google-cloud-security_center-v1 0.1.0 → 0.3.0

data/proto_docs/google/cloud/securitycenter/v1/notification_config.rb

@@ -26,33 +26,33 @@ module Google
         # A notification config is a Cloud SCC resource that contains the configuration
         # to send notifications for create/update events of findings, assets and etc.
         # @!attribute [rw] name
-        #   @return [String]
+        #   @return [::String]
         #     The relative resource name of this notification config. See:
         #     https://cloud.google.com/apis/design/resource_names#relative_resource_name
         #     Example:
         #     "organizations/\\{organization_id}/notificationConfigs/notify_public_bucket".
         # @!attribute [rw] description
-        #   @return [String]
+        #   @return [::String]
         #     The description of the notification config (max of 1024 characters).
         # @!attribute [rw] pubsub_topic
-        #   @return [String]
+        #   @return [::String]
         #     The PubSub topic to send notifications to. Its format is
         #     "projects/[project_id]/topics/[topic]".
         # @!attribute [r] service_account
-        #   @return [String]
+        #   @return [::String]
         #     Output only. The service account that needs "pubsub.topics.publish"
         #     permission to publish to the PubSub topic.
         # @!attribute [rw] streaming_config
-        #   @return [Google::Cloud::SecurityCenter::V1::NotificationConfig::StreamingConfig]
+        #   @return [::Google::Cloud::SecurityCenter::V1::NotificationConfig::StreamingConfig]
         #     The config for triggering streaming-based notifications.
         class NotificationConfig
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
 
           # The config for streaming-based notifications, which send each event as soon
           # as it is detected.
           # @!attribute [rw] filter
-          #   @return [String]
+          #   @return [::String]
           #     Expression that defines the filter to apply across create/update events
           #     of assets or findings as specified by the event type. The expression is a
           #     list of zero or more restrictions combined via logical operators `AND`
@@ -75,8 +75,8 @@ module Google
           #     * integer literals without quotes.
           #     * boolean literals `true` and `false` without quotes.
           class StreamingConfig
-            include Google::Protobuf::MessageExts
-            extend Google::Protobuf::MessageExts::ClassMethods
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
           end
         end
       end

data/proto_docs/google/cloud/securitycenter/v1/notification_message.rb

@@ -23,15 +23,18 @@ module Google
       module V1
         # Cloud SCC's Notification
         # @!attribute [rw] notification_config_name
-        #   @return [String]
+        #   @return [::String]
         #     Name of the notification config that generated current notification.
         # @!attribute [rw] finding
-        #   @return [Google::Cloud::SecurityCenter::V1::Finding]
+        #   @return [::Google::Cloud::SecurityCenter::V1::Finding]
         #     If it's a Finding based notification config, this field will be
         #     populated.
+        # @!attribute [rw] resource
+        #   @return [::Google::Cloud::SecurityCenter::V1::Resource]
+        #     The Cloud resource tied to this notification's Finding.
         class NotificationMessage
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
       end
     end

data/proto_docs/google/cloud/securitycenter/v1/organization_settings.rb

@@ -21,37 +21,37 @@ module Google
   module Cloud
     module SecurityCenter
       module V1
-        # User specified settings that are attached to the Cloud Security Command
-        # Center (Cloud SCC) organization.
+        # User specified settings that are attached to the Security Command
+        # Center organization.
         # @!attribute [rw] name
-        #   @return [String]
+        #   @return [::String]
         #     The relative resource name of the settings. See:
         #     https://cloud.google.com/apis/design/resource_names#relative_resource_name
         #     Example:
         #     "organizations/\\{organization_id}/organizationSettings".
         # @!attribute [rw] enable_asset_discovery
-        #   @return [Boolean]
+        #   @return [::Boolean]
         #     A flag that indicates if Asset Discovery should be enabled. If the flag is
         #     set to `true`, then discovery of assets will occur. If it is set to `false,
         #     all historical assets will remain, but discovery of future assets will not
         #     occur.
         # @!attribute [rw] asset_discovery_config
-        #   @return [Google::Cloud::SecurityCenter::V1::OrganizationSettings::AssetDiscoveryConfig]
+        #   @return [::Google::Cloud::SecurityCenter::V1::OrganizationSettings::AssetDiscoveryConfig]
         #     The configuration used for Asset Discovery runs.
         class OrganizationSettings
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
 
           # The configuration used for Asset Discovery runs.
           # @!attribute [rw] project_ids
-          #   @return [Array<String>]
+          #   @return [::Array<::String>]
           #     The project ids to use for filtering asset discovery.
           # @!attribute [rw] inclusion_mode
-          #   @return [Google::Cloud::SecurityCenter::V1::OrganizationSettings::AssetDiscoveryConfig::InclusionMode]
+          #   @return [::Google::Cloud::SecurityCenter::V1::OrganizationSettings::AssetDiscoveryConfig::InclusionMode]
           #     The mode to use for filtering asset discovery.
           class AssetDiscoveryConfig
-            include Google::Protobuf::MessageExts
-            extend Google::Protobuf::MessageExts::ClassMethods
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
 
