google-cloud-container_analysis 0.3.2 → 1.0.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.yardopts +2 -1
- data/AUTHENTICATION.md +52 -82
- data/LICENSE.md +203 -0
- data/MIGRATING.md +326 -0
- data/README.md +35 -37
- data/lib/google-cloud-container_analysis.rb +6 -2
- data/lib/google/cloud/container_analysis.rb +89 -120
- data/lib/google/cloud/container_analysis/version.rb +6 -2
- metadata +57 -37
- data/LICENSE +0 -201
- data/lib/google/cloud/container_analysis/v1.rb +0 -158
- data/lib/google/cloud/container_analysis/v1/container_analysis_client.rb +0 -397
- data/lib/google/cloud/container_analysis/v1/container_analysis_client_config.json +0 -41
- data/lib/google/cloud/container_analysis/v1/credentials.rb +0 -41
- data/lib/google/cloud/container_analysis/v1/doc/google/iam/v1/iam_policy.rb +0 -64
- data/lib/google/cloud/container_analysis/v1/doc/google/iam/v1/options.rb +0 -33
- data/lib/google/cloud/container_analysis/v1/doc/google/iam/v1/policy.rb +0 -150
- data/lib/google/cloud/container_analysis/v1/doc/google/type/expr.rb +0 -45
- data/lib/google/devtools/containeranalysis/v1/containeranalysis_pb.rb +0 -15
- data/lib/google/devtools/containeranalysis/v1/containeranalysis_services_pb.rb +0 -77
data/LICENSE
DELETED
@@ -1,201 +0,0 @@
|
|
1
|
-
Apache License
|
2
|
-
Version 2.0, January 2004
|
3
|
-
https://www.apache.org/licenses/
|
4
|
-
|
5
|
-
TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
|
6
|
-
|
7
|
-
1. Definitions.
|
8
|
-
|
9
|
-
"License" shall mean the terms and conditions for use, reproduction,
|
10
|
-
and distribution as defined by Sections 1 through 9 of this document.
|
11
|
-
|
12
|
-
"Licensor" shall mean the copyright owner or entity authorized by
|
13
|
-
the copyright owner that is granting the License.
|
14
|
-
|
15
|
-
"Legal Entity" shall mean the union of the acting entity and all
|
16
|
-
other entities that control, are controlled by, or are under common
|
17
|
-
control with that entity. For the purposes of this definition,
|
18
|
-
"control" means (i) the power, direct or indirect, to cause the
|
19
|
-
direction or management of such entity, whether by contract or
|
20
|
-
otherwise, or (ii) ownership of fifty percent (50%) or more of the
|
21
|
-
outstanding shares, or (iii) beneficial ownership of such entity.
|
22
|
-
|
23
|
-
"You" (or "Your") shall mean an individual or Legal Entity
|
24
|
-
exercising permissions granted by this License.
|
25
|
-
|
26
|
-
"Source" form shall mean the preferred form for making modifications,
|
27
|
-
including but not limited to software source code, documentation
|
28
|
-
source, and configuration files.
|
29
|
-
|
30
|
-
"Object" form shall mean any form resulting from mechanical
|
31
|
-
transformation or translation of a Source form, including but
|
32
|
-
not limited to compiled object code, generated documentation,
|
33
|
-
and conversions to other media types.
|
34
|
-
|
35
|
-
"Work" shall mean the work of authorship, whether in Source or
|
36
|
-
Object form, made available under the License, as indicated by a
|
37
|
-
copyright notice that is included in or attached to the work
|
38
|
-
(an example is provided in the Appendix below).
|
39
|
-
|
40
|
-
"Derivative Works" shall mean any work, whether in Source or Object
|
41
|
-
form, that is based on (or derived from) the Work and for which the
|
42
|
-
editorial revisions, annotations, elaborations, or other modifications
|
43
|
-
represent, as a whole, an original work of authorship. For the purposes
|
44
|
-
of this License, Derivative Works shall not include works that remain
|
45
|
-
separable from, or merely link (or bind by name) to the interfaces of,
|
46
|
-
the Work and Derivative Works thereof.
|
47
|
-
|
48
|
-
"Contribution" shall mean any work of authorship, including
|
49
|
-
the original version of the Work and any modifications or additions
|
50
|
-
to that Work or Derivative Works thereof, that is intentionally
|
51
|
-
submitted to Licensor for inclusion in the Work by the copyright owner
|
52
|
-
or by an individual or Legal Entity authorized to submit on behalf of
|
53
|
-
the copyright owner. For the purposes of this definition, "submitted"
|
54
|
-
means any form of electronic, verbal, or written communication sent
|
55
|
-
to the Licensor or its representatives, including but not limited to
|
56
|
-
communication on electronic mailing lists, source code control systems,
|
57
|
-
and issue tracking systems that are managed by, or on behalf of, the
|
58
|
-
Licensor for the purpose of discussing and improving the Work, but
|
59
|
-
excluding communication that is conspicuously marked or otherwise
|
60
|
-
designated in writing by the copyright owner as "Not a Contribution."
|
61
|
-
|
62
|
-
"Contributor" shall mean Licensor and any individual or Legal Entity
|
63
|
-
on behalf of whom a Contribution has been received by Licensor and
|
64
|
-
subsequently incorporated within the Work.
|
65
|
-
|
66
|
-
2. Grant of Copyright License. Subject to the terms and conditions of
|
67
|
-
this License, each Contributor hereby grants to You a perpetual,
|
68
|
-
worldwide, non-exclusive, no-charge, royalty-free, irrevocable
|
69
|
-
copyright license to reproduce, prepare Derivative Works of,
|
70
|
-
publicly display, publicly perform, sublicense, and distribute the
|
71
|
-
Work and such Derivative Works in Source or Object form.
|
72
|
-
|
73
|
-
3. Grant of Patent License. Subject to the terms and conditions of
|
74
|
-
this License, each Contributor hereby grants to You a perpetual,
|
75
|
-
worldwide, non-exclusive, no-charge, royalty-free, irrevocable
|
76
|
-
(except as stated in this section) patent license to make, have made,
|
77
|
-
use, offer to sell, sell, import, and otherwise transfer the Work,
|
78
|
-
where such license applies only to those patent claims licensable
|
79
|
-
by such Contributor that are necessarily infringed by their
|
80
|
-
Contribution(s) alone or by combination of their Contribution(s)
|
81
|
-
with the Work to which such Contribution(s) was submitted. If You
|
82
|
-
institute patent litigation against any entity (including a
|
83
|
-
cross-claim or counterclaim in a lawsuit) alleging that the Work
|
84
|
-
or a Contribution incorporated within the Work constitutes direct
|
85
|
-
or contributory patent infringement, then any patent licenses
|
86
|
-
granted to You under this License for that Work shall terminate
|
87
|
-
as of the date such litigation is filed.
|
88
|
-
|
89
|
-
4. Redistribution. You may reproduce and distribute copies of the
|
90
|
-
Work or Derivative Works thereof in any medium, with or without
|
91
|
-
modifications, and in Source or Object form, provided that You
|
92
|
-
meet the following conditions:
|
93
|
-
|
94
|
-
(a) You must give any other recipients of the Work or
|
95
|
-
Derivative Works a copy of this License; and
|
96
|
-
|
97
|
-
(b) You must cause any modified files to carry prominent notices
|
98
|
-
stating that You changed the files; and
|
99
|
-
|
100
|
-
(c) You must retain, in the Source form of any Derivative Works
|
101
|
-
that You distribute, all copyright, patent, trademark, and
|
102
|
-
attribution notices from the Source form of the Work,
|
103
|
-
excluding those notices that do not pertain to any part of
|
104
|
-
the Derivative Works; and
|
105
|
-
|
106
|
-
(d) If the Work includes a "NOTICE" text file as part of its
|
107
|
-
distribution, then any Derivative Works that You distribute must
|
108
|
-
include a readable copy of the attribution notices contained
|
109
|
-
within such NOTICE file, excluding those notices that do not
|
110
|
-
pertain to any part of the Derivative Works, in at least one
|
111
|
-
of the following places: within a NOTICE text file distributed
|
112
|
-
as part of the Derivative Works; within the Source form or
|
113
|
-
documentation, if provided along with the Derivative Works; or,
|
114
|
-
within a display generated by the Derivative Works, if and
|
115
|
-
wherever such third-party notices normally appear. The contents
|
116
|
-
of the NOTICE file are for informational purposes only and
|
117
|
-
do not modify the License. You may add Your own attribution
|
118
|
-
notices within Derivative Works that You distribute, alongside
|
119
|
-
or as an addendum to the NOTICE text from the Work, provided
|
120
|
-
that such additional attribution notices cannot be construed
|
121
|
-
as modifying the License.
|
122
|
-
|
123
|
-
You may add Your own copyright statement to Your modifications and
|
124
|
-
may provide additional or different license terms and conditions
|
125
|
-
for use, reproduction, or distribution of Your modifications, or
|
126
|
-
for any such Derivative Works as a whole, provided Your use,
|
127
|
-
reproduction, and distribution of the Work otherwise complies with
|
128
|
-
the conditions stated in this License.
|
129
|
-
|
130
|
-
5. Submission of Contributions. Unless You explicitly state otherwise,
|
131
|
-
any Contribution intentionally submitted for inclusion in the Work
|
132
|
-
by You to the Licensor shall be under the terms and conditions of
|
133
|
-
this License, without any additional terms or conditions.
|
134
|
-
Notwithstanding the above, nothing herein shall supersede or modify
|
135
|
-
the terms of any separate license agreement you may have executed
|
136
|
-
with Licensor regarding such Contributions.
|
137
|
-
|
138
|
-
6. Trademarks. This License does not grant permission to use the trade
|
139
|
-
names, trademarks, service marks, or product names of the Licensor,
|
140
|
-
except as required for reasonable and customary use in describing the
|
141
|
-
origin of the Work and reproducing the content of the NOTICE file.
|
142
|
-
|
143
|
-
7. Disclaimer of Warranty. Unless required by applicable law or
|
144
|
-
agreed to in writing, Licensor provides the Work (and each
|
145
|
-
Contributor provides its Contributions) on an "AS IS" BASIS,
|
146
|
-
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
|
147
|
-
implied, including, without limitation, any warranties or conditions
|
148
|
-
of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
|
149
|
-
PARTICULAR PURPOSE. You are solely responsible for determining the
|
150
|
-
appropriateness of using or redistributing the Work and assume any
|
151
|
-
risks associated with Your exercise of permissions under this License.
|
152
|
-
|
153
|
-
8. Limitation of Liability. In no event and under no legal theory,
|
154
|
-
whether in tort (including negligence), contract, or otherwise,
|
155
|
-
unless required by applicable law (such as deliberate and grossly
|
156
|
-
negligent acts) or agreed to in writing, shall any Contributor be
|
157
|
-
liable to You for damages, including any direct, indirect, special,
|
158
|
-
incidental, or consequential damages of any character arising as a
|
159
|
-
result of this License or out of the use or inability to use the
|
160
|
-
Work (including but not limited to damages for loss of goodwill,
|
161
|
-
work stoppage, computer failure or malfunction, or any and all
|
162
|
-
other commercial damages or losses), even if such Contributor
|
163
|
-
has been advised of the possibility of such damages.
|
164
|
-
|
165
|
-
9. Accepting Warranty or Additional Liability. While redistributing
|
166
|
-
the Work or Derivative Works thereof, You may choose to offer,
|
167
|
-
and charge a fee for, acceptance of support, warranty, indemnity,
|
168
|
-
or other liability obligations and/or rights consistent with this
|
169
|
-
License. However, in accepting such obligations, You may act only
|
170
|
-
on Your own behalf and on Your sole responsibility, not on behalf
|
171
|
-
of any other Contributor, and only if You agree to indemnify,
|
172
|
-
defend, and hold each Contributor harmless for any liability
|
173
|
-
incurred by, or claims asserted against, such Contributor by reason
|
174
|
-
of your accepting any such warranty or additional liability.
|
175
|
-
|
176
|
-
END OF TERMS AND CONDITIONS
|
177
|
-
|
178
|
-
APPENDIX: How to apply the Apache License to your work.
|
179
|
-
|
180
|
-
To apply the Apache License to your work, attach the following
|
181
|
-
boilerplate notice, with the fields enclosed by brackets "[]"
|
182
|
-
replaced with your own identifying information. (Don't include
|
183
|
-
the brackets!) The text should be enclosed in the appropriate
|
184
|
-
comment syntax for the file format. We also recommend that a
|
185
|
-
file or class name and description of purpose be included on the
|
186
|
-
same "printed page" as the copyright notice for easier
|
187
|
-
identification within third-party archives.
|
188
|
-
|
189
|
-
Copyright [yyyy] [name of copyright owner]
|
190
|
-
|
191
|
-
Licensed under the Apache License, Version 2.0 (the "License");
|
192
|
-
you may not use this file except in compliance with the License.
|
193
|
-
You may obtain a copy of the License at
|
194
|
-
|
195
|
-
https://www.apache.org/licenses/LICENSE-2.0
|
196
|
-
|
197
|
-
Unless required by applicable law or agreed to in writing, software
|
198
|
-
distributed under the License is distributed on an "AS IS" BASIS,
|
199
|
-
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
200
|
-
See the License for the specific language governing permissions and
|
201
|
-
limitations under the License.
|
@@ -1,158 +0,0 @@
|
|
1
|
-
# Copyright 2019 Google LLC
|
2
|
-
#
|
3
|
-
# Licensed under the Apache License, Version 2.0 (the "License");
|
4
|
-
# you may not use this file except in compliance with the License.
|
5
|
-
# You may obtain a copy of the License at
|
6
|
-
#
|
7
|
-
# https://www.apache.org/licenses/LICENSE-2.0
|
8
|
-
#
|
9
|
-
# Unless required by applicable law or agreed to in writing, software
|
10
|
-
# distributed under the License is distributed on an "AS IS" BASIS,
|
11
|
-
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
12
|
-
# See the License for the specific language governing permissions and
|
13
|
-
# limitations under the License.
|
14
|
-
|
15
|
-
|
16
|
-
require "google/cloud/container_analysis/v1/container_analysis_client"
|
17
|
-
|
18
|
-
module Google
|
19
|
-
module Cloud
|
20
|
-
module ContainerAnalysis
|
21
|
-
# rubocop:disable LineLength
|
22
|
-
|
23
|
-
##
|
24
|
-
# # Ruby Client for Container Analysis API ([Alpha](https://github.com/googleapis/google-cloud-ruby#versioning))
|
25
|
-
#
|
26
|
-
# [Container Analysis API][Product Documentation]:
|
27
|
-
# An implementation of the Grafeas API, which stores, and enables querying
|
28
|
-
# and retrieval of critical metadata about all of your software artifacts.
|
29
|
-
# - [Product Documentation][]
|
30
|
-
#
|
31
|
-
# ## Quick Start
|
32
|
-
# In order to use this library, you first need to go through the following
|
33
|
-
# steps:
|
34
|
-
#
|
35
|
-
# 1. [Select or create a Cloud Platform project.](https://console.cloud.google.com/project)
|
36
|
-
# 2. [Enable billing for your project.](https://cloud.google.com/billing/docs/how-to/modify-project#enable_billing_for_a_project)
|
37
|
-
# 3. [Enable the Container Analysis API.](https://console.cloud.google.com/apis/library/containeranalysis.googleapis.com)
|
38
|
-
# 4. [Setup Authentication.](https://googleapis.dev/ruby/google-cloud-container_analysis/latest/file.AUTHENTICATION.html)
|
39
|
-
#
|
40
|
-
# ### Installation
|
41
|
-
# ```
|
42
|
-
# $ gem install google-cloud-container_analysis
|
43
|
-
# ```
|
44
|
-
#
|
45
|
-
# ### Next Steps
|
46
|
-
# - Read the [Container Analysis API Product documentation][Product Documentation]
|
47
|
-
# to learn more about the product and see How-to Guides.
|
48
|
-
# - View this [repository's main README](https://github.com/googleapis/google-cloud-ruby/blob/master/README.md)
|
49
|
-
# to see the full list of Cloud APIs that we cover.
|
50
|
-
#
|
51
|
-
# [Product Documentation]: https://cloud.google.com/container-registry/docs/container-analysis
|
52
|
-
#
|
53
|
-
# ## Enabling Logging
|
54
|
-
#
|
55
|
-
# To enable logging for this library, set the logger for the underlying [gRPC](https://github.com/grpc/grpc/tree/master/src/ruby) library.
|
56
|
-
# The logger that you set may be a Ruby stdlib [`Logger`](https://ruby-doc.org/stdlib-2.5.0/libdoc/logger/rdoc/Logger.html) as shown below,
|
57
|
-
# or a [`Google::Cloud::Logging::Logger`](https://googleapis.dev/ruby/google-cloud-logging/latest)
|
58
|
-
# that will write logs to [Stackdriver Logging](https://cloud.google.com/logging/). See [grpc/logconfig.rb](https://github.com/grpc/grpc/blob/master/src/ruby/lib/grpc/logconfig.rb)
|
59
|
-
# and the gRPC [spec_helper.rb](https://github.com/grpc/grpc/blob/master/src/ruby/spec/spec_helper.rb) for additional information.
|
60
|
-
#
|
61
|
-
# Configuring a Ruby stdlib logger:
|
62
|
-
#
|
63
|
-
# ```ruby
|
64
|
-
# require "logger"
|
65
|
-
#
|
66
|
-
# module MyLogger
|
67
|
-
# LOGGER = Logger.new $stderr, level: Logger::WARN
|
68
|
-
# def logger
|
69
|
-
# LOGGER
|
70
|
-
# end
|
71
|
-
# end
|
72
|
-
#
|
73
|
-
# # Define a gRPC module-level logger method before grpc/logconfig.rb loads.
|
74
|
-
# module GRPC
|
75
|
-
# extend MyLogger
|
76
|
-
# end
|
77
|
-
# ```
|
78
|
-
#
|
79
|
-
module V1
|
80
|
-
# rubocop:enable LineLength
|
81
|
-
|
82
|
-
##
|
83
|
-
# Retrieves analysis results of Cloud components such as Docker container
|
84
|
-
# images. The Container Analysis API is an implementation of the
|
85
|
-
# [Grafeas](https://grafeas.io) API.
|
86
|
-
#
|
87
|
-
# Analysis results are stored as a series of occurrences. An `Occurrence`
|
88
|
-
# contains information about a specific analysis instance on a resource. An
|
89
|
-
# occurrence refers to a `Note`. A note contains details describing the
|
90
|
-
# analysis and is generally stored in a separate project, called a `Provider`.
|
91
|
-
# Multiple occurrences can refer to the same note.
|
92
|
-
#
|
93
|
-
# For example, an SSL vulnerability could affect multiple images. In this case,
|
94
|
-
# there would be one note for the vulnerability and an occurrence for each
|
95
|
-
# image with the vulnerability referring to that note.
|
96
|
-
#
|
97
|
-
# @param credentials [Google::Auth::Credentials, String, Hash, GRPC::Core::Channel, GRPC::Core::ChannelCredentials, Proc]
|
98
|
-
# Provides the means for authenticating requests made by the client. This parameter can
|
99
|
-
# be many types.
|
100
|
-
# A `Google::Auth::Credentials` uses a the properties of its represented keyfile for
|
101
|
-
# authenticating requests made by this client.
|
102
|
-
# A `String` will be treated as the path to the keyfile to be used for the construction of
|
103
|
-
# credentials for this client.
|
104
|
-
# A `Hash` will be treated as the contents of a keyfile to be used for the construction of
|
105
|
-
# credentials for this client.
|
106
|
-
# A `GRPC::Core::Channel` will be used to make calls through.
|
107
|
-
# A `GRPC::Core::ChannelCredentials` for the setting up the RPC client. The channel credentials
|
108
|
-
# should already be composed with a `GRPC::Core::CallCredentials` object.
|
109
|
-
# A `Proc` will be used as an updater_proc for the Grpc channel. The proc transforms the
|
110
|
-
# metadata for requests, generally, to give OAuth credentials.
|
111
|
-
# @param scopes [Array<String>]
|
112
|
-
# The OAuth scopes for this service. This parameter is ignored if
|
113
|
-
# an updater_proc is supplied.
|
114
|
-
# @param client_config [Hash]
|
115
|
-
# A Hash for call options for each method. See
|
116
|
-
# Google::Gax#construct_settings for the structure of
|
117
|
-
# this data. Falls back to the default config if not specified
|
118
|
-
# or the specified config is missing data points.
|
119
|
-
# @param timeout [Numeric]
|
120
|
-
# The default timeout, in seconds, for calls made through this client.
|
121
|
-
# @param metadata [Hash]
|
122
|
-
# Default metadata to be sent with each request. This can be overridden on a per call basis.
|
123
|
-
# @param service_address [String]
|
124
|
-
# Override for the service hostname, or `nil` to leave as the default.
|
125
|
-
# @param service_port [Integer]
|
126
|
-
# Override for the service port, or `nil` to leave as the default.
|
127
|
-
# @param exception_transformer [Proc]
|
128
|
-
# An optional proc that intercepts any exceptions raised during an API call to inject
|
129
|
-
# custom error handling.
|
130
|
-
def self.new \
|
131
|
-
credentials: nil,
|
132
|
-
scopes: nil,
|
133
|
-
client_config: nil,
|
134
|
-
timeout: nil,
|
135
|
-
metadata: nil,
|
136
|
-
service_address: nil,
|
137
|
-
service_port: nil,
|
138
|
-
exception_transformer: nil,
|
139
|
-
lib_name: nil,
|
140
|
-
lib_version: nil
|
141
|
-
kwargs = {
|
142
|
-
credentials: credentials,
|
143
|
-
scopes: scopes,
|
144
|
-
client_config: client_config,
|
145
|
-
timeout: timeout,
|
146
|
-
metadata: metadata,
|
147
|
-
exception_transformer: exception_transformer,
|
148
|
-
lib_name: lib_name,
|
149
|
-
service_address: service_address,
|
150
|
-
service_port: service_port,
|
151
|
-
lib_version: lib_version
|
152
|
-
}.select { |_, v| v != nil }
|
153
|
-
Google::Cloud::ContainerAnalysis::V1::ContainerAnalysisClient.new(**kwargs)
