google-apis-binaryauthorization_v1 0.31.0 → 0.33.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e0a765c9069ce3d64973384771e4b427455ab4b2a904050de1093288ec5b78b7
-  data.tar.gz: 8f03ade3bf98867055abb89737457d2cbece5ecddaeedfd8052aa71780d1a359
+  metadata.gz: e51a9140378f94c47bfbf9ec2025883b527d975456970e103855fbbb813f2166
+  data.tar.gz: 453a3ca9e31a9402156e20324f7ce676a4687251e1f0b5b98569845e61f2cbea
 SHA512:
-  metadata.gz: 4e47c3dfa9fdbd16e2616bbc912033bd5938cedbb0b834f28318c42fc52dcaa92d6219e3f103a4214587551da0a3345a482e0acfec263191643d39c498855be0
-  data.tar.gz: 57ceac8cad652429ace392d687b227c1797c9d9e411b2c84d318c33167dac0cd86e00d6e3dacc8989f2525e4fe83035a628e53ec4107e1552b0a3e5c80064329
+  metadata.gz: c0565bb75d4840228b6533b1241bed5060dfb7638b0eeab375bde8f601b61382e7942441e35b8c5c02dd244c4743276abc73b5ec6067343690e88a3a4ae5a88a
+  data.tar.gz: 582f0c1a74bce0f40ad4a2353904ea201075ef0a757a8e47ab5e4b8fb8564a2d63eb1c0da6b03ae156e6c2c361a326100b2e30c4cda9ed5df87895ba9263f749

data/CHANGELOG.md

@@ -1,5 +1,14 @@
 # Release history for google-apis-binaryauthorization_v1
 
+### v0.33.0 (2024-02-18)
+
+* Regenerated from discovery document revision 20240209
+
+### v0.32.0 (2024-01-28)
+
+* Regenerated from discovery document revision 20240119
+* Regenerated using generator version 0.13.1
+
 ### v0.31.0 (2024-01-23)
 
 * Regenerated using generator version 0.13.0

data/lib/google/apis/binaryauthorization_v1/classes.rb

@@ -171,10 +171,10 @@ module Google
       class AttestationSource
         include Google::Apis::Core::Hashable
       
-        # The IDs of the GCP projects storing the SLSA attestations as Container
-        # Analysis Occurrences, in the format `projects/[PROJECT_ID]`. Maximum number of
-        # `container_analysis_attestation_projects` allowed in each `AttestationSource`
-        # is 10.
+        # The IDs of the Google Cloud projects that store the SLSA attestations as
+        # Container Analysis Occurrences, in the format `projects/[PROJECT_ID]`. Maximum
+        # number of `container_analysis_attestation_projects` allowed in each `
+        # AttestationSource` is 10.
         # Corresponds to the JSON property `containerAnalysisAttestationProjects`
         # @return [Array<String>]
         attr_accessor :container_analysis_attestation_projects
@@ -369,7 +369,10 @@ module Google
         attr_accessor :members
       
         # Role that is assigned to the list of `members`, or principals. For example, `
-        # roles/viewer`, `roles/editor`, or `roles/owner`.
+        # roles/viewer`, `roles/editor`, or `roles/owner`. For an overview of the IAM
+        # roles and permissions, see the [IAM documentation](https://cloud.google.com/
+        # iam/docs/roles-overview). For a list of the available pre-defined roles, see [
+        # here](https://cloud.google.com/iam/docs/understanding-roles).
         # Corresponds to the JSON property `role`
         # @return [String]
         attr_accessor :role
@@ -418,6 +421,12 @@ module Google
         # @return [Google::Apis::BinaryauthorizationV1::ImageFreshnessCheck]
         attr_accessor :image_freshness_check
       
+        # A Sigstore signature check, which verifies the Sigstore signature associated
+        # with an image.
+        # Corresponds to the JSON property `sigstoreSignatureCheck`
+        # @return [Google::Apis::BinaryauthorizationV1::SigstoreSignatureCheck]
+        attr_accessor :sigstore_signature_check
+      
         # Require a signed [DSSE](https://github.com/secure-systems-lab/dsse)
         # attestation with type SimpleSigning.
         # Corresponds to the JSON property `simpleSigningAttestationCheck`
@@ -452,6 +461,7 @@ module Google
           @display_name = args[:display_name] if args.key?(:display_name)
           @image_allowlist = args[:image_allowlist] if args.key?(:image_allowlist)
           @image_freshness_check = args[:image_freshness_check] if args.key?(:image_freshness_check)
+          @sigstore_signature_check = args[:sigstore_signature_check] if args.key?(:sigstore_signature_check)
           @simple_signing_attestation_check = args[:simple_signing_attestation_check] if args.key?(:simple_signing_attestation_check)
           @slsa_check = args[:slsa_check] if args.key?(:slsa_check)
           @trusted_directory_check = args[:trusted_directory_check] if args.key?(:trusted_directory_check)
@@ -1155,6 +1165,99 @@ module Google
         end
       end
       
+      # A Sigstore authority, used to verify signatures that are created by Sigstore.
+      # An authority is analogous to an attestation authenticator, verifying that a
+      # signature is valid or invalid.
+      class SigstoreAuthority
+        include Google::Apis::Core::Hashable
+      
+        # Optional. A user-provided name for this `SigstoreAuthority`. This field has no
+        # effect on the policy evaluation behavior except to improve readability of
+        # messages in evaluation results.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # A bundle of Sigstore public keys, used to verify Sigstore signatures. A
+        # signature is authenticated by a `SigstorePublicKeySet` if any of the keys
+        # verify it.
+        # Corresponds to the JSON property `publicKeySet`
+        # @return [Google::Apis::BinaryauthorizationV1::SigstorePublicKeySet]
+        attr_accessor :public_key_set
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @public_key_set = args[:public_key_set] if args.key?(:public_key_set)
+        end
+      end
+      
+      # A Sigstore public key. `SigstorePublicKey` is the public key material used to
+      # authenticate Sigstore signatures.
+      class SigstorePublicKey
+        include Google::Apis::Core::Hashable
+      
+        # The public key material in PEM format.
+        # Corresponds to the JSON property `publicKeyPem`
+        # @return [String]
+        attr_accessor :public_key_pem
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @public_key_pem = args[:public_key_pem] if args.key?(:public_key_pem)
+        end
+      end
+      
+      # A bundle of Sigstore public keys, used to verify Sigstore signatures. A
+      # signature is authenticated by a `SigstorePublicKeySet` if any of the keys
+      # verify it.
+      class SigstorePublicKeySet
+        include Google::Apis::Core::Hashable
+      
+        # Required. `public_keys` must have at least one entry.
+        # Corresponds to the JSON property `publicKeys`
+        # @return [Array<Google::Apis::BinaryauthorizationV1::SigstorePublicKey>]
+        attr_accessor :public_keys
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @public_keys = args[:public_keys] if args.key?(:public_keys)
+        end
+      end
+      
+      # A Sigstore signature check, which verifies the Sigstore signature associated
+      # with an image.
+      class SigstoreSignatureCheck
+        include Google::Apis::Core::Hashable
+      
+        # Required. The authorities required by this check to verify the signature. A
+        # signature only needs to be verified by one authority to pass the check.
+        # Corresponds to the JSON property `sigstoreAuthorities`
+        # @return [Array<Google::Apis::BinaryauthorizationV1::SigstoreAuthority>]
+        attr_accessor :sigstore_authorities
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @sigstore_authorities = args[:sigstore_authorities] if args.key?(:sigstore_authorities)
+        end
+      end
+      
       # Require a signed [DSSE](https://github.com/secure-systems-lab/dsse)
       # attestation with type SimpleSigning.
       class SimpleSigningAttestationCheck

data/lib/google/apis/binaryauthorization_v1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module BinaryauthorizationV1
       # Version of the google-apis-binaryauthorization_v1 gem
-      GEM_VERSION = "0.31.0"
+      GEM_VERSION = "0.33.0"
 
       # Version of the code generator used to generate this client
-      GENERATOR_VERSION = "0.13.0"
+      GENERATOR_VERSION = "0.13.1"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20231215"
+      REVISION = "20240209"
     end
   end
 end

data/lib/google/apis/binaryauthorization_v1/representations.rb

@@ -178,6 +178,30 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class SigstoreAuthority
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class SigstorePublicKey
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class SigstorePublicKeySet
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class SigstoreSignatureCheck
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class SimpleSigningAttestationCheck
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -323,6 +347,8 @@ module Google
       
           property :image_freshness_check, as: 'imageFreshnessCheck', class: Google::Apis::BinaryauthorizationV1::ImageFreshnessCheck, decorator: Google::Apis::BinaryauthorizationV1::ImageFreshnessCheck::Representation
       
+          property :sigstore_signature_check, as: 'sigstoreSignatureCheck', class: Google::Apis::BinaryauthorizationV1::SigstoreSignatureCheck, decorator: Google::Apis::BinaryauthorizationV1::SigstoreSignatureCheck::Representation
+      
           property :simple_signing_attestation_check, as: 'simpleSigningAttestationCheck', class: Google::Apis::BinaryauthorizationV1::SimpleSigningAttestationCheck, decorator: Google::Apis::BinaryauthorizationV1::SimpleSigningAttestationCheck::Representation
       
           property :slsa_check, as: 'slsaCheck', class: Google::Apis::BinaryauthorizationV1::SlsaCheck, decorator: Google::Apis::BinaryauthorizationV1::SlsaCheck::Representation
@@ -497,6 +523,38 @@ module Google
         end
       end
       
+      class SigstoreAuthority
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :display_name, as: 'displayName'
+          property :public_key_set, as: 'publicKeySet', class: Google::Apis::BinaryauthorizationV1::SigstorePublicKeySet, decorator: Google::Apis::BinaryauthorizationV1::SigstorePublicKeySet::Representation
+      
+        end
+      end
+      
+      class SigstorePublicKey
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :public_key_pem, as: 'publicKeyPem'
+        end
+      end
+      
+      class SigstorePublicKeySet
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          collection :public_keys, as: 'publicKeys', class: Google::Apis::BinaryauthorizationV1::SigstorePublicKey, decorator: Google::Apis::BinaryauthorizationV1::SigstorePublicKey::Representation
+      
+        end
+      end
+      
+      class SigstoreSignatureCheck
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          collection :sigstore_authorities, as: 'sigstoreAuthorities', class: Google::Apis::BinaryauthorizationV1::SigstoreAuthority, decorator: Google::Apis::BinaryauthorizationV1::SigstoreAuthority::Representation
+      
+        end
+      end
+      
       class SimpleSigningAttestationCheck
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-binaryauthorization_v1
 version: !ruby/object:Gem::Version
-  version: 0.31.0
+  version: 0.33.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2024-01-23 00:00:00.000000000 Z
+date: 2024-02-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-binaryauthorization_v1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-binaryauthorization_v1/v0.31.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-binaryauthorization_v1/v0.33.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-binaryauthorization_v1
 post_install_message: 
 rdoc_options: []