google-cloud-container_analysis-v1 0.4.1 → 0.4.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/AUTHENTICATION.md +8 -8
- data/README.md +1 -1
- data/lib/google/cloud/container_analysis/v1/container_analysis/client.rb +122 -53
- data/lib/google/cloud/container_analysis/v1/version.rb +1 -1
- data/lib/google/devtools/containeranalysis/v1/containeranalysis_pb.rb +2 -2
- data/proto_docs/google/api/field_behavior.rb +7 -1
- data/proto_docs/google/type/expr.rb +35 -12
- data/proto_docs/grafeas/v1/common.rb +31 -2
- data/proto_docs/grafeas/v1/package.rb +8 -0
- data/proto_docs/grafeas/v1/vulnerability.rb +38 -0
- metadata +12 -6
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: be9ac413a65fb2d2902d17aa3d7fb3b79252e886a04f1922297bdf1305f4c937
|
|
4
|
+
data.tar.gz: f9b4ee77ddf95ec53cc4502e049c74b1e2cc8ddc47880f452a23c533b2fca683
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 59de44caff6a18ddac82540215a170eec07eda61360af7f9df94f5a341439e78bced9e8397b79a8bf46bff6df0e885257505e1cef7d85d66590251804cf5c4cf
|
|
7
|
+
data.tar.gz: 59999236822cb8b9b34358f0c3c244690d3c4dc59d22fa99eb4799ef01c673875cbf4205b8c4d060eb22fb4a1db384e489f29958c31915f384ba689f0d378896
|
data/AUTHENTICATION.md
CHANGED
|
@@ -66,11 +66,11 @@ The environment variables that google-cloud-container_analysis-v1
|
|
|
66
66
|
checks for credentials are configured on the service Credentials class (such as
|
|
67
67
|
{::Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Credentials}):
|
|
68
68
|
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
|
|
73
|
-
|
|
69
|
+
* `CONTAINER_ANALYSIS_CREDENTIALS` - Path to JSON file, or JSON contents
|
|
70
|
+
* `CONTAINER_ANALYSIS_KEYFILE` - Path to JSON file, or JSON contents
|
|
71
|
+
* `GOOGLE_CLOUD_CREDENTIALS` - Path to JSON file, or JSON contents
|
|
72
|
+
* `GOOGLE_CLOUD_KEYFILE` - Path to JSON file, or JSON contents
|
|
73
|
+
* `GOOGLE_APPLICATION_CREDENTIALS` - Path to JSON file
|
|
74
74
|
|
|
75
75
|
```ruby
|
|
76
76
|
require "google/cloud/container_analysis/v1"
|
|
@@ -82,8 +82,8 @@ client = ::Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.new
|
|
|
82
82
|
|
|
83
83
|
### Configuration
|
|
84
84
|
|
|
85
|
-
The **Credentials JSON** can be configured instead of
|
|
86
|
-
environment
|
|
85
|
+
The path to the **Credentials JSON** file can be configured instead of storing
|
|
86
|
+
it in an environment variable. Either on an individual client initialization:
|
|
87
87
|
|
|
88
88
|
```ruby
|
|
89
89
|
require "google/cloud/container_analysis/v1"
|
|
@@ -93,7 +93,7 @@ client = ::Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.new d
|
|
|
93
93
|
end
|
|
94
94
|
```
|
|
95
95
|
|
|
96
|
-
Or
|
|
96
|
+
Or globally for all clients:
|
|
97
97
|
|
|
98
98
|
```ruby
|
|
99
99
|
require "google/cloud/container_analysis/v1"
|
data/README.md
CHANGED
|
@@ -33,7 +33,7 @@ In order to use this library, you first need to go through the following steps:
|
|
|
33
33
|
require "google/cloud/container_analysis/v1"
|
|
34
34
|
|
|
35
35
|
client = ::Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.new
|
|
36
|
-
request =
|
|
36
|
+
request = ::Google::Iam::V1::SetIamPolicyRequest.new # (request fields as keyword arguments...)
