google-apis-containeranalysis_v1beta1 0.5.0 → 0.9.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: dc940bee8189b8d00e393b66755dfc13b6a9c76752628cc3b1d62bd914a6fc3f
-  data.tar.gz: 98640d9ebe45f44a9ce86fa341c65d84c46ab1e9f82088b9dd491cf255bead08
+  metadata.gz: c943a4451bc6ac4d5b1f5c7bc44ad1f26488f42506452e21198c3c5518fa4ef3
+  data.tar.gz: 0ccc32d85bdae73d8d68e1d510264ddef5423a24f4a924f5b40c9d9ae28596dd
 SHA512:
-  metadata.gz: 0db684ff3a2cadcccc28cd9b2c64e30a426f589a8b70e267abee980955dd9393b93253d95d179e7e0151916fb1bee02be16c8428ff873be722273fb35b78e86d
-  data.tar.gz: c30977bfec19d098d9f5d0cfba3d09c00aea225b0229b402b36486813c3cda5fed5cafdb77e9e15a11414c51b65d305d82f3b5a677c885a24d1a967094af26e8
+  metadata.gz: 764372efeec2a2f0b1d716785adb0314efc8813b44eae180fd7d47e42854833e4ba7e5267f516942020633125352b85480f2860844e32d785c27b88ec96057b6
+  data.tar.gz: 031652b30cf9a14af6444ff1854370d8c3e92e304bfb360ad59c0f3148744c79e2e8a127fcb2eb9fd1dbb56a96e93749b7466442e96ed1e74d65a14d5715a7e6

data/CHANGELOG.md

@@ -1,5 +1,21 @@
 # Release history for google-apis-containeranalysis_v1beta1
 
+### v0.9.0 (2021-08-19)
+
+* Regenerated from discovery document revision 20210813
+
+### v0.8.0 (2021-07-29)
+
+* Regenerated from discovery document revision 20210723
+
+### v0.7.0 (2021-06-29)
+
+* Regenerated using generator version 0.4.0
+
+### v0.6.0 (2021-06-24)
+
+* Regenerated using generator version 0.3.0
+
 ### v0.5.0 (2021-05-19)
 
 * Unspecified changes

data/lib/google/apis/containeranalysis_v1beta1.rb

@@ -30,7 +30,7 @@ module Google
       # This is NOT the gem version.
       VERSION = 'V1beta1'
 
-      # See, edit, configure, and delete your Google Cloud Platform data
+      # See, edit, configure, and delete your Google Cloud data and see the email address for your Google Account.
       AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
     end
   end

data/lib/google/apis/containeranalysis_v1beta1/classes.rb

@@ -1073,6 +1073,112 @@ module Google
         end
       end
       
+      # DocumentNote represents an SPDX Document Creation Infromation section: https://
+      # spdx.github.io/spdx-spec/2-document-creation-information/
+      class DocumentNote
+        include Google::Apis::Core::Hashable
+      
+        # Compliance with the SPDX specification includes populating the SPDX fields
+        # therein with data related to such fields ("SPDX-Metadata")
+        # Corresponds to the JSON property `dataLicence`
+        # @return [String]
+        attr_accessor :data_licence
+      
+        # Provide a reference number that can be used to understand how to parse and
+        # interpret the rest of the file
+        # Corresponds to the JSON property `spdxVersion`
+        # @return [String]
+        attr_accessor :spdx_version
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @data_licence = args[:data_licence] if args.key?(:data_licence)
+          @spdx_version = args[:spdx_version] if args.key?(:spdx_version)
+        end
+      end
+      
+      # DocumentOccurrence represents an SPDX Document Creation Information section:
+      # https://spdx.github.io/spdx-spec/2-document-creation-information/
+      class DocumentOccurrence
+        include Google::Apis::Core::Hashable
+      
+        # Identify when the SPDX file was originally created. The date is to be
+        # specified according to combined date and time in UTC format as specified in
+        # ISO 8601 standard
+        # Corresponds to the JSON property `createTime`
+        # @return [String]
+        attr_accessor :create_time
+      
+        # A field for creators of the SPDX file to provide general comments about the
+        # creation of the SPDX file or any other relevant comment not included in the
+        # other fields
+        # Corresponds to the JSON property `creatorComment`
+        # @return [String]
+        attr_accessor :creator_comment
+      
+        # Identify who (or what, in the case of a tool) created the SPDX file. If the
+        # SPDX file was created by an individual, indicate the person's name
+        # Corresponds to the JSON property `creators`
+        # @return [Array<String>]
+        attr_accessor :creators
+      
+        # A field for creators of the SPDX file content to provide comments to the
+        # consumers of the SPDX document
+        # Corresponds to the JSON property `documentComment`
+        # @return [String]
+        attr_accessor :document_comment
+      
+        # Identify any external SPDX documents referenced within this SPDX document
+        # Corresponds to the JSON property `externalDocumentRefs`
+        # @return [Array<String>]
+        attr_accessor :external_document_refs
+      
+        # Identify the current SPDX document which may be referenced in relationships by
+        # other files, packages internally and documents externally
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        # A field for creators of the SPDX file to provide the version of the SPDX
+        # License List used when the SPDX file was created
+        # Corresponds to the JSON property `licenseListVersion`
+        # @return [String]
+        attr_accessor :license_list_version
+      
+        # Provide an SPDX document specific namespace as a unique absolute Uniform
+        # Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘
+        # #’ delimiter
+        # Corresponds to the JSON property `namespace`
+        # @return [String]
+        attr_accessor :namespace
+      
+        # Identify name of this document as designated by creator
+        # Corresponds to the JSON property `title`
+        # @return [String]
+        attr_accessor :title
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @create_time = args[:create_time] if args.key?(:create_time)
+          @creator_comment = args[:creator_comment] if args.key?(:creator_comment)
+          @creators = args[:creators] if args.key?(:creators)
+          @document_comment = args[:document_comment] if args.key?(:document_comment)
+          @external_document_refs = args[:external_document_refs] if args.key?(:external_document_refs)
+          @id = args[:id] if args.key?(:id)
+          @license_list_version = args[:license_list_version] if args.key?(:license_list_version)
+          @namespace = args[:namespace] if args.key?(:namespace)
+          @title = args[:title] if args.key?(:title)
+        end
+      end
+      
       # A generic empty message that you can re-use to avoid defining duplicated empty
       # messages in your APIs. A typical example is to use it as the request or the
       # response type of an API method. For instance: service Foo ` rpc Bar(google.
@@ -1164,6 +1270,48 @@ module Google
         end
       end
       