             # The mode of inclusion when running Asset Discovery.
             # Asset discovery can be limited by explicitly identifying projects to be

data/proto_docs/google/cloud/securitycenter/v1/resource.rb

@@ -0,0 +1,48 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1
+        # Information related to the Google Cloud resource.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     The full resource name of the resource. See:
+        #     https://cloud.google.com/apis/design/resource_names#full_resource_name
+        # @!attribute [rw] project
+        #   @return [::String]
+        #     The full resource name of project that the resource belongs to.
+        # @!attribute [rw] project_display_name
+        #   @return [::String]
+        #     The human readable name of project that the resource belongs to.
+        # @!attribute [rw] parent
+        #   @return [::String]
+        #     The full resource name of resource's parent.
+        # @!attribute [rw] parent_display_name
+        #   @return [::String]
+        #     The human readable name of resource's parent.
+        class Resource
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/securitycenter/v1/run_asset_discovery_response.rb

@@ -23,14 +23,14 @@ module Google
       module V1
         # Response of asset discovery run
         # @!attribute [rw] state
-        #   @return [Google::Cloud::SecurityCenter::V1::RunAssetDiscoveryResponse::State]
+        #   @return [::Google::Cloud::SecurityCenter::V1::RunAssetDiscoveryResponse::State]
         #     The state of an asset discovery run.
         # @!attribute [rw] duration
-        #   @return [Google::Protobuf::Duration]
+        #   @return [::Google::Protobuf::Duration]
         #     The duration between asset discovery run start and end
         class RunAssetDiscoveryResponse
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
 
           # The state of an asset discovery run.
           module State

data/proto_docs/google/cloud/securitycenter/v1/security_marks.rb

@@ -21,19 +21,19 @@ module Google
   module Cloud
     module SecurityCenter
       module V1
-        # User specified security marks that are attached to the parent Cloud Security
-        # Command Center (Cloud SCC) resource. Security marks are scoped within a Cloud
-        # SCC organization -- they can be modified and viewed by all users who have
+        # User specified security marks that are attached to the parent Security
+        # Command Center resource. Security marks are scoped within a Security Command
+        # Center organization -- they can be modified and viewed by all users who have
         # proper permissions on the organization.
         # @!attribute [rw] name
-        #   @return [String]
+        #   @return [::String]
         #     The relative resource name of the SecurityMarks. See:
         #     https://cloud.google.com/apis/design/resource_names#relative_resource_name
         #     Examples:
         #     "organizations/\\{organization_id}/assets/\\{asset_id}/securityMarks"
         #     "organizations/\\{organization_id}/sources/\\{source_id}/findings/\\{finding_id}/securityMarks".
         # @!attribute [rw] marks
-        #   @return [Google::Protobuf::Map{String => String}]
+        #   @return [::Google::Protobuf::Map{::String => ::String}]
         #     Mutable user specified security marks belonging to the parent resource.
         #     Constraints are as follows:
         #
@@ -43,16 +43,16 @@ module Google
         #       * Values have leading and trailing whitespace trimmed, remaining
         #         characters must be between 1 - 4096 characters (inclusive)
         class SecurityMarks
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
 
           # @!attribute [rw] key
-          #   @return [String]
+          #   @return [::String]
           # @!attribute [rw] value
-          #   @return [String]
+          #   @return [::String]
           class MarksEntry
-            include Google::Protobuf::MessageExts
-            extend Google::Protobuf::MessageExts::ClassMethods
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
           end
         end
       end

