google-apis-securitycenter_v1 0.52.0 → 0.54.0

data/lib/google/apis/securitycenter_v1/classes.rb

@@ -287,38 +287,6 @@ module Google
         end
       end
       
-      # A finding that is associated with this node in the exposure path.
-      class AssociatedFinding
-        include Google::Apis::Core::Hashable
-      
-        # Canonical name of the associated findings. Example: organizations/123/sources/
-        # 456/findings/789
-        # Corresponds to the JSON property `canonicalFindingName`
-        # @return [String]
-        attr_accessor :canonical_finding_name
-      
-        # The additional taxonomy group within findings from a given source.
-        # Corresponds to the JSON property `findingCategory`
-        # @return [String]
-        attr_accessor :finding_category
-      
-        # Full resource name of the finding.
-        # Corresponds to the JSON property `name`
-        # @return [String]
-        attr_accessor :name
-      
-        def initialize(**args)
-           update!(**args)
-        end
-      
-        # Update properties of this object
-        def update!(**args)
-          @canonical_finding_name = args[:canonical_finding_name] if args.key?(:canonical_finding_name)
-          @finding_category = args[:finding_category] if args.key?(:finding_category)
-          @name = args[:name] if args.key?(:name)
-        end
-      end
-      
       # Specifies the audit configuration for a service. The configuration determines
       # which permission types are logged, and what identities, if any, are exempted
       # from logging. An AuditConfig must have one or more AuditLogConfigs. If there
@@ -912,32 +880,6 @@ module Google
         end
       end
       
-      # Represents a connection between a source node and a destination node in this
-      # exposure path.
-      class Edge
-        include Google::Apis::Core::Hashable
-      
-        # This is the resource name of the destination node.
-        # Corresponds to the JSON property `destination`
-        # @return [String]
-        attr_accessor :destination
-      
-        # This is the resource name of the source node.
-        # Corresponds to the JSON property `source`
-        # @return [String]
-        attr_accessor :source
-      
-        def initialize(**args)
-           update!(**args)
-        end
-      
-        # Update properties of this object
-        def update!(**args)
-          @destination = args[:destination] if args.key?(:destination)
-          @source = args[:source] if args.key?(:source)
-        end
-      end
-      
       # A generic empty message that you can re-use to avoid defining duplicated empty
       # messages in your APIs. A typical example is to use it as the request or the
       # response type of an API method. For instance: service Foo ` rpc Bar(google.
@@ -1342,12 +1284,6 @@ module Google
         # @return [String]
         attr_accessor :next_steps
       
-        # Contains information about the org policy constraints associated with the
-        # finding.
-        # Corresponds to the JSON property `orgPolicyConstraints`
-        # @return [Array<Google::Apis::SecuritycenterV1::OrgPolicyConstraint>]
-        attr_accessor :org_policy_constraints
-      
         # The relative resource name of the source the finding belongs to. See: https://
         # cloud.google.com/apis/design/resource_names#relative_resource_name This field
         # is immutable after creation time. For example: "organizations/`organization_id`
@@ -1443,7 +1379,6 @@ module Google
           @mute_update_time = args[:mute_update_time] if args.key?(:mute_update_time)
           @name = args[:name] if args.key?(:name)
           @next_steps = args[:next_steps] if args.key?(:next_steps)
-          @org_policy_constraints = args[:org_policy_constraints] if args.key?(:org_policy_constraints)
           @parent = args[:parent] if args.key?(:parent)
           @parent_display_name = args[:parent_display_name] if args.key?(:parent_display_name)
           @processes = args[:processes] if args.key?(:processes)
@@ -1682,42 +1617,90 @@ module Google
         end
       end
       
-      # A resource that is exposed as a result of a finding.
-      class GoogleCloudSecuritycenterV1ExposedResource
+      # Defines the properties in a custom module configuration for Security Health
+      # Analytics. Use the custom module configuration to create custom detectors that
+      # generate custom findings for resources that you specify.
+      class GoogleCloudSecuritycenterV1CustomConfig
         include Google::Apis::Core::Hashable
       
