google-cloud-security_center-v1 0.10.0 → 0.12.1

data/lib/google/cloud/security_center/v1/security_center/paths.rb

@@ -24,6 +24,70 @@ module Google
         module SecurityCenter
           # Path helper methods for the SecurityCenter API.
           module Paths
+            ##
+            # Create a fully-qualified ExternalSystem resource string.
+            #
+            # @overload external_system_path(organization:, source:, finding:, externalsystem:)
+            #   The resource will be in the following format:
+            #
+            #   `organizations/{organization}/sources/{source}/findings/{finding}/externalSystems/{externalsystem}`
+            #
+            #   @param organization [String]
+            #   @param source [String]
+            #   @param finding [String]
+            #   @param externalsystem [String]
+            #
+            # @overload external_system_path(folder:, source:, finding:, externalsystem:)
+            #   The resource will be in the following format:
+            #
+            #   `folders/{folder}/sources/{source}/findings/{finding}/externalSystems/{externalsystem}`
+            #
+            #   @param folder [String]
+            #   @param source [String]
+            #   @param finding [String]
+            #   @param externalsystem [String]
+            #
+            # @overload external_system_path(project:, source:, finding:, externalsystem:)
+            #   The resource will be in the following format:
+            #
+            #   `projects/{project}/sources/{source}/findings/{finding}/externalSystems/{externalsystem}`
+            #
+            #   @param project [String]
+            #   @param source [String]
+            #   @param finding [String]
+            #   @param externalsystem [String]
+            #
+            # @return [::String]
+            def external_system_path **args
+              resources = {
+                "externalsystem:finding:organization:source" => (proc do |organization:, source:, finding:, externalsystem:|
+                  raise ::ArgumentError, "organization cannot contain /" if organization.to_s.include? "/"
+                  raise ::ArgumentError, "source cannot contain /" if source.to_s.include? "/"
+                  raise ::ArgumentError, "finding cannot contain /" if finding.to_s.include? "/"
+
+                  "organizations/#{organization}/sources/#{source}/findings/#{finding}/externalSystems/#{externalsystem}"
+                end),
+                "externalsystem:finding:folder:source" => (proc do |folder:, source:, finding:, externalsystem:|
+                  raise ::ArgumentError, "folder cannot contain /" if folder.to_s.include? "/"
+                  raise ::ArgumentError, "source cannot contain /" if source.to_s.include? "/"
+                  raise ::ArgumentError, "finding cannot contain /" if finding.to_s.include? "/"
+
+                  "folders/#{folder}/sources/#{source}/findings/#{finding}/externalSystems/#{externalsystem}"
+                end),
+                "externalsystem:finding:project:source" => (proc do |project:, source:, finding:, externalsystem:|
+                  raise ::ArgumentError, "project cannot contain /" if project.to_s.include? "/"
+                  raise ::ArgumentError, "source cannot contain /" if source.to_s.include? "/"
+                  raise ::ArgumentError, "finding cannot contain /" if finding.to_s.include? "/"
+
+                  "projects/#{project}/sources/#{source}/findings/#{finding}/externalSystems/#{externalsystem}"
+                end)
+              }
+
+              resource = resources[args.keys.sort.join(":")]
+              raise ::ArgumentError, "no resource found for values #{args.keys}" if resource.nil?
+              resource.call(**args)
+            end
+
             ##
             # Create a fully-qualified Finding resource string.
             #
@@ -96,6 +160,58 @@ module Google
               "folders/#{folder}"
             end
 
+            ##
+            # Create a fully-qualified MuteConfig resource string.
+            #
+            # @overload mute_config_path(organization:, mute_config:)
+            #   The resource will be in the following format:
+            #
+            #   `organizations/{organization}/muteConfigs/{mute_config}`
+            #
+            #   @param organization [String]
+            #   @param mute_config [String]
+            #
+            # @overload mute_config_path(folder:, mute_config:)
+            #   The resource will be in the following format:
+            #
+            #   `folders/{folder}/muteConfigs/{mute_config}`
+            #
+            #   @param folder [String]
+            #   @param mute_config [String]
+            #
+            # @overload mute_config_path(project:, mute_config:)
+            #   The resource will be in the following format:
+            #
+            #   `projects/{project}/muteConfigs/{mute_config}`
+            #
+            #   @param project [String]
+            #   @param mute_config [String]
+            #
+            # @return [::String]
+            def mute_config_path **args
+              resources = {
+                "mute_config:organization" => (proc do |organization:, mute_config:|
+                  raise ::ArgumentError, "organization cannot contain /" if organization.to_s.include? "/"
+
+                  "organizations/#{organization}/muteConfigs/#{mute_config}"
+                end),
+                "folder:mute_config" => (proc do |folder:, mute_config:|
+                  raise ::ArgumentError, "folder cannot contain /" if folder.to_s.include? "/"
+
+                  "folders/#{folder}/muteConfigs/#{mute_config}"
+                end),
+                "mute_config:project" => (proc do |project:, mute_config:|
+                  raise ::ArgumentError, "project cannot contain /" if project.to_s.include? "/"
+
+                  "projects/#{project}/muteConfigs/#{mute_config}"
+                end)
+              }
+
+              resource = resources[args.keys.sort.join(":")]
+              raise ::ArgumentError, "no resource found for values #{args.keys}" if resource.nil?
+              resource.call(**args)
+            end
+
             ##
             # Create a fully-qualified NotificationConfig resource string.
             #

data/lib/google/cloud/security_center/v1/version.rb

@@ -21,7 +21,7 @@ module Google
   module Cloud
     module SecurityCenter
       module V1
-        VERSION = "0.10.0"
+        VERSION = "0.12.1"
       end
     end
   end

data/lib/google/cloud/securitycenter/v1/access_pb.rb

@@ -0,0 +1,32 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/cloud/securitycenter/v1/access.proto
+
+require 'google/api/annotations_pb'
+require 'google/protobuf'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/cloud/securitycenter/v1/access.proto", :syntax => :proto3) do
+    add_message "google.cloud.securitycenter.v1.Access" do
+      optional :principal_email, :string, 1
+      optional :caller_ip, :string, 2
+      optional :caller_ip_geo, :message, 3, "google.cloud.securitycenter.v1.Geolocation"
+      optional :user_agent_family, :string, 4
+      optional :service_name, :string, 5
+      optional :method_name, :string, 6
+    end
+    add_message "google.cloud.securitycenter.v1.Geolocation" do
+      optional :region_code, :string, 1
+    end
+  end
+end
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1
+        Access = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Access").msgclass
+        Geolocation = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Geolocation").msgclass
+      end
+    end
+  end
+end

data/lib/google/cloud/securitycenter/v1/external_system_pb.rb

@@ -0,0 +1,29 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/cloud/securitycenter/v1/external_system.proto
+
+require 'google/api/resource_pb'
+require 'google/protobuf/timestamp_pb'
+require 'google/api/annotations_pb'
+require 'google/protobuf'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/cloud/securitycenter/v1/external_system.proto", :syntax => :proto3) do
+    add_message "google.cloud.securitycenter.v1.ExternalSystem" do
+      optional :name, :string, 1
+      repeated :assignees, :string, 2
+      optional :external_uid, :string, 3
+      optional :status, :string, 4
+      optional :external_system_update_time, :message, 5, "google.protobuf.Timestamp"
+    end
+  end
+end
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1
+        ExternalSystem = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ExternalSystem").msgclass
+      end
+    end
+  end
+end

data/lib/google/cloud/securitycenter/v1/finding_pb.rb

@@ -1,14 +1,16 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/securitycenter/v1/finding.proto
 
