google-cloud-security_center-v1 0.27.0 → 0.29.0

data/lib/google/cloud/securitycenter/v1/source_pb.rb

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/securitycenter/v1/source.proto
 
@@ -5,15 +6,31 @@ require 'google/protobuf'
 
 require 'google/api/resource_pb'
 
-Google::Protobuf::DescriptorPool.generated_pool.build do
-  add_file("google/cloud/securitycenter/v1/source.proto", :syntax => :proto3) do
-    add_message "google.cloud.securitycenter.v1.Source" do
-      optional :name, :string, 1
-      optional :display_name, :string, 2
-      optional :description, :string, 3
-      optional :canonical_name, :string, 14
+
+descriptor_data = "\n+google/cloud/securitycenter/v1/source.proto\x12\x1egoogle.cloud.securitycenter.v1\x1a\x19google/api/resource.proto\"\xfd\x01\n\x06Source\x12\x0c\n\x04name\x18\x01 \x01(\t\x12\x14\n\x0c\x64isplay_name\x18\x02 \x01(\t\x12\x13\n\x0b\x64\x65scription\x18\x03 \x01(\t\x12\x16\n\x0e\x63\x61nonical_name\x18\x0e \x01(\t:\xa1\x01\xea\x41\x9d\x01\n$securitycenter.googleapis.com/Source\x12-organizations/{organization}/sources/{source}\x12!folders/{folder}/sources/{source}\x12#projects/{project}/sources/{source}B\xd8\x01\n\"com.google.cloud.securitycenter.v1P\x01ZJcloud.google.com/go/securitycenter/apiv1/securitycenterpb;securitycenterpb\xaa\x02\x1eGoogle.Cloud.SecurityCenter.V1\xca\x02\x1eGoogle\\Cloud\\SecurityCenter\\V1\xea\x02!Google::Cloud::SecurityCenter::V1b\x06proto3"
+
+pool = Google::Protobuf::DescriptorPool.generated_pool
+
+begin
+  pool.add_serialized_file(descriptor_data)
+rescue TypeError => e
+  # Compatibility code: will be removed in the next major version.
+  require 'google/protobuf/descriptor_pb'
+  parsed = Google::Protobuf::FileDescriptorProto.decode(descriptor_data)
+  parsed.clear_dependency
+  serialized = parsed.class.encode(parsed)
+  file = pool.add_serialized_file(serialized)
+  warn "Warning: Protobuf detected an import path issue while loading generated file #{__FILE__}"
+  imports = [
+  ]
+  imports.each do |type_name, expected_filename|
+    import_file = pool.lookup(type_name).file_descriptor
+    if import_file.name != expected_filename
+      warn "- #{file.name} imports #{expected_filename}, but that import was loaded as #{import_file.name}"
     end
   end
+  warn "Each proto file must use a consistent fully-qualified name."
+  warn "This will become an error in the next major version."
 end
 
 module Google

data/lib/google/cloud/securitycenter/v1/vulnerability_pb.rb

@@ -1,69 +1,34 @@
+# frozen_string_literal: true
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/securitycenter/v1/vulnerability.proto
 
 require 'google/protobuf'
 
