crimson-falcon 1.1.0 → 1.2.0

data/lib/crimson-falcon/models/domain_vulnerability.rb

@@ -32,21 +32,63 @@ require 'time'
 
 module Falcon
   class DomainVulnerability
-    attr_accessor :evaluated_affected_assets_count
+    # List of products affected by vulnerability, specifying product and vendor
+    attr_accessor :affected_products
 
+    # Vulnerability community identifiers, which is usually populated for the most popular vulnerabilities
+    attr_accessor :community_identifiers
+
+    # CVE ID number with four or more digits in the sequence number portion of the ID, examples: CVE-1999-0067, CVE-2014-12345, CVE-2016-7654321
+    attr_accessor :cve
+
+    attr_accessor :cvss_v2_base
+
+    attr_accessor :cvss_v3_base
+
+    # Text description of the vulnerability
+    attr_accessor :description
+
+    # Exploit status of vulnerability, one of: unproven, available, easilyaccessible, activelyused
     attr_accessor :exploit_status
 
-    attr_accessor :exprt_rating
+    # legacy field, not populated
+    attr_accessor :name
+
+    # Date when the vulnerability was published
+    attr_accessor :publish_date
+
+    # Threat actors that exploits vulnerability
+    attr_accessor :related_actors
+
+    # Related finished Intelligence Reports to vulnerability, which usually describes the exploitation or attacks using those
+    attr_accessor :related_reports
+
+    # Malware Families (threats) that are known to be related to the vulnerability
+    attr_accessor :related_threats
+
+    # Severity of the vulnerability, can be empty or one of: LOW, MEDIUM, HIGH, CRITICAL
+    attr_accessor :severity
 
-    attr_accessor :total_affected_assets
+    # Date when the vulnerability was last time updated in the CrowdStrike's database
+    attr_accessor :updated_timestamp
 
     # Attribute mapping from ruby-style variable name to JSON key.
     def self.attribute_map
       {
-        :'evaluated_affected_assets_count' => :'evaluatedAffectedAssetsCount',
-        :'exploit_status' => :'exploitStatus',
-        :'exprt_rating' => :'exprt_rating',
-        :'total_affected_assets' => :'totalAffectedAssets'
+        :'affected_products' => :'affected_products',
+        :'community_identifiers' => :'community_identifiers',
+        :'cve' => :'cve',
+        :'cvss_v2_base' => :'cvss_v2_base',
+        :'cvss_v3_base' => :'cvss_v3_base',
+        :'description' => :'description',
+        :'exploit_status' => :'exploit_status',
+        :'name' => :'name',
+        :'publish_date' => :'publish_date',
+        :'related_actors' => :'related_actors',
+        :'related_reports' => :'related_reports',
+        :'related_threats' => :'related_threats',
+        :'severity' => :'severity',
+        :'updated_timestamp' => :'updated_timestamp'
       }
     end
 
@@ -58,10 +100,20 @@ module Falcon
     # Attribute type mapping.
     def self.openapi_types
       {
-        :'evaluated_affected_assets_count' => :'Float',
-        :'exploit_status' => :'Float',
-        :'exprt_rating' => :'String',
-        :'total_affected_assets' => :'Float'
+        :'affected_products' => :'Array<DomainVulnerabilityAffectedProduct>',
+        :'community_identifiers' => :'Array<String>',
+        :'cve' => :'String',
+        :'cvss_v2_base' => :'DomainVulnerabilityCvssV2',
+        :'cvss_v3_base' => :'DomainVulnerabilityCvssV3',
+        :'description' => :'String',
+        :'exploit_status' => :'String',
+        :'name' => :'String',
+        :'publish_date' => :'String',
+        :'related_actors' => :'Array<DomainVulnerabilityActor>',
+        :'related_reports' => :'Array<DomainVulnerabilityReport>',
+        :'related_threats' => :'Array<DomainVulnerabilityRelatedThreat>',
+        :'severity' => :'String',
+        :'updated_timestamp' => :'String'
       }
     end
 
