google-cloud-security_center-v1 0.7.0 → 0.8.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/AUTHENTICATION.md +8 -8
- data/README.md +1 -1
- data/lib/google/cloud/security_center/v1/security_center/client.rb +143 -118
- data/lib/google/cloud/security_center/v1/security_center/operations.rb +34 -25
- data/lib/google/cloud/security_center/v1/version.rb +1 -1
- data/lib/google/cloud/securitycenter/v1/finding_pb.rb +11 -0
- data/lib/google/cloud/securitycenter/v1/indicator_pb.rb +24 -0
- data/lib/google/cloud/securitycenter/v1/securitycenter_service_services_pb.rb +1 -1
- data/proto_docs/google/api/field_behavior.rb +7 -1
- data/proto_docs/google/cloud/securitycenter/v1/finding.rb +30 -0
- data/proto_docs/google/cloud/securitycenter/v1/indicator.rb +41 -0
- data/proto_docs/google/cloud/securitycenter/v1/securitycenter_service.rb +33 -14
- data/proto_docs/google/type/expr.rb +35 -12
- metadata +16 -8
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 1b657e12d5e2a6bfbd159e01b4b1eecdf8bf3b0cfeb568132dd0e7243e60dfa2
|
|
4
|
+
data.tar.gz: b56ea7e9107c6e97921855134e4b80fd6b6293dddfa96fe53ba067a055d2ad28
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 2b30d63db862f8a776031257236e97491ba717e687f7db64809b6e0c6afbd18b636b1f0dd5b8c999aa17e089c4ac935d709140927855dea9fdbc779e08343cc0
|
|
7
|
+
data.tar.gz: a0ad157f2d483d34c2bb85b827d24e1327804e9de3732467928da3f5d50ca8fb283a5db12735c67dae3360e770e6c7bfc40def598225c4de3d4683de8892d3d0
|
data/AUTHENTICATION.md
CHANGED
|
@@ -66,11 +66,11 @@ The environment variables that google-cloud-security_center-v1
|
|
|
66
66
|
checks for credentials are configured on the service Credentials class (such as
|
|
67
67
|
{::Google::Cloud::SecurityCenter::V1::SecurityCenter::Credentials}):
|
|
68
68
|
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
|
|
73
|
-
|
|
69
|
+
* `SECURITY_CENTER_CREDENTIALS` - Path to JSON file, or JSON contents
|
|
70
|
+
* `SECURITY_CENTER_KEYFILE` - Path to JSON file, or JSON contents
|
|
71
|
+
* `GOOGLE_CLOUD_CREDENTIALS` - Path to JSON file, or JSON contents
|
|
72
|
+
* `GOOGLE_CLOUD_KEYFILE` - Path to JSON file, or JSON contents
|
|
73
|
+
* `GOOGLE_APPLICATION_CREDENTIALS` - Path to JSON file
|
|
74
74
|
|
|
75
75
|
```ruby
|
|
76
76
|
require "google/cloud/security_center/v1"
|
|
@@ -82,8 +82,8 @@ client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
|
|
|
82
82
|
|
|
83
83
|
### Configuration
|
|
84
84
|
|
|
85
|
-
The **Credentials JSON** can be configured instead of
|
|
86
|
-
environment
|
|
85
|
+
The path to the **Credentials JSON** file can be configured instead of storing
|
|
86
|
+
it in an environment variable. Either on an individual client initialization:
|
|
87
87
|
|
|
88
88
|
```ruby
|
|
89
89
|
require "google/cloud/security_center/v1"
|
|
@@ -93,7 +93,7 @@ client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new do |con
|
|
|
93
93
|
end
|
|
94
94
|
```
|
|
95
95
|
|
|
96
|
-
Or
|
|
96
|
+
Or globally for all clients:
|
|
97
97
|
|
|
98
98
|
```ruby
|
|
99
99
|
require "google/cloud/security_center/v1"
|
data/README.md
CHANGED
|
@@ -33,7 +33,7 @@ In order to use this library, you first need to go through the following steps:
|
|
|
33
33
|
require "google/cloud/security_center/v1"
|
|
34
34
|
|
|
35
35
|
client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
|
|
36
|
-
request =
|
|
36
|
+
request = ::Google::Cloud::SecurityCenter::V1::CreateSourceRequest.new # (request fields as keyword arguments...)
