google-apis-containeranalysis_v1alpha1 0.41.0 → 0.42.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 58055c80e60b90fa38433c3183f9d5a38d98bf4bd6564ad59a9cb5f050dc9886
4
- data.tar.gz: f88624b701a11ebd905cae228d76718e6f66c87c35628fb929568d63fabe682c
3
+ metadata.gz: 8731ef86a30e3c8a7d97003bfe1a19472b18a4376719f58fce8d93cabadcf5b4
4
+ data.tar.gz: 3bb63c78e8c74b9b71f41817766fa7fc779d3968b0098d3487cfdc4c2eefd44d
5
5
  SHA512:
6
- metadata.gz: f46803ff2223b5bc58156f4180da059902262728a80eaebab03ec38c44a1f75c81f466fddb94bc45bb142562547ba526de71df1c5ab6d2d72e4f109e40b11f5f
7
- data.tar.gz: c07df8eded2a1e6112ea3ccf27c7b454229c4f0b21b6cd2ef8121b3d8d6bb0056e7134e17a9393e50329d5f9a3afae95ffbc1d624869579a6ff2804c691a4ba7
6
+ metadata.gz: e66550f3a8eb89218115a8bec2df2d398a0f47b286978ecae039ee862c59efb9b6f65f9d30905f2f8d806223249b7f9232eb41ba5ecf630a20ffcdd5b3d903e9
7
+ data.tar.gz: d528f983cc27ae33e52d09a01359f34137b545d51daa6931d8e8cd610bace3f2e846705a30cdfaf91169ffb248847a106022020f31009cec61ebefc18824ae3b
data/CHANGELOG.md CHANGED
@@ -1,5 +1,9 @@
1
1
  # Release history for google-apis-containeranalysis_v1alpha1
2
2
 
3
+ ### v0.42.0 (2023-02-12)
4
+
5
+ * Regenerated from discovery document revision 20230203
6
+
3
7
  ### v0.41.0 (2023-01-29)
4
8
 
5
9
  * Regenerated from discovery document revision 20230120
@@ -91,6 +91,66 @@ module Google
91
91
  end
92
92
  end
93
93
 
94
+ # Assessment provides all information that is related to a single vulnerability
95
+ # for this product.
96
+ class Assessment
97
+ include Google::Apis::Core::Hashable
98
+
99
+ # Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking
100
+ # number for the vulnerability.
101
+ # Corresponds to the JSON property `cve`
102
+ # @return [String]
103
+ attr_accessor :cve
104
+
105
+ # A detailed description of this Vex.
106
+ # Corresponds to the JSON property `longDescription`
107
+ # @return [String]
108
+ attr_accessor :long_description
109
+
110
+ # Holds a list of references associated with this vulnerability item and
111
+ # assessment. These uris have additional information about the vulnerability and
112
+ # the assessment itself. E.g. Link to a document which details how this
113
+ # assessment concluded the state of this vulnerability.
114
+ # Corresponds to the JSON property `relatedUris`
115
+ # @return [Array<Google::Apis::ContaineranalysisV1alpha1::Uri>]
116
+ attr_accessor :related_uris
117
+
118
+ # Specifies details on how to handle (and presumably, fix) a vulnerability.
119
+ # Corresponds to the JSON property `remediations`
120
+ # @return [Array<Google::Apis::ContaineranalysisV1alpha1::Remediation>]
121
+ attr_accessor :remediations
122
+
123
+ # A one sentence description of this Vex.
124
+ # Corresponds to the JSON property `shortDescription`
125
+ # @return [String]
126
+ attr_accessor :short_description
127
+
128
+ # Provides the state of this Vulnerability assessment.
129
+ # Corresponds to the JSON property `state`
130
+ # @return [String]
131
+ attr_accessor :state
132
+
133
+ # Contains information about this vulnerability, this will change with time.
134
+ # Corresponds to the JSON property `threats`
135
+ # @return [Array<Google::Apis::ContaineranalysisV1alpha1::Threat>]
136
+ attr_accessor :threats
137
+
138
+ def initialize(**args)
139
+ update!(**args)
140
+ end
141
+
142
+ # Update properties of this object
143
+ def update!(**args)
144
+ @cve = args[:cve] if args.key?(:cve)
145
+ @long_description = args[:long_description] if args.key?(:long_description)
146
+ @related_uris = args[:related_uris] if args.key?(:related_uris)
147
+ @remediations = args[:remediations] if args.key?(:remediations)
148
+ @short_description = args[:short_description] if args.key?(:short_description)
149
+ @state = args[:state] if args.key?(:state)
150
+ @threats = args[:threats] if args.key?(:threats)
151
+ end
152
+ end
153
+
94
154
  # Occurrence that represents a single "attestation". The authenticity of an
95
155
  # Attestation can be verified using the attached signature. If the verifier
96
156
  # trusts the public key of the signer, then verifying the signature is
@@ -242,22 +302,22 @@ module Google
242
302
  # kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-
243
303
  # project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:`emailid``: An
244
304
  # email address that represents a Google group. For example, `admins@example.com`
245
- # . * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
246
- # identifier) representing a user that has been recently deleted. For example, `
247
- # alice@example.com?uid=123456789012345678901`. If the user is recovered, this
248
- # value reverts to `user:`emailid`` and the recovered user retains the role in
249
- # the binding. * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email
250
- # address (plus unique identifier) representing a service account that has been
251
- # recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=
305
+ # . * `domain:`domain``: The G Suite domain (primary) that represents all the
306
+ # users of that domain. For example, `google.com` or `example.com`. * `deleted:
307
+ # user:`emailid`?uid=`uniqueid``: An email address (plus unique identifier)
308
+ # representing a user that has been recently deleted. For example, `alice@
309
+ # example.com?uid=123456789012345678901`. If the user is recovered, this value
310
+ # reverts to `user:`emailid`` and the recovered user retains the role in the
311
+ # binding. * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email address
312
+ # (plus unique identifier) representing a service account that has been recently
313
+ # deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=
252
314
  # 123456789012345678901`. If the service account is undeleted, this value
253
315
  # reverts to `serviceAccount:`emailid`` and the undeleted service account
254
316
  # retains the role in the binding. * `deleted:group:`emailid`?uid=`uniqueid``:
255
317
  # An email address (plus unique identifier) representing a Google group that has
256
318
  # been recently deleted. For example, `admins@example.com?uid=
257
319
  # 123456789012345678901`. If the group is recovered, this value reverts to `
258
- # group:`emailid`` and the recovered group retains the role in the binding. * `
259
- # domain:`domain``: The G Suite domain (primary) that represents all the users
260
- # of that domain. For example, `google.com` or `example.com`.
320
+ # group:`emailid`` and the recovered group retains the role in the binding.
261
321
  # Corresponds to the JSON property `members`
262
322
  # @return [Array<String>]
263
323
  attr_accessor :members
@@ -4491,6 +4551,14 @@ module Google
4491
4551
  # @return [Google::Apis::ContaineranalysisV1alpha1::UpgradeNote]
4492
4552
  attr_accessor :upgrade
4493
4553
 