+require 'google/api/annotations_pb'
 require 'google/api/field_behavior_pb'
 require 'google/api/resource_pb'
+require 'google/cloud/securitycenter/v1/access_pb'
+require 'google/cloud/securitycenter/v1/external_system_pb'
 require 'google/cloud/securitycenter/v1/indicator_pb'
 require 'google/cloud/securitycenter/v1/security_marks_pb'
 require 'google/cloud/securitycenter/v1/vulnerability_pb'
 require 'google/protobuf/struct_pb'
 require 'google/protobuf/timestamp_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do
@@ -26,9 +28,14 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :create_time, :message, 10, "google.protobuf.Timestamp"
       optional :severity, :enum, 12, "google.cloud.securitycenter.v1.Finding.Severity"
       optional :canonical_name, :string, 14
+      optional :mute, :enum, 15, "google.cloud.securitycenter.v1.Finding.Mute"
       optional :finding_class, :enum, 17, "google.cloud.securitycenter.v1.Finding.FindingClass"
       optional :indicator, :message, 18, "google.cloud.securitycenter.v1.Indicator"
       optional :vulnerability, :message, 20, "google.cloud.securitycenter.v1.Vulnerability"
+      optional :mute_update_time, :message, 21, "google.protobuf.Timestamp"
+      map :external_systems, :string, :message, 22, "google.cloud.securitycenter.v1.ExternalSystem"
+      optional :access, :message, 26, "google.cloud.securitycenter.v1.Access"
+      optional :mute_initiator, :string, 28
     end
     add_enum "google.cloud.securitycenter.v1.Finding.State" do
       value :STATE_UNSPECIFIED, 0
@@ -42,6 +49,12 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       value :MEDIUM, 3
       value :LOW, 4
     end
+    add_enum "google.cloud.securitycenter.v1.Finding.Mute" do
+      value :MUTE_UNSPECIFIED, 0
+      value :MUTED, 1
+      value :UNMUTED, 2
+      value :UNDEFINED, 4
+    end
     add_enum "google.cloud.securitycenter.v1.Finding.FindingClass" do
       value :FINDING_CLASS_UNSPECIFIED, 0
       value :THREAT, 1
@@ -59,6 +72,7 @@ module Google
         Finding = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding").msgclass
         Finding::State = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding.State").enummodule
         Finding::Severity = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding.Severity").enummodule
+        Finding::Mute = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding.Mute").enummodule
         Finding::FindingClass = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding.FindingClass").enummodule
       end
     end

data/lib/google/cloud/securitycenter/v1/mute_config_pb.rb

@@ -0,0 +1,32 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/cloud/securitycenter/v1/mute_config.proto
+
+require 'google/api/field_behavior_pb'
+require 'google/api/resource_pb'
+require 'google/protobuf/timestamp_pb'
+require 'google/api/annotations_pb'
+require 'google/protobuf'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/cloud/securitycenter/v1/mute_config.proto", :syntax => :proto3) do
+    add_message "google.cloud.securitycenter.v1.MuteConfig" do
+      optional :name, :string, 1
+      optional :display_name, :string, 2
+      optional :description, :string, 3
+      optional :filter, :string, 4
+      optional :create_time, :message, 5, "google.protobuf.Timestamp"
+      optional :update_time, :message, 6, "google.protobuf.Timestamp"
+      optional :most_recent_editor, :string, 7
+    end
+  end
+end
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1
+        MuteConfig = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.MuteConfig").msgclass
+      end
+    end
+  end
+end

data/lib/google/cloud/securitycenter/v1/securitycenter_service_pb.rb

@@ -1,16 +1,18 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/securitycenter/v1/securitycenter_service.proto
 
