google-apis-securitycenter_v1beta2 0.29.0 → 0.32.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 01ef3fa2e07dc299e1a75fba7fd5d5e6e6aec6a895262392daa91c5627a5b096
-  data.tar.gz: ffddfdf332044d0df42c310388158e11521c32bf78583859b272ba8555e9d567
+  metadata.gz: 9792564831becfd729f3120548d7194f51b231da1cb230a9538362300245ec1f
+  data.tar.gz: 829a8594cc4bbf3532e68ff268a1cf534d27d5ff20461ebcac1ca71389cb4643
 SHA512:
-  metadata.gz: d681a647a84a382b840b9da95fa6d7e16c091ba3dd4317621a69403e9fbbcbe19103e454c5fb658f81137b5e695b84441a35276fa8dcfa403943d3e893b8c11b
-  data.tar.gz: a18d7d51cfc9c43f4042cfce2f75bc00ea306927994beb00cab2c663a7afc5fb5c7b4e2ff2ea05c9fc78f8968a4ecf0da0c65fa8ab0d74ca20dc80af7ad1116a
+  metadata.gz: d0b4d0c6bd05fc5ba34d0e4afa823f4d605a597fb1633811da5db7d3996de0c5cba2aa41c775910657cc0104005fac61eb5a652f5c5e22b6bcf025e75f7248c4
+  data.tar.gz: 21c0ba256e7a3d338560eec5b6fe8595f88b4e79f23de5f7587246d3010255bfe4ac7d723ebdcd34bbcf196fc0a4a3090d009fceec35a91e15b248edcfadcbc5

data/CHANGELOG.md

@@ -1,5 +1,17 @@
 # Release history for google-apis-securitycenter_v1beta2
 
+### v0.32.0 (2022-08-10)
+
+* Regenerated from discovery document revision 20220809
+
+### v0.31.0 (2022-08-02)
+
+* Regenerated from discovery document revision 20220728
+
+### v0.30.0 (2022-07-26)
+
+* Regenerated from discovery document revision 20220720
+
 ### v0.29.0 (2022-07-19)
 
 * Regenerated from discovery document revision 20220713

data/lib/google/apis/securitycenter_v1beta2/classes.rb

@@ -41,11 +41,44 @@ module Google
         # @return [String]
         attr_accessor :method_name
       
-        # Associated email, such as "foo@google.com".
+        # Associated email, such as "foo@google.com". The email address of the
+        # authenticated user (or service account on behalf of third party principal)
+        # making the request. For third party identity callers, the `principal_subject`
+        # field is populated instead of this field. For privacy reasons, the principal
+        # email address is sometimes redacted. For more information, see [Caller
+        # identities in audit logs](https://cloud.google.com/logging/docs/audit#user-id).
         # Corresponds to the JSON property `principalEmail`
         # @return [String]
         attr_accessor :principal_email
       
+        # A string representing the principal_subject associated with the identity. As
+        # compared to `principal_email`, supports principals that aren't associated with
+        # email addresses, such as third party principals. For most identities, the
+        # format will be `principal://iam.googleapis.com/`identity pool name`/subject/`
+        # subject)` except for some GKE identities (GKE_WORKLOAD, FREEFORM,
+        # GKE_HUB_WORKLOAD) that are still in the legacy format `serviceAccount:`
+        # identity pool name`[`subject`]`
+        # Corresponds to the JSON property `principalSubject`
+        # @return [String]
+        attr_accessor :principal_subject
+      
+        # Identity delegation history of an authenticated service account that makes the
+        # request. It contains information on the real authorities that try to access
+        # GCP resources by delegating on a service account. When multiple authorities
+        # are present, they are guaranteed to be sorted based on the original ordering
+        # of the identity delegation events.
+        # Corresponds to the JSON property `serviceAccountDelegationInfo`
+        # @return [Array<Google::Apis::SecuritycenterV1beta2::ServiceAccountDelegationInfo>]
+        attr_accessor :service_account_delegation_info
+      
+        # The name of the service account key used to create or exchange credentials for
+        # authenticating the service account making the request. This is a scheme-less
+        # URI full resource name. For example: "//iam.googleapis.com/projects/`
+        # PROJECT_ID`/serviceAccounts/`ACCOUNT`/keys/`key`"
+        # Corresponds to the JSON property `serviceAccountKeyName`
+        # @return [String]
+        attr_accessor :service_account_key_name
+      
         # This is the API service that the service account made a call to, e.g. "iam.
         # googleapis.com"
         # Corresponds to the JSON property `serviceName`
@@ -68,6 +101,9 @@ module Google
           @caller_ip_geo = args[:caller_ip_geo] if args.key?(:caller_ip_geo)
           @method_name = args[:method_name] if args.key?(:method_name)
           @principal_email = args[:principal_email] if args.key?(:principal_email)
+          @principal_subject = args[:principal_subject] if args.key?(:principal_subject)
+          @service_account_delegation_info = args[:service_account_delegation_info] if args.key?(:service_account_delegation_info)
+          @service_account_key_name = args[:service_account_key_name] if args.key?(:service_account_key_name)
           @service_name = args[:service_name] if args.key?(:service_name)
           @user_agent_family = args[:user_agent_family] if args.key?(:user_agent_family)
         end
@@ -480,6 +516,57 @@ module Google
         end
       end
       
