google-cloud-dlp-v2 0.7.4 → 0.9.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6510ec23fca41980b6dc811b377e3df7dcf55cf8eaf72f2ccc1c6f1fb1b2bbbf
-  data.tar.gz: 8d088ae6958de87947996999f8d2b999f9f2c7c516b87b879fcfb66dafd416c5
+  metadata.gz: e37b5c2a20db558a06589da232dda1197ed292328cd9eb86ca9b5651a8ba94ad
+  data.tar.gz: ad66a533c643f66a009a3fbe61c941c4600fb25570abdac27f047cf5810783bc
 SHA512:
-  metadata.gz: b39a024246c7cec2aaac822efd5eb5d90dfdb585d54ffaaf2aab8fb92c2425985d68cc0343e27133770580edf272ad36e30ea0710a1d74ff198e55b2c54c5854
-  data.tar.gz: 5c13a401e90af32a24df54290703b8f0625224fb78a359b47403d2bdf12e3caadcc17f2f1e5acba3d9ab3a656823fd9d651a4a9fa0070a5005f99518e78b1afa
+  metadata.gz: b382823c5263cd5abccbcc691b6a9d7a15692ec841e0919b6359bda4df3fb7513ce2418d08ec656287def8d9c42a2c3176322927531203ab2cef2adce55003a8
+  data.tar.gz: 82c3ae0255f92910e306d40d78cc0dc292c374b6499524895980bef9ff8a1d39d0341d22c52799d6c4136612abc66b11d092e1d702d26757ffe9d97de7adb485

data/.yardopts

@@ -1,5 +1,5 @@
 --no-private
---title=Cloud Data Loss Prevention (DLP) V2 API
+--title="Cloud Data Loss Prevention (DLP) V2 API"
 --exclude _pb\.rb$
 --markup markdown
 --markup-provider redcarpet

data/AUTHENTICATION.md

@@ -120,15 +120,6 @@ To configure your system for this, simply:
 **NOTE:** This is _not_ recommended for running in production. The Cloud SDK
 *should* only be used during development.
 
-[gce-how-to]: https://cloud.google.com/compute/docs/authentication#using
-[dev-console]: https://console.cloud.google.com/project
-
-[enable-apis]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/enable-apis.png
-
-[create-new-service-account]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/create-new-service-account.png
-[create-new-service-account-existing-keys]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/create-new-service-account-existing-keys.png
-[reuse-service-account]: https://raw.githubusercontent.com/GoogleCloudPlatform/gcloud-common/master/authentication/reuse-service-account.png
-
 ## Creating a Service Account
 
 Google Cloud requires **Service Account Credentials** to
@@ -139,31 +130,22 @@ If you are not running this client within
 [Google Cloud Platform environments](#google-cloud-platform-environments), you
 need a Google Developers service account.
 
-1. Visit the [Google Developers Console][dev-console].
+1. Visit the [Google Cloud Console](https://console.cloud.google.com/project).
 2. Create a new project or click on an existing project.
-3. Activate the slide-out navigation tray and select **API Manager**. From
+3. Activate the menu in the upper left and select **APIs & Services**. From
    here, you will enable the APIs that your application requires.
 
-   ![Enable the APIs that your application requires][enable-apis]
-
    *Note: You may need to enable billing in order to use these services.*
 
 4. Select **Credentials** from the side navigation.
 
-   You should see a screen like one of the following.
-
-   ![Create a new service account][create-new-service-account]
-
-   ![Create a new service account With Existing Keys][create-new-service-account-existing-keys]
-
-   Find the "Add credentials" drop down and select "Service account" to be
-   guided through downloading a new JSON key file.
+   Find the "Create credentials" drop down near the top of the page, and select
+   "Service account" to be guided through downloading a new JSON key file.
 
    If you want to re-use an existing service account, you can easily generate a
-   new key file. Just select the account you wish to re-use, and click "Generate
-   new JSON key":
-
-   ![Re-use an existing service account][reuse-service-account]
+   new key file. Just select the account you wish to re-use, click the pencil
+   tool on the right side to edit the service account, select the **Keys** tab,
+   and then select **Add Key**.
 
    The key file you download will be used by this library to authenticate API
    requests and should be stored in a secure location.

data/README.md

@@ -37,7 +37,7 @@ request = ::Google::Cloud::Dlp::V2::InspectContentRequest.new # (request fields
 response = client.inspect_content request
 ```
 
-View the [Client Library Documentation](https://googleapis.dev/ruby/google-cloud-dlp-v2/latest)
+View the [Client Library Documentation](https://cloud.google.com/ruby/docs/reference/google-cloud-dlp-v2/latest)
 for class and method documentation.