4554
+ # A single VulnerabilityAssessmentNote represents one particular product's
4555
+ # vulnerability assessment for one CVE. Multiple VulnerabilityAssessmentNotes
4556
+ # together form a Vex statement. Please go/sds-vex-example for a sample Vex
4557
+ # statement in the CSAF format.
4558
+ # Corresponds to the JSON property `vulnerabilityAssessment`
4559
+ # @return [Google::Apis::ContaineranalysisV1alpha1::VulnerabilityAssessmentNote]
4560
+ attr_accessor :vulnerability_assessment
4561
+
4494
4562
  # VulnerabilityType provides metadata about a security vulnerability.
4495
4563
  # Corresponds to the JSON property `vulnerabilityType`
4496
4564
  # @return [Google::Apis::ContaineranalysisV1alpha1::VulnerabilityType]
@@ -4523,6 +4591,7 @@ module Google
4523
4591
  @spdx_relationship = args[:spdx_relationship] if args.key?(:spdx_relationship)
4524
4592
  @update_time = args[:update_time] if args.key?(:update_time)
4525
4593
  @upgrade = args[:upgrade] if args.key?(:upgrade)
4594
+ @vulnerability_assessment = args[:vulnerability_assessment] if args.key?(:vulnerability_assessment)
4526
4595
  @vulnerability_type = args[:vulnerability_type] if args.key?(:vulnerability_type)
4527
4596
  end
4528
4597
  end
@@ -5253,6 +5322,75 @@ module Google
5253
5322
  end
5254
5323
  end
5255
5324
 