-require 'google/cloud/securitycenter/v1/run_asset_discovery_response_pb'
 require 'google/api/annotations_pb'
 require 'google/api/client_pb'
 require 'google/api/field_behavior_pb'
 require 'google/api/resource_pb'
 require 'google/cloud/securitycenter/v1/asset_pb'
+require 'google/cloud/securitycenter/v1/external_system_pb'
 require 'google/cloud/securitycenter/v1/finding_pb'
 require 'google/cloud/securitycenter/v1/folder_pb'
+require 'google/cloud/securitycenter/v1/mute_config_pb'
 require 'google/cloud/securitycenter/v1/notification_config_pb'
 require 'google/cloud/securitycenter/v1/organization_settings_pb'
+require 'google/cloud/securitycenter/v1/run_asset_discovery_response_pb'
 require 'google/cloud/securitycenter/v1/security_marks_pb'
 require 'google/cloud/securitycenter/v1/source_pb'
 require 'google/iam/v1/iam_policy_pb'
@@ -25,11 +27,23 @@ require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/securitycenter/v1/securitycenter_service.proto", :syntax => :proto3) do
+    add_message "google.cloud.securitycenter.v1.BulkMuteFindingsRequest" do
+      optional :parent, :string, 1
+      optional :filter, :string, 2
+      optional :mute_annotation, :string, 3
+    end
+    add_message "google.cloud.securitycenter.v1.BulkMuteFindingsResponse" do
+    end
     add_message "google.cloud.securitycenter.v1.CreateFindingRequest" do
       optional :parent, :string, 1
       optional :finding_id, :string, 2
       optional :finding, :message, 3, "google.cloud.securitycenter.v1.Finding"
     end
+    add_message "google.cloud.securitycenter.v1.CreateMuteConfigRequest" do
+      optional :parent, :string, 1
+      optional :mute_config, :message, 2, "google.cloud.securitycenter.v1.MuteConfig"
+      optional :mute_config_id, :string, 3
+    end
     add_message "google.cloud.securitycenter.v1.CreateNotificationConfigRequest" do
       optional :parent, :string, 1
       optional :config_id, :string, 2
@@ -39,9 +53,15 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :parent, :string, 1
       optional :source, :message, 2, "google.cloud.securitycenter.v1.Source"
     end
+    add_message "google.cloud.securitycenter.v1.DeleteMuteConfigRequest" do
+      optional :name, :string, 1
+    end
     add_message "google.cloud.securitycenter.v1.DeleteNotificationConfigRequest" do
       optional :name, :string, 1
     end
+    add_message "google.cloud.securitycenter.v1.GetMuteConfigRequest" do
+      optional :name, :string, 1
+    end
     add_message "google.cloud.securitycenter.v1.GetNotificationConfigRequest" do
       optional :name, :string, 1
     end
@@ -85,6 +105,15 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       map :properties, :string, :message, 1, "google.protobuf.Value"
       optional :count, :int64, 2
     end
+    add_message "google.cloud.securitycenter.v1.ListMuteConfigsRequest" do
+      optional :parent, :string, 1
+      optional :page_size, :int32, 2
+      optional :page_token, :string, 3
+    end
+    add_message "google.cloud.securitycenter.v1.ListMuteConfigsResponse" do
+      repeated :mute_configs, :message, 1, "google.cloud.securitycenter.v1.MuteConfig"
+      optional :next_page_token, :string, 2
+    end
     add_message "google.cloud.securitycenter.v1.ListNotificationConfigsRequest" do
       optional :parent, :string, 1
       optional :page_token, :string, 2
@@ -172,13 +201,25 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :state, :enum, 2, "google.cloud.securitycenter.v1.Finding.State"
       optional :start_time, :message, 3, "google.protobuf.Timestamp"
     end
+    add_message "google.cloud.securitycenter.v1.SetMuteRequest" do
+      optional :name, :string, 1
+      optional :mute, :enum, 2, "google.cloud.securitycenter.v1.Finding.Mute"
+    end
     add_message "google.cloud.securitycenter.v1.RunAssetDiscoveryRequest" do
       optional :parent, :string, 1
     end
+    add_message "google.cloud.securitycenter.v1.UpdateExternalSystemRequest" do
+      optional :external_system, :message, 1, "google.cloud.securitycenter.v1.ExternalSystem"
+      optional :update_mask, :message, 2, "google.protobuf.FieldMask"
+    end
     add_message "google.cloud.securitycenter.v1.UpdateFindingRequest" do
       optional :finding, :message, 1, "google.cloud.securitycenter.v1.Finding"
