google-apis-ondemandscanning_v1beta1 0.11.0 → 0.15.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 52b202d4a333e74f4364b9f8afc7e55e4566d1db69a4318896efaf8f5252658f
-  data.tar.gz: d16e1e4e98f76c05fd9d9a1c591c59abed2c259afd9b67374daeb17d0a18fc25
+  metadata.gz: 8e7fda1d157ea594b3b73177139e1f7623e6bbbbe0e45acc279451e5e415cdb5
+  data.tar.gz: 295c42fe10a76e79b490b19e6a72a360f5e38df21f45dc7c1b1fbcf6b6dafd99
 SHA512:
-  metadata.gz: 38ce73d96723d99cf5b8c5171cd1029e375230b9bc408bcff0988f4d5e907427f0c3d2c978479ca5bc102c2562fbf622963bddf93586a129ce33528c8f5116de
-  data.tar.gz: c40858ad1e6fad1dcc5709921af460844ceff58abcb637c67bc827ab35d5217ddb03d1ae927c1c5442e2f5d5b321c3aca02be161df479f950e46184adedea942
+  metadata.gz: 3cb46cbd6e5fb17e6814fb13b840b77b7e97b787f6c87215819782a3946528a807deb1cd45b1a6ca8d0e2773576824b3d2cf59b71bda814d323dc11695307d81
+  data.tar.gz: 525c0ff10d16556cd8d4a6b48525335f67385937f2eb9e6cc92632eacc8f1183729c085fc94441b8f7a69098a9005ebf0260068e64e48e838bbbb07452ceb70b

data/CHANGELOG.md

@@ -1,5 +1,21 @@
 # Release history for google-apis-ondemandscanning_v1beta1
 
+### v0.15.0 (2021-12-09)
+
+* Regenerated from discovery document revision 20211206
+
+### v0.14.0 (2021-11-04)
+
+* Regenerated from discovery document revision 20211029
+
+### v0.13.0 (2021-10-21)
+
+* Unspecified changes
+
+### v0.12.0 (2021-09-01)
+
+* Regenerated from discovery document revision 20210824
+
 ### v0.11.0 (2021-08-05)
 
 * Regenerated from discovery document revision 20210731

data/OVERVIEW.md

@@ -60,8 +60,8 @@ See the class reference docs for information on the methods you can call from a
 
 More detailed descriptions of the Google simple REST clients are available in two documents.
 
- *  The [Usage Guide](https://github.com/googleapis/google-api-ruby-client/blob/master/docs/usage-guide.md) discusses how to make API calls, how to use the provided data structures, and how to work the various features of the client library, including media upload and download, error handling, retries, pagination, and logging.
- *  The [Auth Guide](https://github.com/googleapis/google-api-ruby-client/blob/master/docs/auth-guide.md) discusses authentication in the client libraries, including API keys, OAuth 2.0, service accounts, and environment variables.
+ *  The [Usage Guide](https://github.com/googleapis/google-api-ruby-client/blob/main/docs/usage-guide.md) discusses how to make API calls, how to use the provided data structures, and how to work the various features of the client library, including media upload and download, error handling, retries, pagination, and logging.
+ *  The [Auth Guide](https://github.com/googleapis/google-api-ruby-client/blob/main/docs/auth-guide.md) discusses authentication in the client libraries, including API keys, OAuth 2.0, service accounts, and environment variables.
 
 (Note: the above documents are written for the simple REST clients in general, and their examples may not reflect the Ondemandscanning service in particular.)
 

data/lib/google/apis/ondemandscanning_v1beta1/classes.rb

@@ -253,11 +253,19 @@ module Google
       class BuildOccurrence
         include Google::Apis::Core::Hashable
       
-        # In-toto Provenance representation as defined in spec.
+        # Deprecated. See InTotoStatement for the replacement. In-toto Provenance
+        # representation as defined in spec.
         # Corresponds to the JSON property `intotoProvenance`
         # @return [Google::Apis::OndemandscanningV1beta1::InTotoProvenance]
         attr_accessor :intoto_provenance
       