data/proto_docs/google/cloud/securitycenter/v1/securitycenter_service.rb

@@ -23,105 +23,105 @@ module Google
       module V1
         # Request message for creating a finding.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. Resource name of the new finding's parent. Its format should be
         #     "organizations/[organization_id]/sources/[source_id]".
         # @!attribute [rw] finding_id
-        #   @return [String]
+        #   @return [::String]
         #     Required. Unique identifier provided by the client within the parent scope.
         #     It must be alphanumeric and less than or equal to 32 characters and
         #     greater than 0 characters in length.
         # @!attribute [rw] finding
-        #   @return [Google::Cloud::SecurityCenter::V1::Finding]
+        #   @return [::Google::Cloud::SecurityCenter::V1::Finding]
         #     Required. The Finding being created. The name and security_marks will be
         #     ignored as they are both output only fields on this resource.
         class CreateFindingRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for creating a notification config.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. Resource name of the new notification config's parent. Its format
         #     is "organizations/[organization_id]".
         # @!attribute [rw] config_id
-        #   @return [String]
+        #   @return [::String]
         #     Required.
         #     Unique identifier provided by the client within the parent scope.
         #     It must be between 1 and 128 characters, and contains alphanumeric
         #     characters, underscores or hyphens only.
         # @!attribute [rw] notification_config
-        #   @return [Google::Cloud::SecurityCenter::V1::NotificationConfig]
+        #   @return [::Google::Cloud::SecurityCenter::V1::NotificationConfig]
         #     Required. The notification config being created. The name and the service
         #     account will be ignored as they are both output only fields on this
         #     resource.
         class CreateNotificationConfigRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for creating a source.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. Resource name of the new source's parent. Its format should be
         #     "organizations/[organization_id]".
         # @!attribute [rw] source
-        #   @return [Google::Cloud::SecurityCenter::V1::Source]
+        #   @return [::Google::Cloud::SecurityCenter::V1::Source]
         #     Required. The Source being created, only the display_name and description
         #     will be used. All other fields will be ignored.
         class CreateSourceRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for deleting a notification config.
         # @!attribute [rw] name
-        #   @return [String]
+        #   @return [::String]
         #     Required. Name of the notification config to delete. Its format is
         #     "organizations/[organization_id]/notificationConfigs/[config_id]".
         class DeleteNotificationConfigRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for getting a notification config.
         # @!attribute [rw] name
-        #   @return [String]
+        #   @return [::String]
         #     Required. Name of the notification config to get. Its format is
         #     "organizations/[organization_id]/notificationConfigs/[config_id]".
         class GetNotificationConfigRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for getting organization settings.
         # @!attribute [rw] name
-        #   @return [String]
+        #   @return [::String]
         #     Required. Name of the organization to get organization settings for. Its
         #     format is "organizations/[organization_id]/organizationSettings".
         class GetOrganizationSettingsRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for getting a source.
         # @!attribute [rw] name
-        #   @return [String]
+        #   @return [::String]
         #     Required. Relative resource name of the source. Its format is
         #     "organizations/[organization_id]/source/[source_id]".
         class GetSourceRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for grouping by assets.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. Name of the organization to groupBy. Its format is
         #     "organizations/[organization_id]".
         # @!attribute [rw] filter
-        #   @return [String]
+        #   @return [::String]
         #     Expression that defines the filter to apply across assets.
         #     The expression is a list of zero or more restrictions combined via logical
         #     operators `AND` and `OR`.
@@ -155,15 +155,15 @@ module Google
         #
         #       Usage: This should be milliseconds since epoch or an RFC3339 string.
         #       Examples:
-        #         "update_time = \"2019-06-10T16:07:18-07:00\""
-        #         "update_time = 1560208038000"
+        #         `update_time = "2019-06-10T16:07:18-07:00"`
+        #         `update_time = 1560208038000`
         #
         #     * create_time: `=`, `>`, `<`, `>=`, `<=`
         #
         #       Usage: This should be milliseconds since epoch or an RFC3339 string.
         #       Examples:
-        #         "create_time = \"2019-06-10T16:07:18-07:00\""
-        #         "create_time = 1560208038000"
+        #         `create_time = "2019-06-10T16:07:18-07:00"`
+        #         `create_time = 1560208038000`
         #
         #     * iam_policy.policy_blob: `=`, `:`
         #     * resource_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
@@ -178,8 +178,14 @@ module Google
         #     * security_center_properties.resource_owners: `=`, `:`
         #
         #     For example, `resource_properties.size = 100` is a valid filter string.
+        #
+        #     Use a partial match on the empty string to filter based on a property
+        #     existing:`resource_properties.my_property : ""`
+        #
+        #     Use a negated partial match on the empty string to filter based on a
+        #     property not existing: `-resource_properties.my_property : ""`
         # @!attribute [rw] group_by
-        #   @return [String]
+        #   @return [::String]
         #     Required. Expression that defines what assets fields to use for grouping.
         #     The string value should follow SQL syntax: comma separated list of fields.
         #     For example:
@@ -199,7 +205,7 @@ module Google
         #     * security_center_properties.resource_project_display_name
         #     * security_center_properties.resource_parent_display_name
         # @!attribute [rw] compare_duration
-        #   @return [Google::Protobuf::Duration]
+        #   @return [::Google::Protobuf::Duration]
         #     When compare_duration is set, the GroupResult's "state_change" property is
         #     updated to indicate whether the asset was added, removed, or remained
         #     present during the compare_duration period of time that precedes the
@@ -228,55 +234,55 @@ module Google
         #     If this field is set then `state_change` must be a specified field in
         #     `group_by`.
         # @!attribute [rw] read_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     Time used as a reference point when filtering assets. The filter is limited
         #     to assets existing at the supplied time and their values are those at that
         #     specific time. Absence of this field will default to the API's version of
         #     NOW.
         # @!attribute [rw] page_token
-        #   @return [String]
+        #   @return [::String]
         #     The value returned by the last `GroupAssetsResponse`; indicates
         #     that this is a continuation of a prior `GroupAssets` call, and that the
         #     system should return the next page of data.
         # @!attribute [rw] page_size
-        #   @return [Integer]
+        #   @return [::Integer]
         #     The maximum number of results to return in a single response. Default is
         #     10, minimum is 1, maximum is 1000.
         class GroupAssetsRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Response message for grouping by assets.
         # @!attribute [rw] group_by_results
-        #   @return [Array<Google::Cloud::SecurityCenter::V1::GroupResult>]
+        #   @return [::Array<::Google::Cloud::SecurityCenter::V1::GroupResult>]
         #     Group results. There exists an element for each existing unique
         #     combination of property/values. The element contains a count for the number
         #     of times those specific property/values appear.
         # @!attribute [rw] read_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     Time used for executing the groupBy request.
         # @!attribute [rw] next_page_token
-        #   @return [String]
+        #   @return [::String]
         #     Token to retrieve the next page of results, or empty if there are no more
         #     results.
         # @!attribute [rw] total_size
-        #   @return [Integer]
+        #   @return [::Integer]
         #     The total number of results matching the query.
         class GroupAssetsResponse
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for grouping by findings.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. Name of the source to groupBy. Its format is
         #     "organizations/[organization_id]/sources/[source_id]". To groupBy across
         #     all sources provide a source_id of `-`. For example:
         #     organizations/\\{organization_id}/sources/-
         # @!attribute [rw] filter
-        #   @return [String]
+        #   @return [::String]
         #     Expression that defines the filter to apply across findings.
         #     The expression is a list of one or more restrictions combined via logical
         #     operators `AND` and `OR`.
@@ -313,15 +319,21 @@ module Google
         #
         #       Usage: This should be milliseconds since epoch or an RFC3339 string.
         #       Examples:
-        #         "event_time = \"2019-06-10T16:07:18-07:00\""
-        #         "event_time = 1560208038000"
+        #         `event_time = "2019-06-10T16:07:18-07:00"`
+        #         `event_time = 1560208038000`
         #
         #     * security_marks.marks: `=`, `:`
         #     * source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
         #
         #     For example, `source_properties.size = 100` is a valid filter string.
+        #
+        #     Use a partial match on the empty string to filter based on a property
+        #     existing: `source_properties.my_property : ""`
+        #
+        #     Use a negated partial match on the empty string to filter based on a
+        #     property not existing: `-source_properties.my_property : ""`
         # @!attribute [rw] group_by
-        #   @return [String]
+        #   @return [::String]
         #     Required. Expression that defines what assets fields to use for grouping
         #     (including `state_change`). The string value should follow SQL syntax:
         #     comma separated list of fields. For example: "parent,resource_name".
@@ -337,13 +349,13 @@ module Google
         #
         #     * state_change
         # @!attribute [rw] read_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     Time used as a reference point when filtering findings. The filter is
         #     limited to findings existing at the supplied time and their values are
         #     those at that specific time. Absence of this field will default to the
         #     API's version of NOW.
         # @!attribute [rw] compare_duration
-        #   @return [Google::Protobuf::Duration]
+        #   @return [::Google::Protobuf::Duration]
         #     When compare_duration is set, the GroupResult's "state_change" attribute is
         #     updated to indicate whether the finding had its state changed, the
         #     finding's state remained unchanged, or if the finding was added during the
@@ -377,132 +389,132 @@ module Google
         #     If this field is set then `state_change` must be a specified field in
         #     `group_by`.
         # @!attribute [rw] page_token
-        #   @return [String]
+        #   @return [::String]
         #     The value returned by the last `GroupFindingsResponse`; indicates
         #     that this is a continuation of a prior `GroupFindings` call, and
         #     that the system should return the next page of data.
         # @!attribute [rw] page_size
-        #   @return [Integer]
+        #   @return [::Integer]
         #     The maximum number of results to return in a single response. Default is
         #     10, minimum is 1, maximum is 1000.
         class GroupFindingsRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Response message for group by findings.
         # @!attribute [rw] group_by_results
-        #   @return [Array<Google::Cloud::SecurityCenter::V1::GroupResult>]
+        #   @return [::Array<::Google::Cloud::SecurityCenter::V1::GroupResult>]
         #     Group results. There exists an element for each existing unique
         #     combination of property/values. The element contains a count for the number
         #     of times those specific property/values appear.
         # @!attribute [rw] read_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     Time used for executing the groupBy request.
         # @!attribute [rw] next_page_token
-        #   @return [String]
+        #   @return [::String]
         #     Token to retrieve the next page of results, or empty if there are no more
         #     results.
         # @!attribute [rw] total_size
-        #   @return [Integer]
+        #   @return [::Integer]
         #     The total number of results matching the query.
         class GroupFindingsResponse
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Result containing the properties and count of a groupBy request.
         # @!attribute [rw] properties
-        #   @return [Google::Protobuf::Map{String => Google::Protobuf::Value}]
+        #   @return [::Google::Protobuf::Map{::String => ::Google::Protobuf::Value}]
         #     Properties matching the groupBy fields in the request.
         # @!attribute [rw] count
-        #   @return [Integer]
+        #   @return [::Integer]
         #     Total count of resources for the given properties.
         class GroupResult
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
 
           # @!attribute [rw] key
-          #   @return [String]
+          #   @return [::String]
           # @!attribute [rw] value
-          #   @return [Google::Protobuf::Value]
+          #   @return [::Google::Protobuf::Value]
           class PropertiesEntry
-            include Google::Protobuf::MessageExts
-            extend Google::Protobuf::MessageExts::ClassMethods
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
           end
         end
 
         # Request message for listing notification configs.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. Name of the organization to list notification configs.
         #     Its format is "organizations/[organization_id]".
         # @!attribute [rw] page_token
-        #   @return [String]
+        #   @return [::String]
         #     The value returned by the last `ListNotificationConfigsResponse`; indicates
         #     that this is a continuation of a prior `ListNotificationConfigs` call, and
         #     that the system should return the next page of data.
         # @!attribute [rw] page_size
-        #   @return [Integer]
+        #   @return [::Integer]
         #     The maximum number of results to return in a single response. Default is
         #     10, minimum is 1, maximum is 1000.
         class ListNotificationConfigsRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Response message for listing notification configs.
         # @!attribute [rw] notification_configs
-        #   @return [Array<Google::Cloud::SecurityCenter::V1::NotificationConfig>]
+        #   @return [::Array<::Google::Cloud::SecurityCenter::V1::NotificationConfig>]
         #     Notification configs belonging to the requested parent.
         # @!attribute [rw] next_page_token
-        #   @return [String]
+        #   @return [::String]
         #     Token to retrieve the next page of results, or empty if there are no more
         #     results.
         class ListNotificationConfigsResponse
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for listing sources.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. Resource name of the parent of sources to list. Its format should
         #     be "organizations/[organization_id]".
         # @!attribute [rw] page_token
-        #   @return [String]
+        #   @return [::String]
         #     The value returned by the last `ListSourcesResponse`; indicates
         #     that this is a continuation of a prior `ListSources` call, and
         #     that the system should return the next page of data.
         # @!attribute [rw] page_size
-        #   @return [Integer]
+        #   @return [::Integer]
         #     The maximum number of results to return in a single response. Default is
         #     10, minimum is 1, maximum is 1000.
         class ListSourcesRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Response message for listing sources.
         # @!attribute [rw] sources
-        #   @return [Array<Google::Cloud::SecurityCenter::V1::Source>]
+        #   @return [::Array<::Google::Cloud::SecurityCenter::V1::Source>]
         #     Sources belonging to the requested parent.
         # @!attribute [rw] next_page_token
-        #   @return [String]
+        #   @return [::String]
         #     Token to retrieve the next page of results, or empty if there are no more
         #     results.
         class ListSourcesResponse
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for listing assets.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. Name of the organization assets should belong to. Its format is
         #     "organizations/[organization_id]".
         # @!attribute [rw] filter
-        #   @return [String]
+        #   @return [::String]
         #     Expression that defines the filter to apply across assets.
         #     The expression is a list of zero or more restrictions combined via logical
         #     operators `AND` and `OR`.
@@ -536,15 +548,15 @@ module Google
         #
         #       Usage: This should be milliseconds since epoch or an RFC3339 string.
         #       Examples:
-        #         "update_time = \"2019-06-10T16:07:18-07:00\""
-        #         "update_time = 1560208038000"
+        #         `update_time = "2019-06-10T16:07:18-07:00"`
+        #         `update_time = 1560208038000`
         #
         #     * create_time: `=`, `>`, `<`, `>=`, `<=`
