google-apis-ondemandscanning_v1 0.11.0 → 0.15.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 67aa857bfd88927eb23fc0c025756bdd1e9a1f4e24ca1a2aa2145ce1c7bf9ed6
|
4
|
+
data.tar.gz: 3fc344719d963a7147a63b6f3ba448cefbc5c80fb886735900854d06c0af8397
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 9ed5301e5e79ac8508015796c855faed5364ef561d880b4ae01993d9a4a3b011e6c4c0de42e573131b430188e87017a3eaac02df4923e5ec12b3a9178ab26508
|
7
|
+
data.tar.gz: 70cdad78c25ff32fe3b28a73c7732cdf908baca28c3766200058767bce623e2d04bf3ce56e4112a64d0047cafcc519119dd84c6f13da23df801edddb73d600cb
|
data/CHANGELOG.md
CHANGED
@@ -1,5 +1,22 @@
|
|
1
1
|
# Release history for google-apis-ondemandscanning_v1
|
2
2
|
|
3
|
+
### v0.15.0 (2022-01-12)
|
4
|
+
|
5
|
+
* Regenerated from discovery document revision 20220107
|
6
|
+
* Regenerated using generator version 0.4.1
|
7
|
+
|
8
|
+
### v0.14.0 (2021-12-14)
|
9
|
+
|
10
|
+
* Unspecified changes
|
11
|
+
|
12
|
+
### v0.13.0 (2021-12-09)
|
13
|
+
|
14
|
+
* Regenerated from discovery document revision 20211206
|
15
|
+
|
16
|
+
### v0.12.0 (2021-11-04)
|
17
|
+
|
18
|
+
* Regenerated from discovery document revision 20211029
|
19
|
+
|
3
20
|
### v0.11.0 (2021-10-21)
|
4
21
|
|
5
22
|
* Unspecified changes
|
data/OVERVIEW.md
CHANGED
@@ -51,7 +51,7 @@ require "google/apis/ondemandscanning_v1"
|
|
51
51
|
client = Google::Apis::OndemandscanningV1::OnDemandScanningService.new
|
52
52
|
|
53
53
|
# Authenticate calls
|
54
|
-
client.
|
54
|
+
client.authorization = # ... use the googleauth gem to create credentials
|
55
55
|
```
|
56
56
|
|
57
57
|
See the class reference docs for information on the methods you can call from a client.
|
@@ -104,7 +104,8 @@ module Google
|
|
104
104
|
class AnalyzePackagesRequestV1
|
105
105
|
include Google::Apis::Core::Hashable
|
106
106
|
|
107
|
-
# Whether to include OSV data in the scan.
|
107
|
+
# [DEPRECATED] Whether to include OSV data in the scan. For backwards
|
108
|
+
# compatibility reasons, this field can be neither removed nor renamed.
|
108
109
|
# Corresponds to the JSON property `includeOsvData`
|
109
110
|
# @return [Boolean]
|
110
111
|
attr_accessor :include_osv_data
|
@@ -260,11 +261,19 @@ module Google
|
|
260
261
|
class BuildOccurrence
|
261
262
|
include Google::Apis::Core::Hashable
|
262
263
|
|
263
|
-
#
|
264
|
+
# Deprecated. See InTotoStatement for the replacement. In-toto Provenance
|
265
|
+
# representation as defined in spec.
|
264
266
|
# Corresponds to the JSON property `intotoProvenance`
|
265
267
|
# @return [Google::Apis::OndemandscanningV1::InTotoProvenance]
|
266
268
|
attr_accessor :intoto_provenance
|
267
269
|
|
270
|
+
# Spec defined at https://github.com/in-toto/attestation/tree/main/spec#
|
271
|
+
# statement The serialized InTotoStatement will be stored as Envelope.payload.
|
272
|
+
# Envelope.payloadType is always "application/vnd.in-toto+json".
|
273
|
+
# Corresponds to the JSON property `intotoStatement`
|
274
|
+
# @return [Google::Apis::OndemandscanningV1::InTotoStatement]
|
275
|
+
attr_accessor :intoto_statement
|
276
|
+
|
268
277
|
# Provenance of a build. Contains all information needed to verify the full
|
269
278
|
# details about the build from source to completion.
|
270
279
|
# Corresponds to the JSON property `provenance`
|
@@ -290,6 +299,7 @@ module Google
|
|
290
299
|
# Update properties of this object
|
291
300
|
def update!(**args)
|
292
301
|
@intoto_provenance = args[:intoto_provenance] if args.key?(:intoto_provenance)
|
302
|
+
@intoto_statement = args[:intoto_statement] if args.key?(:intoto_statement)
|
293
303
|
@provenance = args[:provenance] if args.key?(:provenance)
|
294
304
|
@provenance_bytes = args[:provenance_bytes] if args.key?(:provenance_bytes)