+        # Spec defined at https://github.com/in-toto/attestation/tree/main/spec#
+        # statement The serialized InTotoStatement will be stored as Envelope.payload.
+        # Envelope.payloadType is always "application/vnd.in-toto+json".
+        # Corresponds to the JSON property `intotoStatement`
+        # @return [Google::Apis::OndemandscanningV1beta1::InTotoStatement]
+        attr_accessor :intoto_statement
+      
         # Provenance of a build. Contains all information needed to verify the full
         # details about the build from source to completion.
         # Corresponds to the JSON property `provenance`
@@ -283,6 +291,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @intoto_provenance = args[:intoto_provenance] if args.key?(:intoto_provenance)
+          @intoto_statement = args[:intoto_statement] if args.key?(:intoto_statement)
           @provenance = args[:provenance] if args.key?(:provenance)
           @provenance_bytes = args[:provenance_bytes] if args.key?(:provenance_bytes)
         end
@@ -402,6 +411,96 @@ module Google
         end
       end
       
+      # Common Vulnerability Scoring System. For details, see https://www.first.org/
+      # cvss/specification-document This is a message we will try to use for storing
+      # multiple versions of CVSS. The intention is that as new versions of CVSS
+      # scores get added, we will be able to modify this message rather than adding
+      # new protos for each new version of the score.
+      class Cvss
+        include Google::Apis::Core::Hashable
+      
+        # 
+        # Corresponds to the JSON property `attackComplexity`
+        # @return [String]
+        attr_accessor :attack_complexity
+      
+        # Base Metrics Represents the intrinsic characteristics of a vulnerability that
+        # are constant over time and across user environments.
+        # Corresponds to the JSON property `attackVector`
+        # @return [String]
+        attr_accessor :attack_vector
+      
+        # 
+        # Corresponds to the JSON property `authentication`
+        # @return [String]
+        attr_accessor :authentication
+      
+        # 
+        # Corresponds to the JSON property `availabilityImpact`
+        # @return [String]
+        attr_accessor :availability_impact
+      
+        # The base score is a function of the base metric scores.
+        # Corresponds to the JSON property `baseScore`
+        # @return [Float]
+        attr_accessor :base_score
+      
+        # 
+        # Corresponds to the JSON property `confidentialityImpact`
+        # @return [String]
+        attr_accessor :confidentiality_impact
+      
+        # 
+        # Corresponds to the JSON property `exploitabilityScore`
+        # @return [Float]
+        attr_accessor :exploitability_score
+      
+        # 
+        # Corresponds to the JSON property `impactScore`
+        # @return [Float]
+        attr_accessor :impact_score
+      
+        # 
+        # Corresponds to the JSON property `integrityImpact`
+        # @return [String]
+        attr_accessor :integrity_impact
+      
+        # 
+        # Corresponds to the JSON property `privilegesRequired`
+        # @return [String]
+        attr_accessor :privileges_required
+      
+        # 
+        # Corresponds to the JSON property `scope`
+        # @return [String]
+        attr_accessor :scope
+      
+        # 
+        # Corresponds to the JSON property `userInteraction`
+        # @return [String]
+        attr_accessor :user_interaction
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @attack_complexity = args[:attack_complexity] if args.key?(:attack_complexity)
+          @attack_vector = args[:attack_vector] if args.key?(:attack_vector)
+          @authentication = args[:authentication] if args.key?(:authentication)
+          @availability_impact = args[:availability_impact] if args.key?(:availability_impact)
+          @base_score = args[:base_score] if args.key?(:base_score)
+          @confidentiality_impact = args[:confidentiality_impact] if args.key?(:confidentiality_impact)
+          @exploitability_score = args[:exploitability_score] if args.key?(:exploitability_score)
+          @impact_score = args[:impact_score] if args.key?(:impact_score)
+          @integrity_impact = args[:integrity_impact] if args.key?(:integrity_impact)
+          @privileges_required = args[:privileges_required] if args.key?(:privileges_required)
+          @scope = args[:scope] if args.key?(:scope)
+          @user_interaction = args[:user_interaction] if args.key?(:user_interaction)
+        end
+      end
+      
       # The category to which the update belongs.
       class Category
         include Google::Apis::Core::Hashable
@@ -574,7 +673,8 @@ module Google
         end
       end
       
