google-apis-securitycenter_v1beta2 0.46.0 → 0.48.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9f26c81e486fad0335fb2b21bfa62e61ff343e9c6d40984b96169a7cbf4aba69
-  data.tar.gz: cee1497221b3361959d56611779f9a0d7d656264a8e20d8d6dbf7371a4851b83
+  metadata.gz: af804b291482652275777b29007b0161a8e959c3282170b174f803c28edf3999
+  data.tar.gz: 6f50e4c295e990f485c6de7e31cb87cbe708053d249f23150ee7899c13bb6409
 SHA512:
-  metadata.gz: c3ff87cdddd5fa0ad6f5e23aa4d138ab2c4bc9b4f6925e1f4135beba78a7f6699cdadf847de0f97e8e5aee7f907f229f8bc06460fdfaa065a82a6a0157d0e44b
-  data.tar.gz: 4126401030ecb678a44632080aa37431f707d5dd21261df4c56770273a5b52ec92d72052524ace460c2eca1ddbc07b0e8153cdc9c9c1f25beb9ec81e840af2a3
+  metadata.gz: d9bb8a7e7040fa04a9bff4e6e34f79ff42cce522b397662649e243d90d04f4db4ad7a7120096df0b6688a41d22637a1cd010a08cd4d7fb20ad4947b60d0322a2
+  data.tar.gz: 2b3119c644acc90544eb90320842d882317dcddba00671416177c4eaf6a04da163c4ec261df9ce6a80e91914a926f53bfab392a798a0a01bc22cfa4b0de0eb02

data/CHANGELOG.md

@@ -1,5 +1,13 @@
 # Release history for google-apis-securitycenter_v1beta2
 
+### v0.48.0 (2023-04-30)
+
+* Regenerated from discovery document revision 20230420
+
+### v0.47.0 (2023-04-23)
+
+* Regenerated from discovery document revision 20230414
+
 ### v0.46.0 (2023-04-02)
 
 * Regenerated from discovery document revision 20230329

data/lib/google/apis/securitycenter_v1beta2/classes.rb

@@ -42,39 +42,41 @@ module Google
         attr_accessor :method_name
       
         # Associated email, such as "foo@google.com". The email address of the
-        # authenticated user (or service account on behalf of third party principal)
-        # making the request. For third party identity callers, the `principal_subject`
-        # field is populated instead of this field. For privacy reasons, the principal
-        # email address is sometimes redacted. For more information, see [Caller
-        # identities in audit logs](https://cloud.google.com/logging/docs/audit#user-id).
+        # authenticated user or a service account acting on behalf of a third party
+        # principal making the request. For third party identity callers, the `
+        # principal_subject` field is populated instead of this field. For privacy
+        # reasons, the principal email address is sometimes redacted. For more
+        # information, see [Caller identities in audit logs](https://cloud.google.com/
+        # logging/docs/audit#user-id).
         # Corresponds to the JSON property `principalEmail`
         # @return [String]
         attr_accessor :principal_email
       
-        # A string representing the principal_subject associated with the identity. As
-        # compared to `principal_email`, supports principals that aren't associated with
-        # email addresses, such as third party principals. For most identities, the
-        # format will be `principal://iam.googleapis.com/`identity pool name`/subjects/`
-        # subject`` except for some GKE identities (GKE_WORKLOAD, FREEFORM,
-        # GKE_HUB_WORKLOAD) that are still in the legacy format `serviceAccount:`
-        # identity pool name`[`subject`]`
+        # A string that represents the principal_subject that is associated with the
+        # identity. Unlike `principal_email`, `principal_subject` supports principals
+        # that aren't associated with email addresses, such as third party principals.
+        # For most identities, the format is `principal://iam.googleapis.com/`identity
+        # pool name`/subject/`subject``. Some GKE identities, such as GKE_WORKLOAD,
+        # FREEFORM, and GKE_HUB_WORKLOAD, still use the legacy format `serviceAccount:`
+        # identity pool name`[`subject`]`.
         # Corresponds to the JSON property `principalSubject`
         # @return [String]
         attr_accessor :principal_subject
       
-        # Identity delegation history of an authenticated service account that makes the
-        # request. It contains information on the real authorities that try to access
-        # GCP resources by delegating on a service account. When multiple authorities
-        # are present, they are guaranteed to be sorted based on the original ordering
-        # of the identity delegation events.
+        # The identity delegation history of an authenticated service account that made
+        # the request. The `serviceAccountDelegationInfo[]` object contains information
+        # about the real authorities that try to access Google Cloud resources by
+        # delegating on a service account. When multiple authorities are present, they
+        # are guaranteed to be sorted based on the original ordering of the identity
+        # delegation events.
         # Corresponds to the JSON property `serviceAccountDelegationInfo`
         # @return [Array<Google::Apis::SecuritycenterV1beta2::ServiceAccountDelegationInfo>]
         attr_accessor :service_account_delegation_info
       
-        # The name of the service account key used to create or exchange credentials for
-        # authenticating the service account making the request. This is a scheme-less
-        # URI full resource name. For example: "//iam.googleapis.com/projects/`
-        # PROJECT_ID`/serviceAccounts/`ACCOUNT`/keys/`key`"
+        # The name of the service account key that was used to create or exchange
+        # credentials when authenticating the service account that made the request.
+        # This is a scheme-less URI full resource name. For example: "//iam.googleapis.
+        # com/projects/`PROJECT_ID`/serviceAccounts/`ACCOUNT`/keys/`key`".
         # Corresponds to the JSON property `serviceAccountKeyName`
         # @return [String]
         attr_accessor :service_account_key_name
@@ -85,18 +87,16 @@ module Google
         # @return [String]
         attr_accessor :service_name
       
-        # What kind of user agent is associated, for example operating system shells,
-        # embedded or stand-alone applications, etc.
+        # Type of user agent associated with the finding. For example, an operating
+        # system shell or an embedded or standalone application.
         # Corresponds to the JSON property `userAgentFamily`
         # @return [String]
         attr_accessor :user_agent_family
       
