google-apis-ondemandscanning_v1 0.11.0 → 0.15.0
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 67aa857bfd88927eb23fc0c025756bdd1e9a1f4e24ca1a2aa2145ce1c7bf9ed6
|
4
|
+
data.tar.gz: 3fc344719d963a7147a63b6f3ba448cefbc5c80fb886735900854d06c0af8397
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 9ed5301e5e79ac8508015796c855faed5364ef561d880b4ae01993d9a4a3b011e6c4c0de42e573131b430188e87017a3eaac02df4923e5ec12b3a9178ab26508
|
7
|
+
data.tar.gz: 70cdad78c25ff32fe3b28a73c7732cdf908baca28c3766200058767bce623e2d04bf3ce56e4112a64d0047cafcc519119dd84c6f13da23df801edddb73d600cb
|
data/CHANGELOG.md
CHANGED
@@ -1,5 +1,22 @@
|
|
1
1
|
# Release history for google-apis-ondemandscanning_v1
|
2
2
|
|
3
|
+
### v0.15.0 (2022-01-12)
|
4
|
+
|
5
|
+
* Regenerated from discovery document revision 20220107
|
6
|
+
* Regenerated using generator version 0.4.1
|
7
|
+
|
8
|
+
### v0.14.0 (2021-12-14)
|
9
|
+
|
10
|
+
* Unspecified changes
|
11
|
+
|
12
|
+
### v0.13.0 (2021-12-09)
|
13
|
+
|
14
|
+
* Regenerated from discovery document revision 20211206
|
15
|
+
|
16
|
+
### v0.12.0 (2021-11-04)
|
17
|
+
|
18
|
+
* Regenerated from discovery document revision 20211029
|
19
|
+
|
3
20
|
### v0.11.0 (2021-10-21)
|
4
21
|
|
5
22
|
* Unspecified changes
|
data/OVERVIEW.md
CHANGED
@@ -51,7 +51,7 @@ require "google/apis/ondemandscanning_v1"
|
|
51
51
|
client = Google::Apis::OndemandscanningV1::OnDemandScanningService.new
|
52
52
|
|
53
53
|
# Authenticate calls
|
54
|
-
client.
|
54
|
+
client.authorization = # ... use the googleauth gem to create credentials
|
55
55
|
```
|
56
56
|
|
57
57
|
See the class reference docs for information on the methods you can call from a client.
|
@@ -104,7 +104,8 @@ module Google
|
|
104
104
|
class AnalyzePackagesRequestV1
|
105
105
|
include Google::Apis::Core::Hashable
|
106
106
|
|
107
|
-
# Whether to include OSV data in the scan.
|
107
|
+
# [DEPRECATED] Whether to include OSV data in the scan. For backwards
|
108
|
+
# compatibility reasons, this field can be neither removed nor renamed.
|
108
109
|
# Corresponds to the JSON property `includeOsvData`
|
109
110
|
# @return [Boolean]
|
110
111
|
attr_accessor :include_osv_data
|
@@ -260,11 +261,19 @@ module Google
|
|
260
261
|
class BuildOccurrence
|
261
262
|
include Google::Apis::Core::Hashable
|
262
263
|
|
263
|
-
#
|
264
|
+
# Deprecated. See InTotoStatement for the replacement. In-toto Provenance
|
265
|
+
# representation as defined in spec.
|
264
266
|
# Corresponds to the JSON property `intotoProvenance`
|
265
267
|
# @return [Google::Apis::OndemandscanningV1::InTotoProvenance]
|
266
268
|
attr_accessor :intoto_provenance
|
267
269
|
|
270
|
+
# Spec defined at https://github.com/in-toto/attestation/tree/main/spec#
|
271
|
+
# statement The serialized InTotoStatement will be stored as Envelope.payload.
|
272
|
+
# Envelope.payloadType is always "application/vnd.in-toto+json".
|
273
|
+
# Corresponds to the JSON property `intotoStatement`
|
274
|
+
# @return [Google::Apis::OndemandscanningV1::InTotoStatement]
|
275
|
+
attr_accessor :intoto_statement
|
276
|
+
|
268
277
|
# Provenance of a build. Contains all information needed to verify the full
|
269
278
|
# details about the build from source to completion.
|
270
279
|
# Corresponds to the JSON property `provenance`
|
@@ -290,6 +299,7 @@ module Google
|
|
290
299
|
# Update properties of this object
|
291
300
|
def update!(**args)
|
292
301
|
@intoto_provenance = args[:intoto_provenance] if args.key?(:intoto_provenance)
|
302
|
+
@intoto_statement = args[:intoto_statement] if args.key?(:intoto_statement)
|
293
303
|
@provenance = args[:provenance] if args.key?(:provenance)
|
294
304
|
@provenance_bytes = args[:provenance_bytes] if args.key?(:provenance_bytes)
