google-apis-securitycenter_v1beta1 0.32.0 → 0.35.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: a1969c4165e81cda08ba6a6fb2ad031d1ade766d470d038b70efd2a2ab8a5823
4
- data.tar.gz: f0d40307b63b4b3b13931cd62069bd6cfa3dc1997a4de37dd736e1af7a2dcc0e
3
+ metadata.gz: b3959070d956e84f8da770051e65b7a13e2ff060ff07e9d307564df46e0911f8
4
+ data.tar.gz: f176641c6014cfc73c8986ede87e1535821a8f7d18cb182ebb30aa068774dd1d
5
5
  SHA512:
6
- metadata.gz: cdfacf7c58c2d3d38bd1812a3d3f8ee528a8c0936a130e5c8cc5e7487bd30ce70443fc7b5010be6eb9d78f20139709483ef9ec4568921b2e327c921b2a846019
7
- data.tar.gz: 6ca940977c59fe9e1900d056f45320622006dfc4ae69984e1c329ce5079021c37c21447e00c86d51141e1b856ed5d9e8af9f438d55ef14201d9668ccc3a97e0f
6
+ metadata.gz: 9a51ce91eb735e1e6fbc4e5f32d77ff2daaf3e038ffa519de943eae4b4016413c18e95dfeef3768dbedf67d7f9c7fd3a281f602e97bf911527cc9a232d8fb9fb
7
+ data.tar.gz: 8dead1295e9f2b2a4710b613d60bb8ed63ef7c9d27634759761ddaff7f28f673dc1fb3cf0950001a61a59a31152d6594baa227bbccb53f18f3cc2179e9216405
data/CHANGELOG.md CHANGED
@@ -1,5 +1,17 @@
1
1
  # Release history for google-apis-securitycenter_v1beta1
2
2
 
3
+ ### v0.35.0 (2022-08-02)
4
+
5
+ * Regenerated from discovery document revision 20220728
6
+
7
+ ### v0.34.0 (2022-07-26)
8
+
9
+ * Regenerated from discovery document revision 20220720
10
+
11
+ ### v0.33.0 (2022-07-19)
12
+
13
+ * Regenerated from discovery document revision 20220713
14
+
3
15
  ### v0.32.0 (2022-07-12)
4
16
 
5
17
  * Regenerated from discovery document revision 20220707
@@ -41,11 +41,44 @@ module Google
41
41
  # @return [String]
42
42
  attr_accessor :method_name
43
43
 
44
- # Associated email, such as "foo@google.com".
44
+ # Associated email, such as "foo@google.com". The email address of the
45
+ # authenticated user (or service account on behalf of third party principal)
46
+ # making the request. For third party identity callers, the `principal_subject`
47
+ # field is populated instead of this field. For privacy reasons, the principal
48
+ # email address is sometimes redacted. For more information, see [Caller
49
+ # identities in audit logs](https://cloud.google.com/logging/docs/audit#user-id).
45
50
  # Corresponds to the JSON property `principalEmail`
46
51
  # @return [String]
47
52
  attr_accessor :principal_email
48
53
 
54
+ # A string representing the principal_subject associated with the identity. As
55
+ # compared to `principal_email`, supports principals that aren't associated with
56
+ # email addresses, such as third party principals. For most identities, the
57
+ # format will be `principal://iam.googleapis.com/`identity pool name`/subject/`
58
+ # subject)` except for some GKE identities (GKE_WORKLOAD, FREEFORM,
59
+ # GKE_HUB_WORKLOAD) that are still in the legacy format `serviceAccount:`
60
+ # identity pool name`[`subject`]`
61
+ # Corresponds to the JSON property `principalSubject`
62
+ # @return [String]
63
+ attr_accessor :principal_subject
64
+
65
+ # Identity delegation history of an authenticated service account that makes the
66
+ # request. It contains information on the real authorities that try to access
67
+ # GCP resources by delegating on a service account. When multiple authorities
68
+ # are present, they are guaranteed to be sorted based on the original ordering
69
+ # of the identity delegation events.
70
+ # Corresponds to the JSON property `serviceAccountDelegationInfo`
71
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::ServiceAccountDelegationInfo>]
72
+ attr_accessor :service_account_delegation_info
73
+
74
+ # The name of the service account key used to create or exchange credentials for
75
+ # authenticating the service account making the request. This is a scheme-less
76
+ # URI full resource name. For example: "//iam.googleapis.com/projects/`
77
+ # PROJECT_ID`/serviceAccounts/`ACCOUNT`/keys/`key`"
78
+ # Corresponds to the JSON property `serviceAccountKeyName`
79
+ # @return [String]
80
+ attr_accessor :service_account_key_name
81
+
49
82
  # This is the API service that the service account made a call to, e.g. "iam.
50
83
  # googleapis.com"
51
84
  # Corresponds to the JSON property `serviceName`
@@ -68,11 +101,72 @@ module Google
68
101
  @caller_ip_geo = args[:caller_ip_geo] if args.key?(:caller_ip_geo)
69
102
  @method_name = args[:method_name] if args.key?(:method_name)
70
103
  @principal_email = args[:principal_email] if args.key?(:principal_email)
104
+ @principal_subject = args[:principal_subject] if args.key?(:principal_subject)
105
+ @service_account_delegation_info = args[:service_account_delegation_info] if args.key?(:service_account_delegation_info)
106
+ @service_account_key_name = args[:service_account_key_name] if args.key?(:service_account_key_name)
71
107
  @service_name = args[:service_name] if args.key?(:service_name)
72
108
  @user_agent_family = args[:user_agent_family] if args.key?(:user_agent_family)
73
109
  end
74
110
  end
75
111
 
112
+ # Conveys information about a Kubernetes access review (e.g. kubectl auth can-i .
113
+ # ..) that was involved in a finding.
114
+ class AccessReview
115
+ include Google::Apis::Core::Hashable
116
+
117
+ # Group is the API Group of the Resource. "*" means all.
118
+ # Corresponds to the JSON property `group`
119
+ # @return [String]
120
+ attr_accessor :group
121
+
122
+ # Name is the name of the resource being requested. Empty means all.
123
+ # Corresponds to the JSON property `name`
124
+ # @return [String]
125
+ attr_accessor :name
126
+
127
+ # Namespace of the action being requested. Currently, there is no distinction
128
+ # between no namespace and all namespaces. Both are represented by "" (empty).
129
+ # Corresponds to the JSON property `ns`
130
+ # @return [String]
131
+ attr_accessor :ns
132
+
133
+ # Resource is the optional resource type requested. "*" means all.
134
+ # Corresponds to the JSON property `resource`
135
+ # @return [String]
136
+ attr_accessor :resource
137
+
138
+ # Subresource is the optional subresource type.
139
+ # Corresponds to the JSON property `subresource`
140
+ # @return [String]
141
+ attr_accessor :subresource
142
+
143
+ # Verb is a Kubernetes resource API verb, like: get, list, watch, create, update,
144
+ # delete, proxy. "*" means all.
145
+ # Corresponds to the JSON property `verb`
146
+ # @return [String]
147
+ attr_accessor :verb
148
+
149
+ # Version is the API Version of the Resource. "*" means all.
150
+ # Corresponds to the JSON property `version`
151
+ # @return [String]
152
+ attr_accessor :version
153
+
154
+ def initialize(**args)
155
+ update!(**args)
156
+ end
157
+
158
+ # Update properties of this object
159
+ def update!(**args)
160
+ @group = args[:group] if args.key?(:group)
161
+ @name = args[:name] if args.key?(:name)
162
+ @ns = args[:ns] if args.key?(:ns)
163
+ @resource = args[:resource] if args.key?(:resource)
164
+ @subresource = args[:subresource] if args.key?(:subresource)
165
+ @verb = args[:verb] if args.key?(:verb)
166
+ @version = args[:version] if args.key?(:version)
167
+ end
168
+ end
169
+
76
170
  # Security Command Center representation of a Google Cloud resource. The Asset
77
171
  # is a Security Command Center resource that captures information about a single
78
172
  # Google Cloud resource. All modifications to an Asset are only within the
@@ -429,6 +523,45 @@ module Google
429
523
  end
430
524
  end
431
525
 
526
+ # Container associated with the finding.
527
+ class Container
528
+ include Google::Apis::Core::Hashable
529
+
530
+ # Optional container image id, when provided by the container runtime. Uniquely
531
+ # identifies the container image launched using a container image digest.
532
+ # Corresponds to the JSON property `imageId`
533
+ # @return [String]
534
+ attr_accessor :image_id
535
+
536
+ # Container labels, as provided by the container runtime.
537
+ # Corresponds to the JSON property `labels`
538
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::Label>]
539
+ attr_accessor :labels
540
+
541
+ # Container name.
542
+ # Corresponds to the JSON property `name`
543
+ # @return [String]
544
+ attr_accessor :name
545
+
546
+ # Container image URI provided when configuring a pod/container. May identify a
547
+ # container image version using mutable tags.
548
+ # Corresponds to the JSON property `uri`
549
+ # @return [String]
550
+ attr_accessor :uri
551
+
552
+ def initialize(**args)
553
+ update!(**args)
554
+ end
555
+
556
+ # Update properties of this object
557
+ def update!(**args)
558
+ @image_id = args[:image_id] if args.key?(:image_id)
559
+ @labels = args[:labels] if args.key?(:labels)
560
+ @name = args[:name] if args.key?(:name)
561
+ @uri = args[:uri] if args.key?(:uri)
562
+ end
563
+ end
564
+
432
565
  # CVE stands for Common Vulnerabilities and Exposures. More information: https://
433
566
  # cve.mitre.org
434
567
  class Cve
@@ -822,12 +955,18 @@ module Google
822
955
  # key represents the type of contact, while the value contains a list of all the
823
956
  # contacts that pertain. Please refer to: https://cloud.google.com/resource-
824
957
  # manager/docs/managing-notification-contacts#notification-categories ` "
825
- # security":[ ` "contact":` "email":"person1@company.com" ` `, ` "contact":` "
826
- # email":“person2@company.com ` ` ] `
958
+ # security": ` "contacts": [ ` "email": "person1@company.com" `, ` "email": "
959
+ # person2@company.com" ` ] `
827
960
  # Corresponds to the JSON property `contacts`
828
961
  # @return [Hash<String,Google::Apis::SecuritycenterV1beta1::ContactDetails>]
829
962
  attr_accessor :contacts
830
963
 