+      # An External Reference allows a Package to reference an external source of
+      # additional information, metadata, enumerations, asset identifiers, or
+      # downloadable content believed to be relevant to the Package
+      class ExternalRef
+        include Google::Apis::Core::Hashable
+      
+        # An External Reference allows a Package to reference an external source of
+        # additional information, metadata, enumerations, asset identifiers, or
+        # downloadable content believed to be relevant to the Package
+        # Corresponds to the JSON property `category`
+        # @return [String]
+        attr_accessor :category
+      
+        # Human-readable information about the purpose and target of the reference
+        # Corresponds to the JSON property `comment`
+        # @return [String]
+        attr_accessor :comment
+      
+        # The unique string with no spaces necessary to access the package-specific
+        # information, metadata, or content within the target location
+        # Corresponds to the JSON property `locator`
+        # @return [String]
+        attr_accessor :locator
+      
+        # Type of category (e.g. 'npm' for the PACKAGE_MANAGER category)
+        # Corresponds to the JSON property `type`
+        # @return [String]
+        attr_accessor :type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @category = args[:category] if args.key?(:category)
+          @comment = args[:comment] if args.key?(:comment)
+          @locator = args[:locator] if args.key?(:locator)
+          @type = args[:type] if args.key?(:type)
+        end
+      end
+      
       # Container message for hashes of byte content of files, used in source messages
       # to verify integrity of source input to the build.
       class FileHashes
@@ -1184,6 +1332,117 @@ module Google
         end
       end
       