-        # A string that represents the username of a user, user account, or other entity
-        # involved in the access event. What the entity is and what its role in the
-        # access event is depends on the finding that this field appears in. The entity
-        # is likely not an IAM principal, but could be a user that is logged into an
-        # operating system, if the finding is VM-related, or a user that is logged into
-        # some type of application that is involved in the access event.
+        # A string that represents a username. The username provided depends on the type
+        # of the finding and is likely not an IAM principal. For example, this can be a
+        # system username if the finding is related to a virtual machine, or it can be
+        # an application login username.
         # Corresponds to the JSON property `userName`
         # @return [String]
         attr_accessor :user_name
@@ -120,17 +120,19 @@ module Google
         end
       end
       
-      # Conveys information about a Kubernetes access review (e.g. kubectl auth can-i .
-      # ..) that was involved in a finding.
+      # Conveys information about a Kubernetes access review (such as one returned by
+      # a [`kubectl auth can-i`](https://kubernetes.io/docs/reference/access-authn-
+      # authz/authorization/#checking-api-access) command) that was involved in a
+      # finding.
       class AccessReview
         include Google::Apis::Core::Hashable
       
-        # Group is the API Group of the Resource. "*" means all.
+        # The API group of the resource. "*" means all.
         # Corresponds to the JSON property `group`
         # @return [String]
         attr_accessor :group
       
-        # Name is the name of the resource being requested. Empty means all.
+        # The name of the resource being requested. Empty means all.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -141,23 +143,23 @@ module Google
         # @return [String]
         attr_accessor :ns
       
-        # Resource is the optional resource type requested. "*" means all.
+        # The optional resource type requested. "*" means all.
         # Corresponds to the JSON property `resource`
         # @return [String]
         attr_accessor :resource
       
-        # Subresource is the optional subresource type.
+        # The optional subresource type.
         # Corresponds to the JSON property `subresource`
         # @return [String]
         attr_accessor :subresource
       
-        # Verb is a Kubernetes resource API verb, like: get, list, watch, create, update,
-        # delete, proxy. "*" means all.
+        # A Kubernetes resource API verb, like get, list, watch, create, update, delete,
+        # proxy. "*" means all.
         # Corresponds to the JSON property `verb`
         # @return [String]
         attr_accessor :verb
       
-        # Version is the API Version of the Resource. "*" means all.
+        # The API version of the resource. "*" means all.
         # Corresponds to the JSON property `version`
         # @return [String]
         attr_accessor :version
@@ -211,8 +213,8 @@ module Google
         attr_accessor :full_scan
         alias_method :full_scan?, :full_scan
       
-        # The [type of information](https://cloud.google.com/dlp/docs/infotypes-
-        # reference) found, for example, `EMAIL_ADDRESS` or `STREET_ADDRESS`.
+        # The type of information (or *[infoType](https://cloud.google.com/dlp/docs/
+        # infotypes-reference)*) found, for example, `EMAIL_ADDRESS` or `STREET_ADDRESS`.
         # Corresponds to the JSON property `infoType`
         # @return [String]
         attr_accessor :info_type
@@ -246,18 +248,17 @@ module Google
       class Compliance
         include Google::Apis::Core::Hashable
       
-        # Policies within the standard/benchmark e.g. A.12.4.1
+        # Policies within the standard or benchmark, for example, A.12.4.1
         # Corresponds to the JSON property `ids`
         # @return [Array<String>]
         attr_accessor :ids
       
-        # Refers to industry wide standards or benchmarks e.g. "cis", "pci", "owasp",
-        # etc.
+        # Industry-wide compliance standards or benchmarks, such as CIS, PCI, and OWASP.
         # Corresponds to the JSON property `standard`
         # @return [String]
         attr_accessor :standard
       
-        # Version of the standard/benchmark e.g. 1.1
+        # Version of the standard or benchmark, for example, 1.1
         # Corresponds to the JSON property `version`
         # @return [String]
         attr_accessor :version
@@ -363,7 +364,7 @@ module Google
         end
       end
       
-      # The details pertaining to specific contacts
+      # Details about specific contacts
       class ContactDetails
         include Google::Apis::Core::Hashable
       
@@ -386,7 +387,7 @@ module Google
       class Container
         include Google::Apis::Core::Hashable
       
-        # Optional container image id, when provided by the container runtime. Uniquely
+        # Optional container image ID, if provided by the container runtime. Uniquely
         # identifies the container image launched using a container image digest.
         # Corresponds to the JSON property `imageId`
         # @return [String]
@@ -397,13 +398,13 @@ module Google
         # @return [Array<Google::Apis::SecuritycenterV1beta2::Label>]
         attr_accessor :labels
       
-        # Container name.
+        # Name of the container.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # Container image URI provided when configuring a pod/container. May identify a
-        # container image version using mutable tags.
+        # Container image URI provided when configuring a pod or container. This string
+        # can identify a container image version using mutable tags.
         # Corresponds to the JSON property `uri`
         # @return [String]
         attr_accessor :uri
@@ -591,38 +592,43 @@ module Google
       end
       
       # Represents database access information, such as queries. A database may be a
-      # sub-resource of an instance (as in the case of CloudSQL instances or Cloud
+      # sub-resource of an instance (as in the case of Cloud SQL instances or Cloud
       # Spanner instances), or the database instance itself. Some database resources
-      # may not have the full resource name populated because these resource types are
-      # not yet supported by Cloud Asset Inventory (e.g. CloudSQL databases). In these
-      # cases only the display name will be provided.
+      # might not have the [full resource name](https://google.aip.dev/122#full-
+      # resource-names) populated because these resource types, such as Cloud SQL
+      # databases, are not yet supported by Cloud Asset Inventory. In these cases only
+      # the display name is provided. Some database resources may not have the [full
+      # resource name](https://google.aip.dev/122#full-resource-names) populated
+      # because these resource types are not yet supported by Cloud Asset Inventory (e.
+      # g. Cloud SQL databases). In these cases only the display name will be provided.
       class Database
         include Google::Apis::Core::Hashable
       
-        # The human readable name of the database the user connected to.
+        # The human-readable name of the database that the user connected to.
         # Corresponds to the JSON property `displayName`
         # @return [String]
         attr_accessor :display_name
       
-        # The target usernames/roles/groups of a SQL privilege grant (not an IAM policy
-        # change).
+        # The target usernames, roles, or groups of an SQL privilege grant, which is not
+        # an IAM policy change.
         # Corresponds to the JSON property `grantees`
         # @return [Array<String>]
         attr_accessor :grantees
       
-        # The full resource name of the database the user connected to, if it is
-        # supported by CAI. (https://google.aip.dev/122#full-resource-names)
+        # The [full resource name](https://google.aip.dev/122#full-resource-names) of
+        # the database that the user connected to, if it is supported by Cloud Asset
+        # Inventory.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # The SQL statement associated with the relevant access.
+        # The SQL statement that is associated with the database access.
         # Corresponds to the JSON property `query`
         # @return [String]
         attr_accessor :query
       
-        # The username used to connect to the DB. This may not necessarily be an IAM
-        # principal, and has no required format.
+        # The username used to connect to the database. The username might not be an IAM
+        # principal and does not have a set format.
         # Corresponds to the JSON property `userName`
         # @return [String]
         attr_accessor :user_name
@@ -697,8 +703,8 @@ module Google
         end
       end
       
-      # EnvironmentVariable is a name-value pair to store environment variables for
-      # Process.
+      # A name-value pair representing an environment variable used in an operating
+      # system process.
       class EnvironmentVariable
         include Google::Apis::Core::Hashable
       
@@ -765,19 +771,20 @@ module Google
         end
       end
       
-      # Resource that has been exfiltrated or exfiltrated_to.
+      # Resource where data was exfiltrated from or exfiltrated to.
       class ExfilResource
         include Google::Apis::Core::Hashable
       
-        # Subcomponents of the asset that is exfiltrated - these could be URIs used
-        # during exfiltration, table names, databases, filenames, etc. For example,
-        # multiple tables may be exfiltrated from the same CloudSQL instance, or
-        # multiple files from the same Cloud Storage bucket.
+        # Subcomponents of the asset that was exfiltrated, like URIs used during
+        # exfiltration, table names, databases, and filenames. For example, multiple
+        # tables might have been exfiltrated from the same Cloud SQL instance, or
+        # multiple files might have been exfiltrated from the same Cloud Storage bucket.
         # Corresponds to the JSON property `components`
         # @return [Array<String>]
         attr_accessor :components
       
-        # Resource's URI (https://google.aip.dev/122#full-resource-names)
+        # The resource's [full resource name](https://cloud.google.com/apis/design/
+        # resource_names#full_resource_name).
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -793,9 +800,10 @@ module Google
         end
       end
       
-      # Exfiltration represents a data exfiltration attempt of one or more sources to
-      # one or more targets. Sources represent the source of data that is exfiltrated,
-      # and Targets represents the destination the data was copied to.
+      # Exfiltration represents a data exfiltration attempt from one or more sources
+      # to one or more targets. The `sources` attribute lists the sources of the
+      # exfiltrated data. The `targets` attribute lists the destinations the data was
+      # copied to.
       class Exfiltration
         include Google::Apis::Core::Hashable
       
@@ -823,13 +831,66 @@ module Google
         end
       end
       
+      # Represents a textual expression in the Common Expression Language (CEL) syntax.
+      # CEL is a C-like expression language. The syntax and semantics of CEL are
+      # documented at https://github.com/google/cel-spec. Example (Comparison): title:
+      # "Summary size limit" description: "Determines if a summary is less than 100
+      # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
+      # Requestor is owner" description: "Determines if requestor is the document
+      # owner" expression: "document.owner == request.auth.claims.email" Example (
+      # Logic): title: "Public documents" description: "Determine whether the document
+      # should be publicly visible" expression: "document.type != 'private' &&
+      # document.type != 'internal'" Example (Data Manipulation): title: "Notification
+      # string" description: "Create a notification string with a timestamp."
+      # expression: "'New message received at ' + string(document.create_time)" The
+      # exact variables and functions that may be referenced within an expression are
+      # determined by the service that evaluates it. See the service documentation for
+      # additional information.
+      class Expr
+        include Google::Apis::Core::Hashable
+      
+        # Optional. Description of the expression. This is a longer text which describes
+        # the expression, e.g. when hovered over it in a UI.
+        # Corresponds to the JSON property `description`
+        # @return [String]
+        attr_accessor :description
+      
+        # Textual representation of an expression in Common Expression Language syntax.
+        # Corresponds to the JSON property `expression`
+        # @return [String]
+        attr_accessor :expression
+      
+        # Optional. String indicating the location of the expression for error reporting,
+        # e.g. a file name and a position in the file.
+        # Corresponds to the JSON property `location`
+        # @return [String]
+        attr_accessor :location
+      
+        # Optional. Title for the expression, i.e. a short string describing its purpose.
+        # This can be used e.g. in UIs which allow to enter the expression.
+        # Corresponds to the JSON property `title`
+        # @return [String]
+        attr_accessor :title
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @description = args[:description] if args.key?(:description)
+          @expression = args[:expression] if args.key?(:expression)
+          @location = args[:location] if args.key?(:location)
+          @title = args[:title] if args.key?(:title)
+        end
+      end
+      
       # File information about the related binary/library used by an executable, or
       # the script used by a script interpreter
       class File
         include Google::Apis::Core::Hashable
       
-        # Prefix of the file contents as a JSON encoded string. (Currently only
-        # populated for Malicious Script Executed findings.)
+        # Prefix of the file contents as a JSON-encoded string.
         # Corresponds to the JSON property `contents`
         # @return [String]
         attr_accessor :contents
@@ -939,7 +1000,7 @@ module Google
         # @return [Hash<String,Google::Apis::SecuritycenterV1beta2::ContactDetails>]
         attr_accessor :contacts
       
-        # Containers associated with the finding. containers provides information for
+        # Containers associated with the finding. This field provides information for
         # both Kubernetes and non-Kubernetes containers.
         # Corresponds to the JSON property `containers`
         # @return [Array<Google::Apis::SecuritycenterV1beta2::Container>]
@@ -951,16 +1012,20 @@ module Google
         attr_accessor :create_time
       
         # Represents database access information, such as queries. A database may be a
-        # sub-resource of an instance (as in the case of CloudSQL instances or Cloud
+        # sub-resource of an instance (as in the case of Cloud SQL instances or Cloud
         # Spanner instances), or the database instance itself. Some database resources
-        # may not have the full resource name populated because these resource types are
-        # not yet supported by Cloud Asset Inventory (e.g. CloudSQL databases). In these
-        # cases only the display name will be provided.
+        # might not have the [full resource name](https://google.aip.dev/122#full-
+        # resource-names) populated because these resource types, such as Cloud SQL
+        # databases, are not yet supported by Cloud Asset Inventory. In these cases only
+        # the display name is provided. Some database resources may not have the [full
+        # resource name](https://google.aip.dev/122#full-resource-names) populated
+        # because these resource types are not yet supported by Cloud Asset Inventory (e.
+        # g. Cloud SQL databases). In these cases only the display name will be provided.
         # Corresponds to the JSON property `database`
         # @return [Google::Apis::SecuritycenterV1beta2::Database]
         attr_accessor :database
       
-        # Contains more detail about the finding.
+        # Contains more details about the finding.
         # Corresponds to the JSON property `description`
         # @return [String]
         attr_accessor :description
@@ -975,9 +1040,10 @@ module Google
         # @return [String]
         attr_accessor :event_time
       
-        # Exfiltration represents a data exfiltration attempt of one or more sources to
-        # one or more targets. Sources represent the source of data that is exfiltrated,
-        # and Targets represents the destination the data was copied to.
+        # Exfiltration represents a data exfiltration attempt from one or more sources
+        # to one or more targets. The `sources` attribute lists the sources of the
+        # exfiltrated data. The `targets` attribute lists the destinations the data was
+        # copied to.
         # Corresponds to the JSON property `exfiltration`
         # @return [Google::Apis::SecuritycenterV1beta2::Exfiltration]
         attr_accessor :exfiltration
@@ -1005,7 +1071,7 @@ module Google
         # @return [String]
         attr_accessor :finding_class
       
-        # Represents IAM bindings associated with the Finding.
+        # Represents IAM bindings associated with the finding.
         # Corresponds to the JSON property `iamBindings`
         # @return [Array<Google::Apis::SecuritycenterV1beta2::IamBinding>]
         attr_accessor :iam_bindings
@@ -1048,10 +1114,9 @@ module Google
         # @return [String]
         attr_accessor :mute
       
-        # First known as mute_annotation. Records additional information about the mute
-        # operation e.g. mute config that muted the finding, user who muted the finding,
-        # etc. Unlike other attributes of a finding, a finding provider shouldn't set
-        # the value of mute.
+        # Records additional information about the mute operation, for example, the [
+        # mute configuration](/security-command-center/docs/how-to-mute-findings) that
+        # muted the finding and the user who muted the finding.
         # Corresponds to the JSON property `muteInitiator`
         # @return [String]
         attr_accessor :mute_initiator
@@ -1061,14 +1126,16 @@ module Google
         # @return [String]
         attr_accessor :mute_update_time
       
-        # The relative resource name of this finding. See: https://cloud.google.com/apis/
-        # design/resource_names#relative_resource_name Example: "organizations/`
-        # organization_id`/sources/`source_id`/findings/`finding_id`"
+        # The [relative resource name](https://cloud.google.com/apis/design/
+        # resource_names#relative_resource_name) of the finding. Example: "organizations/
+        # `organization_id`/sources/`source_id`/findings/`finding_id`", "folders/`
+        # folder_id`/sources/`source_id`/findings/`finding_id`", "projects/`project_id`/
+        # sources/`source_id`/findings/`finding_id`".
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # Next steps associate to the finding.
+        # Steps to address the finding.
         # Corresponds to the JSON property `nextSteps`
         # @return [String]
         attr_accessor :next_steps
@@ -1312,12 +1379,12 @@ module Google
       class GoogleCloudSecuritycenterV1Binding
         include Google::Apis::Core::Hashable
       
-        # Name for binding.
+        # Name for the binding.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # Namespace for binding.
+        # Namespace for the binding.
         # Corresponds to the JSON property `ns`
         # @return [String]
         attr_accessor :ns
@@ -1359,6 +1426,156 @@ module Google
         end
       end
       
