google-apis-securitycenter_v1beta1 0.42.0 → 0.44.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4d8b4d18d5a9936855791ddd5750027d2d6e34e050aa6987070b8ee57fad4871
-  data.tar.gz: 62bd1dacc690a5fc8db62a7d588ddc0235776409d341de1dadb13933f5bcc00e
+  metadata.gz: 6e2f2320ec0ca47f712c75642eadf85edd3256988ae523c29d8ff37f82182a4a
+  data.tar.gz: 07edd1be22aabdf39d02d10a74666276002f3e3906064543bf32cf4f015219fd
 SHA512:
-  metadata.gz: fd312c11628bf516b0eb594b37e554add4feece59059abeae7f0de77e30db390056f90aeff2bf30ec42acc80cdd521fe43b7fa9296ddf56135e2d5e3392cf61e
-  data.tar.gz: 135c985ef25ab7c2c86581368ca5f4f18c833729e293570adae7a912ed2ee63ca4084a08fcc1628ed3c09ed1c7986b91205fa83de8645574aeebb3dbdbd93f63
+  metadata.gz: '0921a2cc3041d785f25d4247838ed97ea1ffae8a7319716d918f5d2c9290c39b05b2d87286fffba143693f7fad3c0f634454733f9f755220363afbe75423ba05'
+  data.tar.gz: 253befc93b2ef7cbab54e09b19f31d87a6db0d031513d4caf7837b5276454853357732041af88323cc604be116f99be43e0f81802cba2e7e0f18ee0be13f67a9

data/CHANGELOG.md

@@ -1,5 +1,13 @@
 # Release history for google-apis-securitycenter_v1beta1
 
+### v0.44.0 (2023-01-04)
+
+* Regenerated from discovery document revision 20221220
+
+### v0.43.0 (2022-12-07)
+
+* Regenerated from discovery document revision 20221205
+
 ### v0.42.0 (2022-11-04)
 
 * Regenerated from discovery document revision 20221027

data/lib/google/apis/securitycenter_v1beta1/classes.rb

@@ -277,6 +277,11 @@ module Google
         # @return [String]
         attr_accessor :finding_category
       
+        # Full resource name of the finding.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
         def initialize(**args)
            update!(**args)
         end
@@ -285,6 +290,7 @@ module Google
         def update!(**args)
           @canonical_finding_name = args[:canonical_finding_name] if args.key?(:canonical_finding_name)
           @finding_category = args[:finding_category] if args.key?(:finding_category)
+          @name = args[:name] if args.key?(:name)
         end
       end
       
@@ -525,11 +531,11 @@ module Google
         end
       end
       
-      # Representa a single contact's email address
+      # The email address of a contact.
       class Contact
         include Google::Apis::Core::Hashable
       
-        # An email address e.g. "person123@company.com"
+        # An email address. For example, "`person123@company.com`".
         # Corresponds to the JSON property `email`
         # @return [String]
         attr_accessor :email
@@ -1134,6 +1140,11 @@ module Google
         # @return [String]
         attr_accessor :external_uri
       
+        # File associated with the finding.
+        # Corresponds to the JSON property `files`
+        # @return [Array<Google::Apis::SecuritycenterV1beta1::File>]
+        attr_accessor :files
+      
         # The class of the finding.
         # Corresponds to the JSON property `findingClass`
         # @return [String]
@@ -1144,15 +1155,21 @@ module Google
         # @return [Array<Google::Apis::SecuritycenterV1beta1::IamBinding>]
         attr_accessor :iam_bindings
       
-        # Represents what's commonly known as an Indicator of compromise (IoC) in
+        # Represents what's commonly known as an _indicator of compromise_ (IoC) in
         # computer forensics. This is an artifact observed on a network or in an
         # operating system that, with high confidence, indicates a computer intrusion.
-        # Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
+        # For more information, see [Indicator of compromise](https://en.wikipedia.org/
+        # wiki/Indicator_of_compromise).
         # Corresponds to the JSON property `indicator`
         # @return [Google::Apis::SecuritycenterV1beta1::Indicator]
         attr_accessor :indicator
       
-        # Kubernetes related attributes.
+        # Kernel mode rootkit signatures.
+        # Corresponds to the JSON property `kernelRootkit`
+        # @return [Google::Apis::SecuritycenterV1beta1::KernelRootkit]
+        attr_accessor :kernel_rootkit
+      
+        # Kubernetes-related attributes.
         # Corresponds to the JSON property `kubernetes`
         # @return [Google::Apis::SecuritycenterV1beta1::Kubernetes]
         attr_accessor :kubernetes
@@ -1275,9 +1292,11 @@ module Google
           @exfiltration = args[:exfiltration] if args.key?(:exfiltration)
           @external_systems = args[:external_systems] if args.key?(:external_systems)
           @external_uri = args[:external_uri] if args.key?(:external_uri)
+          @files = args[:files] if args.key?(:files)
           @finding_class = args[:finding_class] if args.key?(:finding_class)
           @iam_bindings = args[:iam_bindings] if args.key?(:iam_bindings)
           @indicator = args[:indicator] if args.key?(:indicator)
+          @kernel_rootkit = args[:kernel_rootkit] if args.key?(:kernel_rootkit)
           @kubernetes = args[:kubernetes] if args.key?(:kubernetes)
           @mitre_attack = args[:mitre_attack] if args.key?(:mitre_attack)
           @mute = args[:mute] if args.key?(:mute)
@@ -1393,7 +1412,7 @@ module Google
       class GoogleCloudSecuritycenterV1BigQueryExport
         include Google::Apis::Core::Hashable
       
-        # Output only. The time at which the big query export was created. This field is
+        # Output only. The time at which the BigQuery export was created. This field is
         # set by the server and will be ignored if provided on export on creation.
         # Corresponds to the JSON property `createTime`
         # @return [String]
@@ -1425,7 +1444,7 @@ module Google
         # @return [String]
         attr_accessor :filter
       
-        # Output only. Email address of the user who last edited the big query export.
+        # Output only. Email address of the user who last edited the BigQuery export.
         # This field is set by the server and will be ignored if provided on export
         # creation or update.
         # Corresponds to the JSON property `mostRecentEditor`
@@ -1442,15 +1461,15 @@ module Google
         # @return [String]
         attr_accessor :name
       
-        # Output only. The service account that needs permission to create table, upload
-        # data to the big query dataset.
+        # Output only. The service account that needs permission to create table and
+        # upload data to the BigQuery dataset.
         # Corresponds to the JSON property `principal`
         # @return [String]
         attr_accessor :principal
       
-        # Output only. The most recent time at which the big export was updated. This
-        # field is set by the server and will be ignored if provided on export creation
-        # or update.
+        # Output only. The most recent time at which the BigQuery export was updated.
+        # This field is set by the server and will be ignored if provided on export
+        # creation or update.
         # Corresponds to the JSON property `updateTime`
         # @return [String]
         attr_accessor :update_time
@@ -1491,8 +1510,8 @@ module Google
         # @return [Google::Apis::SecuritycenterV1beta1::Role]
         attr_accessor :role
       
-        # Represents the subjects(s) bound to the role. Not always available for PATCH
-        # requests.
+        # Represents one or more subjects that are bound to the role. Not always
+        # available for PATCH requests.
         # Corresponds to the JSON property `subjects`
         # @return [Array<Google::Apis::SecuritycenterV1beta1::Subject>]
         attr_accessor :subjects
@@ -1633,10 +1652,10 @@ module Google
         # @return [String]
         attr_accessor :external_uid
       
-        # External System Name e.g. jira, demisto, etc. e.g.: `organizations/1234/
-        # sources/5678/findings/123456/externalSystems/jira` `folders/1234/sources/5678/
-        # findings/123456/externalSystems/jira` `projects/1234/sources/5678/findings/
-        # 123456/externalSystems/jira`
+        # Full resource name of the external system, for example: "organizations/1234/
+        # sources/5678/findings/123456/externalSystems/jira", "folders/1234/sources/5678/
+        # findings/123456/externalSystems/jira", "projects/1234/sources/5678/findings/
+        # 123456/externalSystems/jira"
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -2639,10 +2658,11 @@ module Google
         end
       end
       
-      # Represents what's commonly known as an Indicator of compromise (IoC) in
+      # Represents what's commonly known as an _indicator of compromise_ (IoC) in
       # computer forensics. This is an artifact observed on a network or in an
       # operating system that, with high confidence, indicates a computer intrusion.
-      # Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
+      # For more information, see [Indicator of compromise](https://en.wikipedia.org/
+      # wiki/Indicator_of_compromise).
       class Indicator
         include Google::Apis::Core::Hashable
       
@@ -2651,7 +2671,7 @@ module Google
         # @return [Array<String>]
         attr_accessor :domains
       
-        # List of ip addresses associated to the Finding.
+        # The list of IP addresses that are associated with the finding.
         # Corresponds to the JSON property `ipAddresses`
         # @return [Array<String>]
         attr_accessor :ip_addresses
@@ -2680,7 +2700,88 @@ module Google
         end
       end
       
-      # Kubernetes related attributes.
+      # Kernel mode rootkit signatures.
+      class KernelRootkit
+        include Google::Apis::Core::Hashable
+      
+        # Rootkit name when available.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # True when unexpected modifications of kernel code memory are present.
+        # Corresponds to the JSON property `unexpectedCodeModification`
+        # @return [Boolean]
+        attr_accessor :unexpected_code_modification
+        alias_method :unexpected_code_modification?, :unexpected_code_modification
+      
+        # True when `ftrace` points are present with callbacks pointing to regions that
+        # are not in the expected kernel or module code range.
+        # Corresponds to the JSON property `unexpectedFtraceHandler`
+        # @return [Boolean]
+        attr_accessor :unexpected_ftrace_handler
+        alias_method :unexpected_ftrace_handler?, :unexpected_ftrace_handler
+      
+        # True when interrupt handlers that are are not in the expected kernel or module
+        # code regions are present.
+        # Corresponds to the JSON property `unexpectedInterruptHandler`
+        # @return [Boolean]
+        attr_accessor :unexpected_interrupt_handler
+        alias_method :unexpected_interrupt_handler?, :unexpected_interrupt_handler
+      
+        # True when kernel code pages that are not in the expected kernel or module code
+        # regions are present.
+        # Corresponds to the JSON property `unexpectedKernelCodePages`
+        # @return [Boolean]
+        attr_accessor :unexpected_kernel_code_pages
+        alias_method :unexpected_kernel_code_pages?, :unexpected_kernel_code_pages
+      
+        # True when `kprobe` points are present with callbacks pointing to regions that
+        # are not in the expected kernel or module code range.
+        # Corresponds to the JSON property `unexpectedKprobeHandler`
+        # @return [Boolean]
+        attr_accessor :unexpected_kprobe_handler
+        alias_method :unexpected_kprobe_handler?, :unexpected_kprobe_handler
+      
+        # True when unexpected processes in the scheduler run queue are present. Such
+        # processes are in the run queue, but not in the process task list.
+        # Corresponds to the JSON property `unexpectedProcessesInRunqueue`
+        # @return [Boolean]
+        attr_accessor :unexpected_processes_in_runqueue
+        alias_method :unexpected_processes_in_runqueue?, :unexpected_processes_in_runqueue
+      
+        # True when unexpected modifications of kernel read-only data memory are present.
+        # Corresponds to the JSON property `unexpectedReadOnlyDataModification`
+        # @return [Boolean]
+        attr_accessor :unexpected_read_only_data_modification
+        alias_method :unexpected_read_only_data_modification?, :unexpected_read_only_data_modification
+      
+        # True when system call handlers that are are not in the expected kernel or
+        # module code regions are present.
+        # Corresponds to the JSON property `unexpectedSystemCallHandler`
+        # @return [Boolean]
+        attr_accessor :unexpected_system_call_handler
+        alias_method :unexpected_system_call_handler?, :unexpected_system_call_handler
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @name = args[:name] if args.key?(:name)
+          @unexpected_code_modification = args[:unexpected_code_modification] if args.key?(:unexpected_code_modification)
+          @unexpected_ftrace_handler = args[:unexpected_ftrace_handler] if args.key?(:unexpected_ftrace_handler)
+          @unexpected_interrupt_handler = args[:unexpected_interrupt_handler] if args.key?(:unexpected_interrupt_handler)
+          @unexpected_kernel_code_pages = args[:unexpected_kernel_code_pages] if args.key?(:unexpected_kernel_code_pages)
+          @unexpected_kprobe_handler = args[:unexpected_kprobe_handler] if args.key?(:unexpected_kprobe_handler)
+          @unexpected_processes_in_runqueue = args[:unexpected_processes_in_runqueue] if args.key?(:unexpected_processes_in_runqueue)
+          @unexpected_read_only_data_modification = args[:unexpected_read_only_data_modification] if args.key?(:unexpected_read_only_data_modification)
+          @unexpected_system_call_handler = args[:unexpected_system_call_handler] if args.key?(:unexpected_system_call_handler)
+        end
+      end
+      
+      # Kubernetes-related attributes.
       class Kubernetes
         include Google::Apis::Core::Hashable
       

data/lib/google/apis/securitycenter_v1beta1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module SecuritycenterV1beta1
       # Version of the google-apis-securitycenter_v1beta1 gem
-      GEM_VERSION = "0.42.0"
+      GEM_VERSION = "0.44.0"
 
       # Version of the code generator used to generate this client
       GENERATOR_VERSION = "0.11.0"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20221027"
+      REVISION = "20221220"
     end
   end
 end

data/lib/google/apis/securitycenter_v1beta1/representations.rb

@@ -364,6 +364,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class KernelRootkit
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Kubernetes
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -620,6 +626,7 @@ module Google
         class Representation < Google::Apis::Core::JsonRepresentation
           property :canonical_finding_name, as: 'canonicalFindingName'
           property :finding_category, as: 'findingCategory'
+          property :name, as: 'name'
         end
       end
       
@@ -835,11 +842,15 @@ module Google
           hash :external_systems, as: 'externalSystems', class: Google::Apis::SecuritycenterV1beta1::GoogleCloudSecuritycenterV1ExternalSystem, decorator: Google::Apis::SecuritycenterV1beta1::GoogleCloudSecuritycenterV1ExternalSystem::Representation
       
           property :external_uri, as: 'externalUri'
+          collection :files, as: 'files', class: Google::Apis::SecuritycenterV1beta1::File, decorator: Google::Apis::SecuritycenterV1beta1::File::Representation
+      
           property :finding_class, as: 'findingClass'
           collection :iam_bindings, as: 'iamBindings', class: Google::Apis::SecuritycenterV1beta1::IamBinding, decorator: Google::Apis::SecuritycenterV1beta1::IamBinding::Representation
       
           property :indicator, as: 'indicator', class: Google::Apis::SecuritycenterV1beta1::Indicator, decorator: Google::Apis::SecuritycenterV1beta1::Indicator::Representation
       
+          property :kernel_rootkit, as: 'kernelRootkit', class: Google::Apis::SecuritycenterV1beta1::KernelRootkit, decorator: Google::Apis::SecuritycenterV1beta1::KernelRootkit::Representation
+      
           property :kubernetes, as: 'kubernetes', class: Google::Apis::SecuritycenterV1beta1::Kubernetes, decorator: Google::Apis::SecuritycenterV1beta1::Kubernetes::Representation
       
           property :mitre_attack, as: 'mitreAttack', class: Google::Apis::SecuritycenterV1beta1::MitreAttack, decorator: Google::Apis::SecuritycenterV1beta1::MitreAttack::Representation
@@ -1192,6 +1203,21 @@ module Google
         end
       end
       
+      class KernelRootkit
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :name, as: 'name'
+          property :unexpected_code_modification, as: 'unexpectedCodeModification'
+          property :unexpected_ftrace_handler, as: 'unexpectedFtraceHandler'
+          property :unexpected_interrupt_handler, as: 'unexpectedInterruptHandler'
+          property :unexpected_kernel_code_pages, as: 'unexpectedKernelCodePages'
+          property :unexpected_kprobe_handler, as: 'unexpectedKprobeHandler'
+          property :unexpected_processes_in_runqueue, as: 'unexpectedProcessesInRunqueue'
+          property :unexpected_read_only_data_modification, as: 'unexpectedReadOnlyDataModification'
+          property :unexpected_system_call_handler, as: 'unexpectedSystemCallHandler'
+        end
+      end
+      
       class Kubernetes
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-securitycenter_v1beta1
 version: !ruby/object:Gem::Version
-  version: 0.42.0
+  version: 0.44.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-11-07 00:00:00.000000000 Z
+date: 2023-01-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1beta1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1beta1/v0.42.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1beta1/v0.44.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1beta1
 post_install_message: 
 rdoc_options: []