+      # FileNote represents an SPDX File Information section: https://spdx.github.io/
+      # spdx-spec/4-file-information/
+      class FileNote
+        include Google::Apis::Core::Hashable
+      
+        # Provide a unique identifier to match analysis information on each specific
+        # file in a package
+        # Corresponds to the JSON property `checksum`
+        # @return [Array<String>]
+        attr_accessor :checksum
+      
+        # This field provides information about the type of file identified
+        # Corresponds to the JSON property `fileType`
+        # @return [String]
+        attr_accessor :file_type
+      
+        # Identify the full path and filename that corresponds to the file information
+        # in this section
+        # Corresponds to the JSON property `title`
+        # @return [String]
+        attr_accessor :title
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @checksum = args[:checksum] if args.key?(:checksum)
+          @file_type = args[:file_type] if args.key?(:file_type)
+          @title = args[:title] if args.key?(:title)
+        end
+      end
+      
+      # FileOccurrence represents an SPDX File Information section: https://spdx.
+      # github.io/spdx-spec/4-file-information/
+      class FileOccurrence
+        include Google::Apis::Core::Hashable
+      
+        # This field provides a place for the SPDX data creator to record, at the file
+        # level, acknowledgements that may be needed to be communicated in some contexts
+        # Corresponds to the JSON property `attributions`
+        # @return [Array<String>]
+        attr_accessor :attributions
+      
+        # This field provides a place for the SPDX file creator to record any general
+        # comments about the file
+        # Corresponds to the JSON property `comment`
+        # @return [String]
+        attr_accessor :comment
+      
+        # This field provides a place for the SPDX file creator to record file
+        # contributors
+        # Corresponds to the JSON property `contributors`
+        # @return [Array<String>]
+        attr_accessor :contributors
+      
+        # Identify the copyright holder of the file, as well as any dates present
+        # Corresponds to the JSON property `copyright`
+        # @return [String]
+        attr_accessor :copyright
+      
+        # This field contains the license information actually found in the file, if any
+        # Corresponds to the JSON property `filesLicenseInfo`
+        # @return [Array<String>]
+        attr_accessor :files_license_info
+      
+        # Uniquely identify any element in an SPDX document which may be referenced by
+        # other elements
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        # This field provides a place for the SPDX file creator to record any relevant
+        # background references or analysis that went in to arriving at the Concluded
+        # License for a file
+        # Corresponds to the JSON property `licenseComments`
+        # @return [String]
+        attr_accessor :license_comments
+      
+        # This field contains the license the SPDX file creator has concluded as
+        # governing the file or alternative values if the governing license cannot be
+        # determined
+        # Corresponds to the JSON property `licenseConcluded`
+        # @return [String]
+        attr_accessor :license_concluded
+      
+        # This field provides a place for the SPDX file creator to record license
+        # notices or other such related notices found in the file
+        # Corresponds to the JSON property `notice`
+        # @return [String]
+        attr_accessor :notice
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @attributions = args[:attributions] if args.key?(:attributions)
+          @comment = args[:comment] if args.key?(:comment)
+          @contributors = args[:contributors] if args.key?(:contributors)
+          @copyright = args[:copyright] if args.key?(:copyright)
+          @files_license_info = args[:files_license_info] if args.key?(:files_license_info)
+          @id = args[:id] if args.key?(:id)
+          @license_comments = args[:license_comments] if args.key?(:license_comments)
+          @license_concluded = args[:license_concluded] if args.key?(:license_concluded)
+          @notice = args[:notice] if args.key?(:notice)
+        end
+      end
+      
       # A set of properties that uniquely identify a given Docker image.
       class Fingerprint
         include Google::Apis::Core::Hashable
@@ -1632,7 +1891,13 @@ module Google
       
         # The distro assigned severity for this vulnerability when it is available, and
         # note provider assigned severity when distro has not yet assigned a severity
-        # for this vulnerability.
+        # for this vulnerability. When there are multiple PackageIssues for this
+        # vulnerability, they can have different effective severities because some might
+        # be provided by the distro while others are provided by the language ecosystem
+        # for a language pack. For this reason, it is advised to use the effective
+        # severity on the PackageIssue level. In the case where multiple PackageIssues
+        # have differing effective severities, this field should be the highest severity
+        # for any of the PackageIssues.
         # Corresponds to the JSON property `effectiveSeverity`
         # @return [String]
         attr_accessor :effective_severity
@@ -2149,11 +2414,35 @@ module Google
         # @return [Array<Google::Apis::ContaineranalysisV1beta1::RelatedUrl>]
         attr_accessor :related_url
       
+        # DocumentNote represents an SPDX Document Creation Infromation section: https://
+        # spdx.github.io/spdx-spec/2-document-creation-information/
+        # Corresponds to the JSON property `sbom`
+        # @return [Google::Apis::ContaineranalysisV1beta1::DocumentNote]
+        attr_accessor :sbom
+      
         # A one sentence description of this note.
         # Corresponds to the JSON property `shortDescription`
         # @return [String]
         attr_accessor :short_description
       
