google-apis-securitycenter_v1 0.73.0 → 0.75.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 54f29848fa48a148735f83189999adae9962384d603e1f7b185ca85446a905ec
-  data.tar.gz: 9aa19802961078c47f9a49e92ecf495d90bb3469debdd03bda5cd6464592e5e9
+  metadata.gz: 4c9ffd3c4a7766f6b57e7acf3b9cca99a8771b138018a43fe40b98bab7cce058
+  data.tar.gz: b7e87d7ebc376a491cda95fdeaf092cf56c97f6b00fabde6c36f70ed8c3516a5
 SHA512:
-  metadata.gz: 80229234b07a426500190dbbe3ff28cd77104e25c78cc78ef4a893be10651dedd869a058a1be4d398eea6ac336e3b68b99236a26332459b648775ed129f634a5
-  data.tar.gz: 3199854e7ca783b0a33a833cd0fc056a30e99bccf286d56c60140d206d45477cbc14d7881d0f19461defa637fcb789cd7af73a78a2c945878689d4dd33e4cb79
+  metadata.gz: 8e9af0c4e9c6170fcc8522ac5756416dffc10e2a0008d5df7d258bdbfa7af016c47c2f58c47f8c09460fb8832b0c0806ab4d0feda380e9ad26c32cb86875c8f2
+  data.tar.gz: fb765b1494bdf4339c95aede496cc75184e09b324119285cc49755b505084ceac7c638328c1eb40b3a1f3ae9d2f0cce5ad8c1190a0b1a2e37ca052c7e0a134f4

data/CHANGELOG.md

@@ -1,5 +1,15 @@
 # Release history for google-apis-securitycenter_v1
 
+### v0.75.0 (2024-02-04)
+
+* Regenerated from discovery document revision 20240130
+* Regenerated using generator version 0.13.1
+
+### v0.74.0 (2024-01-23)
+
+* Regenerated from discovery document revision 20240119
+* Regenerated using generator version 0.13.0
+
 ### v0.73.0 (2024-01-07)
 
 * Regenerated from discovery document revision 20240101

data/lib/google/apis/securitycenter_v1/classes.rb

@@ -330,7 +330,7 @@ module Google
       
         # The resource name of the attack path simulation result that contains the
         # details regarding this attack exposure score. Example: organizations/123/
-        # attackExposureResults/456
+        # simulations/456/attackExposureResults/789
         # Corresponds to the JSON property `attackExposureResult`
         # @return [String]
         attr_accessor :attack_exposure_result
@@ -827,7 +827,10 @@ module Google
         attr_accessor :members
       
         # Role that is assigned to the list of `members`, or principals. For example, `
-        # roles/viewer`, `roles/editor`, or `roles/owner`.
+        # roles/viewer`, `roles/editor`, or `roles/owner`. For an overview of the IAM
+        # roles and permissions, see the [IAM documentation](https://cloud.google.com/
+        # iam/docs/roles-overview). For a list of the available pre-defined roles, see [
+        # here](https://cloud.google.com/iam/docs/understanding-roles).
         # Corresponds to the JSON property `role`
         # @return [String]
         attr_accessor :role
@@ -1235,8 +1238,9 @@ module Google
         end
       end
       
-      # CVE stands for Common Vulnerabilities and Exposures. More information: https://
-      # cve.mitre.org
+      # CVE stands for Common Vulnerabilities and Exposures. Information from the [CVE
+      # record](https://www.cve.org/ResourcesSupport/Glossary) that describes this
+      # vulnerability.
       class Cve
         include Google::Apis::Core::Hashable
       
@@ -2909,6 +2913,13 @@ module Google
         # @return [String]
         attr_accessor :scope
       
+        # Resource value mapping for Sensitive Data Protection findings. If any of these
+        # mappings have a resource value that is not unspecified, the resource_value
+        # field will be ignored when reading this configuration.
+        # Corresponds to the JSON property `sensitiveDataProtectionMapping`
+        # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1SensitiveDataProtectionMapping]
+        attr_accessor :sensitive_data_protection_mapping
+      
         # Required. Tag values combined with AND to check against. Values in the form "
         # tagValues/123" E.g. [ "tagValues/123", "tagValues/456", "tagValues/789" ]
         # https://cloud.google.com/resource-manager/docs/tags/tags-creating-and-managing
@@ -2934,6 +2945,7 @@ module Google
           @resource_type = args[:resource_type] if args.key?(:resource_type)
           @resource_value = args[:resource_value] if args.key?(:resource_value)
           @scope = args[:scope] if args.key?(:scope)
+          @sensitive_data_protection_mapping = args[:sensitive_data_protection_mapping] if args.key?(:sensitive_data_protection_mapping)
           @tag_values = args[:tag_values] if args.key?(:tag_values)
           @update_time = args[:update_time] if args.key?(:update_time)
         end
@@ -3038,6 +3050,34 @@ module Google
         end
       end
       
+      # Resource value mapping for Sensitive Data Protection findings. If any of these
+      # mappings have a resource value that is not unspecified, the resource_value
+      # field will be ignored when reading this configuration.
+      class GoogleCloudSecuritycenterV1SensitiveDataProtectionMapping
+        include Google::Apis::Core::Hashable
+      
+        # Resource value mapping for high-sensitivity Sensitive Data Protection findings
+        # Corresponds to the JSON property `highSensitivityMapping`
+        # @return [String]
+        attr_accessor :high_sensitivity_mapping
+      
+        # Resource value mapping for medium-sensitivity Sensitive Data Protection
+        # findings
+        # Corresponds to the JSON property `mediumSensitivityMapping`
+        # @return [String]
+        attr_accessor :medium_sensitivity_mapping
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @high_sensitivity_mapping = args[:high_sensitivity_mapping] if args.key?(:high_sensitivity_mapping)
+          @medium_sensitivity_mapping = args[:medium_sensitivity_mapping] if args.key?(:medium_sensitivity_mapping)
+        end
+      end
+      
       # Response of asset discovery run
       class GoogleCloudSecuritycenterV1beta1RunAssetDiscoveryResponse
         include Google::Apis::Core::Hashable
@@ -5043,6 +5083,41 @@ module Google
         end
       end
       
+      # The policy field that violates the deployed posture and its expected and and
+      # detected values.
+      class PolicyDriftDetails
+        include Google::Apis::Core::Hashable
+      
+        # The detected value that violates the deployed posture, for example, `false` or
+        # `allowed_values=`"projects/22831892”``.
+        # Corresponds to the JSON property `detectedValue`
+        # @return [String]
+        attr_accessor :detected_value
+      
+        # The value of this field that was configured in a posture, for example, `true`
+        # or `allowed_values=`"projects/29831892”``.
+        # Corresponds to the JSON property `expectedValue`
+        # @return [String]
+        attr_accessor :expected_value
+      
+        # The name of the updated field, for example constraint.implementation.
+        # policy_rules[0].enforce
+        # Corresponds to the JSON property `field`
+        # @return [String]
+        attr_accessor :field
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @detected_value = args[:detected_value] if args.key?(:detected_value)
+          @expected_value = args[:expected_value] if args.key?(:expected_value)
+          @field = args[:field] if args.key?(:field)
+        end
+      end
+      
       # A position in the uploaded text version of a module.
       class Position
         include Google::Apis::Core::Hashable
@@ -5493,26 +5568,41 @@ module Google
       class SecurityPosture
         include Google::Apis::Core::Hashable
       
-        # The name of the policy that has been updated, for example, `projects/`
-        # project_id`/policies/`constraint_name``.
+        # The name of the updated policy, for example, `projects/`project_id`/policies/`
+        # constraint_name``.
         # Corresponds to the JSON property `changedPolicy`
         # @return [String]
         attr_accessor :changed_policy
       
-        # Name of the posture, for example, `organizations/`org_id`/locations/`location`/
-        # postures/`posture_name``.
+        # Name of the posture, for example, `CIS-Posture`.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # The name of the posture deployment, for example, `projects/`project_id`/
+        # The ID of the updated policy, for example, `compute-policy-1`.
+        # Corresponds to the JSON property `policy`
+        # @return [String]
+        attr_accessor :policy
+      
+        # The details about a change in an updated policy that violates the deployed
+        # posture.
+        # Corresponds to the JSON property `policyDriftDetails`
+        # @return [Array<Google::Apis::SecuritycenterV1::PolicyDriftDetails>]
+        attr_accessor :policy_drift_details
+      
+        # The name of the updated policyset, for example, `cis-policyset`.
+        # Corresponds to the JSON property `policySet`
+        # @return [String]
+        attr_accessor :policy_set
+      
+        # The name of the posture deployment, for example, `organizations/`org_id`/
         # posturedeployments/`posture_deployment_id``.
         # Corresponds to the JSON property `postureDeployment`
         # @return [String]
         attr_accessor :posture_deployment
       
         # The project, folder, or organization on which the posture is deployed, for
-        # example, `projects/`project_id``.
+        # example, `projects/`project_number``.
         # Corresponds to the JSON property `postureDeploymentResource`
         # @return [String]
         attr_accessor :posture_deployment_resource
@@ -5530,6 +5620,9 @@ module Google
         def update!(**args)
           @changed_policy = args[:changed_policy] if args.key?(:changed_policy)
           @name = args[:name] if args.key?(:name)
+          @policy = args[:policy] if args.key?(:policy)
+          @policy_drift_details = args[:policy_drift_details] if args.key?(:policy_drift_details)
+          @policy_set = args[:policy_set] if args.key?(:policy_set)
           @posture_deployment = args[:posture_deployment] if args.key?(:posture_deployment)
           @posture_deployment_resource = args[:posture_deployment_resource] if args.key?(:posture_deployment_resource)
           @revision_id = args[:revision_id] if args.key?(:revision_id)
@@ -6199,8 +6292,9 @@ module Google
       class Vulnerability
         include Google::Apis::Core::Hashable
       
-        # CVE stands for Common Vulnerabilities and Exposures. More information: https://
-        # cve.mitre.org
+        # CVE stands for Common Vulnerabilities and Exposures. Information from the [CVE
+        # record](https://www.cve.org/ResourcesSupport/Glossary) that describes this
+        # vulnerability.
         # Corresponds to the JSON property `cve`
         # @return [Google::Apis::SecuritycenterV1::Cve]
         attr_accessor :cve

data/lib/google/apis/securitycenter_v1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module SecuritycenterV1
       # Version of the google-apis-securitycenter_v1 gem
-      GEM_VERSION = "0.73.0"
+      GEM_VERSION = "0.75.0"
 
       # Version of the code generator used to generate this client
-      GENERATOR_VERSION = "0.12.0"
+      GENERATOR_VERSION = "0.13.1"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20240101"
+      REVISION = "20240130"
     end
   end
 end

data/lib/google/apis/securitycenter_v1/representations.rb

@@ -388,6 +388,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class GoogleCloudSecuritycenterV1SensitiveDataProtectionMapping
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class GoogleCloudSecuritycenterV1beta1RunAssetDiscoveryResponse
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -694,6 +700,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class PolicyDriftDetails
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Position
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -1579,6 +1591,8 @@ module Google
           property :resource_type, as: 'resourceType'
           property :resource_value, as: 'resourceValue'
           property :scope, as: 'scope'
+          property :sensitive_data_protection_mapping, as: 'sensitiveDataProtectionMapping', class: Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1SensitiveDataProtectionMapping, decorator: Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1SensitiveDataProtectionMapping::Representation
+      
           collection :tag_values, as: 'tagValues'
           property :update_time, as: 'updateTime'
         end
@@ -1606,6 +1620,14 @@ module Google
         end
       end
       
+      class GoogleCloudSecuritycenterV1SensitiveDataProtectionMapping
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :high_sensitivity_mapping, as: 'highSensitivityMapping'
+          property :medium_sensitivity_mapping, as: 'mediumSensitivityMapping'
+        end
+      end
+      
       class GoogleCloudSecuritycenterV1beta1RunAssetDiscoveryResponse
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -2122,6 +2144,15 @@ module Google
         end
       end
       
+      class PolicyDriftDetails
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :detected_value, as: 'detectedValue'
+          property :expected_value, as: 'expectedValue'
+          property :field, as: 'field'
+        end
+      end
+      
       class Position
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -2245,6 +2276,10 @@ module Google
         class Representation < Google::Apis::Core::JsonRepresentation
           property :changed_policy, as: 'changedPolicy'
           property :name, as: 'name'
+          property :policy, as: 'policy'
+          collection :policy_drift_details, as: 'policyDriftDetails', class: Google::Apis::SecuritycenterV1::PolicyDriftDetails, decorator: Google::Apis::SecuritycenterV1::PolicyDriftDetails::Representation
+      
+          property :policy_set, as: 'policySet'
           property :posture_deployment, as: 'postureDeployment'
           property :posture_deployment_resource, as: 'postureDeploymentResource'
           property :revision_id, as: 'revisionId'

data/lib/google/apis/securitycenter_v1/service.rb

@@ -33,6 +33,8 @@ module Google
       #
       # @see https://cloud.google.com/security-command-center
       class SecurityCommandCenterService < Google::Apis::Core::BaseService
+        DEFAULT_ENDPOINT_TEMPLATE = "https://securitycenter.$UNIVERSE_DOMAIN$/"
+
         # @return [String]
         #  API key. Your API key identifies your project and provides you with API access,
         #  quota, and reports. Required unless you provide an OAuth 2.0 token.
@@ -44,7 +46,7 @@ module Google
         attr_accessor :quota_user
 
         def initialize
-          super('https://securitycenter.googleapis.com/', '',
+          super(DEFAULT_ENDPOINT_TEMPLATE, '',
                 client_name: 'google-apis-securitycenter_v1',
                 client_version: Google::Apis::SecuritycenterV1::GEM_VERSION)
           @batch_path = 'batch'
@@ -4240,6 +4242,13 @@ module Google
         # @param [String] filter
         #   The filter expression that filters the valued resources in the response.
         #   Supported fields: * `resource_value` supports = * `resource_type` supports =
+        # @param [String] order_by
+        #   Optional. The fields by which to order the valued resources response.
+        #   Supported fields: * `exposed_score` * `resource_value` * `resource_type` * `
+        #   resource` * `display_name` Values should be a comma separated list of fields.
+        #   For example: `exposed_score,resource_value`. The default sorting order is
+        #   descending. To specify ascending or descending order for a field, append a "
+        #   ASC" or a " DESC" suffix, respectively; for example: `exposed_score DESC`.
         # @param [Fixnum] page_size
         #   The maximum number of results to return in a single response. Default is 10,
         #   minimum is 1, maximum is 1000.
@@ -4264,12 +4273,13 @@ module Google
         # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
         # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
         # @raise [Google::Apis::AuthorizationError] Authorization is required
-        def list_organization_simulation_attack_exposure_result_valued_resources(parent, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
+        def list_organization_simulation_attack_exposure_result_valued_resources(parent, filter: nil, order_by: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
           command = make_simple_command(:get, 'v1/{+parent}/valuedResources', options)
           command.response_representation = Google::Apis::SecuritycenterV1::ListValuedResourcesResponse::Representation
           command.response_class = Google::Apis::SecuritycenterV1::ListValuedResourcesResponse
           command.params['parent'] = parent unless parent.nil?
           command.query['filter'] = filter unless filter.nil?
+          command.query['orderBy'] = order_by unless order_by.nil?
           command.query['pageSize'] = page_size unless page_size.nil?
           command.query['pageToken'] = page_token unless page_token.nil?
           command.query['fields'] = fields unless fields.nil?
@@ -4365,6 +4375,13 @@ module Google
         # @param [String] filter
         #   The filter expression that filters the valued resources in the response.
         #   Supported fields: * `resource_value` supports = * `resource_type` supports =
+        # @param [String] order_by
+        #   Optional. The fields by which to order the valued resources response.
+        #   Supported fields: * `exposed_score` * `resource_value` * `resource_type` * `
+        #   resource` * `display_name` Values should be a comma separated list of fields.
+        #   For example: `exposed_score,resource_value`. The default sorting order is
+        #   descending. To specify ascending or descending order for a field, append a "
+        #   ASC" or a " DESC" suffix, respectively; for example: `exposed_score DESC`.
         # @param [Fixnum] page_size
         #   The maximum number of results to return in a single response. Default is 10,
         #   minimum is 1, maximum is 1000.
@@ -4389,12 +4406,13 @@ module Google
         # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
         # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
         # @raise [Google::Apis::AuthorizationError] Authorization is required
-        def list_organization_simulation_valued_resources(parent, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
+        def list_organization_simulation_valued_resources(parent, filter: nil, order_by: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
           command = make_simple_command(:get, 'v1/{+parent}/valuedResources', options)
           command.response_representation = Google::Apis::SecuritycenterV1::ListValuedResourcesResponse::Representation
           command.response_class = Google::Apis::SecuritycenterV1::ListValuedResourcesResponse
           command.params['parent'] = parent unless parent.nil?
           command.query['filter'] = filter unless filter.nil?
+          command.query['orderBy'] = order_by unless order_by.nil?
           command.query['pageSize'] = page_size unless page_size.nil?
           command.query['pageToken'] = page_token unless page_token.nil?
           command.query['fields'] = fields unless fields.nil?

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-securitycenter_v1
 version: !ruby/object:Gem::Version
-  version: 0.73.0
+  version: 0.75.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2024-01-07 00:00:00.000000000 Z
+date: 2024-02-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -16,7 +16,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.11.0
+        version: 0.12.0
     - - "<"
       - !ruby/object:Gem::Version
         version: 2.a
@@ -26,7 +26,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.11.0
+        version: 0.12.0
     - - "<"
       - !ruby/object:Gem::Version
         version: 2.a
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1/v0.73.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1/v0.75.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1
 post_install_message: 
 rdoc_options: []