-        # Human readable name of the resource that is exposed.
-        # Corresponds to the JSON property `displayName`
+        # A set of optional name-value pairs that define custom source properties to
+        # return with each finding that is generated by the custom module. The custom
+        # source properties that are defined here are included in the finding JSON under
+        # `sourceProperties`.
+        # Corresponds to the JSON property `customOutput`
+        # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1CustomOutputSpec]
+        attr_accessor :custom_output
+      
+        # Text that describes the vulnerability or misconfiguration that the custom
+        # module detects. This explanation is returned with each finding instance to
+        # help investigators understand the detected issue. The text must be enclosed in
+        # quotation marks.
+        # Corresponds to the JSON property `description`
         # @return [String]
-        attr_accessor :display_name
+        attr_accessor :description
       
-        # The ways in which this resource is exposed. Examples: Read, Write
-        # Corresponds to the JSON property `methods`
-        # @return [Array<String>]
-        attr_accessor :methods_prop
+        # Represents a textual expression in the Common Expression Language (CEL) syntax.
+        # CEL is a C-like expression language. The syntax and semantics of CEL are
+        # documented at https://github.com/google/cel-spec. Example (Comparison): title:
+        # "Summary size limit" description: "Determines if a summary is less than 100
+        # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
+        # Requestor is owner" description: "Determines if requestor is the document
+        # owner" expression: "document.owner == request.auth.claims.email" Example (
+        # Logic): title: "Public documents" description: "Determine whether the document
+        # should be publicly visible" expression: "document.type != 'private' &&
+        # document.type != 'internal'" Example (Data Manipulation): title: "Notification
+        # string" description: "Create a notification string with a timestamp."
+        # expression: "'New message received at ' + string(document.create_time)" The
+        # exact variables and functions that may be referenced within an expression are
+        # determined by the service that evaluates it. See the service documentation for
+        # additional information.
+        # Corresponds to the JSON property `predicate`
+        # @return [Google::Apis::SecuritycenterV1::Expr]
+        attr_accessor :predicate
       
-        # Exposed Resource Name e.g.: `organizations/123/attackExposureResults/456/
-        # exposedResources/789`
-        # Corresponds to the JSON property `name`
+        # An explanation of the recommended steps that security teams can take to
+        # resolve the detected issue. This explanation is returned with each finding
+        # generated by this module in the `nextSteps` property of the finding JSON.
+        # Corresponds to the JSON property `recommendation`
         # @return [String]
-        attr_accessor :name
+        attr_accessor :recommendation
       
-        # The name of the resource that is exposed. See: https://cloud.google.com/apis/
-        # design/resource_names#full_resource_name
-        # Corresponds to the JSON property `resource`
-        # @return [String]
-        attr_accessor :resource
+        # Resource for selecting resource type.
+        # Corresponds to the JSON property `resourceSelector`
+        # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1ResourceSelector]
+        attr_accessor :resource_selector
       
-        # The resource type of the exposed resource. See: https://cloud.google.com/asset-
-        # inventory/docs/supported-asset-types
-        # Corresponds to the JSON property `resourceType`
+        # The severity to assign to findings generated by the module.
+        # Corresponds to the JSON property `severity`
         # @return [String]
-        attr_accessor :resource_type
+        attr_accessor :severity
       
-        # How valuable this resource is.
-        # Corresponds to the JSON property `resourceValue`
-        # @return [String]
-        attr_accessor :resource_value
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @custom_output = args[:custom_output] if args.key?(:custom_output)
+          @description = args[:description] if args.key?(:description)
+          @predicate = args[:predicate] if args.key?(:predicate)
+          @recommendation = args[:recommendation] if args.key?(:recommendation)
+          @resource_selector = args[:resource_selector] if args.key?(:resource_selector)
+          @severity = args[:severity] if args.key?(:severity)
+        end
+      end
+      
+      # A set of optional name-value pairs that define custom source properties to
+      # return with each finding that is generated by the custom module. The custom
+      # source properties that are defined here are included in the finding JSON under
+      # `sourceProperties`.
+      class GoogleCloudSecuritycenterV1CustomOutputSpec
+        include Google::Apis::Core::Hashable
+      
+        # A list of custom output properties to add to the finding.
+        # Corresponds to the JSON property `properties`
+        # @return [Array<Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1Property>]
+        attr_accessor :properties
       
         def initialize(**args)
            update!(**args)
@@ -1725,50 +1708,62 @@ module Google
       