 
 See also the [Product Documentation](https://cloud.google.com/dlp)

data/lib/google/cloud/dlp/v2/dlp_service/client.rb

@@ -2121,9 +2121,6 @@ module Google
             # Inspect hybrid content and store findings to a trigger. The inspection
             # will be processed asynchronously. To review the findings monitor the
             # jobs within the trigger.
-            # Early access feature is in a pre-release state and might change or have
-            # limited support. For more information, see
-            # https://cloud.google.com/products#product-launch-stages.
             #
             # @overload hybrid_inspect_job_trigger(request, options = nil)
             #   Pass arguments to `hybrid_inspect_job_trigger` via a request object, either of type
@@ -2311,7 +2308,7 @@ module Google
             #   @param options [::Gapic::CallOptions, ::Hash]
             #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
             #
-            # @overload list_job_triggers(parent: nil, page_token: nil, page_size: nil, order_by: nil, filter: nil, location_id: nil)
+            # @overload list_job_triggers(parent: nil, page_token: nil, page_size: nil, order_by: nil, filter: nil, type: nil, location_id: nil)
             #   Pass arguments to `list_job_triggers` via keyword arguments. Note that at
             #   least one keyword argument is required. To specify no parameters, or to keep all
             #   the default parameter values, pass an empty Hash as a request object (see above).
@@ -2364,7 +2361,7 @@ module Google
             #     * Restrictions can be combined by `AND` or `OR` logical operators. A
             #     sequence of restrictions implicitly uses `AND`.
             #     * A restriction has the form of `{field} {operator} {value}`.
-            #     * Supported fields/values for inspect jobs:
+            #     * Supported fields/values for inspect triggers:
             #         - `status` - HEALTHY|PAUSED|CANCELLED
             #         - `inspected_storage` - DATASTORE|CLOUD_STORAGE|BIGQUERY
             #         - 'last_run_time` - RFC 3339 formatted timestamp, surrounded by
@@ -2380,6 +2377,8 @@ module Google
             #     * last_run_time > \"2017-12-12T00:00:00+00:00\"
             #
             #     The length of this field should be no more than 500 characters.
+            #   @param type [::Google::Cloud::Dlp::V2::DlpJobType]
+            #     The type of jobs. Will use `DlpJobType.INSPECT` if not set.
             #   @param location_id [::String]
             #     Deprecated. This field has no effect.
             #
@@ -2670,9 +2669,10 @@ module Google
             #
             #         parent=projects/example-project/locations/europe-west3
             #   @param inspect_job [::Google::Cloud::Dlp::V2::InspectJobConfig, ::Hash]
-            #     Set to control what and how to inspect.
+            #     An inspection job scans a storage repository for InfoTypes.
             #   @param risk_job [::Google::Cloud::Dlp::V2::RiskAnalysisJobConfig, ::Hash]
-            #     Set to choose what metric to calculate.
+            #     A risk analysis job calculates re-identification risk metrics for a
+            #     BigQuery table.
             #   @param job_id [::String]
             #     The job id can contain uppercase and lowercase letters,
             #     numbers, and hyphens; that is, it must match the regular
@@ -3697,11 +3697,8 @@ module Google
 
             ##
             # Inspect hybrid content and store findings to a job.
-            # To review the findings inspect the job. Inspection will occur
+            # To review the findings, inspect the job. Inspection will occur
             # asynchronously.
-            # Early access feature is in a pre-release state and might change or have
-            # limited support. For more information, see
-            # https://cloud.google.com/products#product-launch-stages.
             #
             # @overload hybrid_inspect_dlp_job(request, options = nil)
             #   Pass arguments to `hybrid_inspect_dlp_job` via a request object, either of type
@@ -3791,9 +3788,6 @@ module Google
             ##
             # Finish a running hybrid DlpJob. Triggers the finalization steps and running
             # of any enabled actions that have not yet run.
-            # Early access feature is in a pre-release state and might change or have
-            # limited support. For more information, see
-            # https://cloud.google.com/products#product-launch-stages.
             #
             # @overload finish_dlp_job(request, options = nil)
             #   Pass arguments to `finish_dlp_job` via a request object, either of type

data/lib/google/cloud/dlp/v2/version.rb

@@ -21,7 +21,7 @@ module Google
   module Cloud
     module Dlp
       module V2
-        VERSION = "0.7.4"
+        VERSION = "0.9.0"
       end
     end
   end

data/lib/google/cloud/dlp/v2.rb

@@ -25,6 +25,8 @@ module Google
       ##
       # To load this package, including all its services, and instantiate a client:
       #
+      # @example
+      #
       #     require "google/cloud/dlp/v2"
       #     client = ::Google::Cloud::Dlp::V2::DlpService::Client.new
       #

data/lib/google/privacy/dlp/v2/dlp_pb.rb

@@ -1,6 +1,7 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/privacy/dlp/v2/dlp.proto
 
+require 'google/api/annotations_pb'
 require 'google/api/client_pb'
 require 'google/api/field_behavior_pb'
 require 'google/api/resource_pb'
@@ -13,7 +14,6 @@ require 'google/rpc/status_pb'
 require 'google/type/date_pb'
 require 'google/type/dayofweek_pb'
 require 'google/type/timeofday_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do
@@ -72,6 +72,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       value :TEXT_UTF8, 5
       value :WORD_DOCUMENT, 7
       value :PDF, 8
+      value :POWERPOINT_DOCUMENT, 9
+      value :EXCEL_DOCUMENT, 10
       value :AVRO, 11
       value :CSV, 12
       value :TSV, 13
@@ -107,6 +109,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       map :labels, :string, :string, 10
       optional :job_create_time, :message, 11, "google.protobuf.Timestamp"
       optional :job_name, :string, 13
+      optional :finding_id, :string, 15
     end
     add_message "google.privacy.dlp.v2.Location" do
       optional :byte_range, :message, 1, "google.privacy.dlp.v2.Range"
@@ -502,6 +505,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
         optional :crypto_hash_config, :message, 9, "google.privacy.dlp.v2.CryptoHashConfig"
         optional :date_shift_config, :message, 11, "google.privacy.dlp.v2.DateShiftConfig"
         optional :crypto_deterministic_config, :message, 12, "google.privacy.dlp.v2.CryptoDeterministicConfig"
+        optional :replace_dictionary_config, :message, 13, "google.privacy.dlp.v2.ReplaceDictionaryConfig"
       end
     end
     add_message "google.privacy.dlp.v2.TimePartConfig" do
@@ -527,6 +531,11 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
     add_message "google.privacy.dlp.v2.ReplaceValueConfig" do
       optional :new_value, :message, 1, "google.privacy.dlp.v2.Value"
     end
+    add_message "google.privacy.dlp.v2.ReplaceDictionaryConfig" do
+      oneof :type do
+        optional :word_list, :message, 1, "google.privacy.dlp.v2.CustomInfoType.Dictionary.WordList"
+      end
+    end
     add_message "google.privacy.dlp.v2.ReplaceWithInfoTypeConfig" do
     end
     add_message "google.privacy.dlp.v2.RedactConfig" do
@@ -809,6 +818,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :page_size, :int32, 3
       optional :order_by, :string, 4
       optional :filter, :string, 5
+      optional :type, :enum, 6, "google.privacy.dlp.v2.DlpJobType"
       optional :location_id, :string, 7
     end
     add_message "google.privacy.dlp.v2.ListJobTriggersResponse" do
@@ -1125,6 +1135,7 @@ module Google
         CryptoHashConfig = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.privacy.dlp.v2.CryptoHashConfig").msgclass
         CryptoDeterministicConfig = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.privacy.dlp.v2.CryptoDeterministicConfig").msgclass
         ReplaceValueConfig = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.privacy.dlp.v2.ReplaceValueConfig").msgclass
+        ReplaceDictionaryConfig = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.privacy.dlp.v2.ReplaceDictionaryConfig").msgclass
         ReplaceWithInfoTypeConfig = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.privacy.dlp.v2.ReplaceWithInfoTypeConfig").msgclass
         RedactConfig = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.privacy.dlp.v2.RedactConfig").msgclass
         CharsToIgnore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.privacy.dlp.v2.CharsToIgnore").msgclass

data/lib/google/privacy/dlp/v2/dlp_services_pb.rb

@@ -125,9 +125,6 @@ module Google
             # Inspect hybrid content and store findings to a trigger. The inspection
             # will be processed asynchronously. To review the findings monitor the
             # jobs within the trigger.
-            # Early access feature is in a pre-release state and might change or have
-            # limited support. For more information, see
-            # https://cloud.google.com/products#product-launch-stages.
             rpc :HybridInspectJobTrigger, ::Google::Cloud::Dlp::V2::HybridInspectJobTriggerRequest, ::Google::Cloud::Dlp::V2::HybridInspectResponse
             # Gets a job trigger.
             # See https://cloud.google.com/dlp/docs/creating-job-triggers to learn more.
@@ -191,17 +188,11 @@ module Google
             # learn more.
             rpc :DeleteStoredInfoType, ::Google::Cloud::Dlp::V2::DeleteStoredInfoTypeRequest, ::Google::Protobuf::Empty
             # Inspect hybrid content and store findings to a job.
-            # To review the findings inspect the job. Inspection will occur
+            # To review the findings, inspect the job. Inspection will occur
             # asynchronously.
-            # Early access feature is in a pre-release state and might change or have
-            # limited support. For more information, see
-            # https://cloud.google.com/products#product-launch-stages.
             rpc :HybridInspectDlpJob, ::Google::Cloud::Dlp::V2::HybridInspectDlpJobRequest, ::Google::Cloud::Dlp::V2::HybridInspectResponse
             # Finish a running hybrid DlpJob. Triggers the finalization steps and running
             # of any enabled actions that have not yet run.
-            # Early access feature is in a pre-release state and might change or have
-            # limited support. For more information, see
-            # https://cloud.google.com/products#product-launch-stages.
             rpc :FinishDlpJob, ::Google::Cloud::Dlp::V2::FinishDlpJobRequest, ::Google::Protobuf::Empty
           end
 

data/lib/google/privacy/dlp/v2/storage_pb.rb

@@ -3,13 +3,13 @@
 
 require 'google/api/resource_pb'
 require 'google/protobuf/timestamp_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/privacy/dlp/v2/storage.proto", :syntax => :proto3) do
     add_message "google.privacy.dlp.v2.InfoType" do
       optional :name, :string, 1
+      optional :version, :string, 2
     end
     add_message "google.privacy.dlp.v2.StoredType" do
       optional :name, :string, 1
@@ -115,6 +115,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :rows_limit_percent, :int32, 6
       optional :sample_method, :enum, 4, "google.privacy.dlp.v2.BigQueryOptions.SampleMethod"
       repeated :excluded_fields, :message, 5, "google.privacy.dlp.v2.FieldId"
+      repeated :included_fields, :message, 7, "google.privacy.dlp.v2.FieldId"
     end
     add_enum "google.privacy.dlp.v2.BigQueryOptions.SampleMethod" do
       value :SAMPLE_METHOD_UNSPECIFIED, 0
@@ -200,6 +201,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       value :AVRO, 7
       value :CSV, 8
       value :TSV, 9
+      value :POWERPOINT, 11
+      value :EXCEL, 12
     end
   end
 end

data/proto_docs/google/api/resource.rb

@@ -33,11 +33,7 @@ module Google
     #       // For Kubernetes resources, the format is {api group}/{kind}.
     #       option (google.api.resource) = {
     #         type: "pubsub.googleapis.com/Topic"
-    #         name_descriptor: {
-    #           pattern: "projects/{project}/topics/{topic}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
-    #         }
+    #         pattern: "projects/{project}/topics/{topic}"
     #       };
     #     }
     #
@@ -45,10 +41,7 @@ module Google
     #
     #     resources:
     #     - type: "pubsub.googleapis.com/Topic"
-    #       name_descriptor:
-    #         - pattern: "projects/{project}/topics/{topic}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
+    #       pattern: "projects/{project}/topics/{topic}"
     #
     # Sometimes, resources have multiple patterns, typically because they can
     # live under multiple parents.
@@ -58,26 +51,10 @@ module Google
     #     message LogEntry {
     #       option (google.api.resource) = {
     #         type: "logging.googleapis.com/LogEntry"
-    #         name_descriptor: {
-    #           pattern: "projects/{project}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "folders/{folder}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
-    #           parent_name_extractor: "folders/{folder}"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "organizations/{organization}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Organization"
-    #           parent_name_extractor: "organizations/{organization}"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "billingAccounts/{billing_account}/logs/{log}"
-    #           parent_type: "billing.googleapis.com/BillingAccount"
-    #           parent_name_extractor: "billingAccounts/{billing_account}"
-    #         }
+    #         pattern: "projects/{project}/logs/{log}"
+    #         pattern: "folders/{folder}/logs/{log}"
+    #         pattern: "organizations/{organization}/logs/{log}"
+    #         pattern: "billingAccounts/{billing_account}/logs/{log}"
     #       };
     #     }
     #
@@ -85,48 +62,10 @@ module Google
     #
     #     resources:
     #     - type: 'logging.googleapis.com/LogEntry'
-    #       name_descriptor:
-    #         - pattern: "projects/{project}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
-    #         - pattern: "folders/{folder}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
-    #           parent_name_extractor: "folders/{folder}"
-    #         - pattern: "organizations/{organization}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Organization"
-    #           parent_name_extractor: "organizations/{organization}"
-    #         - pattern: "billingAccounts/{billing_account}/logs/{log}"
-    #           parent_type: "billing.googleapis.com/BillingAccount"
-    #           parent_name_extractor: "billingAccounts/{billing_account}"
-    #
-    # For flexible resources, the resource name doesn't contain parent names, but
-    # the resource itself has parents for policy evaluation.
-    #
-    # Example:
-    #
-    #     message Shelf {
-    #       option (google.api.resource) = {
-    #         type: "library.googleapis.com/Shelf"
-    #         name_descriptor: {
-    #           pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
-    #         }
-    #       };
-    #     }
-    #
-    # The ResourceDescriptor Yaml config will look like:
-    #
-    #     resources:
-    #     - type: 'library.googleapis.com/Shelf'
-    #       name_descriptor:
-    #         - pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #         - pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
+    #       pattern: "projects/{project}/logs/{log}"
+    #       pattern: "folders/{folder}/logs/{log}"
+    #       pattern: "organizations/{organization}/logs/{log}"
+    #       pattern: "billingAccounts/{billing_account}/logs/{log}"
     # @!attribute [rw] type
     #   @return [::String]
     #     The resource type. It must be in the format of

data/proto_docs/google/privacy/dlp/v2/dlp.rb

@@ -106,21 +106,23 @@ module Google
         # @!attribute [rw] limits
         #   @return [::Google::Cloud::Dlp::V2::InspectConfig::FindingLimits]
         #     Configuration to control the number of findings returned.
+        #     This is not used for data profiling.
         # @!attribute [rw] include_quote
         #   @return [::Boolean]
         #     When true, a contextual quote from the data that triggered a finding is
         #     included in the response; see Finding.quote.
+        #     This is not used for data profiling.
         # @!attribute [rw] exclude_info_types
         #   @return [::Boolean]
         #     When true, excludes type information of the findings.
+        #     This is not used for data profiling.
         # @!attribute [rw] custom_info_types
         #   @return [::Array<::Google::Cloud::Dlp::V2::CustomInfoType>]
         #     CustomInfoTypes provided by the user. See
         #     https://cloud.google.com/dlp/docs/creating-custom-infotypes to learn more.
         # @!attribute [rw] content_options
         #   @return [::Array<::Google::Cloud::Dlp::V2::ContentOption>]
-        #     List of options defining data content to scan.
-        #     If empty, text, images, and other content will be included.
+        #     Deprecated and unused.
         # @!attribute [rw] rule_set
         #   @return [::Array<::Google::Cloud::Dlp::V2::InspectionRuleSet>]
         #     Set of rules to apply to the findings for this InspectConfig.
@@ -130,7 +132,8 @@ module Google
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
 
-          # Configuration to control the number of findings returned.
+          # Configuration to control the number of findings returned for inspection.
+          # This is not used for de-identification or data profiling.
           # @!attribute [rw] max_findings_per_item
           #   @return [::Integer]
           #     Max number of findings that will be returned for each item scanned.
@@ -178,7 +181,9 @@ module Google
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
 
-          # The type of data being sent for inspection.
+          # The type of data being sent for inspection. To learn more, see
+          # [Supported file
+          # types](https://cloud.google.com/dlp/docs/supported-file-types).
           module BytesType
             # Unused
             BYTES_TYPE_UNSPECIFIED = 0
@@ -207,6 +212,12 @@ module Google
             # pdf
             PDF = 8
 
+            # pptx, pptm, potx, potm, pot
+            POWERPOINT_DOCUMENT = 9
+
+            # xlsx, xlsm, xltx, xltm
+            EXCEL_DOCUMENT = 10
+
             # avro
             AVRO = 11
 
@@ -235,9 +246,9 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
-        # Structured content to inspect. Up to 50,000 `Value`s per request allowed.
-        # See https://cloud.google.com/dlp/docs/inspecting-text#inspecting_a_table to
-        # learn more.
+        # Structured content to inspect. Up to 50,000 `Value`s per request allowed. See
+        # https://cloud.google.com/dlp/docs/inspecting-structured-text#inspecting_a_table
+        # to learn more.
         # @!attribute [rw] headers
         #   @return [::Array<::Google::Cloud::Dlp::V2::FieldId>]
         #     Headers of the table.
@@ -333,6 +344,9 @@ module Google
         # @!attribute [rw] job_name
         #   @return [::String]
         #     The job that stored the finding.
+        # @!attribute [rw] finding_id
+        #   @return [::String]
+        #     The unique finding id.
         class Finding
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -914,7 +928,7 @@ module Google
         #     The configuration used for this job.
         # @!attribute [rw] result
         #   @return [::Google::Cloud::Dlp::V2::InspectDataSourceDetails::Result]
-        #     A summary of the outcome of this inspect job.
+        #     A summary of the outcome of this inspection job.
         class InspectDataSourceDetails
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -946,9 +960,6 @@ module Google
           # @!attribute [rw] hybrid_stats
           #   @return [::Google::Cloud::Dlp::V2::HybridInspectStatistics]
           #     Statistics related to the processing of hybrid inspect.
-          #     Early access feature is in a pre-release state and might change or have
-          #     limited support. For more information, see
-          #     https://cloud.google.com/products#product-launch-stages.
           class Result
             include ::Google::Protobuf::MessageExts
             extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -1755,7 +1766,7 @@ module Google
         # A rule for transforming a value.
         # @!attribute [rw] replace_config
         #   @return [::Google::Cloud::Dlp::V2::ReplaceValueConfig]
-        #     Replace
+        #     Replace with a specified value.