+      # Defines the properties in a custom module configuration for Security Health
+      # Analytics. Use the custom module configuration to create custom detectors that
+      # generate custom findings for resources that you specify.
+      class GoogleCloudSecuritycenterV1CustomConfig
+        include Google::Apis::Core::Hashable
+      
+        # A set of optional name-value pairs that define custom source properties to
+        # return with each finding that is generated by the custom module. The custom
+        # source properties that are defined here are included in the finding JSON under
+        # `sourceProperties`.
+        # Corresponds to the JSON property `customOutput`
+        # @return [Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1CustomOutputSpec]
+        attr_accessor :custom_output
+      
+        # Text that describes the vulnerability or misconfiguration that the custom
+        # module detects. This explanation is returned with each finding instance to
+        # help investigators understand the detected issue. The text must be enclosed in
+        # quotation marks.
+        # Corresponds to the JSON property `description`
+        # @return [String]
+        attr_accessor :description
+      
+        # Represents a textual expression in the Common Expression Language (CEL) syntax.
+        # CEL is a C-like expression language. The syntax and semantics of CEL are
+        # documented at https://github.com/google/cel-spec. Example (Comparison): title:
+        # "Summary size limit" description: "Determines if a summary is less than 100
+        # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
+        # Requestor is owner" description: "Determines if requestor is the document
+        # owner" expression: "document.owner == request.auth.claims.email" Example (
+        # Logic): title: "Public documents" description: "Determine whether the document
+        # should be publicly visible" expression: "document.type != 'private' &&
+        # document.type != 'internal'" Example (Data Manipulation): title: "Notification
+        # string" description: "Create a notification string with a timestamp."
+        # expression: "'New message received at ' + string(document.create_time)" The
+        # exact variables and functions that may be referenced within an expression are
+        # determined by the service that evaluates it. See the service documentation for
+        # additional information.
+        # Corresponds to the JSON property `predicate`
+        # @return [Google::Apis::SecuritycenterV1beta2::Expr]
+        attr_accessor :predicate
+      
+        # An explanation of the recommended steps that security teams can take to
+        # resolve the detected issue. This explanation is returned with each finding
+        # generated by this module in the `nextSteps` property of the finding JSON.
+        # Corresponds to the JSON property `recommendation`
+        # @return [String]
+        attr_accessor :recommendation
+      
+        # Resource for selecting resource type.
+        # Corresponds to the JSON property `resourceSelector`
+        # @return [Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1ResourceSelector]
+        attr_accessor :resource_selector
+      
+        # The severity to assign to findings generated by the module.
+        # Corresponds to the JSON property `severity`
+        # @return [String]
+        attr_accessor :severity
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @custom_output = args[:custom_output] if args.key?(:custom_output)
+          @description = args[:description] if args.key?(:description)
+          @predicate = args[:predicate] if args.key?(:predicate)
+          @recommendation = args[:recommendation] if args.key?(:recommendation)
+          @resource_selector = args[:resource_selector] if args.key?(:resource_selector)
+          @severity = args[:severity] if args.key?(:severity)
+        end
+      end
+      
+      # A set of optional name-value pairs that define custom source properties to
+      # return with each finding that is generated by the custom module. The custom
+      # source properties that are defined here are included in the finding JSON under
+      # `sourceProperties`.
+      class GoogleCloudSecuritycenterV1CustomOutputSpec
+        include Google::Apis::Core::Hashable
+      
+        # A list of custom output properties to add to the finding.
+        # Corresponds to the JSON property `properties`
+        # @return [Array<Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1Property>]
+        attr_accessor :properties
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @properties = args[:properties] if args.key?(:properties)
+        end
+      end
+      
+      # An EffectiveSecurityHealthAnalyticsCustomModule is the representation of a
+      # Security Health Analytics custom module at a specified level of the resource
+      # hierarchy: organization, folder, or project. If a custom module is inherited
+      # from a parent organization or folder, the value of the `enablementState`
+      # property in EffectiveSecurityHealthAnalyticsCustomModule is set to the value
+      # that is effective in the parent, instead of `INHERITED`. For example, if the
+      # module is enabled in a parent organization or folder, the effective
+      # enablement_state for the module in all child folders or projects is also `
+      # enabled`. EffectiveSecurityHealthAnalyticsCustomModule is read-only.
+      class GoogleCloudSecuritycenterV1EffectiveSecurityHealthAnalyticsCustomModule
+        include Google::Apis::Core::Hashable
+      
+        # Defines the properties in a custom module configuration for Security Health
+        # Analytics. Use the custom module configuration to create custom detectors that
+        # generate custom findings for resources that you specify.
+        # Corresponds to the JSON property `customConfig`
+        # @return [Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1CustomConfig]
+        attr_accessor :custom_config
+      
+        # Output only. The display name for the custom module. The name must be between
+        # 1 and 128 characters, start with a lowercase letter, and contain alphanumeric
+        # characters or underscores only.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # Output only. The effective state of enablement for the module at the given
+        # level of the hierarchy.
+        # Corresponds to the JSON property `enablementState`
+        # @return [String]
+        attr_accessor :enablement_state
+      
+        # Output only. The resource name of the custom module. Its format is "
+        # organizations/`organization`/securityHealthAnalyticsSettings/
+        # effectiveCustomModules/`customModule`", or "folders/`folder`/
+        # securityHealthAnalyticsSettings/effectiveCustomModules/`customModule`", or "
+        # projects/`project`/securityHealthAnalyticsSettings/effectiveCustomModules/`
+        # customModule`"
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @custom_config = args[:custom_config] if args.key?(:custom_config)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @enablement_state = args[:enablement_state] if args.key?(:enablement_state)
+          @name = args[:name] if args.key?(:name)
+        end
+      end
+      
       # Representation of third party SIEM/SOAR fields within SCC.
       class GoogleCloudSecuritycenterV1ExternalSystem
         include Google::Apis::Core::Hashable
@@ -1514,6 +1731,45 @@ module Google
         end
       end
       
+      # An individual name-value pair that defines a custom source property.
+      class GoogleCloudSecuritycenterV1Property
+        include Google::Apis::Core::Hashable
+      
+        # Name of the property for the custom output.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # Represents a textual expression in the Common Expression Language (CEL) syntax.
+        # CEL is a C-like expression language. The syntax and semantics of CEL are
+        # documented at https://github.com/google/cel-spec. Example (Comparison): title:
+        # "Summary size limit" description: "Determines if a summary is less than 100
+        # chars" expression: "document.summary.size() < 100" Example (Equality): title: "
+        # Requestor is owner" description: "Determines if requestor is the document
+        # owner" expression: "document.owner == request.auth.claims.email" Example (
+        # Logic): title: "Public documents" description: "Determine whether the document
+        # should be publicly visible" expression: "document.type != 'private' &&
+        # document.type != 'internal'" Example (Data Manipulation): title: "Notification
+        # string" description: "Create a notification string with a timestamp."
+        # expression: "'New message received at ' + string(document.create_time)" The
+        # exact variables and functions that may be referenced within an expression are
+        # determined by the service that evaluates it. See the service documentation for
+        # additional information.
+        # Corresponds to the JSON property `valueExpression`
+        # @return [Google::Apis::SecuritycenterV1beta2::Expr]
+        attr_accessor :value_expression
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @name = args[:name] if args.key?(:name)
+          @value_expression = args[:value_expression] if args.key?(:value_expression)
+        end
+      end
+      
       # Information related to the Google Cloud resource.
       class GoogleCloudSecuritycenterV1Resource
         include Google::Apis::Core::Hashable
@@ -1578,6 +1834,25 @@ module Google
         end
       end
       
+      # Resource for selecting resource type.
+      class GoogleCloudSecuritycenterV1ResourceSelector
+        include Google::Apis::Core::Hashable
+      
+        # The resource types to run the detector on.
+        # Corresponds to the JSON property `resourceTypes`
+        # @return [Array<String>]
+        attr_accessor :resource_types
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @resource_types = args[:resource_types] if args.key?(:resource_types)
+        end
+      end
+      
       # Response of asset discovery run
       class GoogleCloudSecuritycenterV1RunAssetDiscoveryResponse
         include Google::Apis::Core::Hashable
@@ -1603,6 +1878,80 @@ module Google
         end
       end
       
+      # Represents an instance of a Security Health Analytics custom module, including
+      # its full module name, display name, enablement state, and last updated time.
+      # You can create a custom module at the organization, folder, or project level.
+      # Custom modules that you create at the organization or folder level are
+      # inherited by the child folders and projects.
+      class GoogleCloudSecuritycenterV1SecurityHealthAnalyticsCustomModule
+        include Google::Apis::Core::Hashable
+      
+        # Output only. If empty, indicates that the custom module was created in the
+        # organization, folder, or project in which you are viewing the custom module.
+        # Otherwise, `ancestor_module` specifies the organization or folder from which
+        # the custom module is inherited.
+        # Corresponds to the JSON property `ancestorModule`
+        # @return [String]
+        attr_accessor :ancestor_module
+      
+        # Defines the properties in a custom module configuration for Security Health
+        # Analytics. Use the custom module configuration to create custom detectors that
+        # generate custom findings for resources that you specify.
+        # Corresponds to the JSON property `customConfig`
+        # @return [Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1CustomConfig]
+        attr_accessor :custom_config
+      
+        # The display name of the Security Health Analytics custom module. This display
+        # name becomes the finding category for all findings that are returned by this
+        # custom module. The display name must be between 1 and 128 characters, start
+        # with a lowercase letter, and contain alphanumeric characters or underscores
+        # only.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # The enablement state of the custom module.
+        # Corresponds to the JSON property `enablementState`
+        # @return [String]
+        attr_accessor :enablement_state
+      
+        # Output only. The editor that last updated the custom module.
+        # Corresponds to the JSON property `lastEditor`
+        # @return [String]
+        attr_accessor :last_editor
+      
+        # Immutable. The resource name of the custom module. Its format is "
+        # organizations/`organization`/securityHealthAnalyticsSettings/customModules/`
+        # customModule`", or "folders/`folder`/securityHealthAnalyticsSettings/
+        # customModules/`customModule`", or "projects/`project`/
+        # securityHealthAnalyticsSettings/customModules/`customModule`" The id `
+        # customModule` is server-generated and is not user settable. It will be a
+        # numeric id containing 1-20 digits.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # Output only. The time at which the custom module was last updated.
+        # Corresponds to the JSON property `updateTime`
+        # @return [String]
+        attr_accessor :update_time
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @ancestor_module = args[:ancestor_module] if args.key?(:ancestor_module)
+          @custom_config = args[:custom_config] if args.key?(:custom_config)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @enablement_state = args[:enablement_state] if args.key?(:enablement_state)
+          @last_editor = args[:last_editor] if args.key?(:last_editor)
+          @name = args[:name] if args.key?(:name)
+          @update_time = args[:update_time] if args.key?(:update_time)
+        end
+      end
+      
       # Response of asset discovery run
       class GoogleCloudSecuritycenterV1beta1RunAssetDiscoveryResponse
         include Google::Apis::Core::Hashable
@@ -1938,8 +2287,8 @@ module Google
         # @return [String]
         attr_accessor :action
       
-        # A single identity requesting access for a Cloud Platform resource, e.g. "foo@
-        # google.com".
+        # A single identity requesting access for a Cloud Platform resource, for example,
+        # "foo@google.com".
         # Corresponds to the JSON property `member`
         # @return [String]
         attr_accessor :member
@@ -2008,60 +2357,60 @@ module Google
       class KernelRootkit
         include Google::Apis::Core::Hashable
       
-        # Rootkit name when available.
+        # Rootkit name, when available.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # True when unexpected modifications of kernel code memory are present.
+        # True if unexpected modifications of kernel code memory are present.
         # Corresponds to the JSON property `unexpectedCodeModification`
         # @return [Boolean]
         attr_accessor :unexpected_code_modification
         alias_method :unexpected_code_modification?, :unexpected_code_modification
       
-        # True when `ftrace` points are present with callbacks pointing to regions that
+        # True if `ftrace` points are present with callbacks pointing to regions that
         # are not in the expected kernel or module code range.
         # Corresponds to the JSON property `unexpectedFtraceHandler`
         # @return [Boolean]
         attr_accessor :unexpected_ftrace_handler
         alias_method :unexpected_ftrace_handler?, :unexpected_ftrace_handler
       
-        # True when interrupt handlers that are are not in the expected kernel or module
+        # True if interrupt handlers that are are not in the expected kernel or module
         # code regions are present.
         # Corresponds to the JSON property `unexpectedInterruptHandler`
         # @return [Boolean]
         attr_accessor :unexpected_interrupt_handler
         alias_method :unexpected_interrupt_handler?, :unexpected_interrupt_handler
       
-        # True when kernel code pages that are not in the expected kernel or module code
+        # True if kernel code pages that are not in the expected kernel or module code
         # regions are present.
         # Corresponds to the JSON property `unexpectedKernelCodePages`
         # @return [Boolean]
         attr_accessor :unexpected_kernel_code_pages
         alias_method :unexpected_kernel_code_pages?, :unexpected_kernel_code_pages
       
-        # True when `kprobe` points are present with callbacks pointing to regions that
+        # True if `kprobe` points are present with callbacks pointing to regions that
         # are not in the expected kernel or module code range.
         # Corresponds to the JSON property `unexpectedKprobeHandler`
         # @return [Boolean]
         attr_accessor :unexpected_kprobe_handler
         alias_method :unexpected_kprobe_handler?, :unexpected_kprobe_handler
       
-        # True when unexpected processes in the scheduler run queue are present. Such
+        # True if unexpected processes in the scheduler run queue are present. Such
         # processes are in the run queue, but not in the process task list.
         # Corresponds to the JSON property `unexpectedProcessesInRunqueue`
         # @return [Boolean]
         attr_accessor :unexpected_processes_in_runqueue
         alias_method :unexpected_processes_in_runqueue?, :unexpected_processes_in_runqueue
       
-        # True when unexpected modifications of kernel read-only data memory are present.
+        # True if unexpected modifications of kernel read-only data memory are present.
         # Corresponds to the JSON property `unexpectedReadOnlyDataModification`
         # @return [Boolean]
         attr_accessor :unexpected_read_only_data_modification
         alias_method :unexpected_read_only_data_modification?, :unexpected_read_only_data_modification
       
-        # True when system call handlers that are are not in the expected kernel or
-        # module code regions are present.
+        # True if system call handlers that are are not in the expected kernel or module
+        # code regions are present.
         # Corresponds to the JSON property `unexpectedSystemCallHandler`
         # @return [Boolean]
         attr_accessor :unexpected_system_call_handler
@@ -2089,37 +2438,42 @@ module Google
       class Kubernetes
         include Google::Apis::Core::Hashable
       
-        # Provides information on any Kubernetes access reviews (i.e. privilege checks)
+        # Provides information on any Kubernetes access reviews (privilege checks)
         # relevant to the finding.
         # Corresponds to the JSON property `accessReviews`
         # @return [Array<Google::Apis::SecuritycenterV1beta2::AccessReview>]
         attr_accessor :access_reviews
       
-        # Provides Kubernetes role binding information for findings that involve
-        # RoleBindings or ClusterRoleBindings.
+        # Provides Kubernetes role binding information for findings that involve [
+        # RoleBindings or ClusterRoleBindings](https://cloud.google.com/kubernetes-
+        # engine/docs/how-to/role-based-access-control).
         # Corresponds to the JSON property `bindings`
         # @return [Array<Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1Binding>]
         attr_accessor :bindings
       
-        # GKE Node Pools associated with the finding. This field will contain NodePool
-        # information for each Node, when it is available.
+        # GKE [node pools](https://cloud.google.com/kubernetes-engine/docs/concepts/node-
+        # pools) associated with the finding. This field contains node pool information
+        # for each node, when it is available.
         # Corresponds to the JSON property `nodePools`
         # @return [Array<Google::Apis::SecuritycenterV1beta2::NodePool>]
         attr_accessor :node_pools
       
-        # Provides Kubernetes Node information.
+        # Provides Kubernetes [node](https://cloud.google.com/kubernetes-engine/docs/
+        # concepts/cluster-architecture#nodes) information.
         # Corresponds to the JSON property `nodes`
         # @return [Array<Google::Apis::SecuritycenterV1beta2::Node>]
         attr_accessor :nodes
       
-        # Kubernetes Pods associated with the finding. This field will contain Pod
-        # records for each container that is owned by a Pod.
+        # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod)
+        # associated with the finding. This field contains Pod records for each
+        # container that is owned by a Pod.
         # Corresponds to the JSON property `pods`
         # @return [Array<Google::Apis::SecuritycenterV1beta2::Pod>]
         attr_accessor :pods
       
-        # Provides Kubernetes role information for findings that involve Roles or
-        # ClusterRoles.
+        # Provides Kubernetes role information for findings that involve [Roles or
+        # ClusterRoles](https://cloud.google.com/kubernetes-engine/docs/how-to/role-
+        # based-access-control).
         # Corresponds to the JSON property `roles`
         # @return [Array<Google::Apis::SecuritycenterV1beta2::Role>]
         attr_accessor :roles
@@ -2139,17 +2493,20 @@ module Google
         end
       end
       
-      # Label represents a generic name=value label. Label has separate name and value
-      # fields to support filtering with contains().
+      # Represents a generic name-value label. A label has separate name and value
+      # fields to support filtering with the `contains()` function. For more
+      # information, see [Filtering on array-type fields](https://cloud.google.com/
+      # security-command-center/docs/how-to-api-list-findings#array-contains-filtering)
+      # .
       class Label
         include Google::Apis::Core::Hashable
       
-        # Label name.
+        # Name of the label.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # Label value.
+        # Value that corresponds to the label's name.
         # Corresponds to the JSON property `value`
         # @return [String]
         attr_accessor :value
@@ -2240,11 +2597,12 @@ module Google
         end
       end
       
-      # Kubernetes Nodes associated with the finding.
+      # Kubernetes nodes associated with the finding.
       class Node
         include Google::Apis::Core::Hashable
       
-        # Full Resource name of the Compute Engine VM running the cluster node.
+        # [Full resource name](https://google.aip.dev/122#full-resource-names) of the
+        # Compute Engine VM running the cluster node.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -2259,11 +2617,11 @@ module Google
         end
       end
       
-      # Provides GKE Node Pool information.
+      # Provides GKE node pool information.
       class NodePool
         include Google::Apis::Core::Hashable
       
-        # Kubernetes Node pool name.
+        # Kubernetes node pool name.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -2312,7 +2670,7 @@ module Google
         end
       end
       
-      # Kubernetes Pod.
+      # A Kubernetes Pod.
       class Pod
         include Google::Apis::Core::Hashable
       
@@ -2386,18 +2744,18 @@ module Google
         # @return [Array<Google::Apis::SecuritycenterV1beta2::File>]
         attr_accessor :libraries
       
-        # The process name visible in utilities like `top` and `ps`; it can be accessed
-        # via `/proc/[pid]/comm` and changed with `prctl(PR_SET_NAME)`.
+        # The process name, as displayed in utilities like `top` and `ps`. This name can
+        # be accessed through `/proc/[pid]/comm` and changed with `prctl(PR_SET_NAME)`.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # The parent process id.
+        # The parent process ID.
         # Corresponds to the JSON property `parentPid`
         # @return [Fixnum]
         attr_accessor :parent_pid
       
-        # The process id.
+        # The process ID.
         # Corresponds to the JSON property `pid`
         # @return [Fixnum]
         attr_accessor :pid
@@ -2724,21 +3082,21 @@ module Google
         end
       end
       
-      # Represents a Kubernetes Subject.
+      # Represents a Kubernetes subject.
       class Subject
         include Google::Apis::Core::Hashable
       
-        # Authentication type for subject.
+        # Authentication type for the subject.
         # Corresponds to the JSON property `kind`
         # @return [String]
         attr_accessor :kind
       
-        # Name for subject.
+        # Name for the subject.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
       
-        # Namespace for subject.
+        # Namespace for the subject.
         # Corresponds to the JSON property `ns`
         # @return [String]
         attr_accessor :ns

data/lib/google/apis/securitycenter_v1beta2/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module SecuritycenterV1beta2
       # Version of the google-apis-securitycenter_v1beta2 gem
-      GEM_VERSION = "0.46.0"
+      GEM_VERSION = "0.48.0"
 
       # Version of the code generator used to generate this client
       GENERATOR_VERSION = "0.12.0"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20230329"
+      REVISION = "20230420"
     end
   end
 end

data/lib/google/apis/securitycenter_v1beta2/representations.rb

@@ -142,6 +142,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class Expr
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class File
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -184,6 +190,24 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class GoogleCloudSecuritycenterV1CustomConfig
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class GoogleCloudSecuritycenterV1CustomOutputSpec
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class GoogleCloudSecuritycenterV1EffectiveSecurityHealthAnalyticsCustomModule
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class GoogleCloudSecuritycenterV1ExternalSystem
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -202,18 +226,36 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class GoogleCloudSecuritycenterV1Property
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class GoogleCloudSecuritycenterV1Resource
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class GoogleCloudSecuritycenterV1ResourceSelector
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class GoogleCloudSecuritycenterV1RunAssetDiscoveryResponse
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class GoogleCloudSecuritycenterV1SecurityHealthAnalyticsCustomModule
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class GoogleCloudSecuritycenterV1beta1RunAssetDiscoveryResponse
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -618,6 +660,16 @@ module Google
         end
       end
       
+      class Expr
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :description, as: 'description'
+          property :expression, as: 'expression'
+          property :location, as: 'location'
+          property :title, as: 'title'
+        end
+      end
+      
       class File
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -740,6 +792,40 @@ module Google
         end
       end
       
+      class GoogleCloudSecuritycenterV1CustomConfig
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :custom_output, as: 'customOutput', class: Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1CustomOutputSpec, decorator: Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1CustomOutputSpec::Representation
+      
+          property :description, as: 'description'
+          property :predicate, as: 'predicate', class: Google::Apis::SecuritycenterV1beta2::Expr, decorator: Google::Apis::SecuritycenterV1beta2::Expr::Representation
+      
+          property :recommendation, as: 'recommendation'
+          property :resource_selector, as: 'resourceSelector', class: Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1ResourceSelector, decorator: Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1ResourceSelector::Representation
+      
+          property :severity, as: 'severity'
+        end
+      end
+      
+      class GoogleCloudSecuritycenterV1CustomOutputSpec
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          collection :properties, as: 'properties', class: Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1Property, decorator: Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1Property::Representation
+      
+        end
+      end
+      
+      class GoogleCloudSecuritycenterV1EffectiveSecurityHealthAnalyticsCustomModule
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :custom_config, as: 'customConfig', class: Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1CustomConfig, decorator: Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1CustomConfig::Representation
+      
+          property :display_name, as: 'displayName'
+          property :enablement_state, as: 'enablementState'
+          property :name, as: 'name'
+        end
+      end
+      
       class GoogleCloudSecuritycenterV1ExternalSystem
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -775,6 +861,15 @@ module Google
         end
       end
       
+      class GoogleCloudSecuritycenterV1Property
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :name, as: 'name'
+          property :value_expression, as: 'valueExpression', class: Google::Apis::SecuritycenterV1beta2::Expr, decorator: Google::Apis::SecuritycenterV1beta2::Expr::Representation
+      
+        end
+      end
+      
       class GoogleCloudSecuritycenterV1Resource
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -790,6 +885,13 @@ module Google
         end
       end
       
+      class GoogleCloudSecuritycenterV1ResourceSelector
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          collection :resource_types, as: 'resourceTypes'
+        end
+      end
+      
       class GoogleCloudSecuritycenterV1RunAssetDiscoveryResponse
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -798,6 +900,20 @@ module Google
         end
       end
       
+      class GoogleCloudSecuritycenterV1SecurityHealthAnalyticsCustomModule
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :ancestor_module, as: 'ancestorModule'
+          property :custom_config, as: 'customConfig', class: Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1CustomConfig, decorator: Google::Apis::SecuritycenterV1beta2::GoogleCloudSecuritycenterV1CustomConfig::Representation
+      
+          property :display_name, as: 'displayName'
+          property :enablement_state, as: 'enablementState'
+          property :last_editor, as: 'lastEditor'
+          property :name, as: 'name'
+          property :update_time, as: 'updateTime'
+        end
+      end
+      
       class GoogleCloudSecuritycenterV1beta1RunAssetDiscoveryResponse
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-securitycenter_v1beta2
 version: !ruby/object:Gem::Version
-  version: 0.46.0
+  version: 0.48.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-04-02 00:00:00.000000000 Z
+date: 2023-04-30 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1beta2/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1beta2/v0.46.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-securitycenter_v1beta2/v0.48.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-securitycenter_v1beta2
 post_install_message: 
 rdoc_options: []