         # Update properties of this object
         def update!(**args)
-          @display_name = args[:display_name] if args.key?(:display_name)
-          @methods_prop = args[:methods_prop] if args.key?(:methods_prop)
-          @name = args[:name] if args.key?(:name)
-          @resource = args[:resource] if args.key?(:resource)
-          @resource_type = args[:resource_type] if args.key?(:resource_type)
-          @resource_value = args[:resource_value] if args.key?(:resource_value)
+          @properties = args[:properties] if args.key?(:properties)
         end
       end
       
-      # A path that an attacker could take to reach an exposed resource.
-      class GoogleCloudSecuritycenterV1ExposurePath
+      # An EffectiveSecurityHealthAnalyticsCustomModule is the representation of a
+      # Security Health Analytics custom module at a specified level of the resource
+      # hierarchy: organization, folder, or project. If a custom module is inherited
+      # from a parent organization or folder, the value of the `enablementState`
+      # property in EffectiveSecurityHealthAnalyticsCustomModule is set to the value
+      # that is effective in the parent, instead of `INHERITED`. For example, if the
+      # module is enabled in a parent organization or folder, the effective
+      # enablement_state for the module in all child folders or projects is also `
+      # enabled`. EffectiveSecurityHealthAnalyticsCustomModule is read-only.
+      class GoogleCloudSecuritycenterV1EffectiveSecurityHealthAnalyticsCustomModule
         include Google::Apis::Core::Hashable
       
-        # A list of the edges between nodes in this exposure path.
-        # Corresponds to the JSON property `edges`
-        # @return [Array<Google::Apis::SecuritycenterV1::Edge>]
-        attr_accessor :edges
+        # Defines the properties in a custom module configuration for Security Health
+        # Analytics. Use the custom module configuration to create custom detectors that
+        # generate custom findings for resources that you specify.
+        # Corresponds to the JSON property `customConfig`
+        # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1CustomConfig]
+        attr_accessor :custom_config
       
-        # A resource that is exposed as a result of a finding.
-        # Corresponds to the JSON property `exposedResource`
-        # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1ExposedResource]
-        attr_accessor :exposed_resource
+        # Output only. The display name for the custom module. The name must be between
+        # 1 and 128 characters, start with a lowercase letter, and contain alphanumeric
+        # characters or underscores only.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
       
-        # Exposure Path Name e.g.: `organizations/123/attackExposureResults/456/
-        # exposurePaths/789`
+        # Output only. The effective state of enablement for the module at the given
+        # level of the hierarchy.
+        # Corresponds to the JSON property `enablementState`
+        # @return [String]
+        attr_accessor :enablement_state
+      
+        # Output only. The resource name of the custom module. Its format is "
+        # organizations/`organization`/securityHealthAnalyticsSettings/
+        # effectiveCustomModules/`customModule`", or "folders/`folder`/
+        # securityHealthAnalyticsSettings/effectiveCustomModules/`customModule`", or "
+        # projects/`project`/securityHealthAnalyticsSettings/effectiveCustomModules/`
+        # customModule`"
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # A list of nodes that exist in this exposure path.
-        # Corresponds to the JSON property `pathNodes`
-        # @return [Array<Google::Apis::SecuritycenterV1::PathNode>]
-        attr_accessor :path_nodes
-      
         def initialize(**args)
            update!(**args)
         end
       
         # Update properties of this object
         def update!(**args)
-          @edges = args[:edges] if args.key?(:edges)
-          @exposed_resource = args[:exposed_resource] if args.key?(:exposed_resource)
+          @custom_config = args[:custom_config] if args.key?(:custom_config)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @enablement_state = args[:enablement_state] if args.key?(:enablement_state)
           @name = args[:name] if args.key?(:name)
-          @path_nodes = args[:path_nodes] if args.key?(:path_nodes)
         end
       end
       