|
295
305
|
end
|
@@ -409,6 +419,96 @@ module Google
|
|
409
419
|
end
|
410
420
|
end
|
411
421
|
|
422
|
+
# Common Vulnerability Scoring System. For details, see https://www.first.org/
|
423
|
+
# cvss/specification-document This is a message we will try to use for storing
|
424
|
+
# multiple versions of CVSS. The intention is that as new versions of CVSS
|
425
|
+
# scores get added, we will be able to modify this message rather than adding
|
426
|
+
# new protos for each new version of the score.
|
427
|
+
class Cvss
|
428
|
+
include Google::Apis::Core::Hashable
|
429
|
+
|
430
|
+
#
|
431
|
+
# Corresponds to the JSON property `attackComplexity`
|
432
|
+
# @return [String]
|
433
|
+
attr_accessor :attack_complexity
|
434
|
+
|
435
|
+
# Base Metrics Represents the intrinsic characteristics of a vulnerability that
|
436
|
+
# are constant over time and across user environments.
|
437
|
+
# Corresponds to the JSON property `attackVector`
|
438
|
+
# @return [String]
|
439
|
+
attr_accessor :attack_vector
|
440
|
+
|
441
|
+
#
|
442
|
+
# Corresponds to the JSON property `authentication`
|
443
|
+
# @return [String]
|
444
|
+
attr_accessor :authentication
|
445
|
+
|
446
|
+
#
|
447
|
+
# Corresponds to the JSON property `availabilityImpact`
|
448
|
+
# @return [String]
|
449
|
+
attr_accessor :availability_impact
|
450
|
+
|
451
|
+
# The base score is a function of the base metric scores.
|
452
|
+
# Corresponds to the JSON property `baseScore`
|
453
|
+
# @return [Float]
|
454
|
+
attr_accessor :base_score
|
455
|
+
|
456
|
+
#
|
457
|
+
# Corresponds to the JSON property `confidentialityImpact`
|
458
|
+
# @return [String]
|
459
|
+
attr_accessor :confidentiality_impact
|
460
|
+
|
461
|
+
#
|
462
|
+
# Corresponds to the JSON property `exploitabilityScore`
|
463
|
+
# @return [Float]
|
464
|
+
attr_accessor :exploitability_score
|
465
|
+
|
466
|
+
#
|
467
|
+
# Corresponds to the JSON property `impactScore`
|
468
|
+
# @return [Float]
|
469
|
+
attr_accessor :impact_score
|
470
|
+
|
471
|
+
#
|
472
|
+
# Corresponds to the JSON property `integrityImpact`
|
473
|
+
# @return [String]
|
474
|
+
attr_accessor :integrity_impact
|
475
|
+
|
476
|
+
#
|
477
|
+
# Corresponds to the JSON property `privilegesRequired`
|
478
|
+
# @return [String]
|
479
|
+
attr_accessor :privileges_required
|
480
|
+
|
481
|
+
#
|
482
|
+
# Corresponds to the JSON property `scope`
|
483
|
+
# @return [String]
|
484
|
+
attr_accessor :scope
|
485
|
+
|
486
|
+
#
|
487
|
+
# Corresponds to the JSON property `userInteraction`
|
488
|
+
# @return [String]
|
489
|
+
attr_accessor :user_interaction
|
490
|
+
|
491
|
+
def initialize(**args)
|
492
|
+
update!(**args)
|
493
|
+
end
|
494
|
+
|
495
|
+
# Update properties of this object
|
496
|
+
def update!(**args)
|
497
|
+
@attack_complexity = args[:attack_complexity] if args.key?(:attack_complexity)
|
498
|
+
@attack_vector = args[:attack_vector] if args.key?(:attack_vector)
|
499
|
+
@authentication = args[:authentication] if args.key?(:authentication)
|
500
|
+
@availability_impact = args[:availability_impact] if args.key?(:availability_impact)
|
501
|
+
@base_score = args[:base_score] if args.key?(:base_score)
|
502
|
+
@confidentiality_impact = args[:confidentiality_impact] if args.key?(:confidentiality_impact)
|
503
|
+
@exploitability_score = args[:exploitability_score] if args.key?(:exploitability_score)
|
504
|
+
@impact_score = args[:impact_score] if args.key?(:impact_score)
|
505
|
+
@integrity_impact = args[:integrity_impact] if args.key?(:integrity_impact)
|
506
|
+
@privileges_required = args[:privileges_required] if args.key?(:privileges_required)
|
507
|
+
@scope = args[:scope] if args.key?(:scope)
|
508
|
+
@user_interaction = args[:user_interaction] if args.key?(:user_interaction)