       optional :update_mask, :message, 2, "google.protobuf.FieldMask"
     end
+    add_message "google.cloud.securitycenter.v1.UpdateMuteConfigRequest" do
+      optional :mute_config, :message, 1, "google.cloud.securitycenter.v1.MuteConfig"
+      optional :update_mask, :message, 2, "google.protobuf.FieldMask"
+    end
     add_message "google.cloud.securitycenter.v1.UpdateNotificationConfigRequest" do
       optional :notification_config, :message, 1, "google.cloud.securitycenter.v1.NotificationConfig"
       optional :update_mask, :message, 2, "google.protobuf.FieldMask"
@@ -203,10 +244,15 @@ module Google
   module Cloud
     module SecurityCenter
       module V1
+        BulkMuteFindingsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.BulkMuteFindingsRequest").msgclass
+        BulkMuteFindingsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.BulkMuteFindingsResponse").msgclass
         CreateFindingRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.CreateFindingRequest").msgclass
+        CreateMuteConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.CreateMuteConfigRequest").msgclass
         CreateNotificationConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.CreateNotificationConfigRequest").msgclass
         CreateSourceRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.CreateSourceRequest").msgclass
+        DeleteMuteConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.DeleteMuteConfigRequest").msgclass
         DeleteNotificationConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.DeleteNotificationConfigRequest").msgclass
+        GetMuteConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.GetMuteConfigRequest").msgclass
         GetNotificationConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.GetNotificationConfigRequest").msgclass
         GetOrganizationSettingsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.GetOrganizationSettingsRequest").msgclass
         GetSourceRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.GetSourceRequest").msgclass
@@ -215,6 +261,8 @@ module Google
         GroupFindingsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.GroupFindingsRequest").msgclass
         GroupFindingsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.GroupFindingsResponse").msgclass
         GroupResult = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.GroupResult").msgclass
+        ListMuteConfigsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ListMuteConfigsRequest").msgclass
+        ListMuteConfigsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ListMuteConfigsResponse").msgclass
         ListNotificationConfigsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ListNotificationConfigsRequest").msgclass
         ListNotificationConfigsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ListNotificationConfigsResponse").msgclass
         ListSourcesRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ListSourcesRequest").msgclass
@@ -229,8 +277,11 @@ module Google
         ListFindingsResponse::ListFindingsResult::Resource = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult.Resource").msgclass
         ListFindingsResponse::ListFindingsResult::StateChange = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult.StateChange").enummodule
         SetFindingStateRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.SetFindingStateRequest").msgclass
+        SetMuteRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.SetMuteRequest").msgclass
         RunAssetDiscoveryRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.RunAssetDiscoveryRequest").msgclass
+        UpdateExternalSystemRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.UpdateExternalSystemRequest").msgclass
         UpdateFindingRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.UpdateFindingRequest").msgclass
+        UpdateMuteConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.UpdateMuteConfigRequest").msgclass
         UpdateNotificationConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.UpdateNotificationConfigRequest").msgclass
         UpdateOrganizationSettingsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.UpdateOrganizationSettingsRequest").msgclass
         UpdateSourceRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.UpdateSourceRequest").msgclass