|
295
305
|
end
|
@@ -409,6 +419,96 @@ module Google
|
|
409
419
|
end
|
410
420
|
end
|
411
421
|
|
422
|
+
# Common Vulnerability Scoring System. For details, see https://www.first.org/
|
423
|
+
# cvss/specification-document This is a message we will try to use for storing
|
424
|
+
# multiple versions of CVSS. The intention is that as new versions of CVSS
|
425
|
+
# scores get added, we will be able to modify this message rather than adding
|
426
|
+
# new protos for each new version of the score.
|
427
|
+
class Cvss
|
428
|
+
include Google::Apis::Core::Hashable
|
429
|
+
|
430
|
+
#
|
431
|
+
# Corresponds to the JSON property `attackComplexity`
|
432
|
+
# @return [String]
|
433
|
+
attr_accessor :attack_complexity
|
434
|
+
|
435
|
+
# Base Metrics Represents the intrinsic characteristics of a vulnerability that
|
436
|
+
# are constant over time and across user environments.
|
437
|
+
# Corresponds to the JSON property `attackVector`
|
438
|
+
# @return [String]
|
439
|
+
attr_accessor :attack_vector
|
440
|
+
|
441
|
+
#
|
442
|
+
# Corresponds to the JSON property `authentication`
|
443
|
+
# @return [String]
|
444
|
+
attr_accessor :authentication
|
445
|
+
|
446
|
+
#
|
447
|
+
# Corresponds to the JSON property `availabilityImpact`
|
448
|
+
# @return [String]
|
449
|
+
attr_accessor :availability_impact
|
450
|
+
|
451
|
+
# The base score is a function of the base metric scores.
|
452
|
+
# Corresponds to the JSON property `baseScore`
|
453
|
+
# @return [Float]
|
454
|
+
attr_accessor :base_score
|
455
|
+
|
456
|
+
#
|
457
|
+
# Corresponds to the JSON property `confidentialityImpact`
|
458
|
+
# @return [String]
|
459
|
+
attr_accessor :confidentiality_impact
|
460
|
+
|
461
|
+
#
|
462
|
+
# Corresponds to the JSON property `exploitabilityScore`
|
463
|
+
# @return [Float]
|
464
|
+
attr_accessor :exploitability_score
|
465
|
+
|
466
|
+
#
|
467
|
+
# Corresponds to the JSON property `impactScore`
|
468
|
+
# @return [Float]
|
469
|
+
attr_accessor :impact_score
|
470
|
+
|
471
|
+
#
|
472
|
+
# Corresponds to the JSON property `integrityImpact`
|
473
|
+
# @return [String]
|
474
|
+
attr_accessor :integrity_impact
|
475
|
+
|
476
|
+
#
|
477
|
+
# Corresponds to the JSON property `privilegesRequired`
|
478
|
+
# @return [String]
|
479
|
+
attr_accessor :privileges_required
|
480
|
+
|
481
|
+
#
|
482
|
+
# Corresponds to the JSON property `scope`
|
483
|
+
# @return [String]
|
484
|
+
attr_accessor :scope
|
485
|
+
|
486
|
+
#
|
487
|
+
# Corresponds to the JSON property `userInteraction`
|
488
|
+
# @return [String]
|
489
|
+
attr_accessor :user_interaction
|
490
|
+
|
491
|
+
def initialize(**args)
|
492
|
+
update!(**args)
|
493
|
+
end
|
494
|
+
|
495
|
+
# Update properties of this object
|
496
|
+
def update!(**args)
|
497
|
+
@attack_complexity = args[:attack_complexity] if args.key?(:attack_complexity)
|
498
|
+
@attack_vector = args[:attack_vector] if args.key?(:attack_vector)
|
499
|
+
@authentication = args[:authentication] if args.key?(:authentication)
|
500
|
+
@availability_impact = args[:availability_impact] if args.key?(:availability_impact)
|
501
|
+
@base_score = args[:base_score] if args.key?(:base_score)
|
502
|
+
@confidentiality_impact = args[:confidentiality_impact] if args.key?(:confidentiality_impact)
|
503
|
+
@exploitability_score = args[:exploitability_score] if args.key?(:exploitability_score)
|
504
|
+
@impact_score = args[:impact_score] if args.key?(:impact_score)
|
505
|
+
@integrity_impact = args[:integrity_impact] if args.key?(:integrity_impact)
|
506
|
+
@privileges_required = args[:privileges_required] if args.key?(:privileges_required)
|
507
|
+
@scope = args[:scope] if args.key?(:scope)
|
508
|
+
@user_interaction = args[:user_interaction] if args.key?(:user_interaction)
|
509
|
+
end
|
510
|
+
end
|
511
|
+
|
412
512
|
# The category to which the update belongs.
|
413
513
|
class Category
|
414
514
|
include Google::Apis::Core::Hashable
|
@@ -581,7 +681,8 @@ module Google
|
|
581
681
|
end
|
582
682
|
end
|
583
683
|
|
584
|
-
#
|
684
|
+
# Deprecated. Prefer to use a regular Occurrence, and populate the Envelope at
|
685
|
+
# the top level of the Occurrence.
|
585
686
|
class DsseAttestationOccurrence
|
586
687
|
include Google::Apis::Core::Hashable
|
587
688
|
|
@@ -684,6 +785,12 @@ module Google
|
|
684
785
|
# @return [Google::Apis::OndemandscanningV1::Status]
|
685
786
|
attr_accessor :analysis_status_error
|
686
787
|
|
788
|
+
# Output only. The time occurrences related to this discovery occurrence were
|
789
|
+
# archived.
|
790
|
+
# Corresponds to the JSON property `archiveTime`
|
791
|
+
# @return [String]
|
792
|
+
attr_accessor :archive_time
|
793
|
+
|
687
794
|
# Whether the resource is continuously analyzed.
|
688
795
|
# Corresponds to the JSON property `continuousAnalysis`
|
689
796
|
# @return [String]
|
@@ -707,6 +814,7 @@ module Google
|
|
707
814
|
def update!(**args)
|
708
815
|
@analysis_status = args[:analysis_status] if args.key?(:analysis_status)
|
709
816
|
@analysis_status_error = args[:analysis_status_error] if args.key?(:analysis_status_error)
|
817
|
+
@archive_time = args[:archive_time] if args.key?(:archive_time)
|
710
818
|
@continuous_analysis = args[:continuous_analysis] if args.key?(:continuous_analysis)
|
711
819
|
@cpe = args[:cpe] if args.key?(:cpe)
|
712
820
|
@last_scan_time = args[:last_scan_time] if args.key?(:last_scan_time)
|
@@ -1046,7 +1154,12 @@ module Google
|
|
1046
1154
|
class InTotoStatement
|
1047
1155
|
include Google::Apis::Core::Hashable
|
1048
1156
|
|
1049
|
-
#
|
1157
|
+
# Always `https://in-toto.io/Statement/v0.1`.
|
1158
|
+
# Corresponds to the JSON property `_type`
|
1159
|
+
# @return [String]
|
1160
|
+
attr_accessor :_type
|
1161
|
+
|
1162
|
+
# `https://slsa.dev/provenance/v0.1` for SlsaProvenance.
|
1050
1163
|
# Corresponds to the JSON property `predicateType`
|
1051
1164
|
# @return [String]
|
1052
1165
|
attr_accessor :predicate_type
|
@@ -1056,26 +1169,27 @@ module Google
|
|
1056
1169
|
# @return [Google::Apis::OndemandscanningV1::InTotoProvenance]
|
1057
1170
|
attr_accessor :provenance
|
1058
1171
|
|
1172
|
+
#
|
1173
|
+
# Corresponds to the JSON property `slsaProvenance`
|
1174
|
+
# @return [Google::Apis::OndemandscanningV1::SlsaProvenance]
|
1175
|
+
attr_accessor :slsa_provenance
|
1176
|
+
|
1059
1177
|
#
|
1060
1178
|
# Corresponds to the JSON property `subject`
|
1061
1179
|
# @return [Array<Google::Apis::OndemandscanningV1::Subject>]
|
1062
1180
|
attr_accessor :subject
|
1063
1181
|
|
1064
|
-
# Always "https://in-toto.io/Statement/v0.1".
|
1065
|
-
# Corresponds to the JSON property `type`
|
1066
|
-
# @return [String]
|
1067
|
-
attr_accessor :type
|
1068
|
-
|
1069
1182
|
def initialize(**args)
|
1070
1183
|
update!(**args)
|
1071
1184
|
end
|
1072
1185
|
|
1073
1186
|
# Update properties of this object
|
1074
1187
|
def update!(**args)
|
1188
|
+
@_type = args[:_type] if args.key?(:_type)
|
1075
1189
|
@predicate_type = args[:predicate_type] if args.key?(:predicate_type)
|
1076
1190
|
@provenance = args[:provenance] if args.key?(:provenance)
|
1191
|
+
@slsa_provenance = args[:slsa_provenance] if args.key?(:slsa_provenance)
|
1077
1192
|
@subject = args[:subject] if args.key?(:subject)
|
1078
|
-
@type = args[:type] if args.key?(:type)
|
1079
1193
|
end
|
1080
1194
|
end
|
1081
1195
|
|
@@ -1211,6 +1325,31 @@ module Google
|
|
1211
1325
|
end
|
1212
1326
|
end
|
1213
1327
|
|
1328
|
+
#
|
1329
|
+
class Material
|
1330
|
+
include Google::Apis::Core::Hashable
|
1331
|
+
|
1332
|
+
#
|
1333
|
+
# Corresponds to the JSON property `digest`
|
1334
|
+
# @return [Hash<String,String>]
|
1335
|
+
attr_accessor :digest
|
1336
|
+
|
1337
|
+
#
|
1338
|
+
# Corresponds to the JSON property `uri`
|
1339
|
+
# @return [String]
|
1340
|
+
attr_accessor :uri
|
1341
|
+
|
1342
|
+
def initialize(**args)
|
1343
|
+
update!(**args)
|
1344
|
+
end
|
1345
|
+
|
1346
|
+
# Update properties of this object
|
1347
|
+
def update!(**args)
|
1348
|
+
@digest = args[:digest] if args.key?(:digest)
|
1349
|
+
@uri = args[:uri] if args.key?(:uri)