-Google::Protobuf::DescriptorPool.generated_pool.build do
-  add_file("google/cloud/securitycenter/v1/vulnerability.proto", :syntax => :proto3) do
-    add_message "google.cloud.securitycenter.v1.Vulnerability" do
-      optional :cve, :message, 1, "google.cloud.securitycenter.v1.Cve"
-    end
-    add_message "google.cloud.securitycenter.v1.Cve" do
-      optional :id, :string, 1
-      repeated :references, :message, 2, "google.cloud.securitycenter.v1.Reference"
-      optional :cvssv3, :message, 3, "google.cloud.securitycenter.v1.Cvssv3"
-      optional :upstream_fix_available, :bool, 4
-    end
-    add_message "google.cloud.securitycenter.v1.Reference" do
-      optional :source, :string, 1
-      optional :uri, :string, 2
-    end
-    add_message "google.cloud.securitycenter.v1.Cvssv3" do
-      optional :base_score, :double, 1
-      optional :attack_vector, :enum, 5, "google.cloud.securitycenter.v1.Cvssv3.AttackVector"
-      optional :attack_complexity, :enum, 6, "google.cloud.securitycenter.v1.Cvssv3.AttackComplexity"
-      optional :privileges_required, :enum, 7, "google.cloud.securitycenter.v1.Cvssv3.PrivilegesRequired"
-      optional :user_interaction, :enum, 8, "google.cloud.securitycenter.v1.Cvssv3.UserInteraction"
-      optional :scope, :enum, 9, "google.cloud.securitycenter.v1.Cvssv3.Scope"
-      optional :confidentiality_impact, :enum, 10, "google.cloud.securitycenter.v1.Cvssv3.Impact"
-      optional :integrity_impact, :enum, 11, "google.cloud.securitycenter.v1.Cvssv3.Impact"
-      optional :availability_impact, :enum, 12, "google.cloud.securitycenter.v1.Cvssv3.Impact"
-    end
-    add_enum "google.cloud.securitycenter.v1.Cvssv3.AttackVector" do
-      value :ATTACK_VECTOR_UNSPECIFIED, 0
-      value :ATTACK_VECTOR_NETWORK, 1
-      value :ATTACK_VECTOR_ADJACENT, 2
-      value :ATTACK_VECTOR_LOCAL, 3
-      value :ATTACK_VECTOR_PHYSICAL, 4
-    end
-    add_enum "google.cloud.securitycenter.v1.Cvssv3.AttackComplexity" do
-      value :ATTACK_COMPLEXITY_UNSPECIFIED, 0
-      value :ATTACK_COMPLEXITY_LOW, 1
-      value :ATTACK_COMPLEXITY_HIGH, 2
-    end
-    add_enum "google.cloud.securitycenter.v1.Cvssv3.PrivilegesRequired" do
-      value :PRIVILEGES_REQUIRED_UNSPECIFIED, 0
-      value :PRIVILEGES_REQUIRED_NONE, 1
-      value :PRIVILEGES_REQUIRED_LOW, 2
-      value :PRIVILEGES_REQUIRED_HIGH, 3
-    end
-    add_enum "google.cloud.securitycenter.v1.Cvssv3.UserInteraction" do
-      value :USER_INTERACTION_UNSPECIFIED, 0
-      value :USER_INTERACTION_NONE, 1
-      value :USER_INTERACTION_REQUIRED, 2
-    end
-    add_enum "google.cloud.securitycenter.v1.Cvssv3.Scope" do
-      value :SCOPE_UNSPECIFIED, 0
-      value :SCOPE_UNCHANGED, 1
-      value :SCOPE_CHANGED, 2
-    end
-    add_enum "google.cloud.securitycenter.v1.Cvssv3.Impact" do
-      value :IMPACT_UNSPECIFIED, 0
-      value :IMPACT_HIGH, 1
-      value :IMPACT_LOW, 2
-      value :IMPACT_NONE, 3
+