         #
         #       Usage: This should be milliseconds since epoch or an RFC3339 string.
         #       Examples:
-        #         "create_time = \"2019-06-10T16:07:18-07:00\""
-        #         "create_time = 1560208038000"
+        #         `create_time = "2019-06-10T16:07:18-07:00"`
+        #         `create_time = 1560208038000`
         #
         #     * iam_policy.policy_blob: `=`, `:`
         #     * resource_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
@@ -559,8 +571,14 @@ module Google
         #     * security_center_properties.resource_owners: `=`, `:`
         #
         #     For example, `resource_properties.size = 100` is a valid filter string.
+        #
+        #     Use a partial match on the empty string to filter based on a property
+        #     existing: `resource_properties.my_property : ""`
+        #
+        #     Use a negated partial match on the empty string to filter based on a
+        #     property not existing: `-resource_properties.my_property : ""`
         # @!attribute [rw] order_by
-        #   @return [String]
+        #   @return [::String]
         #     Expression that defines what fields and order to use for sorting. The
         #     string value should follow SQL syntax: comma separated list of fields. For
         #     example: "name,resource_properties.a_property". The default sorting order
@@ -583,13 +601,13 @@ module Google
         #     security_center_properties.resource_project_display_name
         #     security_center_properties.resource_type
         # @!attribute [rw] read_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     Time used as a reference point when filtering assets. The filter is limited
         #     to assets existing at the supplied time and their values are those at that
         #     specific time. Absence of this field will default to the API's version of
         #     NOW.
         # @!attribute [rw] compare_duration
-        #   @return [Google::Protobuf::Duration]
+        #   @return [::Google::Protobuf::Duration]
         #     When compare_duration is set, the ListAssetsResult's "state_change"
         #     attribute is updated to indicate whether the asset was added, removed, or
         #     remained present during the compare_duration period of time that precedes
@@ -615,51 +633,51 @@ module Google
         #     is "UNUSED",  which will be the state_change set for all assets present at
         #     read_time.
         # @!attribute [rw] field_mask
-        #   @return [Google::Protobuf::FieldMask]
+        #   @return [::Google::Protobuf::FieldMask]
         #     Optional. A field mask to specify the ListAssetsResult fields to be listed
         #     in the response. An empty field mask will list all fields.
         # @!attribute [rw] page_token
-        #   @return [String]
+        #   @return [::String]
         #     The value returned by the last `ListAssetsResponse`; indicates
         #     that this is a continuation of a prior `ListAssets` call, and
         #     that the system should return the next page of data.
         # @!attribute [rw] page_size
-        #   @return [Integer]
+        #   @return [::Integer]
         #     The maximum number of results to return in a single response. Default is
         #     10, minimum is 1, maximum is 1000.
         class ListAssetsRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Response message for listing assets.
         # @!attribute [rw] list_assets_results
-        #   @return [Array<Google::Cloud::SecurityCenter::V1::ListAssetsResponse::ListAssetsResult>]
+        #   @return [::Array<::Google::Cloud::SecurityCenter::V1::ListAssetsResponse::ListAssetsResult>]
         #     Assets matching the list request.
         # @!attribute [rw] read_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     Time used for executing the list request.
         # @!attribute [rw] next_page_token
-        #   @return [String]
+        #   @return [::String]
         #     Token to retrieve the next page of results, or empty if there are no more
         #     results.
         # @!attribute [rw] total_size
-        #   @return [Integer]
+        #   @return [::Integer]
         #     The total number of assets matching the query.
         class ListAssetsResponse
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
 
