google-cloud-security_center-v1 0.12.0 → 0.14.0

data/lib/google/cloud/security_center/v1/security_center/paths.rb

@@ -24,6 +24,58 @@ module Google
         module SecurityCenter
           # Path helper methods for the SecurityCenter API.
           module Paths
+            ##
+            # Create a fully-qualified BigQueryExport resource string.
+            #
+            # @overload big_query_export_path(organization:, export:)
+            #   The resource will be in the following format:
+            #
+            #   `organizations/{organization}/bigQueryExports/{export}`
+            #
+            #   @param organization [String]
+            #   @param export [String]
+            #
+            # @overload big_query_export_path(folder:, export:)
+            #   The resource will be in the following format:
+            #
+            #   `folders/{folder}/bigQueryExports/{export}`
+            #
+            #   @param folder [String]
+            #   @param export [String]
+            #
+            # @overload big_query_export_path(project:, export:)
+            #   The resource will be in the following format:
+            #
+            #   `projects/{project}/bigQueryExports/{export}`
+            #
+            #   @param project [String]
+            #   @param export [String]
+            #
+            # @return [::String]
+            def big_query_export_path **args
+              resources = {
+                "export:organization" => (proc do |organization:, export:|
+                  raise ::ArgumentError, "organization cannot contain /" if organization.to_s.include? "/"
+
+                  "organizations/#{organization}/bigQueryExports/#{export}"
+                end),
+                "export:folder" => (proc do |folder:, export:|
+                  raise ::ArgumentError, "folder cannot contain /" if folder.to_s.include? "/"
+
+                  "folders/#{folder}/bigQueryExports/#{export}"
+                end),
+                "export:project" => (proc do |project:, export:|
+                  raise ::ArgumentError, "project cannot contain /" if project.to_s.include? "/"
+
+                  "projects/#{project}/bigQueryExports/#{export}"
+                end)
+              }
+
+              resource = resources[args.keys.sort.join(":")]
+              raise ::ArgumentError, "no resource found for values #{args.keys}" if resource.nil?
+              resource.call(**args)
+            end
+
             ##
             # Create a fully-qualified ExternalSystem resource string.
             #

data/lib/google/cloud/security_center/v1/version.rb

@@ -21,7 +21,7 @@ module Google
   module Cloud
     module SecurityCenter
       module V1
-        VERSION = "0.12.0"
+        VERSION = "0.14.0"
       end
     end
   end

data/lib/google/cloud/security_center/v1.rb

@@ -25,6 +25,8 @@ module Google
       ##
       # To load this package, including all its services, and instantiate a client:
       #
+      # @example
+      #
       #     require "google/cloud/security_center/v1"
       #     client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
       #

data/lib/google/cloud/securitycenter/v1/access_pb.rb

@@ -1,7 +1,6 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/securitycenter/v1/access.proto
 
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/asset_pb.rb

@@ -6,7 +6,6 @@ require 'google/cloud/securitycenter/v1/folder_pb'
 require 'google/cloud/securitycenter/v1/security_marks_pb'
 require 'google/protobuf/struct_pb'
 require 'google/protobuf/timestamp_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/bigquery_export_pb.rb

@@ -0,0 +1,32 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/cloud/securitycenter/v1/bigquery_export.proto
+
+require 'google/api/field_behavior_pb'
+require 'google/api/resource_pb'
+require 'google/protobuf/timestamp_pb'
+require 'google/protobuf'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/cloud/securitycenter/v1/bigquery_export.proto", :syntax => :proto3) do
+    add_message "google.cloud.securitycenter.v1.BigQueryExport" do
+      optional :name, :string, 1
+      optional :description, :string, 2
+      optional :filter, :string, 3
+      optional :dataset, :string, 4
+      optional :create_time, :message, 5, "google.protobuf.Timestamp"
+      optional :update_time, :message, 6, "google.protobuf.Timestamp"
+      optional :most_recent_editor, :string, 7
+      optional :principal, :string, 8
+    end
+  end
+end
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1
+        BigQueryExport = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.BigQueryExport").msgclass
+      end
+    end
+  end
+end

data/lib/google/cloud/securitycenter/v1/external_system_pb.rb

@@ -3,7 +3,6 @@
 
 require 'google/api/resource_pb'
 require 'google/protobuf/timestamp_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/finding_pb.rb