|
1350
|
+
end
|
1351
|
+
end
|
1352
|
+
|
1214
1353
|
# Other properties of the build.
|
1215
1354
|
class Metadata
|
1216
1355
|
include Google::Apis::Core::Hashable
|
@@ -1259,7 +1398,10 @@ module Google
|
|
1259
1398
|
end
|
1260
1399
|
end
|
1261
1400
|
|
1262
|
-
# Details about files that caused a compliance check to fail.
|
1401
|
+
# Details about files that caused a compliance check to fail. display_command is
|
1402
|
+
# a single command that can be used to display a list of non compliant files.
|
1403
|
+
# When there is no such command, we can also iterate a list of non compliant
|
1404
|
+
# file using 'path'.
|
1263
1405
|
class NonCompliantFile
|
1264
1406
|
include Google::Apis::Core::Hashable
|
1265
1407
|
|
@@ -1268,9 +1410,7 @@ module Google
|
|
1268
1410
|
# @return [String]
|
1269
1411
|
attr_accessor :display_command
|
1270
1412
|
|
1271
|
-
# display_command is
|
1272
|
-
# compliant files. When there is no such command, we can also iterate a list of
|
1273
|
-
# non compliant file using 'path'. Empty if `display_command` is set.
|
1413
|
+
# Empty if `display_command` is set.
|
1274
1414
|
# Corresponds to the JSON property `path`
|
1275
1415
|
# @return [String]
|
1276
1416
|
attr_accessor :path
|
@@ -1333,7 +1473,8 @@ module Google
|
|
1333
1473
|
# @return [Google::Apis::OndemandscanningV1::DiscoveryOccurrence]
|
1334
1474
|
attr_accessor :discovery
|
1335
1475
|
|
1336
|
-
#
|
1476
|
+
# Deprecated. Prefer to use a regular Occurrence, and populate the Envelope at
|
1477
|
+
# the top level of the Occurrence.
|
1337
1478
|
# Corresponds to the JSON property `dsseAttestation`
|
1338
1479
|
# @return [Google::Apis::OndemandscanningV1::DsseAttestationOccurrence]
|
1339
1480
|
attr_accessor :dsse_attestation
|
@@ -1846,6 +1987,210 @@ module Google
|
|
1846
1987
|
end
|
1847
1988
|
end
|
1848
1989
|
|
1990
|
+
#
|
1991
|
+
class SlsaBuilder
|
1992
|
+
include Google::Apis::Core::Hashable
|
1993
|
+
|
1994
|
+
#
|
1995
|
+
# Corresponds to the JSON property `id`
|
1996
|
+
# @return [String]
|
1997
|
+
attr_accessor :id
|
1998
|
+
|
1999
|
+
def initialize(**args)
|
2000
|
+
update!(**args)
|
2001
|
+
end
|
2002
|
+
|
2003
|
+
# Update properties of this object
|
2004
|
+
def update!(**args)
|
2005
|
+
@id = args[:id] if args.key?(:id)
|
2006
|
+
end
|
2007
|
+
end
|
2008
|
+
|
2009
|
+
# Indicates that the builder claims certain fields in this message to be
|
2010
|
+
# complete.
|
2011
|
+
class SlsaCompleteness
|
2012
|
+
include Google::Apis::Core::Hashable
|
2013
|
+
|
2014
|
+
# If true, the builder claims that recipe.arguments is complete, meaning that
|
2015
|
+
# all external inputs are properly captured in the recipe.
|
2016
|
+
# Corresponds to the JSON property `arguments`
|
2017
|
+
# @return [Boolean]
|
2018
|
+
attr_accessor :arguments
|
2019
|
+
alias_method :arguments?, :arguments
|
2020
|
+
|
2021
|
+
# If true, the builder claims that recipe.environment is claimed to be complete.
|
2022
|
+
# Corresponds to the JSON property `environment`
|
2023
|
+
# @return [Boolean]
|
2024
|
+
attr_accessor :environment
|
2025
|
+
alias_method :environment?, :environment
|
2026
|
+
|
2027
|
+
# If true, the builder claims that materials are complete, usually through some
|
2028
|
+
# controls to prevent network access. Sometimes called "hermetic".
|
2029
|
+
# Corresponds to the JSON property `materials`
|
2030
|
+
# @return [Boolean]
|
2031
|
+
attr_accessor :materials
|
2032
|
+
alias_method :materials?, :materials
|
2033
|
+
|
2034
|
+
def initialize(**args)
|
2035
|
+
update!(**args)
|
2036
|
+
end
|
2037
|
+
|
2038
|
+
# Update properties of this object
|
2039
|
+
def update!(**args)
|
2040
|
+
@arguments = args[:arguments] if args.key?(:arguments)
|
2041
|
+
@environment = args[:environment] if args.key?(:environment)
|
2042
|
+
@materials = args[:materials] if args.key?(:materials)