5325
+ # Product contains information about a product and how to uniquely identify it.
5326
+ class Product
5327
+ include Google::Apis::Core::Hashable
5328
+
5329
+ # Contains a URI which is vendor-specific. Example: The artifact repository URL
5330
+ # of an image.
5331
+ # Corresponds to the JSON property `genericUri`
5332
+ # @return [String]
5333
+ attr_accessor :generic_uri
5334
+
5335
+ # Token that identifies a product so that it can be referred to from other parts
5336
+ # in the document. There is no predefined format as long as it uniquely
5337
+ # identifies a group in the context of the current document.
5338
+ # Corresponds to the JSON property `id`
5339
+ # @return [String]
5340
+ attr_accessor :id
5341
+
5342
+ # Name of the product.
5343
+ # Corresponds to the JSON property `name`
5344
+ # @return [String]
5345
+ attr_accessor :name
5346
+
5347
+ def initialize(**args)
5348
+ update!(**args)
5349
+ end
5350
+
5351
+ # Update properties of this object
5352
+ def update!(**args)
5353
+ @generic_uri = args[:generic_uri] if args.key?(:generic_uri)
5354
+ @id = args[:id] if args.key?(:id)
5355
+ @name = args[:name] if args.key?(:name)
5356
+ end
5357
+ end
5358
+
5359
+ # Publisher contains information about the publisher of this Note.
5360
+ class Publisher
5361
+ include Google::Apis::Core::Hashable
5362
+
5363
+ # The context or namespace. Contains a URL which is under control of the issuing
5364
+ # party and can be used as a globally unique identifier for that issuing party.
5365
+ # Example: https://csaf.io
5366
+ # Corresponds to the JSON property `context`
5367
+ # @return [String]
5368
+ attr_accessor :context
5369
+
5370
+ # Provides information about the authority of the issuing party to release the
5371
+ # document, in particular, the party's constituency and responsibilities or
5372
+ # other obligations.
5373
+ # Corresponds to the JSON property `issuingAuthority`
5374
+ # @return [String]
5375
+ attr_accessor :issuing_authority
5376
+
5377
+ # Name of the publisher. Examples: 'Google', 'Google Cloud Platform'.
5378
+ # Corresponds to the JSON property `name`
5379
+ # @return [String]
5380
+ attr_accessor :name
5381
+
5382
+ def initialize(**args)
5383
+ update!(**args)
5384
+ end
5385
+
5386
+ # Update properties of this object
5387
+ def update!(**args)
5388
+ @context = args[:context] if args.key?(:context)
5389
+ @issuing_authority = args[:issuing_authority] if args.key?(:issuing_authority)
5390
+ @name = args[:name] if args.key?(:name)
5391
+ end
5392
+ end
5393
+
5256
5394
  # Steps taken to build the artifact. For a TaskRun, typically each container
5257
5395
  # corresponds to one step in the recipe.
5258
5396
  class Recipe
@@ -5400,6 +5538,43 @@ module Google
5400
5538
  end
5401
5539
  end
5402
5540
 
5541
+ # Specifies details on how to handle (and presumably, fix) a vulnerability.
5542
+ class Remediation
5543
+ include Google::Apis::Core::Hashable
5544
+
5545
+ # Contains a comprehensive human-readable discussion of the remediation.
5546
+ # Corresponds to the JSON property `details`
5547
+ # @return [String]
5548
+ attr_accessor :details
5549
+
5550
+ # Contains the date from which the remediation is available.
5551
+ # Corresponds to the JSON property `remediationTime`
5552
+ # @return [String]
5553
+ attr_accessor :remediation_time
5554
+
5555
+ # The type of remediation that can be applied.
5556
+ # Corresponds to the JSON property `remediationType`
5557
+ # @return [String]
5558
+ attr_accessor :remediation_type
5559
+
5560
+ # An URI message.
5561
+ # Corresponds to the JSON property `remediationUri`
5562
+ # @return [Google::Apis::ContaineranalysisV1alpha1::Uri]
5563
+ attr_accessor :remediation_uri
5564
+
5565
+ def initialize(**args)
5566
+ update!(**args)
5567
+ end
5568
+
5569
+ # Update properties of this object
5570
+ def update!(**args)
5571
+ @details = args[:details] if args.key?(:details)
5572
+ @remediation_time = args[:remediation_time] if args.key?(:remediation_time)
5573
+ @remediation_type = args[:remediation_type] if args.key?(:remediation_type)
5574
+ @remediation_uri = args[:remediation_uri] if args.key?(:remediation_uri)
5575
+ end
5576
+ end
5577
+
5403
5578
  # RepoSource describes the location of the source in a Google Cloud Source
5404
5579
  # Repository.
5405
5580
  class RepoSource
@@ -6045,6 +6220,32 @@ module Google
6045
6220
  end
6046
6221
  end
6047
6222
 
6223
+ # Contains the vulnerability kinetic information. This information can change as
6224
+ # the vulnerability ages and new information becomes available.
6225
+ class Threat
6226
+ include Google::Apis::Core::Hashable
6227
+
6228
+ # Represents a thorough human-readable discussion of the threat.
6229
+ # Corresponds to the JSON property `details`
6230
+ # @return [String]
6231
+ attr_accessor :details
6232
+
6233
+ # The type of threat.
6234
+ # Corresponds to the JSON property `threatType`
6235
+ # @return [String]
6236
+ attr_accessor :threat_type
6237
+
6238
+ def initialize(**args)
6239
+ update!(**args)
6240
+ end
6241
+
6242
+ # Update properties of this object
6243
+ def update!(**args)
6244
+ @details = args[:details] if args.key?(:details)
6245
+ @threat_type = args[:threat_type] if args.key?(:threat_type)
6246
+ end
6247
+ end
6248
+
6048
6249
  # Start and end times for a build execution phase. Next ID: 3
6049
6250
  class TimeSpan
6050
6251
  include Google::Apis::Core::Hashable
@@ -6070,6 +6271,31 @@ module Google
6070
6271
  end
6071
6272
  end
6072
6273
 