-      # 
+      # Deprecated. Prefer to use a regular Occurrence, and populate the Envelope at
+      # the top level of the Occurrence.
       class DsseAttestationOccurrence
         include Google::Apis::Core::Hashable
       
@@ -1039,7 +1139,12 @@ module Google
       class InTotoStatement
         include Google::Apis::Core::Hashable
       
-        # "https://in-toto.io/Provenance/v0.1" for InTotoProvenance.
+        # Always "https://in-toto.io/Statement/v0.1".
+        # Corresponds to the JSON property `_type`
+        # @return [String]
+        attr_accessor :_type
+      
+        # "https://slsa.dev/provenance/v0.1" for SlsaProvenance.
         # Corresponds to the JSON property `predicateType`
         # @return [String]
         attr_accessor :predicate_type
@@ -1049,26 +1154,27 @@ module Google
         # @return [Google::Apis::OndemandscanningV1beta1::InTotoProvenance]
         attr_accessor :provenance
       
+        # 
+        # Corresponds to the JSON property `slsaProvenance`
+        # @return [Google::Apis::OndemandscanningV1beta1::SlsaProvenance]
+        attr_accessor :slsa_provenance
+      
         # 
         # Corresponds to the JSON property `subject`
         # @return [Array<Google::Apis::OndemandscanningV1beta1::Subject>]
         attr_accessor :subject
       
-        # Always "https://in-toto.io/Statement/v0.1".
-        # Corresponds to the JSON property `type`
-        # @return [String]
-        attr_accessor :type
-      
         def initialize(**args)
            update!(**args)
         end
       
         # Update properties of this object
         def update!(**args)
+          @_type = args[:_type] if args.key?(:_type)
           @predicate_type = args[:predicate_type] if args.key?(:predicate_type)
           @provenance = args[:provenance] if args.key?(:provenance)
+          @slsa_provenance = args[:slsa_provenance] if args.key?(:slsa_provenance)
           @subject = args[:subject] if args.key?(:subject)
-          @type = args[:type] if args.key?(:type)
         end
       end
       
@@ -1204,6 +1310,31 @@ module Google
         end
       end
       
+      # 
+      class Material
+        include Google::Apis::Core::Hashable
+      
+        # 
+        # Corresponds to the JSON property `digest`
+        # @return [Hash<String,String>]
+        attr_accessor :digest
+      
+        # 
+        # Corresponds to the JSON property `uri`
+        # @return [String]
+        attr_accessor :uri
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @digest = args[:digest] if args.key?(:digest)
+          @uri = args[:uri] if args.key?(:uri)
+        end
+      end
+      
       # Other properties of the build.
       class Metadata
         include Google::Apis::Core::Hashable
@@ -1326,7 +1457,8 @@ module Google
         # @return [Google::Apis::OndemandscanningV1beta1::DiscoveryOccurrence]
         attr_accessor :discovery
       
-        # Describes an attestation of an artifact using dsse.
+        # Deprecated. Prefer to use a regular Occurrence, and populate the Envelope at
+        # the top level of the Occurrence.
         # Corresponds to the JSON property `dsseAttestation`
         # @return [Google::Apis::OndemandscanningV1beta1::DsseAttestationOccurrence]
         attr_accessor :dsse_attestation
@@ -1567,6 +1699,13 @@ module Google
         # @return [Google::Apis::OndemandscanningV1beta1::Version]
         attr_accessor :affected_version
       