@@ -86,41 +138,79 @@ module Falcon
         h[k.to_sym] = v
       }
 
-      if attributes.key?(:'evaluated_affected_assets_count')
-        self.evaluated_affected_assets_count = attributes[:'evaluated_affected_assets_count']
+      if attributes.key?(:'affected_products')
+        if (value = attributes[:'affected_products']).is_a?(Array)
+          self.affected_products = value
+        end
+      end
+
+      if attributes.key?(:'community_identifiers')
+        if (value = attributes[:'community_identifiers']).is_a?(Array)
+          self.community_identifiers = value
+        end
+      end
+
+      if attributes.key?(:'cve')
+        self.cve = attributes[:'cve']
+      end
+
+      if attributes.key?(:'cvss_v2_base')
+        self.cvss_v2_base = attributes[:'cvss_v2_base']
+      end
+
+      if attributes.key?(:'cvss_v3_base')
+        self.cvss_v3_base = attributes[:'cvss_v3_base']
+      end
+
+      if attributes.key?(:'description')
+        self.description = attributes[:'description']
       end
 
       if attributes.key?(:'exploit_status')
         self.exploit_status = attributes[:'exploit_status']
       end
 
-      if attributes.key?(:'exprt_rating')
-        self.exprt_rating = attributes[:'exprt_rating']
+      if attributes.key?(:'name')
+        self.name = attributes[:'name']
       end
 
-      if attributes.key?(:'total_affected_assets')
-        self.total_affected_assets = attributes[:'total_affected_assets']
+      if attributes.key?(:'publish_date')
+        self.publish_date = attributes[:'publish_date']
       end
-    end
 
-    # Show invalid properties with the reasons. Usually used together with valid?
-    # @return Array for valid properties with the reasons
-    def list_invalid_properties
-      invalid_properties = Array.new
-      if @evaluated_affected_assets_count.nil?
-        invalid_properties.push('invalid value for "evaluated_affected_assets_count", evaluated_affected_assets_count cannot be nil.')
+      if attributes.key?(:'related_actors')
+        if (value = attributes[:'related_actors']).is_a?(Array)
+          self.related_actors = value
+        end
       end
 
-      if @exploit_status.nil?
-        invalid_properties.push('invalid value for "exploit_status", exploit_status cannot be nil.')
+      if attributes.key?(:'related_reports')
+        if (value = attributes[:'related_reports']).is_a?(Array)
+          self.related_reports = value
+        end
       end
 
-      if @exprt_rating.nil?
-        invalid_properties.push('invalid value for "exprt_rating", exprt_rating cannot be nil.')
+      if attributes.key?(:'related_threats')
+        if (value = attributes[:'related_threats']).is_a?(Array)
+          self.related_threats = value
+        end
       end
 
-      if @total_affected_assets.nil?
-        invalid_properties.push('invalid value for "total_affected_assets", total_affected_assets cannot be nil.')
+      if attributes.key?(:'severity')
+        self.severity = attributes[:'severity']
+      end
+
+      if attributes.key?(:'updated_timestamp')
+        self.updated_timestamp = attributes[:'updated_timestamp']
+      end
+    end
+
+    # Show invalid properties with the reasons. Usually used together with valid?
+    # @return Array for valid properties with the reasons
+    def list_invalid_properties
+      invalid_properties = Array.new
+      if @cve.nil?
+        invalid_properties.push('invalid value for "cve", cve cannot be nil.')
       end
 
       invalid_properties
@@ -129,10 +219,7 @@ module Falcon
     # Check to see if the all the properties in the model are valid
     # @return true if the model is valid
     def valid?
-      return false if @evaluated_affected_assets_count.nil?
-      return false if @exploit_status.nil?
-      return false if @exprt_rating.nil?
-      return false if @total_affected_assets.nil?
+      return false if @cve.nil?
       true
     end
 