6274
+ # An URI message.
6275
+ class Uri
6276
+ include Google::Apis::Core::Hashable
6277
+
6278
+ # A label for the URI.
6279
+ # Corresponds to the JSON property `label`
6280
+ # @return [String]
6281
+ attr_accessor :label
6282
+
6283
+ # The unique resource identifier.
6284
+ # Corresponds to the JSON property `uri`
6285
+ # @return [String]
6286
+ attr_accessor :uri
6287
+
6288
+ def initialize(**args)
6289
+ update!(**args)
6290
+ end
6291
+
6292
+ # Update properties of this object
6293
+ def update!(**args)
6294
+ @label = args[:label] if args.key?(:label)
6295
+ @uri = args[:uri] if args.key?(:uri)
6296
+ end
6297
+ end
6298
+
6073
6299
  # Request for updating an existing operation
6074
6300
  class UpdateOperationRequest
6075
6301
  include Google::Apis::Core::Hashable
@@ -6261,6 +6487,61 @@ module Google
6261
6487
  end
6262
6488
  end
6263
6489
 
6490
+ # VexAssessment provides all publisher provided Vex information that is related
6491
+ # to this vulnerability.
6492
+ class VexAssessment
6493
+ include Google::Apis::Core::Hashable
6494
+
6495
+ # Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking
6496
+ # number for the vulnerability.
6497
+ # Corresponds to the JSON property `cve`
6498
+ # @return [String]
6499
+ attr_accessor :cve
6500
+
6501
+ # The VulnerabilityAssessment note from which this VexAssessment was generated.
6502
+ # This will be of the form: `projects/[PROJECT_ID]/notes/[NOTE_ID]`.
6503
+ # Corresponds to the JSON property `noteName`
6504
+ # @return [String]
6505
+ attr_accessor :note_name
6506
+
6507
+ # Holds a list of references associated with this vulnerability item and
6508
+ # assessment. These uris have additional information about the vulnerability and
6509
+ # the assessment itself. E.g. Link to a document which details how this
6510
+ # assessment concluded the state of this vulnerability.
6511
+ # Corresponds to the JSON property `relatedUris`
6512
+ # @return [Array<Google::Apis::ContaineranalysisV1alpha1::Uri>]
6513
+ attr_accessor :related_uris
6514
+
6515
+ # Specifies details on how to handle (and presumably, fix) a vulnerability.
6516
+ # Corresponds to the JSON property `remediations`
6517
+ # @return [Array<Google::Apis::ContaineranalysisV1alpha1::Remediation>]
6518
+ attr_accessor :remediations
6519
+
6520
+ # Provides the state of this Vulnerability assessment.
6521
+ # Corresponds to the JSON property `state`
6522
+ # @return [String]
6523
+ attr_accessor :state
6524
+
6525
+ # Contains information about this vulnerability, this will change with time.
6526
+ # Corresponds to the JSON property `threats`
6527
+ # @return [Array<Google::Apis::ContaineranalysisV1alpha1::Threat>]
6528
+ attr_accessor :threats
6529
+
6530
+ def initialize(**args)
6531
+ update!(**args)
6532
+ end
6533
+
6534
+ # Update properties of this object
6535
+ def update!(**args)
6536
+ @cve = args[:cve] if args.key?(:cve)
6537
+ @note_name = args[:note_name] if args.key?(:note_name)
6538
+ @related_uris = args[:related_uris] if args.key?(:related_uris)
6539
+ @remediations = args[:remediations] if args.key?(:remediations)
6540
+ @state = args[:state] if args.key?(:state)
6541
+ @threats = args[:threats] if args.key?(:threats)
6542
+ end
6543
+ end
6544
+
6264
6545
  # Volume describes a Docker container volume which is mounted into build steps
6265
6546
  # in order to persist files across build step execution. Next ID: 3
6266
6547
  class Volume
@@ -6291,6 +6572,66 @@ module Google
6291
6572
  end
6292
6573
  end
6293
6574
 
6575
+ # A single VulnerabilityAssessmentNote represents one particular product's
6576
+ # vulnerability assessment for one CVE. Multiple VulnerabilityAssessmentNotes
6577
+ # together form a Vex statement. Please go/sds-vex-example for a sample Vex
6578
+ # statement in the CSAF format.
6579
+ class VulnerabilityAssessmentNote
6580
+ include Google::Apis::Core::Hashable
6581
+
6582
+ # Assessment provides all information that is related to a single vulnerability
6583
+ # for this product.
6584
+ # Corresponds to the JSON property `assessment`
6585
+ # @return [Google::Apis::ContaineranalysisV1alpha1::Assessment]
6586
+ attr_accessor :assessment
6587
+
6588
+ # Identifies the language used by this document, corresponding to IETF BCP 47 /
6589
+ # RFC 5646.
6590
+ # Corresponds to the JSON property `languageCode`
6591
+ # @return [String]
6592
+ attr_accessor :language_code
6593
+
6594
+ # A detailed description of this Vex.
6595
+ # Corresponds to the JSON property `longDescription`
6596
+ # @return [String]
6597
+ attr_accessor :long_description
6598
+
6599
+ # Product contains information about a product and how to uniquely identify it.
6600
+ # Corresponds to the JSON property `product`
6601
+ # @return [Google::Apis::ContaineranalysisV1alpha1::Product]
6602
+ attr_accessor :product
6603
+
6604
+ # Publisher contains information about the publisher of this Note.
6605
+ # Corresponds to the JSON property `publisher`
6606
+ # @return [Google::Apis::ContaineranalysisV1alpha1::Publisher]
6607
+ attr_accessor :publisher
6608
+
6609
+ # A one sentence description of this Vex.
6610
+ # Corresponds to the JSON property `shortDescription`
6611
+ # @return [String]
6612
+ attr_accessor :short_description
6613
+
6614
+ # The title of the note. E.g. `Vex-Debian-11.4`
6615
+ # Corresponds to the JSON property `title`
6616
+ # @return [String]
6617
+ attr_accessor :title
6618
+
6619
+ def initialize(**args)
6620
+ update!(**args)
6621
+ end
6622
+
6623
+ # Update properties of this object
6624
+ def update!(**args)
6625
+ @assessment = args[:assessment] if args.key?(:assessment)
6626
+ @language_code = args[:language_code] if args.key?(:language_code)
6627
+ @long_description = args[:long_description] if args.key?(:long_description)
6628
+ @product = args[:product] if args.key?(:product)
6629
+ @publisher = args[:publisher] if args.key?(:publisher)
6630
+ @short_description = args[:short_description] if args.key?(:short_description)
6631
+ @title = args[:title] if args.key?(:title)
6632
+ end
6633
+ end
6634
+
6294
6635
  # Used by Occurrence to point to where the vulnerability exists and how to fix
6295
6636
  # it.
6296
6637
  class VulnerabilityDetails
@@ -6302,6 +6643,15 @@ module Google
6302
6643
  # @return [Float]
6303
6644
  attr_accessor :cvss_score
6304
6645
 
6646
+ # Common Vulnerability Scoring System. This message is compatible with CVSS v2
6647
+ # and v3. For CVSS v2 details, see https://www.first.org/cvss/v2/guide CVSS v2
6648
+ # calculator: https://nvd.nist.gov/vuln-metrics/cvss/v2-calculator For CVSS v3
6649
+ # details, see https://www.first.org/cvss/specification-document CVSS v3
6650
+ # calculator: https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator
6651
+ # Corresponds to the JSON property `cvssV2`
6652
+ # @return [Google::Apis::ContaineranalysisV1alpha1::Cvss]
6653
+ attr_accessor :cvss_v2
6654
+
6305
6655
  # Common Vulnerability Scoring System. This message is compatible with CVSS v2
6306
6656
  # and v3. For CVSS v2 details, see https://www.first.org/cvss/v2/guide CVSS v2
6307
6657
  # calculator: https://nvd.nist.gov/vuln-metrics/cvss/v2-calculator For CVSS v3
@@ -6311,6 +6661,11 @@ module Google
6311
6661
  # @return [Google::Apis::ContaineranalysisV1alpha1::Cvss]
6312
6662
  attr_accessor :cvss_v3
6313
6663
 
6664
+ # Output only. CVSS version used to populate cvss_score and severity.
6665
+ # Corresponds to the JSON property `cvssVersion`
6666
+ # @return [String]
6667
+ attr_accessor :cvss_version
6668
+
6314
6669
  # The distro assigned severity for this vulnerability when that is available and
6315
6670
  # note provider assigned severity when distro has not yet assigned a severity
6316
6671
  # for this vulnerability. When there are multiple package issues for this
@@ -6343,6 +6698,12 @@ module Google
6343
6698
  # @return [String]
6344
6699
  attr_accessor :type
6345
6700
 
6701
+ # VexAssessment provides all publisher provided Vex information that is related
6702
+ # to this vulnerability.
6703
+ # Corresponds to the JSON property `vexAssessment`
6704
+ # @return [Google::Apis::ContaineranalysisV1alpha1::VexAssessment]
6705
+ attr_accessor :vex_assessment
6706
+
6346
6707
  def initialize(**args)
6347
6708
  update!(**args)
6348
6709
  end
@@ -6350,11 +6711,14 @@ module Google
6350
6711
  # Update properties of this object
6351
6712
  def update!(**args)
6352
6713
  @cvss_score = args[:cvss_score] if args.key?(:cvss_score)
6714
+ @cvss_v2 = args[:cvss_v2] if args.key?(:cvss_v2)
6353
6715
  @cvss_v3 = args[:cvss_v3] if args.key?(:cvss_v3)
6716
+ @cvss_version = args[:cvss_version] if args.key?(:cvss_version)
6354
6717
  @effective_severity = args[:effective_severity] if args.key?(:effective_severity)
6355
6718
  @package_issue = args[:package_issue] if args.key?(:package_issue)
6356
6719
  @severity = args[:severity] if args.key?(:severity)
6357
6720
  @type = args[:type] if args.key?(:type)
6721
+ @vex_assessment = args[:vex_assessment] if args.key?(:vex_assessment)
6358
6722
  end
6359
6723
  end
6360
6724
 
@@ -6418,6 +6782,11 @@ module Google
6418
6782
  # @return [Google::Apis::ContaineranalysisV1alpha1::Cvss]
6419
6783
  attr_accessor :cvss_v2
6420
6784
 
6785
+ # CVSS version used to populate cvss_score and severity.
6786
+ # Corresponds to the JSON property `cvssVersion`
6787
+ # @return [String]
6788
+ attr_accessor :cvss_version
6789
+
6421
6790
  # A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/
6422
6791
  # index.html
6423
6792
  # Corresponds to the JSON property `cwe`
@@ -6444,6 +6813,7 @@ module Google
6444
6813
  def update!(**args)
6445
6814
  @cvss_score = args[:cvss_score] if args.key?(:cvss_score)
6446
6815
  @cvss_v2 = args[:cvss_v2] if args.key?(:cvss_v2)
6816
+ @cvss_version = args[:cvss_version] if args.key?(:cvss_version)
6447
6817
  @cwe = args[:cwe] if args.key?(:cwe)
6448
6818
  @details = args[:details] if args.key?(:details)
6449
6819
  @severity = args[:severity] if args.key?(:severity)
@@ -16,13 +16,13 @@ module Google
16
16
  module Apis
17
17
  module ContaineranalysisV1alpha1
18
18
  # Version of the google-apis-containeranalysis_v1alpha1 gem
19
- GEM_VERSION = "0.41.0"
19
+ GEM_VERSION = "0.42.0"
20
20
 
21
21
  # Version of the code generator used to generate this client
22
22
  GENERATOR_VERSION = "0.11.1"
23
23
 
24
24
  # Revision of the discovery document this client was generated from
25
- REVISION = "20230120"
25
+ REVISION = "20230203"
26
26
  end
27
27
  end
28
28
  end
@@ -34,6 +34,12 @@ module Google
34
34
  include Google::Apis::Core::JsonObjectSupport
35
35
  end
36
36
 
37
+ class Assessment
38
+ class Representation < Google::Apis::Core::JsonRepresentation; end
39
+
40
+ include Google::Apis::Core::JsonObjectSupport
41
+ end
42
+
37
43
  class Attestation
38
44
  class Representation < Google::Apis::Core::JsonRepresentation; end
39
45
 
@@ -706,6 +712,18 @@ module Google
706
712
  include Google::Apis::Core::JsonObjectSupport
707
713
  end
708
714
 
715
+ class Product
716
+ class Representation < Google::Apis::Core::JsonRepresentation; end
717
+
718
+ include Google::Apis::Core::JsonObjectSupport
719
+ end
720
+
721
+ class Publisher
722
+ class Representation < Google::Apis::Core::JsonRepresentation; end
723
+
724
+ include Google::Apis::Core::JsonObjectSupport
725
+ end
726
+
709
727
  class Recipe
710
728
  class Representation < Google::Apis::Core::JsonRepresentation; end
711
729
 
@@ -730,6 +748,12 @@ module Google
730
748
  include Google::Apis::Core::JsonObjectSupport
731
749
  end
732
750
 
751
+ class Remediation
752
+ class Representation < Google::Apis::Core::JsonRepresentation; end
753
+
754
+ include Google::Apis::Core::JsonObjectSupport
755
+ end
756
+
733
757
  class RepoSource
734
758
  class Representation < Google::Apis::Core::JsonRepresentation; end
735
759
 
@@ -832,12 +856,24 @@ module Google
832
856
  include Google::Apis::Core::JsonObjectSupport
833
857
  end
834
858
 
859
+ class Threat
860
+ class Representation < Google::Apis::Core::JsonRepresentation; end
861
+
862
+ include Google::Apis::Core::JsonObjectSupport
863
+ end
864
+
835
865
  class TimeSpan
836
866
  class Representation < Google::Apis::Core::JsonRepresentation; end
837
867
 
838
868
  include Google::Apis::Core::JsonObjectSupport
839
869
  end
840
870
 
871
+ class Uri
872
+ class Representation < Google::Apis::Core::JsonRepresentation; end
873
+
874
+ include Google::Apis::Core::JsonObjectSupport
875
+ end
876
+
841
877
  class UpdateOperationRequest
842
878
  class Representation < Google::Apis::Core::JsonRepresentation; end
843
879
 
@@ -868,12 +904,24 @@ module Google
868
904
  include Google::Apis::Core::JsonObjectSupport
869
905
  end
870
906
 
907
+ class VexAssessment
908
+ class Representation < Google::Apis::Core::JsonRepresentation; end
909
+
910
+ include Google::Apis::Core::JsonObjectSupport
911
+ end
912
+
871
913
  class Volume
872
914
  class Representation < Google::Apis::Core::JsonRepresentation; end
873
915
 
874
916
  include Google::Apis::Core::JsonObjectSupport
875
917
  end
876
918
 
919
+ class VulnerabilityAssessmentNote
920
+ class Representation < Google::Apis::Core::JsonRepresentation; end
921
+
922
+ include Google::Apis::Core::JsonObjectSupport
923
+ end
924
+
877
925
  class VulnerabilityDetails
878
926
  class Representation < Google::Apis::Core::JsonRepresentation; end
879
927
 
@@ -909,6 +957,22 @@ module Google
909
957
  end
910
958
  end
911
959
 
960
+ class Assessment
961
+ # @private
962
+ class Representation < Google::Apis::Core::JsonRepresentation
963
+ property :cve, as: 'cve'
964
+ property :long_description, as: 'longDescription'
965
+ collection :related_uris, as: 'relatedUris', class: Google::Apis::ContaineranalysisV1alpha1::Uri, decorator: Google::Apis::ContaineranalysisV1alpha1::Uri::Representation
966
+
967
+ collection :remediations, as: 'remediations', class: Google::Apis::ContaineranalysisV1alpha1::Remediation, decorator: Google::Apis::ContaineranalysisV1alpha1::Remediation::Representation
968
+
969
+ property :short_description, as: 'shortDescription'
970
+ property :state, as: 'state'
971
+ collection :threats, as: 'threats', class: Google::Apis::ContaineranalysisV1alpha1::Threat, decorator: Google::Apis::ContaineranalysisV1alpha1::Threat::Representation
972
+
973
+ end
974
+ end
975
+
912
976
  class Attestation
913
977
  # @private
914
978
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -2064,6 +2128,8 @@ module Google
2064
2128
  property :update_time, as: 'updateTime'
2065
2129
  property :upgrade, as: 'upgrade', class: Google::Apis::ContaineranalysisV1alpha1::UpgradeNote, decorator: Google::Apis::ContaineranalysisV1alpha1::UpgradeNote::Representation
2066
2130
 
2131
+ property :vulnerability_assessment, as: 'vulnerabilityAssessment', class: Google::Apis::ContaineranalysisV1alpha1::VulnerabilityAssessmentNote, decorator: Google::Apis::ContaineranalysisV1alpha1::VulnerabilityAssessmentNote::Representation
2132
+
2067
2133
  property :vulnerability_type, as: 'vulnerabilityType', class: Google::Apis::ContaineranalysisV1alpha1::VulnerabilityType, decorator: Google::Apis::ContaineranalysisV1alpha1::VulnerabilityType::Representation
2068
2134
 
2069
2135
  end
@@ -2221,6 +2287,24 @@ module Google
2221
2287
  end
2222
2288
  end
2223
2289
 
2290
+ class Product
2291
+ # @private
2292
+ class Representation < Google::Apis::Core::JsonRepresentation
2293
+ property :generic_uri, as: 'genericUri'
2294
+ property :id, as: 'id'
2295
+ property :name, as: 'name'
2296
+ end
2297
+ end
2298
+
2299
+ class Publisher
2300
+ # @private
2301
+ class Representation < Google::Apis::Core::JsonRepresentation
2302
+ property :context, as: 'context'
2303
+ property :issuing_authority, as: 'issuingAuthority'
2304
+ property :name, as: 'name'
2305
+ end
2306
+ end
2307
+
2224
2308
  class Recipe
2225
2309
  # @private
2226
2310
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -2257,6 +2341,17 @@ module Google
2257
2341
  end
2258
2342
  end
2259
2343
 
2344
+ class Remediation
2345
+ # @private
2346
+ class Representation < Google::Apis::Core::JsonRepresentation
2347
+ property :details, as: 'details'
2348
+ property :remediation_time, as: 'remediationTime'
2349
+ property :remediation_type, as: 'remediationType'
2350
+ property :remediation_uri, as: 'remediationUri', class: Google::Apis::ContaineranalysisV1alpha1::Uri, decorator: Google::Apis::ContaineranalysisV1alpha1::Uri::Representation
2351
+
2352
+ end
2353
+ end
2354
+
2260
2355
  class RepoSource
2261
2356
  # @private
2262
2357
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -2432,6 +2527,14 @@ module Google
2432
2527
  end
2433
2528
  end
2434
2529
 
2530
+ class Threat
2531
+ # @private
2532
+ class Representation < Google::Apis::Core::JsonRepresentation
2533
+ property :details, as: 'details'
2534
+ property :threat_type, as: 'threatType'
2535
+ end
2536
+ end
2537
+
2435
2538
  class TimeSpan
2436
2539
  # @private
2437
2540
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -2440,6 +2543,14 @@ module Google
2440
2543
  end
2441
2544
  end
2442
2545
 
2546
+ class Uri
2547
+ # @private
2548
+ class Representation < Google::Apis::Core::JsonRepresentation
2549
+ property :label, as: 'label'
2550
+ property :uri, as: 'uri'
2551
+ end
2552
+ end
2553
+
2443
2554
  class UpdateOperationRequest
2444
2555
  # @private
2445
2556
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -2492,6 +2603,21 @@ module Google
2492
2603
  end
2493
2604
  end
2494
2605
 