+        # Output only. The distro or language system assigned severity for this
+        # vulnerability when that is available and note provider assigned severity when
+        # it is not available.
+        # Corresponds to the JSON property `effectiveSeverity`
+        # @return [String]
+        attr_accessor :effective_severity
+      
         # Output only. Whether a fix is available for this package.
         # Corresponds to the JSON property `fixAvailable`
         # @return [Boolean]
@@ -1590,6 +1729,11 @@ module Google
         # @return [Google::Apis::OndemandscanningV1beta1::Version]
         attr_accessor :fixed_version
       
+        # The type of package (e.g. OS, MAVEN, GO).
+        # Corresponds to the JSON property `packageType`
+        # @return [String]
+        attr_accessor :package_type
+      
         def initialize(**args)
            update!(**args)
         end
@@ -1599,10 +1743,12 @@ module Google
           @affected_cpe_uri = args[:affected_cpe_uri] if args.key?(:affected_cpe_uri)
           @affected_package = args[:affected_package] if args.key?(:affected_package)
           @affected_version = args[:affected_version] if args.key?(:affected_version)
+          @effective_severity = args[:effective_severity] if args.key?(:effective_severity)
           @fix_available = args[:fix_available] if args.key?(:fix_available)
           @fixed_cpe_uri = args[:fixed_cpe_uri] if args.key?(:fixed_cpe_uri)
           @fixed_package = args[:fixed_package] if args.key?(:fixed_package)
           @fixed_version = args[:fixed_version] if args.key?(:fixed_version)
+          @package_type = args[:package_type] if args.key?(:package_type)
         end
       end
       
@@ -1666,9 +1812,11 @@ module Google
         # Collection of all external inputs that influenced the build on top of recipe.
         # definedInMaterial and recipe.entryPoint. For example, if the recipe type were "
         # make", then this might be the flags passed to make aside from the target,
-        # which is captured in recipe.entryPoint.
+        # which is captured in recipe.entryPoint. Since the arguments field can greatly
+        # vary in structure, depending on the builder and recipe type, this is of form "
+        # Any".
         # Corresponds to the JSON property `arguments`
-        # @return [Array<String>]
+        # @return [Array<Hash<String,Object>>]
         attr_accessor :arguments
       
         # Index in materials containing the recipe steps that are not implied by recipe.
@@ -1691,9 +1839,10 @@ module Google
       
         # Any other builder-controlled inputs necessary for correctly evaluating the
         # recipe. Usually only needed for reproducing the build but not evaluated as
-        # part of policy.
+        # part of policy. Since the environment field can greatly vary in structure,
+        # depending on the builder and recipe type, this is of form "Any".
         # Corresponds to the JSON property `environment`
-        # @return [Hash<String,String>]
+        # @return [Array<Hash<String,Object>>]
         attr_accessor :environment
       
         # URI indicating what type of recipe was performed. It determines the meaning of
@@ -1822,6 +1971,210 @@ module Google
         end
       end
       