+        # FileNote represents an SPDX File Information section: https://spdx.github.io/
+        # spdx-spec/4-file-information/
+        # Corresponds to the JSON property `spdxFile`
+        # @return [Google::Apis::ContaineranalysisV1beta1::FileNote]
+        attr_accessor :spdx_file
+      
+        # PackageNote represents an SPDX Package Information section: https://spdx.
+        # github.io/spdx-spec/3-package-information/
+        # Corresponds to the JSON property `spdxPackage`
+        # @return [Google::Apis::ContaineranalysisV1beta1::PackageNote]
+        attr_accessor :spdx_package
+      
+        # RelationshipNote represents an SPDX Relationship section: https://spdx.github.
+        # io/spdx-spec/7-relationships-between-SPDX-elements/
+        # Corresponds to the JSON property `spdxRelationship`
+        # @return [Google::Apis::ContaineranalysisV1beta1::RelationshipNote]
+        attr_accessor :spdx_relationship
+      
         # Output only. The time this note was last updated. This field can be used as a
         # filter in list requests.
         # Corresponds to the JSON property `updateTime`
@@ -2185,7 +2474,11 @@ module Google
           @package = args[:package] if args.key?(:package)
           @related_note_names = args[:related_note_names] if args.key?(:related_note_names)
           @related_url = args[:related_url] if args.key?(:related_url)
+          @sbom = args[:sbom] if args.key?(:sbom)
           @short_description = args[:short_description] if args.key?(:short_description)
+          @spdx_file = args[:spdx_file] if args.key?(:spdx_file)
+          @spdx_package = args[:spdx_package] if args.key?(:spdx_package)
+          @spdx_relationship = args[:spdx_relationship] if args.key?(:spdx_relationship)
           @update_time = args[:update_time] if args.key?(:update_time)
           @vulnerability = args[:vulnerability] if args.key?(:vulnerability)
         end
@@ -2266,6 +2559,30 @@ module Google
         # @return [Google::Apis::ContaineranalysisV1beta1::Resource]
         attr_accessor :resource
       
+        # DocumentOccurrence represents an SPDX Document Creation Information section:
+        # https://spdx.github.io/spdx-spec/2-document-creation-information/
+        # Corresponds to the JSON property `sbom`
+        # @return [Google::Apis::ContaineranalysisV1beta1::DocumentOccurrence]
+        attr_accessor :sbom
+      
+        # FileOccurrence represents an SPDX File Information section: https://spdx.
+        # github.io/spdx-spec/4-file-information/
+        # Corresponds to the JSON property `spdxFile`
+        # @return [Google::Apis::ContaineranalysisV1beta1::FileOccurrence]
+        attr_accessor :spdx_file
+      
+        # PackageOccurrence represents an SPDX Package Information section: https://spdx.
+        # github.io/spdx-spec/3-package-information/
+        # Corresponds to the JSON property `spdxPackage`
+        # @return [Google::Apis::ContaineranalysisV1beta1::PackageOccurrence]
+        attr_accessor :spdx_package
+      
+        # RelationshipOccurrence represents an SPDX Relationship section: https://spdx.
+        # github.io/spdx-spec/7-relationships-between-SPDX-elements/
+        # Corresponds to the JSON property `spdxRelationship`
+        # @return [Google::Apis::ContaineranalysisV1beta1::RelationshipOccurrence]
+        attr_accessor :spdx_relationship
+      
         # Output only. The time this occurrence was last updated.
         # Corresponds to the JSON property `updateTime`
         # @return [String]
@@ -2295,6 +2612,10 @@ module Google
           @note_name = args[:note_name] if args.key?(:note_name)
           @remediation = args[:remediation] if args.key?(:remediation)
           @resource = args[:resource] if args.key?(:resource)
+          @sbom = args[:sbom] if args.key?(:sbom)
+          @spdx_file = args[:spdx_file] if args.key?(:spdx_file)
+          @spdx_package = args[:spdx_package] if args.key?(:spdx_package)
+          @spdx_relationship = args[:spdx_relationship] if args.key?(:spdx_relationship)
           @update_time = args[:update_time] if args.key?(:update_time)
           @vulnerability = args[:vulnerability] if args.key?(:vulnerability)
         end
@@ -2336,11 +2657,23 @@ module Google
         # @return [Google::Apis::ContaineranalysisV1beta1::VulnerabilityLocation]
         attr_accessor :affected_location
       
+        # Output only. The distro or language system assigned severity for this
+        # vulnerability when that is available and note provider assigned severity when
+        # it is not available.
+        # Corresponds to the JSON property `effectiveSeverity`
+        # @return [String]
+        attr_accessor :effective_severity
+      
         # The location of the vulnerability.
         # Corresponds to the JSON property `fixedLocation`
         # @return [Google::Apis::ContaineranalysisV1beta1::VulnerabilityLocation]
         attr_accessor :fixed_location
       
+        # The type of package (e.g. OS, MAVEN, GO).
+        # Corresponds to the JSON property `packageType`
+        # @return [String]
+        attr_accessor :package_type
+      
         # Deprecated, use Details.effective_severity instead The severity (e.g., distro
         # assigned severity) for this vulnerability.
         # Corresponds to the JSON property `severityName`
@@ -2354,11 +2687,196 @@ module Google
         # Update properties of this object
         def update!(**args)
           @affected_location = args[:affected_location] if args.key?(:affected_location)
+          @effective_severity = args[:effective_severity] if args.key?(:effective_severity)
           @fixed_location = args[:fixed_location] if args.key?(:fixed_location)
+          @package_type = args[:package_type] if args.key?(:package_type)
           @severity_name = args[:severity_name] if args.key?(:severity_name)
         end
       end
       