+      # Represents database access information, such as queries. A database may be a
+      # sub-resource of an instance (as in the case of CloudSQL instances or Cloud
+      # Spanner instances), or the database instance itself. Some database resources
+      # may not have the full resource name populated because these resource types are
+      # not yet supported by Cloud Asset Inventory (e.g. CloudSQL databases). In these
+      # cases only the display name will be provided.
+      class Database
+        include Google::Apis::Core::Hashable
+      
+        # The human readable name of the database the user connected to.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # The target usernames/roles/groups of a SQL privilege grant (not an IAM policy
+        # change).
+        # Corresponds to the JSON property `grantees`
+        # @return [Array<String>]
+        attr_accessor :grantees
+      
+        # The full resource name of the database the user connected to, if it is
+        # supported by CAI. (https://google.aip.dev/122#full-resource-names)
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # The SQL statement associated with the relevant access.
+        # Corresponds to the JSON property `query`
+        # @return [String]
+        attr_accessor :query
+      
+        # The username used to connect to the DB. This may not necessarily be an IAM
+        # principal, and has no required format.
+        # Corresponds to the JSON property `userName`
+        # @return [String]
+        attr_accessor :user_name
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @grantees = args[:grantees] if args.key?(:grantees)
+          @name = args[:name] if args.key?(:name)
+          @query = args[:query] if args.key?(:query)
+          @user_name = args[:user_name] if args.key?(:user_name)
+        end
+      end
+      
       # Details of a subscription.
       class Details
         include Google::Apis::Core::Hashable
@@ -776,6 +863,16 @@ module Google
         # @return [String]
         attr_accessor :create_time
       
+        # Represents database access information, such as queries. A database may be a
+        # sub-resource of an instance (as in the case of CloudSQL instances or Cloud
+        # Spanner instances), or the database instance itself. Some database resources
+        # may not have the full resource name populated because these resource types are
+        # not yet supported by Cloud Asset Inventory (e.g. CloudSQL databases). In these
+        # cases only the display name will be provided.
+        # Corresponds to the JSON property `database`
+        # @return [Google::Apis::SecuritycenterV1beta2::Database]
+        attr_accessor :database
+      
         # Contains more detail about the finding.
         # Corresponds to the JSON property `description`
         # @return [String]
@@ -940,6 +1037,7 @@ module Google
           @contacts = args[:contacts] if args.key?(:contacts)
           @containers = args[:containers] if args.key?(:containers)
           @create_time = args[:create_time] if args.key?(:create_time)
+          @database = args[:database] if args.key?(:database)
           @description = args[:description] if args.key?(:description)
           @event_time = args[:event_time] if args.key?(:event_time)
           @exfiltration = args[:exfiltration] if args.key?(:exfiltration)
@@ -1771,6 +1869,11 @@ module Google
         # @return [Array<Google::Apis::SecuritycenterV1beta2::ProcessSignature>]
         attr_accessor :signatures
       
+        # The list of URIs associated to the Findings
+        # Corresponds to the JSON property `uris`
+        # @return [Array<String>]
+        attr_accessor :uris
+      
         def initialize(**args)
            update!(**args)
         end
@@ -1780,6 +1883,7 @@ module Google
           @domains = args[:domains] if args.key?(:domains)
           @ip_addresses = args[:ip_addresses] if args.key?(:ip_addresses)
           @signatures = args[:signatures] if args.key?(:signatures)
+          @uris = args[:uris] if args.key?(:uris)
         end
       end
       