+      # 
+      class SlsaBuilder
+        include Google::Apis::Core::Hashable
+      
+        # 
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @id = args[:id] if args.key?(:id)
+        end
+      end
+      
+      # Indicates that the builder claims certain fields in this message to be
+      # complete.
+      class SlsaCompleteness
+        include Google::Apis::Core::Hashable
+      
+        # If true, the builder claims that recipe.arguments is complete, meaning that
+        # all external inputs are properly captured in the recipe.
+        # Corresponds to the JSON property `arguments`
+        # @return [Boolean]
+        attr_accessor :arguments
+        alias_method :arguments?, :arguments
+      
+        # If true, the builder claims that recipe.environment is claimed to be complete.
+        # Corresponds to the JSON property `environment`
+        # @return [Boolean]
+        attr_accessor :environment
+        alias_method :environment?, :environment
+      
+        # If true, the builder claims that materials are complete, usually through some
+        # controls to prevent network access. Sometimes called "hermetic".
+        # Corresponds to the JSON property `materials`
+        # @return [Boolean]
+        attr_accessor :materials
+        alias_method :materials?, :materials
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @arguments = args[:arguments] if args.key?(:arguments)
+          @environment = args[:environment] if args.key?(:environment)
+          @materials = args[:materials] if args.key?(:materials)
+        end
+      end
+      
+      # Other properties of the build.
+      class SlsaMetadata
+        include Google::Apis::Core::Hashable
+      
+        # The timestamp of when the build completed.
+        # Corresponds to the JSON property `buildFinishedOn`
+        # @return [String]
+        attr_accessor :build_finished_on
+      
+        # Identifies the particular build invocation, which can be useful for finding
+        # associated logs or other ad-hoc analysis. The value SHOULD be globally unique,
+        # per in-toto Provenance spec.
+        # Corresponds to the JSON property `buildInvocationId`
+        # @return [String]
+        attr_accessor :build_invocation_id
+      
+        # The timestamp of when the build started.
+        # Corresponds to the JSON property `buildStartedOn`
+        # @return [String]
+        attr_accessor :build_started_on
+      
+        # Indicates that the builder claims certain fields in this message to be
+        # complete.
+        # Corresponds to the JSON property `completeness`
+        # @return [Google::Apis::OndemandscanningV1beta1::SlsaCompleteness]
+        attr_accessor :completeness
+      
+        # If true, the builder claims that running the recipe on materials will produce
+        # bit-for-bit identical output.
+        # Corresponds to the JSON property `reproducible`
+        # @return [Boolean]
+        attr_accessor :reproducible
+        alias_method :reproducible?, :reproducible
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @build_finished_on = args[:build_finished_on] if args.key?(:build_finished_on)
+          @build_invocation_id = args[:build_invocation_id] if args.key?(:build_invocation_id)
+          @build_started_on = args[:build_started_on] if args.key?(:build_started_on)
+          @completeness = args[:completeness] if args.key?(:completeness)
+          @reproducible = args[:reproducible] if args.key?(:reproducible)
+        end
+      end
+      
+      # 
+      class SlsaProvenance
+        include Google::Apis::Core::Hashable
+      
+        # required
+        # Corresponds to the JSON property `builder`
+        # @return [Google::Apis::OndemandscanningV1beta1::SlsaBuilder]
+        attr_accessor :builder
+      
+        # The collection of artifacts that influenced the build including sources,
+        # dependencies, build tools, base images, and so on. This is considered to be
+        # incomplete unless metadata.completeness.materials is true. Unset or null is
+        # equivalent to empty.
+        # Corresponds to the JSON property `materials`
+        # @return [Array<Google::Apis::OndemandscanningV1beta1::Material>]
+        attr_accessor :materials
+      
+        # Other properties of the build.
+        # Corresponds to the JSON property `metadata`
+        # @return [Google::Apis::OndemandscanningV1beta1::SlsaMetadata]
+        attr_accessor :metadata
+      
+        # Steps taken to build the artifact. For a TaskRun, typically each container
+        # corresponds to one step in the recipe.
+        # Corresponds to the JSON property `recipe`
+        # @return [Google::Apis::OndemandscanningV1beta1::SlsaRecipe]
+        attr_accessor :recipe
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @builder = args[:builder] if args.key?(:builder)
+          @materials = args[:materials] if args.key?(:materials)
+          @metadata = args[:metadata] if args.key?(:metadata)
+          @recipe = args[:recipe] if args.key?(:recipe)
+        end
+      end
+      
+      # Steps taken to build the artifact. For a TaskRun, typically each container
+      # corresponds to one step in the recipe.
+      class SlsaRecipe
+        include Google::Apis::Core::Hashable
+      
+        # Collection of all external inputs that influenced the build on top of recipe.
+        # definedInMaterial and recipe.entryPoint. For example, if the recipe type were "
+        # make", then this might be the flags passed to make aside from the target,
+        # which is captured in recipe.entryPoint. Depending on the recipe Type, the
+        # structure may be different.
+        # Corresponds to the JSON property `arguments`
+        # @return [Hash<String,Object>]
+        attr_accessor :arguments
+      
+        # Index in materials containing the recipe steps that are not implied by recipe.
+        # type. For example, if the recipe type were "make", then this would point to
+        # the source containing the Makefile, not the make program itself. Set to -1 if
+        # the recipe doesn't come from a material, as zero is default unset value for
+        # int64.
+        # Corresponds to the JSON property `definedInMaterial`
+        # @return [Fixnum]
+        attr_accessor :defined_in_material
+      
+        # String identifying the entry point into the build. This is often a path to a
+        # configuration file and/or a target label within that file. The syntax and
+        # meaning are defined by recipe.type. For example, if the recipe type were "make"
+        # , then this would reference the directory in which to run make as well as
+        # which target to use.
+        # Corresponds to the JSON property `entryPoint`
+        # @return [String]
+        attr_accessor :entry_point
+      
+        # Any other builder-controlled inputs necessary for correctly evaluating the
+        # recipe. Usually only needed for reproducing the build but not evaluated as
+        # part of policy. Depending on the recipe Type, the structure may be different.
+        # Corresponds to the JSON property `environment`
+        # @return [Hash<String,Object>]
+        attr_accessor :environment
+      
+        # URI indicating what type of recipe was performed. It determines the meaning of
+        # recipe.entryPoint, recipe.arguments, recipe.environment, and materials.
+        # Corresponds to the JSON property `type`
+        # @return [String]
+        attr_accessor :type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @arguments = args[:arguments] if args.key?(:arguments)
+          @defined_in_material = args[:defined_in_material] if args.key?(:defined_in_material)
+          @entry_point = args[:entry_point] if args.key?(:entry_point)
+          @environment = args[:environment] if args.key?(:environment)
+          @type = args[:type] if args.key?(:type)
+        end
+      end
+      
       # Source describes the location of the source used for the build.
       class Source
         include Google::Apis::Core::Hashable
@@ -1950,7 +2303,8 @@ module Google
       class Subject
         include Google::Apis::Core::Hashable
       