+      # PackageNote represents an SPDX Package Information section: https://spdx.
+      # github.io/spdx-spec/3-package-information/
+      class PackageNote
+        include Google::Apis::Core::Hashable
+      
+        # Indicates whether the file content of this package has been available for or
+        # subjected to analysis when creating the SPDX document
+        # Corresponds to the JSON property `analyzed`
+        # @return [Boolean]
+        attr_accessor :analyzed
+        alias_method :analyzed?, :analyzed
+      
+        # A place for the SPDX data creator to record, at the package level,
+        # acknowledgements that may be needed to be communicated in some contexts
+        # Corresponds to the JSON property `attribution`
+        # @return [String]
+        attr_accessor :attribution
+      
+        # Provide an independently reproducible mechanism that permits unique
+        # identification of a specific package that correlates to the data in this SPDX
+        # file
+        # Corresponds to the JSON property `checksum`
+        # @return [String]
+        attr_accessor :checksum
+      
+        # Identify the copyright holders of the package, as well as any dates present
+        # Corresponds to the JSON property `copyright`
+        # @return [String]
+        attr_accessor :copyright
+      
+        # A more detailed description of the package
+        # Corresponds to the JSON property `detailedDescription`
+        # @return [String]
+        attr_accessor :detailed_description
+      
+        # This section identifies the download Universal Resource Locator (URL), or a
+        # specific location within a version control system (VCS) for the package at the
+        # time that the SPDX file was created
+        # Corresponds to the JSON property `downloadLocation`
+        # @return [String]
+        attr_accessor :download_location
+      
+        # ExternalRef
+        # Corresponds to the JSON property `externalRefs`
+        # @return [Array<Google::Apis::ContaineranalysisV1beta1::ExternalRef>]
+        attr_accessor :external_refs
+      
+        # Contain the license the SPDX file creator has concluded as governing the This
+        # field is to contain a list of all licenses found in the package. The
+        # relationship between licenses (i.e., conjunctive, disjunctive) is not
+        # specified in this field – it is simply a listing of all licenses found
+        # Corresponds to the JSON property `filesLicenseInfo`
+        # @return [Array<String>]
+        attr_accessor :files_license_info
+      
+        # Provide a place for the SPDX file creator to record a web site that serves as
+        # the package's home page
+        # Corresponds to the JSON property `homePage`
+        # @return [String]
+        attr_accessor :home_page
+      
+        # List the licenses that have been declared by the authors of the package
+        # Corresponds to the JSON property `licenseDeclared`
+        # @return [String]
+        attr_accessor :license_declared
+      
+        # If the package identified in the SPDX file originated from a different person
+        # or organization than identified as Package Supplier, this field identifies
+        # from where or whom the package originally came
+        # Corresponds to the JSON property `originator`
+        # @return [String]
+        attr_accessor :originator
+      
+        # A short description of the package
+        # Corresponds to the JSON property `summaryDescription`
+        # @return [String]
+        attr_accessor :summary_description
+      
+        # Identify the actual distribution source for the package/directory identified
+        # in the SPDX file
+        # Corresponds to the JSON property `supplier`
+        # @return [String]
+        attr_accessor :supplier
+      
+        # Identify the full name of the package as given by the Package Originator
+        # Corresponds to the JSON property `title`
+        # @return [String]
+        attr_accessor :title
+      
+        # This field provides an independently reproducible mechanism identifying
+        # specific contents of a package based on the actual files (except the SPDX file
+        # itself, if it is included in the package) that make up each package and that
+        # correlates to the data in this SPDX file
+        # Corresponds to the JSON property `verificationCode`
+        # @return [String]
+        attr_accessor :verification_code
+      
+        # Identify the version of the package
+        # Corresponds to the JSON property `version`
+        # @return [String]
+        attr_accessor :version
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @analyzed = args[:analyzed] if args.key?(:analyzed)
+          @attribution = args[:attribution] if args.key?(:attribution)
+          @checksum = args[:checksum] if args.key?(:checksum)
+          @copyright = args[:copyright] if args.key?(:copyright)
+          @detailed_description = args[:detailed_description] if args.key?(:detailed_description)
+          @download_location = args[:download_location] if args.key?(:download_location)
+          @external_refs = args[:external_refs] if args.key?(:external_refs)
+          @files_license_info = args[:files_license_info] if args.key?(:files_license_info)
+          @home_page = args[:home_page] if args.key?(:home_page)
+          @license_declared = args[:license_declared] if args.key?(:license_declared)
+          @originator = args[:originator] if args.key?(:originator)
+          @summary_description = args[:summary_description] if args.key?(:summary_description)
+          @supplier = args[:supplier] if args.key?(:supplier)
+          @title = args[:title] if args.key?(:title)
+          @verification_code = args[:verification_code] if args.key?(:verification_code)
+          @version = args[:version] if args.key?(:version)
+        end
+      end
+      
+      # PackageOccurrence represents an SPDX Package Information section: https://spdx.
+      # github.io/spdx-spec/3-package-information/
+      class PackageOccurrence
+        include Google::Apis::Core::Hashable
+      
+        # A place for the SPDX file creator to record any general comments about the
+        # package being described
+        # Corresponds to the JSON property `comment`
+        # @return [String]
+        attr_accessor :comment
+      
+        # Provide the actual file name of the package, or path of the directory being
+        # treated as a package
+        # Corresponds to the JSON property `filename`
+        # @return [String]
+        attr_accessor :filename
+      
+        # Uniquely identify any element in an SPDX document which may be referenced by
+        # other elements
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        # This field provides a place for the SPDX file creator to record any relevant
+        # background information or analysis that went in to arriving at the Concluded
+        # License for a package
+        # Corresponds to the JSON property `licenseComments`
+        # @return [String]
+        attr_accessor :license_comments
+      
+        # package or alternative values, if the governing license cannot be determined
+        # Corresponds to the JSON property `licenseConcluded`
+        # @return [String]
+        attr_accessor :license_concluded
+      
+        # Provide a place for the SPDX file creator to record any relevant background
+        # information or additional comments about the origin of the package
+        # Corresponds to the JSON property `sourceInfo`
+        # @return [String]
+        attr_accessor :source_info
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @comment = args[:comment] if args.key?(:comment)
+          @filename = args[:filename] if args.key?(:filename)
+          @id = args[:id] if args.key?(:id)
+          @license_comments = args[:license_comments] if args.key?(:license_comments)
+          @license_concluded = args[:license_concluded] if args.key?(:license_concluded)
+          @source_info = args[:source_info] if args.key?(:source_info)
+        end
+      end
+      
       # An attestation wrapper with a PGP-compatible signature. This message only
       # supports `ATTACHED` signatures, where the payload that is signed is included
       # alongside the signature itself in the same file.
@@ -2436,7 +2954,7 @@ module Google
       # resourcemanager.organizationAdmin - members: - user:eve@example.com role:
       # roles/resourcemanager.organizationViewer condition: title: expirable access
       # description: Does not grant access after Sep 2020 expression: request.time <
-      # timestamp('2020-10-01T00:00:00.000Z') - etag: BwWWja0YfJA= - version: 3 For a
+      # timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For a
       # description of IAM and its features, see the [IAM documentation](https://cloud.
       # google.com/iam/docs/).
       class Policy
@@ -2547,6 +3065,63 @@ module Google
         end
       end
       