|
2043
|
+
end
|
2044
|
+
end
|
2045
|
+
|
2046
|
+
# Other properties of the build.
|
2047
|
+
class SlsaMetadata
|
2048
|
+
include Google::Apis::Core::Hashable
|
2049
|
+
|
2050
|
+
# The timestamp of when the build completed.
|
2051
|
+
# Corresponds to the JSON property `buildFinishedOn`
|
2052
|
+
# @return [String]
|
2053
|
+
attr_accessor :build_finished_on
|
2054
|
+
|
2055
|
+
# Identifies the particular build invocation, which can be useful for finding
|
2056
|
+
# associated logs or other ad-hoc analysis. The value SHOULD be globally unique,
|
2057
|
+
# per in-toto Provenance spec.
|
2058
|
+
# Corresponds to the JSON property `buildInvocationId`
|
2059
|
+
# @return [String]
|
2060
|
+
attr_accessor :build_invocation_id
|
2061
|
+
|
2062
|
+
# The timestamp of when the build started.
|
2063
|
+
# Corresponds to the JSON property `buildStartedOn`
|
2064
|
+
# @return [String]
|
2065
|
+
attr_accessor :build_started_on
|
2066
|
+
|
2067
|
+
# Indicates that the builder claims certain fields in this message to be
|
2068
|
+
# complete.
|
2069
|
+
# Corresponds to the JSON property `completeness`
|
2070
|
+
# @return [Google::Apis::OndemandscanningV1::SlsaCompleteness]
|
2071
|
+
attr_accessor :completeness
|
2072
|
+
|
2073
|
+
# If true, the builder claims that running the recipe on materials will produce
|
2074
|
+
# bit-for-bit identical output.
|
2075
|
+
# Corresponds to the JSON property `reproducible`
|
2076
|
+
# @return [Boolean]
|
2077
|
+
attr_accessor :reproducible
|
2078
|
+
alias_method :reproducible?, :reproducible
|
2079
|
+
|
2080
|
+
def initialize(**args)
|
2081
|
+
update!(**args)
|
2082
|
+
end
|
2083
|
+
|
2084
|
+
# Update properties of this object
|
2085
|
+
def update!(**args)
|
2086
|
+
@build_finished_on = args[:build_finished_on] if args.key?(:build_finished_on)
|
2087
|
+
@build_invocation_id = args[:build_invocation_id] if args.key?(:build_invocation_id)
|
2088
|
+
@build_started_on = args[:build_started_on] if args.key?(:build_started_on)
|
2089
|
+
@completeness = args[:completeness] if args.key?(:completeness)
|
2090
|
+
@reproducible = args[:reproducible] if args.key?(:reproducible)
|
2091
|
+
end
|
2092
|
+
end
|
2093
|
+
|
2094
|
+
#
|
2095
|
+
class SlsaProvenance
|
2096
|
+
include Google::Apis::Core::Hashable
|
2097
|
+
|
2098
|
+
# required
|
2099
|
+
# Corresponds to the JSON property `builder`
|
2100
|
+
# @return [Google::Apis::OndemandscanningV1::SlsaBuilder]
|
2101
|
+
attr_accessor :builder
|
2102
|
+
|
2103
|
+
# The collection of artifacts that influenced the build including sources,
|
2104
|
+
# dependencies, build tools, base images, and so on. This is considered to be
|
2105
|
+
# incomplete unless metadata.completeness.materials is true. Unset or null is
|
2106
|
+
# equivalent to empty.
|
2107
|
+
# Corresponds to the JSON property `materials`
|
2108
|
+
# @return [Array<Google::Apis::OndemandscanningV1::Material>]
|
2109
|
+
attr_accessor :materials
|
2110
|
+
|
2111
|
+
# Other properties of the build.
|
2112
|
+
# Corresponds to the JSON property `metadata`
|
2113
|
+
# @return [Google::Apis::OndemandscanningV1::SlsaMetadata]
|
2114
|
+
attr_accessor :metadata
|
2115
|
+
|
2116
|
+
# Steps taken to build the artifact. For a TaskRun, typically each container
|
2117
|
+
# corresponds to one step in the recipe.
|
2118
|
+
# Corresponds to the JSON property `recipe`
|
2119
|
+
# @return [Google::Apis::OndemandscanningV1::SlsaRecipe]
|
2120
|
+
attr_accessor :recipe
|
2121
|
+
|
2122
|
+
def initialize(**args)
|
2123
|
+
update!(**args)
|
2124
|
+
end
|
2125
|
+
|
2126
|
+
# Update properties of this object
|
2127
|
+
def update!(**args)
|
2128
|
+
@builder = args[:builder] if args.key?(:builder)
|
2129
|
+
@materials = args[:materials] if args.key?(:materials)
|
2130
|
+
@metadata = args[:metadata] if args.key?(:metadata)
|
2131
|
+
@recipe = args[:recipe] if args.key?(:recipe)