           # Result containing the Asset and its State.
           # @!attribute [rw] asset
-          #   @return [Google::Cloud::SecurityCenter::V1::Asset]
+          #   @return [::Google::Cloud::SecurityCenter::V1::Asset]
           #     Asset matching the search request.
           # @!attribute [rw] state_change
-          #   @return [Google::Cloud::SecurityCenter::V1::ListAssetsResponse::ListAssetsResult::StateChange]
+          #   @return [::Google::Cloud::SecurityCenter::V1::ListAssetsResponse::ListAssetsResult::StateChange]
           #     State change of the asset between the points in time.
           class ListAssetsResult
-            include Google::Protobuf::MessageExts
-            extend Google::Protobuf::MessageExts::ClassMethods
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
 
             # The change in state of the asset.
             #
@@ -685,13 +703,13 @@ module Google
 
         # Request message for listing findings.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. Name of the source the findings belong to. Its format is
         #     "organizations/[organization_id]/sources/[source_id]". To list across all
         #     sources provide a source_id of `-`. For example:
         #     organizations/\\{organization_id}/sources/-
         # @!attribute [rw] filter
-        #   @return [String]
+        #   @return [::String]
         #     Expression that defines the filter to apply across findings.
         #     The expression is a list of one or more restrictions combined via logical
         #     operators `AND` and `OR`.
@@ -728,15 +746,21 @@ module Google
         #
         #       Usage: This should be milliseconds since epoch or an RFC3339 string.
         #       Examples:
-        #         "event_time = \"2019-06-10T16:07:18-07:00\""
-        #         "event_time = 1560208038000"
+        #         `event_time = "2019-06-10T16:07:18-07:00"`
+        #         `event_time = 1560208038000`
         #
         #     security_marks.marks: `=`, `:`
         #     source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
         #
         #     For example, `source_properties.size = 100` is a valid filter string.
+        #
+        #     Use a partial match on the empty string to filter based on a property
+        #     existing: `source_properties.my_property : ""`
+        #
+        #     Use a negated partial match on the empty string to filter based on a
+        #     property not existing: `-source_properties.my_property : ""`
         # @!attribute [rw] order_by
-        #   @return [String]
+        #   @return [::String]
         #     Expression that defines what fields and order to use for sorting. The
         #     string value should follow SQL syntax: comma separated list of fields. For
         #     example: "name,resource_properties.a_property". The default sorting order
@@ -756,13 +780,13 @@ module Google
         #     source_properties
         #     security_marks.marks
         # @!attribute [rw] read_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     Time used as a reference point when filtering findings. The filter is
         #     limited to findings existing at the supplied time and their values are
         #     those at that specific time. Absence of this field will default to the
         #     API's version of NOW.
         # @!attribute [rw] compare_duration
-        #   @return [Google::Protobuf::Duration]
+        #   @return [::Google::Protobuf::Duration]
         #     When compare_duration is set, the ListFindingsResult's "state_change"
         #     attribute is updated to indicate whether the finding had its state changed,
         #     the finding's state remained unchanged, or if the finding was added in any
@@ -794,76 +818,76 @@ module Google
         #     is "UNUSED", which will be the state_change set for all findings present at
         #     read_time.
         # @!attribute [rw] field_mask
-        #   @return [Google::Protobuf::FieldMask]
+        #   @return [::Google::Protobuf::FieldMask]
         #     Optional. A field mask to specify the Finding fields to be listed in the
         #     response. An empty field mask will list all fields.
         # @!attribute [rw] page_token
-        #   @return [String]
+        #   @return [::String]
         #     The value returned by the last `ListFindingsResponse`; indicates
         #     that this is a continuation of a prior `ListFindings` call, and
         #     that the system should return the next page of data.
         # @!attribute [rw] page_size
-        #   @return [Integer]
+        #   @return [::Integer]
         #     The maximum number of results to return in a single response. Default is
         #     10, minimum is 1, maximum is 1000.
         class ListFindingsRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Response message for listing findings.
         # @!attribute [rw] list_findings_results
-        #   @return [Array<Google::Cloud::SecurityCenter::V1::ListFindingsResponse::ListFindingsResult>]
+        #   @return [::Array<::Google::Cloud::SecurityCenter::V1::ListFindingsResponse::ListFindingsResult>]
         #     Findings matching the list request.
         # @!attribute [rw] read_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     Time used for executing the list request.
         # @!attribute [rw] next_page_token
-        #   @return [String]
+        #   @return [::String]
         #     Token to retrieve the next page of results, or empty if there are no more
         #     results.
         # @!attribute [rw] total_size
-        #   @return [Integer]
+        #   @return [::Integer]
         #     The total number of findings matching the query.
         class ListFindingsResponse
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
 
           # Result containing the Finding and its StateChange.
           # @!attribute [rw] finding
-          #   @return [Google::Cloud::SecurityCenter::V1::Finding]
+          #   @return [::Google::Cloud::SecurityCenter::V1::Finding]
           #     Finding matching the search request.
           # @!attribute [rw] state_change
-          #   @return [Google::Cloud::SecurityCenter::V1::ListFindingsResponse::ListFindingsResult::StateChange]
+          #   @return [::Google::Cloud::SecurityCenter::V1::ListFindingsResponse::ListFindingsResult::StateChange]
           #     State change of the finding between the points in time.
           # @!attribute [rw] resource
-          #   @return [Google::Cloud::SecurityCenter::V1::ListFindingsResponse::ListFindingsResult::Resource]
+          #   @return [::Google::Cloud::SecurityCenter::V1::ListFindingsResponse::ListFindingsResult::Resource]
           #     Output only. Resource that is associated with this finding.
           class ListFindingsResult
-            include Google::Protobuf::MessageExts
-            extend Google::Protobuf::MessageExts::ClassMethods
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
 
-            # Information related to the Google Cloud Platform (GCP) resource that is
+            # Information related to the Google Cloud resource that is
             # associated with this finding.
             # @!attribute [rw] name
-            #   @return [String]
+            #   @return [::String]
             #     The full resource name of the resource. See:
             #     https://cloud.google.com/apis/design/resource_names#full_resource_name
             # @!attribute [rw] project_name
-            #   @return [String]
+            #   @return [::String]
             #     The full resource name of project that the resource belongs to.
             # @!attribute [rw] project_display_name
-            #   @return [String]
+            #   @return [::String]
             #     The human readable name of project that the resource belongs to.
             # @!attribute [rw] parent_name
-            #   @return [String]
+            #   @return [::String]
             #     The full resource name of resource's parent.
             # @!attribute [rw] parent_display_name
-            #   @return [String]
+            #   @return [::String]
             #     The human readable name of resource's parent.
             class Resource
-              include Google::Protobuf::MessageExts
-              extend Google::Protobuf::MessageExts::ClassMethods
+              include ::Google::Protobuf::MessageExts
+              extend ::Google::Protobuf::MessageExts::ClassMethods
             end
 