data/lib/google/cloud/securitycenter/v1/securitycenter_service_services_pb.rb

@@ -33,17 +33,27 @@ module Google
             self.unmarshal_class_method = :decode
             self.service_name = 'google.cloud.securitycenter.v1.SecurityCenter'
 
+            # Kicks off an LRO to bulk mute findings for a parent based on a filter. The
+            # parent can be either an organization, folder or project. The findings
+            # matched by the filter will be muted after the LRO is done.
+            rpc :BulkMuteFindings, ::Google::Cloud::SecurityCenter::V1::BulkMuteFindingsRequest, ::Google::Longrunning::Operation
             # Creates a source.
             rpc :CreateSource, ::Google::Cloud::SecurityCenter::V1::CreateSourceRequest, ::Google::Cloud::SecurityCenter::V1::Source
             # Creates a finding. The corresponding source must exist for finding creation
             # to succeed.
             rpc :CreateFinding, ::Google::Cloud::SecurityCenter::V1::CreateFindingRequest, ::Google::Cloud::SecurityCenter::V1::Finding
+            # Creates a mute config.
+            rpc :CreateMuteConfig, ::Google::Cloud::SecurityCenter::V1::CreateMuteConfigRequest, ::Google::Cloud::SecurityCenter::V1::MuteConfig
             # Creates a notification config.
             rpc :CreateNotificationConfig, ::Google::Cloud::SecurityCenter::V1::CreateNotificationConfigRequest, ::Google::Cloud::SecurityCenter::V1::NotificationConfig
+            # Deletes an existing mute config.
+            rpc :DeleteMuteConfig, ::Google::Cloud::SecurityCenter::V1::DeleteMuteConfigRequest, ::Google::Protobuf::Empty
             # Deletes a notification config.
             rpc :DeleteNotificationConfig, ::Google::Cloud::SecurityCenter::V1::DeleteNotificationConfigRequest, ::Google::Protobuf::Empty
             # Gets the access control policy on the specified Source.
             rpc :GetIamPolicy, ::Google::Iam::V1::GetIamPolicyRequest, ::Google::Iam::V1::Policy
+            # Gets a mute config.
+            rpc :GetMuteConfig, ::Google::Cloud::SecurityCenter::V1::GetMuteConfigRequest, ::Google::Cloud::SecurityCenter::V1::MuteConfig
             # Gets a notification config.
             rpc :GetNotificationConfig, ::Google::Cloud::SecurityCenter::V1::GetNotificationConfigRequest, ::Google::Cloud::SecurityCenter::V1::NotificationConfig
             # Gets the settings for an organization.
@@ -68,6 +78,8 @@ module Google
             # To list across all sources provide a `-` as the source id.
             # Example: /v1/organizations/{organization_id}/sources/-/findings
             rpc :ListFindings, ::Google::Cloud::SecurityCenter::V1::ListFindingsRequest, ::Google::Cloud::SecurityCenter::V1::ListFindingsResponse
+            # Lists mute configs.
+            rpc :ListMuteConfigs, ::Google::Cloud::SecurityCenter::V1::ListMuteConfigsRequest, ::Google::Cloud::SecurityCenter::V1::ListMuteConfigsResponse
             # Lists notification configs.
             rpc :ListNotificationConfigs, ::Google::Cloud::SecurityCenter::V1::ListNotificationConfigsRequest, ::Google::Cloud::SecurityCenter::V1::ListNotificationConfigsResponse
             # Lists all sources belonging to an organization.
@@ -81,13 +93,19 @@ module Google
             rpc :RunAssetDiscovery, ::Google::Cloud::SecurityCenter::V1::RunAssetDiscoveryRequest, ::Google::Longrunning::Operation
             # Updates the state of a finding.
             rpc :SetFindingState, ::Google::Cloud::SecurityCenter::V1::SetFindingStateRequest, ::Google::Cloud::SecurityCenter::V1::Finding
+            # Updates the mute state of a finding.
+            rpc :SetMute, ::Google::Cloud::SecurityCenter::V1::SetMuteRequest, ::Google::Cloud::SecurityCenter::V1::Finding
             # Sets the access control policy on the specified Source.
             rpc :SetIamPolicy, ::Google::Iam::V1::SetIamPolicyRequest, ::Google::Iam::V1::Policy
             # Returns the permissions that a caller has on the specified source.
             rpc :TestIamPermissions, ::Google::Iam::V1::TestIamPermissionsRequest, ::Google::Iam::V1::TestIamPermissionsResponse
+            # Updates external system. This is for a given finding.
+            rpc :UpdateExternalSystem, ::Google::Cloud::SecurityCenter::V1::UpdateExternalSystemRequest, ::Google::Cloud::SecurityCenter::V1::ExternalSystem
             # Creates or updates a finding. The corresponding source must exist for a
             # finding creation to succeed.
             rpc :UpdateFinding, ::Google::Cloud::SecurityCenter::V1::UpdateFindingRequest, ::Google::Cloud::SecurityCenter::V1::Finding
+            # Updates a mute config.
+            rpc :UpdateMuteConfig, ::Google::Cloud::SecurityCenter::V1::UpdateMuteConfigRequest, ::Google::Cloud::SecurityCenter::V1::MuteConfig
             #
             # Updates a notification config. The following update
             # fields are allowed: description, pubsub_topic, streaming_config.filter