@@ -141,10 +228,20 @@ module Falcon
     def ==(o)
       return true if self.equal?(o)
       self.class == o.class &&
-          evaluated_affected_assets_count == o.evaluated_affected_assets_count &&
+          affected_products == o.affected_products &&
+          community_identifiers == o.community_identifiers &&
+          cve == o.cve &&
+          cvss_v2_base == o.cvss_v2_base &&
+          cvss_v3_base == o.cvss_v3_base &&
+          description == o.description &&
           exploit_status == o.exploit_status &&
-          exprt_rating == o.exprt_rating &&
-          total_affected_assets == o.total_affected_assets
+          name == o.name &&
+          publish_date == o.publish_date &&
+          related_actors == o.related_actors &&
+          related_reports == o.related_reports &&
+          related_threats == o.related_threats &&
+          severity == o.severity &&
+          updated_timestamp == o.updated_timestamp
     end
 
     # @see the `==` method
@@ -156,7 +253,7 @@ module Falcon
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [evaluated_affected_assets_count, exploit_status, exprt_rating, total_affected_assets].hash
+      [affected_products, community_identifiers, cve, cvss_v2_base, cvss_v3_base, description, exploit_status, name, publish_date, related_actors, related_reports, related_threats, severity, updated_timestamp].hash
     end
 