@@ -1,12 +1,13 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/securitycenter/v1/finding.proto
 
-require 'google/api/annotations_pb'
 require 'google/api/field_behavior_pb'
 require 'google/api/resource_pb'
 require 'google/cloud/securitycenter/v1/access_pb'
 require 'google/cloud/securitycenter/v1/external_system_pb'
+require 'google/cloud/securitycenter/v1/iam_binding_pb'
 require 'google/cloud/securitycenter/v1/indicator_pb'
+require 'google/cloud/securitycenter/v1/mitre_attack_pb'
 require 'google/cloud/securitycenter/v1/security_marks_pb'
 require 'google/cloud/securitycenter/v1/vulnerability_pb'
 require 'google/protobuf/struct_pb'
@@ -34,8 +35,11 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :vulnerability, :message, 20, "google.cloud.securitycenter.v1.Vulnerability"
       optional :mute_update_time, :message, 21, "google.protobuf.Timestamp"
       map :external_systems, :string, :message, 22, "google.cloud.securitycenter.v1.ExternalSystem"
+      optional :mitre_attack, :message, 25, "google.cloud.securitycenter.v1.MitreAttack"
       optional :access, :message, 26, "google.cloud.securitycenter.v1.Access"
       optional :mute_initiator, :string, 28
+      repeated :iam_bindings, :message, 39, "google.cloud.securitycenter.v1.IamBinding"
+      optional :next_steps, :string, 40
     end
     add_enum "google.cloud.securitycenter.v1.Finding.State" do
       value :STATE_UNSPECIFIED, 0
@@ -61,6 +65,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       value :VULNERABILITY, 2
       value :MISCONFIGURATION, 3
       value :OBSERVATION, 4
+      value :SCC_ERROR, 5
     end
   end
 end

data/lib/google/cloud/securitycenter/v1/folder_pb.rb

@@ -1,7 +1,6 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/securitycenter/v1/folder.proto
 
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/iam_binding_pb.rb

@@ -0,0 +1,30 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/cloud/securitycenter/v1/iam_binding.proto
+
+require 'google/protobuf'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/cloud/securitycenter/v1/iam_binding.proto", :syntax => :proto3) do
+    add_message "google.cloud.securitycenter.v1.IamBinding" do
+      optional :action, :enum, 1, "google.cloud.securitycenter.v1.IamBinding.Action"
+      optional :role, :string, 2
+      optional :member, :string, 3
+    end
+    add_enum "google.cloud.securitycenter.v1.IamBinding.Action" do
+      value :ACTION_UNSPECIFIED, 0
+      value :ADD, 1
+      value :REMOVE, 2
+    end
+  end
+end
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1
+        IamBinding = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.IamBinding").msgclass
+        IamBinding::Action = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.IamBinding.Action").enummodule
+      end
+    end
+  end
+end

data/lib/google/cloud/securitycenter/v1/indicator_pb.rb

@@ -1,7 +1,6 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/securitycenter/v1/indicator.proto
 
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/mitre_attack_pb.rb

@@ -0,0 +1,78 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/cloud/securitycenter/v1/mitre_attack.proto
+
+require 'google/protobuf'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/cloud/securitycenter/v1/mitre_attack.proto", :syntax => :proto3) do
+    add_message "google.cloud.securitycenter.v1.MitreAttack" do
+      optional :primary_tactic, :enum, 1, "google.cloud.securitycenter.v1.MitreAttack.Tactic"
+      repeated :primary_techniques, :enum, 2, "google.cloud.securitycenter.v1.MitreAttack.Technique"
+      repeated :additional_tactics, :enum, 3, "google.cloud.securitycenter.v1.MitreAttack.Tactic"
+      repeated :additional_techniques, :enum, 4, "google.cloud.securitycenter.v1.MitreAttack.Technique"
+      optional :version, :string, 5
+    end
+    add_enum "google.cloud.securitycenter.v1.MitreAttack.Tactic" do
+      value :TACTIC_UNSPECIFIED, 0
+      value :RECONNAISSANCE, 1
+      value :RESOURCE_DEVELOPMENT, 2
+      value :INITIAL_ACCESS, 5
+      value :EXECUTION, 3
+      value :PERSISTENCE, 6
+      value :PRIVILEGE_ESCALATION, 8
+      value :DEFENSE_EVASION, 7
+      value :CREDENTIAL_ACCESS, 9
+      value :DISCOVERY, 10
+      value :LATERAL_MOVEMENT, 11
+      value :COLLECTION, 12
+      value :COMMAND_AND_CONTROL, 4
+      value :EXFILTRATION, 13
+      value :IMPACT, 14
+    end
+    add_enum "google.cloud.securitycenter.v1.MitreAttack.Technique" do
+      value :TECHNIQUE_UNSPECIFIED, 0
+      value :ACTIVE_SCANNING, 1
+      value :SCANNING_IP_BLOCKS, 2
+      value :INGRESS_TOOL_TRANSFER, 3
+      value :NATIVE_API, 4
+      value :SHARED_MODULES, 5
+      value :COMMAND_AND_SCRIPTING_INTERPRETER, 6
+      value :UNIX_SHELL, 7
+      value :RESOURCE_HIJACKING, 8
+      value :PROXY, 9
+      value :EXTERNAL_PROXY, 10
+      value :MULTI_HOP_PROXY, 11
+      value :DYNAMIC_RESOLUTION, 12
+      value :UNSECURED_CREDENTIALS, 13
+      value :VALID_ACCOUNTS, 14
+      value :LOCAL_ACCOUNTS, 15
+      value :CLOUD_ACCOUNTS, 16
+      value :NETWORK_DENIAL_OF_SERVICE, 17
+      value :PERMISSION_GROUPS_DISCOVERY, 18
+      value :CLOUD_GROUPS, 19
+      value :EXFILTRATION_OVER_WEB_SERVICE, 20
+      value :EXFILTRATION_TO_CLOUD_STORAGE, 21
+      value :ACCOUNT_MANIPULATION, 22
+      value :SSH_AUTHORIZED_KEYS, 23
+      value :CREATE_OR_MODIFY_SYSTEM_PROCESS, 24
+      value :STEAL_WEB_SESSION_COOKIE, 25
+      value :MODIFY_CLOUD_COMPUTE_INFRASTRUCTURE, 26
+      value :EXPLOIT_PUBLIC_FACING_APPLICATION, 27
+      value :MODIFY_AUTHENTICATION_PROCESS, 28
+      value :DATA_DESTRUCTION, 29
+      value :DOMAIN_POLICY_MODIFICATION, 30
+    end
+  end
+end
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1
+        MitreAttack = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.MitreAttack").msgclass
+        MitreAttack::Tactic = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.MitreAttack.Tactic").enummodule
+        MitreAttack::Technique = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.MitreAttack.Technique").enummodule
+      end
+    end
+  end
+end

data/lib/google/cloud/securitycenter/v1/mute_config_pb.rb

@@ -4,7 +4,6 @@
 require 'google/api/field_behavior_pb'
 require 'google/api/resource_pb'
 require 'google/protobuf/timestamp_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/notification_config_pb.rb

@@ -3,7 +3,6 @@
 
 require 'google/api/field_behavior_pb'
 require 'google/api/resource_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/notification_message_pb.rb

@@ -3,7 +3,6 @@
 
 require 'google/cloud/securitycenter/v1/finding_pb'
 require 'google/cloud/securitycenter/v1/resource_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/organization_settings_pb.rb

@@ -2,7 +2,6 @@
 # source: google/cloud/securitycenter/v1/organization_settings.proto
 
 require 'google/api/resource_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/resource_pb.rb

@@ -3,20 +3,19 @@
 
 require 'google/api/field_behavior_pb'
 require 'google/cloud/securitycenter/v1/folder_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/securitycenter/v1/resource.proto", :syntax => :proto3) do
     add_message "google.cloud.securitycenter.v1.Resource" do
       optional :name, :string, 1
+      optional :display_name, :string, 8
+      optional :type, :string, 6
       optional :project, :string, 2
       optional :project_display_name, :string, 3
       optional :parent, :string, 4
       optional :parent_display_name, :string, 5
-      optional :type, :string, 6
       repeated :folders, :message, 7, "google.cloud.securitycenter.v1.Folder"
-      optional :display_name, :string, 8
     end
   end
 end

data/lib/google/cloud/securitycenter/v1/run_asset_discovery_response_pb.rb

@@ -2,7 +2,6 @@
 # source: google/cloud/securitycenter/v1/run_asset_discovery_response.proto
 
 require 'google/protobuf/duration_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/security_marks_pb.rb

@@ -2,7 +2,6 @@
 # source: google/cloud/securitycenter/v1/security_marks.proto
 
 require 'google/api/resource_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/securitycenter_service_pb.rb

@@ -1,18 +1,19 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/securitycenter/v1/securitycenter_service.proto
 
+require 'google/cloud/securitycenter/v1/run_asset_discovery_response_pb'
 require 'google/api/annotations_pb'
 require 'google/api/client_pb'
 require 'google/api/field_behavior_pb'
 require 'google/api/resource_pb'
 require 'google/cloud/securitycenter/v1/asset_pb'
+require 'google/cloud/securitycenter/v1/bigquery_export_pb'
 require 'google/cloud/securitycenter/v1/external_system_pb'
 require 'google/cloud/securitycenter/v1/finding_pb'
 require 'google/cloud/securitycenter/v1/folder_pb'
 require 'google/cloud/securitycenter/v1/mute_config_pb'
 require 'google/cloud/securitycenter/v1/notification_config_pb'
 require 'google/cloud/securitycenter/v1/organization_settings_pb'
-require 'google/cloud/securitycenter/v1/run_asset_discovery_response_pb'
 require 'google/cloud/securitycenter/v1/security_marks_pb'
 require 'google/cloud/securitycenter/v1/source_pb'
 require 'google/iam/v1/iam_policy_pb'
@@ -59,6 +60,9 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
     add_message "google.cloud.securitycenter.v1.DeleteNotificationConfigRequest" do
       optional :name, :string, 1
     end
+    add_message "google.cloud.securitycenter.v1.GetBigQueryExportRequest" do
+      optional :name, :string, 1
+    end
     add_message "google.cloud.securitycenter.v1.GetMuteConfigRequest" do
       optional :name, :string, 1
     end
@@ -181,13 +185,13 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
     end
     add_message "google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult.Resource" do
       optional :name, :string, 1
+      optional :display_name, :string, 8
+      optional :type, :string, 6
       optional :project_name, :string, 2
       optional :project_display_name, :string, 3
       optional :parent_name, :string, 4
       optional :parent_display_name, :string, 5
-      optional :type, :string, 6
       repeated :folders, :message, 7, "google.cloud.securitycenter.v1.Folder"
-      optional :display_name, :string, 8
     end
     add_enum "google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult.StateChange" do
       value :UNUSED, 0
@@ -237,6 +241,27 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :update_mask, :message, 2, "google.protobuf.FieldMask"
       optional :start_time, :message, 3, "google.protobuf.Timestamp"
     end
+    add_message "google.cloud.securitycenter.v1.CreateBigQueryExportRequest" do
+      optional :parent, :string, 1
+      optional :big_query_export, :message, 2, "google.cloud.securitycenter.v1.BigQueryExport"
+      optional :big_query_export_id, :string, 3
+    end
+    add_message "google.cloud.securitycenter.v1.UpdateBigQueryExportRequest" do
+      optional :big_query_export, :message, 1, "google.cloud.securitycenter.v1.BigQueryExport"
+      optional :update_mask, :message, 2, "google.protobuf.FieldMask"
+    end
+    add_message "google.cloud.securitycenter.v1.ListBigQueryExportsRequest" do
+      optional :parent, :string, 1
+      optional :page_size, :int32, 2
+      optional :page_token, :string, 3
+    end
+    add_message "google.cloud.securitycenter.v1.ListBigQueryExportsResponse" do
+      repeated :big_query_exports, :message, 1, "google.cloud.securitycenter.v1.BigQueryExport"
+      optional :next_page_token, :string, 2
+    end
+    add_message "google.cloud.securitycenter.v1.DeleteBigQueryExportRequest" do
+      optional :name, :string, 1
+    end
   end
 end
 
@@ -252,6 +277,7 @@ module Google
         CreateSourceRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.CreateSourceRequest").msgclass
         DeleteMuteConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.DeleteMuteConfigRequest").msgclass
         DeleteNotificationConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.DeleteNotificationConfigRequest").msgclass
+        GetBigQueryExportRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.GetBigQueryExportRequest").msgclass
         GetMuteConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.GetMuteConfigRequest").msgclass
         GetNotificationConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.GetNotificationConfigRequest").msgclass
         GetOrganizationSettingsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.GetOrganizationSettingsRequest").msgclass
@@ -286,6 +312,11 @@ module Google
         UpdateOrganizationSettingsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.UpdateOrganizationSettingsRequest").msgclass
         UpdateSourceRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.UpdateSourceRequest").msgclass
         UpdateSecurityMarksRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.UpdateSecurityMarksRequest").msgclass
+        CreateBigQueryExportRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.CreateBigQueryExportRequest").msgclass
+        UpdateBigQueryExportRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.UpdateBigQueryExportRequest").msgclass
+        ListBigQueryExportsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ListBigQueryExportsRequest").msgclass
+        ListBigQueryExportsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.ListBigQueryExportsResponse").msgclass
+        DeleteBigQueryExportRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.DeleteBigQueryExportRequest").msgclass
       end
     end
   end

data/lib/google/cloud/securitycenter/v1/securitycenter_service_services_pb.rb

@@ -50,6 +50,8 @@ module Google
             rpc :DeleteMuteConfig, ::Google::Cloud::SecurityCenter::V1::DeleteMuteConfigRequest, ::Google::Protobuf::Empty
             # Deletes a notification config.
             rpc :DeleteNotificationConfig, ::Google::Cloud::SecurityCenter::V1::DeleteNotificationConfigRequest, ::Google::Protobuf::Empty
+            # Gets a big query export.
+            rpc :GetBigQueryExport, ::Google::Cloud::SecurityCenter::V1::GetBigQueryExportRequest, ::Google::Cloud::SecurityCenter::V1::BigQueryExport
             # Gets the access control policy on the specified Source.
             rpc :GetIamPolicy, ::Google::Iam::V1::GetIamPolicyRequest, ::Google::Iam::V1::Policy
             # Gets a mute config.
@@ -116,6 +118,18 @@ module Google
             rpc :UpdateSource, ::Google::Cloud::SecurityCenter::V1::UpdateSourceRequest, ::Google::Cloud::SecurityCenter::V1::Source
             # Updates security marks.
             rpc :UpdateSecurityMarks, ::Google::Cloud::SecurityCenter::V1::UpdateSecurityMarksRequest, ::Google::Cloud::SecurityCenter::V1::SecurityMarks
+            # Creates a big query export.
+            rpc :CreateBigQueryExport, ::Google::Cloud::SecurityCenter::V1::CreateBigQueryExportRequest, ::Google::Cloud::SecurityCenter::V1::BigQueryExport
+            # Deletes an existing big query export.
+            rpc :DeleteBigQueryExport, ::Google::Cloud::SecurityCenter::V1::DeleteBigQueryExportRequest, ::Google::Protobuf::Empty
+            # Updates a BigQuery export.
+            rpc :UpdateBigQueryExport, ::Google::Cloud::SecurityCenter::V1::UpdateBigQueryExportRequest, ::Google::Cloud::SecurityCenter::V1::BigQueryExport
+            # Lists BigQuery exports. Note that when requesting BigQuery exports at a
+            # given level all exports under that level are also returned e.g. if
+            # requesting BigQuery exports under a folder, then all BigQuery exports
+            # immediately under the folder plus the ones created under the projects
+            # within the folder are returned.
+            rpc :ListBigQueryExports, ::Google::Cloud::SecurityCenter::V1::ListBigQueryExportsRequest, ::Google::Cloud::SecurityCenter::V1::ListBigQueryExportsResponse
           end
 
           Stub = Service.rpc_stub_class

data/lib/google/cloud/securitycenter/v1/source_pb.rb

@@ -2,7 +2,6 @@
 # source: google/cloud/securitycenter/v1/source.proto
 
 require 'google/api/resource_pb'
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do

data/lib/google/cloud/securitycenter/v1/vulnerability_pb.rb

@@ -1,7 +1,6 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/securitycenter/v1/vulnerability.proto
 
-require 'google/api/annotations_pb'
 require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do
@@ -13,6 +12,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :id, :string, 1
       repeated :references, :message, 2, "google.cloud.securitycenter.v1.Reference"
       optional :cvssv3, :message, 3, "google.cloud.securitycenter.v1.Cvssv3"
+      optional :upstream_fix_available, :bool, 4
     end
     add_message "google.cloud.securitycenter.v1.Reference" do
       optional :source, :string, 1

data/proto_docs/google/cloud/securitycenter/v1/bigquery_export.rb

@@ -0,0 +1,92 @@
+# frozen_string_literal: true
+
+# Copyright 2022 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1
+        # Configures how to deliver Findings to BigQuery Instance.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     The relative resource name of this export. See:
+        #     https://cloud.google.com/apis/design/resource_names#relative_resource_name.
+        #     Example format:
+        #     "organizations/\\{organization_id}/bigQueryExports/\\{export_id}" Example
+        #     format: "folders/\\{folder_id}/bigQueryExports/\\{export_id}" Example format:
+        #     "projects/\\{project_id}/bigQueryExports/\\{export_id}"
+        #     This field is provided in responses, and is ignored when provided in create
+        #     requests.
+        # @!attribute [rw] description
+        #   @return [::String]
+        #     The description of the export (max of 1024 characters).
+        # @!attribute [rw] filter
+        #   @return [::String]
+        #     Expression that defines the filter to apply across create/update events
+        #     of findings. The expression is a list of zero or more restrictions combined
+        #     via logical operators `AND` and `OR`. Parentheses are supported, and `OR`
+        #     has higher precedence than `AND`.
+        #
+        #     Restrictions have the form `<field> <operator> <value>` and may have a
+        #     `-` character in front of them to indicate negation. The fields map to
+        #     those defined in the corresponding resource.
+        #
+        #     The supported operators are:
+        #
+        #     * `=` for all value types.
+        #     * `>`, `<`, `>=`, `<=` for integer values.
+        #     * `:`, meaning substring matching, for strings.
+        #
+        #     The supported value types are:
+        #
+        #     * string literals in quotes.
+        #     * integer literals without quotes.
+        #     * boolean literals `true` and `false` without quotes.
+        # @!attribute [rw] dataset
+        #   @return [::String]
+        #     The dataset to write findings' updates to. Its format is
+        #     "projects/[project_id]/datasets/[bigquery_dataset_id]".
+        #     BigQuery Dataset unique ID  must contain only letters (a-z, A-Z), numbers
+        #     (0-9), or underscores (_).
+        # @!attribute [r] create_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     Output only. The time at which the big query export was created.
+        #     This field is set by the server and will be ignored if provided on export
+        #     on creation.
+        # @!attribute [r] update_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     Output only. The most recent time at which the big export was updated.
+        #     This field is set by the server and will be ignored if provided on export
+        #     creation or update.
+        # @!attribute [r] most_recent_editor
+        #   @return [::String]
+        #     Output only. Email address of the user who last edited the big query export.
+        #     This field is set by the server and will be ignored if provided on export
+        #     creation or update.
+        # @!attribute [r] principal
+        #   @return [::String]
+        #     Output only. The service account that needs permission to create table, upload data to
+        #     the big query dataset.
+        class BigQueryExport
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/securitycenter/v1/external_system.rb

@@ -25,7 +25,8 @@ module Google
         # @!attribute [rw] name
         #   @return [::String]
         #     External System Name e.g. jira, demisto, etc.
-        #      e.g.: `organizations/1234/sources/5678/findings/123456/externalSystems/jira`
+        #      e.g.:
+        #      `organizations/1234/sources/5678/findings/123456/externalSystems/jira`
         #     `folders/1234/sources/5678/findings/123456/externalSystems/jira`
         #     `projects/1234/sources/5678/findings/123456/externalSystems/jira`
         # @!attribute [rw] assignees