|
509
|
+
end
|
510
|
+
end
|
511
|
+
|
412
512
|
# The category to which the update belongs.
|
413
513
|
class Category
|
414
514
|
include Google::Apis::Core::Hashable
|
@@ -581,7 +681,8 @@ module Google
|
|
581
681
|
end
|
582
682
|
end
|
583
683
|
|
584
|
-
#
|
684
|
+
# Deprecated. Prefer to use a regular Occurrence, and populate the Envelope at
|
685
|
+
# the top level of the Occurrence.
|
585
686
|
class DsseAttestationOccurrence
|
586
687
|
include Google::Apis::Core::Hashable
|
587
688
|
|
@@ -684,6 +785,12 @@ module Google
|
|
684
785
|
# @return [Google::Apis::OndemandscanningV1::Status]
|
685
786
|
attr_accessor :analysis_status_error
|
686
787
|
|
788
|
+
# Output only. The time occurrences related to this discovery occurrence were
|
789
|
+
# archived.
|
790
|
+
# Corresponds to the JSON property `archiveTime`
|
791
|
+
# @return [String]
|
792
|
+
attr_accessor :archive_time
|
793
|
+
|
687
794
|
# Whether the resource is continuously analyzed.
|
688
795
|
# Corresponds to the JSON property `continuousAnalysis`
|
689
796
|
# @return [String]
|
@@ -707,6 +814,7 @@ module Google
|
|
707
814
|
def update!(**args)
|
708
815
|
@analysis_status = args[:analysis_status] if args.key?(:analysis_status)
|
709
816
|
@analysis_status_error = args[:analysis_status_error] if args.key?(:analysis_status_error)
|
817
|
+
@archive_time = args[:archive_time] if args.key?(:archive_time)
|
710
818
|
@continuous_analysis = args[:continuous_analysis] if args.key?(:continuous_analysis)
|
711
819
|
@cpe = args[:cpe] if args.key?(:cpe)
|
712
820
|
@last_scan_time = args[:last_scan_time] if args.key?(:last_scan_time)
|
@@ -1046,7 +1154,12 @@ module Google
|
|
1046
1154
|
class InTotoStatement
|
1047
1155
|
include Google::Apis::Core::Hashable
|
1048
1156
|
|
1049
|
-
#
|
1157
|
+
# Always `https://in-toto.io/Statement/v0.1`.
|
1158
|
+
# Corresponds to the JSON property `_type`
|
1159
|
+
# @return [String]
|
1160
|
+
attr_accessor :_type
|
1161
|
+
|
1162
|
+
# `https://slsa.dev/provenance/v0.1` for SlsaProvenance.
|
1050
1163
|
# Corresponds to the JSON property `predicateType`
|
1051
1164
|
# @return [String]
|
1052
1165
|
attr_accessor :predicate_type
|
@@ -1056,26 +1169,27 @@ module Google
|
|
1056
1169
|
# @return [Google::Apis::OndemandscanningV1::InTotoProvenance]
|
1057
1170
|
attr_accessor :provenance
|
1058
1171
|
|
1172
|
+
#
|
1173
|
+
# Corresponds to the JSON property `slsaProvenance`
|
1174
|
+
# @return [Google::Apis::OndemandscanningV1::SlsaProvenance]
|
1175
|
+
attr_accessor :slsa_provenance
|
1176
|
+
|
1059
1177
|
#
|
1060
1178
|
# Corresponds to the JSON property `subject`
|
1061
1179
|
# @return [Array<Google::Apis::OndemandscanningV1::Subject>]
|
1062
1180
|
attr_accessor :subject
|
1063
1181
|
|
1064
|
-
# Always "https://in-toto.io/Statement/v0.1".
|
1065
|
-
# Corresponds to the JSON property `type`
|
1066
|
-
# @return [String]
|
1067
|
-
attr_accessor :type
|
1068
|
-
|
1069
1182
|
def initialize(**args)
|
1070
1183
|
update!(**args)
|
1071
1184
|
end
|
1072
1185
|
|
1073
1186
|
# Update properties of this object
|
1074
1187
|
def update!(**args)
|
1188
|
+
@_type = args[:_type] if args.key?(:_type)
|
1075
1189
|
@predicate_type = args[:predicate_type] if args.key?(:predicate_type)
|
1076
1190
|
@provenance = args[:provenance] if args.key?(:provenance)
|
1191
|
+
@slsa_provenance = args[:slsa_provenance] if args.key?(:slsa_provenance)
|
1077
1192
|
@subject = args[:subject] if args.key?(:subject)
|
1078
|
-
@type = args[:type] if args.key?(:type)
|
1079
1193
|
end
|
1080
1194
|
end
|
1081
1195
|
|
@@ -1211,6 +1325,31 @@ module Google
|
|
1211
1325
|
end
|
1212
1326
|
end
|
1213
1327
|
|
1328
|
+
#
|
1329
|
+
class Material
|
1330
|
+
include Google::Apis::Core::Hashable
|
1331
|
+
|
1332
|
+
#
|
1333
|
+
# Corresponds to the JSON property `digest`
|
1334
|
+
# @return [Hash<String,String>]
|
1335
|
+
attr_accessor :digest
|
1336
|
+
|
1337
|
+
#
|
1338
|
+
# Corresponds to the JSON property `uri`
|
1339
|
+
# @return [String]
|
1340
|
+
attr_accessor :uri
|
1341
|
+
|
1342
|
+
def initialize(**args)
|
1343
|
+
update!(**args)
|
1344
|
+
end
|
1345
|
+
|
1346
|
+
# Update properties of this object
|
1347
|
+
def update!(**args)
|
1348
|
+
@digest = args[:digest] if args.key?(:digest)
|
1349
|
+
@uri = args[:uri] if args.key?(:uri)