             # The change in state of the finding.
@@ -898,35 +922,35 @@ module Google
 
         # Request message for updating a finding's state.
         # @!attribute [rw] name
-        #   @return [String]
+        #   @return [::String]
         #     Required. The relative resource name of the finding. See:
         #     https://cloud.google.com/apis/design/resource_names#relative_resource_name
         #     Example:
         #     "organizations/\\{organization_id}/sources/\\{source_id}/finding/\\{finding_id}".
         # @!attribute [rw] state
-        #   @return [Google::Cloud::SecurityCenter::V1::Finding::State]
+        #   @return [::Google::Cloud::SecurityCenter::V1::Finding::State]
         #     Required. The desired State of the finding.
         # @!attribute [rw] start_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     Required. The time at which the updated state takes effect.
         class SetFindingStateRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for running asset discovery for an organization.
         # @!attribute [rw] parent
-        #   @return [String]
+        #   @return [::String]
         #     Required. Name of the organization to run asset discovery for. Its format
         #     is "organizations/[organization_id]".
         class RunAssetDiscoveryRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for updating or creating a finding.
         # @!attribute [rw] finding
-        #   @return [Google::Cloud::SecurityCenter::V1::Finding]
+        #   @return [::Google::Cloud::SecurityCenter::V1::Finding]
         #     Required. The finding resource to update or create if it does not already
         #     exist. parent, security_marks, and update_time will be ignored.
         #
@@ -934,7 +958,7 @@ module Google
         #     alphanumeric and less than or equal to 32 characters and greater than 0
         #     characters in length.
         # @!attribute [rw] update_mask
-        #   @return [Google::Protobuf::FieldMask]
+        #   @return [::Google::Protobuf::FieldMask]
         #     The FieldMask to use when updating the finding resource. This field should
         #     not be specified when creating a finding.
         #
@@ -943,71 +967,71 @@ module Google
         #     be added/updated by using "source_properties.<property key>" in the field
         #     mask.
         class UpdateFindingRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for updating a notification config.
         # @!attribute [rw] notification_config
-        #   @return [Google::Cloud::SecurityCenter::V1::NotificationConfig]
+        #   @return [::Google::Cloud::SecurityCenter::V1::NotificationConfig]
         #     Required. The notification config to update.
         # @!attribute [rw] update_mask
-        #   @return [Google::Protobuf::FieldMask]
+        #   @return [::Google::Protobuf::FieldMask]
         #     The FieldMask to use when updating the notification config.
         #
         #     If empty all mutable fields will be updated.
         class UpdateNotificationConfigRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for updating an organization's settings.
         # @!attribute [rw] organization_settings
-        #   @return [Google::Cloud::SecurityCenter::V1::OrganizationSettings]
+        #   @return [::Google::Cloud::SecurityCenter::V1::OrganizationSettings]
         #     Required. The organization settings resource to update.
         # @!attribute [rw] update_mask
-        #   @return [Google::Protobuf::FieldMask]
+        #   @return [::Google::Protobuf::FieldMask]
         #     The FieldMask to use when updating the settings resource.
         #
         #      If empty all mutable fields will be updated.
         class UpdateOrganizationSettingsRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for updating a source.
         # @!attribute [rw] source
-        #   @return [Google::Cloud::SecurityCenter::V1::Source]
+        #   @return [::Google::Cloud::SecurityCenter::V1::Source]
         #     Required. The source resource to update.
         # @!attribute [rw] update_mask
-        #   @return [Google::Protobuf::FieldMask]
+        #   @return [::Google::Protobuf::FieldMask]
         #     The FieldMask to use when updating the source resource.
         #
         #     If empty all mutable fields will be updated.
         class UpdateSourceRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
         # Request message for updating a SecurityMarks resource.
         # @!attribute [rw] security_marks
-        #   @return [Google::Cloud::SecurityCenter::V1::SecurityMarks]
+        #   @return [::Google::Cloud::SecurityCenter::V1::SecurityMarks]
         #     Required. The security marks resource to update.
         # @!attribute [rw] update_mask
-        #   @return [Google::Protobuf::FieldMask]
+        #   @return [::Google::Protobuf::FieldMask]
         #     The FieldMask to use when updating the security marks resource.
         #
         #     The field mask must not contain duplicate fields.
         #     If empty or set to "marks", all marks will be replaced.  Individual
         #     marks can be updated using "marks.<mark_key>".
         # @!attribute [rw] start_time
-        #   @return [Google::Protobuf::Timestamp]
+        #   @return [::Google::Protobuf::Timestamp]
         #     The time at which the updated SecurityMarks take effect.
         #     If not set uses current server time.  Updates will be applied to the
         #     SecurityMarks that are active immediately preceding this time.
         class UpdateSecurityMarksRequest
-          include Google::Protobuf::MessageExts
-          extend Google::Protobuf::MessageExts::ClassMethods
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
         end
       end
     end