|
154
|
-
end
|
155
|
-
end
|
156
|
-
end
|
157
|
-
end
|
158
|
-
end
|
@@ -1,397 +0,0 @@
|
|
1
|
-
# Copyright 2019 Google LLC
|
2
|
-
#
|
3
|
-
# Licensed under the Apache License, Version 2.0 (the "License");
|
4
|
-
# you may not use this file except in compliance with the License.
|
5
|
-
# You may obtain a copy of the License at
|
6
|
-
#
|
7
|
-
# https://www.apache.org/licenses/LICENSE-2.0
|
8
|
-
#
|
9
|
-
# Unless required by applicable law or agreed to in writing, software
|
10
|
-
# distributed under the License is distributed on an "AS IS" BASIS,
|
11
|
-
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
12
|
-
# See the License for the specific language governing permissions and
|
13
|
-
# limitations under the License.
|
14
|
-
#
|
15
|
-
# EDITING INSTRUCTIONS
|
16
|
-
# This file was generated from the file
|
17
|
-
# https://github.com/googleapis/googleapis/blob/master/google/devtools/containeranalysis/v1/containeranalysis.proto,
|
18
|
-
# and updates to that file get reflected here through a refresh process.
|
19
|
-
# For the short term, the refresh process will only be runnable by Google
|
20
|
-
# engineers.
|
21
|
-
|
22
|
-
|
23
|
-
require "json"
|
24
|
-
require "pathname"
|
25
|
-
|
26
|
-
require "google/gax"
|
27
|
-
|
28
|
-
require "google/devtools/containeranalysis/v1/containeranalysis_pb"
|
29
|
-
require "google/cloud/container_analysis/v1/credentials"
|
30
|
-
require "google/cloud/container_analysis/version"
|
31
|
-
|
32
|
-
module Google
|
33
|
-
module Cloud
|
34
|
-
module ContainerAnalysis
|
35
|
-
module V1
|
36
|
-
# Retrieves analysis results of Cloud components such as Docker container
|
37
|
-
# images. The Container Analysis API is an implementation of the
|
38
|
-
# [Grafeas](https://grafeas.io) API.
|
39
|
-
#
|
40
|
-
# Analysis results are stored as a series of occurrences. An `Occurrence`
|
41
|
-
# contains information about a specific analysis instance on a resource. An
|
42
|
-
# occurrence refers to a `Note`. A note contains details describing the
|
43
|
-
# analysis and is generally stored in a separate project, called a `Provider`.
|
44
|
-
# Multiple occurrences can refer to the same note.
|
45
|
-
#
|
46
|
-
# For example, an SSL vulnerability could affect multiple images. In this case,
|
47
|
-
# there would be one note for the vulnerability and an occurrence for each
|
48
|
-
# image with the vulnerability referring to that note.
|
49
|
-
#
|
50
|
-
# @!attribute [r] container_analysis_stub
|
51
|
-
# @return [Google::Cloud::ContainerAnalysis::V1::ContainerAnalysisService::Stub]
|
52
|
-
class ContainerAnalysisClient
|
53
|
-
# @private
|
54
|
-
attr_reader :container_analysis_stub
|
55
|
-
|
56
|
-
# @return [Grafeas::V1::GrafeasClient] a client for the Grafeas service
|
57
|
-
attr_reader :grafeas_client
|
58
|
-
|
59
|
-
# The default address of the service.
|
60
|
-
SERVICE_ADDRESS = "containeranalysis.googleapis.com".freeze
|
61
|
-
|
62
|
-
# The default port of the service.
|
63
|
-
DEFAULT_SERVICE_PORT = 443
|
64
|
-
|
65
|
-
# The default set of gRPC interceptors.
|
66
|
-
GRPC_INTERCEPTORS = []
|
67
|
-
|
68
|
-
DEFAULT_TIMEOUT = 30
|
69
|
-
|
70
|
-
# The scopes needed to make gRPC calls to all of the methods defined in
|
71
|
-
# this service.
|
72
|
-
ALL_SCOPES = [
|
73
|
-
"https://www.googleapis.com/auth/cloud-platform"
|
74
|
-
].freeze
|
75
|
-
|
76
|
-
|
77
|
-
NOTE_PATH_TEMPLATE = Google::Gax::PathTemplate.new(
|
78
|
-
"projects/{project}/notes/{note}"
|
79
|
-
)
|
80
|
-
|
81
|
-
private_constant :NOTE_PATH_TEMPLATE
|
82
|
-
|
83
|
-
OCCURRENCE_PATH_TEMPLATE = Google::Gax::PathTemplate.new(
|
84
|
-
"projects/{project}/occurrences/{occurrence}"
|
85
|
-
)
|
86
|
-
|
87
|
-
private_constant :OCCURRENCE_PATH_TEMPLATE
|
88
|
-
|
89
|
-
# Returns a fully-qualified note resource name string.
|
90
|
-
# @param project [String]
|
91
|
-
# @param note [String]
|
92
|
-
# @return [String]
|
93
|
-
def self.note_path project, note
|
94
|
-
NOTE_PATH_TEMPLATE.render(
|
95
|
-
:"project" => project,
|
96
|
-
:"note" => note
|
97
|
-
)
|
98
|
-
end
|
99
|
-
|
100
|
-
# Returns a fully-qualified occurrence resource name string.
|
101
|
-
# @param project [String]
|
102
|
-
# @param occurrence [String]
|
103
|
-
# @return [String]
|
104
|
-
def self.occurrence_path project, occurrence
|
105
|
-
OCCURRENCE_PATH_TEMPLATE.render(
|
106
|
-
:"project" => project,
|
107
|
-
:"occurrence" => occurrence
|
108
|
-
)
|
109
|
-
end
|
110
|
-
|
111
|
-
# @param credentials [Google::Auth::Credentials, String, Hash, GRPC::Core::Channel, GRPC::Core::ChannelCredentials, Proc]
|
112
|
-
# Provides the means for authenticating requests made by the client. This parameter can
|
113
|
-
# be many types.
|
114
|
-
# A `Google::Auth::Credentials` uses a the properties of its represented keyfile for
|
115
|
-
# authenticating requests made by this client.
|
116
|
-
# A `String` will be treated as the path to the keyfile to be used for the construction of
|
117
|
-
# credentials for this client.
|
118
|
-
# A `Hash` will be treated as the contents of a keyfile to be used for the construction of
|
119
|
-
# credentials for this client.
|
120
|
-
# A `GRPC::Core::Channel` will be used to make calls through.
|
121
|
-
# A `GRPC::Core::ChannelCredentials` for the setting up the RPC client. The channel credentials
|
122
|
-
# should already be composed with a `GRPC::Core::CallCredentials` object.
|
123
|
-
# A `Proc` will be used as an updater_proc for the Grpc channel. The proc transforms the
|
124
|
-
# metadata for requests, generally, to give OAuth credentials.
|
125
|
-
# @param scopes [Array<String>]
|
126
|
-
# The OAuth scopes for this service. This parameter is ignored if
|
127
|
-
# an updater_proc is supplied.
|
128
|
-
# @param client_config [Hash]
|
129
|
-
# A Hash for call options for each method. See
|
130
|
-
# Google::Gax#construct_settings for the structure of
|
131
|
-
# this data. Falls back to the default config if not specified
|
132
|
-
# or the specified config is missing data points.
|
133
|
-
# @param timeout [Numeric]
|
134
|
-
# The default timeout, in seconds, for calls made through this client.
|
135
|
-
# @param metadata [Hash]
|
136
|
-
# Default metadata to be sent with each request. This can be overridden on a per call basis.
|
137
|
-
# @param service_address [String]
|
138
|
-
# Override for the service hostname, or `nil` to leave as the default.
|
139
|
-
# @param service_port [Integer]
|
140
|
-
# Override for the service port, or `nil` to leave as the default.
|
141
|
-
# @param exception_transformer [Proc]
|
142
|
-
# An optional proc that intercepts any exceptions raised during an API call to inject
|
143
|
-
# custom error handling.
|
144
|
-
def initialize \
|
145
|
-
credentials: nil,
|
146
|
-
scopes: ALL_SCOPES,
|
147
|
-
client_config: {},
|
148
|
-
timeout: DEFAULT_TIMEOUT,
|
149
|
-
metadata: nil,
|
150
|
-
service_address: nil,
|
151
|
-
service_port: nil,
|
152
|
-
exception_transformer: nil,
|
153
|
-
lib_name: nil,
|
154
|
-
lib_version: ""
|
155
|
-
# These require statements are intentionally placed here to initialize
|
156
|
-
# the gRPC module only when it's required.
|
157
|
-
# See https://github.com/googleapis/toolkit/issues/446
|
158
|
-
require "google/gax/grpc"
|
159
|
-
require "google/devtools/containeranalysis/v1/containeranalysis_services_pb"
|
160
|
-
|
161
|
-
credentials ||= Google::Cloud::ContainerAnalysis::V1::Credentials.default
|
162
|
-
|
163
|
-
@grafeas_client = ::Grafeas.new(
|
164
|
-
credentials: credentials, scopes: scopes, client_config: client_config,
|
165
|
-
timeout: timeout, lib_name: lib_name, lib_version: lib_version,
|
166
|
-
service_address: service_address, service_port: service_port, metadata: metadata)
|
167
|
-
|
168
|
-
if credentials.is_a?(String) || credentials.is_a?(Hash)
|
169
|
-
updater_proc = Google::Cloud::ContainerAnalysis::V1::Credentials.new(credentials).updater_proc
|
170
|
-
end
|
171
|
-
if credentials.is_a?(GRPC::Core::Channel)
|
172
|
-
channel = credentials
|
173
|
-
end
|
174
|
-
if credentials.is_a?(GRPC::Core::ChannelCredentials)
|
175
|
-
chan_creds = credentials
|
176
|
-
end
|
177
|
-
if credentials.is_a?(Proc)
|
178
|
-
updater_proc = credentials
|
179
|
-
end
|
180
|
-
if credentials.is_a?(Google::Auth::Credentials)
|
181
|
-
updater_proc = credentials.updater_proc
|
182
|
-
end
|
183
|
-
|
184
|
-
package_version = Google::Cloud::ContainerAnalysis::VERSION
|
185
|
-
|
186
|
-
google_api_client = "gl-ruby/#{RUBY_VERSION}"
|
187
|
-
google_api_client << " #{lib_name}/#{lib_version}" if lib_name
|
188
|
-
google_api_client << " gapic/#{package_version} gax/#{Google::Gax::VERSION}"
|
189
|
-
google_api_client << " grpc/#{GRPC::VERSION}"
|
190
|
-
google_api_client.freeze
|
191
|
-
|
192
|
-
headers = { :"x-goog-api-client" => google_api_client }
|
193
|
-
headers.merge!(metadata) unless metadata.nil?
|
194
|
-
client_config_file = Pathname.new(__dir__).join(
|
195
|
-
"container_analysis_client_config.json"
|
196
|
-
)
|
197
|
-
defaults = client_config_file.open do |f|
|
198
|
-
Google::Gax.construct_settings(
|
199
|
-
"google.devtools.containeranalysis.v1.ContainerAnalysis",
|
200
|
-
JSON.parse(f.read),
|
201
|
-
client_config,
|
202
|
-
Google::Gax::Grpc::STATUS_CODE_NAMES,
|
203
|
-
timeout,
|
204
|
-
errors: Google::Gax::Grpc::API_ERRORS,
|
205
|
-
metadata: headers
|
206
|
-
)
|
207
|
-
end
|
208
|
-
|
209
|
-
# Allow overriding the service path/port in subclasses.
|
210
|
-
service_path = service_address || self.class::SERVICE_ADDRESS
|
211
|
-
port = service_port || self.class::DEFAULT_SERVICE_PORT
|
212
|
-
interceptors = self.class::GRPC_INTERCEPTORS
|
213
|
-
@container_analysis_stub = Google::Gax::Grpc.create_stub(
|
214
|
-
service_path,
|
215
|
-
port,
|
216
|
-
chan_creds: chan_creds,
|
217
|
-
channel: channel,
|
218
|
-
updater_proc: updater_proc,
|
219
|
-
scopes: scopes,
|
220
|
-
interceptors: interceptors,
|
221
|
-
&Google::Cloud::ContainerAnalysis::V1::ContainerAnalysisService::Stub.method(:new)
|
222
|
-
)
|
223
|
-
|
224
|
-
@set_iam_policy = Google::Gax.create_api_call(
|
225
|
-
@container_analysis_stub.method(:set_iam_policy),
|
226
|
-
defaults["set_iam_policy"],
|
227
|
-
exception_transformer: exception_transformer,
|
228
|
-
params_extractor: proc do |request|
|
229
|
-
{'resource' => request.resource}
|
230
|
-
end
|
231
|
-
)
|
232
|
-
@get_iam_policy = Google::Gax.create_api_call(
|
233
|
-
@container_analysis_stub.method(:get_iam_policy),
|
234
|
-
defaults["get_iam_policy"],
|
235
|
-
exception_transformer: exception_transformer,
|
236
|
-
params_extractor: proc do |request|
|
237
|
-
{'resource' => request.resource}
|
238
|
-
end
|
239
|
-
)
|
240
|
-
@test_iam_permissions = Google::Gax.create_api_call(
|
241
|
-
@container_analysis_stub.method(:test_iam_permissions),
|
242
|
-
defaults["test_iam_permissions"],
|
243
|
-
exception_transformer: exception_transformer,
|
244
|
-
params_extractor: proc do |request|
|
245
|
-
{'resource' => request.resource}
|
246
|
-
end
|
247
|
-
)
|
248
|
-
end
|
249
|
-
|
250
|
-
# Service calls
|
251
|
-
|
252
|
-
# Sets the access control policy on the specified note or occurrence.
|
253
|
-
# Requires `containeranalysis.notes.setIamPolicy` or
|
254
|
-
# `containeranalysis.occurrences.setIamPolicy` permission if the resource is
|
255
|
-
# a note or an occurrence, respectively.
|
256
|
-
#
|
257
|
-
# The resource takes the format `projects/[PROJECT_ID]/notes/[NOTE_ID]` for
|
258
|
-
# notes and `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for
|
259
|
-
# occurrences.
|
260
|
-
#
|
261
|
-
# @param resource [String]
|
262
|
-
# REQUIRED: The resource for which the policy is being specified.
|
263
|
-
# See the operation documentation for the appropriate value for this field.
|
264
|
-
# @param policy [Google::Iam::V1::Policy | Hash]
|
265
|
-
# REQUIRED: The complete policy to be applied to the `resource`. The size of
|
266
|
-
# the policy is limited to a few 10s of KB. An empty policy is a
|
267
|
-
# valid policy but certain Cloud Platform services (such as Projects)
|
268
|
-
# might reject them.
|
269
|
-
# A hash of the same form as `Google::Iam::V1::Policy`
|
270
|
-
# can also be provided.
|
271
|
-
# @param options [Google::Gax::CallOptions]
|
272
|
-
# Overrides the default settings for this call, e.g, timeout,
|
273
|
-
# retries, etc.
|
274
|
-
# @yield [result, operation] Access the result along with the RPC operation
|
275
|
-
# @yieldparam result [Google::Iam::V1::Policy]
|
276
|
-
# @yieldparam operation [GRPC::ActiveCall::Operation]
|
277
|
-
# @return [Google::Iam::V1::Policy]
|
278
|
-
# @raise [Google::Gax::GaxError] if the RPC is aborted.
|
279
|
-
# @example
|
280
|
-
# require "google/cloud/container_analysis"
|
281
|
-
#
|
282
|
-
# container_analysis_client = Google::Cloud::ContainerAnalysis.new(version: :v1)
|
283
|
-
# formatted_resource = Google::Cloud::ContainerAnalysis::V1::ContainerAnalysisClient.note_path("[PROJECT]", "[NOTE]")
|
284
|
-
#
|
285
|
-
# # TODO: Initialize `policy`:
|
286
|
-
# policy = {}
|
287
|
-
# response = container_analysis_client.set_iam_policy(formatted_resource, policy)
|
288
|
-
|
289
|
-
def set_iam_policy \
|
290
|
-
resource,
|
291
|
-
policy,
|
292
|
-
options: nil,
|
293
|
-
&block
|
294
|
-
req = {
|
295
|
-
resource: resource,
|
296
|
-
policy: policy
|
297
|
-
}.delete_if { |_, v| v.nil? }
|
298
|
-
req = Google::Gax::to_proto(req, Google::Iam::V1::SetIamPolicyRequest)
|
299
|
-
@set_iam_policy.call(req, options, &block)
|
300
|
-
end
|
301
|
-
|
302
|
-
# Gets the access control policy for a note or an occurrence resource.
|
303
|
-
# Requires `containeranalysis.notes.setIamPolicy` or
|
304
|
-
# `containeranalysis.occurrences.setIamPolicy` permission if the resource is
|
305
|
-
# a note or occurrence, respectively.
|
306
|
-
#
|
307
|
-
# The resource takes the format `projects/[PROJECT_ID]/notes/[NOTE_ID]` for
|
308
|
-
# notes and `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for
|
309
|
-
# occurrences.
|
310
|
-
#
|
311
|
-
# @param resource [String]
|
312
|
-
# REQUIRED: The resource for which the policy is being requested.
|
313
|
-
# See the operation documentation for the appropriate value for this field.
|
314
|
-
# @param options_ [Google::Iam::V1::GetPolicyOptions | Hash]
|
315
|
-
# OPTIONAL: A `GetPolicyOptions` object for specifying options to
|
316
|
-
# `GetIamPolicy`. This field is only used by Cloud IAM.
|
317
|
-
# A hash of the same form as `Google::Iam::V1::GetPolicyOptions`
|
318
|
-
# can also be provided.
|
319
|
-
# @param options [Google::Gax::CallOptions]
|
320
|
-
# Overrides the default settings for this call, e.g, timeout,
|
321
|
-
# retries, etc.
|
322
|
-
# @yield [result, operation] Access the result along with the RPC operation
|
323
|
-
# @yieldparam result [Google::Iam::V1::Policy]
|
324
|
-
# @yieldparam operation [GRPC::ActiveCall::Operation]
|
325
|
-
# @return [Google::Iam::V1::Policy]
|
326
|
-
# @raise [Google::Gax::GaxError] if the RPC is aborted.
|
327
|
-
# @example
|
328
|
-
# require "google/cloud/container_analysis"
|
329
|
-
#
|
330
|
-
# container_analysis_client = Google::Cloud::ContainerAnalysis.new(version: :v1)
|
331
|
-
# formatted_resource = Google::Cloud::ContainerAnalysis::V1::ContainerAnalysisClient.note_path("[PROJECT]", "[NOTE]")
|
332
|
-
# response = container_analysis_client.get_iam_policy(formatted_resource)
|
333
|
-
|
334
|
-
def get_iam_policy \
|
335
|
-
resource,
|
336
|
-
options_: nil,
|
337
|
-
options: nil,
|
338
|
-
&block
|
339
|
-
req = {
|
340
|
-
resource: resource,
|
341
|
-
options: options_
|
342
|
-
}.delete_if { |_, v| v.nil? }
|
343
|
-
req = Google::Gax::to_proto(req, Google::Iam::V1::GetIamPolicyRequest)
|
344
|
-
@get_iam_policy.call(req, options, &block)
|
345
|
-
end
|
346
|
-
|
347
|
-
# Returns the permissions that a caller has on the specified note or
|
348
|
-
# occurrence. Requires list permission on the project (for example,
|
349
|
-
# `containeranalysis.notes.list`).
|
350
|
-
#
|
351
|
-
# The resource takes the format `projects/[PROJECT_ID]/notes/[NOTE_ID]` for
|
352
|
-
# notes and `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for
|
353
|
-
# occurrences.
|
354
|
-
#
|
355
|
-
# @param resource [String]
|
356
|
-
# REQUIRED: The resource for which the policy detail is being requested.
|
357
|
-
# See the operation documentation for the appropriate value for this field.
|
358
|
-
# @param permissions [Array<String>]
|
359
|
-
# The set of permissions to check for the `resource`. Permissions with
|
360
|
-
# wildcards (such as '*' or 'storage.*') are not allowed. For more
|
361
|
-
# information see
|
362
|
-
# [IAM Overview](https://cloud.google.com/iam/docs/overview#permissions).
|
363
|
-
# @param options [Google::Gax::CallOptions]
|
364
|
-
# Overrides the default settings for this call, e.g, timeout,
|
365
|
-
# retries, etc.
|
366
|
-
# @yield [result, operation] Access the result along with the RPC operation
|
367
|
-
# @yieldparam result [Google::Iam::V1::TestIamPermissionsResponse]
|
368
|
-
# @yieldparam operation [GRPC::ActiveCall::Operation]
|
369
|
-
# @return [Google::Iam::V1::TestIamPermissionsResponse]
|
370
|
-
# @raise [Google::Gax::GaxError] if the RPC is aborted.
|
371
|
-
# @example
|
372
|
-
# require "google/cloud/container_analysis"
|
373
|
-
#
|
374
|
-
# container_analysis_client = Google::Cloud::ContainerAnalysis.new(version: :v1)
|
375
|
-
# formatted_resource = Google::Cloud::ContainerAnalysis::V1::ContainerAnalysisClient.note_path("[PROJECT]", "[NOTE]")
|
376
|
-
#
|
377
|
-
# # TODO: Initialize `permissions`:
|
378
|
-
# permissions = []
|
379
|
-
# response = container_analysis_client.test_iam_permissions(formatted_resource, permissions)
|
380
|
-
|
381
|
-
def test_iam_permissions \
|
382
|
-
resource,
|
383
|
-
permissions,
|
384
|
-
options: nil,
|
385
|
-
&block
|
386
|
-
req = {
|
387
|
-
resource: resource,
|
388
|
-
permissions: permissions
|
389
|
-
}.delete_if { |_, v| v.nil? }
|
390
|
-
req = Google::Gax::to_proto(req, Google::Iam::V1::TestIamPermissionsRequest)
|
391
|
-
@test_iam_permissions.call(req, options, &block)
|
392
|
-
end
|
393
|
-
end
|
394
|
-
end
|
395
|
-
end
|
396
|
-
end
|
397
|
-
end
|