+descriptor_data = "\n2google/cloud/securitycenter/v1/vulnerability.proto\x12\x1egoogle.cloud.securitycenter.v1\"A\n\rVulnerability\x12\x30\n\x03\x63ve\x18\x01 \x01(\x0b\x32#.google.cloud.securitycenter.v1.Cve\"\xa8\x01\n\x03\x43ve\x12\n\n\x02id\x18\x01 \x01(\t\x12=\n\nreferences\x18\x02 \x03(\x0b\x32).google.cloud.securitycenter.v1.Reference\x12\x36\n\x06\x63vssv3\x18\x03 \x01(\x0b\x32&.google.cloud.securitycenter.v1.Cvssv3\x12\x1e\n\x16upstream_fix_available\x18\x04 \x01(\x08\"(\n\tReference\x12\x0e\n\x06source\x18\x01 \x01(\t\x12\x0b\n\x03uri\x18\x02 \x01(\t\"\xb1\n\n\x06\x43vssv3\x12\x12\n\nbase_score\x18\x01 \x01(\x01\x12J\n\rattack_vector\x18\x05 \x01(\x0e\x32\x33.google.cloud.securitycenter.v1.Cvssv3.AttackVector\x12R\n\x11\x61ttack_complexity\x18\x06 \x01(\x0e\x32\x37.google.cloud.securitycenter.v1.Cvssv3.AttackComplexity\x12V\n\x13privileges_required\x18\x07 \x01(\x0e\x32\x39.google.cloud.securitycenter.v1.Cvssv3.PrivilegesRequired\x12P\n\x10user_interaction\x18\x08 \x01(\x0e\x32\x36.google.cloud.securitycenter.v1.Cvssv3.UserInteraction\x12;\n\x05scope\x18\t \x01(\x0e\x32,.google.cloud.securitycenter.v1.Cvssv3.Scope\x12M\n\x16\x63onfidentiality_impact\x18\n \x01(\x0e\x32-.google.cloud.securitycenter.v1.Cvssv3.Impact\x12G\n\x10integrity_impact\x18\x0b \x01(\x0e\x32-.google.cloud.securitycenter.v1.Cvssv3.Impact\x12J\n\x13\x61vailability_impact\x18\x0c \x01(\x0e\x32-.google.cloud.securitycenter.v1.Cvssv3.Impact\"\x99\x01\n\x0c\x41ttackVector\x12\x1d\n\x19\x41TTACK_VECTOR_UNSPECIFIED\x10\x00\x12\x19\n\x15\x41TTACK_VECTOR_NETWORK\x10\x01\x12\x1a\n\x16\x41TTACK_VECTOR_ADJACENT\x10\x02\x12\x17\n\x13\x41TTACK_VECTOR_LOCAL\x10\x03\x12\x1a\n\x16\x41TTACK_VECTOR_PHYSICAL\x10\x04\"l\n\x10\x41ttackComplexity\x12!\n\x1d\x41TTACK_COMPLEXITY_UNSPECIFIED\x10\x00\x12\x19\n\x15\x41TTACK_COMPLEXITY_LOW\x10\x01\x12\x1a\n\x16\x41TTACK_COMPLEXITY_HIGH\x10\x02\"\x92\x01\n\x12PrivilegesRequired\x12#\n\x1fPRIVILEGES_REQUIRED_UNSPECIFIED\x10\x00\x12\x1c\n\x18PRIVILEGES_REQUIRED_NONE\x10\x01\x12\x1b\n\x17PRIVILEGES_REQUIRED_LOW\x10\x02\x12\x1c\n\x18PRIVILEGES_REQUIRED_HIGH\x10\x03\"m\n\x0fUserInteraction\x12 \n\x1cUSER_INTERACTION_UNSPECIFIED\x10\x00\x12\x19\n\x15USER_INTERACTION_NONE\x10\x01\x12\x1d\n\x19USER_INTERACTION_REQUIRED\x10\x02\"F\n\x05Scope\x12\x15\n\x11SCOPE_UNSPECIFIED\x10\x00\x12\x13\n\x0fSCOPE_UNCHANGED\x10\x01\x12\x11\n\rSCOPE_CHANGED\x10\x02\"R\n\x06Impact\x12\x16\n\x12IMPACT_UNSPECIFIED\x10\x00\x12\x0f\n\x0bIMPACT_HIGH\x10\x01\x12\x0e\n\nIMPACT_LOW\x10\x02\x12\x0f\n\x0bIMPACT_NONE\x10\x03\x42\xec\x01\n\"com.google.cloud.securitycenter.v1B\x12VulnerabilityProtoP\x01ZJcloud.google.com/go/securitycenter/apiv1/securitycenterpb;securitycenterpb\xaa\x02\x1eGoogle.Cloud.SecurityCenter.V1\xca\x02\x1eGoogle\\Cloud\\SecurityCenter\\V1\xea\x02!Google::Cloud::SecurityCenter::V1b\x06proto3"
+
+pool = Google::Protobuf::DescriptorPool.generated_pool
+
+begin
+  pool.add_serialized_file(descriptor_data)
+rescue TypeError => e
+  # Compatibility code: will be removed in the next major version.
+  require 'google/protobuf/descriptor_pb'
+  parsed = Google::Protobuf::FileDescriptorProto.decode(descriptor_data)
+  parsed.clear_dependency
+  serialized = parsed.class.encode(parsed)
+  file = pool.add_serialized_file(serialized)
+  warn "Warning: Protobuf detected an import path issue while loading generated file #{__FILE__}"
+  imports = [
+  ]
+  imports.each do |type_name, expected_filename|
+    import_file = pool.lookup(type_name).file_descriptor
+    if import_file.name != expected_filename
+      warn "- #{file.name} imports #{expected_filename}, but that import was loaded as #{import_file.name}"
     end
   end
+  warn "Each proto file must use a consistent fully-qualified name."
+  warn "This will become an error in the next major version."
 end
 
 module Google

data/proto_docs/google/api/client.rb

@@ -83,7 +83,7 @@ module Google
     #     long-running operation pattern.
     # @!attribute [rw] new_issue_uri
     #   @return [::String]
-    #     Link to a place that API users can report issues.  Example:
+    #     Link to a *public* URI where users can report issues.  Example:
     #     https://issuetracker.google.com/issues/new?component=190865&template=1161103
     # @!attribute [rw] documentation_uri
     #   @return [::String]
@@ -353,6 +353,15 @@ module Google
 
       # Street View Org.
       STREET_VIEW = 4
+
+      # Shopping Org.
+      SHOPPING = 5
+
+      # Geo Org.
+      GEO = 6
+
+      # Generative AI - https://developers.generativeai.google
+      GENERATIVE_AI = 7
     end
 
     # To where should client libraries be published?

data/proto_docs/google/cloud/securitycenter/v1/access.rb

@@ -26,11 +26,11 @@ module Google
         #   @return [::String]
         #     Associated email, such as "foo@google.com".
         #
-        #     The email address of the authenticated user (or service account on behalf
-        #     of third party principal) making the request. For third party identity
-        #     callers, the `principal_subject` field is populated instead of this field.
-        #     For privacy reasons, the principal email address is sometimes redacted.
-        #     For more information, see [Caller identities in audit
+        #     The email address of the authenticated user or a service account acting on
+        #     behalf of a third party principal making the request. For third party
+        #     identity callers, the `principal_subject` field is populated instead of
+        #     this field. For privacy reasons, the principal email address is sometimes
+        #     redacted. For more information, see [Caller identities in audit
         #     logs](https://cloud.google.com/logging/docs/audit#user-id).
         # @!attribute [rw] caller_ip
         #   @return [::String]
@@ -40,8 +40,8 @@ module Google
         #     The caller IP's geolocation, which identifies where the call came from.
         # @!attribute [rw] user_agent_family
         #   @return [::String]
-        #     What kind of user agent is associated, for example operating system shells,
-        #     embedded or stand-alone applications, etc.
+        #     Type of user agent associated with the finding. For example, an operating
+        #     system shell or an embedded or standalone application.
         # @!attribute [rw] service_name
         #   @return [::String]
         #     This is the API service that the service account made a call to, e.g.
@@ -51,36 +51,35 @@ module Google
         #     The method that the service account called, e.g. "SetIamPolicy".
         # @!attribute [rw] principal_subject
         #   @return [::String]
-        #     A string representing the principal_subject associated with the identity.
-        #     As compared to `principal_email`, supports principals that aren't
-        #     associated with email addresses, such as third party principals. For most
-        #     identities, the format will be `principal://iam.googleapis.com/{identity
-        #     pool name}/subjects/\\{subject}` except for some GKE identities
-        #     (GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
-        #     format `serviceAccount:{identity pool name}[{subject}]`
+        #     A string that represents the principal_subject that is associated with the
+        #     identity. Unlike `principal_email`, `principal_subject` supports principals
+        #     that aren't associated with email addresses, such as third party
+        #     principals. For most identities, the format is
+        #     `principal://iam.googleapis.com/{identity pool name}/subject/{subject}`.
+        #     Some GKE identities, such as GKE_WORKLOAD, FREEFORM, and GKE_HUB_WORKLOAD,
+        #     still use the legacy format `serviceAccount:{identity pool
+        #     name}[\\{subject}]`.
         # @!attribute [rw] service_account_key_name
         #   @return [::String]
-        #     The name of the service account key used to create or exchange
-        #     credentials for authenticating the service account making the request.
+        #     The name of the service account key that was used to create or exchange
+        #     credentials when authenticating the service account that made the request.
         #     This is a scheme-less URI full resource name. For example:
         #
-        #     "//iam.googleapis.com/projects/\\{PROJECT_ID}/serviceAccounts/\\{ACCOUNT}/keys/\\{key}"
+        #     "//iam.googleapis.com/projects/\\{PROJECT_ID}/serviceAccounts/\\{ACCOUNT}/keys/\\{key}".
         # @!attribute [rw] service_account_delegation_info
         #   @return [::Array<::Google::Cloud::SecurityCenter::V1::ServiceAccountDelegationInfo>]
-        #     Identity delegation history of an authenticated service account that makes
-        #     the request. It contains information on the real authorities that try to
-        #     access GCP resources by delegating on a service account. When multiple
-        #     authorities are present, they are guaranteed to be sorted based on the
-        #     original ordering of the identity delegation events.
+        #     The identity delegation history of an authenticated service account that
+        #     made the request. The `serviceAccountDelegationInfo[]` object contains
+        #     information about the real authorities that try to access Google Cloud
+        #     resources by delegating on a service account. When multiple authorities are
+        #     present, they are guaranteed to be sorted based on the original ordering of
+        #     the identity delegation events.
         # @!attribute [rw] user_name
         #   @return [::String]
-        #     A string that represents the username of a user, user account, or other
-        #     entity involved in the access event. What the entity is and what its role
-        #     in the access event is depends on the finding that this field appears in.
-        #     The entity is likely not an IAM principal, but could be a user that is
-        #     logged into an operating system, if the finding is VM-related, or a user
-        #     that is logged into some type of application that is involved in the
-        #     access event.
+        #     A string that represents a username. The username provided depends on the
+        #     type of the finding and is likely not an IAM principal. For example, this
+        #     can be a system username if the finding is related to a virtual machine, or
+        #     it can be an application login username.
         class Access
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods

data/proto_docs/google/cloud/securitycenter/v1/cloud_dlp_data_profile.rb

@@ -0,0 +1,37 @@
+# frozen_string_literal: true
+
+# Copyright 2023 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1
+        # The [data profile](https://cloud.google.com/dlp/docs/data-profiles)
+        # associated with the finding.
+        # @!attribute [rw] data_profile
+        #   @return [::String]
+        #     Name of the data profile, for example,
+        #     `projects/123/locations/europe/tableProfiles/8383929`.
+        class CloudDlpDataProfile
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/securitycenter/v1/cloud_dlp_inspection.rb

@@ -0,0 +1,50 @@
+# frozen_string_literal: true
+
+# Copyright 2023 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module SecurityCenter
+      module V1
+        # Details about the Cloud Data Loss Prevention (Cloud DLP) [inspection
+        # job](https://cloud.google.com/dlp/docs/concepts-job-triggers) that produced
+        # the finding.
+        # @!attribute [rw] inspect_job
+        #   @return [::String]
+        #     Name of the inspection job, for example,
+        #     `projects/123/locations/europe/dlpJobs/i-8383929`.
+        # @!attribute [rw] info_type
+        #   @return [::String]
+        #     The [type of
+        #     information](https://cloud.google.com/dlp/docs/infotypes-reference) found,
+        #     for example, `EMAIL_ADDRESS` or `STREET_ADDRESS`.
+        # @!attribute [rw] info_type_count
+        #   @return [::Integer]
+        #     The number of times Cloud DLP found this infoType within this job
+        #     and resource.
+        # @!attribute [rw] full_scan
+        #   @return [::Boolean]
+        #     Whether Cloud DLP scanned the complete resource or a sampled subset.
+        class CloudDlpInspection
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/securitycenter/v1/finding.rb

@@ -30,10 +30,12 @@ module Google
         # finding.
         # @!attribute [rw] name
         #   @return [::String]
-        #     The relative resource name of this finding. See:
-        #     https://cloud.google.com/apis/design/resource_names#relative_resource_name
-        #     Example:
-        #     "organizations/\\{organization_id}/sources/\\{source_id}/findings/\\{finding_id}"
+        #     The [relative resource
+        #     name](https://cloud.google.com/apis/design/resource_names#relative_resource_name)
+        #     of the finding. Example:
+        #     "organizations/\\{organization_id}/sources/\\{source_id}/findings/\\{finding_id}",
+        #     "folders/\\{folder_id}/sources/\\{source_id}/findings/\\{finding_id}",
+        #     "projects/\\{project_id}/sources/\\{source_id}/findings/\\{finding_id}".
         # @!attribute [rw] parent
         #   @return [::String]
         #     The relative resource name of the source the finding belongs to. See:
@@ -107,11 +109,11 @@ module Google
         #     The class of the finding.
         # @!attribute [rw] indicator
         #   @return [::Google::Cloud::SecurityCenter::V1::Indicator]
-        #     Represents what's commonly known as an Indicator of compromise (IoC) in
+        #     Represents what's commonly known as an *indicator of compromise* (IoC) in
         #     computer forensics. This is an artifact observed on a network or in an
         #     operating system that, with high confidence, indicates a computer
-        #     intrusion.
-        #     Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
+        #     intrusion. For more information, see [Indicator of
+        #     compromise](https://en.wikipedia.org/wiki/Indicator_of_compromise).
         # @!attribute [rw] vulnerability
         #   @return [::Google::Cloud::SecurityCenter::V1::Vulnerability]
         #     Represents vulnerability-specific fields like CVE and CVSS scores.
@@ -130,17 +132,16 @@ module Google
         #     See: https://attack.mitre.org
         # @!attribute [rw] access
         #   @return [::Google::Cloud::SecurityCenter::V1::Access]
-        #     Access details associated to the Finding, such as more information on the
-        #     caller, which method was accessed, from where, etc.
+        #     Access details associated with the finding, such as more information on the
+        #     caller, which method was accessed, and from where.
         # @!attribute [rw] connections
         #   @return [::Array<::Google::Cloud::SecurityCenter::V1::Connection>]
         #     Contains information about the IP connection associated with the finding.
         # @!attribute [rw] mute_initiator
         #   @return [::String]
-        #     First known as mute_annotation. Records additional information about the
-        #     mute operation e.g. mute config that muted the finding, user who muted the
-        #     finding, etc. Unlike other attributes of a finding, a finding provider
-        #     shouldn't set the value of mute.
+        #     Records additional information about the mute operation, for example, the
+        #     [mute configuration](/security-command-center/docs/how-to-mute-findings)
+        #     that muted the finding and the user who muted the finding.
         # @!attribute [rw] processes
         #   @return [::Array<::Google::Cloud::SecurityCenter::V1::Process>]
         #     Represents operating system processes associated with the Finding.
@@ -173,16 +174,16 @@ module Google
         #     "Event Threat Detection" or "Security Health Analytics".
         # @!attribute [rw] description
         #   @return [::String]
-        #     Contains more detail about the finding.
+        #     Contains more details about the finding.
         # @!attribute [rw] exfiltration
         #   @return [::Google::Cloud::SecurityCenter::V1::Exfiltration]
-        #     Represents exfiltration associated with the Finding.
+        #     Represents exfiltrations associated with the finding.
         # @!attribute [rw] iam_bindings
         #   @return [::Array<::Google::Cloud::SecurityCenter::V1::IamBinding>]
-        #     Represents IAM bindings associated with the Finding.
+        #     Represents IAM bindings associated with the finding.
         # @!attribute [rw] next_steps
         #   @return [::String]
-        #     Next steps associate to the finding.
+        #     Steps to address the finding.
         # @!attribute [rw] module_name
         #   @return [::String]
         #     Unique identifier of the module which generated the finding.
@@ -190,8 +191,8 @@ module Google
         #     folders/598186756061/securityHealthAnalyticsSettings/customModules/56799441161885
         # @!attribute [rw] containers
         #   @return [::Array<::Google::Cloud::SecurityCenter::V1::Container>]
-        #     Containers associated with the finding. containers provides information
-        #     for both Kubernetes and non-Kubernetes containers.
+        #     Containers associated with the finding. This field provides information for
+        #     both Kubernetes and non-Kubernetes containers.
         # @!attribute [rw] kubernetes
         #   @return [::Google::Cloud::SecurityCenter::V1::Kubernetes]
         #     Kubernetes resources associated with the finding.
@@ -201,9 +202,16 @@ module Google
         # @!attribute [rw] files
         #   @return [::Array<::Google::Cloud::SecurityCenter::V1::File>]
         #     File associated with the finding.
+        # @!attribute [rw] cloud_dlp_inspection
+        #   @return [::Google::Cloud::SecurityCenter::V1::CloudDlpInspection]
+        #     Cloud Data Loss Prevention (Cloud DLP) inspection results that are
+        #     associated with the finding.
+        # @!attribute [rw] cloud_dlp_data_profile
+        #   @return [::Google::Cloud::SecurityCenter::V1::CloudDlpDataProfile]
+        #     Cloud DLP data profile that is associated with the finding.
         # @!attribute [rw] kernel_rootkit
         #   @return [::Google::Cloud::SecurityCenter::V1::KernelRootkit]
-        #     Kernel Rootkit signature.
+        #     Signature of the kernel rootkit.
         class Finding
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -259,7 +267,8 @@ module Google
             # exploitable, and results in the direct ability to execute arbitrary code,
             # exfiltrate data, and otherwise gain additional access and privileges to
             # cloud resources and workloads. Examples include publicly accessible
-            # unprotected user data, public SSH access with weak or no passwords, etc.
+            # unprotected user data and public SSH access with weak or no
+            # passwords.
             #
             # Threat:
             # Indicates a threat that is able to access, modify, or delete data or

data/proto_docs/google/cloud/securitycenter/v1/securitycenter_service.rb

@@ -130,7 +130,7 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
-        # Request message for creating security health analytics custom modules.
+        # Request message for creating Security Health Analytics custom modules.
         # @!attribute [rw] parent
         #   @return [::String]
         #     Required. Resource name of the new custom module's parent. Its format is
@@ -185,7 +185,7 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
-        # Request message for deleting security health analytics custom modules.
+        # Request message for deleting Security Health Analytics custom modules.
         # @!attribute [rw] name
         #   @return [::String]
         #     Required. Name of the custom module to delete. Its format is
@@ -244,7 +244,7 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
-        # Request message for getting effective security health analytics custom
+        # Request message for getting effective Security Health Analytics custom
         # modules.
         # @!attribute [rw] name
         #   @return [::String]
@@ -258,7 +258,7 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
-        # Request message for getting security health analytics custom modules.
+        # Request message for getting Security Health Analytics custom modules.
         # @!attribute [rw] name
         #   @return [::String]
         #     Required. Name of the custom module to get. Its format is
@@ -625,7 +625,7 @@ module Google
           end
         end
 
-        # Request message for listing descendant security health analytics custom
+        # Request message for listing descendant Security Health Analytics custom
         # modules.
         # @!attribute [rw] parent
         #   @return [::String]
@@ -645,7 +645,7 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
-        # Response message for listing descendant security health analytics custom
+        # Response message for listing descendant Security Health Analytics custom
         # modules.
         # @!attribute [rw] security_health_analytics_custom_modules
         #   @return [::Array<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>]
@@ -730,7 +730,7 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
-        # Request message for listing effective security health analytics custom
+        # Request message for listing effective Security Health Analytics custom
         # modules.
         # @!attribute [rw] parent
         #   @return [::String]
@@ -750,7 +750,7 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
-        # Response message for listing effective security health analytics custom
+        # Response message for listing effective Security Health Analytics custom
         # modules.
         # @!attribute [rw] effective_security_health_analytics_custom_modules
         #   @return [::Array<::Google::Cloud::SecurityCenter::V1::EffectiveSecurityHealthAnalyticsCustomModule>]
@@ -764,7 +764,7 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
-        # Request message for listing security health analytics custom modules.
+        # Request message for listing Security Health Analytics custom modules.
         # @!attribute [rw] parent
         #   @return [::String]
         #     Required. Name of parent to list custom modules. Its format is
@@ -783,7 +783,7 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
-        # Response message for listing security health analytics custom modules.
+        # Response message for listing Security Health Analytics custom modules.
         # @!attribute [rw] security_health_analytics_custom_modules
         #   @return [::Array<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>]
         #     Custom modules belonging to the requested parent.
@@ -1396,7 +1396,7 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
-        # Request message for updating security health analytics custom modules.
+        # Request message for updating Security Health Analytics custom modules.
         # @!attribute [rw] security_health_analytics_custom_module
         #   @return [::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule]
         #     Required. The SecurityHealthAnalytics custom module to update.

data/proto_docs/google/protobuf/any.rb

@@ -43,8 +43,12 @@ module Google
     #     if (any.is(Foo.class)) {
     #       foo = any.unpack(Foo.class);
     #     }
+    #     // or ...
+    #     if (any.isSameTypeAs(Foo.getDefaultInstance())) {
+    #       foo = any.unpack(Foo.getDefaultInstance());
+    #     }
     #
-    # Example 3: Pack and unpack a message in Python.
+    #  Example 3: Pack and unpack a message in Python.
     #
     #     foo = Foo(...)
     #     any = Any()
@@ -54,7 +58,7 @@ module Google
     #       any.Unpack(foo)
     #       ...
     #
-    # Example 4: Pack and unpack a message in Go
+    #  Example 4: Pack and unpack a message in Go
     #
     #      foo := &pb.Foo{...}
     #      any, err := anypb.New(foo)
@@ -73,9 +77,8 @@ module Google
     # in the type URL, for example "foo.bar.com/x/y.z" will yield type
     # name "y.z".
     #
-    #
     # JSON
-    #
+    # ====
     # The JSON representation of an `Any` value uses the regular
     # representation of the deserialized, embedded message, with an
     # additional field `@type` which contains the type URL. Example:

data/proto_docs/google/protobuf/struct.rb

@@ -87,7 +87,7 @@ module Google
     # `NullValue` is a singleton enumeration to represent the null value for the
     # `Value` type union.
     #
-    #  The JSON representation for `NullValue` is JSON `null`.
+    # The JSON representation for `NullValue` is JSON `null`.
     module NullValue
       # Null value.
       NULL_VALUE = 0

data/proto_docs/google/protobuf/timestamp.rb

@@ -69,7 +69,6 @@ module Google
     #     Timestamp timestamp = Timestamp.newBuilder().setSeconds(millis / 1000)
     #         .setNanos((int) ((millis % 1000) * 1000000)).build();
     #
-    #
     # Example 5: Compute Timestamp from Java `Instant.now()`.
     #
     #     Instant now = Instant.now();
@@ -78,7 +77,6 @@ module Google
     #         Timestamp.newBuilder().setSeconds(now.getEpochSecond())
     #             .setNanos(now.getNano()).build();
     #
-    #
     # Example 6: Compute Timestamp from current time in Python.
     #
     #     timestamp = Timestamp()
@@ -108,7 +106,7 @@ module Google
     # [`strftime`](https://docs.python.org/2/library/time.html#time.strftime) with
     # the time format spec '%Y-%m-%dT%H:%M:%S.%fZ'. Likewise, in Java, one can use
     # the Joda Time's [`ISODateTimeFormat.dateTime()`](
-    # http://www.joda.org/joda-time/apidocs/org/joda/time/format/ISODateTimeFormat.html#dateTime%2D%2D
+    # http://joda-time.sourceforge.net/apidocs/org/joda/time/format/ISODateTimeFormat.html#dateTime()
     # ) to obtain a formatter capable of generating timestamps in this format.
     # @!attribute [rw] seconds
     #   @return [::Integer]