|
1350
|
+
end
|
1351
|
+
end
|
1352
|
+
|
1214
1353
|
# Other properties of the build.
|
1215
1354
|
class Metadata
|
1216
1355
|
include Google::Apis::Core::Hashable
|
@@ -1259,7 +1398,10 @@ module Google
|
|
1259
1398
|
end
|
1260
1399
|
end
|
1261
1400
|
|
1262
|
-
# Details about files that caused a compliance check to fail.
|
1401
|
+
# Details about files that caused a compliance check to fail. display_command is
|
1402
|
+
# a single command that can be used to display a list of non compliant files.
|
1403
|
+
# When there is no such command, we can also iterate a list of non compliant
|
1404
|
+
# file using 'path'.
|
1263
1405
|
class NonCompliantFile
|
1264
1406
|
include Google::Apis::Core::Hashable
|
1265
1407
|
|
@@ -1268,9 +1410,7 @@ module Google
|
|
1268
1410
|
# @return [String]
|
1269
1411
|
attr_accessor :display_command
|
1270
1412
|
|
1271
|
-
# display_command is
|
1272
|
-
# compliant files. When there is no such command, we can also iterate a list of
|
1273
|
-
# non compliant file using 'path'. Empty if `display_command` is set.
|
1413
|
+
# Empty if `display_command` is set.
|
1274
1414
|
# Corresponds to the JSON property `path`
|
1275
1415
|
# @return [String]
|
1276
1416
|
attr_accessor :path
|
@@ -1333,7 +1473,8 @@ module Google
|
|
1333
1473
|
# @return [Google::Apis::OndemandscanningV1::DiscoveryOccurrence]
|
1334
1474
|
attr_accessor :discovery
|
1335
1475
|
|
1336
|
-
#
|
1476
|
+
# Deprecated. Prefer to use a regular Occurrence, and populate the Envelope at
|
1477
|
+
# the top level of the Occurrence.
|
1337
1478
|
# Corresponds to the JSON property `dsseAttestation`
|
1338
1479
|
# @return [Google::Apis::OndemandscanningV1::DsseAttestationOccurrence]
|
1339
1480
|
attr_accessor :dsse_attestation
|
@@ -1846,6 +1987,210 @@ module Google
|
|
1846
1987
|
end
|
1847
1988
|
end
|
1848
1989
|
|
1990
|
+
#
|
1991
|
+
class SlsaBuilder
|
1992
|
+
include Google::Apis::Core::Hashable
|
1993
|
+
|
1994
|
+
#
|
1995
|
+
# Corresponds to the JSON property `id`
|
1996
|
+
# @return [String]
|
1997
|
+
attr_accessor :id
|
1998
|
+
|
1999
|
+
def initialize(**args)
|
2000
|
+
update!(**args)
|
2001
|
+
end
|
2002
|
+
|
2003
|
+
# Update properties of this object
|
2004
|
+
def update!(**args)
|
2005
|
+
@id = args[:id] if args.key?(:id)
|
2006
|
+
end
|
2007
|
+
end
|
2008
|
+
|
2009
|
+
# Indicates that the builder claims certain fields in this message to be
|
2010
|
+
# complete.
|
2011
|
+
class SlsaCompleteness
|
2012
|
+
include Google::Apis::Core::Hashable
|
2013
|
+
|
2014
|
+
# If true, the builder claims that recipe.arguments is complete, meaning that
|
2015
|
+
# all external inputs are properly captured in the recipe.
|
2016
|
+
# Corresponds to the JSON property `arguments`
|
2017
|
+
# @return [Boolean]
|
2018
|
+
attr_accessor :arguments
|
2019
|
+
alias_method :arguments?, :arguments
|
2020
|
+
|
2021
|
+
# If true, the builder claims that recipe.environment is claimed to be complete.
|
2022
|
+
# Corresponds to the JSON property `environment`
|
2023
|
+
# @return [Boolean]
|
2024
|
+
attr_accessor :environment
|
2025
|
+
alias_method :environment?, :environment
|
2026
|
+
|
2027
|
+
# If true, the builder claims that materials are complete, usually through some
|
2028
|
+
# controls to prevent network access. Sometimes called "hermetic".
|
2029
|
+
# Corresponds to the JSON property `materials`
|
2030
|
+
# @return [Boolean]
|
2031
|
+
attr_accessor :materials
|
2032
|
+
alias_method :materials?, :materials
|
2033
|
+
|
2034
|
+
def initialize(**args)
|
2035
|
+
update!(**args)
|
2036
|
+
end
|
2037
|
+
|
2038
|
+
# Update properties of this object
|
2039
|
+
def update!(**args)
|
2040
|
+
@arguments = args[:arguments] if args.key?(:arguments)
|
2041
|
+
@environment = args[:environment] if args.key?(:environment)
|
2042
|
+
@materials = args[:materials] if args.key?(:materials)
|
2043
|
+
end
|
2044
|
+
end
|
2045
|
+
|
2046
|
+
# Other properties of the build.
|
2047
|
+
class SlsaMetadata
|
2048
|
+
include Google::Apis::Core::Hashable
|
2049
|
+
|
2050
|
+
# The timestamp of when the build completed.
|
2051
|
+
# Corresponds to the JSON property `buildFinishedOn`
|
2052
|
+
# @return [String]
|
2053
|
+
attr_accessor :build_finished_on
|
2054
|
+
|
2055
|
+
# Identifies the particular build invocation, which can be useful for finding
|
2056
|
+
# associated logs or other ad-hoc analysis. The value SHOULD be globally unique,
|
2057
|
+
# per in-toto Provenance spec.
|
2058
|
+
# Corresponds to the JSON property `buildInvocationId`
|
2059
|
+
# @return [String]
|
2060
|
+
attr_accessor :build_invocation_id
|
2061
|
+
|
2062
|
+
# The timestamp of when the build started.
|
2063
|
+
# Corresponds to the JSON property `buildStartedOn`
|
2064
|
+
# @return [String]
|
2065
|
+
attr_accessor :build_started_on
|
2066
|
+
|
2067
|
+
# Indicates that the builder claims certain fields in this message to be
|
2068
|
+
# complete.
|
2069
|
+
# Corresponds to the JSON property `completeness`
|
2070
|
+
# @return [Google::Apis::OndemandscanningV1::SlsaCompleteness]
|
2071
|
+
attr_accessor :completeness
|
2072
|
+
|
2073
|
+
# If true, the builder claims that running the recipe on materials will produce
|
2074
|
+
# bit-for-bit identical output.
|
2075
|
+
# Corresponds to the JSON property `reproducible`
|
2076
|
+
# @return [Boolean]
|
2077
|
+
attr_accessor :reproducible
|
2078
|
+
alias_method :reproducible?, :reproducible
|
2079
|
+
|
2080
|
+
def initialize(**args)
|
2081
|
+
update!(**args)
|
2082
|
+
end
|
2083
|
+
|
2084
|
+
# Update properties of this object
|
2085
|
+
def update!(**args)
|
2086
|
+
@build_finished_on = args[:build_finished_on] if args.key?(:build_finished_on)
|
2087
|
+
@build_invocation_id = args[:build_invocation_id] if args.key?(:build_invocation_id)
|
2088
|
+
@build_started_on = args[:build_started_on] if args.key?(:build_started_on)
|
2089
|
+
@completeness = args[:completeness] if args.key?(:completeness)
|
2090
|
+
@reproducible = args[:reproducible] if args.key?(:reproducible)
|
2091
|
+
end
|
2092
|
+
end
|
2093
|
+
|
2094
|
+
#
|
2095
|
+
class SlsaProvenance
|
2096
|
+
include Google::Apis::Core::Hashable
|
2097
|
+
|
2098
|
+
# required
|
2099
|
+
# Corresponds to the JSON property `builder`
|
2100
|
+
# @return [Google::Apis::OndemandscanningV1::SlsaBuilder]
|
2101
|
+
attr_accessor :builder
|
2102
|
+
|
2103
|
+
# The collection of artifacts that influenced the build including sources,
|
2104
|
+
# dependencies, build tools, base images, and so on. This is considered to be
|
2105
|
+
# incomplete unless metadata.completeness.materials is true. Unset or null is
|
2106
|
+
# equivalent to empty.
|
2107
|
+
# Corresponds to the JSON property `materials`
|
2108
|
+
# @return [Array<Google::Apis::OndemandscanningV1::Material>]
|
2109
|
+
attr_accessor :materials
|
2110
|
+
|
2111
|
+
# Other properties of the build.
|
2112
|
+
# Corresponds to the JSON property `metadata`
|
2113
|
+
# @return [Google::Apis::OndemandscanningV1::SlsaMetadata]
|
2114
|
+
attr_accessor :metadata
|
2115
|
+
|
2116
|
+
# Steps taken to build the artifact. For a TaskRun, typically each container
|
2117
|
+
# corresponds to one step in the recipe.
|
2118
|
+
# Corresponds to the JSON property `recipe`
|
2119
|
+
# @return [Google::Apis::OndemandscanningV1::SlsaRecipe]
|
2120
|
+
attr_accessor :recipe
|
2121
|
+
|
2122
|
+
def initialize(**args)
|
2123
|
+
update!(**args)
|
2124
|
+
end
|
2125
|
+
|
2126
|
+
# Update properties of this object
|
2127
|
+
def update!(**args)
|
2128
|
+
@builder = args[:builder] if args.key?(:builder)
|
2129
|
+
@materials = args[:materials] if args.key?(:materials)
|
2130
|
+
@metadata = args[:metadata] if args.key?(:metadata)
|
2131
|
+
@recipe = args[:recipe] if args.key?(:recipe)