|
|
37
37
|
response = client.create_source request
|
|
38
38
|
```
|
|
39
39
|
|
|
@@ -41,13 +41,12 @@ module Google
|
|
|
41
41
|
# See {::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client::Configuration}
|
|
42
42
|
# for a description of the configuration fields.
|
|
43
43
|
#
|
|
44
|
-
#
|
|
44
|
+
# @example
|
|
45
45
|
#
|
|
46
|
-
#
|
|
47
|
-
#
|
|
48
|
-
#
|
|
49
|
-
#
|
|
50
|
-
# end
|
|
46
|
+
# # Modify the configuration for all SecurityCenter clients
|
|
47
|
+
# ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.configure do |config|
|
|
48
|
+
# config.timeout = 10.0
|
|
49
|
+
# end
|
|
51
50
|
#
|
|
52
51
|
# @yield [config] Configure the Client client.
|
|
53
52
|
# @yieldparam config [Client::Configuration]
|
|
@@ -75,82 +74,52 @@ module Google
|
|
|
75
74
|
|
|
76
75
|
default_config.rpcs.get_iam_policy.timeout = 60.0
|
|
77
76
|
default_config.rpcs.get_iam_policy.retry_policy = {
|
|
78
|
-
initial_delay: 0.1,
|
|
79
|
-
max_delay: 60.0,
|
|
80
|
-
multiplier: 1.3,
|
|
81
|
-
retry_codes: [4, 14]
|
|
77
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
82
78
|
}
|
|
83
79
|
|
|
84
80
|
default_config.rpcs.get_notification_config.timeout = 60.0
|
|
85
81
|
default_config.rpcs.get_notification_config.retry_policy = {
|
|
86
|
-
initial_delay: 0.1,
|
|
87
|
-
max_delay: 60.0,
|
|
88
|
-
multiplier: 1.3,
|
|
89
|
-
retry_codes: [4, 14]
|
|
82
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
90
83
|
}
|
|
91
84
|
|
|
92
85
|
default_config.rpcs.get_organization_settings.timeout = 60.0
|
|
93
86
|
default_config.rpcs.get_organization_settings.retry_policy = {
|
|
94
|
-
initial_delay: 0.1,
|
|
95
|
-
max_delay: 60.0,
|
|
96
|
-
multiplier: 1.3,
|
|
97
|
-
retry_codes: [4, 14]
|
|
87
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
98
88
|
}
|
|
99
89
|
|
|
100
90
|
default_config.rpcs.get_source.timeout = 60.0
|
|
101
91
|
default_config.rpcs.get_source.retry_policy = {
|
|
102
|
-
initial_delay: 0.1,
|
|
103
|
-
max_delay: 60.0,
|
|
104
|
-
multiplier: 1.3,
|
|
105
|
-
retry_codes: [4, 14]
|
|
92
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
106
93
|
}
|
|
107
94
|
|
|
108
95
|
default_config.rpcs.group_assets.timeout = 480.0
|
|
109
96
|
default_config.rpcs.group_assets.retry_policy = {
|
|
110
|
-
initial_delay: 0.1,
|
|
111
|
-
max_delay: 60.0,
|
|
112
|
-
multiplier: 1.3,
|
|
113
|
-
retry_codes: [4, 14]
|
|
97
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
114
98
|
}
|
|
115
99
|
|
|
116
100
|
default_config.rpcs.group_findings.timeout = 480.0
|
|
117
101
|
default_config.rpcs.group_findings.retry_policy = {
|
|
118
|
-
initial_delay: 0.1,
|
|
119
|
-
max_delay: 60.0,
|
|
120
|
-
multiplier: 1.3,
|
|
121
|
-
retry_codes: [4, 14]
|
|
102
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
122
103
|
}
|
|
123
104
|
|
|
124
105
|
default_config.rpcs.list_assets.timeout = 480.0
|
|
125
106
|
default_config.rpcs.list_assets.retry_policy = {
|
|
126
|
-
initial_delay: 0.1,
|
|
127
|
-
max_delay: 60.0,
|
|
128
|
-
multiplier: 1.3,
|
|
129
|
-
retry_codes: [4, 14]
|
|
107
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
130
108
|
}
|
|
131
109
|
|
|
132
110
|
default_config.rpcs.list_findings.timeout = 480.0
|
|
133
111
|
default_config.rpcs.list_findings.retry_policy = {
|
|
134
|
-
initial_delay: 0.1,
|
|
135
|
-
max_delay: 60.0,
|
|
136
|
-
multiplier: 1.3,
|
|
137
|
-
retry_codes: [4, 14]
|
|
112
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
138
113
|
}
|
|
139
114
|
|
|
140
115
|
default_config.rpcs.list_notification_configs.timeout = 60.0
|
|
141
116
|
default_config.rpcs.list_notification_configs.retry_policy = {
|
|
142
|
-
initial_delay: 0.1,
|
|
143
|
-
max_delay: 60.0,
|
|
144
|
-
multiplier: 1.3,
|
|
145
|
-
retry_codes: [4, 14]
|
|
117
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
146
118
|
}
|
|
147
119
|
|
|
148
120
|
default_config.rpcs.list_sources.timeout = 60.0
|
|
149
121
|
default_config.rpcs.list_sources.retry_policy = {
|
|
150
|
-
initial_delay: 0.1,
|
|
151
|
-
max_delay: 60.0,
|
|
152
|
-
multiplier: 1.3,
|
|
153
|
-
retry_codes: [4, 14]
|
|
122
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
154
123
|
}
|
|
155
124
|
|
|
156
125
|
default_config.rpcs.run_asset_discovery.timeout = 60.0
|
|
@@ -161,10 +130,7 @@ module Google
|
|
|
161
130
|
|
|
162
131
|
default_config.rpcs.test_iam_permissions.timeout = 60.0
|
|
163
132
|
default_config.rpcs.test_iam_permissions.retry_policy = {
|
|
164
|
-
initial_delay: 0.1,
|
|
165
|
-
max_delay: 60.0,
|
|
166
|
-
multiplier: 1.3,
|
|
167
|
-
retry_codes: [4, 14]
|
|
133
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
168
134
|
}
|
|
169
135
|
|
|
170
136
|
default_config.rpcs.update_finding.timeout = 60.0
|
|
@@ -206,19 +172,15 @@ module Google
|
|
|
206
172
|
##
|
|
207
173
|
# Create a new SecurityCenter client object.
|
|
208
174
|
#
|
|
209
|
-
#
|
|
210
|
-
#
|
|
211
|
-
# To create a new SecurityCenter client with the default
|
|
212
|
-
# configuration:
|
|
213
|
-
#
|
|
214
|
-
# client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
|
|
175
|
+
# @example
|
|
215
176
|
#
|
|
216
|
-
#
|
|
217
|
-
#
|
|
177
|
+
# # Create a client using the default configuration
|
|
178
|
+
# client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
|
|
218
179
|
#
|
|
219
|
-
#
|
|
220
|
-
#
|
|
221
|
-
#
|
|
180
|
+
# # Create a client using a custom configuration
|
|
181
|
+
# client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new do |config|
|
|
182
|
+
# config.timeout = 10.0
|
|
183
|
+
# end
|
|
222
184
|
#
|
|
223
185
|
# @yield [config] Configure the SecurityCenter client.
|
|
224
186
|
# @yieldparam config [Client::Configuration]
|
|
@@ -238,14 +200,13 @@ module Google
|
|
|
238
200
|
|
|
239
201
|
# Create credentials
|
|
240
202
|
credentials = @config.credentials
|
|
241
|
-
# Use self-signed JWT if the
|
|
203
|
+
# Use self-signed JWT if the endpoint is unchanged from default,
|
|
242
204
|
# but only if the default endpoint does not have a region prefix.
|
|
243
|
-
enable_self_signed_jwt = @config.
|
|
244
|
-
@config.endpoint == Client.configure.endpoint &&
|
|
205
|
+
enable_self_signed_jwt = @config.endpoint == Client.configure.endpoint &&
|
|
245
206
|
!@config.endpoint.split(".").first.include?("-")
|
|
246
207
|
credentials ||= Credentials.default scope: @config.scope,
|
|
247
208
|
enable_self_signed_jwt: enable_self_signed_jwt
|
|
248
|
-
if credentials.is_a?(String) || credentials.is_a?(Hash)
|
|
209
|
+
if credentials.is_a?(::String) || credentials.is_a?(::Hash)
|
|
249
210
|
credentials = Credentials.new credentials, scope: @config.scope
|
|
250
211
|
end
|
|
251
212
|
@quota_project_id = @config.quota_project
|
|
@@ -333,7 +294,9 @@ module Google
|
|
|
333
294
|
options.apply_defaults timeout: @config.rpcs.create_source.timeout,
|
|
334
295
|
metadata: metadata,
|
|
335
296
|
retry_policy: @config.rpcs.create_source.retry_policy
|
|
336
|
-
|
|
297
|
+
|
|
298
|
+
options.apply_defaults timeout: @config.timeout,
|
|
299
|
+
metadata: @config.metadata,
|
|
337
300
|
retry_policy: @config.retry_policy
|
|
338
301
|
|
|
339
302
|
@security_center_stub.call_rpc :create_source, request, options: options do |response, operation|
|
|
@@ -408,7 +371,9 @@ module Google
|
|
|
408
371
|
options.apply_defaults timeout: @config.rpcs.create_finding.timeout,
|
|
409
372
|
metadata: metadata,
|
|
410
373
|
retry_policy: @config.rpcs.create_finding.retry_policy
|
|
411
|
-
|
|
374
|
+
|
|
375
|
+
options.apply_defaults timeout: @config.timeout,
|
|
376
|
+
metadata: @config.metadata,
|
|
412
377
|
retry_policy: @config.retry_policy
|
|
413
378
|
|
|
414
379
|
@security_center_stub.call_rpc :create_finding, request, options: options do |response, operation|
|
|
@@ -483,7 +448,9 @@ module Google
|
|
|
483
448
|
options.apply_defaults timeout: @config.rpcs.create_notification_config.timeout,
|
|
484
449
|
metadata: metadata,
|
|
485
450
|
retry_policy: @config.rpcs.create_notification_config.retry_policy
|
|
486
|
-
|
|
451
|
+
|
|
452
|
+
options.apply_defaults timeout: @config.timeout,
|
|
453
|
+
metadata: @config.metadata,
|
|
487
454
|
retry_policy: @config.retry_policy
|
|
488
455
|
|
|
489
456
|
@security_center_stub.call_rpc :create_notification_config, request, options: options do |response, operation|
|
|
@@ -550,7 +517,9 @@ module Google
|
|
|
550
517
|
options.apply_defaults timeout: @config.rpcs.delete_notification_config.timeout,
|
|
551
518
|
metadata: metadata,
|
|
552
519
|
retry_policy: @config.rpcs.delete_notification_config.retry_policy
|
|
553
|
-
|
|
520
|
+
|
|
521
|
+
options.apply_defaults timeout: @config.timeout,
|
|
522
|
+
metadata: @config.metadata,
|
|
554
523
|
retry_policy: @config.retry_policy
|
|
555
524
|
|
|
556
525
|
@security_center_stub.call_rpc :delete_notification_config, request, options: options do |response, operation|
|
|
@@ -620,7 +589,9 @@ module Google
|
|
|
620
589
|
options.apply_defaults timeout: @config.rpcs.get_iam_policy.timeout,
|
|
621
590
|
metadata: metadata,
|
|
622
591
|
retry_policy: @config.rpcs.get_iam_policy.retry_policy
|
|
623
|
-
|
|
592
|
+
|
|
593
|
+
options.apply_defaults timeout: @config.timeout,
|
|
594
|
+
metadata: @config.metadata,
|
|
624
595
|
retry_policy: @config.retry_policy
|
|
625
596
|
|
|
626
597
|
@security_center_stub.call_rpc :get_iam_policy, request, options: options do |response, operation|
|
|
@@ -687,7 +658,9 @@ module Google
|
|
|
687
658
|
options.apply_defaults timeout: @config.rpcs.get_notification_config.timeout,
|
|
688
659
|
metadata: metadata,
|
|
689
660
|
retry_policy: @config.rpcs.get_notification_config.retry_policy
|
|
690
|
-
|
|
661
|
+
|
|
662
|
+
options.apply_defaults timeout: @config.timeout,
|
|
663
|
+
metadata: @config.metadata,
|
|
691
664
|
retry_policy: @config.retry_policy
|
|
692
665
|
|
|
693
666
|
@security_center_stub.call_rpc :get_notification_config, request, options: options do |response, operation|
|
|
@@ -754,7 +727,9 @@ module Google
|
|
|
754
727
|
options.apply_defaults timeout: @config.rpcs.get_organization_settings.timeout,
|
|
755
728
|
metadata: metadata,
|
|
756
729
|
retry_policy: @config.rpcs.get_organization_settings.retry_policy
|
|
757
|
-
|
|
730
|
+
|
|
731
|
+
options.apply_defaults timeout: @config.timeout,
|
|
732
|
+
metadata: @config.metadata,
|
|
758
733
|
retry_policy: @config.retry_policy
|
|
759
734
|
|
|
760
735
|
@security_center_stub.call_rpc :get_organization_settings, request, options: options do |response, operation|
|
|
@@ -821,7 +796,9 @@ module Google
|
|
|
821
796
|
options.apply_defaults timeout: @config.rpcs.get_source.timeout,
|
|
822
797
|
metadata: metadata,
|
|
823
798
|
retry_policy: @config.rpcs.get_source.retry_policy
|
|
824
|
-
|
|
799
|
+
|
|
800
|
+
options.apply_defaults timeout: @config.timeout,
|
|
801
|
+
metadata: @config.metadata,
|
|
825
802
|
retry_policy: @config.retry_policy
|
|
826
803
|
|
|
827
804
|
@security_center_stub.call_rpc :get_source, request, options: options do |response, operation|
|
|
@@ -1012,7 +989,9 @@ module Google
|
|
|
1012
989
|
options.apply_defaults timeout: @config.rpcs.group_assets.timeout,
|
|
1013
990
|
metadata: metadata,
|
|
1014
991
|
retry_policy: @config.rpcs.group_assets.retry_policy
|
|
1015
|
-
|
|
992
|
+
|
|
993
|
+
options.apply_defaults timeout: @config.timeout,
|
|
994
|
+
metadata: @config.metadata,
|
|
1016
995
|
retry_policy: @config.retry_policy
|
|
1017
996
|
|
|
1018
997
|
@security_center_stub.call_rpc :group_assets, request, options: options do |response, operation|
|
|
@@ -1090,23 +1069,32 @@ module Google
|
|
|
1090
1069
|
# * category: `=`, `:`
|
|
1091
1070
|
# * external_uri: `=`, `:`
|
|
1092
1071
|
# * event_time: `=`, `>`, `<`, `>=`, `<=`
|
|
1093
|
-
# * severity: `=`, `:`
|
|
1094
1072
|
#
|
|
1095
1073
|
# Usage: This should be milliseconds since epoch or an RFC3339 string.
|
|
1096
1074
|
# Examples:
|
|
1097
1075
|
# `event_time = "2019-06-10T16:07:18-07:00"`
|
|
1098
1076
|
# `event_time = 1560208038000`
|
|
1099
1077
|
#
|
|
1078
|
+
# * severity: `=`, `:`
|
|
1079
|
+
# * workflow_state: `=`, `:`
|
|
1100
1080
|
# * security_marks.marks: `=`, `:`
|
|
1101
1081
|
# * source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
|
|
1102
1082
|
#
|
|
1103
|
-
#
|
|
1083
|
+
# For example, `source_properties.size = 100` is a valid filter string.
|
|
1104
1084
|
#
|
|
1105
|
-
#
|
|
1106
|
-
#
|
|
1085
|
+
# Use a partial match on the empty string to filter based on a property
|
|
1086
|
+
# existing: `source_properties.my_property : ""`
|
|
1107
1087
|
#
|
|
1108
|
-
#
|
|
1109
|
-
#
|
|
1088
|
+
# Use a negated partial match on the empty string to filter based on a
|
|
1089
|
+
# property not existing: `-source_properties.my_property : ""`
|
|
1090
|
+
#
|
|
1091
|
+
# * resource:
|
|
1092
|
+
# * resource.name: `=`, `:`
|
|
1093
|
+
# * resource.parent_name: `=`, `:`
|
|
1094
|
+
# * resource.parent_display_name: `=`, `:`
|
|
1095
|
+
# * resource.project_name: `=`, `:`
|
|
1096
|
+
# * resource.project_display_name: `=`, `:`
|
|
1097
|
+
# * resource.type: `=`, `:`
|
|
1110
1098
|
# @param group_by [::String]
|
|
1111
1099
|
# Required. Expression that defines what assets fields to use for grouping (including
|
|
1112
1100
|
# `state_change`). The string value should follow SQL syntax: comma separated
|
|
@@ -1203,7 +1191,9 @@ module Google
|
|
|
1203
1191
|
options.apply_defaults timeout: @config.rpcs.group_findings.timeout,
|
|
1204
1192
|
metadata: metadata,
|
|
1205
1193
|
retry_policy: @config.rpcs.group_findings.retry_policy
|
|
1206
|
-
|
|
1194
|
+
|
|
1195
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1196
|
+
metadata: @config.metadata,
|
|
1207
1197
|
retry_policy: @config.retry_policy
|
|
1208
1198
|
|
|
1209
1199
|
@security_center_stub.call_rpc :group_findings, request, options: options do |response, operation|
|
|
@@ -1398,7 +1388,9 @@ module Google
|
|
|
1398
1388
|
options.apply_defaults timeout: @config.rpcs.list_assets.timeout,
|
|
1399
1389
|
metadata: metadata,
|
|
1400
1390
|
retry_policy: @config.rpcs.list_assets.retry_policy
|
|
1401
|
-
|
|
1391
|
+
|
|
1392
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1393
|
+
metadata: @config.metadata,
|
|
1402
1394
|
retry_policy: @config.retry_policy
|
|
1403
1395
|
|
|
1404
1396
|
@security_center_stub.call_rpc :list_assets, request, options: options do |response, operation|
|
|
@@ -1473,23 +1465,33 @@ module Google
|
|
|
1473
1465
|
# * category: `=`, `:`
|
|
1474
1466
|
# * external_uri: `=`, `:`
|
|
1475
1467
|
# * event_time: `=`, `>`, `<`, `>=`, `<=`
|
|
1476
|
-
# * severity: `=`, `:`
|
|
1477
1468
|
#
|
|
1478
1469
|
# Usage: This should be milliseconds since epoch or an RFC3339 string.
|
|
1479
1470
|
# Examples:
|
|
1480
1471
|
# `event_time = "2019-06-10T16:07:18-07:00"`
|
|
1481
1472
|
# `event_time = 1560208038000`
|
|
1482
1473
|
#
|
|
1483
|
-
#
|
|
1484
|
-
#
|
|
1474
|
+
# * severity: `=`, `:`
|
|
1475
|
+
# * workflow_state: `=`, `:`
|
|
1476
|
+
# * security_marks.marks: `=`, `:`
|
|
1477
|
+
# * source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
|
|
1478
|
+
#
|
|
1479
|
+
# For example, `source_properties.size = 100` is a valid filter string.
|
|
1485
1480
|
#
|
|
1486
|
-
#
|
|
1481
|
+
# Use a partial match on the empty string to filter based on a property
|
|
1482
|
+
# existing: `source_properties.my_property : ""`
|
|
1487
1483
|
#
|
|
1488
|
-
#
|
|
1489
|
-
#
|
|
1484
|
+
# Use a negated partial match on the empty string to filter based on a
|
|
1485
|
+
# property not existing: `-source_properties.my_property : ""`
|
|
1490
1486
|
#
|
|
1491
|
-
#
|
|
1492
|
-
#
|
|
1487
|
+
# * resource:
|
|
1488
|
+
# * resource.name: `=`, `:`
|
|
1489
|
+
# * resource.parent_name: `=`, `:`
|
|
1490
|
+
# * resource.parent_display_name: `=`, `:`
|
|
1491
|
+
# * resource.project_name: `=`, `:`
|
|
1492
|
+
# * resource.project_display_name: `=`, `:`
|
|
1493
|
+
# * resource.type: `=`, `:`
|
|
1494
|
+
# * resource.folders.resource_folder: `=`, `:`
|
|
1493
1495
|
# @param order_by [::String]
|
|
1494
1496
|
# Expression that defines what fields and order to use for sorting. The
|
|
1495
1497
|
# string value should follow SQL syntax: comma separated list of fields. For
|
|
@@ -1590,7 +1592,9 @@ module Google
|
|
|
1590
1592
|
options.apply_defaults timeout: @config.rpcs.list_findings.timeout,
|
|
1591
1593
|
metadata: metadata,
|
|
1592
1594
|
retry_policy: @config.rpcs.list_findings.retry_policy
|
|
1593
|
-
|
|
1595
|
+
|
|
1596
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1597
|
+
metadata: @config.metadata,
|
|
1594
1598
|
retry_policy: @config.retry_policy
|
|
1595
1599
|
|
|
1596
1600
|
@security_center_stub.call_rpc :list_findings, request, options: options do |response, operation|
|
|
@@ -1665,7 +1669,9 @@ module Google
|
|
|
1665
1669
|
options.apply_defaults timeout: @config.rpcs.list_notification_configs.timeout,
|
|
1666
1670
|
metadata: metadata,
|
|
1667
1671
|
retry_policy: @config.rpcs.list_notification_configs.retry_policy
|
|
1668
|
-
|
|
1672
|
+
|
|
1673
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1674
|
+
metadata: @config.metadata,
|
|
1669
1675
|
retry_policy: @config.retry_policy
|
|
1670
1676
|
|
|
1671
1677
|
@security_center_stub.call_rpc :list_notification_configs, request, options: options do |response, operation|
|
|
@@ -1741,7 +1747,9 @@ module Google
|
|
|
1741
1747
|
options.apply_defaults timeout: @config.rpcs.list_sources.timeout,
|
|
1742
1748
|
metadata: metadata,
|
|
1743
1749
|
retry_policy: @config.rpcs.list_sources.retry_policy
|
|
1744
|
-
|
|
1750
|
+
|
|
1751
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1752
|
+