+      # RelationshipNote represents an SPDX Relationship section: https://spdx.github.
+      # io/spdx-spec/7-relationships-between-SPDX-elements/
+      class RelationshipNote
+        include Google::Apis::Core::Hashable
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+        end
+      end
+      
+      # RelationshipOccurrence represents an SPDX Relationship section: https://spdx.
+      # github.io/spdx-spec/7-relationships-between-SPDX-elements/
+      class RelationshipOccurrence
+        include Google::Apis::Core::Hashable
+      
+        # A place for the SPDX file creator to record any general comments about the
+        # relationship
+        # Corresponds to the JSON property `comment`
+        # @return [String]
+        attr_accessor :comment
+      
+        # Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
+        # Corresponds to the JSON property `source`
+        # @return [String]
+        attr_accessor :source
+      
+        # Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In
+        # cases where there are "known unknowns", the use of the keyword NOASSERTION can
+        # be used The keywords NONE can be used to indicate that an SPDX element (
+        # package/file/snippet) has no other elements connected by some relationship to
+        # it
+        # Corresponds to the JSON property `target`
+        # @return [String]
+        attr_accessor :target
+      
+        # The type of relationship between the source and target SPDX elements
+        # Corresponds to the JSON property `type`
+        # @return [String]
+        attr_accessor :type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @comment = args[:comment] if args.key?(:comment)
+          @source = args[:source] if args.key?(:source)
+          @target = args[:target] if args.key?(:target)
+          @type = args[:type] if args.key?(:type)
+        end
+      end
+      
       # A unique identifier for a Cloud Repo.
       class RepoId
         include Google::Apis::Core::Hashable
@@ -2681,7 +3256,7 @@ module Google
         # resourcemanager.organizationAdmin - members: - user:eve@example.com role:
         # roles/resourcemanager.organizationViewer condition: title: expirable access
         # description: Does not grant access after Sep 2020 expression: request.time <
-        # timestamp('2020-10-01T00:00:00.000Z') - etag: BwWWja0YfJA= - version: 3 For a
+        # timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For a
         # description of IAM and its features, see the [IAM documentation](https://cloud.
         # google.com/iam/docs/).
         # Corresponds to the JSON property `policy`

data/lib/google/apis/containeranalysis_v1beta1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module ContaineranalysisV1beta1
       # Version of the google-apis-containeranalysis_v1beta1 gem
-      GEM_VERSION = "0.5.0"
+      GEM_VERSION = "0.9.0"
 