964
+ # Containers associated with the finding. containers provides information for
965
+ # both Kubernetes and non-Kubernetes containers.
966
+ # Corresponds to the JSON property `containers`
967
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::Container>]
968
+ attr_accessor :containers
969
+
831
970
  # The time at which the finding was created in Security Command Center.
832
971
  # Corresponds to the JSON property `createTime`
833
972
  # @return [String]
@@ -886,6 +1025,11 @@ module Google
886
1025
  # @return [Google::Apis::SecuritycenterV1beta1::Indicator]
887
1026
  attr_accessor :indicator
888
1027
 
1028
+ # Kubernetes related attributes.
1029
+ # Corresponds to the JSON property `kubernetes`
1030
+ # @return [Google::Apis::SecuritycenterV1beta1::Kubernetes]
1031
+ attr_accessor :kubernetes
1032
+
889
1033
  # MITRE ATT&CK tactics and techniques related to this finding. See: https://
890
1034
  # attack.mitre.org
891
1035
  # Corresponds to the JSON property `mitreAttack`
@@ -990,6 +1134,7 @@ module Google
990
1134
  @compliances = args[:compliances] if args.key?(:compliances)
991
1135
  @connections = args[:connections] if args.key?(:connections)
992
1136
  @contacts = args[:contacts] if args.key?(:contacts)
1137
+ @containers = args[:containers] if args.key?(:containers)
993
1138
  @create_time = args[:create_time] if args.key?(:create_time)
994
1139
  @description = args[:description] if args.key?(:description)
995
1140
  @event_time = args[:event_time] if args.key?(:event_time)
@@ -999,6 +1144,7 @@ module Google
999
1144
  @finding_class = args[:finding_class] if args.key?(:finding_class)
1000
1145
  @iam_bindings = args[:iam_bindings] if args.key?(:iam_bindings)
1001
1146
  @indicator = args[:indicator] if args.key?(:indicator)
1147
+ @kubernetes = args[:kubernetes] if args.key?(:kubernetes)
1002
1148
  @mitre_attack = args[:mitre_attack] if args.key?(:mitre_attack)
1003
1149
  @mute = args[:mute] if args.key?(:mute)
1004
1150
  @mute_initiator = args[:mute_initiator] if args.key?(:mute_initiator)
@@ -1191,6 +1337,44 @@ module Google
1191
1337
  end
1192
1338
  end
1193
1339
 
1340
+ # Represents a Kubernetes RoleBinding or ClusterRoleBinding.
1341
+ class GoogleCloudSecuritycenterV1Binding
1342
+ include Google::Apis::Core::Hashable
1343
+
1344
+ # Name for binding.
1345
+ # Corresponds to the JSON property `name`
1346
+ # @return [String]
1347
+ attr_accessor :name
1348
+
1349
+ # Namespace for binding.
1350
+ # Corresponds to the JSON property `ns`
1351
+ # @return [String]
1352
+ attr_accessor :ns
1353
+
1354
+ # Kubernetes Role or ClusterRole.
1355
+ # Corresponds to the JSON property `role`
1356
+ # @return [Google::Apis::SecuritycenterV1beta1::Role]
1357
+ attr_accessor :role
1358
+
1359
+ # Represents the subjects(s) bound to the role. Not always available for PATCH
1360
+ # requests.
1361
+ # Corresponds to the JSON property `subjects`
1362
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::Subject>]
1363
+ attr_accessor :subjects
1364
+
1365
+ def initialize(**args)
1366
+ update!(**args)
1367
+ end
1368
+
1369
+ # Update properties of this object
1370
+ def update!(**args)
1371
+ @name = args[:name] if args.key?(:name)
1372
+ @ns = args[:ns] if args.key?(:ns)
1373
+ @role = args[:role] if args.key?(:role)
1374
+ @subjects = args[:subjects] if args.key?(:subjects)
1375
+ end
1376
+ end
1377
+
1194
1378
  # The response to a BulkMute request. Contains the LRO information.
1195
1379
  class GoogleCloudSecuritycenterV1BulkMuteFindingsResponse
1196
1380
  include Google::Apis::Core::Hashable
@@ -2202,6 +2386,11 @@ module Google
2202
2386
  # @return [Array<Google::Apis::SecuritycenterV1beta1::ProcessSignature>]
2203
2387
  attr_accessor :signatures
2204
2388
 