@@ -2391,6 +2495,37 @@ module Google
         end
       end
       
+      # Identity delegation history of an authenticated service account.
+      class ServiceAccountDelegationInfo
+        include Google::Apis::Core::Hashable
+      
+        # The email address of a Google account. .
+        # Corresponds to the JSON property `principalEmail`
+        # @return [String]
+        attr_accessor :principal_email
+      
+        # A string representing the principal_subject associated with the identity. As
+        # compared to `principal_email`, supports principals that aren't associated with
+        # email addresses, such as third party principals. For most identities, the
+        # format will be `principal://iam.googleapis.com/`identity pool name`/subject/`
+        # subject)` except for some GKE identities (GKE_WORKLOAD, FREEFORM,
+        # GKE_HUB_WORKLOAD) that are still in the legacy format `serviceAccount:`
+        # identity pool name`[`subject`]`
+        # Corresponds to the JSON property `principalSubject`
+        # @return [String]
+        attr_accessor :principal_subject
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @principal_email = args[:principal_email] if args.key?(:principal_email)
+          @principal_subject = args[:principal_subject] if args.key?(:principal_subject)
+        end
+      end
+      
       # Represents a Kubernetes Subject.
       class Subject
         include Google::Apis::Core::Hashable

data/lib/google/apis/securitycenter_v1beta2/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module SecuritycenterV1beta2
       # Version of the google-apis-securitycenter_v1beta2 gem
-      GEM_VERSION = "0.29.0"
+      GEM_VERSION = "0.32.0"
 
       # Version of the code generator used to generate this client
       GENERATOR_VERSION = "0.9.0"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20220713"
+      REVISION = "20220809"
     end
   end
 end

data/lib/google/apis/securitycenter_v1beta2/representations.rb

@@ -88,6 +88,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class Database
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Details
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -346,6 +352,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class ServiceAccountDelegationInfo
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class Subject
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -390,6 +402,10 @@ module Google
       
           property :method_name, as: 'methodName'
           property :principal_email, as: 'principalEmail'
+          property :principal_subject, as: 'principalSubject'
+          collection :service_account_delegation_info, as: 'serviceAccountDelegationInfo', class: Google::Apis::SecuritycenterV1beta2::ServiceAccountDelegationInfo, decorator: Google::Apis::SecuritycenterV1beta2::ServiceAccountDelegationInfo::Representation
+      
+          property :service_account_key_name, as: 'serviceAccountKeyName'
           property :service_name, as: 'serviceName'
           property :user_agent_family, as: 'userAgentFamily'
         end
@@ -501,6 +517,17 @@ module Google
         end
       end
       
+      class Database
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :display_name, as: 'displayName'
+          collection :grantees, as: 'grantees'
+          property :name, as: 'name'
+          property :query, as: 'query'
+          property :user_name, as: 'userName'
+        end
+      end
+      
       class Details
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -583,6 +610,8 @@ module Google
           collection :containers, as: 'containers', class: Google::Apis::SecuritycenterV1beta2::Container, decorator: Google::Apis::SecuritycenterV1beta2::Container::Representation
       
           property :create_time, as: 'createTime'
+          property :database, as: 'database', class: Google::Apis::SecuritycenterV1beta2::Database, decorator: Google::Apis::SecuritycenterV1beta2::Database::Representation
+      
           property :description, as: 'description'
           property :event_time, as: 'eventTime'
           property :exfiltration, as: 'exfiltration', class: Google::Apis::SecuritycenterV1beta2::Exfiltration, decorator: Google::Apis::SecuritycenterV1beta2::Exfiltration::Representation
@@ -815,6 +844,7 @@ module Google
           collection :ip_addresses, as: 'ipAddresses'
           collection :signatures, as: 'signatures', class: Google::Apis::SecuritycenterV1beta2::ProcessSignature, decorator: Google::Apis::SecuritycenterV1beta2::ProcessSignature::Representation
       
+          collection :uris, as: 'uris'
         end
       end
       
@@ -989,6 +1019,14 @@ module Google
         end
       end
       
+      class ServiceAccountDelegationInfo
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :principal_email, as: 'principalEmail'
+          property :principal_subject, as: 'principalSubject'
+        end
+      end
+      
       class Subject
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-securitycenter_v1beta2
 version: !ruby/object:Gem::Version
-  version: 0.29.0
+  version: 0.32.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-07-25 00:00:00.000000000 Z
+date: 2022-08-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1beta2/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1beta2/v0.29.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1beta2/v0.32.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1beta2
 post_install_message: 
 rdoc_options: []