google-apis-securitycenter_v1 0.15.0 → 0.16.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c1628e48e4704916ae60a85c0f263b41226b0f07f57eea8c5a214ea5d9dfb39f
-  data.tar.gz: 062df5d8bca6bda49ef0d775305dd8c05032ea5e9dee52b5635348ea53e031f7
+  metadata.gz: 9e244c14c7e418d1b0bc02795994e1b96f3f70ea30bb763cadbb50857e43c1ce
+  data.tar.gz: a683ea1c2bc8e55b6d8ea0f7001d5565f584b6a6dc4deada1eabdeffcb847b3d
 SHA512:
-  metadata.gz: 309bdfd2c23bfc11f8d1986af4ec3a0cd25436c555b56882cde2cda53b32743d4f002516e92ef81f81b6d797384c4e826dacf0745293ef62de2a3fc88533fd30
-  data.tar.gz: 43b077e78747b63654e6c8b04f4e70f23934e53c325def7c7f88c4665aa0e7f43747d765c716ea1ed4657184e4a40beee2206d3a0f04f4ed281482e68b13256e
+  metadata.gz: 15e284d06998a8aec1005d7c73c359a78bf4471bcd2f00b3c6c8ef4374701baad81b5d7b0ac90e40b8077d77a06054758c4e026c7932366c9ecba015cb4f7c1c
+  data.tar.gz: ee4cc74c1dd5d61b1aadeb9572a08f3c477ab3b423d6f9b706e536dbf74eab466c4aa28d841330d3030dfe1cfdcb364b1454c00948fcbf042c1291106da24543

data/CHANGELOG.md

@@ -1,5 +1,9 @@
 # Release history for google-apis-securitycenter_v1
 
+### v0.16.0 (2021-11-16)
+
+* Regenerated from discovery document revision 20211112
+
 ### v0.15.0 (2021-11-09)
 
 * Regenerated from discovery document revision 20211103

data/lib/google/apis/securitycenter_v1/classes.rb

@@ -273,6 +273,42 @@ module Google
         end
       end
       
+      # Request message for bulk findings update. Note: 1. If multiple bulk update
+      # requests match the same resource, the order in which they get executed is not
+      # defined. 2. Once a bulk operation is started, there is no way to stop it.
+      class BulkMuteFindingsRequest
+        include Google::Apis::Core::Hashable
+      
+        # Expression that identifies findings that should be updated. The expression is
+        # a list of zero or more restrictions combined via logical operators `AND` and `
+        # OR`. Parentheses are supported, and `OR` has higher precedence than `AND`.
+        # Restrictions have the form ` ` and may have a `-` character in front of them
+        # to indicate negation. The fields map to those defined in the corresponding
+        # resource. The supported operators are: * `=` for all value types. * `>`, `<`, `
+        # >=`, `<=` for integer values. * `:`, meaning substring matching, for strings.
+        # The supported value types are: * string literals in quotes. * integer literals
+        # without quotes. * boolean literals `true` and `false` without quotes.
+        # Corresponds to the JSON property `filter`
+        # @return [String]
+        attr_accessor :filter
+      
+        # This can be a mute configuration name or any identifier for mute/unmute of
+        # findings based on the filter.
+        # Corresponds to the JSON property `muteAnnotation`
+        # @return [String]
+        attr_accessor :mute_annotation
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @filter = args[:filter] if args.key?(:filter)
+          @mute_annotation = args[:mute_annotation] if args.key?(:mute_annotation)
+        end
+      end
+      
       # CVE stands for Common Vulnerabilities and Exposures. More information: https://
       # cve.mitre.org
       class Cve
@@ -492,6 +528,12 @@ module Google
         # @return [String]
         attr_accessor :event_time
       
+        # Output only. Third party SIEM/SOAR fields within SCC, contains external system
+        # information and external system finding fields.
+        # Corresponds to the JSON property `externalSystems`
+        # @return [Hash<String,Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1ExternalSystem>]
+        attr_accessor :external_systems
+      
         # The URI that, if available, points to a web page outside of Security Command
         # Center where additional information about the finding can be found. This field
         # is guaranteed to be either empty or a well formed URL.
@@ -512,6 +554,24 @@ module Google
         # @return [Google::Apis::SecuritycenterV1::Indicator]
         attr_accessor :indicator
       
+        # Indicates the mute state of a finding (either unspecified, muted, unmuted or
+        # undefined).
+        # Corresponds to the JSON property `mute`
+        # @return [String]
+        attr_accessor :mute
+      
+        # First known as mute_annotation. Records additional information about the mute
+        # operation e.g. mute config that muted the finding, user who muted the finding,
+        # etc.
+        # Corresponds to the JSON property `muteInitiator`
+        # @return [String]
+        attr_accessor :mute_initiator
+      
+        # Output only. The most recent time this finding was muted or unmuted.
+        # Corresponds to the JSON property `muteUpdateTime`
+        # @return [String]
+        attr_accessor :mute_update_time
+      
         # The relative resource name of this finding. See: https://cloud.google.com/apis/
         # design/resource_names#relative_resource_name Example: "organizations/`
         # organization_id`/sources/`source_id`/findings/`finding_id`"
@@ -578,9 +638,13 @@ module Google
           @category = args[:category] if args.key?(:category)
           @create_time = args[:create_time] if args.key?(:create_time)
           @event_time = args[:event_time] if args.key?(:event_time)
+          @external_systems = args[:external_systems] if args.key?(:external_systems)
           @external_uri = args[:external_uri] if args.key?(:external_uri)
           @finding_class = args[:finding_class] if args.key?(:finding_class)
           @indicator = args[:indicator] if args.key?(:indicator)
+          @mute = args[:mute] if args.key?(:mute)
+          @mute_initiator = args[:mute_initiator] if args.key?(:mute_initiator)
+          @mute_update_time = args[:mute_update_time] if args.key?(:mute_update_time)
           @name = args[:name] if args.key?(:name)
           @parent = args[:parent] if args.key?(:parent)
           @resource_name = args[:resource_name] if args.key?(:resource_name)
@@ -665,6 +729,126 @@ module Google
         end
       end
       
+      # Representation of third party SIEM/SOAR fields within SCC.
+      class GoogleCloudSecuritycenterV1ExternalSystem
+        include Google::Apis::Core::Hashable
+      
+        # References primary/secondary etc assignees in the external system.
+        # Corresponds to the JSON property `assignees`
+        # @return [Array<String>]
+        attr_accessor :assignees
+      
+        # The most recent time when the corresponding finding's ticket/tracker was
+        # updated in the external system.
+        # Corresponds to the JSON property `externalSystemUpdateTime`
+        # @return [String]
+        attr_accessor :external_system_update_time
+      
+        # Identifier that's used to track the given finding in the external system.
+        # Corresponds to the JSON property `externalUid`
+        # @return [String]
+        attr_accessor :external_uid
+      
+        # External System Name e.g. jira, demisto, etc. e.g.: organizations/1234/sources/
+        # 5678/findings/123456/externalSystems/jira folders/1234/sources/5678/findings/
+        # 123456/externalSystems/jira projects/1234/sources/5678/findings/123456/
+        # externalSystems/jira
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # Most recent status of the corresponding finding's ticket/tracker in the
+        # external system.
+        # Corresponds to the JSON property `status`
+        # @return [String]
+        attr_accessor :status
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @assignees = args[:assignees] if args.key?(:assignees)
+          @external_system_update_time = args[:external_system_update_time] if args.key?(:external_system_update_time)
+          @external_uid = args[:external_uid] if args.key?(:external_uid)
+          @name = args[:name] if args.key?(:name)
+          @status = args[:status] if args.key?(:status)
+        end
+      end
+      
+      # A mute config is a Cloud SCC resource that contains the configuration to mute
+      # create/update events of findings.
+      class GoogleCloudSecuritycenterV1MuteConfig
+        include Google::Apis::Core::Hashable
+      
+        # Output only. The time at which the mute config was created. This field is set
+        # by the server and will be ignored if provided on config creation.
+        # Corresponds to the JSON property `createTime`
+        # @return [String]
+        attr_accessor :create_time
+      
+        # A description of the mute config.
+        # Corresponds to the JSON property `description`
+        # @return [String]
+        attr_accessor :description
+      
+        # The human readable name to be displayed for the mute config.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # Required. An expression that defines the filter to apply across create/update
+        # events of findings. While creating a filter string, be mindful of the scope in
+        # which the mute configuration is being created. E.g., If a filter contains
+        # project = X but is created under the project = Y scope, it might not match any
+        # findings. The following field and operator combinations are supported: *
+        # severity: `=`, `:` * category: `=`, `:` * resource.name: `=`, `:` * resource.
+        # project_name: `=`, `:` * resource.project_display_name: `=`, `:` * resource.
+        # folders.resource_folder: `=`, `:` * resource.parent_name: `=`, `:` * resource.
+        # parent_display_name: `=`, `:` * resource.type: `=`, `:` * finding_class: `=`, `
+        # :` * indicator.ip_addresses: `=`, `:` * indicator.domains: `=`, `:`
+        # Corresponds to the JSON property `filter`
+        # @return [String]
+        attr_accessor :filter
+      
+        # Output only. Email address of the user who last edited the mute config. This
+        # field is set by the server and will be ignored if provided on config creation
+        # or update.
+        # Corresponds to the JSON property `mostRecentEditor`
+        # @return [String]
+        attr_accessor :most_recent_editor
+      
+        # This field will be ignored if provided on config creation. Format "
+        # organizations/`organization`/muteConfigs/`mute_config`" "folders/`folder`/
+        # muteConfigs/`mute_config`" "projects/`project`/muteConfigs/`mute_config`"
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # Output only. The most recent time at which the mute config was updated. This
+        # field is set by the server and will be ignored if provided on config creation
+        # or update.
+        # Corresponds to the JSON property `updateTime`
+        # @return [String]
+        attr_accessor :update_time
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @create_time = args[:create_time] if args.key?(:create_time)
+          @description = args[:description] if args.key?(:description)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @filter = args[:filter] if args.key?(:filter)
+          @most_recent_editor = args[:most_recent_editor] if args.key?(:most_recent_editor)
+          @name = args[:name] if args.key?(:name)
+          @update_time = args[:update_time] if args.key?(:update_time)
+        end
+      end
+      
       # Cloud SCC's Notification
       class GoogleCloudSecuritycenterV1NotificationMessage
         include Google::Apis::Core::Hashable
@@ -1622,6 +1806,32 @@ module Google
         end
       end
       
+      # Response message for listing mute configs.
+      class ListMuteConfigsResponse
+        include Google::Apis::Core::Hashable
+      
+        # The mute configs from the specified parent.
+        # Corresponds to the JSON property `muteConfigs`
+        # @return [Array<Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1MuteConfig>]
+        attr_accessor :mute_configs
+      
+        # A token, which can be sent as `page_token` to retrieve the next page. If this
+        # field is omitted, there are no subsequent pages.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @mute_configs = args[:mute_configs] if args.key?(:mute_configs)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+        end
+      end
+      
       # Response message for listing notification configs.
       class ListNotificationConfigsResponse
         include Google::Apis::Core::Hashable
@@ -2248,6 +2458,25 @@ module Google
         end
       end
       
+      # Request message for updating a finding's mute status.
+      class SetMuteRequest
+        include Google::Apis::Core::Hashable
+      
+        # Required. The desired state of the Mute.
+        # Corresponds to the JSON property `mute`
+        # @return [String]
+        attr_accessor :mute
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @mute = args[:mute] if args.key?(:mute)
+        end
+      end
+      
       # Security Command Center finding source. A finding source is an entity or a
       # mechanism that can produce a finding. A source is like a container of findings
       # that come from the same scanner, logger, monitor, and other tools.

data/lib/google/apis/securitycenter_v1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module SecuritycenterV1
       # Version of the google-apis-securitycenter_v1 gem
-      GEM_VERSION = "0.15.0"
+      GEM_VERSION = "0.16.0"
 
       # Version of the code generator used to generate this client
       GENERATOR_VERSION = "0.4.0"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20211103"
+      REVISION = "20211112"
     end
   end
 end

data/lib/google/apis/securitycenter_v1/representations.rb

@@ -52,6 +52,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class BulkMuteFindingsRequest
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Cve
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -100,6 +106,18 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class GoogleCloudSecuritycenterV1ExternalSystem
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class GoogleCloudSecuritycenterV1MuteConfig
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class GoogleCloudSecuritycenterV1NotificationMessage
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -226,6 +244,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class ListMuteConfigsResponse
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class ListNotificationConfigsResponse
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -310,6 +334,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class SetMuteRequest
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Source
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -399,6 +429,14 @@ module Google
         end
       end
       
+      class BulkMuteFindingsRequest
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :filter, as: 'filter'
+          property :mute_annotation, as: 'muteAnnotation'
+        end
+      end
+      
       class Cve
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -448,10 +486,15 @@ module Google
           property :category, as: 'category'
           property :create_time, as: 'createTime'
           property :event_time, as: 'eventTime'
+          hash :external_systems, as: 'externalSystems', class: Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1ExternalSystem, decorator: Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1ExternalSystem::Representation
+      
           property :external_uri, as: 'externalUri'
           property :finding_class, as: 'findingClass'
           property :indicator, as: 'indicator', class: Google::Apis::SecuritycenterV1::Indicator, decorator: Google::Apis::SecuritycenterV1::Indicator::Representation
       
+          property :mute, as: 'mute'
+          property :mute_initiator, as: 'muteInitiator'
+          property :mute_update_time, as: 'muteUpdateTime'
           property :name, as: 'name'
           property :parent, as: 'parent'
           property :resource_name, as: 'resourceName'
@@ -488,6 +531,30 @@ module Google
         end
       end
       
+      class GoogleCloudSecuritycenterV1ExternalSystem
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          collection :assignees, as: 'assignees'
+          property :external_system_update_time, as: 'externalSystemUpdateTime'
+          property :external_uid, as: 'externalUid'
+          property :name, as: 'name'
+          property :status, as: 'status'
+        end
+      end
+      
+      class GoogleCloudSecuritycenterV1MuteConfig
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :create_time, as: 'createTime'
+          property :description, as: 'description'
+          property :display_name, as: 'displayName'
+          property :filter, as: 'filter'
+          property :most_recent_editor, as: 'mostRecentEditor'
+          property :name, as: 'name'
+          property :update_time, as: 'updateTime'
+        end
+      end
+      
       class GoogleCloudSecuritycenterV1NotificationMessage
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -709,6 +776,15 @@ module Google
         end
       end
       
+      class ListMuteConfigsResponse
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          collection :mute_configs, as: 'muteConfigs', class: Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1MuteConfig, decorator: Google::Apis::SecuritycenterV1::GoogleCloudSecuritycenterV1MuteConfig::Representation
+      
+          property :next_page_token, as: 'nextPageToken'
+        end
+      end
+      
       class ListNotificationConfigsResponse
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -853,6 +929,13 @@ module Google
         end
       end
       
+      class SetMuteRequest
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :mute, as: 'mute'
+        end
+      end
+      
       class Source
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation