7cHG3Tr0X",
          "name": "ServiceNow Basic Auth account 2"
        }
      },
      "typeVersion": 1
    },
    {
      "id": "e7f1f9c0-63a2-4d4a-88cb-e089ea25d823",
      "name": "定时触发器",
      "type": "n8n-nodes-base.scheduleTrigger",
      "position": [
        1056,
        448
      ],
      "parameters": {
        "rule": {
          "interval": [
            {
              "triggerAtHour": 7
            }
          ]
        }
      },
      "typeVersion": 1.2
    }
  ],
  "active": false,
  "pinData": {},
  "settings": {},
  "versionId": "d97a1e4a-f450-4c4d-8d85-877a5feebe98",
  "connections": {
    "Split Out": {
      "main": [
        [
          {
            "node": "Create an incident",
            "type": "main",
            "index": 0
          }
        ]
      ]
    },
    "Jina Fetch": {
      "main": [
        [
          {
            "node": "Information Extractor",
            "type": "main",
            "index": 0
          }
        ]
      ]
    },
    "Schedule Trigger": {
      "main": [
        [
          {
            "node": "Jina Fetch",
            "type": "main",
            "index": 0
          }
        ]
      ]
    },
    "OpenAI Chat Model": {
      "ai_languageModel": [
        [
          {
            "node": "Information Extractor",
            "type": "ai_languageModel",
            "index": 0
          }
        ]
      ]
    },
    "Information Extractor": {
      "main": [
        [
          {
            "node": "Split Out",
            "type": "main",
            "index": 0
          }
        ]
      ]
    }
  }
}
常见问题

如何使用这个工作流?

复制上方的 JSON 配置代码,在您的 n8n 实例中创建新工作流并选择「从 JSON 导入」,粘贴配置后根据需要修改凭证设置即可。

这个工作流适合什么场景?

中级 - 安全运维, 多模态 AI

需要付费吗?

本工作流完全免费,您可以直接导入使用。但请注意,工作流中使用的第三方服务(如 OpenAI API)可能需要您自行付费。

相关工作流推荐

AI漏洞检测和Servicenow事件创建
使用GPT-4和ServiceNow事件创建自动化AI漏洞监控
Jina Ai
Split Out
Service Now
+4
7 节点Tushar Mishra
安全运维
ServiceNow L1支持代理
基于GPT-4的ServiceNow聊天分流——事件与请求路由
Service Now
Http Request
Agent
+7
15 节点Tushar Mishra
AI 聊天机器人
内容生成器 v3
AI驱动博客自动化:使用GPT-4生成并发布SEO文章至WordPress和Twitter
If
Set
Code
+25
144 节点Jay Emp0
内容创作
Freelancer.com自动投标器(含Telegram审批和AI提案)
Freelancer.com自动投标器,支持Telegram审批和AI提案生成
If
Set
Split Out
+11
26 节点Mohamed Abdelwahab
客户培育
使用OpenAI gpt-image-1和AI字幕创建并发布Instagram轮播图
从Google Sheets使用GPT-Image-1和AI字幕自动生成Instagram轮播图
If
Set
Code
+12
32 节点Jorge Martínez
多模态 AI
TikTok轮播复制器与翻译器
使用Gemini Vision和Midjourney自动翻译并重新创建TikTok轮播内容
If
Wait
Gmail
+11
21 节点Xavier Tai
内容创作
工作流信息
难度等级
中级
节点数量6
分类2
节点类型6
难度说明

适合有一定经验的用户,包含 6-15 个节点的中等复杂度工作流

作者
Tushar Mishra

Tushar Mishra

@yajna

Problem Solver | ServiceNow Architect | AI/ML Specialist | Product Builder 1. 10+ years in tech consulting and product development across AI, enterprise platforms, and cloud ecosystems. 2. ISB AMP in Business Analytics; strong foundation in strategy + data. 3. Founder – ReAcademy.ai: Flashcard-based learning SaaS using AI & LLMs to transform PDFs into gamified micro-learning.

外部链接
在 n8n.io 查看

分享此工作流