2389
+ # The list of URIs associated to the Findings
2390
+ # Corresponds to the JSON property `uris`
2391
+ # @return [Array<String>]
2392
+ attr_accessor :uris
2393
+
2205
2394
  def initialize(**args)
2206
2395
  update!(**args)
2207
2396
  end
@@ -2211,6 +2400,87 @@ module Google
2211
2400
  @domains = args[:domains] if args.key?(:domains)
2212
2401
  @ip_addresses = args[:ip_addresses] if args.key?(:ip_addresses)
2213
2402
  @signatures = args[:signatures] if args.key?(:signatures)
2403
+ @uris = args[:uris] if args.key?(:uris)
2404
+ end
2405
+ end
2406
+
2407
+ # Kubernetes related attributes.
2408
+ class Kubernetes
2409
+ include Google::Apis::Core::Hashable
2410
+
2411
+ # Provides information on any Kubernetes access reviews (i.e. privilege checks)
2412
+ # relevant to the finding.
2413
+ # Corresponds to the JSON property `accessReviews`
2414
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::AccessReview>]
2415
+ attr_accessor :access_reviews
2416
+
2417
+ # Provides Kubernetes role binding information for findings that involve
2418
+ # RoleBindings or ClusterRoleBindings.
2419
+ # Corresponds to the JSON property `bindings`
2420
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::GoogleCloudSecuritycenterV1Binding>]
2421
+ attr_accessor :bindings
2422
+
2423
+ # GKE Node Pools associated with the finding. This field will contain NodePool
2424
+ # information for each Node, when it is available.
2425
+ # Corresponds to the JSON property `nodePools`
2426
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::NodePool>]
2427
+ attr_accessor :node_pools
2428
+
2429
+ # Provides Kubernetes Node information.
2430
+ # Corresponds to the JSON property `nodes`
2431
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::Node>]
2432
+ attr_accessor :nodes
2433
+
2434
+ # Kubernetes Pods associated with the finding. This field will contain Pod
2435
+ # records for each container that is owned by a Pod.
2436
+ # Corresponds to the JSON property `pods`
2437
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::Pod>]
2438
+ attr_accessor :pods
2439
+
2440
+ # Provides Kubernetes role information for findings that involve Roles or
2441
+ # ClusterRoles.
2442
+ # Corresponds to the JSON property `roles`
2443
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::Role>]
2444
+ attr_accessor :roles
2445
+
2446
+ def initialize(**args)
2447
+ update!(**args)
2448
+ end
2449
+
2450
+ # Update properties of this object
2451
+ def update!(**args)
2452
+ @access_reviews = args[:access_reviews] if args.key?(:access_reviews)
2453
+ @bindings = args[:bindings] if args.key?(:bindings)
2454
+ @node_pools = args[:node_pools] if args.key?(:node_pools)
2455
+ @nodes = args[:nodes] if args.key?(:nodes)
2456
+ @pods = args[:pods] if args.key?(:pods)
2457
+ @roles = args[:roles] if args.key?(:roles)
2458
+ end
2459
+ end
2460
+
2461
+ # Label represents a generic name=value label. Label has separate name and value
2462
+ # fields to support filtering with contains().
2463
+ class Label
2464
+ include Google::Apis::Core::Hashable
2465
+
2466
+ # Label name.
2467
+ # Corresponds to the JSON property `name`
2468
+ # @return [String]
2469
+ attr_accessor :name
2470
+
2471
+ # Label value.
2472
+ # Corresponds to the JSON property `value`
2473
+ # @return [String]
2474
+ attr_accessor :value
2475
+
2476
+ def initialize(**args)
2477
+ update!(**args)
2478
+ end
2479
+
2480
+ # Update properties of this object
2481
+ def update!(**args)
2482
+ @name = args[:name] if args.key?(:name)
2483
+ @value = args[:value] if args.key?(:value)
2214
2484
  end
2215
2485
  end
2216
2486
 
@@ -2445,6 +2715,50 @@ module Google
2445
2715
  end
2446
2716
  end
2447
2717
 
2718
+ # Kubernetes Nodes associated with the finding.
2719
+ class Node
2720
+ include Google::Apis::Core::Hashable
2721
+
2722
+ # Full Resource name of the Compute Engine VM running the cluster node.
2723
+ # Corresponds to the JSON property `name`
2724
+ # @return [String]
2725
+ attr_accessor :name
2726
+
2727
+ def initialize(**args)
2728
+ update!(**args)
2729
+ end
2730
+
2731
+ # Update properties of this object
2732
+ def update!(**args)
2733
+ @name = args[:name] if args.key?(:name)
2734
+ end
2735
+ end
2736
+
2737
+ # Provides GKE Node Pool information.
2738
+ class NodePool
2739
+ include Google::Apis::Core::Hashable
2740
+
2741
+ # Kubernetes Node pool name.
2742
+ # Corresponds to the JSON property `name`
2743
+ # @return [String]
2744
+ attr_accessor :name
2745
+
2746
+ # Nodes associated with the finding.
2747
+ # Corresponds to the JSON property `nodes`
2748
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::Node>]
2749
+ attr_accessor :nodes
2750
+
2751
+ def initialize(**args)
2752
+ update!(**args)
2753
+ end
2754
+
2755
+ # Update properties of this object
2756
+ def update!(**args)
2757
+ @name = args[:name] if args.key?(:name)
2758
+ @nodes = args[:nodes] if args.key?(:nodes)
2759
+ end
2760
+ end
2761
+
2448
2762
  # This resource represents a long-running operation that is the result of a
2449
2763
  # network API call.
2450
2764
  class Operation
@@ -2544,6 +2858,43 @@ module Google
2544
2858
  end
2545
2859
  end
2546
2860
 