|
2132
|
+
end
|
2133
|
+
end
|
2134
|
+
|
2135
|
+
# Steps taken to build the artifact. For a TaskRun, typically each container
|
2136
|
+
# corresponds to one step in the recipe.
|
2137
|
+
class SlsaRecipe
|
2138
|
+
include Google::Apis::Core::Hashable
|
2139
|
+
|
2140
|
+
# Collection of all external inputs that influenced the build on top of recipe.
|
2141
|
+
# definedInMaterial and recipe.entryPoint. For example, if the recipe type were "
|
2142
|
+
# make", then this might be the flags passed to make aside from the target,
|
2143
|
+
# which is captured in recipe.entryPoint. Depending on the recipe Type, the
|
2144
|
+
# structure may be different.
|
2145
|
+
# Corresponds to the JSON property `arguments`
|
2146
|
+
# @return [Hash<String,Object>]
|
2147
|
+
attr_accessor :arguments
|
2148
|
+
|
2149
|
+
# Index in materials containing the recipe steps that are not implied by recipe.
|
2150
|
+
# type. For example, if the recipe type were "make", then this would point to
|
2151
|
+
# the source containing the Makefile, not the make program itself. Set to -1 if
|
2152
|
+
# the recipe doesn't come from a material, as zero is default unset value for
|
2153
|
+
# int64.
|
2154
|
+
# Corresponds to the JSON property `definedInMaterial`
|
2155
|
+
# @return [Fixnum]
|
2156
|
+
attr_accessor :defined_in_material
|
2157
|
+
|
2158
|
+
# String identifying the entry point into the build. This is often a path to a
|
2159
|
+
# configuration file and/or a target label within that file. The syntax and
|
2160
|
+
# meaning are defined by recipe.type. For example, if the recipe type were "make"
|
2161
|
+
# , then this would reference the directory in which to run make as well as
|
2162
|
+
# which target to use.
|
2163
|
+
# Corresponds to the JSON property `entryPoint`
|
2164
|
+
# @return [String]
|
2165
|
+
attr_accessor :entry_point
|
2166
|
+
|
2167
|
+
# Any other builder-controlled inputs necessary for correctly evaluating the
|
2168
|
+
# recipe. Usually only needed for reproducing the build but not evaluated as
|
2169
|
+
# part of policy. Depending on the recipe Type, the structure may be different.
|
2170
|
+
# Corresponds to the JSON property `environment`
|
2171
|
+
# @return [Hash<String,Object>]
|
2172
|
+
attr_accessor :environment
|
2173
|
+
|
2174
|
+
# URI indicating what type of recipe was performed. It determines the meaning of
|
2175
|
+
# recipe.entryPoint, recipe.arguments, recipe.environment, and materials.
|
2176
|
+
# Corresponds to the JSON property `type`
|
2177
|
+
# @return [String]
|
2178
|
+
attr_accessor :type
|
2179
|
+
|
2180
|
+
def initialize(**args)
|
2181
|
+
update!(**args)
|
2182
|
+
end
|
2183
|
+
|
2184
|
+
# Update properties of this object
|
2185
|
+
def update!(**args)
|
2186
|
+
@arguments = args[:arguments] if args.key?(:arguments)
|
2187
|
+
@defined_in_material = args[:defined_in_material] if args.key?(:defined_in_material)
|
2188
|
+
@entry_point = args[:entry_point] if args.key?(:entry_point)
|
2189
|
+
@environment = args[:environment] if args.key?(:environment)
|
2190
|
+
@type = args[:type] if args.key?(:type)
|
2191
|
+
end
|
2192
|
+
end
|
2193
|
+
|
1849
2194
|
# Source describes the location of the source used for the build.
|
1850
2195
|
class Source
|
1851
2196
|
include Google::Apis::Core::Hashable
|
@@ -1974,7 +2319,8 @@ module Google
|
|
1974
2319
|
class Subject
|
1975
2320
|
include Google::Apis::Core::Hashable
|
1976
2321
|
|
1977
|
-
# "": ""
|
2322
|
+
# `"": ""` Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/
|
2323
|
+
# attestation/blob/main/spec/field_types.md#DigestSet
|
1978
2324
|
# Corresponds to the JSON property `digest`
|
1979
2325
|
# @return [Hash<String,String>]
|
1980
2326
|
attr_accessor :digest
|
@@ -2150,6 +2496,15 @@ module Google
|
|
2150
2496
|
# @return [Float]
|
2151
2497
|
attr_accessor :cvss_score
|
2152
2498
|
|
2499
|
+
# Common Vulnerability Scoring System. For details, see https://www.first.org/
|
2500
|
+
# cvss/specification-document This is a message we will try to use for storing
|
2501
|
+
# multiple versions of CVSS. The intention is that as new versions of CVSS
|
2502
|
+
# scores get added, we will be able to modify this message rather than adding
|
2503
|
+
# new protos for each new version of the score.
|
2504
|
+
# Corresponds to the JSON property `cvssv3`
|
2505
|
+
# @return [Google::Apis::OndemandscanningV1::Cvss]
|
2506
|
+
attr_accessor :cvssv3
|
2507
|
+
|
2153
2508
|
# The distro assigned severity for this vulnerability when it is available,
|
2154
2509
|
# otherwise this is the note provider assigned severity. When there are multiple
|
2155
2510
|
# PackageIssues for this vulnerability, they can have different effective
|
@@ -2207,6 +2562,7 @@ module Google
|
|
2207
2562
|
# Update properties of this object
|
2208
2563
|
def update!(**args)
|
2209
2564
|
@cvss_score = args[:cvss_score] if args.key?(:cvss_score)
|
2565
|
+
@cvssv3 = args[:cvssv3] if args.key?(:cvssv3)
|
2210
2566
|
@effective_severity = args[:effective_severity] if args.key?(:effective_severity)
|
2211
2567
|
@fix_available = args[:fix_available] if args.key?(:fix_available)
|
2212
2568
|
@long_description = args[:long_description] if args.key?(:long_description)
|
@@ -16,13 +16,13 @@ module Google
|
|
16
16
|
module Apis
|
17
17
|
module OndemandscanningV1
|
18
18
|
# Version of the google-apis-ondemandscanning_v1 gem
|
19
|
-
GEM_VERSION = "0.
|
19
|
+
GEM_VERSION = "0.15.0"
|
20
20
|
|
21
21
|
# Version of the code generator used to generate this client
|
22
|
-
GENERATOR_VERSION = "0.4.
|
22
|
+
GENERATOR_VERSION = "0.4.1"
|
23
23
|
|
24
24
|
# Revision of the discovery document this client was generated from
|
25
|
-
REVISION = "
|
25
|
+
REVISION = "20220107"
|
26
26
|
end
|
27
27
|
end
|
28
28
|
end
|
@@ -88,6 +88,12 @@ module Google
|
|
88
88
|
include Google::Apis::Core::JsonObjectSupport
|
89
89
|
end
|
90
90
|
|
91
|
+
class Cvss
|
92
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
93
|
+
|
94
|
+
include Google::Apis::Core::JsonObjectSupport
|
95
|
+
end
|
96
|
+
|
91
97
|
class Category
|
92
98
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
93
99
|
|
@@ -238,6 +244,12 @@ module Google
|
|
238
244
|
include Google::Apis::Core::JsonObjectSupport
|
239
245
|
end
|
240
246
|
|
247
|
+
class Material
|
248
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
249
|
+
|
250
|
+
include Google::Apis::Core::JsonObjectSupport
|
251
|
+
end
|
252
|
+
|
241
253
|
class Metadata
|
242
254
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
243
255
|
|
@@ -310,6 +322,36 @@ module Google
|
|
310
322
|
include Google::Apis::Core::JsonObjectSupport
|
311
323
|
end
|
312
324
|
|
325
|
+
class SlsaBuilder
|
326
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
327
|
+
|
328
|
+
include Google::Apis::Core::JsonObjectSupport
|
329
|
+
end
|
330
|
+
|
331
|
+
class SlsaCompleteness
|
332
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
333
|
+
|
334
|
+
include Google::Apis::Core::JsonObjectSupport
|
335
|
+
end
|
336
|
+
|
337
|
+
class SlsaMetadata
|
338
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
339
|
+
|
340
|
+
include Google::Apis::Core::JsonObjectSupport
|
341
|
+
end
|
342
|
+
|
343
|
+
class SlsaProvenance
|
344
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
345
|
+
|
346
|
+
include Google::Apis::Core::JsonObjectSupport
|
347
|
+
end
|
348
|
+
|
349
|
+
class SlsaRecipe
|
350
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
351
|
+
|
352
|
+
include Google::Apis::Core::JsonObjectSupport
|
353
|
+
end
|
354
|
+
|
313
355
|
class Source
|
314
356
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
315
357
|
|
@@ -437,6 +479,8 @@ module Google
|
|
437
479
|
class Representation < Google::Apis::Core::JsonRepresentation
|
438
480
|
property :intoto_provenance, as: 'intotoProvenance', class: Google::Apis::OndemandscanningV1::InTotoProvenance, decorator: Google::Apis::OndemandscanningV1::InTotoProvenance::Representation
|
439
481
|
|
482
|
+
property :intoto_statement, as: 'intotoStatement', class: Google::Apis::OndemandscanningV1::InTotoStatement, decorator: Google::Apis::OndemandscanningV1::InTotoStatement::Representation
|
483
|
+
|
440
484
|
property :provenance, as: 'provenance', class: Google::Apis::OndemandscanningV1::BuildProvenance, decorator: Google::Apis::OndemandscanningV1::BuildProvenance::Representation
|
441
485
|
|
442
486
|
property :provenance_bytes, as: 'provenanceBytes'
|
@@ -472,6 +516,24 @@ module Google
|
|
472
516
|
end
|
473
517
|
end
|
474
518
|
|
519
|
+
class Cvss
|
520
|
+
# @private
|
521
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
522
|
+
property :attack_complexity, as: 'attackComplexity'
|
523
|
+
property :attack_vector, as: 'attackVector'
|
524
|
+
property :authentication, as: 'authentication'
|
525
|
+
property :availability_impact, as: 'availabilityImpact'
|
526
|
+
property :base_score, as: 'baseScore'
|
527
|
+
property :confidentiality_impact, as: 'confidentialityImpact'
|
528
|
+
property :exploitability_score, as: 'exploitabilityScore'
|
529
|
+
property :impact_score, as: 'impactScore'
|
530
|
+
property :integrity_impact, as: 'integrityImpact'
|
531
|
+
property :privileges_required, as: 'privilegesRequired'
|
532
|
+
property :scope, as: 'scope'
|
533
|
+
property :user_interaction, as: 'userInteraction'
|
534
|
+
end
|
535
|
+
end
|
536
|
+
|
475
537
|
class Category
|
476
538
|
# @private
|
477
539
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -550,6 +612,7 @@ module Google
|
|
550
612
|
property :analysis_status, as: 'analysisStatus'
|
551
613
|
property :analysis_status_error, as: 'analysisStatusError', class: Google::Apis::OndemandscanningV1::Status, decorator: Google::Apis::OndemandscanningV1::Status::Representation
|
552
614
|
|
615
|
+
property :archive_time, as: 'archiveTime'
|
553
616
|
property :continuous_analysis, as: 'continuousAnalysis'
|
554
617
|
property :cpe, as: 'cpe'
|
555
618
|
property :last_scan_time, as: 'lastScanTime'
|
@@ -660,12 +723,14 @@ module Google
|
|
660
723
|
class InTotoStatement
|
661
724
|
# @private
|
662
725
|
class Representation < Google::Apis::Core::JsonRepresentation
|
726
|
+
property :_type, as: '_type'
|
663
727
|
property :predicate_type, as: 'predicateType'
|
664
728
|
property :provenance, as: 'provenance', class: Google::Apis::OndemandscanningV1::InTotoProvenance, decorator: Google::Apis::OndemandscanningV1::InTotoProvenance::Representation
|
665
729
|
|
730
|
+