         # @!attribute [rw] redact_config
         #   @return [::Google::Cloud::Dlp::V2::RedactConfig]
         #     Redact
@@ -1786,6 +1797,9 @@ module Google
         # @!attribute [rw] crypto_deterministic_config
         #   @return [::Google::Cloud::Dlp::V2::CryptoDeterministicConfig]
         #     Deterministic Crypto
+        # @!attribute [rw] replace_dictionary_config
+        #   @return [::Google::Cloud::Dlp::V2::ReplaceDictionaryConfig]
+        #     Replace with a value randomly drawn (with replacement) from a dictionary.
         class PrimitiveTransformation
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -1845,7 +1859,9 @@ module Google
         # Uses AES-SIV based on the RFC https://tools.ietf.org/html/rfc5297.
         # @!attribute [rw] crypto_key
         #   @return [::Google::Cloud::Dlp::V2::CryptoKey]
-        #     The key used by the encryption function.
+        #     The key used by the encryption function. For deterministic encryption
+        #     using AES-SIV, the provided key is internally expanded to 64 bytes prior to
+        #     use.
         # @!attribute [rw] surrogate_info_type
         #   @return [::Google::Cloud::Dlp::V2::InfoType]
         #     The custom info type to annotate the surrogate with.
@@ -1914,6 +1930,17 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
+        # Replace each input value with a value randomly selected from the dictionary.
+        # @!attribute [rw] word_list
+        #   @return [::Google::Cloud::Dlp::V2::CustomInfoType::Dictionary::WordList]
+        #     A list of words to select from for random replacement. The
+        #     [limits](https://cloud.google.com/dlp/limits) page contains details about
+        #     the size limits of dictionaries.
+        class ReplaceDictionaryConfig
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
         # Replace each matching finding with the name of the info_type.
         class ReplaceWithInfoTypeConfig
           include ::Google::Protobuf::MessageExts
@@ -2003,8 +2030,8 @@ module Google
         # the user for simple bucketing strategies.
         #
         # The transformed value will be a hyphenated string of
-        # \\{lower_bound}-\\{upper_bound}, i.e if lower_bound = 10 and upper_bound = 20
-        # all values that are within this bucket will be replaced with "10-20".
+        # \\{lower_bound}-\\{upper_bound}. For example, if lower_bound = 10 and upper_bound
+        # = 20, all values that are within this bucket will be replaced with "10-20".
         #
         # This can be used on data of type: double, long.
         #
@@ -2176,10 +2203,11 @@ module Google
         end
 
         # This is a data encryption key (DEK) (as opposed to
-        # a key encryption key (KEK) stored by KMS).
-        # When using KMS to wrap/unwrap DEKs, be sure to set an appropriate
-        # IAM policy on the KMS CryptoKey (KEK) to ensure an attacker cannot
-        # unwrap the data crypto key.
+        # a key encryption key (KEK) stored by Cloud Key Management Service
+        # (Cloud KMS).
+        # When using Cloud KMS to wrap or unwrap a DEK, be sure to set an appropriate
+        # IAM policy on the KEK to ensure an attacker cannot
+        # unwrap the DEK.
         # @!attribute [rw] transient
         #   @return [::Google::Cloud::Dlp::V2::TransientCryptoKey]
         #     Transient crypto key
@@ -2188,7 +2216,7 @@ module Google
         #     Unwrapped crypto key
         # @!attribute [rw] kms_wrapped
         #   @return [::Google::Cloud::Dlp::V2::KmsWrappedCryptoKey]
-        #     Kms wrapped key
+        #     Key wrapped using Cloud KMS
         class CryptoKey
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -2220,10 +2248,16 @@ module Google
         end
 
         # Include to use an existing data crypto key wrapped by KMS.
-        # The wrapped key must be a 128/192/256 bit key.
+        # The wrapped key must be a 128-, 192-, or 256-bit key.
         # Authorization requires the following IAM permissions when sending a request
-        # to perform a crypto transformation using a kms-wrapped crypto key:
+        # to perform a crypto transformation using a KMS-wrapped crypto key:
         # dlp.kms.encrypt
+        #
+        # For more information, see [Creating a wrapped key]
+        # (https://cloud.google.com/dlp/docs/create-wrapped-key).
+        #
+        # Note: When you use Cloud KMS for cryptographic operations,
+        # [charges apply](https://cloud.google.com/kms/pricing).
         # @!attribute [rw] wrapped_key
         #   @return [::String]
         #     Required. The wrapped data crypto key.
@@ -2295,6 +2329,9 @@ module Google
         # @!attribute [rw] fields
         #   @return [::Array<::Google::Cloud::Dlp::V2::FieldId>]
         #     Required. Input field(s) to apply the transformation to.
+        #     When you have columns that reference their position within a list,
+        #     omit the index from the FieldId. FieldId name matching ignores the index.
+        #     For example, instead of "contact.nums[0].type", use "contact.nums.type".
         # @!attribute [rw] condition
         #   @return [::Google::Cloud::Dlp::V2::RecordCondition]
         #     Only apply the transformation if the condition evaluates to true for the
@@ -2489,7 +2526,7 @@ module Google
           end
         end
 
-        # Schedule for triggeredJobs.
+        # Schedule for inspect job triggers.
         # @!attribute [rw] recurrence_period_duration
         #   @return [::Google::Protobuf::Duration]
         #     With this option a job is started a regular periodic basis. For
@@ -2566,7 +2603,7 @@ module Google
         #     Output only. The last update timestamp of an inspectTemplate.
         # @!attribute [rw] deidentify_config
         #   @return [::Google::Cloud::Dlp::V2::DeidentifyConfig]
-        #     ///////////// // The core content of the template  // ///////////////
+        #     The core content of the template.
         class DeidentifyTemplate
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -2635,9 +2672,6 @@ module Google
           # @!attribute [rw] manual
           #   @return [::Google::Cloud::Dlp::V2::Manual]
           #     For use with hybrid jobs. Jobs must be manually created and finished.
-          #     Early access feature is in a pre-release state and might change or have
-          #     limited support. For more information, see
-          #     https://cloud.google.com/products#product-launch-stages.
           class Trigger
             include ::Google::Protobuf::MessageExts
             extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -2730,11 +2764,11 @@ module Google
             extend ::Google::Protobuf::MessageExts::ClassMethods
           end
 
-          # Publish findings of a DlpJob to Cloud Data Catalog. Labels summarizing the
+          # Publish findings of a DlpJob to Data Catalog. Labels summarizing the
           # results of the DlpJob will be applied to the entry for the resource scanned
-          # in Cloud Data Catalog. Any labels previously written by another DlpJob will
+          # in Data Catalog. Any labels previously written by another DlpJob will
           # be deleted. InfoType naming patterns are strictly enforced when using this
-          # feature. Note that the findings will be persisted in Cloud Data Catalog
+          # feature. Note that the findings will be persisted in Data Catalog
           # storage and are governed by Data Catalog service-specific policy, see
           # https://cloud.google.com/terms/service-terms
           # Only a single instance of this action can be specified and only allowed if
@@ -3003,10 +3037,11 @@ module Google
         #         parent=projects/example-project/locations/europe-west3
         # @!attribute [rw] inspect_job
         #   @return [::Google::Cloud::Dlp::V2::InspectJobConfig]
-        #     Set to control what and how to inspect.
+        #     An inspection job scans a storage repository for InfoTypes.
         # @!attribute [rw] risk_job
         #   @return [::Google::Cloud::Dlp::V2::RiskAnalysisJobConfig]
-        #     Set to choose what metric to calculate.
+        #     A risk analysis job calculates re-identification risk metrics for a
+        #     BigQuery table.
         # @!attribute [rw] job_id
         #   @return [::String]
         #     The job id can contain uppercase and lowercase letters,
@@ -3075,7 +3110,7 @@ module Google
         #     * Restrictions can be combined by `AND` or `OR` logical operators. A
         #     sequence of restrictions implicitly uses `AND`.
         #     * A restriction has the form of `{field} {operator} {value}`.
-        #     * Supported fields/values for inspect jobs:
+        #     * Supported fields/values for inspect triggers:
         #         - `status` - HEALTHY|PAUSED|CANCELLED
         #         - `inspected_storage` - DATASTORE|CLOUD_STORAGE|BIGQUERY
         #         - 'last_run_time` - RFC 3339 formatted timestamp, surrounded by
@@ -3091,6 +3126,9 @@ module Google
         #     * last_run_time > \"2017-12-12T00:00:00+00:00\"
         #
         #     The length of this field should be no more than 500 characters.
+        # @!attribute [rw] type
+        #   @return [::Google::Cloud::Dlp::V2::DlpJobType]
+        #     The type of jobs. Will use `DlpJobType.INSPECT` if not set.
         # @!attribute [rw] location_id
         #   @return [::String]
         #     Deprecated. This field has no effect.
@@ -3904,7 +3942,7 @@ module Google
           MATCHING_TYPE_INVERSE_MATCH = 3
         end
 
-        # Options describing which parts of the provided content should be scanned.
+        # Deprecated and unused.
         module ContentOption
           # Includes entire content of a file or a data stream.
           CONTENT_UNSPECIFIED = 0
@@ -3939,7 +3977,7 @@ module Google
 
         # An enum to represent the various types of DLP jobs.
         module DlpJobType
-          # Unused
+          # Defaults to INSPECT_JOB.
           DLP_JOB_TYPE_UNSPECIFIED = 0
 
           # The job inspected Google Cloud for sensitive data.

data/proto_docs/google/privacy/dlp/v2/storage.rb

@@ -29,6 +29,9 @@ module Google
         #     at https://cloud.google.com/dlp/docs/infotypes-reference when specifying
         #     a built-in type.  When sending Cloud DLP results to Data Catalog, infoType
         #     names should conform to the pattern `[A-Za-z0-9$-_]{1,64}`.
+        # @!attribute [rw] version
+        #   @return [::String]
+        #     Optional version name for this InfoType.
         class InfoType
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -361,12 +364,14 @@ module Google
         #     Max number of bytes to scan from a file. If a scanned file's size is bigger
         #     than this value then the rest of the bytes are omitted. Only one
         #     of bytes_limit_per_file and bytes_limit_per_file_percent can be specified.
+        #     Cannot be set if de-identification is requested.
         # @!attribute [rw] bytes_limit_per_file_percent
         #   @return [::Integer]
         #     Max percentage of bytes to scan from a file. The rest are omitted. The
         #     number of bytes scanned is rounded down. Must be between 0 and 100,
         #     inclusively. Both 0 and 100 means no limit. Defaults to 0. Only one
         #     of bytes_limit_per_file and bytes_limit_per_file_percent can be specified.
+        #     Cannot be set if de-identification is requested.
         # @!attribute [rw] file_types
         #   @return [::Array<::Google::Cloud::Dlp::V2::FileType>]
         #     List of file type groups to include in the scan.
@@ -474,6 +479,9 @@ module Google
         #   @return [::Array<::Google::Cloud::Dlp::V2::FieldId>]
         #     References to fields excluded from scanning. This allows you to skip
         #     inspection of entire columns which you know have no findings.
+        # @!attribute [rw] included_fields
+        #   @return [::Array<::Google::Cloud::Dlp::V2::FieldId>]
+        #     Limit scanning only to these fields.
         class BigQueryOptions
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -507,9 +515,6 @@ module Google
         # @!attribute [rw] hybrid_options
         #   @return [::Google::Cloud::Dlp::V2::HybridOptions]
         #     Hybrid inspection options.
-        #     Early access feature is in a pre-release state and might change or have
-        #     limited support. For more information, see
-        #     https://cloud.google.com/products#product-launch-stages.
         # @!attribute [rw] timespan_config
         #   @return [::Google::Cloud::Dlp::V2::StorageConfig::TimespanConfig]
         class StorageConfig
@@ -787,11 +792,12 @@ module Google
           BINARY_FILE = 1
 
           # Included file extensions:
-          #   asc, brf, c, cc, cpp, csv, cxx, c++, cs, css, dart, eml, go, h, hh, hpp,
-          #   hxx, h++, hs, html, htm, shtml, shtm, xhtml, lhs, ini, java, js, json,
-          #   ocaml, md, mkd, markdown, m, ml, mli, pl, pm, php, phtml, pht, py, pyw,
-          #   rb, rbw, rs, rc, scala, sh, sql, tex, txt, text, tsv, vcard, vcs, wml,
-          #   xml, xsl, xsd, yml, yaml.
+          #   asc,asp, aspx, brf, c, cc,cfm, cgi, cpp, csv, cxx, c++, cs, css, dart,
+          #   dat, dot, eml,, epbub, ged, go, h, hh, hpp, hxx, h++, hs, html, htm,
+          #   mkd, markdown, m, ml, mli, perl, pl, plist, pm, php, phtml, pht,
+          #   properties, py, pyw, rb, rbw, rs, rss,  rc, scala, sh, sql, swift, tex,
+          #   shtml, shtm, xhtml, lhs, ics, ini, java, js, json, kix, kml, ocaml, md,
+          #   txt, text, tsv, vb, vcard, vcs, wml, xcodeproj, xml, xsl, xsd, yml, yaml.
           TEXT_FILE = 2
 
           # Included file extensions:
@@ -821,6 +827,16 @@ module Google
           # Included file extensions:
           #   tsv
           TSV = 9
+
+          # Powerpoint files >30 MB will be scanned as binary files.
+          # Included file extensions:
+          #   pptx, pptm, potx, potm, pot
+          POWERPOINT = 11
+
+          # Excel files >30 MB will be scanned as binary files.
+          # Included file extensions:
+          #   xlsx, xlsm, xltx, xltm
+          EXCEL = 12
         end
       end
     end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-cloud-dlp-v2
 version: !ruby/object:Gem::Version
-  version: 0.7.4
+  version: 0.9.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-11-08 00:00:00.000000000 Z
+date: 2022-03-30 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: gapic-common
@@ -212,7 +212,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.17
+rubygems_version: 3.3.5
 signing_key: 
 specification_version: 4
 summary: API Client library for the Cloud Data Loss Prevention (DLP) V2 API