|
2132
|
+
end
|
2133
|
+
end
|
2134
|
+
|
2135
|
+
# Steps taken to build the artifact. For a TaskRun, typically each container
|
2136
|
+
# corresponds to one step in the recipe.
|
2137
|
+
class SlsaRecipe
|
2138
|
+
include Google::Apis::Core::Hashable
|
2139
|
+
|
2140
|
+
# Collection of all external inputs that influenced the build on top of recipe.
|
2141
|
+
# definedInMaterial and recipe.entryPoint. For example, if the recipe type were "
|
2142
|
+
# make", then this might be the flags passed to make aside from the target,
|
2143
|
+
# which is captured in recipe.entryPoint. Depending on the recipe Type, the
|
2144
|
+
# structure may be different.
|
2145
|
+
# Corresponds to the JSON property `arguments`
|
2146
|
+
# @return [Hash<String,Object>]
|
2147
|
+
attr_accessor :arguments
|
2148
|
+
|
2149
|
+
# Index in materials containing the recipe steps that are not implied by recipe.
|
2150
|
+
# type. For example, if the recipe type were "make", then this would point to
|
2151
|
+
# the source containing the Makefile, not the make program itself. Set to -1 if
|
2152
|
+
# the recipe doesn't come from a material, as zero is default unset value for
|
2153
|
+
# int64.
|
2154
|
+
# Corresponds to the JSON property `definedInMaterial`
|
2155
|
+
# @return [Fixnum]
|
2156
|
+
attr_accessor :defined_in_material
|
2157
|
+
|
2158
|
+
# String identifying the entry point into the build. This is often a path to a
|
2159
|
+
# configuration file and/or a target label within that file. The syntax and
|
2160
|
+
# meaning are defined by recipe.type. For example, if the recipe type were "make"
|
2161
|
+
# , then this would reference the directory in which to run make as well as
|
2162
|
+
# which target to use.
|
2163
|
+
# Corresponds to the JSON property `entryPoint`
|
2164
|
+
# @return [String]
|
2165
|
+
attr_accessor :entry_point
|
2166
|
+
|
2167
|
+
# Any other builder-controlled inputs necessary for correctly evaluating the
|
2168
|
+
# recipe. Usually only needed for reproducing the build but not evaluated as
|
2169
|
+
# part of policy. Depending on the recipe Type, the structure may be different.
|
2170
|
+
# Corresponds to the JSON property `environment`
|
2171
|
+
# @return [Hash<String,Object>]
|
2172
|
+
attr_accessor :environment
|
2173
|
+
|
2174
|
+
# URI indicating what type of recipe was performed. It determines the meaning of
|
2175
|
+
# recipe.entryPoint, recipe.arguments, recipe.environment, and materials.
|
2176
|
+
# Corresponds to the JSON property `type`
|
2177
|
+
# @return [String]
|
2178
|
+
attr_accessor :type
|
2179
|
+
|
2180
|
+
def initialize(**args)
|
2181
|
+
update!(**args)
|
2182
|
+
end
|
2183
|
+
|
2184
|
+
# Update properties of this object
|
2185
|
+
def update!(**args)
|
2186
|
+
@arguments = args[:arguments] if args.key?(:arguments)
|
2187
|
+
@defined_in_material = args[:defined_in_material] if args.key?(:defined_in_material)
|
2188
|
+
@entry_point = args[:entry_point] if args.key?(:entry_point)
|
2189
|
+
@environment = args[:environment] if args.key?(:environment)
|
2190
|
+
@type = args[:type] if args.key?(:type)
|
2191
|
+
end
|
2192
|
+
end
|
2193
|
+
|
1849
2194
|
# Source describes the location of the source used for the build.
|
1850
2195
|
class Source
|
1851
2196
|
include Google::Apis::Core::Hashable
|
@@ -1974,7 +2319,8 @@ module Google
|
|
1974
2319
|
class Subject
|
1975
2320
|
include Google::Apis::Core::Hashable
|
1976
2321
|
|
1977
|
-
# "": ""
|
2322
|
+
# `"": ""` Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/
|
2323
|
+
# attestation/blob/main/spec/field_types.md#DigestSet
|
1978
2324
|
# Corresponds to the JSON property `digest`
|
1979
2325
|
# @return [Hash<String,String>]
|
1980
2326
|
attr_accessor :digest
|
@@ -2150,6 +2496,15 @@ module Google
|
|
2150
2496
|
# @return [Float]
|
2151
2497
|
attr_accessor :cvss_score
|
2152
2498
|
|
2499
|
+
# Common Vulnerability Scoring System. For details, see https://www.first.org/
|
2500
|
+
# cvss/specification-document This is a message we will try to use for storing
|
2501
|
+
# multiple versions of CVSS. The intention is that as new versions of CVSS
|
2502
|
+
# scores get added, we will be able to modify this message rather than adding
|
2503
|
+
# new protos for each new version of the score.
|
2504
|
+
# Corresponds to the JSON property `cvssv3`
|
2505
|
+
# @return [Google::Apis::OndemandscanningV1::Cvss]
|
2506
|
+
attr_accessor :cvssv3
|
2507
|
+
|
2153
2508
|
# The distro assigned severity for this vulnerability when it is available,
|
2154
2509
|
# otherwise this is the note provider assigned severity. When there are multiple
|
2155
2510
|
# PackageIssues for this vulnerability, they can have different effective
|
@@ -2207,6 +2562,7 @@ module Google
|
|
2207
2562
|
# Update properties of this object
|
2208
2563
|
def update!(**args)
|
2209
2564
|
@cvss_score = args[:cvss_score] if args.key?(:cvss_score)
|
2565
|
+
@cvssv3 = args[:cvssv3] if args.key?(:cvssv3)
|
2210
2566
|
@effective_severity = args[:effective_severity] if args.key?(:effective_severity)
|
2211
2567
|
@fix_available = args[:fix_available] if args.key?(:fix_available)
|
2212
2568
|
@long_description = args[:long_description] if args.key?(:long_description)
|
@@ -16,13 +16,13 @@ module Google
|
|
16
16
|
module Apis
|
17
17
|
module OndemandscanningV1
|
18
18
|
# Version of the google-apis-ondemandscanning_v1 gem
|
19
|
-
GEM_VERSION = "0.
|
19
|
+
GEM_VERSION = "0.15.0"
|
20
20
|
|
21
21
|
# Version of the code generator used to generate this client
|
22
|
-
GENERATOR_VERSION = "0.4.