property :slsa_provenance, as: 'slsaProvenance', class: Google::Apis::OndemandscanningV1::SlsaProvenance, decorator: Google::Apis::OndemandscanningV1::SlsaProvenance::Representation
|
731
|
+
|
666
732
|
collection :subject, as: 'subject', class: Google::Apis::OndemandscanningV1::Subject, decorator: Google::Apis::OndemandscanningV1::Subject::Representation
|
667
733
|
|
668
|
-
property :type, as: 'type'
|
669
734
|
end
|
670
735
|
end
|
671
736
|
|
@@ -712,6 +777,14 @@ module Google
|
|
712
777
|
end
|
713
778
|
end
|
714
779
|
|
780
|
+
class Material
|
781
|
+
# @private
|
782
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
783
|
+
hash :digest, as: 'digest'
|
784
|
+
property :uri, as: 'uri'
|
785
|
+
end
|
786
|
+
end
|
787
|
+
|
715
788
|
class Metadata
|
716
789
|
# @private
|
717
790
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -863,6 +936,59 @@ module Google
|
|
863
936
|
end
|
864
937
|
end
|
865
938
|
|
939
|
+
class SlsaBuilder
|
940
|
+
# @private
|
941
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
942
|
+
property :id, as: 'id'
|
943
|
+
end
|
944
|
+
end
|
945
|
+
|
946
|
+
class SlsaCompleteness
|
947
|
+
# @private
|
948
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
949
|
+
property :arguments, as: 'arguments'
|
950
|
+
property :environment, as: 'environment'
|
951
|
+
property :materials, as: 'materials'
|
952
|
+
end
|
953
|
+
end
|
954
|
+
|
955
|
+
class SlsaMetadata
|
956
|
+
# @private
|
957
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
958
|
+
property :build_finished_on, as: 'buildFinishedOn'
|
959
|
+
property :build_invocation_id, as: 'buildInvocationId'
|
960
|
+
property :build_started_on, as: 'buildStartedOn'
|
961
|
+
property :completeness, as: 'completeness', class: Google::Apis::OndemandscanningV1::SlsaCompleteness, decorator: Google::Apis::OndemandscanningV1::SlsaCompleteness::Representation
|
962
|
+
|
963
|
+
property :reproducible, as: 'reproducible'
|
964
|
+
end
|
965
|
+
end
|
966
|
+
|
967
|
+
class SlsaProvenance
|
968
|
+
# @private
|
969
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
970
|
+
property :builder, as: 'builder', class: Google::Apis::OndemandscanningV1::SlsaBuilder, decorator: Google::Apis::OndemandscanningV1::SlsaBuilder::Representation
|
971
|
+
|
972
|
+
collection :materials, as: 'materials', class: Google::Apis::OndemandscanningV1::Material, decorator: Google::Apis::OndemandscanningV1::Material::Representation
|
973
|
+
|
974
|
+
property :metadata, as: 'metadata', class: Google::Apis::OndemandscanningV1::SlsaMetadata, decorator: Google::Apis::OndemandscanningV1::SlsaMetadata::Representation
|
975
|
+
|
976
|
+
property :recipe, as: 'recipe', class: Google::Apis::OndemandscanningV1::SlsaRecipe, decorator: Google::Apis::OndemandscanningV1::SlsaRecipe::Representation
|
977
|
+
|
978
|
+
end
|
979
|
+
end
|
980
|
+
|
981
|
+
class SlsaRecipe
|
982
|
+
# @private
|
983
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
984
|
+
hash :arguments, as: 'arguments'
|
985
|
+
property :defined_in_material, :numeric_string => true, as: 'definedInMaterial'
|
986
|
+
property :entry_point, as: 'entryPoint'
|
987
|
+
hash :environment, as: 'environment'
|
988
|
+
property :type, as: 'type'
|
989
|
+
end
|
990
|
+
end
|
991
|
+
|
866
992
|
class Source
|
867
993
|
# @private
|
868
994
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -945,6 +1071,8 @@ module Google
|
|
945
1071
|
# @private
|
946
1072
|
class Representation < Google::Apis::Core::JsonRepresentation
|
947
1073
|
property :cvss_score, as: 'cvssScore'
|
1074
|
+
property :cvssv3, as: 'cvssv3', class: Google::Apis::OndemandscanningV1::Cvss, decorator: Google::Apis::OndemandscanningV1::Cvss::Representation
|
1075
|
+
|
948
1076
|
property :effective_severity, as: 'effectiveSeverity'
|
949
1077
|
property :fix_available, as: 'fixAvailable'
|
950
1078
|
property :long_description, as: 'longDescription'
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-apis-ondemandscanning_v1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.15.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2022-01-17 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: google-apis-core
|
@@ -58,7 +58,7 @@ licenses:
|
|
58
58
|
metadata:
|
59
59
|
bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
|
60
60
|
changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-ondemandscanning_v1/CHANGELOG.md
|
61
|
-
documentation_uri: https://googleapis.dev/ruby/google-apis-ondemandscanning_v1/v0.
|
61
|
+
documentation_uri: https://googleapis.dev/ruby/google-apis-ondemandscanning_v1/v0.15.0
|
62
62
|
source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-ondemandscanning_v1
|
63
63
|
post_install_message:
|
64
64
|
rdoc_options: []
|
@@ -75,7 +75,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
75
75
|
- !ruby/object:Gem::Version
|
76
76
|
version: '0'
|
77
77
|
requirements: []
|
78
|
-
rubygems_version: 3.
|
78
|
+
rubygems_version: 3.3.5
|
79
79
|
signing_key:
|
80
80
|
specification_version: 4
|
81
81
|
summary: Simple REST client for On-Demand Scanning API V1
|