2861
+ # Kubernetes Pod.
2862
+ class Pod
2863
+ include Google::Apis::Core::Hashable
2864
+
2865
+ # Pod containers associated with this finding, if any.
2866
+ # Corresponds to the JSON property `containers`
2867
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::Container>]
2868
+ attr_accessor :containers
2869
+
2870
+ # Pod labels. For Kubernetes containers, these are applied to the container.
2871
+ # Corresponds to the JSON property `labels`
2872
+ # @return [Array<Google::Apis::SecuritycenterV1beta1::Label>]
2873
+ attr_accessor :labels
2874
+
2875
+ # Kubernetes Pod name.
2876
+ # Corresponds to the JSON property `name`
2877
+ # @return [String]
2878
+ attr_accessor :name
2879
+
2880
+ # Kubernetes Pod namespace.
2881
+ # Corresponds to the JSON property `ns`
2882
+ # @return [String]
2883
+ attr_accessor :ns
2884
+
2885
+ def initialize(**args)
2886
+ update!(**args)
2887
+ end
2888
+
2889
+ # Update properties of this object
2890
+ def update!(**args)
2891
+ @containers = args[:containers] if args.key?(:containers)
2892
+ @labels = args[:labels] if args.key?(:labels)
2893
+ @name = args[:name] if args.key?(:name)
2894
+ @ns = args[:ns] if args.key?(:ns)
2895
+ end
2896
+ end
2897
+
2547
2898
  # An Identity and Access Management (IAM) policy, which specifies access
2548
2899
  # controls for Google Cloud resources. A `Policy` is a collection of `bindings`.
2549
2900
  # A `binding` binds one or more `members`, or principals, to a single `role`.
@@ -2768,6 +3119,37 @@ module Google
2768
3119
  end
2769
3120
  end
2770
3121
 
3122
+ # Kubernetes Role or ClusterRole.
3123
+ class Role
3124
+ include Google::Apis::Core::Hashable
3125
+
3126
+ # Role type.
3127
+ # Corresponds to the JSON property `kind`
3128
+ # @return [String]
3129
+ attr_accessor :kind
3130
+
3131
+ # Role name.
3132
+ # Corresponds to the JSON property `name`
3133
+ # @return [String]
3134
+ attr_accessor :name
3135
+
3136
+ # Role namespace.
3137
+ # Corresponds to the JSON property `ns`
3138
+ # @return [String]
3139
+ attr_accessor :ns
3140
+
3141
+ def initialize(**args)
3142
+ update!(**args)
3143
+ end
3144
+
3145
+ # Update properties of this object
3146
+ def update!(**args)
3147
+ @kind = args[:kind] if args.key?(:kind)
3148
+ @name = args[:name] if args.key?(:name)
3149
+ @ns = args[:ns] if args.key?(:ns)
3150
+ end
3151
+ end
3152
+
2771
3153
  # Request message for running asset discovery for an organization.
2772
3154
  class RunAssetDiscoveryRequest
2773
3155
  include Google::Apis::Core::Hashable
@@ -2878,6 +3260,37 @@ module Google
2878
3260
  end
2879
3261
  end
2880
3262
 
3263
+ # Identity delegation history of an authenticated service account.
3264
+ class ServiceAccountDelegationInfo
3265
+ include Google::Apis::Core::Hashable
3266
+
3267
+ # The email address of a Google account. .
3268
+ # Corresponds to the JSON property `principalEmail`
3269
+ # @return [String]
3270
+ attr_accessor :principal_email
3271
+
3272
+ # A string representing the principal_subject associated with the identity. As
3273
+ # compared to `principal_email`, supports principals that aren't associated with
3274
+ # email addresses, such as third party principals. For most identities, the
3275
+ # format will be `principal://iam.googleapis.com/`identity pool name`/subject/`
3276
+ # subject)` except for some GKE identities (GKE_WORKLOAD, FREEFORM,
3277
+ # GKE_HUB_WORKLOAD) that are still in the legacy format `serviceAccount:`
3278
+ # identity pool name`[`subject`]`
3279
+ # Corresponds to the JSON property `principalSubject`
3280
+ # @return [String]
3281
+ attr_accessor :principal_subject
3282
+
3283
+ def initialize(**args)
3284
+ update!(**args)
3285
+ end
3286
+
3287
+ # Update properties of this object
3288
+ def update!(**args)
3289
+ @principal_email = args[:principal_email] if args.key?(:principal_email)
3290
+ @principal_subject = args[:principal_subject] if args.key?(:principal_subject)
3291
+ end
3292
+ end
3293
+
2881
3294
  # Request message for updating a finding's state.
2882
3295
  class SetFindingStateRequest
2883
3296
  include Google::Apis::Core::Hashable
@@ -3037,6 +3450,37 @@ module Google
3037
3450
  end
3038
3451
  end
3039
3452
 
3453
+ # Represents a Kubernetes Subject.
3454
+ class Subject
3455
+ include Google::Apis::Core::Hashable
3456
+
3457
+ # Authentication type for subject.
3458
+ # Corresponds to the JSON property `kind`
3459
+ # @return [String]
3460
+ attr_accessor :kind
3461
+
3462
+ # Name for subject.
3463
+ # Corresponds to the JSON property `name`
3464
+ # @return [String]
3465
+ attr_accessor :name
3466
+
3467
+ # Namespace for subject.
3468
+ # Corresponds to the JSON property `ns`
3469
+ # @return [String]
3470
+ attr_accessor :ns
3471
+
3472
+ def initialize(**args)
3473
+ update!(**args)
3474
+ end
3475
+
3476
+ # Update properties of this object
3477
+ def update!(**args)
3478
+ @kind = args[:kind] if args.key?(:kind)
3479
+ @name = args[:name] if args.key?(:name)
3480
+ @ns = args[:ns] if args.key?(:ns)
3481
+ end
3482
+ end
3483
+
3040
3484
  # Request message for `TestIamPermissions` method.
3041
3485
  class TestIamPermissionsRequest
3042
3486
  include Google::Apis::Core::Hashable
@@ -16,13 +16,13 @@ module Google
16
16
  module Apis
17
17
  module SecuritycenterV1beta1
18
18
  # Version of the google-apis-securitycenter_v1beta1 gem
19
- GEM_VERSION = "0.32.0"
19
+ GEM_VERSION = "0.35.0"
20
20
 