     # Builds the object from hash

data/lib/crimson-falcon/models/domain_vulnerability_actor.rb

@@ -0,0 +1,255 @@
+=begin
+Crimson Falcon - Ruby Client SDK
+
+Code auto-generated by OpenAPI Generator; DO NOT EDIT.
+
+MIT License
+
+Copyright (c) 2023 Crowdstrike
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+
+=end
+
+require 'date'
+require 'time'
+
+module Falcon
+  class DomainVulnerabilityActor
+    # Actor 'family' name, which is an animal name
+    attr_accessor :animal_classifier
+
+    # Actor internal ID, consisting of it's name with spaces removed
+    attr_accessor :id
+
+    # Actor name, composed of 2 uppercase words
+    attr_accessor :name
+
+    # Attribute mapping from ruby-style variable name to JSON key.
+    def self.attribute_map
+      {
+        :'animal_classifier' => :'animal_classifier',
+        :'id' => :'id',
+        :'name' => :'name'
+      }
+    end
+
+    # Returns all the JSON keys this model knows about
+    def self.acceptable_attributes
+      attribute_map.values
+    end
+
+    # Attribute type mapping.
+    def self.openapi_types
+      {
+        :'animal_classifier' => :'String',
+        :'id' => :'String',
+        :'name' => :'String'
+      }
+    end
+
+    # List of attributes with nullable: true
+    def self.openapi_nullable
+      Set.new([
+      ])
+    end
+
+    # Initializes the object
+    # @param [Hash] attributes Model attributes in the form of hash
+    def initialize(attributes = {})
+      if (!attributes.is_a?(Hash))
+        fail ArgumentError, "The input argument (attributes) must be a hash in `Falcon::DomainVulnerabilityActor` initialize method"
+      end
+
+      # check to see if the attribute exists and convert string to symbol for hash key
+      attributes = attributes.each_with_object({}) { |(k, v), h|
+        if (!self.class.attribute_map.key?(k.to_sym))
+          fail ArgumentError, "`#{k}` is not a valid attribute in `Falcon::DomainVulnerabilityActor`. Please check the name to make sure it's valid. List of attributes: " + self.class.attribute_map.keys.inspect
+        end
+        h[k.to_sym] = v
+      }
+
+      if attributes.key?(:'animal_classifier')
+        self.animal_classifier = attributes[:'animal_classifier']
+      end
+
+      if attributes.key?(:'id')
+        self.id = attributes[:'id']
+      end
+
+      if attributes.key?(:'name')
+        self.name = attributes[:'name']
+      end
+    end
+
+    # Show invalid properties with the reasons. Usually used together with valid?
+    # @return Array for valid properties with the reasons
+    def list_invalid_properties
+      invalid_properties = Array.new
+      invalid_properties
+    end
+
+    # Check to see if the all the properties in the model are valid
+    # @return true if the model is valid
+    def valid?
+      true
+    end
+
+    # Checks equality by comparing each attribute.
+    # @param [Object] Object to be compared
+    def ==(o)
+      return true if self.equal?(o)
+      self.class == o.class &&
+          animal_classifier == o.animal_classifier &&
+          id == o.id &&
+          name == o.name
+    end
+
+    # @see the `==` method
+    # @param [Object] Object to be compared
+    def eql?(o)
+      self == o
+    end
+
+    # Calculates hash code according to all attributes.
+    # @return [Integer] Hash code
+    def hash
+      [animal_classifier, id, name].hash
+    end
+
+    # Builds the object from hash
+    # @param [Hash] attributes Model attributes in the form of hash
+    # @return [Object] Returns the model itself
+    def self.build_from_hash(attributes)
+      new.build_from_hash(attributes)
+    end
+
+    # Builds the object from hash
+    # @param [Hash] attributes Model attributes in the form of hash
+    # @return [Object] Returns the model itself
+    def build_from_hash(attributes)
+      return nil unless attributes.is_a?(Hash)
+      attributes = attributes.transform_keys(&:to_sym)
+      self.class.openapi_types.each_pair do |key, type|
+        if attributes[self.class.attribute_map[key]].nil? && self.class.openapi_nullable.include?(key)
+          self.send("#{key}=", nil)
+        elsif type =~ /\AArray<(.*)>/i
+          # check to ensure the input is an array given that the attribute
+          # is documented as an array but the input is not
+          if attributes[self.class.attribute_map[key]].is_a?(Array)
+            self.send("#{key}=", attributes[self.class.attribute_map[key]].map { |v| _deserialize($1, v) })
+          end
+        elsif !attributes[self.class.attribute_map[key]].nil?
+          self.send("#{key}=", _deserialize(type, attributes[self.class.attribute_map[key]]))
+        end
+      end
+
+      self
+    end
+
+    # Deserializes the data based on type
+    # @param string type Data type
+    # @param string value Value to be deserialized
+    # @return [Object] Deserialized data
+    def _deserialize(type, value)
+      case type.to_sym
+      when :Time
+        Time.parse(value)
+      when :Date
+        Date.parse(value)
+      when :String
+        value.to_s
+      when :Integer
+        value.to_i
+      when :Float
+        value.to_f
+      when :Boolean
+        if value.to_s =~ /\A(true|t|yes|y|1)\z/i
+          true
+        else
+          false
+        end
+      when :Object
+        # generic object (usually a Hash), return directly
+        value
+      when /\AArray<(?<inner_type>.+)>\z/
+        inner_type = Regexp.last_match[:inner_type]
+        value.map { |v| _deserialize(inner_type, v) }
+      when /\AHash<(?<k_type>.+?), (?<v_type>.+)>\z/
+        k_type = Regexp.last_match[:k_type]
+        v_type = Regexp.last_match[:v_type]
+        {}.tap do |hash|
+          value.each do |k, v|
+            hash[_deserialize(k_type, k)] = _deserialize(v_type, v)
+          end
+        end
+      else # model
+        # models (e.g. Pet) or oneOf
+        klass = Falcon.const_get(type)
+        klass.respond_to?(:openapi_one_of) ? klass.build(value) : klass.build_from_hash(value)
+      end
+    end
+
+    # Returns the string representation of the object
+    # @return [String] String presentation of the object
+    def to_s
+      to_hash.to_s
+    end
+
+    # to_body is an alias to to_hash (backward compatibility)
+    # @return [Hash] Returns the object in the form of hash
+    def to_body
+      to_hash
+    end
+
+    # Returns the object in the form of hash
+    # @return [Hash] Returns the object in the form of hash
+    def to_hash
+      hash = {}
+      self.class.attribute_map.each_pair do |attr, param|
+        value = self.send(attr)
+        if value.nil?
+          is_nullable = self.class.openapi_nullable.include?(attr)
+          next if !is_nullable || (is_nullable && !instance_variable_defined?(:"@#{attr}"))
+        end
+
+        hash[param] = _to_hash(value)
+      end
+      hash
+    end
+
+    # Outputs non-array value in the form of hash
+    # For object, use to_hash. Otherwise, just return the value
+    # @param [Object] value Any valid value
+    # @return [Hash] Returns the value in the form of hash
+    def _to_hash(value)
+      if value.is_a?(Array)
+        value.compact.map { |v| _to_hash(v) }
+      elsif value.is_a?(Hash)
+        {}.tap do |hash|
+          value.each { |k, v| hash[k] = _to_hash(v) }
+        end
+      elsif value.respond_to? :to_hash
+        value.to_hash
+      else
+        value
+      end
+    end
+  end
+end

data/lib/crimson-falcon/models/{restapi_indicators_aggregates_request.rb → domain_vulnerability_affected_product.rb}

@@ -31,13 +31,18 @@ require 'date'
 require 'time'
 
 module Falcon
-  class RestapiIndicatorsAggregatesRequest
-    attr_accessor :requests
+  class DomainVulnerabilityAffectedProduct
+    # Lowercase product name that vulnerability affects
+    attr_accessor :product
+
+    # Lowercase vendor name that develops or provides the affected product
+    attr_accessor :vendor
 
     # Attribute mapping from ruby-style variable name to JSON key.
     def self.attribute_map
       {
-        :'requests' => :'requests'
+        :'product' => :'product',
+        :'vendor' => :'vendor'
       }
     end
 
@@ -49,7 +54,8 @@ module Falcon
     # Attribute type mapping.
     def self.openapi_types
       {
-        :'requests' => :'Array<MsaAggregateQueryRequest>'
+        :'product' => :'String',
+        :'vendor' => :'String'
       }
     end
 
@@ -63,21 +69,23 @@ module Falcon
     # @param [Hash] attributes Model attributes in the form of hash
     def initialize(attributes = {})
       if (!attributes.is_a?(Hash))
-        fail ArgumentError, "The input argument (attributes) must be a hash in `Falcon::RestapiIndicatorsAggregatesRequest` initialize method"
+        fail ArgumentError, "The input argument (attributes) must be a hash in `Falcon::DomainVulnerabilityAffectedProduct` initialize method"
       end
 
       # check to see if the attribute exists and convert string to symbol for hash key
       attributes = attributes.each_with_object({}) { |(k, v), h|
         if (!self.class.attribute_map.key?(k.to_sym))
-          fail ArgumentError, "`#{k}` is not a valid attribute in `Falcon::RestapiIndicatorsAggregatesRequest`. Please check the name to make sure it's valid. List of attributes: " + self.class.attribute_map.keys.inspect
+          fail ArgumentError, "`#{k}` is not a valid attribute in `Falcon::DomainVulnerabilityAffectedProduct`. Please check the name to make sure it's valid. List of attributes: " + self.class.attribute_map.keys.inspect
         end
         h[k.to_sym] = v
       }
 
-      if attributes.key?(:'requests')
-        if (value = attributes[:'requests']).is_a?(Array)
-          self.requests = value
-        end
+      if attributes.key?(:'product')
+        self.product = attributes[:'product']
+      end
+
+      if attributes.key?(:'vendor')
+        self.vendor = attributes[:'vendor']
       end
     end
 
@@ -85,17 +93,12 @@ module Falcon
     # @return Array for valid properties with the reasons
     def list_invalid_properties
       invalid_properties = Array.new
-      if @requests.nil?
-        invalid_properties.push('invalid value for "requests", requests cannot be nil.')
-      end
-
       invalid_properties
     end
 
     # Check to see if the all the properties in the model are valid
     # @return true if the model is valid
     def valid?
-      return false if @requests.nil?
       true
     end
 
@@ -104,7 +107,8 @@ module Falcon
     def ==(o)
       return true if self.equal?(o)
       self.class == o.class &&
-          requests == o.requests
+          product == o.product &&
+          vendor == o.vendor
     end
 
     # @see the `==` method
@@ -116,7 +120,7 @@ module Falcon
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [requests].hash
+      [product, vendor].hash
     end
 
     # Builds the object from hash