|
22
|
+
GENERATOR_VERSION = "0.4.1"
|
23
23
|
|
24
24
|
# Revision of the discovery document this client was generated from
|
25
|
-
REVISION = "
|
25
|
+
REVISION = "20220107"
|
26
26
|
end
|
27
27
|
end
|
28
28
|
end
|
@@ -88,6 +88,12 @@ module Google
|
|
88
88
|
include Google::Apis::Core::JsonObjectSupport
|
89
89
|
end
|
90
90
|
|
91
|
+
class Cvss
|
92
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
93
|
+
|
94
|
+
include Google::Apis::Core::JsonObjectSupport
|
95
|
+
end
|
96
|
+
|
91
97
|
class Category
|
92
98
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
93
99
|
|
@@ -238,6 +244,12 @@ module Google
|
|
238
244
|
include Google::Apis::Core::JsonObjectSupport
|
239
245
|
end
|
240
246
|
|
247
|
+
class Material
|
248
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
249
|
+
|
250
|
+
include Google::Apis::Core::JsonObjectSupport
|
251
|
+
end
|
252
|
+
|
241
253
|
class Metadata
|
242
254
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
243
255
|
|
@@ -310,6 +322,36 @@ module Google
|
|
310
322
|
include Google::Apis::Core::JsonObjectSupport
|
311
323
|
end
|
312
324
|
|
325
|
+
class SlsaBuilder
|
326
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
327
|
+
|
328
|
+
include Google::Apis::Core::JsonObjectSupport
|
329
|
+
end
|
330
|
+
|
331
|
+
class SlsaCompleteness
|
332
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
333
|
+
|
334
|
+
include Google::Apis::Core::JsonObjectSupport
|
335
|
+
end
|
336
|
+
|
337
|
+
class SlsaMetadata
|
338
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
339
|
+
|
340
|
+
include Google::Apis::Core::JsonObjectSupport
|
341
|
+
end
|
342
|
+
|
343
|
+
class SlsaProvenance
|
344
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
345
|
+
|
346
|
+
include Google::Apis::Core::JsonObjectSupport
|
347
|
+
end
|
348
|
+
|
349
|
+
class SlsaRecipe
|
350
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
351
|
+
|
352
|
+
include Google::Apis::Core::JsonObjectSupport
|
353
|
+
end
|
354
|
+
|
313
355
|
class Source
|
314
356
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
315
357
|
|
@@ -437,6 +479,8 @@ module Google
|
|
437
479
|
class Representation < Google::Apis::Core::JsonRepresentation
|
438
480
|
property :intoto_provenance, as: 'intotoProvenance', class: Google::Apis::OndemandscanningV1::InTotoProvenance, decorator: Google::Apis::OndemandscanningV1::InTotoProvenance::Representation
|
439
481
|
|
482
|
+
property :intoto_statement, as: 'intotoStatement', class: Google::Apis::OndemandscanningV1::InTotoStatement, decorator: Google::Apis::OndemandscanningV1::InTotoStatement::Representation
|
483
|
+
|
440
484
|
property :provenance, as: 'provenance', class: Google::Apis::OndemandscanningV1::BuildProvenance, decorator: Google::Apis::OndemandscanningV1::BuildProvenance::Representation
|
441
485
|
|
442
486
|
property :provenance_bytes, as: 'provenanceBytes'
|
@@ -472,6 +516,24 @@ module Google
|
|
472
516
|
end
|
473
517
|
end
|
474
518
|
|
519
|
+
class Cvss
|
520
|
+
# @private
|
521
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
522
|
+
property :attack_complexity, as: 'attackComplexity'
|
523
|
+
property :attack_vector, as: 'attackVector'
|
524
|
+
property :authentication, as: 'authentication'
|
525
|
+
property :availability_impact, as: 'availabilityImpact'
|
526
|
+
property :base_score, as: 'baseScore'
|
527
|
+
property :confidentiality_impact, as: 'confidentialityImpact'
|
528
|
+
property :exploitability_score, as: 'exploitabilityScore'
|
529
|
+
property :impact_score, as: 'impactScore'
|
530
|
+
property :integrity_impact, as: 'integrityImpact'
|
531
|
+
property :privileges_required, as: 'privilegesRequired'
|
532
|
+
property :scope, as: 'scope'
|
533
|
+
property :user_interaction, as: 'userInteraction'
|
534
|
+
end
|
535
|
+
end
|
536
|
+
|
475
537
|
class Category
|
476
538
|
# @private
|
477
539
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -550,6 +612,7 @@ module Google
|
|
550
612
|
property :analysis_status, as: 'analysisStatus'
|
551
613
|
property :analysis_status_error, as: 'analysisStatusError', class: Google::Apis::OndemandscanningV1::Status, decorator: Google::Apis::OndemandscanningV1::Status::Representation
|
552
614
|
|
615
|
+
property :archive_time, as: 'archiveTime'
|
553
616
|
property :continuous_analysis, as: 'continuousAnalysis'
|
554
617
|
property :cpe, as: 'cpe'
|
555
618
|
property :last_scan_time, as: 'lastScanTime'
|
@@ -660,12 +723,14 @@ module Google
|
|
660
723
|
class InTotoStatement
|
661
724
|
# @private
|
662
725
|
class Representation < Google::Apis::Core::JsonRepresentation
|
726
|
+
property :_type, as: '_type'
|
663
727
|
property :predicate_type, as: 'predicateType'
|
664
728
|
property :provenance, as: 'provenance', class: Google::Apis::OndemandscanningV1::InTotoProvenance, decorator: Google::Apis::OndemandscanningV1::InTotoProvenance::Representation
|
665
729
|
|
730
|
+
property :slsa_provenance, as: 'slsaProvenance', class: Google::Apis::OndemandscanningV1::SlsaProvenance, decorator: Google::Apis::OndemandscanningV1::SlsaProvenance::Representation
|
731
|
+
|
666
732
|
collection :subject, as: 'subject', class: Google::Apis::OndemandscanningV1::Subject, decorator: Google::Apis::OndemandscanningV1::Subject::Representation
|
667
733
|
|
668
|
-
property :type, as: 'type'
|
669
734
|
end
|
670
735
|
end
|
671
736
|
|
@@ -712,6 +777,14 @@ module Google
|
|
712
777
|
end
|
713
778
|
end
|
714
779
|
|
780
|
+
class Material
|
781
|
+
# @private
|
782
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
783
|
+
hash :digest, as: 'digest'
|
784
|
+
property :uri, as: 'uri'
|
785
|
+
end
|
786
|
+
end
|
787
|
+
|
715
788
|
class Metadata
|
716
789
|
# @private
|
717
790
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -863,6 +936,59 @@ module Google
|
|
863
936
|
end
|
864
937
|
end
|
865
938
|
|
939
|
+
class SlsaBuilder
|
940
|
+
# @private
|
941
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
942
|
+
property :id, as: 'id'
|
943
|
+
end
|
944
|
+
end
|
945
|
+
|
946
|
+
class SlsaCompleteness
|
947
|
+
# @private
|
948
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
949
|
+
property :arguments, as: 'arguments'
|
950
|
+
property :environment, as: 'environment'
|
951
|
+
property :materials, as: 'materials'
|
952
|
+
end
|
953
|
+
end
|
954
|
+
|
955
|
+
class SlsaMetadata
|
956
|
+
# @private
|
957
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
958
|
+
property :build_finished_on, as: 'buildFinishedOn'
|
959
|
+
property :build_invocation_id, as: 'buildInvocationId'
|
960
|
+
property :build_started_on, as: 'buildStartedOn'
|
961
|
+
property :completeness, as: 'completeness', class: Google::Apis::OndemandscanningV1::SlsaCompleteness, decorator: Google::Apis::OndemandscanningV1::SlsaCompleteness::Representation
|
962
|
+
|
963
|
+
property :reproducible, as: 'reproducible'
|
964
|
+
end
|
965
|
+
end
|
966
|
+
|
967
|
+
class SlsaProvenance
|
968
|
+
# @private
|
969
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
970
|
+
property :builder, as: 'builder', class: Google::Apis::OndemandscanningV1::SlsaBuilder, decorator: Google::Apis::OndemandscanningV1::SlsaBuilder::Representation
|
971
|
+
|
972
|
+
collection :materials, as: 'materials', class: Google::Apis::OndemandscanningV1::Material, decorator: Google::Apis::OndemandscanningV1::Material::Representation
|
973
|
+
|
974
|
+
property :metadata, as: 'metadata', class: Google::Apis::OndemandscanningV1::SlsaMetadata, decorator: Google::Apis::OndemandscanningV1::SlsaMetadata::Representation
|
975
|
+
|
976
|
+
property :recipe, as: 'recipe', class: Google::Apis::OndemandscanningV1::SlsaRecipe, decorator: Google::Apis::OndemandscanningV1::SlsaRecipe::Representation
|
977
|
+
|
978
|
+
end
|
979
|
+
end
|
980
|
+
|
981
|
+
class SlsaRecipe
|
982
|
+
# @private
|
983
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
984
|
+
hash :arguments, as: 'arguments'
|
985
|
+
property :defined_in_material, :numeric_string => true, as: 'definedInMaterial'
|
986
|
+
property :entry_point, as: 'entryPoint'
|
987
|
+
hash :environment, as: 'environment'
|
988
|
+
property :type, as: 'type'
|
989
|
+
end
|
990
|
+
end
|
991
|
+
|
866
992
|
class Source
|
867
993
|
# @private
|
868
994
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -945,6 +1071,8 @@ module Google
|
|
945
1071
|
# @private
|
946
1072
|
class Representation < Google::Apis::Core::JsonRepresentation
|
947
1073
|
property :cvss_score, as: 'cvssScore'
|
1074
|
+
property :cvssv3, as: 'cvssv3', class: Google::Apis::OndemandscanningV1::Cvss, decorator: Google::Apis::OndemandscanningV1::Cvss::Representation
|
1075
|
+
|
948
1076
|
property :effective_severity, as: 'effectiveSeverity'
|
949
1077
|
property :fix_available, as: 'fixAvailable'
|
950
1078
|
property :long_description, as: 'longDescription'
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-apis-ondemandscanning_v1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.15.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2022-01-17 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: google-apis-core
|
@@ -58,7 +58,7 @@ licenses:
|
|
58
58
|
metadata:
|
59
59
|
bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
|
60
60
|
changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-ondemandscanning_v1/CHANGELOG.md
|
61
|
-
documentation_uri: https://googleapis.dev/ruby/google-apis-ondemandscanning_v1/v0.
|
61
|
+
documentation_uri: https://googleapis.dev/ruby/google-apis-ondemandscanning_v1/v0.15.0
|
62
62
|
source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-ondemandscanning_v1
|
63
63
|
post_install_message:
|
64
64
|
rdoc_options: []
|
@@ -75,7 +75,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
75
75
|
- !ruby/object:Gem::Version
|
76
76
|
version: '0'
|
77
77
|
requirements: []
|
78
|
-
rubygems_version: 3.
|
78
|
+
rubygems_version: 3.3.5
|
79
79
|
signing_key:
|
80
80
|
specification_version: 4
|
81
81
|
summary: Simple REST client for On-Demand Scanning API V1
|