21
21
  # Version of the code generator used to generate this client
22
22
  GENERATOR_VERSION = "0.9.0"
23
23
 
24
24
  # Revision of the discovery document this client was generated from
25
- REVISION = "20220707"
25
+ REVISION = "20220728"
26
26
  end
27
27
  end
28
28
  end
@@ -28,6 +28,12 @@ module Google
28
28
  include Google::Apis::Core::JsonObjectSupport
29
29
  end
30
30
 
31
+ class AccessReview
32
+ class Representation < Google::Apis::Core::JsonRepresentation; end
33
+
34
+ include Google::Apis::Core::JsonObjectSupport
35
+ end
36
+
31
37
  class Asset
32
38
  class Representation < Google::Apis::Core::JsonRepresentation; end
33
39
 
@@ -88,6 +94,12 @@ module Google
88
94
  include Google::Apis::Core::JsonObjectSupport
89
95
  end
90
96
 
97
+ class Container
98
+ class Representation < Google::Apis::Core::JsonRepresentation; end
99
+
100
+ include Google::Apis::Core::JsonObjectSupport
101
+ end
102
+
91
103
  class Cve
92
104
  class Representation < Google::Apis::Core::JsonRepresentation; end
93
105
 
@@ -178,6 +190,12 @@ module Google
178
190
  include Google::Apis::Core::JsonObjectSupport
179
191
  end
180
192
 
193
+ class GoogleCloudSecuritycenterV1Binding
194
+ class Representation < Google::Apis::Core::JsonRepresentation; end
195
+
196
+ include Google::Apis::Core::JsonObjectSupport
197
+ end
198
+
181
199
  class GoogleCloudSecuritycenterV1BulkMuteFindingsResponse
182
200
  class Representation < Google::Apis::Core::JsonRepresentation; end
183
201
 
@@ -310,6 +328,18 @@ module Google
310
328
  include Google::Apis::Core::JsonObjectSupport
311
329
  end
312
330
 
331
+ class Kubernetes
332
+ class Representation < Google::Apis::Core::JsonRepresentation; end
333
+
334
+ include Google::Apis::Core::JsonObjectSupport
335
+ end
336
+
337
+ class Label
338
+ class Representation < Google::Apis::Core::JsonRepresentation; end
339
+
340
+ include Google::Apis::Core::JsonObjectSupport
341
+ end
342
+
313
343
  class ListAssetsResponse
314
344
  class Representation < Google::Apis::Core::JsonRepresentation; end
315
345
 
@@ -352,6 +382,18 @@ module Google
352
382
  include Google::Apis::Core::JsonObjectSupport
353
383
  end
354
384
 
385
+ class Node
386
+ class Representation < Google::Apis::Core::JsonRepresentation; end
387
+
388
+ include Google::Apis::Core::JsonObjectSupport
389
+ end
390
+
391
+ class NodePool
392
+ class Representation < Google::Apis::Core::JsonRepresentation; end
393
+
394
+ include Google::Apis::Core::JsonObjectSupport
395
+ end
396
+
355
397
  class Operation
356
398
  class Representation < Google::Apis::Core::JsonRepresentation; end
357
399
 
@@ -364,6 +406,12 @@ module Google
364
406
  include Google::Apis::Core::JsonObjectSupport
365
407
  end
366
408
 
409
+ class Pod
410
+ class Representation < Google::Apis::Core::JsonRepresentation; end
411
+
412
+ include Google::Apis::Core::JsonObjectSupport
413
+ end
414
+
367
415
  class Policy
368
416
  class Representation < Google::Apis::Core::JsonRepresentation; end
369
417
 
@@ -388,6 +436,12 @@ module Google
388
436
  include Google::Apis::Core::JsonObjectSupport
389
437
  end
390
438
 
439
+ class Role
440
+ class Representation < Google::Apis::Core::JsonRepresentation; end
441
+
442
+ include Google::Apis::Core::JsonObjectSupport
443
+ end
444
+
391
445
  class RunAssetDiscoveryRequest
392
446
  class Representation < Google::Apis::Core::JsonRepresentation; end
393
447
 
@@ -406,6 +460,12 @@ module Google
406
460
  include Google::Apis::Core::JsonObjectSupport
407
461
  end
408
462
 
463
+ class ServiceAccountDelegationInfo
464
+ class Representation < Google::Apis::Core::JsonRepresentation; end
465
+
466
+ include Google::Apis::Core::JsonObjectSupport
467
+ end
468
+
409
469
  class SetFindingStateRequest
410
470
  class Representation < Google::Apis::Core::JsonRepresentation; end
411
471
 
@@ -430,6 +490,12 @@ module Google
430
490
  include Google::Apis::Core::JsonObjectSupport
431
491
  end
432
492
 
493
+ class Subject
494
+ class Representation < Google::Apis::Core::JsonRepresentation; end
495
+
496
+ include Google::Apis::Core::JsonObjectSupport
497
+ end
498
+
433
499
  class TestIamPermissionsRequest
434
500
  class Representation < Google::Apis::Core::JsonRepresentation; end
435
501
 
@@ -462,11 +528,28 @@ module Google
462
528
 
463
529
  property :method_name, as: 'methodName'
464
530
  property :principal_email, as: 'principalEmail'
531
+ property :principal_subject, as: 'principalSubject'
532
+ collection :service_account_delegation_info, as: 'serviceAccountDelegationInfo', class: Google::Apis::SecuritycenterV1beta1::ServiceAccountDelegationInfo, decorator: Google::Apis::SecuritycenterV1beta1::ServiceAccountDelegationInfo::Representation
533
+
534
+ property :service_account_key_name, as: 'serviceAccountKeyName'
465
535
  property :service_name, as: 'serviceName'
466
536
  property :user_agent_family, as: 'userAgentFamily'
467
537
  end
468
538
  end
469
539
 
540
+ class AccessReview
541
+ # @private
542
+ class Representation < Google::Apis::Core::JsonRepresentation
543
+ property :group, as: 'group'
544
+ property :name, as: 'name'
545
+ property :ns, as: 'ns'
546
+ property :resource, as: 'resource'
547
+ property :subresource, as: 'subresource'
548
+ property :verb, as: 'verb'
549
+ property :version, as: 'version'
550
+ end
551
+ end
552
+
470
553
  class Asset
471
554
  # @private
472
555
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -557,6 +640,17 @@ module Google
557
640
  end
558
641
  end
559
642
 
643
+ class Container
644
+ # @private
645
+ class Representation < Google::Apis::Core::JsonRepresentation
646
+ property :image_id, as: 'imageId'
647
+ collection :labels, as: 'labels', class: Google::Apis::SecuritycenterV1beta1::Label, decorator: Google::Apis::SecuritycenterV1beta1::Label::Representation
648
+
649
+ property :name, as: 'name'
650
+ property :uri, as: 'uri'
651
+ end
652
+ end
653
+
560
654
  class Cve
561
655
  # @private
562
656
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -659,6 +753,8 @@ module Google
659
753
 
660
754
  hash :contacts, as: 'contacts', class: Google::Apis::SecuritycenterV1beta1::ContactDetails, decorator: Google::Apis::SecuritycenterV1beta1::ContactDetails::Representation
661
755
 
756
+ collection :containers, as: 'containers', class: Google::Apis::SecuritycenterV1beta1::Container, decorator: Google::Apis::SecuritycenterV1beta1::Container::Representation
757
+
662
758
  property :create_time, as: 'createTime'
663
759
  property :description, as: 'description'
664
760
  property :event_time, as: 'eventTime'
@@ -672,6 +768,8 @@ module Google
672
768
 
673
769
  property :indicator, as: 'indicator', class: Google::Apis::SecuritycenterV1beta1::Indicator, decorator: Google::Apis::SecuritycenterV1beta1::Indicator::Representation
674
770
 
771
+ property :kubernetes, as: 'kubernetes', class: Google::Apis::SecuritycenterV1beta1::Kubernetes, decorator: Google::Apis::SecuritycenterV1beta1::Kubernetes::Representation
772
+
675
773
  property :mitre_attack, as: 'mitreAttack', class: Google::Apis::SecuritycenterV1beta1::MitreAttack, decorator: Google::Apis::SecuritycenterV1beta1::MitreAttack::Representation
676
774
 
677
775
  property :mute, as: 'mute'
@@ -737,6 +835,18 @@ module Google
737
835
  end
738
836
  end
739
837
 
838
+ class GoogleCloudSecuritycenterV1Binding
839
+ # @private
840
+ class Representation < Google::Apis::Core::JsonRepresentation
841
+ property :name, as: 'name'
842
+ property :ns, as: 'ns'
843
+ property :role, as: 'role', class: Google::Apis::SecuritycenterV1beta1::Role, decorator: Google::Apis::SecuritycenterV1beta1::Role::Representation
844
+
845
+ collection :subjects, as: 'subjects', class: Google::Apis::SecuritycenterV1beta1::Subject, decorator: Google::Apis::SecuritycenterV1beta1::Subject::Representation
846
+
847
+ end
848
+ end
849
+
740
850
  class GoogleCloudSecuritycenterV1BulkMuteFindingsResponse
741
851
  # @private
742
852
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -969,6 +1079,33 @@ module Google
969
1079
  collection :ip_addresses, as: 'ipAddresses'
970
1080
  collection :signatures, as: 'signatures', class: Google::Apis::SecuritycenterV1beta1::ProcessSignature, decorator: Google::Apis::SecuritycenterV1beta1::ProcessSignature::Representation
971
1081
 