2606
+ class VexAssessment
2607
+ # @private
2608
+ class Representation < Google::Apis::Core::JsonRepresentation
2609
+ property :cve, as: 'cve'
2610
+ property :note_name, as: 'noteName'
2611
+ collection :related_uris, as: 'relatedUris', class: Google::Apis::ContaineranalysisV1alpha1::Uri, decorator: Google::Apis::ContaineranalysisV1alpha1::Uri::Representation
2612
+
2613
+ collection :remediations, as: 'remediations', class: Google::Apis::ContaineranalysisV1alpha1::Remediation, decorator: Google::Apis::ContaineranalysisV1alpha1::Remediation::Representation
2614
+
2615
+ property :state, as: 'state'
2616
+ collection :threats, as: 'threats', class: Google::Apis::ContaineranalysisV1alpha1::Threat, decorator: Google::Apis::ContaineranalysisV1alpha1::Threat::Representation
2617
+
2618
+ end
2619
+ end
2620
+
2495
2621
  class Volume
2496
2622
  # @private
2497
2623
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -2500,17 +2626,38 @@ module Google
2500
2626
  end
2501
2627
  end
2502
2628
 
2629
+ class VulnerabilityAssessmentNote
2630
+ # @private
2631
+ class Representation < Google::Apis::Core::JsonRepresentation
2632
+ property :assessment, as: 'assessment', class: Google::Apis::ContaineranalysisV1alpha1::Assessment, decorator: Google::Apis::ContaineranalysisV1alpha1::Assessment::Representation
2633
+
2634
+ property :language_code, as: 'languageCode'
2635
+ property :long_description, as: 'longDescription'
2636
+ property :product, as: 'product', class: Google::Apis::ContaineranalysisV1alpha1::Product, decorator: Google::Apis::ContaineranalysisV1alpha1::Product::Representation
2637
+
2638
+ property :publisher, as: 'publisher', class: Google::Apis::ContaineranalysisV1alpha1::Publisher, decorator: Google::Apis::ContaineranalysisV1alpha1::Publisher::Representation
2639
+
2640
+ property :short_description, as: 'shortDescription'
2641
+ property :title, as: 'title'
2642
+ end
2643
+ end
2644
+
2503
2645
  class VulnerabilityDetails
2504
2646
  # @private
2505
2647
  class Representation < Google::Apis::Core::JsonRepresentation
2506
2648
  property :cvss_score, as: 'cvssScore'
2649
+ property :cvss_v2, as: 'cvssV2', class: Google::Apis::ContaineranalysisV1alpha1::Cvss, decorator: Google::Apis::ContaineranalysisV1alpha1::Cvss::Representation
2650
+
2507
2651
  property :cvss_v3, as: 'cvssV3', class: Google::Apis::ContaineranalysisV1alpha1::Cvss, decorator: Google::Apis::ContaineranalysisV1alpha1::Cvss::Representation
2508
2652
 
2653
+ property :cvss_version, as: 'cvssVersion'
2509
2654
  property :effective_severity, as: 'effectiveSeverity'
2510
2655
  collection :package_issue, as: 'packageIssue', class: Google::Apis::ContaineranalysisV1alpha1::PackageIssue, decorator: Google::Apis::ContaineranalysisV1alpha1::PackageIssue::Representation
2511
2656
 
2512
2657
  property :severity, as: 'severity'
2513
2658
  property :type, as: 'type'
2659
+ property :vex_assessment, as: 'vexAssessment', class: Google::Apis::ContaineranalysisV1alpha1::VexAssessment, decorator: Google::Apis::ContaineranalysisV1alpha1::VexAssessment::Representation
2660
+
2514
2661
  end
2515
2662
  end
2516
2663
 
@@ -2532,6 +2679,7 @@ module Google
2532
2679
  property :cvss_score, as: 'cvssScore'
2533
2680
  property :cvss_v2, as: 'cvssV2', class: Google::Apis::ContaineranalysisV1alpha1::Cvss, decorator: Google::Apis::ContaineranalysisV1alpha1::Cvss::Representation
2534
2681
 
2682
+ property :cvss_version, as: 'cvssVersion'
2535
2683
  collection :cwe, as: 'cwe'
2536
2684
  collection :details, as: 'details', class: Google::Apis::ContaineranalysisV1alpha1::Detail, decorator: Google::Apis::ContaineranalysisV1alpha1::Detail::Representation
2537
2685
 
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: google-apis-containeranalysis_v1alpha1
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.41.0
4
+ version: 0.42.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-01-29 00:00:00.000000000 Z
11
+ date: 2023-02-12 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
58
58
  metadata:
59
59
  bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
60
60
  changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-containeranalysis_v1alpha1/CHANGELOG.md
61
- documentation_uri: https://googleapis.dev/ruby/google-apis-containeranalysis_v1alpha1/v0.41.0
61
+ documentation_uri: https://googleapis.dev/ruby/google-apis-containeranalysis_v1alpha1/v0.42.0
62
62
  source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-containeranalysis_v1alpha1
63
63
  post_install_message:
64
64
  rdoc_options: []