google-apis-securitycenter_v1beta1 0.35.0 → 0.38.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b3959070d956e84f8da770051e65b7a13e2ff060ff07e9d307564df46e0911f8
-  data.tar.gz: f176641c6014cfc73c8986ede87e1535821a8f7d18cb182ebb30aa068774dd1d
+  metadata.gz: abb885709aa24a75bd7676c0323c5383caad796dac8347161def09bf42e64341
+  data.tar.gz: 1601b9c9c97c98c4cd235ce148decfd432173f048e5b54bd8ca4da3342618565
 SHA512:
-  metadata.gz: 9a51ce91eb735e1e6fbc4e5f32d77ff2daaf3e038ffa519de943eae4b4016413c18e95dfeef3768dbedf67d7f9c7fd3a281f602e97bf911527cc9a232d8fb9fb
-  data.tar.gz: 8dead1295e9f2b2a4710b613d60bb8ed63ef7c9d27634759761ddaff7f28f673dc1fb3cf0950001a61a59a31152d6594baa227bbccb53f18f3cc2179e9216405
+  metadata.gz: edf3f930e5dc6fb02448a866a612109d4eb345f9832d259dd923ae94c7adc11cf6fa629df5040454a33a983b9b9535498e614561fd166159ed0dbbf0b0963a93
+  data.tar.gz: 21fa19a29b2bcbb62cdf1c49e55ea74b6a35561ba35139aff3a8af45641e0c5bdaa116b11a6a5031d6565046df70d9d959201045787c9b444762a4d3b0d58a68

data/CHANGELOG.md

@@ -1,5 +1,17 @@
 # Release history for google-apis-securitycenter_v1beta1
 
+### v0.38.0 (2022-08-31)
+
+* Regenerated from discovery document revision 20220825
+
+### v0.37.0 (2022-08-25)
+
+* Regenerated from discovery document revision 20220824
+
+### v0.36.0 (2022-08-10)
+
+* Regenerated from discovery document revision 20220809
+
 ### v0.35.0 (2022-08-02)
 
 * Regenerated from discovery document revision 20220728

data/lib/google/apis/securitycenter_v1beta1/classes.rb

@@ -54,8 +54,8 @@ module Google
         # A string representing the principal_subject associated with the identity. As
         # compared to `principal_email`, supports principals that aren't associated with
         # email addresses, such as third party principals. For most identities, the
-        # format will be `principal://iam.googleapis.com/`identity pool name`/subject/`
-        # subject)` except for some GKE identities (GKE_WORKLOAD, FREEFORM,
+        # format will be `principal://iam.googleapis.com/`identity pool name`/subjects/`
+        # subject`` except for some GKE identities (GKE_WORKLOAD, FREEFORM,
         # GKE_HUB_WORKLOAD) that are still in the legacy format `serviceAccount:`
         # identity pool name`[`subject`]`
         # Corresponds to the JSON property `principalSubject`
@@ -351,28 +351,33 @@ module Google
         # members` can have the following values: * `allUsers`: A special identifier
         # that represents anyone who is on the internet; with or without a Google
         # account. * `allAuthenticatedUsers`: A special identifier that represents
-        # anyone who is authenticated with a Google account or a service account. * `
-        # user:`emailid``: An email address that represents a specific Google account.
-        # For example, `alice@example.com` . * `serviceAccount:`emailid``: An email
-        # address that represents a service account. For example, `my-other-app@appspot.
-        # gserviceaccount.com`. * `group:`emailid``: An email address that represents a
-        # Google group. For example, `admins@example.com`. * `deleted:user:`emailid`?uid=
-        # `uniqueid``: An email address (plus unique identifier) representing a user
-        # that has been recently deleted. For example, `alice@example.com?uid=
-        # 123456789012345678901`. If the user is recovered, this value reverts to `user:`
-        # emailid`` and the recovered user retains the role in the binding. * `deleted:
-        # serviceAccount:`emailid`?uid=`uniqueid``: An email address (plus unique
-        # identifier) representing a service account that has been recently deleted. For
-        # example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`.
-        # If the service account is undeleted, this value reverts to `serviceAccount:`
-        # emailid`` and the undeleted service account retains the role in the binding. *
-        # `deleted:group:`emailid`?uid=`uniqueid``: An email address (plus unique
-        # identifier) representing a Google group that has been recently deleted. For
-        # example, `admins@example.com?uid=123456789012345678901`. If the group is
-        # recovered, this value reverts to `group:`emailid`` and the recovered group
-        # retains the role in the binding. * `domain:`domain``: The G Suite domain (
-        # primary) that represents all the users of that domain. For example, `google.
-        # com` or `example.com`.
+        # anyone who is authenticated with a Google account or a service account. Does
+        # not include identities that come from external identity providers (IdPs)
+        # through identity federation. * `user:`emailid``: An email address that
+        # represents a specific Google account. For example, `alice@example.com` . * `
+        # serviceAccount:`emailid``: An email address that represents a Google service
+        # account. For example, `my-other-app@appspot.gserviceaccount.com`. * `
+        # serviceAccount:`projectid`.svc.id.goog[`namespace`/`kubernetes-sa`]`: An
+        # identifier for a [Kubernetes service account](https://cloud.google.com/
+        # kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-
+        # project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:`emailid``: An
+        # email address that represents a Google group. For example, `admins@example.com`
+        # . * `deleted:user:`emailid`?uid=`uniqueid``: An email address (plus unique
+        # identifier) representing a user that has been recently deleted. For example, `
+        # alice@example.com?uid=123456789012345678901`. If the user is recovered, this
+        # value reverts to `user:`emailid`` and the recovered user retains the role in
+        # the binding. * `deleted:serviceAccount:`emailid`?uid=`uniqueid``: An email
+        # address (plus unique identifier) representing a service account that has been
+        # recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=
+        # 123456789012345678901`. If the service account is undeleted, this value
+        # reverts to `serviceAccount:`emailid`` and the undeleted service account
+        # retains the role in the binding. * `deleted:group:`emailid`?uid=`uniqueid``:
+        # An email address (plus unique identifier) representing a Google group that has
+        # been recently deleted. For example, `admins@example.com?uid=
+        # 123456789012345678901`. If the group is recovered, this value reverts to `
+        # group:`emailid`` and the recovered group retains the role in the binding. * `
+        # domain:`domain``: The G Suite domain (primary) that represents all the users
+        # of that domain. For example, `google.com` or `example.com`.
         # Corresponds to the JSON property `members`
         # @return [Array<String>]
         attr_accessor :members
@@ -679,6 +684,57 @@ module Google
         end
       end
       
+      # Represents database access information, such as queries. A database may be a
+      # sub-resource of an instance (as in the case of CloudSQL instances or Cloud
+      # Spanner instances), or the database instance itself. Some database resources
+      # may not have the full resource name populated because these resource types are
+      # not yet supported by Cloud Asset Inventory (e.g. CloudSQL databases). In these
+      # cases only the display name will be provided.
+      class Database
+        include Google::Apis::Core::Hashable
+      
+        # The human readable name of the database the user connected to.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # The target usernames/roles/groups of a SQL privilege grant (not an IAM policy
+        # change).
+        # Corresponds to the JSON property `grantees`
+        # @return [Array<String>]
+        attr_accessor :grantees
+      
+        # The full resource name of the database the user connected to, if it is
+        # supported by CAI. (https://google.aip.dev/122#full-resource-names)
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # The SQL statement associated with the relevant access.
+        # Corresponds to the JSON property `query`
+        # @return [String]
+        attr_accessor :query
+      
+        # The username used to connect to the DB. This may not necessarily be an IAM
+        # principal, and has no required format.
+        # Corresponds to the JSON property `userName`
+        # @return [String]
+        attr_accessor :user_name
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @grantees = args[:grantees] if args.key?(:grantees)
+          @name = args[:name] if args.key?(:name)
+          @query = args[:query] if args.key?(:query)
+          @user_name = args[:user_name] if args.key?(:user_name)
+        end
+      end
+      
       # Memory hash detection contributing to the binary family match.
       class Detection
         include Google::Apis::Core::Hashable
@@ -956,7 +1012,7 @@ module Google
         # contacts that pertain. Please refer to: https://cloud.google.com/resource-
         # manager/docs/managing-notification-contacts#notification-categories ` "
         # security": ` "contacts": [ ` "email": "person1@company.com" `, ` "email": "
-        # person2@company.com" ` ] `
+        # person2@company.com" ` ] ` `
         # Corresponds to the JSON property `contacts`
         # @return [Hash<String,Google::Apis::SecuritycenterV1beta1::ContactDetails>]
         attr_accessor :contacts
@@ -972,6 +1028,16 @@ module Google
         # @return [String]
         attr_accessor :create_time
       
+        # Represents database access information, such as queries. A database may be a
+        # sub-resource of an instance (as in the case of CloudSQL instances or Cloud
+        # Spanner instances), or the database instance itself. Some database resources
+        # may not have the full resource name populated because these resource types are
+        # not yet supported by Cloud Asset Inventory (e.g. CloudSQL databases). In these
+        # cases only the display name will be provided.
+        # Corresponds to the JSON property `database`
+        # @return [Google::Apis::SecuritycenterV1beta1::Database]
+        attr_accessor :database
+      
         # Contains more detail about the finding.
         # Corresponds to the JSON property `description`
         # @return [String]
@@ -1136,6 +1202,7 @@ module Google
           @contacts = args[:contacts] if args.key?(:contacts)
           @containers = args[:containers] if args.key?(:containers)
           @create_time = args[:create_time] if args.key?(:create_time)
+          @database = args[:database] if args.key?(:database)
           @description = args[:description] if args.key?(:description)
           @event_time = args[:event_time] if args.key?(:event_time)
           @exfiltration = args[:exfiltration] if args.key?(:exfiltration)
@@ -2386,7 +2453,7 @@ module Google
         # @return [Array<Google::Apis::SecuritycenterV1beta1::ProcessSignature>]
         attr_accessor :signatures
       
-        # The list of URIs associated to the Findings
+        # The list of URIs associated to the Findings.
         # Corresponds to the JSON property `uris`
         # @return [Array<String>]
         attr_accessor :uris
@@ -3264,7 +3331,7 @@ module Google
       class ServiceAccountDelegationInfo
         include Google::Apis::Core::Hashable
       
-        # The email address of a Google account. .
+        # The email address of a Google account.
         # Corresponds to the JSON property `principalEmail`
         # @return [String]
         attr_accessor :principal_email
@@ -3272,8 +3339,8 @@ module Google
         # A string representing the principal_subject associated with the identity. As
         # compared to `principal_email`, supports principals that aren't associated with
         # email addresses, such as third party principals. For most identities, the
-        # format will be `principal://iam.googleapis.com/`identity pool name`/subject/`
-        # subject)` except for some GKE identities (GKE_WORKLOAD, FREEFORM,
+        # format will be `principal://iam.googleapis.com/`identity pool name`/subjects/`
+        # subject`` except for some GKE identities (GKE_WORKLOAD, FREEFORM,
         # GKE_HUB_WORKLOAD) that are still in the legacy format `serviceAccount:`
         # identity pool name`[`subject`]`
         # Corresponds to the JSON property `principalSubject`

data/lib/google/apis/securitycenter_v1beta1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module SecuritycenterV1beta1
       # Version of the google-apis-securitycenter_v1beta1 gem
-      GEM_VERSION = "0.35.0"
+      GEM_VERSION = "0.38.0"
 
       # Version of the code generator used to generate this client
       GENERATOR_VERSION = "0.9.0"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20220728"
+      REVISION = "20220825"
     end
   end
 end

data/lib/google/apis/securitycenter_v1beta1/representations.rb

@@ -112,6 +112,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class Database
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Detection
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -678,6 +684,17 @@ module Google
         end
       end
       
+      class Database
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :display_name, as: 'displayName'
+          collection :grantees, as: 'grantees'
+          property :name, as: 'name'
+          property :query, as: 'query'
+          property :user_name, as: 'userName'
+        end
+      end
+      
       class Detection
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -756,6 +773,8 @@ module Google
           collection :containers, as: 'containers', class: Google::Apis::SecuritycenterV1beta1::Container, decorator: Google::Apis::SecuritycenterV1beta1::Container::Representation
       
           property :create_time, as: 'createTime'
+          property :database, as: 'database', class: Google::Apis::SecuritycenterV1beta1::Database, decorator: Google::Apis::SecuritycenterV1beta1::Database::Representation
+      
           property :description, as: 'description'
           property :event_time, as: 'eventTime'
           property :exfiltration, as: 'exfiltration', class: Google::Apis::SecuritycenterV1beta1::Exfiltration, decorator: Google::Apis::SecuritycenterV1beta1::Exfiltration::Representation

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-securitycenter_v1beta1
 version: !ruby/object:Gem::Version
-  version: 0.35.0
+  version: 0.38.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-08-08 00:00:00.000000000 Z
+date: 2022-09-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1beta1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1beta1/v0.35.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1beta1/v0.38.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1beta1
 post_install_message: 
 rdoc_options: []