|
|
37
37
|
response = client.set_iam_policy request
|
|
38
38
|
```
|
|
39
39
|
|
|
@@ -53,13 +53,12 @@ module Google
|
|
|
53
53
|
# See {::Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client::Configuration}
|
|
54
54
|
# for a description of the configuration fields.
|
|
55
55
|
#
|
|
56
|
-
#
|
|
56
|
+
# @example
|
|
57
57
|
#
|
|
58
|
-
#
|
|
59
|
-
#
|
|
60
|
-
#
|
|
61
|
-
#
|
|
62
|
-
# end
|
|
58
|
+
# # Modify the configuration for all ContainerAnalysis clients
|
|
59
|
+
# ::Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.configure do |config|
|
|
60
|
+
# config.timeout = 10.0
|
|
61
|
+
# end
|
|
63
62
|
#
|
|
64
63
|
# @yield [config] Configure the Client client.
|
|
65
64
|
# @yieldparam config [Client::Configuration]
|
|
@@ -112,19 +111,15 @@ module Google
|
|
|
112
111
|
##
|
|
113
112
|
# Create a new ContainerAnalysis client object.
|
|
114
113
|
#
|
|
115
|
-
#
|
|
116
|
-
#
|
|
117
|
-
# To create a new ContainerAnalysis client with the default
|
|
118
|
-
# configuration:
|
|
119
|
-
#
|
|
120
|
-
# client = ::Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.new
|
|
114
|
+
# @example
|
|
121
115
|
#
|
|
122
|
-
#
|
|
123
|
-
#
|
|
116
|
+
# # Create a client using the default configuration
|
|
117
|
+
# client = ::Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.new
|
|
124
118
|
#
|
|
125
|
-
#
|
|
126
|
-
#
|
|
127
|
-
#
|
|
119
|
+
# # Create a client using a custom configuration
|
|
120
|
+
# client = ::Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.new do |config|
|
|
121
|
+
# config.timeout = 10.0
|
|
122
|
+
# end
|
|
128
123
|
#
|
|
129
124
|
# @yield [config] Configure the ContainerAnalysis client.
|
|
130
125
|
# @yieldparam config [Client::Configuration]
|
|
@@ -144,14 +139,13 @@ module Google
|
|
|
144
139
|
|
|
145
140
|
# Create credentials
|
|
146
141
|
credentials = @config.credentials
|
|
147
|
-
# Use self-signed JWT if the
|
|
142
|
+
# Use self-signed JWT if the endpoint is unchanged from default,
|
|
148
143
|
# but only if the default endpoint does not have a region prefix.
|
|
149
|
-
enable_self_signed_jwt = @config.
|
|
150
|
-
@config.endpoint == Client.configure.endpoint &&
|
|
144
|
+
enable_self_signed_jwt = @config.endpoint == Client.configure.endpoint &&
|
|
151
145
|
!@config.endpoint.split(".").first.include?("-")
|
|
152
146
|
credentials ||= Credentials.default scope: @config.scope,
|
|
153
147
|
enable_self_signed_jwt: enable_self_signed_jwt
|
|
154
|
-
if credentials.is_a?(String) || credentials.is_a?(Hash)
|
|
148
|
+
if credentials.is_a?(::String) || credentials.is_a?(::Hash)