@@ -1927,6 +1922,45 @@ module Google
         end
       end
       
+      # An individual name-value pair that defines a custom source property.
+      class GoogleCloudSecuritycenterV1Property
+        include Google::Apis::Core::Hashable
+      
+        # Name of the property for the custom output.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # Represents a textual expression in the Common Expression Language (CEL) syntax.
+        # CEL is a C-like expression language. The syntax and semantics of CEL are
+        # documented at https://github.com/google/cel-spec. Example (Comparison): title:
+        # "Summary size limit" description: "Determines if a summary is less than 100
+        # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
+        # Requestor is owner" description: "Determines if requestor is the document
+        # owner" expression: "document.owner == request.auth.claims.email" Example (
+        # Logic): title: "Public documents" description: "Determine whether the document
+        # should be publicly visible" expression: "document.type != 'private' &&
+        # document.type != 'internal'" Example (Data Manipulation): title: "Notification
+        # string" description: "Create a notification string with a timestamp."
+        # expression: "'New message received at ' + string(document.create_time)" The
+        # exact variables and functions that may be referenced within an expression are
+        # determined by the service that evaluates it. See the service documentation for
+        # additional information.
+        # Corresponds to the JSON property `valueExpression`
+        # @return [Google::Apis::SecuritycenterV1::Expr]
+        attr_accessor :value_expression
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @name = args[:name] if args.key?(:name)
+          @value_expression = args[:value_expression] if args.key?(:value_expression)
+        end
+      end
+      
       # Information related to the Google Cloud resource.
       class GoogleCloudSecuritycenterV1Resource
         include Google::Apis::Core::Hashable
@@ -1991,65 +2025,14 @@ module Google
         end
       end
       
-      # A resource value config is a mapping configuration of user's tag values to
-      # resource values. Used by the attack path simulation.
-      class GoogleCloudSecuritycenterV1ResourceValueConfig
+      # Resource for selecting resource type.
+      class GoogleCloudSecuritycenterV1ResourceSelector
         include Google::Apis::Core::Hashable
       
-        # Output only. Timestamp this resource value config was created.
-        # Corresponds to the JSON property `createTime`
-        # @return [String]
-        attr_accessor :create_time
-      
-        # Description of the resource value config.
-        # Corresponds to the JSON property `description`
-        # @return [String]
-        attr_accessor :description
-      
-        # Name for the resource value config
-        # Corresponds to the JSON property `name`
-        # @return [String]
-        attr_accessor :name
-      
-        # List of resource labels to search for, evaluated with AND. E.g. "
-        # resource_labels_selector": `"key": "value", "env": "prod"` will match
-        # resources with labels "key": "value" AND "env": "prod" https://cloud.google.
-        # com/resource-manager/docs/creating-managing-labels
-        # Corresponds to the JSON property `resourceLabelsSelector`
-        # @return [Hash<String,String>]
-        attr_accessor :resource_labels_selector
-      
-        # Apply resource_value only to resources that match resource_type. resource_type
-        # will be checked with "AND" of other resources. E.g. "storage.googleapis.com/
-        # Bucket" with resource_value "HIGH" will apply "HIGH" value only to "storage.
-        # googleapis.com/Bucket" resources.
-        # Corresponds to the JSON property `resourceType`
-        # @return [String]
-        attr_accessor :resource_type
-      
-        # Required. Resource value level this expression represents
-        # Corresponds to the JSON property `resourceValue`
-        # @return [String]
-        attr_accessor :resource_value
-      
-        # Project or folder to scope this config to. For example, "project/456" would
-        # apply this config only to resources in "project/456" scope will be checked
-        # with "AND" of other resources.
-        # Corresponds to the JSON property `scope`
-        # @return [String]
-        attr_accessor :scope
-      
-        # Required. Tag values combined with AND to check against. Values in the form "
-        # tagValues/123" E.g. [ "tagValues/123", "tagValues/456", "tagValues/789" ]
-        # https://cloud.google.com/resource-manager/docs/tags/tags-creating-and-managing
-        # Corresponds to the JSON property `tagValues`
+        # The resource types to run the detector on.
+        # Corresponds to the JSON property `resourceTypes`
         # @return [Array<String>]
-        attr_accessor :tag_values
-      
-        # Output only. Timestamp this resource value config was last updated.
-        # Corresponds to the JSON property `updateTime`
-        # @return [String]
-        attr_accessor :update_time
+        attr_accessor :resource_types
       
         def initialize(**args)
            update!(**args)
@@ -2057,15 +2040,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
-          @create_time = args[:create_time] if args.key?(:create_time)
-          @description = args[:description] if args.key?(:description)
-          @name = args[:name] if args.key?(:name)
-          @resource_labels_selector = args[:resource_labels_selector] if args.key?(:resource_labels_selector)
-          @resource_type = args[:resource_type] if args.key?(:resource_type)
-          @resource_value = args[:resource_value] if args.key?(:resource_value)
-          @scope = args[:scope] if args.key?(:scope)
-          @tag_values = args[:tag_values] if args.key?(:tag_values)
-          @update_time = args[:update_time] if args.key?(:update_time)
+          @resource_types = args[:resource_types] if args.key?(:resource_types)
         end
       end
       
