google-cloud-security_center-v1 0.6.0 → 0.8.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/AUTHENTICATION.md +8 -8
- data/README.md +1 -1
- data/lib/google/cloud/security_center/v1/security_center/client.rb +67 -70
- data/lib/google/cloud/security_center/v1/security_center/operations.rb +4 -4
- data/lib/google/cloud/security_center/v1/security_center/paths.rb +174 -16
- data/lib/google/cloud/security_center/v1/version.rb +1 -1
- data/lib/google/cloud/securitycenter/v1/asset_pb.rb +4 -1
- data/lib/google/cloud/securitycenter/v1/finding_pb.rb +13 -1
- data/lib/google/cloud/securitycenter/v1/folder_pb.rb +24 -0
- data/lib/google/cloud/securitycenter/v1/indicator_pb.rb +24 -0
- data/lib/google/cloud/securitycenter/v1/notification_config_pb.rb +1 -1
- data/lib/google/cloud/securitycenter/v1/notification_message_pb.rb +1 -1
- data/lib/google/cloud/securitycenter/v1/organization_settings_pb.rb +2 -1
- data/lib/google/cloud/securitycenter/v1/resource_pb.rb +3 -0
- data/lib/google/cloud/securitycenter/v1/run_asset_discovery_response_pb.rb +1 -1
- data/lib/google/cloud/securitycenter/v1/security_marks_pb.rb +2 -1
- data/lib/google/cloud/securitycenter/v1/securitycenter_service_pb.rb +2 -0
- data/lib/google/cloud/securitycenter/v1/securitycenter_service_services_pb.rb +4 -1
- data/lib/google/cloud/securitycenter/v1/source_pb.rb +2 -1
- data/proto_docs/google/api/field_behavior.rb +7 -1
- data/proto_docs/google/cloud/securitycenter/v1/asset.rb +13 -2
- data/proto_docs/google/cloud/securitycenter/v1/finding.rb +40 -1
- data/proto_docs/google/cloud/securitycenter/v1/folder.rb +40 -0
- data/proto_docs/google/cloud/securitycenter/v1/indicator.rb +41 -0
- data/proto_docs/google/cloud/securitycenter/v1/organization_settings.rb +4 -0
- data/proto_docs/google/cloud/securitycenter/v1/resource.rb +5 -0
- data/proto_docs/google/cloud/securitycenter/v1/security_marks.rb +10 -0
- data/proto_docs/google/cloud/securitycenter/v1/securitycenter_service.rb +57 -24
- data/proto_docs/google/cloud/securitycenter/v1/source.rb +8 -0
- data/proto_docs/google/type/expr.rb +35 -12
- metadata +19 -9
@@ -49,6 +49,10 @@ module Google
|
|
49
49
|
# @!attribute [rw] inclusion_mode
|
50
50
|
# @return [::Google::Cloud::SecurityCenter::V1::OrganizationSettings::AssetDiscoveryConfig::InclusionMode]
|
51
51
|
# The mode to use for filtering asset discovery.
|
52
|
+
# @!attribute [rw] folder_ids
|
53
|
+
# @return [::Array<::String>]
|
54
|
+
# The folder ids to use for filtering asset discovery.
|
55
|
+
# It consists of only digits, e.g., 756619654966.
|
52
56
|
class AssetDiscoveryConfig
|
53
57
|
include ::Google::Protobuf::MessageExts
|
54
58
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -38,6 +38,11 @@ module Google
|
|
38
38
|
# @!attribute [rw] parent_display_name
|
39
39
|
# @return [::String]
|
40
40
|
# The human readable name of resource's parent.
|
41
|
+
# @!attribute [r] folders
|
42
|
+
# @return [::Array<::Google::Cloud::SecurityCenter::V1::Folder>]
|
43
|
+
# Output only. Contains a Folder message for each folder in the assets ancestry.
|
44
|
+
# The first folder is the deepest nested folder, and the last folder is the
|
45
|
+
# folder directly under the Organization.
|
41
46
|
class Resource
|
42
47
|
include ::Google::Protobuf::MessageExts
|
43
48
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -42,6 +42,16 @@ module Google