-        # "": ""
+        # "": "" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/
+        # attestation/blob/main/spec/field_types.md#DigestSet
         # Corresponds to the JSON property `digest`
         # @return [Hash<String,String>]
         attr_accessor :digest
@@ -2126,8 +2480,23 @@ module Google
         # @return [Float]
         attr_accessor :cvss_score
       
+        # Common Vulnerability Scoring System. For details, see https://www.first.org/
+        # cvss/specification-document This is a message we will try to use for storing
+        # multiple versions of CVSS. The intention is that as new versions of CVSS
+        # scores get added, we will be able to modify this message rather than adding
+        # new protos for each new version of the score.
+        # Corresponds to the JSON property `cvssv3`
+        # @return [Google::Apis::OndemandscanningV1beta1::Cvss]
+        attr_accessor :cvssv3
+      
         # The distro assigned severity for this vulnerability when it is available,
-        # otherwise this is the note provider assigned severity.
+        # otherwise this is the note provider assigned severity. When there are multiple
+        # PackageIssues for this vulnerability, they can have different effective
+        # severities because some might be provided by the distro while others are
+        # provided by the language ecosystem for a language pack. For this reason, it is
+        # advised to use the effective severity on the PackageIssue level. In the case
+        # where multiple PackageIssues have differing effective severities, this field
+        # should be the highest severity for any of the PackageIssues.
         # Corresponds to the JSON property `effectiveSeverity`
         # @return [String]
         attr_accessor :effective_severity
@@ -2177,6 +2546,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @cvss_score = args[:cvss_score] if args.key?(:cvss_score)
+          @cvssv3 = args[:cvssv3] if args.key?(:cvssv3)
           @effective_severity = args[:effective_severity] if args.key?(:effective_severity)
           @fix_available = args[:fix_available] if args.key?(:fix_available)
           @long_description = args[:long_description] if args.key?(:long_description)

data/lib/google/apis/ondemandscanning_v1beta1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module OndemandscanningV1beta1
       # Version of the google-apis-ondemandscanning_v1beta1 gem
-      GEM_VERSION = "0.11.0"
+      GEM_VERSION = "0.15.0"
 