|
|
155
149
|
credentials = Credentials.new credentials, scope: @config.scope
|
|
156
150
|
end
|
|
157
151
|
@quota_project_id = @config.quota_project
|
|
@@ -210,6 +204,21 @@ module Google
|
|
|
210
204
|
#
|
|
211
205
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
212
206
|
#
|
|
207
|
+
# @example Basic example
|
|
208
|
+
# require "google/cloud/container_analysis/v1"
|
|
209
|
+
#
|
|
210
|
+
# # Create a client object. The client can be reused for multiple calls.
|
|
211
|
+
# client = Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.new
|
|
212
|
+
#
|
|
213
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
|
214
|
+
# request = Google::Iam::V1::SetIamPolicyRequest.new
|
|
215
|
+
#
|
|
216
|
+
# # Call the set_iam_policy method.
|
|
217
|
+
# result = client.set_iam_policy request
|
|
218
|
+
#
|
|
219
|
+
# # The returned object is of type Google::Iam::V1::Policy.
|
|
220
|
+
# p result
|
|
221
|
+
#
|
|
213
222
|
def set_iam_policy request, options = nil
|
|
214
223
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
215
224
|
|
|
@@ -227,16 +236,20 @@ module Google
|
|
|
227
236
|
gapic_version: ::Google::Cloud::ContainerAnalysis::V1::VERSION
|
|
228
237
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
229
238
|
|
|
230
|
-
header_params = {
|
|
231
|
-
|
|
232
|
-
|
|
239
|
+
header_params = {}
|
|
240
|
+
if request.resource
|
|
241
|
+
header_params["resource"] = request.resource
|
|
242
|
+
end
|
|
243
|
+
|
|
233
244
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
234
245
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
235
246
|
|
|
236
247
|
options.apply_defaults timeout: @config.rpcs.set_iam_policy.timeout,
|
|
237
248
|
metadata: metadata,
|
|
238
249
|
retry_policy: @config.rpcs.set_iam_policy.retry_policy
|
|
239
|
-
|
|
250
|
+
|
|
251
|
+
options.apply_defaults timeout: @config.timeout,
|
|
252
|
+
metadata: @config.metadata,
|
|
240
253
|
retry_policy: @config.retry_policy
|
|
241
254
|
|
|
242
255
|
@container_analysis_stub.call_rpc :set_iam_policy, request, options: options do |response, operation|
|
|
@@ -287,6 +300,21 @@ module Google
|
|
|
287
300
|
#
|
|
288
301
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
289
302
|
#
|
|
303
|
+
# @example Basic example
|
|
304
|
+
# require "google/cloud/container_analysis/v1"
|
|
305
|
+
#
|
|
306
|
+
# # Create a client object. The client can be reused for multiple calls.
|
|
307
|
+
# client = Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.new
|
|
308
|
+
#
|
|
309
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
|
310
|
+
# request = Google::Iam::V1::GetIamPolicyRequest.new
|
|
311
|
+
#
|
|
312
|
+
# # Call the get_iam_policy method.
|
|
313
|
+
# result = client.get_iam_policy request
|
|
314
|
+
#
|
|
315
|
+
# # The returned object is of type Google::Iam::V1::Policy.
|
|
316
|
+
# p result
|
|
317
|
+
#
|
|
290
318
|
def get_iam_policy request, options = nil
|
|
291
319
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
292
320
|
|
|
@@ -304,16 +332,20 @@ module Google
|
|
|
304
332
|
gapic_version: ::Google::Cloud::ContainerAnalysis::V1::VERSION
|
|
305
333
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
306
334
|
|
|
307
|
-
header_params = {
|
|
308
|
-
|
|
309
|
-
|
|
335
|
+
header_params = {}
|
|
336
|
+
if request.resource
|
|
337
|
+
header_params["resource"] = request.resource
|
|
338
|
+
end
|
|
339
|
+
|
|
310
340
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
311
341
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
312
342
|
|
|
313
343
|
options.apply_defaults timeout: @config.rpcs.get_iam_policy.timeout,
|
|
314
344
|
metadata: metadata,
|
|
315
345
|
retry_policy: @config.rpcs.get_iam_policy.retry_policy
|
|
316
|
-
|
|
346
|
+
|
|
347
|
+
options.apply_defaults timeout: @config.timeout,
|
|
348
|
+
metadata: @config.metadata,
|
|
317
349
|
retry_policy: @config.retry_policy
|
|
318
350
|
|
|
319
351
|
@container_analysis_stub.call_rpc :get_iam_policy, request, options: options do |response, operation|
|
|
@@ -365,6 +397,21 @@ module Google
|
|
|
365
397
|
#
|
|
366
398
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
367
399
|
#
|
|
400
|
+
# @example Basic example
|
|
401
|
+
# require "google/cloud/container_analysis/v1"
|
|
402
|
+
#
|
|
403
|
+
# # Create a client object. The client can be reused for multiple calls.
|
|
404
|
+
# client = Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.new
|
|
405
|
+
#
|
|
406
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
|
407
|
+
# request = Google::Iam::V1::TestIamPermissionsRequest.new
|
|
408
|
+
#
|
|
409
|
+
# # Call the test_iam_permissions method.
|
|
410
|
+
# result = client.test_iam_permissions request
|
|
411
|
+
#
|
|
412
|
+
# # The returned object is of type Google::Iam::V1::TestIamPermissionsResponse.
|
|
413
|
+
# p result
|
|
414
|
+
#
|
|
368
415
|
def test_iam_permissions request, options = nil
|
|
369
416
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
370
417
|
|
|
@@ -382,16 +429,20 @@ module Google
|
|
|
382
429
|
gapic_version: ::Google::Cloud::ContainerAnalysis::V1::VERSION
|
|
383
430
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
384
431
|
|
|
385
|
-
header_params = {
|
|
386
|
-
|
|
387
|
-
|
|
432
|
+
header_params = {}
|
|
433
|
+
if request.resource
|
|
434
|
+
header_params["resource"] = request.resource
|
|
435
|
+
end
|
|
436
|
+
|
|
388
437
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
389
438
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
390
439
|
|
|
391
440
|
options.apply_defaults timeout: @config.rpcs.test_iam_permissions.timeout,
|
|
392
441
|
metadata: metadata,
|
|
393
442
|
retry_policy: @config.rpcs.test_iam_permissions.retry_policy
|
|
394
|
-
|
|
443
|
+
|
|
444
|
+
options.apply_defaults timeout: @config.timeout,
|
|
445
|
+
metadata: @config.metadata,
|
|
395
446
|
retry_policy: @config.retry_policy
|
|
396
447
|
|
|
397
448
|
@container_analysis_stub.call_rpc :test_iam_permissions, request, options: options do |response, operation|
|
|
@@ -434,6 +485,21 @@ module Google
|
|
|
434
485
|
#
|
|
435
486
|
# @raise [::Google::Cloud::Error] if the RPC is aborted.
|
|
436
487
|
#
|
|
488
|
+
# @example Basic example
|
|
489
|
+
# require "google/cloud/container_analysis/v1"
|
|
490
|
+
#
|
|
491
|
+
# # Create a client object. The client can be reused for multiple calls.
|
|
492
|
+
# client = Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.new
|
|
493
|
+
#
|
|
494
|
+
# # Create a request. To set request fields, pass in keyword arguments.
|
|
495
|
+
# request = Google::Cloud::ContainerAnalysis::V1::GetVulnerabilityOccurrencesSummaryRequest.new
|
|
496
|
+
#
|
|
497
|
+
# # Call the get_vulnerability_occurrences_summary method.
|
|
498
|
+
# result = client.get_vulnerability_occurrences_summary request
|
|
499
|
+
#
|
|
500
|
+
# # The returned object is of type Google::Cloud::ContainerAnalysis::V1::VulnerabilityOccurrencesSummary.
|
|
501
|
+
# p result
|
|
502
|
+
#
|
|
437
503
|
def get_vulnerability_occurrences_summary request, options = nil
|
|
438
504
|
raise ::ArgumentError, "request must be provided" if request.nil?
|
|
439
505
|
|
|
@@ -451,16 +517,20 @@ module Google
|
|
|
451
517
|
gapic_version: ::Google::Cloud::ContainerAnalysis::V1::VERSION
|
|
452
518
|
metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
|
|
453
519
|
|
|
454
|
-
header_params = {
|
|
455
|
-
|
|
456
|
-
|
|
520
|
+
header_params = {}
|
|
521
|
+
if request.parent
|
|
522
|
+
header_params["parent"] = request.parent
|
|
523
|
+
end
|
|
524
|
+
|
|
457
525
|
request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
|
458
526
|
metadata[:"x-goog-request-params"] ||= request_params_header
|
|
459
527
|
|
|
460
528
|
options.apply_defaults timeout: @config.rpcs.get_vulnerability_occurrences_summary.timeout,
|
|
461
529
|
metadata: metadata,
|
|
462
530
|
retry_policy: @config.rpcs.get_vulnerability_occurrences_summary.retry_policy
|
|
463
|
-
|
|
531
|
+
|
|
532
|
+
options.apply_defaults timeout: @config.timeout,
|
|
533
|
+
metadata: @config.metadata,
|
|
464
534
|
retry_policy: @config.retry_policy
|
|
465
535
|
|
|
466
536
|
@container_analysis_stub.call_rpc :get_vulnerability_occurrences_summary, request, options: options do |response, operation|
|
|
@@ -484,22 +554,21 @@ module Google
|
|
|
484
554
|
# Configuration can be applied globally to all clients, or to a single client
|
|
485
555
|
# on construction.
|
|
486
556
|
#
|
|
487
|
-
#
|
|
488
|
-
#
|
|
489
|
-
#
|
|
490
|
-
# to 20 seconds,
|
|
491
|
-
#
|
|
492
|
-
#
|
|
493
|
-
#
|
|
494
|
-
#
|
|
495
|
-
#
|
|
496
|
-
#
|
|
497
|
-
#
|
|
498
|
-
#
|
|
499
|
-
#
|
|
500
|
-
#
|
|
501
|
-
#
|
|
502
|
-
# end
|
|
557
|
+
# @example
|
|
558
|
+
#
|
|
559
|
+
# # Modify the global config, setting the timeout for
|
|
560
|
+
# # set_iam_policy to 20 seconds,
|
|
561
|
+
# # and all remaining timeouts to 10 seconds.
|
|
562
|
+
# ::Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.configure do |config|
|
|
563
|
+
# config.timeout = 10.0
|
|
564
|
+
# config.rpcs.set_iam_policy.timeout = 20.0
|
|
565
|
+
# end
|
|
566
|
+
#
|
|
567
|
+
# # Apply the above configuration only to a new client.
|
|
568
|
+
# client = ::Google::Cloud::ContainerAnalysis::V1::ContainerAnalysis::Client.new do |config|
|
|
569
|
+
# config.timeout = 10.0
|
|
570
|
+
# config.rpcs.set_iam_policy.timeout = 20.0
|
|
571
|
+
# end
|
|
503
572
|
#
|
|
504
573
|
# @!attribute [rw] endpoint
|
|
505
574
|
# The hostname or hostname:port of the service endpoint.
|
|
@@ -1,8 +1,6 @@
|
|
|
1
1
|
# Generated by the protocol buffer compiler. DO NOT EDIT!
|
|
2
2
|
# source: google/devtools/containeranalysis/v1/containeranalysis.proto
|
|
3
3
|
|
|
4
|
-
require 'google/protobuf'
|
|
5
|
-
|
|
6
4
|
require 'google/api/annotations_pb'
|
|
7
5
|
require 'google/api/client_pb'
|
|
8
6
|
require 'google/api/field_behavior_pb'
|
|
@@ -11,6 +9,8 @@ require 'google/iam/v1/iam_policy_pb'
|
|
|
11
9
|
require 'google/iam/v1/policy_pb'
|
|
12
10
|
require 'google/protobuf/timestamp_pb'
|
|
13
11
|
require 'grafeas/v1/vulnerability_pb'
|
|
12
|
+
require 'google/protobuf'
|
|
13
|
+
|
|
14
14
|
Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
15
15
|
add_file("google/devtools/containeranalysis/v1/containeranalysis.proto", :syntax => :proto3) do
|
|
16
16
|
add_message "google.devtools.containeranalysis.v1.GetVulnerabilityOccurrencesSummaryRequest" do
|
|
@@ -57,9 +57,15 @@ module Google
|
|
|
57
57
|
|
|
58
58
|
# Denotes that a (repeated) field is an unordered list.
|
|
59
59
|
# This indicates that the service may provide the elements of the list
|
|
60
|
-
# in any arbitrary
|
|
60
|
+
# in any arbitrary order, rather than the order the user originally
|
|
61
61
|
# provided. Additionally, the list's order may or may not be stable.
|
|
62
62
|
UNORDERED_LIST = 6
|
|
63
|
+
|
|
64
|
+
# Denotes that this field returns a non-empty default value if not set.
|
|
65
|
+
# This indicates that if the user provides the empty value in a request,
|
|
66
|
+
# a non-empty value will be returned. The user will not be aware of what
|
|
67
|
+
# non-empty value to expect.
|
|
68
|
+
NON_EMPTY_DEFAULT = 7
|
|
63
69
|
end
|
|
64
70
|
end
|
|
65
71
|
end
|
|
@@ -19,30 +19,53 @@
|
|
|
19
19
|
|
|
20
20
|
module Google
|
|
21
21
|
module Type
|
|
22
|
-
# Represents
|
|
22
|
+
# Represents a textual expression in the Common Expression Language (CEL)
|
|
23
|
+
# syntax. CEL is a C-like expression language. The syntax and semantics of CEL
|
|
24
|
+
# are documented at https://github.com/google/cel-spec.
|
|
23
25
|
#
|
|
24
|
-
#
|
|
25
|
-
#
|
|
26
|
-
#
|
|
26
|
+
# Example (Comparison):
|
|
27
|
+
#
|
|
28
|
+
# title: "Summary size limit"
|
|
29
|
+
# description: "Determines if a summary is less than 100 chars"
|
|
30
|
+
# expression: "document.summary.size() < 100"
|
|
31
|
+
#
|
|
32
|
+
# Example (Equality):
|
|
33
|
+
#
|
|
34
|
+
# title: "Requestor is owner"
|
|
35
|
+
# description: "Determines if requestor is the document owner"
|
|
36
|
+
# expression: "document.owner == request.auth.claims.email"
|
|
37
|
+
#
|
|
38
|
+
# Example (Logic):
|
|
39
|
+
#
|
|
40
|
+
# title: "Public documents"
|
|
41
|
+
# description: "Determine whether the document should be publicly visible"
|
|
42
|
+
# expression: "document.type != 'private' && document.type != 'internal'"
|
|
43
|
+
#
|
|
44
|
+
# Example (Data Manipulation):
|
|
45
|
+
#
|
|
46
|
+
# title: "Notification string"
|
|
47
|
+
# description: "Create a notification string with a timestamp."
|
|
48
|
+
# expression: "'New message received at ' + string(document.create_time)"
|
|
49
|
+
#
|
|
50
|
+
# The exact variables and functions that may be referenced within an expression
|
|
51
|
+
# are determined by the service that evaluates it. See the service
|
|
52
|
+
# documentation for additional information.
|
|
27
53
|
# @!attribute [rw] expression
|
|
28
54
|
# @return [::String]
|
|
29
|
-
# Textual representation of an expression in
|
|
30
|
-
#
|
|
31
|
-
#
|
|
32
|
-
# The application context of the containing message determines which
|
|
33
|
-
# well-known feature set of CEL is supported.
|
|
55
|
+
# Textual representation of an expression in Common Expression Language
|
|
56
|
+
# syntax.
|
|
34
57
|
# @!attribute [rw] title
|
|
35
58
|
# @return [::String]
|
|
36
|
-
#
|
|
59
|
+
# Optional. Title for the expression, i.e. a short string describing
|
|
37
60
|
# its purpose. This can be used e.g. in UIs which allow to enter the
|
|
38
61
|
# expression.
|
|
39
62
|
# @!attribute [rw] description
|
|
40
63
|
# @return [::String]
|
|
41
|
-
#
|
|
64
|
+
# Optional. Description of the expression. This is a longer text which
|
|
42
65
|
# describes the expression, e.g. when hovered over it in a UI.
|
|
43
66
|
# @!attribute [rw] location
|
|
44
67
|
# @return [::String]
|
|
45
|
-
#
|
|
68
|
+
# Optional. String indicating the location of the expression for error
|
|
46
69
|
# reporting, e.g. a file name and a position in the file.
|
|
47
70
|
class Expr
|
|
48
71
|
include ::Google::Protobuf::MessageExts
|
|
@@ -65,7 +65,7 @@ module Grafeas
|
|
|
65
65
|
# @return [::String]
|
|
66
66
|
# The identifier for the public key that verifies this signature.
|
|
67
67
|
# * The `public_key_id` is required.
|
|
68
|
-
# * The `public_key_id`
|
|
68
|
+
# * The `public_key_id` SHOULD be an RFC3986 conformant URI.
|
|
69
69
|
# * When possible, the `public_key_id` SHOULD be an immutable reference,
|
|
70
70
|
# such as a cryptographic digest.
|
|
71
71
|
#
|
|
@@ -85,9 +85,32 @@ module Grafeas
|
|
|
85
85
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
86
86
|
end
|
|
87
87
|
|
|
88
|
+
# MUST match
|
|
89
|
+
# https://github.com/secure-systems-lab/dsse/blob/master/envelope.proto. An
|
|
90
|
+
# authenticated message of arbitrary type.
|
|
91
|
+
# @!attribute [rw] payload
|
|
92
|
+
# @return [::String]
|
|
93
|
+
# @!attribute [rw] payload_type
|
|
94
|
+
# @return [::String]
|
|
95
|
+
# @!attribute [rw] signatures
|
|
96
|
+
# @return [::Array<::Grafeas::V1::EnvelopeSignature>]
|
|
97
|
+
class Envelope
|
|
98
|
+
include ::Google::Protobuf::MessageExts
|
|
99
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
100
|
+
end
|
|
101
|
+
|
|
102
|
+
# @!attribute [rw] sig
|
|
103
|
+
# @return [::String]
|
|
104
|
+
# @!attribute [rw] keyid
|
|
105
|
+
# @return [::String]
|
|
106
|
+
class EnvelopeSignature
|
|
107
|
+
include ::Google::Protobuf::MessageExts
|
|
108
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
109
|
+
end
|
|
110
|
+
|
|
88
111
|
# Kind represents the kinds of notes supported.
|
|
89
112
|
module NoteKind
|
|
90
|
-
#
|
|
113
|
+
# Default value. This value is unused.
|
|
91
114
|
NOTE_KIND_UNSPECIFIED = 0
|
|
92
115
|
|
|
93
116
|
# The note and occurrence represent a package vulnerability.
|
|
@@ -113,6 +136,12 @@ module Grafeas
|
|
|
113
136
|
|
|
114
137
|
# This represents an available package upgrade.
|
|
115
138
|
UPGRADE = 8
|
|
139
|
+
|
|
140
|
+
# This represents a Compliance Note
|
|
141
|
+
COMPLIANCE = 9
|
|
142
|
+
|
|
143
|
+
# This represents a DSSE attestation Note
|
|
144
|
+
DSSE_ATTESTATION = 10
|
|
116
145
|
end
|
|
117
146
|
end
|
|
118
147
|
end
|
|
@@ -101,6 +101,14 @@ module Grafeas
|
|
|
101
101
|
# @!attribute [rw] revision
|
|
102
102
|
# @return [::String]
|
|
103
103
|
# The iteration of the package build from the above version.
|
|
104
|
+
# @!attribute [rw] inclusive
|
|
105
|
+
# @return [::Boolean]
|
|
106
|
+
# Whether this version is specifying part of an inclusive range. Grafeas
|
|
107
|
+
# does not have the capability to specify version ranges; instead we have
|
|
108
|
+
# fields that specify start version and end versions. At times this is
|
|
109
|
+
# insufficient - we also need to specify whether the version is included in
|
|
110
|
+
# the range or is excluded from the range. This boolean is expected to be set
|
|
111
|
+
# to true when the version is included in a range.
|
|
104
112
|
# @!attribute [rw] kind
|
|
105
113
|
# @return [::Grafeas::V1::Version::VersionKind]
|
|
106
114
|
# Required. Distinguishes between sentinel MIN/MAX versions and normal
|
|
@@ -109,6 +109,12 @@ module Grafeas
|
|
|
109
109
|
# The time this information was last changed at the source. This is an
|
|
110
110
|
# upstream timestamp from the underlying information source - e.g. Ubuntu
|
|
111
111
|
# security tracker.
|
|
112
|
+
# @!attribute [rw] source
|
|
113
|
+
# @return [::String]
|
|
114
|
+
# The source from which the information in this Detail was obtained.
|
|
115
|
+
# @!attribute [rw] vendor
|
|
116
|
+
# @return [::String]
|
|
117
|
+
# The name of the vendor of the product.
|
|
112
118
|
class Detail
|
|
113
119
|
include ::Google::Protobuf::MessageExts
|
|
114
120
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
@@ -161,6 +167,9 @@ module Grafeas
|
|
|
161
167
|
# Output only. The CVSS score of this vulnerability. CVSS score is on a
|
|
162
168
|
# scale of 0 - 10 where 0 indicates low severity and 10 indicates high
|
|
163
169
|
# severity.
|
|
170
|
+
# @!attribute [rw] cvssv3
|
|
171
|
+
# @return [::Grafeas::V1::VulnerabilityOccurrence::CVSSV3]
|
|
172
|
+
# The cvss v3 score for the vulnerability.
|
|
164
173
|
# @!attribute [rw] package_issue
|
|
165
174
|
# @return [::Array<::Grafeas::V1::VulnerabilityOccurrence::PackageIssue>]
|
|
166
175
|
# Required. The set of affected locations and their fixes (if available)
|
|
@@ -178,6 +187,14 @@ module Grafeas
|
|
|
178
187
|
# @return [::Grafeas::V1::Severity]
|
|
179
188
|
# The distro assigned severity for this vulnerability when it is available,
|
|
180
189
|
# otherwise this is the note provider assigned severity.
|
|
190
|
+
#
|
|
191
|
+
# When there are multiple PackageIssues for this vulnerability, they can have
|
|
192
|
+
# different effective severities because some might be provided by the distro
|
|
193
|
+
# while others are provided by the language ecosystem for a language pack.
|
|
194
|
+
# For this reason, it is advised to use the effective severity on the
|
|
195
|
+
# PackageIssue level. In the case where multiple PackageIssues have differing
|
|
196
|
+
# effective severities, this field should be the highest severity for any of
|
|
197
|
+
# the PackageIssues.
|
|
181
198
|
# @!attribute [rw] fix_available
|
|
182
199
|
# @return [::Boolean]
|
|
183
200
|
# Output only. Whether at least one of the affected packages has a fix
|
|
@@ -186,6 +203,19 @@ module Grafeas
|
|
|
186
203
|
include ::Google::Protobuf::MessageExts
|
|
187
204
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
188
205
|
|
|
206
|
+
# The CVSS v3 score for this vulnerability.
|
|
207
|
+
# @!attribute [rw] base_score
|
|
208
|
+
# @return [::Float]
|
|
209
|
+
# The base score for for this vulnerability according to cvss v3.
|
|
210
|
+
# @!attribute [rw] severity
|
|
211
|
+
# @return [::Grafeas::V1::Severity]
|
|
212
|
+
# The severity rating assigned to this vulnerability by vulnerability
|
|
213
|
+
# provider.
|
|
214
|
+
class CVSSV3
|
|
215
|
+
include ::Google::Protobuf::MessageExts
|
|
216
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
217
|
+
end
|
|
218
|
+
|
|
189
219
|
# A detail for a distro and package this vulnerability occurrence was found
|
|
190
220
|
# in and its associated fix (if one is available).
|
|
191
221
|
# @!attribute [rw] affected_cpe_uri
|
|
@@ -215,6 +245,14 @@ module Grafeas
|
|
|
215
245
|
# @!attribute [rw] fix_available
|
|
216
246
|
# @return [::Boolean]
|
|
217
247
|
# Output only. Whether a fix is available for this package.
|
|
248
|
+
# @!attribute [rw] package_type
|
|
249
|
+
# @return [::String]
|
|
250
|
+
# The type of package (e.g. OS, MAVEN, GO).
|
|
251
|
+
# @!attribute [r] effective_severity
|
|
252
|
+
# @return [::Grafeas::V1::Severity]
|
|
253
|
+
# The distro or language system assigned severity for this vulnerability
|
|
254
|
+
# when that is available and note provider assigned severity when it is not
|
|
255
|
+
# available.
|
|
218
256
|
class PackageIssue
|
|
219
257
|
include ::Google::Protobuf::MessageExts
|
|
220
258
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: google-cloud-container_analysis-v1
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.4.
|
|
4
|
+
version: 0.4.5
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Google LLC
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2021-
|
|
11
|
+
date: 2021-11-08 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: gapic-common
|
|
@@ -16,7 +16,7 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - ">="
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: '0.
|
|
19
|
+
version: '0.7'
|
|
20
20
|
- - "<"
|
|
21
21
|
- !ruby/object:Gem::Version
|
|
22
22
|
version: 2.a
|
|
@@ -26,7 +26,7 @@ dependencies:
|
|
|
26
26
|
requirements:
|
|
27
27
|
- - ">="
|
|
28
28
|
- !ruby/object:Gem::Version
|
|
29
|
-
version: '0.
|
|
29
|
+
version: '0.7'
|
|
30
30
|
- - "<"
|
|
31
31
|
- !ruby/object:Gem::Version
|
|
32
32
|
version: 2.a
|
|
@@ -48,16 +48,22 @@ dependencies:
|
|
|
48
48
|
name: grafeas-v1
|
|
49
49
|
requirement: !ruby/object:Gem::Requirement
|
|
50
50
|
requirements:
|
|
51
|
-
- - "
|
|
51
|
+
- - ">"
|
|
52
52
|
- !ruby/object:Gem::Version
|
|
53
53
|
version: '0.0'
|
|
54
|
+
- - "<"
|
|
55
|
+
- !ruby/object:Gem::Version
|
|
56
|
+
version: 2.a
|
|
54
57
|
type: :runtime
|
|
55
58
|
prerelease: false
|
|
56
59
|
version_requirements: !ruby/object:Gem::Requirement
|
|
57
60
|
requirements:
|
|
58
|
-
- - "
|
|
61
|
+
- - ">"
|
|
59
62
|
- !ruby/object:Gem::Version
|
|
60
63
|
version: '0.0'
|
|
64
|
+
- - "<"
|
|
65
|
+
- !ruby/object:Gem::Version
|
|
66
|
+
version: 2.a
|
|
61
67
|
- !ruby/object:Gem::Dependency
|
|
62
68
|
name: grpc-google-iam-v1
|
|
63
69
|
requirement: !ruby/object:Gem::Requirement
|