@@ -2094,6 +2069,80 @@ module Google
         end
       end
       
+      # Represents an instance of a Security Health Analytics custom module, including
+      # its full module name, display name, enablement state, and last updated time.
+      # You can create a custom module at the organization, folder, or project level.
+      # Custom modules that you create at the organization or folder level are
+      # inherited by the child folders and projects.
+      class GoogleCloudSecuritycenterV1SecurityHealthAnalyticsCustomModule
+        include Google::Apis::Core::Hashable
+      
+        # Output only. If empty, indicates that the custom module was created in the
+        # organization, folder, or project in which you are viewing the custom module.
+        # Otherwise, `ancestor_module` specifies the organization or folder from which
+        # the custom module is inherited.
+        # Corresponds to the JSON property `ancestorModule`
+        # @return [String]
+        attr_accessor :ancestor_module
+      
+        # Defines the properties in a custom module configuration for Security Health
+        # Analytics. Use the custom module configuration to create custom detectors that
+        # generate custom findings for resources that you specify.
+        # Corresponds to the JSON property `customConfig`
+        # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1CustomConfig]
+        attr_accessor :custom_config
+      
+        # The display name of the Security Health Analytics custom module. This display
+        # name becomes the finding category for all findings that are returned by this
+        # custom module. The display name must be between 1 and 128 characters, start
+        # with a lowercase letter, and contain alphanumeric characters or underscores
+        # only.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # The enablement state of the custom module.
+        # Corresponds to the JSON property `enablementState`
+        # @return [String]
+        attr_accessor :enablement_state
+      
+        # Output only. The editor that last updated the custom module.
+        # Corresponds to the JSON property `lastEditor`
+        # @return [String]
+        attr_accessor :last_editor
+      
+        # Immutable. The resource name of the custom module. Its format is "
+        # organizations/`organization`/securityHealthAnalyticsSettings/customModules/`
+        # customModule`", or "folders/`folder`/securityHealthAnalyticsSettings/
+        # customModules/`customModule`", or "projects/`project`/
+        # securityHealthAnalyticsSettings/customModules/`customModule`" The id `
+        # customModule` is server-generated and is not user settable. It will be a
+        # numeric id containing 1-20 digits.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # Output only. The time at which the custom module was last updated.
+        # Corresponds to the JSON property `updateTime`
+        # @return [String]
+        attr_accessor :update_time
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @ancestor_module = args[:ancestor_module] if args.key?(:ancestor_module)
+          @custom_config = args[:custom_config] if args.key?(:custom_config)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @enablement_state = args[:enablement_state] if args.key?(:enablement_state)
+          @last_editor = args[:last_editor] if args.key?(:last_editor)
+          @name = args[:name] if args.key?(:name)
+          @update_time = args[:update_time] if args.key?(:update_time)
+        end
+      end
+      
       # Response of asset discovery run
       class GoogleCloudSecuritycenterV1beta1RunAssetDiscoveryResponse
         include Google::Apis::Core::Hashable
@@ -3088,6 +3137,59 @@ module Google
         end
       end
       