|
|
42
42
|
# * Keys must be letters, numbers, underscores, or dashes
|
43
43
|
# * Values have leading and trailing whitespace trimmed, remaining
|
44
44
|
# characters must be between 1 - 4096 characters (inclusive)
|
45
|
+
# @!attribute [rw] canonical_name
|
46
|
+
# @return [::String]
|
47
|
+
# The canonical name of the marks.
|
48
|
+
# Examples:
|
49
|
+
# "organizations/\\{organization_id}/assets/\\{asset_id}/securityMarks"
|
50
|
+
# "folders/\\{folder_id}/assets/\\{asset_id}/securityMarks"
|
51
|
+
# "projects/\\{project_number}/assets/\\{asset_id}/securityMarks"
|
52
|
+
# "organizations/\\{organization_id}/sources/\\{source_id}/findings/\\{finding_id}/securityMarks"
|
53
|
+
# "folders/\\{folder_id}/sources/\\{source_id}/findings/\\{finding_id}/securityMarks"
|
54
|
+
# "projects/\\{project_number}/sources/\\{source_id}/findings/\\{finding_id}/securityMarks"
|
45
55
|
class SecurityMarks
|
46
56
|
include ::Google::Protobuf::MessageExts
|
47
57
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -118,7 +118,8 @@ module Google