       # Version of the code generator used to generate this client
-      GENERATOR_VERSION = "0.2.0"
+      GENERATOR_VERSION = "0.4.0"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20210326"
+      REVISION = "20210813"
     end
   end
 end

data/lib/google/apis/containeranalysis_v1beta1/representations.rb

@@ -184,6 +184,18 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class DocumentNote
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class DocumentOccurrence
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Empty
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -202,12 +214,30 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class ExternalRef
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class FileHashes
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class FileNote
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class FileOccurrence
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Fingerprint
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -406,6 +436,18 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class PackageNote
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class PackageOccurrence
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class PgpSignedAttestation
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -430,6 +472,18 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class RelationshipNote
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class RelationshipOccurrence
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class RepoId
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -806,6 +860,29 @@ module Google
         end
       end
       
+      class DocumentNote
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :data_licence, as: 'dataLicence'
+          property :spdx_version, as: 'spdxVersion'
+        end
+      end
+      
+      class DocumentOccurrence
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :create_time, as: 'createTime'
+          property :creator_comment, as: 'creatorComment'
+          collection :creators, as: 'creators'
+          property :document_comment, as: 'documentComment'
+          collection :external_document_refs, as: 'externalDocumentRefs'
+          property :id, as: 'id'
+          property :license_list_version, as: 'licenseListVersion'
+          property :namespace, as: 'namespace'
+          property :title, as: 'title'
+        end
+      end
+      
       class Empty
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -829,6 +906,16 @@ module Google
         end
       end
       
+      class ExternalRef
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :category, as: 'category'
+          property :comment, as: 'comment'
+          property :locator, as: 'locator'
+          property :type, as: 'type'
+        end
+      end
+      
       class FileHashes
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -837,6 +924,30 @@ module Google
         end
       end
       
+      class FileNote
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          collection :checksum, as: 'checksum'
+          property :file_type, as: 'fileType'
+          property :title, as: 'title'
+        end
+      end
+      
+      class FileOccurrence
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          collection :attributions, as: 'attributions'
+          property :comment, as: 'comment'
+          collection :contributors, as: 'contributors'
+          property :copyright, as: 'copyright'
+          collection :files_license_info, as: 'filesLicenseInfo'
+          property :id, as: 'id'
+          property :license_comments, as: 'licenseComments'
+          property :license_concluded, as: 'licenseConcluded'
+          property :notice, as: 'notice'
+        end
+      end
+      
       class Fingerprint
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -1134,7 +1245,15 @@ module Google
           collection :related_note_names, as: 'relatedNoteNames'
           collection :related_url, as: 'relatedUrl', class: Google::Apis::ContaineranalysisV1beta1::RelatedUrl, decorator: Google::Apis::ContaineranalysisV1beta1::RelatedUrl::Representation
       
+          property :sbom, as: 'sbom', class: Google::Apis::ContaineranalysisV1beta1::DocumentNote, decorator: Google::Apis::ContaineranalysisV1beta1::DocumentNote::Representation
+      
           property :short_description, as: 'shortDescription'
+          property :spdx_file, as: 'spdxFile', class: Google::Apis::ContaineranalysisV1beta1::FileNote, decorator: Google::Apis::ContaineranalysisV1beta1::FileNote::Representation
+      
+          property :spdx_package, as: 'spdxPackage', class: Google::Apis::ContaineranalysisV1beta1::PackageNote, decorator: Google::Apis::ContaineranalysisV1beta1::PackageNote::Representation
+      
+          property :spdx_relationship, as: 'spdxRelationship', class: Google::Apis::ContaineranalysisV1beta1::RelationshipNote, decorator: Google::Apis::ContaineranalysisV1beta1::RelationshipNote::Representation
+      
           property :update_time, as: 'updateTime'
           property :vulnerability, as: 'vulnerability', class: Google::Apis::ContaineranalysisV1beta1::Vulnerability, decorator: Google::Apis::ContaineranalysisV1beta1::Vulnerability::Representation
       
@@ -1165,6 +1284,14 @@ module Google
           property :remediation, as: 'remediation'
           property :resource, as: 'resource', class: Google::Apis::ContaineranalysisV1beta1::Resource, decorator: Google::Apis::ContaineranalysisV1beta1::Resource::Representation
       
+          property :sbom, as: 'sbom', class: Google::Apis::ContaineranalysisV1beta1::DocumentOccurrence, decorator: Google::Apis::ContaineranalysisV1beta1::DocumentOccurrence::Representation
+      
+          property :spdx_file, as: 'spdxFile', class: Google::Apis::ContaineranalysisV1beta1::FileOccurrence, decorator: Google::Apis::ContaineranalysisV1beta1::FileOccurrence::Representation
+      
+          property :spdx_package, as: 'spdxPackage', class: Google::Apis::ContaineranalysisV1beta1::PackageOccurrence, decorator: Google::Apis::ContaineranalysisV1beta1::PackageOccurrence::Representation
+      
+          property :spdx_relationship, as: 'spdxRelationship', class: Google::Apis::ContaineranalysisV1beta1::RelationshipOccurrence, decorator: Google::Apis::ContaineranalysisV1beta1::RelationshipOccurrence::Representation
+      
           property :update_time, as: 'updateTime'
           property :vulnerability, as: 'vulnerability', class: Google::Apis::ContaineranalysisV1beta1::GrafeasV1beta1VulnerabilityDetails, decorator: Google::Apis::ContaineranalysisV1beta1::GrafeasV1beta1VulnerabilityDetails::Representation
       
@@ -1185,12 +1312,49 @@ module Google
         class Representation < Google::Apis::Core::JsonRepresentation
           property :affected_location, as: 'affectedLocation', class: Google::Apis::ContaineranalysisV1beta1::VulnerabilityLocation, decorator: Google::Apis::ContaineranalysisV1beta1::VulnerabilityLocation::Representation
       
+          property :effective_severity, as: 'effectiveSeverity'
           property :fixed_location, as: 'fixedLocation', class: Google::Apis::ContaineranalysisV1beta1::VulnerabilityLocation, decorator: Google::Apis::ContaineranalysisV1beta1::VulnerabilityLocation::Representation
       
+          property :package_type, as: 'packageType'
           property :severity_name, as: 'severityName'
         end
       end
       
+      class PackageNote
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :analyzed, as: 'analyzed'
+          property :attribution, as: 'attribution'
+          property :checksum, as: 'checksum'
+          property :copyright, as: 'copyright'
+          property :detailed_description, as: 'detailedDescription'
+          property :download_location, as: 'downloadLocation'
+          collection :external_refs, as: 'externalRefs', class: Google::Apis::ContaineranalysisV1beta1::ExternalRef, decorator: Google::Apis::ContaineranalysisV1beta1::ExternalRef::Representation
+      
+          collection :files_license_info, as: 'filesLicenseInfo'
+          property :home_page, as: 'homePage'
+          property :license_declared, as: 'licenseDeclared'
+          property :originator, as: 'originator'
+          property :summary_description, as: 'summaryDescription'
+          property :supplier, as: 'supplier'
+          property :title, as: 'title'
+          property :verification_code, as: 'verificationCode'
+          property :version, as: 'version'
+        end
+      end
+      
+      class PackageOccurrence
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :comment, as: 'comment'
+          property :filename, as: 'filename'
+          property :id, as: 'id'
+          property :license_comments, as: 'licenseComments'
+          property :license_concluded, as: 'licenseConcluded'
+          property :source_info, as: 'sourceInfo'
+        end
+      end
+      
       class PgpSignedAttestation
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -1226,6 +1390,22 @@ module Google
         end
       end
       
+      class RelationshipNote
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+        end
+      end
+      
+      class RelationshipOccurrence
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :comment, as: 'comment'
+          property :source, as: 'source'
+          property :target, as: 'target'
+          property :type, as: 'type'
+        end
+      end
+      
       class RepoId
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation

metadata

@@ -1,29 +1,35 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-containeranalysis_v1beta1
 version: !ruby/object:Gem::Version
-  version: 0.5.0
+  version: 0.9.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-05-24 00:00:00.000000000 Z
+date: 2021-08-23 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '0.1'
+        version: '0.4'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 2.a
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0.4'
+    - - "<"
       - !ruby/object:Gem::Version
-        version: '0.1'
+        version: 2.a
 description: This is the simple REST client for Container Analysis API V1beta1. Simple
   REST clients are Ruby client libraries that provide access to Google services via
   their HTTP REST API endpoints. These libraries are generated and updated automatically
@@ -52,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-containeranalysis_v1beta1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-containeranalysis_v1beta1/v0.5.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-containeranalysis_v1beta1/v0.9.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-containeranalysis_v1beta1
 post_install_message: 
 rdoc_options: []