+      # Response message for listing descendant security health analytics custom
+      # modules.
+      class ListDescendantSecurityHealthAnalyticsCustomModulesResponse
+        include Google::Apis::Core::Hashable
+      
+        # If not empty, indicates that there may be more custom modules to be returned.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        # Custom modules belonging to the requested parent and its descendants.
+        # Corresponds to the JSON property `securityHealthAnalyticsCustomModules`
+        # @return [Array<Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1SecurityHealthAnalyticsCustomModule>]
+        attr_accessor :security_health_analytics_custom_modules
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+          @security_health_analytics_custom_modules = args[:security_health_analytics_custom_modules] if args.key?(:security_health_analytics_custom_modules)
+        end
+      end
+      
+      # Response message for listing effective security health analytics custom
+      # modules.
+      class ListEffectiveSecurityHealthAnalyticsCustomModulesResponse
+        include Google::Apis::Core::Hashable
+      
+        # Effective custom modules belonging to the requested parent.
+        # Corresponds to the JSON property `effectiveSecurityHealthAnalyticsCustomModules`
+        # @return [Array<Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1EffectiveSecurityHealthAnalyticsCustomModule>]
+        attr_accessor :effective_security_health_analytics_custom_modules
+      
+        # If not empty, indicates that there may be more effective custom modules to be
+        # returned.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @effective_security_health_analytics_custom_modules = args[:effective_security_health_analytics_custom_modules] if args.key?(:effective_security_health_analytics_custom_modules)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+        end
+      end
+      
       # Response message for listing findings.
       class ListFindingsResponse
         include Google::Apis::Core::Hashable
@@ -3239,6 +3341,31 @@ module Google
         end
       end
       
+      # Response message for listing security health analytics custom modules.
+      class ListSecurityHealthAnalyticsCustomModulesResponse
+        include Google::Apis::Core::Hashable
+      
+        # If not empty, indicates that there may be more custom modules to be returned.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        # Custom modules belonging to the requested parent.
+        # Corresponds to the JSON property `securityHealthAnalyticsCustomModules`
+        # @return [Array<Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1SecurityHealthAnalyticsCustomModule>]
+        attr_accessor :security_health_analytics_custom_modules
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+          @security_health_analytics_custom_modules = args[:security_health_analytics_custom_modules] if args.key?(:security_health_analytics_custom_modules)
+        end
+      end
+      
       # Response message for listing sources.
       class ListSourcesResponse
         include Google::Apis::Core::Hashable
@@ -3498,26 +3625,6 @@ module Google
         end
       end
       
-      # Encapsulates data about a constraint associated with an organization policy.
-      class OrgPolicyConstraint
-        include Google::Apis::Core::Hashable
-      
-        # The resource name of the constraint. Example: "organizations/`organization_id`/
-        # constraints/`constraint_name`"
-        # Corresponds to the JSON property `name`
-        # @return [String]
-        attr_accessor :name
-      
-        def initialize(**args)
-           update!(**args)
-        end
-      
-        # Update properties of this object
-        def update!(**args)
-          @name = args[:name] if args.key?(:name)
-        end
-      end
-      
       # User specified settings that are attached to the Security Command Center
       # organization.
       class OrganizationSettings
@@ -3555,46 +3662,6 @@ module Google
         end
       end
       
-      # Represents one point that an attacker passes through in this exposure path.
-      class PathNode
-        include Google::Apis::Core::Hashable
-      
-        # The findings associated with this node in the exposure path.
-        # Corresponds to the JSON property `associatedFindings`
-        # @return [Array<Google::Apis::SecuritycenterV1::AssociatedFinding>]
-        attr_accessor :associated_findings
-      
-        # Human readable name of this resource.
-        # Corresponds to the JSON property `displayName`
-        # @return [String]
-        attr_accessor :display_name
-      
-        # The name of the resource at this point in the exposure path. The format of the
-        # name is: https://cloud.google.com/apis/design/resource_names#
-        # full_resource_name
-        # Corresponds to the JSON property `resource`
-        # @return [String]
-        attr_accessor :resource
-      
-        # The resource type of this resource. See: https://cloud.google.com/asset-
-        # inventory/docs/supported-asset-types
-        # Corresponds to the JSON property `resourceType`
-        # @return [String]
-        attr_accessor :resource_type
-      
-        def initialize(**args)
-           update!(**args)
-        end
-      
-        # Update properties of this object
-        def update!(**args)
-          @associated_findings = args[:associated_findings] if args.key?(:associated_findings)
-          @display_name = args[:display_name] if args.key?(:display_name)
-          @resource = args[:resource] if args.key?(:resource)
-          @resource_type = args[:resource_type] if args.key?(:resource_type)
-        end
-      end
-      
       # Kubernetes Pod.
       class Pod
         include Google::Apis::Core::Hashable