|
|
118
118
|
# @!attribute [rw] parent
|
119
119
|
# @return [::String]
|
120
120
|
# Required. Name of the organization to groupBy. Its format is
|
121
|
-
# "organizations/[organization_id]
|
121
|
+
# "organizations/[organization_id], folders/[folder_id], or
|
122
|
+
# projects/[project_id]".
|
122
123
|
# @!attribute [rw] filter
|
123
124
|
# @return [::String]
|
124
125
|
# Expression that defines the filter to apply across assets.
|
@@ -277,9 +278,12 @@ module Google
|
|
277
278
|
# @!attribute [rw] parent
|
278
279
|
# @return [::String]
|
279
280
|
# Required. Name of the source to groupBy. Its format is
|
280
|
-
# "organizations/[organization_id]/sources/[source_id]"
|
281
|
-
#
|
282
|
-
#
|
281
|
+
# "organizations/[organization_id]/sources/[source_id]",
|
282
|
+
# folders/[folder_id]/sources/[source_id], or
|
283
|
+
# projects/[project_id]/sources/[source_id]. To groupBy across all sources
|
284
|
+
# provide a source_id of `-`. For example:
|
285
|
+
# organizations/\\{organization_id}/sources/-, folders/\\{folder_id}/sources/-,
|
286
|
+
# or projects/\\{project_id}/sources/-
|
283
287
|
# @!attribute [rw] filter
|
284
288
|
# @return [::String]
|
285
289
|
# Expression that defines the filter to apply across findings.
|
@@ -315,23 +319,32 @@ module Google
|
|
315
319
|
# * category: `=`, `:`
|
316
320
|
# * external_uri: `=`, `:`
|
317
321
|
# * event_time: `=`, `>`, `<`, `>=`, `<=`
|
318
|
-
# * severity: `=`, `:`
|
319
322
|
#
|
320
323
|
# Usage: This should be milliseconds since epoch or an RFC3339 string.
|
321
324
|
# Examples:
|
322
325
|
# `event_time = "2019-06-10T16:07:18-07:00"`
|
323
326
|
# `event_time = 1560208038000`
|
324
327
|
#
|
328
|
+
# * severity: `=`, `:`
|
329
|
+
# * workflow_state: `=`, `:`
|
325
330
|
# * security_marks.marks: `=`, `:`
|
326
331
|
# * source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
|
327
332
|
#
|
328
|
-
#
|
333
|
+
# For example, `source_properties.size = 100` is a valid filter string.
|
329
334
|
#
|
330
|
-
#
|
331
|
-
#
|
335
|
+
# Use a partial match on the empty string to filter based on a property
|
336
|
+
# existing: `source_properties.my_property : ""`
|
332
337
|
#
|
333
|
-
#
|
334
|
-
#
|
338
|
+
# Use a negated partial match on the empty string to filter based on a
|
339
|
+
# property not existing: `-source_properties.my_property : ""`
|
340
|
+
#
|
341
|
+
# * resource:
|
342
|
+
# * resource.name: `=`, `:`
|
343
|
+
# * resource.parent_name: `=`, `:`
|
344
|
+
# * resource.parent_display_name: `=`, `:`
|
345
|
+
# * resource.project_name: `=`, `:`
|
346
|
+
# * resource.project_display_name: `=`, `:`
|
347
|
+
# * resource.type: `=`, `:`
|
335
348
|
# @!attribute [rw] group_by
|
336
349
|
# @return [::String]
|
337
350
|
# Required. Expression that defines what assets fields to use for grouping (including
|
@@ -480,8 +493,9 @@ module Google
|
|
480
493
|
# Request message for listing sources.
|
481
494
|
# @!attribute [rw] parent
|
482
495
|
# @return [::String]
|
483
|
-
# Required. Resource name of the parent of sources to list. Its format should
|
484
|
-
#
|
496
|
+
# Required. Resource name of the parent of sources to list. Its format should be
|
497
|
+
# "organizations/[organization_id], folders/[folder_id], or
|
498
|
+
# projects/[project_id]".
|
485
499
|
# @!attribute [rw] page_token
|
486
500
|
# @return [::String]
|
487
501
|
# The value returned by the last `ListSourcesResponse`; indicates
|
@@ -513,7 +527,8 @@ module Google
|
|
513
527
|
# @!attribute [rw] parent
|
514
528
|
# @return [::String]
|