       # Version of the code generator used to generate this client
       GENERATOR_VERSION = "0.4.0"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20210731"
+      REVISION = "20211206"
     end
   end
 end

data/lib/google/apis/ondemandscanning_v1beta1/representations.rb

@@ -88,6 +88,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class Cvss
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Category
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -238,6 +244,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class Material
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Metadata
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -310,6 +322,36 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class SlsaBuilder
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class SlsaCompleteness
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class SlsaMetadata
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class SlsaProvenance
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class SlsaRecipe
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Source
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -436,6 +478,8 @@ module Google
         class Representation < Google::Apis::Core::JsonRepresentation
           property :intoto_provenance, as: 'intotoProvenance', class: Google::Apis::OndemandscanningV1beta1::InTotoProvenance, decorator: Google::Apis::OndemandscanningV1beta1::InTotoProvenance::Representation
       
+          property :intoto_statement, as: 'intotoStatement', class: Google::Apis::OndemandscanningV1beta1::InTotoStatement, decorator: Google::Apis::OndemandscanningV1beta1::InTotoStatement::Representation
+      
           property :provenance, as: 'provenance', class: Google::Apis::OndemandscanningV1beta1::BuildProvenance, decorator: Google::Apis::OndemandscanningV1beta1::BuildProvenance::Representation
       
           property :provenance_bytes, as: 'provenanceBytes'
@@ -471,6 +515,24 @@ module Google
         end
       end
       
+      class Cvss
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :attack_complexity, as: 'attackComplexity'
+          property :attack_vector, as: 'attackVector'
+          property :authentication, as: 'authentication'
+          property :availability_impact, as: 'availabilityImpact'
+          property :base_score, as: 'baseScore'
+          property :confidentiality_impact, as: 'confidentialityImpact'
+          property :exploitability_score, as: 'exploitabilityScore'
+          property :impact_score, as: 'impactScore'
+          property :integrity_impact, as: 'integrityImpact'
+          property :privileges_required, as: 'privilegesRequired'
+          property :scope, as: 'scope'
+          property :user_interaction, as: 'userInteraction'
+        end
+      end
+      
       class Category
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -659,12 +721,14 @@ module Google
       class InTotoStatement
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
+          property :_type, as: '_type'
           property :predicate_type, as: 'predicateType'
           property :provenance, as: 'provenance', class: Google::Apis::OndemandscanningV1beta1::InTotoProvenance, decorator: Google::Apis::OndemandscanningV1beta1::InTotoProvenance::Representation
       
+          property :slsa_provenance, as: 'slsaProvenance', class: Google::Apis::OndemandscanningV1beta1::SlsaProvenance, decorator: Google::Apis::OndemandscanningV1beta1::SlsaProvenance::Representation
+      
           collection :subject, as: 'subject', class: Google::Apis::OndemandscanningV1beta1::Subject, decorator: Google::Apis::OndemandscanningV1beta1::Subject::Representation
       
-          property :type, as: 'type'
         end
       end
       
@@ -711,6 +775,14 @@ module Google
         end
       end
       
+      class Material
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          hash :digest, as: 'digest'
+          property :uri, as: 'uri'
+        end
+      end
+      
       class Metadata
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -799,11 +871,13 @@ module Google
           property :affected_package, as: 'affectedPackage'
           property :affected_version, as: 'affectedVersion', class: Google::Apis::OndemandscanningV1beta1::Version, decorator: Google::Apis::OndemandscanningV1beta1::Version::Representation
       
+          property :effective_severity, as: 'effectiveSeverity'
           property :fix_available, as: 'fixAvailable'
           property :fixed_cpe_uri, as: 'fixedCpeUri'
           property :fixed_package, as: 'fixedPackage'
           property :fixed_version, as: 'fixedVersion', class: Google::Apis::OndemandscanningV1beta1::Version, decorator: Google::Apis::OndemandscanningV1beta1::Version::Representation
       