1082
+ collection :uris, as: 'uris'
1083
+ end
1084
+ end
1085
+
1086
+ class Kubernetes
1087
+ # @private
1088
+ class Representation < Google::Apis::Core::JsonRepresentation
1089
+ collection :access_reviews, as: 'accessReviews', class: Google::Apis::SecuritycenterV1beta1::AccessReview, decorator: Google::Apis::SecuritycenterV1beta1::AccessReview::Representation
1090
+
1091
+ collection :bindings, as: 'bindings', class: Google::Apis::SecuritycenterV1beta1::GoogleCloudSecuritycenterV1Binding, decorator: Google::Apis::SecuritycenterV1beta1::GoogleCloudSecuritycenterV1Binding::Representation
1092
+
1093
+ collection :node_pools, as: 'nodePools', class: Google::Apis::SecuritycenterV1beta1::NodePool, decorator: Google::Apis::SecuritycenterV1beta1::NodePool::Representation
1094
+
1095
+ collection :nodes, as: 'nodes', class: Google::Apis::SecuritycenterV1beta1::Node, decorator: Google::Apis::SecuritycenterV1beta1::Node::Representation
1096
+
1097
+ collection :pods, as: 'pods', class: Google::Apis::SecuritycenterV1beta1::Pod, decorator: Google::Apis::SecuritycenterV1beta1::Pod::Representation
1098
+
1099
+ collection :roles, as: 'roles', class: Google::Apis::SecuritycenterV1beta1::Role, decorator: Google::Apis::SecuritycenterV1beta1::Role::Representation
1100
+
1101
+ end
1102
+ end
1103
+
1104
+ class Label
1105
+ # @private
1106
+ class Representation < Google::Apis::Core::JsonRepresentation
1107
+ property :name, as: 'name'
1108
+ property :value, as: 'value'
972
1109
  end
973
1110
  end
974
1111
 
@@ -1041,6 +1178,22 @@ module Google
1041
1178
  end
1042
1179
  end
1043
1180
 
1181
+ class Node
1182
+ # @private
1183
+ class Representation < Google::Apis::Core::JsonRepresentation
1184
+ property :name, as: 'name'
1185
+ end
1186
+ end
1187
+
1188
+ class NodePool
1189
+ # @private
1190
+ class Representation < Google::Apis::Core::JsonRepresentation
1191
+ property :name, as: 'name'
1192
+ collection :nodes, as: 'nodes', class: Google::Apis::SecuritycenterV1beta1::Node, decorator: Google::Apis::SecuritycenterV1beta1::Node::Representation
1193
+
1194
+ end
1195
+ end
1196
+
1044
1197
  class Operation
1045
1198
  # @private
1046
1199
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1063,6 +1216,18 @@ module Google
1063
1216
  end
1064
1217
  end
1065
1218
 
1219
+ class Pod
1220
+ # @private
1221
+ class Representation < Google::Apis::Core::JsonRepresentation
1222
+ collection :containers, as: 'containers', class: Google::Apis::SecuritycenterV1beta1::Container, decorator: Google::Apis::SecuritycenterV1beta1::Container::Representation
1223
+
1224
+ collection :labels, as: 'labels', class: Google::Apis::SecuritycenterV1beta1::Label, decorator: Google::Apis::SecuritycenterV1beta1::Label::Representation
1225
+
1226
+ property :name, as: 'name'
1227
+ property :ns, as: 'ns'
1228
+ end
1229
+ end
1230
+
1066
1231
  class Policy
1067
1232
  # @private
1068
1233
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1113,6 +1278,15 @@ module Google
1113
1278
  end
1114
1279
  end
1115
1280
 
1281
+ class Role
1282
+ # @private
1283
+ class Representation < Google::Apis::Core::JsonRepresentation
1284
+ property :kind, as: 'kind'
1285
+ property :name, as: 'name'
1286
+ property :ns, as: 'ns'
1287
+ end
1288
+ end
1289
+
1116
1290
  class RunAssetDiscoveryRequest
1117
1291
  # @private
1118
1292
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1139,6 +1313,14 @@ module Google
1139
1313
  end
1140
1314
  end
1141
1315
 
1316
+ class ServiceAccountDelegationInfo
1317
+ # @private
1318
+ class Representation < Google::Apis::Core::JsonRepresentation
1319
+ property :principal_email, as: 'principalEmail'
1320
+ property :principal_subject, as: 'principalSubject'
1321
+ end
1322
+ end
1323
+
1142
1324
  class SetFindingStateRequest
1143
1325
  # @private
1144
1326
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1174,6 +1356,15 @@ module Google
1174
1356
  end
1175
1357
  end
1176
1358
 
1359
+ class Subject
1360
+ # @private
1361
+ class Representation < Google::Apis::Core::JsonRepresentation
1362
+ property :kind, as: 'kind'
1363
+ property :name, as: 'name'
1364
+ property :ns, as: 'ns'
1365
+ end
1366
+ end
1367
+
1177
1368
  class TestIamPermissionsRequest
1178
1369
  # @private
1179
1370
  class Representation < Google::Apis::Core::JsonRepresentation
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: google-apis-securitycenter_v1beta1
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.32.0
4
+ version: 0.35.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-07-18 00:00:00.000000000 Z
11
+ date: 2022-08-08 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
58
58
  metadata:
59
59
  bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
60
60
  changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1beta1/CHANGELOG.md
61
- documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1beta1/v0.32.0
61
+ documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1beta1/v0.35.0
62
62
  source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1beta1
63
63
  post_install_message:
64
64
  rdoc_options: []