515
529
|
# Required. Name of the organization assets should belong to. Its format is
|
516
|
-
# "organizations/[organization_id]
|
530
|
+
# "organizations/[organization_id], folders/[folder_id], or
|
531
|
+
# projects/[project_id]".
|
517
532
|
# @!attribute [rw] filter
|
518
533
|
# @return [::String]
|
519
534
|
# Expression that defines the filter to apply across assets.
|
@@ -707,9 +722,12 @@ module Google
|
|
707
722
|
# @!attribute [rw] parent
|
708
723
|
# @return [::String]
|
709
724
|
# Required. Name of the source the findings belong to. Its format is
|
710
|
-
# "organizations/[organization_id]/sources/[source_id]
|
711
|
-
# sources
|
712
|
-
#
|
725
|
+
# "organizations/[organization_id]/sources/[source_id],
|
726
|
+
# folders/[folder_id]/sources/[source_id], or
|
727
|
+
# projects/[project_id]/sources/[source_id]". To list across all sources
|
728
|
+
# provide a source_id of `-`. For example:
|
729
|
+
# organizations/\\{organization_id}/sources/-, folders/\\{folder_id}/sources/- or
|
730
|
+
# projects/\\{projects_id}/sources/-
|
713
731
|
# @!attribute [rw] filter
|
714
732
|
# @return [::String]
|
715
733
|
# Expression that defines the filter to apply across findings.
|
@@ -745,23 +763,33 @@ module Google
|
|
745
763
|
# * category: `=`, `:`
|
746
764
|
# * external_uri: `=`, `:`
|
747
765
|
# * event_time: `=`, `>`, `<`, `>=`, `<=`
|
748
|
-
# * severity: `=`, `:`
|
749
766
|
#
|
750
767
|
# Usage: This should be milliseconds since epoch or an RFC3339 string.
|
751
768
|
# Examples:
|
752
769
|
# `event_time = "2019-06-10T16:07:18-07:00"`
|
753
770
|
# `event_time = 1560208038000`
|
754
771
|
#
|
755
|
-
#
|
756
|
-
#
|
772
|
+
# * severity: `=`, `:`
|
773
|
+
# * workflow_state: `=`, `:`
|
774
|
+
# * security_marks.marks: `=`, `:`
|
775
|
+
# * source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
|
757
776
|
#
|
758
|
-
#
|
777
|
+
# For example, `source_properties.size = 100` is a valid filter string.
|
759
778
|
#
|
760
|
-
#
|
761
|
-
#
|
779
|
+
# Use a partial match on the empty string to filter based on a property
|
780
|
+
# existing: `source_properties.my_property : ""`
|
762
781
|
#
|
763
|
-
#
|
764
|
-
#
|
782
|
+
# Use a negated partial match on the empty string to filter based on a
|
783
|
+
# property not existing: `-source_properties.my_property : ""`
|
784
|
+
#
|
785
|
+
# * resource:
|
786
|
+
# * resource.name: `=`, `:`
|
787
|
+
# * resource.parent_name: `=`, `:`
|
788
|
+
# * resource.parent_display_name: `=`, `:`
|
789
|
+
# * resource.project_name: `=`, `:`
|
790
|
+
# * resource.project_display_name: `=`, `:`
|
791
|
+
# * resource.type: `=`, `:`
|
792
|
+
# * resource.folders.resource_folder: `=`, `:`
|
765
793
|
# @!attribute [rw] order_by
|
766
794
|
# @return [::String]
|
767
795
|
# Expression that defines what fields and order to use for sorting. The
|
@@ -888,6 +916,11 @@ module Google
|
|
888
916
|
# @!attribute [rw] parent_display_name
|
889
917
|
# @return [::String]
|
890
918
|
# The human readable name of resource's parent.
|
919
|
+
# @!attribute [rw] folders
|
920
|
+
# @return [::Array<::Google::Cloud::SecurityCenter::V1::Folder>]
|
921
|
+
# Contains a Folder message for each folder in the assets ancestry.
|
922
|
+
# The first folder is the deepest nested folder, and the last folder is
|
923
|
+
# the folder directly under the Organization.
|
891
924
|
class Resource
|
892
925
|
include ::Google::Protobuf::MessageExts
|
893
926
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -47,6 +47,14 @@ module Google
|
|
47
47
|
# scan and detect four common vulnerabilities, including cross-site-scripting
|
48
48
|
# (XSS), Flash injection, mixed content (HTTP in HTTPS), and
|
49
49
|
# outdated or insecure libraries."
|
50
|
+
# @!attribute [rw] canonical_name
|
51
|
+
# @return [::String]
|
52
|
+
# The canonical name of the finding. It's either
|
53
|
+
# "organizations/\\{organization_id}/sources/\\{source_id}",
|
54
|
+
# "folders/\\{folder_id}/sources/\\{source_id}" or
|
55
|
+
# "projects/\\{project_number}/sources/\\{source_id}",
|
56
|
+
# depending on the closest CRM ancestor of the resource associated with the
|
57
|
+
# finding.
|
50
58
|
class Source
|
51
59
|
include ::Google::Protobuf::MessageExts
|
52
60
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -19,30 +19,53 @@
|
|
19
19
|
|
20
20
|
module Google
|
21
21
|
module Type
|
22
|
-
# Represents
|
22
|
+
# Represents a textual expression in the Common Expression Language (CEL)
|
23
|
+
# syntax. CEL is a C-like expression language. The syntax and semantics of CEL
|
24
|
+
# are documented at https://github.com/google/cel-spec.
|
23
25
|
#
|
24
|
-
#
|
25
|
-
#
|
26
|
-
#
|
26
|
+
# Example (Comparison):
|
27
|
+
#
|
28
|
+
# title: "Summary size limit"
|
29
|
+
# description: "Determines if a summary is less than 100 chars"
|
30
|
+
# expression: "document.summary.size() < 100"
|
31
|
+
#
|
32
|
+
# Example (Equality):
|
33
|
+
#
|
34
|
+
# title: "Requestor is owner"
|
35
|
+
# description: "Determines if requestor is the document owner"
|
36
|
+
# expression: "document.owner == request.auth.claims.email"
|
37
|
+
#
|
38
|
+
# Example (Logic):
|
39
|
+
#
|
40
|
+
# title: "Public documents"
|
41
|
+
# description: "Determine whether the document should be publicly visible"
|
42
|
+
# expression: "document.type != 'private' && document.type != 'internal'"
|
43
|
+
#
|
44
|
+
# Example (Data Manipulation):
|
45
|
+
#
|
46
|
+
# title: "Notification string"
|
47
|
+
# description: "Create a notification string with a timestamp."
|
48
|
+
# expression: "'New message received at ' + string(document.create_time)"
|
49
|
+
#
|
50
|
+
# The exact variables and functions that may be referenced within an expression
|
51
|
+
# are determined by the service that evaluates it. See the service
|
52
|
+
# documentation for additional information.
|
27
53
|
# @!attribute [rw] expression
|
28
54
|
# @return [::String]
|
29
|
-
# Textual representation of an expression in
|
30
|
-
#
|
31
|
-
#
|
32
|
-
# The application context of the containing message determines which
|
33
|
-
# well-known feature set of CEL is supported.
|
55
|
+
# Textual representation of an expression in Common Expression Language
|
56
|
+
# syntax.
|
34
57
|
# @!attribute [rw] title
|
35
58
|
# @return [::String]
|
36
|
-
#
|
59
|
+
# Optional. Title for the expression, i.e. a short string describing
|
37
60
|
# its purpose. This can be used e.g. in UIs which allow to enter the
|
38
61
|
# expression.
|
39
62
|
# @!attribute [rw] description
|
40
63
|
# @return [::String]
|
41
|
-
#
|
64
|
+
# Optional. Description of the expression. This is a longer text which
|
42
65
|
# describes the expression, e.g. when hovered over it in a UI.
|
43
66
|
# @!attribute [rw] location
|
44
67
|
# @return [::String]
|
45
|
-
#
|
68
|
+
# Optional. String indicating the location of the expression for error
|
46
69
|
# reporting, e.g. a file name and a position in the file.
|
47
70
|
class Expr
|
48
71
|
include ::Google::Protobuf::MessageExts
|
metadata
CHANGED
@@ -1,29 +1,35 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-cloud-security_center-v1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.8.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2021-
|
11
|
+
date: 2021-07-29 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: gapic-common
|
15
15
|
requirement: !ruby/object:Gem::Requirement
|
16
16
|
requirements:
|
17
|
-
- - "
|
17
|
+
- - ">="
|
18
|
+
- !ruby/object:Gem::Version
|
19
|
+
version: '0.5'
|
20
|
+
- - "<"
|
18
21
|
- !ruby/object:Gem::Version
|
19
|
-
version:
|
22
|
+
version: 2.a
|
20
23
|
type: :runtime
|
21
24
|
prerelease: false
|
22
25
|
version_requirements: !ruby/object:Gem::Requirement
|
23
26
|
requirements:
|
24
|
-
- - "
|
27
|
+
- - ">="
|
28
|
+
- !ruby/object:Gem::Version
|
29
|
+
version: '0.5'
|
30
|
+
- - "<"
|
25
31
|
- !ruby/object:Gem::Version
|
26
|
-
version:
|
32
|
+
version: 2.a
|
27
33
|
- !ruby/object:Gem::Dependency
|
28
34
|
name: google-cloud-errors
|
29
35
|
requirement: !ruby/object:Gem::Requirement
|
@@ -47,7 +53,7 @@ dependencies:
|
|
47
53
|
version: 0.6.10
|
48
54
|
- - "<"
|
49
55
|
- !ruby/object:Gem::Version
|
50
|
-
version:
|
56
|
+
version: 2.a
|
51
57
|
type: :runtime
|
52
58
|
prerelease: false
|
53
59
|
version_requirements: !ruby/object:Gem::Requirement
|
@@ -57,7 +63,7 @@ dependencies:
|
|
57
63
|
version: 0.6.10
|
58
64
|
- - "<"
|
59
65
|
- !ruby/object:Gem::Version
|
60
|
-
version:
|
66
|
+
version: 2.a
|
61
67
|
- !ruby/object:Gem::Dependency
|
62
68
|
name: google-style
|
63
69
|
requirement: !ruby/object:Gem::Requirement
|
@@ -193,6 +199,8 @@ files:
|
|
193
199
|
- lib/google/cloud/security_center/v1/version.rb
|
194
200
|
- lib/google/cloud/securitycenter/v1/asset_pb.rb
|
195
201
|
- lib/google/cloud/securitycenter/v1/finding_pb.rb
|
202
|
+
- lib/google/cloud/securitycenter/v1/folder_pb.rb
|
203
|
+
- lib/google/cloud/securitycenter/v1/indicator_pb.rb
|
196
204
|
- lib/google/cloud/securitycenter/v1/notification_config_pb.rb
|
197
205
|
- lib/google/cloud/securitycenter/v1/notification_message_pb.rb
|
198
206
|
- lib/google/cloud/securitycenter/v1/organization_settings_pb.rb
|
@@ -207,6 +215,8 @@ files:
|
|
207
215
|
- proto_docs/google/api/resource.rb
|
208
216
|
- proto_docs/google/cloud/securitycenter/v1/asset.rb
|
209
217
|
- proto_docs/google/cloud/securitycenter/v1/finding.rb
|
218
|
+
- proto_docs/google/cloud/securitycenter/v1/folder.rb
|
219
|
+
- proto_docs/google/cloud/securitycenter/v1/indicator.rb
|
210
220
|
- proto_docs/google/cloud/securitycenter/v1/notification_config.rb
|
211
221
|
- proto_docs/google/cloud/securitycenter/v1/notification_message.rb
|
212
222
|
- proto_docs/google/cloud/securitycenter/v1/organization_settings.rb
|
@@ -246,7 +256,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
246
256
|
- !ruby/object:Gem::Version
|
247
257
|
version: '0'
|
248
258
|
requirements: []
|
249
|
-
rubygems_version: 3.2.
|
259
|
+
rubygems_version: 3.2.17
|
250
260
|
signing_key:
|
251
261
|
specification_version: 4
|
252
262
|
summary: API Client library for the Cloud Security Command Center V1 API
|