+          property :package_type, as: 'packageType'
         end
       end
       
@@ -830,7 +904,7 @@ module Google
           collection :arguments, as: 'arguments'
           property :defined_in_material, :numeric_string => true, as: 'definedInMaterial'
           property :entry_point, as: 'entryPoint'
-          hash :environment, as: 'environment'
+          collection :environment, as: 'environment'
           property :type, as: 'type'
         end
       end
@@ -860,6 +934,59 @@ module Google
         end
       end
       
+      class SlsaBuilder
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :id, as: 'id'
+        end
+      end
+      
+      class SlsaCompleteness
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :arguments, as: 'arguments'
+          property :environment, as: 'environment'
+          property :materials, as: 'materials'
+        end
+      end
+      
+      class SlsaMetadata
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :build_finished_on, as: 'buildFinishedOn'
+          property :build_invocation_id, as: 'buildInvocationId'
+          property :build_started_on, as: 'buildStartedOn'
+          property :completeness, as: 'completeness', class: Google::Apis::OndemandscanningV1beta1::SlsaCompleteness, decorator: Google::Apis::OndemandscanningV1beta1::SlsaCompleteness::Representation
+      
+          property :reproducible, as: 'reproducible'
+        end
+      end
+      
+      class SlsaProvenance
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :builder, as: 'builder', class: Google::Apis::OndemandscanningV1beta1::SlsaBuilder, decorator: Google::Apis::OndemandscanningV1beta1::SlsaBuilder::Representation
+      
+          collection :materials, as: 'materials', class: Google::Apis::OndemandscanningV1beta1::Material, decorator: Google::Apis::OndemandscanningV1beta1::Material::Representation
+      
+          property :metadata, as: 'metadata', class: Google::Apis::OndemandscanningV1beta1::SlsaMetadata, decorator: Google::Apis::OndemandscanningV1beta1::SlsaMetadata::Representation
+      
+          property :recipe, as: 'recipe', class: Google::Apis::OndemandscanningV1beta1::SlsaRecipe, decorator: Google::Apis::OndemandscanningV1beta1::SlsaRecipe::Representation
+      
+        end
+      end
+      
+      class SlsaRecipe
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          hash :arguments, as: 'arguments'
+          property :defined_in_material, :numeric_string => true, as: 'definedInMaterial'
+          property :entry_point, as: 'entryPoint'
+          hash :environment, as: 'environment'
+          property :type, as: 'type'
+        end
+      end
+      
       class Source
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -942,6 +1069,8 @@ module Google
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
           property :cvss_score, as: 'cvssScore'
+          property :cvssv3, as: 'cvssv3', class: Google::Apis::OndemandscanningV1beta1::Cvss, decorator: Google::Apis::OndemandscanningV1beta1::Cvss::Representation
+      
           property :effective_severity, as: 'effectiveSeverity'
           property :fix_available, as: 'fixAvailable'
           property :long_description, as: 'longDescription'

data/lib/google/apis/ondemandscanning_v1beta1.rb

@@ -29,7 +29,7 @@ module Google
       # This is NOT the gem version.
       VERSION = 'V1beta1'
 
-      # See, edit, configure, and delete your Google Cloud Platform data
+      # See, edit, configure, and delete your Google Cloud data and see the email address for your Google Account.
       AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
     end
   end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-ondemandscanning_v1beta1
 version: !ruby/object:Gem::Version
-  version: 0.11.0
+  version: 0.15.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-08-09 00:00:00.000000000 Z
+date: 2021-12-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -57,9 +57,9 @@ licenses:
 - Apache-2.0
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
-  changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-ondemandscanning_v1beta1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-ondemandscanning_v1beta1/v0.11.0
-  source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-ondemandscanning_v1beta1
+  changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-ondemandscanning_v1beta1/CHANGELOG.md
+  documentation_uri: https://googleapis.dev/ruby/google-apis-ondemandscanning_v1beta1/v0.15.0
+  source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-ondemandscanning_v1beta1
 post_install_message: 
 rdoc_options: []
 require_paths: