google-cloud-security_center-v1 0.26.0 → 0.27.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +1 -1
- data/lib/google/cloud/security_center/v1/security_center/client.rb +856 -15
- data/lib/google/cloud/security_center/v1/security_center/operations.rb +2 -2
- data/lib/google/cloud/security_center/v1/security_center/paths.rb +147 -0
- data/lib/google/cloud/security_center/v1/security_center/rest/client.rb +647 -2
- data/lib/google/cloud/security_center/v1/security_center/rest/operations.rb +2 -2
- data/lib/google/cloud/security_center/v1/security_center/rest/service_stub.rb +590 -0
- data/lib/google/cloud/security_center/v1/version.rb +1 -1
- data/lib/google/cloud/securitycenter/v1/effective_security_health_analytics_custom_module_pb.rb +35 -0
- data/lib/google/cloud/securitycenter/v1/finding_pb.rb +1 -0
- data/lib/google/cloud/securitycenter/v1/security_health_analytics_custom_config_pb.rb +50 -0
- data/lib/google/cloud/securitycenter/v1/security_health_analytics_custom_module_pb.rb +40 -0
- data/lib/google/cloud/securitycenter/v1/securitycenter_service_pb.rb +58 -1
- data/lib/google/cloud/securitycenter/v1/securitycenter_service_services_pb.rb +30 -0
- data/proto_docs/google/api/client.rb +57 -3
- data/proto_docs/google/cloud/securitycenter/v1/bigquery_export.rb +5 -5
- data/proto_docs/google/cloud/securitycenter/v1/contact_details.rb +2 -2
- data/proto_docs/google/cloud/securitycenter/v1/database.rb +1 -1
- data/proto_docs/google/cloud/securitycenter/v1/effective_security_health_analytics_custom_module.rb +73 -0
- data/proto_docs/google/cloud/securitycenter/v1/exfiltration.rb +1 -1
- data/proto_docs/google/cloud/securitycenter/v1/finding.rb +11 -6
- data/proto_docs/google/cloud/securitycenter/v1/indicator.rb +4 -3
- data/proto_docs/google/cloud/securitycenter/v1/kernel_rootkit.rb +8 -8
- data/proto_docs/google/cloud/securitycenter/v1/kubernetes.rb +3 -3
- data/proto_docs/google/cloud/securitycenter/v1/mute_config.rb +5 -5
- data/proto_docs/google/cloud/securitycenter/v1/resource.rb +3 -3
- data/proto_docs/google/cloud/securitycenter/v1/security_health_analytics_custom_config.rb +112 -0
- data/proto_docs/google/cloud/securitycenter/v1/security_health_analytics_custom_module.rb +90 -0
- data/proto_docs/google/cloud/securitycenter/v1/securitycenter_service.rb +169 -0
- data/proto_docs/google/iam/v1/policy.rb +8 -4
- metadata +8 -2
@@ -114,7 +114,7 @@ module Google
|
|
114
114
|
# Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
|
115
115
|
# @!attribute [rw] vulnerability
|
116
116
|
# @return [::Google::Cloud::SecurityCenter::V1::Vulnerability]
|
117
|
-
# Represents vulnerability-specific fields like CVE and
|
117
|
+
# Represents vulnerability-specific fields like CVE and CVSS scores.
|
118
118
|
# CVE stands for Common Vulnerabilities and Exposures
|
119
119
|
# (https://cve.mitre.org/about/)
|
120
120
|
# @!attribute [r] mute_update_time
|
@@ -122,8 +122,8 @@ module Google
|
|
122
122
|
# Output only. The most recent time this finding was muted or unmuted.
|
123
123
|
# @!attribute [r] external_systems
|
124
124
|
# @return [::Google::Protobuf::Map{::String => ::Google::Cloud::SecurityCenter::V1::ExternalSystem}]
|
125
|
-
# Output only. Third party SIEM/SOAR fields within SCC, contains external
|
126
|
-
# information and external system finding fields.
|
125
|
+
# Output only. Third party SIEM/SOAR fields within SCC, contains external
|
126
|
+
# system information and external system finding fields.
|
127
127
|
# @!attribute [rw] mitre_attack
|
128
128
|
# @return [::Google::Cloud::SecurityCenter::V1::MitreAttack]
|
129
129
|
# MITRE ATT&CK tactics and techniques related to this finding.
|
@@ -146,9 +146,9 @@ module Google
|
|
146
146
|
# Represents operating system processes associated with the Finding.
|
147
147
|
# @!attribute [r] contacts
|
148
148
|
# @return [::Google::Protobuf::Map{::String => ::Google::Cloud::SecurityCenter::V1::ContactDetails}]
|
149
|
-
# Output only. Map containing the points of contact for the given finding.
|
150
|
-
# represents the type of contact, while the value contains a list of
|
151
|
-
# contacts that pertain. Please refer to:
|
149
|
+
# Output only. Map containing the points of contact for the given finding.
|
150
|
+
# The key represents the type of contact, while the value contains a list of
|
151
|
+
# all the contacts that pertain. Please refer to:
|
152
152
|
# https://cloud.google.com/resource-manager/docs/managing-notification-contacts#notification-categories
|
153
153
|
#
|
154
154
|
# {
|
@@ -183,6 +183,11 @@ module Google
|
|
183
183
|
# @!attribute [rw] next_steps
|
184
184
|
# @return [::String]
|
185
185
|
# Next steps associate to the finding.
|
186
|
+
# @!attribute [rw] module_name
|
187
|
+
# @return [::String]
|
188
|
+
# Unique identifier of the module which generated the finding.
|
189
|
+
# Example:
|
190
|
+
# folders/598186756061/securityHealthAnalyticsSettings/customModules/56799441161885
|
186
191
|
# @!attribute [rw] containers
|
187
192
|
# @return [::Array<::Google::Cloud::SecurityCenter::V1::Container>]
|
188
193
|
# Containers associated with the finding. containers provides information
|
@@ -21,13 +21,14 @@ module Google
|
|
21
21
|
module Cloud
|
22
22
|
module SecurityCenter
|
23
23
|
module V1
|
24
|
-
# Represents what's commonly known as an
|
24
|
+
# Represents what's commonly known as an _indicator of compromise_ (IoC) in
|
25
25
|
# computer forensics. This is an artifact observed on a network or in an
|
26
26
|
# operating system that, with high confidence, indicates a computer intrusion.
|
27
|
-
#
|
27
|
+
# For more information, see [Indicator of
|
28
|
+
# compromise](https://en.wikipedia.org/wiki/Indicator_of_compromise).
|
28
29
|
# @!attribute [rw] ip_addresses
|
29
30
|
# @return [::Array<::String>]
|
30
|
-
#
|
31
|
+
# The list of IP addresses that are associated with the finding.
|
31
32
|
# @!attribute [rw] domains
|
32
33
|
# @return [::Array<::String>]
|
33
34
|
# List of domains associated to the Finding.
|
@@ -27,34 +27,34 @@ module Google
|
|
27
27
|
# Rootkit name when available.
|
28
28
|
# @!attribute [rw] unexpected_code_modification
|
29
29
|
# @return [::Boolean]
|
30
|
-
# True
|
30
|
+
# True when unexpected modifications of kernel code memory are present.
|
31
31
|
# @!attribute [rw] unexpected_read_only_data_modification
|
32
32
|
# @return [::Boolean]
|
33
|
-
# True
|
33
|
+
# True when unexpected modifications of kernel read-only data memory are
|
34
34
|
# present.
|
35
35
|
# @!attribute [rw] unexpected_ftrace_handler
|
36
36
|
# @return [::Boolean]
|
37
|
-
# True
|
37
|
+
# True when `ftrace` points are present with callbacks pointing to regions
|
38
38
|
# that are not in the expected kernel or module code range.
|
39
39
|
# @!attribute [rw] unexpected_kprobe_handler
|
40
40
|
# @return [::Boolean]
|
41
|
-
# True
|
41
|
+
# True when `kprobe` points are present with callbacks pointing to regions
|
42
42
|
# that are not in the expected kernel or module code range.
|
43
43
|
# @!attribute [rw] unexpected_kernel_code_pages
|
44
44
|
# @return [::Boolean]
|
45
|
-
# True
|
45
|
+
# True when kernel code pages that are not in the expected kernel or module
|
46
46
|
# code regions are present.
|
47
47
|
# @!attribute [rw] unexpected_system_call_handler
|
48
48
|
# @return [::Boolean]
|
49
|
-
# True
|
49
|
+
# True when system call handlers that are are not in the expected kernel or
|
50
50
|
# module code regions are present.
|
51
51
|
# @!attribute [rw] unexpected_interrupt_handler
|
52
52
|
# @return [::Boolean]
|
53
|
-
# True
|
53
|
+
# True when interrupt handlers that are are not in the expected kernel or
|
54
54
|
# module code regions are present.
|
55
55
|
# @!attribute [rw] unexpected_processes_in_runqueue
|
56
56
|
# @return [::Boolean]
|
57
|
-
# True
|
57
|
+
# True when unexpected processes in the scheduler run queue are present. Such
|
58
58
|
# processes are in the run queue, but not in the process task list.
|
59
59
|
class KernelRootkit
|
60
60
|
include ::Google::Protobuf::MessageExts
|
@@ -21,7 +21,7 @@ module Google
|
|
21
21
|
module Cloud
|
22
22
|
module SecurityCenter
|
23
23
|
module V1
|
24
|
-
# Kubernetes
|
24
|
+
# Kubernetes-related attributes.
|
25
25
|
# @!attribute [rw] pods
|
26
26
|
# @return [::Array<::Google::Cloud::SecurityCenter::V1::Kubernetes::Pod>]
|
27
27
|
# Kubernetes Pods associated with the finding. This field will contain Pod
|
@@ -129,8 +129,8 @@ module Google
|
|
129
129
|
# The Role or ClusterRole referenced by the binding.
|
130
130
|
# @!attribute [rw] subjects
|
131
131
|
# @return [::Array<::Google::Cloud::SecurityCenter::V1::Kubernetes::Subject>]
|
132
|
-
# Represents
|
133
|
-
# for PATCH requests.
|
132
|
+
# Represents one or more subjects that are bound to the role. Not always
|
133
|
+
# available for PATCH requests.
|
134
134
|
class Binding
|
135
135
|
include ::Google::Protobuf::MessageExts
|
136
136
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -37,11 +37,11 @@ module Google
|
|
37
37
|
# A description of the mute config.
|
38
38
|
# @!attribute [rw] filter
|
39
39
|
# @return [::String]
|
40
|
-
# Required. An expression that defines the filter to apply across
|
41
|
-
# of findings. While creating a filter string, be
|
42
|
-
# scope in which the mute configuration is being created.
|
43
|
-
# contains project = X but is created under the project = Y
|
44
|
-
# not match any findings.
|
40
|
+
# Required. An expression that defines the filter to apply across
|
41
|
+
# create/update events of findings. While creating a filter string, be
|
42
|
+
# mindful of the scope in which the mute configuration is being created.
|
43
|
+
# E.g., If a filter contains project = X but is created under the project = Y
|
44
|
+
# scope, it might not match any findings.
|
45
45
|
#
|
46
46
|
# The following field and operator combinations are supported:
|
47
47
|
#
|
@@ -46,9 +46,9 @@ module Google
|
|
46
46
|
# The human readable name of resource's parent.
|
47
47
|
# @!attribute [r] folders
|
48
48
|
# @return [::Array<::Google::Cloud::SecurityCenter::V1::Folder>]
|
49
|
-
# Output only. Contains a Folder message for each folder in the assets
|
50
|
-
# The first folder is the deepest nested folder, and the last
|
51
|
-
# folder directly under the Organization.
|
49
|
+
# Output only. Contains a Folder message for each folder in the assets
|
50
|
+
# ancestry. The first folder is the deepest nested folder, and the last
|
51
|
+
# folder is the folder directly under the Organization.
|
52
52
|
class Resource
|
53
53
|
include ::Google::Protobuf::MessageExts
|
54
54
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -0,0 +1,112 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# Copyright 2023 Google LLC
|
4
|
+
#
|
5
|
+
# Licensed under the Apache License, Version 2.0 (the "License");
|
6
|
+
# you may not use this file except in compliance with the License.
|
7
|
+
# You may obtain a copy of the License at
|
8
|
+
#
|
9
|
+
# https://www.apache.org/licenses/LICENSE-2.0
|
10
|
+
#
|
11
|
+
# Unless required by applicable law or agreed to in writing, software
|
12
|
+
# distributed under the License is distributed on an "AS IS" BASIS,
|
13
|
+
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
14
|
+
# See the License for the specific language governing permissions and
|
15
|
+
# limitations under the License.
|
16
|
+
|
17
|
+
# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
|
18
|
+
|
19
|
+
|
20
|
+
module Google
|
21
|
+
module Cloud
|
22
|
+
module SecurityCenter
|
23
|
+
module V1
|
24
|
+
# Defines the properties in a custom module configuration for Security
|
25
|
+
# Health Analytics. Use the custom module configuration to create custom
|
26
|
+
# detectors that generate custom findings for resources that you specify.
|
27
|
+
# @!attribute [rw] predicate
|
28
|
+
# @return [::Google::Type::Expr]
|
29
|
+
# The CEL expression to evaluate to produce findings. When the expression
|
30
|
+
# evaluates to true against a resource, a finding is generated.
|
31
|
+
# @!attribute [rw] custom_output
|
32
|
+
# @return [::Google::Cloud::SecurityCenter::V1::CustomConfig::CustomOutputSpec]
|
33
|
+
# Custom output properties.
|
34
|
+
# @!attribute [rw] resource_selector
|
35
|
+
# @return [::Google::Cloud::SecurityCenter::V1::CustomConfig::ResourceSelector]
|
36
|
+
# The resource types that the custom module operates on. Each custom module
|
37
|
+
# can specify up to 5 resource types.
|
38
|
+
# @!attribute [rw] severity
|
39
|
+
# @return [::Google::Cloud::SecurityCenter::V1::CustomConfig::Severity]
|
40
|
+
# The severity to assign to findings generated by the module.
|
41
|
+
# @!attribute [rw] description
|
42
|
+
# @return [::String]
|
43
|
+
# Text that describes the vulnerability or misconfiguration that the custom
|
44
|
+
# module detects. This explanation is returned with each finding instance to
|
45
|
+
# help investigators understand the detected issue. The text must be enclosed
|
46
|
+
# in quotation marks.
|
47
|
+
# @!attribute [rw] recommendation
|
48
|
+
# @return [::String]
|
49
|
+
# An explanation of the recommended steps that security teams can take to
|
50
|
+
# resolve the detected issue. This explanation is returned with each finding
|
51
|
+
# generated by this module in the `nextSteps` property of the finding JSON.
|
52
|
+
class CustomConfig
|
53
|
+
include ::Google::Protobuf::MessageExts
|
54
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
55
|
+
|
56
|
+
# A set of optional name-value pairs that define custom source properties to
|
57
|
+
# return with each finding that is generated by the custom module. The custom
|
58
|
+
# source properties that are defined here are included in the finding JSON
|
59
|
+
# under `sourceProperties`.
|
60
|
+
# @!attribute [rw] properties
|
61
|
+
# @return [::Array<::Google::Cloud::SecurityCenter::V1::CustomConfig::CustomOutputSpec::Property>]
|
62
|
+
# A list of custom output properties to add to the finding.
|
63
|
+
class CustomOutputSpec
|
64
|
+
include ::Google::Protobuf::MessageExts
|
65
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
66
|
+
|
67
|
+
# An individual name-value pair that defines a custom source property.
|
68
|
+
# @!attribute [rw] name
|
69
|
+
# @return [::String]
|
70
|
+
# Name of the property for the custom output.
|
71
|
+
# @!attribute [rw] value_expression
|
72
|
+
# @return [::Google::Type::Expr]
|
73
|
+
# The CEL expression for the custom output. A resource property can be
|
74
|
+
# specified to return the value of the property or a text string enclosed
|
75
|
+
# in quotation marks.
|
76
|
+
class Property
|
77
|
+
include ::Google::Protobuf::MessageExts
|
78
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
79
|
+
end
|
80
|
+
end
|
81
|
+
|
82
|
+
# Resource for selecting resource type.
|
83
|
+
# @!attribute [rw] resource_types
|
84
|
+
# @return [::Array<::String>]
|
85
|
+
# The resource types to run the detector on.
|
86
|
+
class ResourceSelector
|
87
|
+
include ::Google::Protobuf::MessageExts
|
88
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
89
|
+
end
|
90
|
+
|
91
|
+
# Defines the valid value options for the severity of a finding.
|
92
|
+
module Severity
|
93
|
+
# Unspecified severity.
|
94
|
+
SEVERITY_UNSPECIFIED = 0
|
95
|
+
|
96
|
+
# Critical severity.
|
97
|
+
CRITICAL = 1
|
98
|
+
|
99
|
+
# High severity.
|
100
|
+
HIGH = 2
|
101
|
+
|
102
|
+
# Medium severity.
|
103
|
+
MEDIUM = 3
|
104
|
+
|
105
|
+
# Low severity.
|
106
|
+
LOW = 4
|
107
|
+
end
|
108
|
+
end
|
109
|
+
end
|
110
|
+
end
|
111
|
+
end
|
112
|
+
end
|
@@ -0,0 +1,90 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# Copyright 2023 Google LLC
|
4
|
+
#
|
5
|
+
# Licensed under the Apache License, Version 2.0 (the "License");
|
6
|
+
# you may not use this file except in compliance with the License.
|
7
|
+
# You may obtain a copy of the License at
|
8
|
+
#
|
9
|
+
# https://www.apache.org/licenses/LICENSE-2.0
|
10
|
+
#
|
11
|
+
# Unless required by applicable law or agreed to in writing, software
|
12
|
+
# distributed under the License is distributed on an "AS IS" BASIS,
|
13
|
+
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
14
|
+
# See the License for the specific language governing permissions and
|
15
|
+
# limitations under the License.
|
16
|
+
|
17
|
+
# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
|
18
|
+
|
19
|
+
|
20
|
+
module Google
|
21
|
+
module Cloud
|
22
|
+
module SecurityCenter
|
23
|
+
module V1
|
24
|
+
# Represents an instance of a Security Health Analytics custom module,
|
25
|
+
# including its full module name, display name, enablement state, and last
|
26
|
+
# updated time. You can create a custom module at the organization, folder, or
|
27
|
+
# project level. Custom modules that you create at the organization or folder
|
28
|
+
# level are inherited by the child folders and projects.
|
29
|
+
# @!attribute [rw] name
|
30
|
+
# @return [::String]
|
31
|
+
# Immutable. The resource name of the custom module.
|
32
|
+
# Its format is
|
33
|
+
# "organizations/\\{organization}/securityHealthAnalyticsSettings/customModules/\\{customModule}",
|
34
|
+
# or
|
35
|
+
# "folders/\\{folder}/securityHealthAnalyticsSettings/customModules/\\{customModule}",
|
36
|
+
# or
|
37
|
+
# "projects/\\{project}/securityHealthAnalyticsSettings/customModules/\\{customModule}"
|
38
|
+
#
|
39
|
+
# The id \\{customModule} is server-generated and is not user settable.
|
40
|
+
# It will be a numeric id containing 1-20 digits.
|
41
|
+
# @!attribute [rw] display_name
|
42
|
+
# @return [::String]
|
43
|
+
# The display name of the Security Health Analytics custom module. This
|
44
|
+
# display name becomes the finding category for all findings that are
|
45
|
+
# returned by this custom module. The display name must be between 1 and
|
46
|
+
# 128 characters, start with a lowercase letter, and contain alphanumeric
|
47
|
+
# characters or underscores only.
|
48
|
+
# @!attribute [rw] enablement_state
|
49
|
+
# @return [::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule::EnablementState]
|
50
|
+
# The enablement state of the custom module.
|
51
|
+
# @!attribute [r] update_time
|
52
|
+
# @return [::Google::Protobuf::Timestamp]
|
53
|
+
# Output only. The time at which the custom module was last updated.
|
54
|
+
# @!attribute [r] last_editor
|
55
|
+
# @return [::String]
|
56
|
+
# Output only. The editor that last updated the custom module.
|
57
|
+
# @!attribute [r] ancestor_module
|
58
|
+
# @return [::String]
|
59
|
+
# Output only. If empty, indicates that the custom module was created in the
|
60
|
+
# organization, folder, or project in which you are viewing the custom
|
61
|
+
# module. Otherwise, `ancestor_module` specifies the organization or folder
|
62
|
+
# from which the custom module is inherited.
|
63
|
+
# @!attribute [rw] custom_config
|
64
|
+
# @return [::Google::Cloud::SecurityCenter::V1::CustomConfig]
|
65
|
+
# The user specified custom configuration for the module.
|
66
|
+
class SecurityHealthAnalyticsCustomModule
|
67
|
+
include ::Google::Protobuf::MessageExts
|
68
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
69
|
+
|
70
|
+
# Possible enablement states of a custom module.
|
71
|
+
module EnablementState
|
72
|
+
# Unspecified enablement state.
|
73
|
+
ENABLEMENT_STATE_UNSPECIFIED = 0
|
74
|
+
|
75
|
+
# The module is enabled at the given CRM resource.
|
76
|
+
ENABLED = 1
|
77
|
+
|
78
|
+
# The module is disabled at the given CRM resource.
|
79
|
+
DISABLED = 2
|
80
|
+
|
81
|
+
# State is inherited from an ancestor module. The module will either
|
82
|
+
# be effectively ENABLED or DISABLED based on its closest non-inherited
|
83
|
+
# ancestor module in the CRM hierarchy.
|
84
|
+
INHERITED = 3
|
85
|
+
end
|
86
|
+
end
|
87
|
+
end
|
88
|
+
end
|
89
|
+
end
|
90
|
+
end
|
@@ -130,6 +130,23 @@ module Google
|
|
130
130
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
131
131
|
end
|
132
132
|
|
133
|
+
# Request message for creating security health analytics custom modules.
|
134
|
+
# @!attribute [rw] parent
|
135
|
+
# @return [::String]
|
136
|
+
# Required. Resource name of the new custom module's parent. Its format is
|
137
|
+
# "organizations/\\{organization}/securityHealthAnalyticsSettings",
|
138
|
+
# "folders/\\{folder}/securityHealthAnalyticsSettings", or
|
139
|
+
# "projects/\\{project}/securityHealthAnalyticsSettings"
|
140
|
+
# @!attribute [rw] security_health_analytics_custom_module
|
141
|
+
# @return [::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule]
|
142
|
+
# Required. SecurityHealthAnalytics custom module to create. The provided
|
143
|
+
# name is ignored and reset with provided parent information and
|
144
|
+
# server-generated ID.
|
145
|
+
class CreateSecurityHealthAnalyticsCustomModuleRequest
|
146
|
+
include ::Google::Protobuf::MessageExts
|
147
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
148
|
+
end
|
149
|
+
|
133
150
|
# Request message for creating a source.
|
134
151
|
# @!attribute [rw] parent
|
135
152
|
# @return [::String]
|
@@ -168,6 +185,19 @@ module Google
|
|
168
185
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
169
186
|
end
|
170
187
|
|
188
|
+
# Request message for deleting security health analytics custom modules.
|
189
|
+
# @!attribute [rw] name
|
190
|
+
# @return [::String]
|
191
|
+
# Required. Name of the custom module to delete. Its format is
|
192
|
+
# "organizations/\\{organization}/securityHealthAnalyticsSettings/customModules/\\{customModule}",
|
193
|
+
# "folders/\\{folder}/securityHealthAnalyticsSettings/customModules/\\{customModule}",
|
194
|
+
# or
|
195
|
+
# "projects/\\{project}/securityHealthAnalyticsSettings/customModules/\\{customModule}"
|
196
|
+
class DeleteSecurityHealthAnalyticsCustomModuleRequest
|
197
|
+
include ::Google::Protobuf::MessageExts
|
198
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
199
|
+
end
|
200
|
+
|
171
201
|
# Request message for retrieving a BigQuery export.
|
172
202
|
# @!attribute [rw] name
|
173
203
|
# @return [::String]
|
@@ -214,6 +244,33 @@ module Google
|
|
214
244
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
215
245
|
end
|
216
246
|
|
247
|
+
# Request message for getting effective security health analytics custom
|
248
|
+
# modules.
|
249
|
+
# @!attribute [rw] name
|
250
|
+
# @return [::String]
|
251
|
+
# Required. Name of the effective custom module to get. Its format is
|
252
|
+
# "organizations/\\{organization}/securityHealthAnalyticsSettings/effectiveCustomModules/\\{customModule}",
|
253
|
+
# "folders/\\{folder}/securityHealthAnalyticsSettings/effectiveCustomModules/\\{customModule}",
|
254
|
+
# or
|
255
|
+
# "projects/\\{project}/securityHealthAnalyticsSettings/effectiveCustomModules/\\{customModule}"
|
256
|
+
class GetEffectiveSecurityHealthAnalyticsCustomModuleRequest
|
257
|
+
include ::Google::Protobuf::MessageExts
|
258
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
259
|
+
end
|
260
|
+
|
261
|
+
# Request message for getting security health analytics custom modules.
|
262
|
+
# @!attribute [rw] name
|
263
|
+
# @return [::String]
|
264
|
+
# Required. Name of the custom module to get. Its format is
|
265
|
+
# "organizations/\\{organization}/securityHealthAnalyticsSettings/customModules/\\{customModule}",
|
266
|
+
# "folders/\\{folder}/securityHealthAnalyticsSettings/customModules/\\{customModule}",
|
267
|
+
# or
|
268
|
+
# "projects/\\{project}/securityHealthAnalyticsSettings/customModules/\\{customModule}"
|
269
|
+
class GetSecurityHealthAnalyticsCustomModuleRequest
|
270
|
+
include ::Google::Protobuf::MessageExts
|
271
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
272
|
+
end
|
273
|
+
|
217
274
|
# Request message for getting a source.
|
218
275
|
# @!attribute [rw] name
|
219
276
|
# @return [::String]
|
@@ -568,6 +625,40 @@ module Google
|
|
568
625
|
end
|
569
626
|
end
|
570
627
|
|
628
|
+
# Request message for listing descendant security health analytics custom
|
629
|
+
# modules.
|
630
|
+
# @!attribute [rw] parent
|
631
|
+
# @return [::String]
|
632
|
+
# Required. Name of parent to list descendant custom modules. Its format is
|
633
|
+
# "organizations/\\{organization}/securityHealthAnalyticsSettings",
|
634
|
+
# "folders/\\{folder}/securityHealthAnalyticsSettings", or
|
635
|
+
# "projects/\\{project}/securityHealthAnalyticsSettings"
|
636
|
+
# @!attribute [rw] page_size
|
637
|
+
# @return [::Integer]
|
638
|
+
# The maximum number of results to return in a single response. Default is
|
639
|
+
# 10, minimum is 1, maximum is 1000.
|
640
|
+
# @!attribute [rw] page_token
|
641
|
+
# @return [::String]
|
642
|
+
# The value returned by the last call indicating a continuation
|
643
|
+
class ListDescendantSecurityHealthAnalyticsCustomModulesRequest
|
644
|
+
include ::Google::Protobuf::MessageExts
|
645
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
646
|
+
end
|
647
|
+
|
648
|
+
# Response message for listing descendant security health analytics custom
|
649
|
+
# modules.
|
650
|
+
# @!attribute [rw] security_health_analytics_custom_modules
|
651
|
+
# @return [::Array<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>]
|
652
|
+
# Custom modules belonging to the requested parent and its descendants.
|
653
|
+
# @!attribute [rw] next_page_token
|
654
|
+
# @return [::String]
|
655
|
+
# If not empty, indicates that there may be more custom modules to be
|
656
|
+
# returned.
|
657
|
+
class ListDescendantSecurityHealthAnalyticsCustomModulesResponse
|
658
|
+
include ::Google::Protobuf::MessageExts
|
659
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
660
|
+
end
|
661
|
+
|
571
662
|
# Request message for listing mute configs at a given scope e.g. organization,
|
572
663
|
# folder or project.
|
573
664
|
# @!attribute [rw] parent
|
@@ -639,6 +730,72 @@ module Google
|
|
639
730
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
640
731
|
end
|
641
732
|
|
733
|
+
# Request message for listing effective security health analytics custom
|
734
|
+
# modules.
|
735
|
+
# @!attribute [rw] parent
|
736
|
+
# @return [::String]
|
737
|
+
# Required. Name of parent to list effective custom modules. Its format is
|
738
|
+
# "organizations/\\{organization}/securityHealthAnalyticsSettings",
|
739
|
+
# "folders/\\{folder}/securityHealthAnalyticsSettings", or
|
740
|
+
# "projects/\\{project}/securityHealthAnalyticsSettings"
|
741
|
+
# @!attribute [rw] page_size
|
742
|
+
# @return [::Integer]
|
743
|
+
# The maximum number of results to return in a single response. Default is
|
744
|
+
# 10, minimum is 1, maximum is 1000.
|
745
|
+
# @!attribute [rw] page_token
|
746
|
+
# @return [::String]
|
747
|
+
# The value returned by the last call indicating a continuation
|
748
|
+
class ListEffectiveSecurityHealthAnalyticsCustomModulesRequest
|
749
|
+
include ::Google::Protobuf::MessageExts
|
750
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
751
|
+
end
|
752
|
+
|
753
|
+
# Response message for listing effective security health analytics custom
|
754
|
+
# modules.
|
755
|
+
# @!attribute [rw] effective_security_health_analytics_custom_modules
|
756
|
+
# @return [::Array<::Google::Cloud::SecurityCenter::V1::EffectiveSecurityHealthAnalyticsCustomModule>]
|
757
|
+
# Effective custom modules belonging to the requested parent.
|
758
|
+
# @!attribute [rw] next_page_token
|
759
|
+
# @return [::String]
|
760
|
+
# If not empty, indicates that there may be more effective custom modules to
|
761
|
+
# be returned.
|
762
|
+
class ListEffectiveSecurityHealthAnalyticsCustomModulesResponse
|
763
|
+
include ::Google::Protobuf::MessageExts
|
764
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
765
|
+
end
|
766
|
+
|
767
|
+
# Request message for listing security health analytics custom modules.
|
768
|
+
# @!attribute [rw] parent
|
769
|
+
# @return [::String]
|
770
|
+
# Required. Name of parent to list custom modules. Its format is
|
771
|
+
# "organizations/\\{organization}/securityHealthAnalyticsSettings",
|
772
|
+
# "folders/\\{folder}/securityHealthAnalyticsSettings", or
|
773
|
+
# "projects/\\{project}/securityHealthAnalyticsSettings"
|
774
|
+
# @!attribute [rw] page_size
|
775
|
+
# @return [::Integer]
|
776
|
+
# The maximum number of results to return in a single response. Default is
|
777
|
+
# 10, minimum is 1, maximum is 1000.
|
778
|
+
# @!attribute [rw] page_token
|
779
|
+
# @return [::String]
|
780
|
+
# The value returned by the last call indicating a continuation
|
781
|
+
class ListSecurityHealthAnalyticsCustomModulesRequest
|
782
|
+
include ::Google::Protobuf::MessageExts
|
783
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
784
|
+
end
|
785
|
+
|
786
|
+
# Response message for listing security health analytics custom modules.
|
787
|
+
# @!attribute [rw] security_health_analytics_custom_modules
|
788
|
+
# @return [::Array<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>]
|
789
|
+
# Custom modules belonging to the requested parent.
|
790
|
+
# @!attribute [rw] next_page_token
|
791
|
+
# @return [::String]
|
792
|
+
# If not empty, indicates that there may be more custom modules to be
|
793
|
+
# returned.
|
794
|
+
class ListSecurityHealthAnalyticsCustomModulesResponse
|
795
|
+
include ::Google::Protobuf::MessageExts
|
796
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
797
|
+
end
|
798
|
+
|
642
799
|
# Request message for listing sources.
|
643
800
|
# @!attribute [rw] parent
|
644
801
|
# @return [::String]
|
@@ -1239,6 +1396,18 @@ module Google
|
|
1239
1396
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
1240
1397
|
end
|
1241
1398
|
|
1399
|
+
# Request message for updating security health analytics custom modules.
|
1400
|
+
# @!attribute [rw] security_health_analytics_custom_module
|
1401
|
+
# @return [::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule]
|
1402
|
+
# Required. The SecurityHealthAnalytics custom module to update.
|
1403
|
+
# @!attribute [rw] update_mask
|
1404
|
+
# @return [::Google::Protobuf::FieldMask]
|
1405
|
+
# The list of fields to update.
|
1406
|
+
class UpdateSecurityHealthAnalyticsCustomModuleRequest
|
1407
|
+
include ::Google::Protobuf::MessageExts
|
1408
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
1409
|
+
end
|
1410
|
+
|
1242
1411
|
# Request message for updating a source.
|
1243
1412
|
# @!attribute [rw] source
|
1244
1413
|
# @return [::Google::Cloud::SecurityCenter::V1::Source]
|
@@ -35,7 +35,8 @@ module Google
|
|
35
35
|
# only if the expression evaluates to `true`. A condition can add constraints
|
36
36
|
# based on attributes of the request, the resource, or both. To learn which
|
37
37
|
# resources support conditions in their IAM policies, see the
|
38
|
-
# [IAM
|
38
|
+
# [IAM
|
39
|
+
# documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
|
39
40
|
#
|
40
41
|
# **JSON example:**
|
41
42
|
#
|
@@ -58,7 +59,8 @@ module Google
|
|
58
59
|
# "condition": {
|
59
60
|
# "title": "expirable access",
|
60
61
|
# "description": "Does not grant access after Sep 2020",
|
61
|
-
# "expression": "request.time <
|
62
|
+
# "expression": "request.time <
|
63
|
+
# timestamp('2020-10-01T00:00:00.000Z')",
|
62
64
|
# }
|
63
65
|
# }
|
64
66
|
# ],
|
@@ -112,7 +114,8 @@ module Google
|
|
112
114
|
# specify any valid version or leave the field unset.
|
113
115
|
#
|
114
116
|
# To learn which resources support conditions in their IAM policies, see the
|
115
|
-
# [IAM
|
117
|
+
# [IAM
|
118
|
+
# documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
|
116
119
|
# @!attribute [rw] bindings
|
117
120
|
# @return [::Array<::Google::Iam::V1::Binding>]
|
118
121
|
# Associates a list of `members`, or principals, with a `role`. Optionally,
|
@@ -305,7 +308,8 @@ module Google
|
|
305
308
|
# @return [::Array<::String>]
|
306
309
|
# Specifies the identities that do not cause logging for this type of
|
307
310
|
# permission.
|
308
|
-
# Follows the same format of
|
311
|
+
# Follows the same format of
|
312
|
+
# {::Google::Iam::V1::Binding#members Binding.members}.
|
309
313
|
class AuditLogConfig
|
310
314
|
include ::Google::Protobuf::MessageExts
|
311
315
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-cloud-security_center-v1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.27.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2023-
|
11
|
+
date: 2023-04-12 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: gapic-common
|
@@ -204,6 +204,7 @@ files:
|
|
204
204
|
- lib/google/cloud/securitycenter/v1/contact_details_pb.rb
|
205
205
|
- lib/google/cloud/securitycenter/v1/container_pb.rb
|
206
206
|
- lib/google/cloud/securitycenter/v1/database_pb.rb
|
207
|
+
- lib/google/cloud/securitycenter/v1/effective_security_health_analytics_custom_module_pb.rb
|
207
208
|
- lib/google/cloud/securitycenter/v1/exfiltration_pb.rb
|
208
209
|
- lib/google/cloud/securitycenter/v1/external_system_pb.rb
|
209
210
|
- lib/google/cloud/securitycenter/v1/file_pb.rb
|
@@ -222,6 +223,8 @@ files:
|
|
222
223
|
- lib/google/cloud/securitycenter/v1/process_pb.rb
|
223
224
|
- lib/google/cloud/securitycenter/v1/resource_pb.rb
|
224
225
|
- lib/google/cloud/securitycenter/v1/run_asset_discovery_response_pb.rb
|
226
|
+
- lib/google/cloud/securitycenter/v1/security_health_analytics_custom_config_pb.rb
|
227
|
+
- lib/google/cloud/securitycenter/v1/security_health_analytics_custom_module_pb.rb
|
225
228
|
- lib/google/cloud/securitycenter/v1/security_marks_pb.rb
|
226
229
|
- lib/google/cloud/securitycenter/v1/securitycenter_service_pb.rb
|
227
230
|
- lib/google/cloud/securitycenter/v1/securitycenter_service_services_pb.rb
|
@@ -240,6 +243,7 @@ files:
|
|
240
243
|
- proto_docs/google/cloud/securitycenter/v1/contact_details.rb
|
241
244
|
- proto_docs/google/cloud/securitycenter/v1/container.rb
|
242
245
|
- proto_docs/google/cloud/securitycenter/v1/database.rb
|
246
|
+
- proto_docs/google/cloud/securitycenter/v1/effective_security_health_analytics_custom_module.rb
|
243
247
|
- proto_docs/google/cloud/securitycenter/v1/exfiltration.rb
|
244
248
|
- proto_docs/google/cloud/securitycenter/v1/external_system.rb
|
245
249
|
- proto_docs/google/cloud/securitycenter/v1/file.rb
|
@@ -258,6 +262,8 @@ files:
|
|
258
262
|
- proto_docs/google/cloud/securitycenter/v1/process.rb
|
259
263
|
- proto_docs/google/cloud/securitycenter/v1/resource.rb
|
260
264
|
- proto_docs/google/cloud/securitycenter/v1/run_asset_discovery_response.rb
|
265
|
+
- proto_docs/google/cloud/securitycenter/v1/security_health_analytics_custom_config.rb
|
266
|
+
- proto_docs/google/cloud/securitycenter/v1/security_health_analytics_custom_module.rb
|
261
267
|
- proto_docs/google/cloud/securitycenter/v1/security_marks.rb
|
262
268
|
- proto_docs/google/cloud/securitycenter/v1/securitycenter_service.rb
|
263
269
|
- proto_docs/google/cloud/securitycenter/v1/source.rb
|