google-apis-securitycenter_v1 0.82.0 → 0.84.0

data/lib/google/apis/securitycenter_v1/classes.rb

@@ -383,8 +383,8 @@ module Google
         include Google::Apis::Core::Hashable
       
         # The resource name of the attack path simulation result that contains the
-        # details regarding this attack exposure score. Example: organizations/123/
-        # simulations/456/attackExposureResults/789
+        # details regarding this attack exposure score. Example: `organizations/123/
+        # simulations/456/attackExposureResults/789`
         # Corresponds to the JSON property `attackExposureResult`
         # @return [String]
         attr_accessor :attack_exposure_result
@@ -519,14 +519,14 @@ module Google
         attr_accessor :display_name
       
         # The name of the resource at this point in the attack path. The format of the
-        # name follows the Cloud Asset Inventory [resource name format]("https://cloud.
-        # google.com/asset-inventory/docs/resource-name-format")
+        # name follows the Cloud Asset Inventory [resource name format](https://cloud.
+        # google.com/asset-inventory/docs/resource-name-format)
         # Corresponds to the JSON property `resource`
         # @return [String]
         attr_accessor :resource
       
         # The [supported resource type](https://cloud.google.com/asset-inventory/docs/
-        # supported-asset-types")
+        # supported-asset-types)
         # Corresponds to the JSON property `resourceType`
         # @return [String]
         attr_accessor :resource_type
@@ -779,6 +779,110 @@ module Google
         end
       end
       
+      # Represents an Azure management group.
+      class AzureManagementGroup
+        include Google::Apis::Core::Hashable
+      
+        # The display name of the Azure management group.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # The UUID of the Azure management group, for example, `20000000-0001-0000-0000-
+        # 000000000000`.
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @id = args[:id] if args.key?(:id)
+        end
+      end
+      
+      # Azure metadata associated with the resource, only applicable if the finding's
+      # cloud provider is Microsoft Azure.
+      class AzureMetadata
+        include Google::Apis::Core::Hashable
+      
+        # A list of Azure management groups associated with the resource, ordered from
+        # lowest level (closest to the subscription) to highest level.
+        # Corresponds to the JSON property `managementGroups`
+        # @return [Array<Google::Apis::SecuritycenterV1::AzureManagementGroup>]
+        attr_accessor :management_groups
+      
+        # Represents an Azure resource group.
+        # Corresponds to the JSON property `resourceGroup`
+        # @return [Google::Apis::SecuritycenterV1::AzureResourceGroup]
+        attr_accessor :resource_group
+      
+        # Represents an Azure subscription.
+        # Corresponds to the JSON property `subscription`
+        # @return [Google::Apis::SecuritycenterV1::AzureSubscription]
+        attr_accessor :subscription
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @management_groups = args[:management_groups] if args.key?(:management_groups)
+          @resource_group = args[:resource_group] if args.key?(:resource_group)
+          @subscription = args[:subscription] if args.key?(:subscription)
+        end
+      end
+      
+      # Represents an Azure resource group.
+      class AzureResourceGroup
+        include Google::Apis::Core::Hashable
+      
+        # The name of the Azure resource group. This is not a UUID.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @name = args[:name] if args.key?(:name)
+        end
+      end
+      
+      # Represents an Azure subscription.
+      class AzureSubscription
+        include Google::Apis::Core::Hashable
+      
+        # The display name of the Azure subscription.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # The UUID of the Azure subscription, for example, `291bba3f-e0a5-47bc-a099-
+        # 3bdcb2a50a05`.
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @id = args[:id] if args.key?(:id)
+        end
+      end
+      
       # Information related to Google Cloud Backup and DR Service findings.
       class BackupDisasterRecovery
         include Google::Apis::Core::Hashable
@@ -1815,10 +1919,10 @@ module Google
         attr_accessor :enablement_state
       
         # Output only. The resource name of the effective ETD custom module. Its format
-        # is: * "organizations/`organization`/eventThreatDetectionSettings/
-        # effectiveCustomModules/`module`". * "folders/`folder`/
-        # eventThreatDetectionSettings/effectiveCustomModules/`module`". * "projects/`
-        # project`/eventThreatDetectionSettings/effectiveCustomModules/`module`".
+        # is: * `organizations/`organization`/eventThreatDetectionSettings/
+        # effectiveCustomModules/`module``. * `folders/`folder`/
+        # eventThreatDetectionSettings/effectiveCustomModules/`module``. * `projects/`
+        # project`/eventThreatDetectionSettings/effectiveCustomModules/`module``.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -1928,10 +2032,10 @@ module Google
         attr_accessor :last_editor
       
         # Immutable. The resource name of the Event Threat Detection custom module. Its
-        # format is: * "organizations/`organization`/eventThreatDetectionSettings/
-        # customModules/`module`". * "folders/`folder`/eventThreatDetectionSettings/
-        # customModules/`module`". * "projects/`project`/eventThreatDetectionSettings/
-        # customModules/`module`".
+        # format is: * `organizations/`organization`/eventThreatDetectionSettings/
+        # customModules/`module``. * `folders/`folder`/eventThreatDetectionSettings/
+        # customModules/`module``. * `projects/`project`/eventThreatDetectionSettings/
+        # customModules/`module``.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -2293,6 +2397,13 @@ module Google
         # @return [String]
         attr_accessor :finding_class
       
+        # Contains details about groups of which this finding is a member. A group is a
+        # collection of findings that are related in some way. This field cannot be
+        # updated. Its value is ignored in all update requests.
+        # Corresponds to the JSON property `groupMemberships`
+        # @return [Array<Google::Apis::SecuritycenterV1::GroupMembership>]
+        attr_accessor :group_memberships
+      
         # Represents IAM bindings associated with the finding.
         # Corresponds to the JSON property `iamBindings`
         # @return [Array<Google::Apis::SecuritycenterV1::IamBinding>]
@@ -2447,6 +2558,13 @@ module Google
         # @return [String]
         attr_accessor :state
       
+        # Contains details about a group of security issues that, when the issues occur
+        # together, represent a greater risk than when the issues occur independently. A
+        # group of such issues is referred to as a toxic combination.
+        # Corresponds to the JSON property `toxicCombination`
+        # @return [Google::Apis::SecuritycenterV1::ToxicCombination]
+        attr_accessor :toxic_combination
+      
         # Refers to common vulnerability fields e.g. cve, cvss, cwe etc.
         # Corresponds to the JSON property `vulnerability`
         # @return [Google::Apis::SecuritycenterV1::Vulnerability]
@@ -2480,6 +2598,7 @@ module Google
           @external_uri = args[:external_uri] if args.key?(:external_uri)
           @files = args[:files] if args.key?(:files)
           @finding_class = args[:finding_class] if args.key?(:finding_class)
+          @group_memberships = args[:group_memberships] if args.key?(:group_memberships)
           @iam_bindings = args[:iam_bindings] if args.key?(:iam_bindings)
           @indicator = args[:indicator] if args.key?(:indicator)
           @kernel_rootkit = args[:kernel_rootkit] if args.key?(:kernel_rootkit)
@@ -2504,6 +2623,7 @@ module Google
           @severity = args[:severity] if args.key?(:severity)
           @source_properties = args[:source_properties] if args.key?(:source_properties)
           @state = args[:state] if args.key?(:state)
+          @toxic_combination = args[:toxic_combination] if args.key?(:toxic_combination)
           @vulnerability = args[:vulnerability] if args.key?(:vulnerability)
         end
       end
@@ -3063,12 +3183,12 @@ module Google
         # @return [String]
         attr_accessor :most_recent_editor
       
-        # This field will be ignored if provided on config creation. Format "
-        # organizations/`organization`/muteConfigs/`mute_config`" "folders/`folder`/
-        # muteConfigs/`mute_config`" "projects/`project`/muteConfigs/`mute_config`" "
-        # organizations/`organization`/locations/global/muteConfigs/`mute_config`" "
-        # folders/`folder`/locations/global/muteConfigs/`mute_config`" "projects/`
-        # project`/locations/global/muteConfigs/`mute_config`"
+        # This field will be ignored if provided on config creation. Format `
+        # organizations/`organization`/muteConfigs/`mute_config`` `folders/`folder`/
+        # muteConfigs/`mute_config`` `projects/`project`/muteConfigs/`mute_config`` `
+        # organizations/`organization`/locations/global/muteConfigs/`mute_config`` `
+        # folders/`folder`/locations/global/muteConfigs/`mute_config`` `projects/`
+        # project`/locations/global/muteConfigs/`mute_config``
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -3180,6 +3300,12 @@ module Google
         # @return [Google::Apis::SecuritycenterV1::AwsMetadata]
         attr_accessor :aws_metadata
       
+        # Azure metadata associated with the resource, only applicable if the finding's
+        # cloud provider is Microsoft Azure.
+        # Corresponds to the JSON property `azureMetadata`
+        # @return [Google::Apis::SecuritycenterV1::AzureMetadata]
+        attr_accessor :azure_metadata
+      
         # Indicates which cloud provider the resource resides in.
         # Corresponds to the JSON property `cloudProvider`
         # @return [String]
@@ -3241,13 +3367,14 @@ module Google
         attr_accessor :resource_path
       
         # A string representation of the resource path. For Google Cloud, it has the
-        # format of organizations/`organization_id`/folders/`folder_id`/folders/`
-        # folder_id`/projects/`project_id` where there can be any number of folders. For
-        # AWS, it has the format of org/`organization_id`/ou/`organizational_unit_id`/ou/
-        # `organizational_unit_id`/account/`account_id` where there can be any number of
-        # organizational units. For Azure, it has the format of mg/`management_group_id`/
-        # mg/`management_group_id`/subscription/`subscription_id`/rg/`
-        # resource_group_name` where there can be any number of management groups.
+        # format of `organizations/`organization_id`/folders/`folder_id`/folders/`
+        # folder_id`/projects/`project_id`` where there can be any number of folders.
+        # For AWS, it has the format of `org/`organization_id`/ou/`
+        # organizational_unit_id`/ou/`organizational_unit_id`/account/`account_id``
+        # where there can be any number of organizational units. For Azure, it has the
+        # format of `mg/`management_group_id`/mg/`management_group_id`/subscription/`
+        # subscription_id`/rg/`resource_group_name`` where there can be any number of
+        # management groups.
         # Corresponds to the JSON property `resourcePathString`
         # @return [String]
         attr_accessor :resource_path_string
@@ -3270,6 +3397,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @aws_metadata = args[:aws_metadata] if args.key?(:aws_metadata)
+          @azure_metadata = args[:azure_metadata] if args.key?(:azure_metadata)
           @cloud_provider = args[:cloud_provider] if args.key?(:cloud_provider)
           @display_name = args[:display_name] if args.key?(:display_name)
           @folders = args[:folders] if args.key?(:folders)
@@ -3331,18 +3459,18 @@ module Google
         # @return [String]
         attr_accessor :name
       
-        # List of resource labels to search for, evaluated with AND. For example, "
-        # resource_labels_selector": `"key": "value", "env": "prod"` will match
-        # resources with labels "key": "value" AND "env": "prod" https://cloud.google.
+        # List of resource labels to search for, evaluated with `AND`. For example, `"
+        # resource_labels_selector": `"key": "value", "env": "prod"`` will match
+        # resources with labels "key": "value" `AND` "env": "prod" https://cloud.google.
         # com/resource-manager/docs/creating-managing-labels
         # Corresponds to the JSON property `resourceLabelsSelector`
         # @return [Hash<String,String>]
         attr_accessor :resource_labels_selector
       
         # Apply resource_value only to resources that match resource_type. resource_type
-        # will be checked with AND of other resources. For example, "storage.googleapis.
-        # com/Bucket" with resource_value "HIGH" will apply "HIGH" value only to "
-        # storage.googleapis.com/Bucket" resources.
+        # will be checked with `AND` of other resources. For example, "storage.
+        # googleapis.com/Bucket" with resource_value "HIGH" will apply "HIGH" value only
+        # to "storage.googleapis.com/Bucket" resources.
         # Corresponds to the JSON property `resourceType`
         # @return [String]
         attr_accessor :resource_type
@@ -3354,7 +3482,7 @@ module Google
       
         # Project or folder to scope this configuration to. For example, "project/456"
         # would apply this configuration only to resources in "project/456" scope will
-        # be checked with AND of other resources.
+        # be checked with `AND` of other resources.
         # Corresponds to the JSON property `scope`
         # @return [String]
         attr_accessor :scope
@@ -3366,9 +3494,10 @@ module Google
         # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1SensitiveDataProtectionMapping]
         attr_accessor :sensitive_data_protection_mapping
       
-        # Required. Tag values combined with AND to check against. Values in the form "
-        # tagValues/123" Example: [ "tagValues/123", "tagValues/456", "tagValues/789" ]
-        # https://cloud.google.com/resource-manager/docs/tags/tags-creating-and-managing
+        # Required. Tag values combined with `AND` to check against. Values in the form "
+        # tagValues/123" Example: `[ "tagValues/123", "tagValues/456", "tagValues/789" ]`
+        # https://cloud.google.com/resource-manager/docs/tags/tags-creating-and-
+        # managing
         # Corresponds to the JSON property `tagValues`
         # @return [Array<String>]
         attr_accessor :tag_values
@@ -4102,8 +4231,8 @@ module Google
         include Google::Apis::Core::Hashable
       
         # The resource name of the attack path simulation result that contains the
-        # details regarding this attack exposure score. Example: organizations/123/
-        # simulations/456/attackExposureResults/789
+        # details regarding this attack exposure score. Example: `organizations/123/
+        # simulations/456/attackExposureResults/789`
         # Corresponds to the JSON property `attackExposureResult`
         # @return [String]
         attr_accessor :attack_exposure_result
@@ -4274,6 +4403,110 @@ module Google
         end
       end
       
+      # Represents an Azure management group.
+      class GoogleCloudSecuritycenterV2AzureManagementGroup
+        include Google::Apis::Core::Hashable
+      
+        # The display name of the Azure management group.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # The UUID of the Azure management group, for example, `20000000-0001-0000-0000-
+        # 000000000000`.
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @id = args[:id] if args.key?(:id)
+        end
+      end
+      
+      # Azure metadata associated with the resource, only applicable if the finding's
+      # cloud provider is Microsoft Azure.
+      class GoogleCloudSecuritycenterV2AzureMetadata
+        include Google::Apis::Core::Hashable
+      
+        # A list of Azure management groups associated with the resource, ordered from
+        # lowest level (closest to the subscription) to highest level.
+        # Corresponds to the JSON property `managementGroups`
+        # @return [Array<Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV2AzureManagementGroup>]
+        attr_accessor :management_groups
+      
+        # Represents an Azure resource group.
+        # Corresponds to the JSON property `resourceGroup`
+        # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV2AzureResourceGroup]
+        attr_accessor :resource_group
+      
+        # Represents an Azure subscription.
+        # Corresponds to the JSON property `subscription`
+        # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV2AzureSubscription]
+        attr_accessor :subscription
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @management_groups = args[:management_groups] if args.key?(:management_groups)
+          @resource_group = args[:resource_group] if args.key?(:resource_group)
+          @subscription = args[:subscription] if args.key?(:subscription)
+        end
+      end
+      
+      # Represents an Azure resource group.
+      class GoogleCloudSecuritycenterV2AzureResourceGroup
+        include Google::Apis::Core::Hashable
+      
+        # The name of the Azure resource group. This is not a UUID.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @name = args[:name] if args.key?(:name)
+        end
+      end
+      
+      # Represents an Azure subscription.
+      class GoogleCloudSecuritycenterV2AzureSubscription
+        include Google::Apis::Core::Hashable
+      
+        # The display name of the Azure subscription.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # The UUID of the Azure subscription, for example, `291bba3f-e0a5-47bc-a099-
+        # 3bdcb2a50a05`.
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @id = args[:id] if args.key?(:id)
+        end
+      end
+      
       # Information related to Google Cloud Backup and DR Service findings.
       class GoogleCloudSecuritycenterV2BackupDisasterRecovery
         include Google::Apis::Core::Hashable
@@ -4382,7 +4615,7 @@ module Google
         attr_accessor :create_time
       
         # The dataset to write findings' updates to. Its format is "projects/[project_id]
-        # /datasets/[bigquery_dataset_id]". BigQuery Dataset unique ID must contain only
+        # /datasets/[bigquery_dataset_id]". BigQuery dataset unique ID must contain only
         # letters (a-z, A-Z), numbers (0-9), or underscores (_).
         # Corresponds to the JSON property `dataset`
         # @return [String]
@@ -4414,13 +4647,13 @@ module Google
         # @return [String]
         attr_accessor :most_recent_editor
       
-        # The relative resource name of this export. See: https://cloud.google.com/apis/
-        # design/resource_names#relative_resource_name. The following list shows some
-        # examples: + `organizations/`organization_id`/locations/`location_id`/
-        # bigQueryExports/`export_id`` + `folders/`folder_id`/locations/`location_id`/
-        # bigQueryExports/`export_id`` + `projects/`project_id`/locations/`location_id`/
-        # bigQueryExports/`export_id`` This field is provided in responses, and is
-        # ignored when provided in create requests.
+        # Identifier. The relative resource name of this export. See: https://cloud.
+        # google.com/apis/design/resource_names#relative_resource_name. The following
+        # list shows some examples: + `organizations/`organization_id`/locations/`
+        # location_id`/bigQueryExports/`export_id`` + `folders/`folder_id`/locations/`
+        # location_id`/bigQueryExports/`export_id`` + `projects/`project_id`/locations/`
+        # location_id`/bigQueryExports/`export_id`` This field is provided in responses,
+        # and is ignored when provided in create requests.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -5485,6 +5718,13 @@ module Google
         # @return [String]
         attr_accessor :finding_class
       
+        # Contains details about groups of which this finding is a member. A group is a
+        # collection of findings that are related in some way. This field cannot be
+        # updated. Its value is ignored in all update requests.
+        # Corresponds to the JSON property `groupMemberships`
+        # @return [Array<Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV2GroupMembership>]
+        attr_accessor :group_memberships
+      
         # Represents IAM bindings associated with the finding.
         # Corresponds to the JSON property `iamBindings`
         # @return [Array<Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV2IamBinding>]
@@ -5648,6 +5888,13 @@ module Google
         # @return [String]
         attr_accessor :state
       
+        # Contains details about a group of security issues that, when the issues occur
+        # together, represent a greater risk than when the issues occur independently. A
+        # group of such issues is referred to as a toxic combination.
+        # Corresponds to the JSON property `toxicCombination`
+        # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV2ToxicCombination]
+        attr_accessor :toxic_combination
+      
         # Refers to common vulnerability fields e.g. cve, cvss, cwe etc.
         # Corresponds to the JSON property `vulnerability`
         # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV2Vulnerability]
@@ -5681,6 +5928,7 @@ module Google
           @external_uri = args[:external_uri] if args.key?(:external_uri)
           @files = args[:files] if args.key?(:files)
           @finding_class = args[:finding_class] if args.key?(:finding_class)
+          @group_memberships = args[:group_memberships] if args.key?(:group_memberships)
           @iam_bindings = args[:iam_bindings] if args.key?(:iam_bindings)
           @indicator = args[:indicator] if args.key?(:indicator)
           @kernel_rootkit = args[:kernel_rootkit] if args.key?(:kernel_rootkit)
@@ -5705,6 +5953,7 @@ module Google
           @severity = args[:severity] if args.key?(:severity)
           @source_properties = args[:source_properties] if args.key?(:source_properties)
           @state = args[:state] if args.key?(:state)
+          @toxic_combination = args[:toxic_combination] if args.key?(:toxic_combination)
           @vulnerability = args[:vulnerability] if args.key?(:vulnerability)
         end
       end
@@ -5754,6 +6003,32 @@ module Google
         end
       end
       
+      # Contains details about groups of which this finding is a member. A group is a
+      # collection of findings that are related in some way.
+      class GoogleCloudSecuritycenterV2GroupMembership
+        include Google::Apis::Core::Hashable
+      
+        # ID of the group.
+        # Corresponds to the JSON property `groupId`
+        # @return [String]
+        attr_accessor :group_id
+      
+        # Type of group.
+        # Corresponds to the JSON property `groupType`
+        # @return [String]
+        attr_accessor :group_type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @group_id = args[:group_id] if args.key?(:group_id)
+          @group_type = args[:group_type] if args.key?(:group_type)
+        end
+      end
+      
       # Represents a particular IAM binding, which captures a member's role addition,
       # removal, or state.
       class GoogleCloudSecuritycenterV2IamBinding
@@ -6156,13 +6431,13 @@ module Google
         # @return [String]
         attr_accessor :most_recent_editor
       
-        # This field will be ignored if provided on config creation. The following list
-        # shows some examples of the format: + `organizations/`organization`/muteConfigs/
-        # `mute_config`` + `organizations/`organization`locations/`location`//
-        # muteConfigs/`mute_config`` + `folders/`folder`/muteConfigs/`mute_config`` + `
-        # folders/`folder`/locations/`location`/muteConfigs/`mute_config`` + `projects/`
-        # project`/muteConfigs/`mute_config`` + `projects/`project`/locations/`location`/
-        # muteConfigs/`mute_config``
+        # Identifier. This field will be ignored if provided on config creation. The
+        # following list shows some examples of the format: + `organizations/`
+        # organization`/muteConfigs/`mute_config`` + `organizations/`organization`
+        # locations/`location`//muteConfigs/`mute_config`` + `folders/`folder`/
+        # muteConfigs/`mute_config`` + `folders/`folder`/locations/`location`/
+        # muteConfigs/`mute_config`` + `projects/`project`/muteConfigs/`mute_config`` + `
+        # projects/`project`/locations/`location`/muteConfigs/`mute_config``
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -6675,6 +6950,12 @@ module Google
         # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV2AwsMetadata]
         attr_accessor :aws_metadata
       
+        # Azure metadata associated with the resource, only applicable if the finding's
+        # cloud provider is Microsoft Azure.
+        # Corresponds to the JSON property `azureMetadata`
+        # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV2AzureMetadata]
+        attr_accessor :azure_metadata
+      
         # Indicates which cloud provider the finding is from.
         # Corresponds to the JSON property `cloudProvider`
         # @return [String]
@@ -6709,13 +6990,14 @@ module Google
         attr_accessor :resource_path
       
         # A string representation of the resource path. For Google Cloud, it has the
-        # format of organizations/`organization_id`/folders/`folder_id`/folders/`
-        # folder_id`/projects/`project_id` where there can be any number of folders. For
-        # AWS, it has the format of org/`organization_id`/ou/`organizational_unit_id`/ou/
-        # `organizational_unit_id`/account/`account_id` where there can be any number of
-        # organizational units. For Azure, it has the format of mg/`management_group_id`/
-        # mg/`management_group_id`/subscription/`subscription_id`/rg/`
-        # resource_group_name` where there can be any number of management groups.
+        # format of `organizations/`organization_id`/folders/`folder_id`/folders/`
+        # folder_id`/projects/`project_id`` where there can be any number of folders.
+        # For AWS, it has the format of `org/`organization_id`/ou/`
+        # organizational_unit_id`/ou/`organizational_unit_id`/account/`account_id``
+        # where there can be any number of organizational units. For Azure, it has the
+        # format of `mg/`management_group_id`/mg/`management_group_id`/subscription/`
+        # subscription_id`/rg/`resource_group_name`` where there can be any number of
+        # management groups.
         # Corresponds to the JSON property `resourcePathString`
         # @return [String]
         attr_accessor :resource_path_string
@@ -6737,6 +7019,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @aws_metadata = args[:aws_metadata] if args.key?(:aws_metadata)
+          @azure_metadata = args[:azure_metadata] if args.key?(:azure_metadata)
           @cloud_provider = args[:cloud_provider] if args.key?(:cloud_provider)
           @display_name = args[:display_name] if args.key?(:display_name)
           @gcp_metadata = args[:gcp_metadata] if args.key?(:gcp_metadata)
@@ -6822,36 +7105,36 @@ module Google
         # @return [String]
         attr_accessor :description
       
-        # Name for the resource value configuration
+        # Identifier. Name for the resource value configuration
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # List of resource labels to search for, evaluated with AND. For example, "
+        # List of resource labels to search for, evaluated with `AND`. For example, "
         # resource_labels_selector": `"key": "value", "env": "prod"` will match
-        # resources with labels "key": "value" AND "env": "prod" https://cloud.google.
+        # resources with labels "key": "value" `AND` "env": "prod" https://cloud.google.
         # com/resource-manager/docs/creating-managing-labels
         # Corresponds to the JSON property `resourceLabelsSelector`
         # @return [Hash<String,String>]
         attr_accessor :resource_labels_selector
       
         # Apply resource_value only to resources that match resource_type. resource_type
-        # will be checked with AND of other resources. For example, "storage.googleapis.
-        # com/Bucket" with resource_value "HIGH" will apply "HIGH" value only to "
-        # storage.googleapis.com/Bucket" resources.
+        # will be checked with `AND` of other resources. For example, "storage.
+        # googleapis.com/Bucket" with resource_value "HIGH" will apply "HIGH" value only
+        # to "storage.googleapis.com/Bucket" resources.
         # Corresponds to the JSON property `resourceType`
         # @return [String]
         attr_accessor :resource_type
       
         # Resource value level this expression represents Only required when there is no
-        # SDP mapping in the request
+        # Sensitive Data Protection mapping in the request
         # Corresponds to the JSON property `resourceValue`
         # @return [String]
         attr_accessor :resource_value
       
         # Project or folder to scope this configuration to. For example, "project/456"
-        # would apply this configuration only to resources in "project/456" scope will
-        # be checked with AND of other resources.
+        # would apply this configuration only to resources in "project/456" scope and
+        # will be checked with `AND` of other resources.
         # Corresponds to the JSON property `scope`
         # @return [String]
         attr_accessor :scope
@@ -6863,9 +7146,9 @@ module Google
         # @return [Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV2SensitiveDataProtectionMapping]
         attr_accessor :sensitive_data_protection_mapping
       
-        # Required. Tag values combined with AND to check against. Values in the form "
-        # tagValues/123" Example: [ "tagValues/123", "tagValues/456", "tagValues/789" ]
-        # https://cloud.google.com/resource-manager/docs/tags/tags-creating-and-managing
+        # Tag values combined with `AND` to check against. Values in the form "tagValues/
+        # 123" Example: `[ "tagValues/123", "tagValues/456", "tagValues/789" ]` https://
+        # cloud.google.com/resource-manager/docs/tags/tags-creating-and-managing
         # Corresponds to the JSON property `tagValues`
         # @return [Array<String>]
         attr_accessor :tag_values
@@ -7256,6 +7539,37 @@ module Google
         end
       end
       
+      # Contains details about a group of security issues that, when the issues occur
+      # together, represent a greater risk than when the issues occur independently. A
+      # group of such issues is referred to as a toxic combination.
+      class GoogleCloudSecuritycenterV2ToxicCombination
+        include Google::Apis::Core::Hashable
+      
+        # The [Attack exposure score](https://cloud.google.com/security-command-center/
+        # docs/attack-exposure-learn#attack_exposure_scores) of this toxic combination.
+        # The score is a measure of how much this toxic combination exposes one or more
+        # high-value resources to potential attack.
+        # Corresponds to the JSON property `attackExposureScore`
+        # @return [Float]
+        attr_accessor :attack_exposure_score
+      
+        # List of resource names of findings associated with this toxic combination. For
+        # example, `organizations/123/sources/456/findings/789`.
+        # Corresponds to the JSON property `relatedFindings`
+        # @return [Array<String>]
+        attr_accessor :related_findings
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @attack_exposure_score = args[:attack_exposure_score] if args.key?(:attack_exposure_score)
+          @related_findings = args[:related_findings] if args.key?(:related_findings)
+        end
+      end
+      
       # Refers to common vulnerability fields e.g. cve, cvss, cwe etc.
       class GoogleCloudSecuritycenterV2Vulnerability
         include Google::Apis::Core::Hashable
@@ -7604,6 +7918,32 @@ module Google
         end
       end
       
+      # Contains details about groups of which this finding is a member. A group is a
+      # collection of findings that are related in some way.
+      class GroupMembership
+        include Google::Apis::Core::Hashable
+      
+        # ID of the group.
+        # Corresponds to the JSON property `groupId`
+        # @return [String]
+        attr_accessor :group_id
+      
+        # Type of group.
+        # Corresponds to the JSON property `groupType`
+        # @return [String]
+        attr_accessor :group_type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @group_id = args[:group_id] if args.key?(:group_id)
+          @group_type = args[:group_type] if args.key?(:group_type)
+        end
+      end
+      
       # Result containing the properties and count of a groupBy request.
       class GroupResult
         include Google::Apis::Core::Hashable
@@ -8871,8 +9211,8 @@ module Google
       class PathNodeAssociatedFinding
         include Google::Apis::Core::Hashable
       
-        # Canonical name of the associated findings. Example: organizations/123/sources/
-        # 456/findings/789
+        # Canonical name of the associated findings. Example: `organizations/123/sources/
+        # 456/findings/789`
         # Corresponds to the JSON property `canonicalFinding`
         # @return [String]
         attr_accessor :canonical_finding
@@ -9276,6 +9616,12 @@ module Google
         # @return [Google::Apis::SecuritycenterV1::AwsMetadata]
         attr_accessor :aws_metadata
       
+        # Azure metadata associated with the resource, only applicable if the finding's
+        # cloud provider is Microsoft Azure.
+        # Corresponds to the JSON property `azureMetadata`
+        # @return [Google::Apis::SecuritycenterV1::AzureMetadata]
+        attr_accessor :azure_metadata
+      
         # Indicates which cloud provider the finding is from.
         # Corresponds to the JSON property `cloudProvider`
         # @return [String]
@@ -9336,13 +9682,13 @@ module Google
         attr_accessor :resource_path
       
         # A string representation of the resource path. For Google Cloud, it has the
-        # format of org/`organization_id`/folder/`folder_id`/folder/`folder_id`/project/`
-        # project_id` where there can be any number of folders. For AWS, it has the
-        # format of org/`organization_id`/ou/`organizational_unit_id`/ou/`
-        # organizational_unit_id`/account/`account_id` where there can be any number of
-        # organizational units. For Azure, it has the format of mg/`management_group_id`/
-        # mg/`management_group_id`/subscription/`subscription_id`/rg/`
-        # resource_group_name` where there can be any number of management groups.
+        # format of `org/`organization_id`/folder/`folder_id`/folder/`folder_id`/project/
+        # `project_id`` where there can be any number of folders. For AWS, it has the
+        # format of `org/`organization_id`/ou/`organizational_unit_id`/ou/`
+        # organizational_unit_id`/account/`account_id`` where there can be any number of
+        # organizational units. For Azure, it has the format of `mg/`management_group_id`
+        # /mg/`management_group_id`/subscription/`subscription_id`/rg/`
+        # resource_group_name`` where there can be any number of management groups.
         # Corresponds to the JSON property `resourcePathString`
         # @return [String]
         attr_accessor :resource_path_string
@@ -9364,6 +9710,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @aws_metadata = args[:aws_metadata] if args.key?(:aws_metadata)
+          @azure_metadata = args[:azure_metadata] if args.key?(:azure_metadata)
           @cloud_provider = args[:cloud_provider] if args.key?(:cloud_provider)
           @display_name = args[:display_name] if args.key?(:display_name)
           @folders = args[:folders] if args.key?(:folders)
@@ -10051,7 +10398,7 @@ module Google
         # @return [String]
         attr_accessor :create_time
       
-        # Full resource name of the Simulation: organizations/123/simulations/456
+        # Full resource name of the Simulation: `organizations/123/simulations/456`
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -10315,6 +10662,37 @@ module Google
         end
       end
       
+      # Contains details about a group of security issues that, when the issues occur
+      # together, represent a greater risk than when the issues occur independently. A
+      # group of such issues is referred to as a toxic combination.
+      class ToxicCombination
+        include Google::Apis::Core::Hashable
+      
+        # The [Attack exposure score](https://cloud.google.com/security-command-center/
+        # docs/attack-exposure-learn#attack_exposure_scores) of this toxic combination.
+        # The score is a measure of how much this toxic combination exposes one or more
+        # high-value resources to potential attack.
+        # Corresponds to the JSON property `attackExposureScore`
+        # @return [Float]
+        attr_accessor :attack_exposure_score
+      
+        # List of resource names of findings associated with this toxic combination. For
+        # example, `organizations/123/sources/456/findings/789`.
+        # Corresponds to the JSON property `relatedFindings`
+        # @return [Array<String>]
+        attr_accessor :related_findings
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @attack_exposure_score = args[:attack_exposure_score] if args.key?(:attack_exposure_score)
+          @related_findings = args[:related_findings] if args.key?(:related_findings)
+        end
+      end
+      
       # Request to validate an Event Threat Detection custom module.
       class ValidateEventThreatDetectionCustomModuleRequest
         include Google::Apis::Core::Hashable