data/proto_docs/google/api/resource.rb

@@ -33,11 +33,7 @@ module Google
     #       // For Kubernetes resources, the format is {api group}/{kind}.
     #       option (google.api.resource) = {
     #         type: "pubsub.googleapis.com/Topic"
-    #         name_descriptor: {
-    #           pattern: "projects/{project}/topics/{topic}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
-    #         }
+    #         pattern: "projects/{project}/topics/{topic}"
     #       };
     #     }
     #
@@ -45,10 +41,7 @@ module Google
     #
     #     resources:
     #     - type: "pubsub.googleapis.com/Topic"
-    #       name_descriptor:
-    #         - pattern: "projects/{project}/topics/{topic}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
+    #       pattern: "projects/{project}/topics/{topic}"
     #
     # Sometimes, resources have multiple patterns, typically because they can
     # live under multiple parents.
@@ -58,26 +51,10 @@ module Google
     #     message LogEntry {
     #       option (google.api.resource) = {
     #         type: "logging.googleapis.com/LogEntry"
-    #         name_descriptor: {
-    #           pattern: "projects/{project}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "folders/{folder}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
-    #           parent_name_extractor: "folders/{folder}"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "organizations/{organization}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Organization"
-    #           parent_name_extractor: "organizations/{organization}"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "billingAccounts/{billing_account}/logs/{log}"
-    #           parent_type: "billing.googleapis.com/BillingAccount"
-    #           parent_name_extractor: "billingAccounts/{billing_account}"
-    #         }
+    #         pattern: "projects/{project}/logs/{log}"
+    #         pattern: "folders/{folder}/logs/{log}"
+    #         pattern: "organizations/{organization}/logs/{log}"
+    #         pattern: "billingAccounts/{billing_account}/logs/{log}"
     #       };
     #     }
     #
@@ -85,48 +62,10 @@ module Google
     #
     #     resources:
     #     - type: 'logging.googleapis.com/LogEntry'
-    #       name_descriptor:
-    #         - pattern: "projects/{project}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #           parent_name_extractor: "projects/{project}"
-    #         - pattern: "folders/{folder}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
-    #           parent_name_extractor: "folders/{folder}"
-    #         - pattern: "organizations/{organization}/logs/{log}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Organization"
-    #           parent_name_extractor: "organizations/{organization}"
-    #         - pattern: "billingAccounts/{billing_account}/logs/{log}"
-    #           parent_type: "billing.googleapis.com/BillingAccount"
-    #           parent_name_extractor: "billingAccounts/{billing_account}"
-    #
-    # For flexible resources, the resource name doesn't contain parent names, but
-    # the resource itself has parents for policy evaluation.
-    #
-    # Example:
-    #
-    #     message Shelf {
-    #       option (google.api.resource) = {
-    #         type: "library.googleapis.com/Shelf"
-    #         name_descriptor: {
-    #           pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #         }
-    #         name_descriptor: {
-    #           pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
-    #         }
-    #       };
-    #     }
-    #
-    # The ResourceDescriptor Yaml config will look like:
-    #
-    #     resources:
-    #     - type: 'library.googleapis.com/Shelf'
-    #       name_descriptor:
-    #         - pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Project"
-    #         - pattern: "shelves/{shelf}"
-    #           parent_type: "cloudresourcemanager.googleapis.com/Folder"
+    #       pattern: "projects/{project}/logs/{log}"
+    #       pattern: "folders/{folder}/logs/{log}"
+    #       pattern: "organizations/{organization}/logs/{log}"
+    #       pattern: "billingAccounts/{billing_account}/logs/{log}"
     # @!attribute [rw] type
     #   @return [::String]
     #     The resource type. It must be in the format of

data/proto_docs/google/cloud/securitycenter/v1/access.rb

@@ -0,0 +1,61 @@
+# frozen_string_literal: true
+
+# Copyright 2022 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1
+        # Represents an access event.
+        # @!attribute [rw] principal_email
+        #   @return [::String]
+        #     Associated email, such as "foo@google.com".
+        # @!attribute [rw] caller_ip
+        #   @return [::String]
+        #     Caller's IP address, such as "1.1.1.1".
+        # @!attribute [rw] caller_ip_geo
+        #   @return [::Google::Cloud::SecurityCenter::V1::Geolocation]
+        #     The caller IP's geolocation, which identifies where the call came from.
+        # @!attribute [rw] user_agent_family
+        #   @return [::String]
+        #     What kind of user agent is associated, e.g. operating system shells,
+        #     embedded or stand-alone applications, etc.
+        # @!attribute [rw] service_name
+        #   @return [::String]
+        #     This is the API service that the service account made a call to, e.g.
+        #     "iam.googleapis.com"
+        # @!attribute [rw] method_name
+        #   @return [::String]
+        #     The method that the service account called, e.g. "SetIamPolicy".
+        class Access
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Represents a geographical location for a given access.
+        # @!attribute [rw] region_code
+        #   @return [::String]
+        #     A CLDR.
+        class Geolocation
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end