metadata: @config.metadata,
|
|
1745
1753
|
retry_policy: @config.retry_policy
|
|
1746
1754
|
|
|
1747
1755
|
@security_center_stub.call_rpc :list_sources, request, options: options do |response, operation|
|
|
@@ -1814,7 +1822,9 @@ module Google
|
|
|
1814
1822
|
options.apply_defaults timeout: @config.rpcs.run_asset_discovery.timeout,
|
|
1815
1823
|
metadata: metadata,
|
|
1816
1824
|
retry_policy: @config.rpcs.run_asset_discovery.retry_policy
|
|
1817
|
-
|
|
1825
|
+
|
|
1826
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1827
|
+
metadata: @config.metadata,
|
|
1818
1828
|
retry_policy: @config.retry_policy
|
|
1819
1829
|
|
|
1820
1830
|
@security_center_stub.call_rpc :run_asset_discovery, request, options: options do |response, operation|
|
|
@@ -1888,7 +1898,9 @@ module Google
|
|
|
1888
1898
|
options.apply_defaults timeout: @config.rpcs.set_finding_state.timeout,
|
|
1889
1899
|
metadata: metadata,
|
|
1890
1900
|
retry_policy: @config.rpcs.set_finding_state.retry_policy
|
|
1891
|
-
|
|
1901
|
+
|
|
1902
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1903
|
+
metadata: @config.metadata,
|
|
1892
1904
|
retry_policy: @config.retry_policy
|
|
1893
1905
|
|
|
1894
1906
|
@security_center_stub.call_rpc :set_finding_state, request, options: options do |response, operation|
|
|
@@ -1960,7 +1972,9 @@ module Google
|
|
|
1960
1972
|
options.apply_defaults timeout: @config.rpcs.set_iam_policy.timeout,
|
|
1961
1973
|
metadata: metadata,
|
|
1962
1974
|
retry_policy: @config.rpcs.set_iam_policy.retry_policy
|
|
1963
|
-
|
|
1975
|
+
|
|
1976
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1977
|
+
metadata: @config.metadata,
|
|
1964
1978
|
retry_policy: @config.retry_policy
|
|
1965
1979
|
|
|
1966
1980
|
@security_center_stub.call_rpc :set_iam_policy, request, options: options do |response, operation|
|
|
@@ -2032,7 +2046,9 @@ module Google
|
|
|
2032
2046
|
options.apply_defaults timeout: @config.rpcs.test_iam_permissions.timeout,
|
|
2033
2047
|
metadata: metadata,
|
|
2034
2048
|
retry_policy: @config.rpcs.test_iam_permissions.retry_policy
|
|
2035
|
-
|
|
2049
|
+
|
|
2050
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2051
|
+
metadata: @config.metadata,
|
|
2036
2052
|
retry_policy: @config.retry_policy
|
|
2037
2053
|
|
|
2038
2054
|
@security_center_stub.call_rpc :test_iam_permissions, request, options: options do |response, operation|
|
|
@@ -2112,7 +2128,9 @@ module Google
|
|
|
2112
2128
|
options.apply_defaults timeout: @config.rpcs.update_finding.timeout,
|
|
2113
2129
|
metadata: metadata,
|
|
2114
2130
|
retry_policy: @config.rpcs.update_finding.retry_policy
|
|
2115
|
-
|
|
2131
|
+
|
|
2132
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2133
|
+
metadata: @config.metadata,
|
|
2116
2134
|
retry_policy: @config.retry_policy
|
|
2117
2135
|
|
|
2118
2136
|
@security_center_stub.call_rpc :update_finding, request, options: options do |response, operation|
|
|
@@ -2183,7 +2201,9 @@ module Google
|
|
|
2183
2201
|
options.apply_defaults timeout: @config.rpcs.update_notification_config.timeout,
|
|
2184
2202
|
metadata: metadata,
|
|
2185
2203
|
retry_policy: @config.rpcs.update_notification_config.retry_policy
|
|
2186
|
-
|
|
2204
|
+
|
|
2205
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2206
|
+
metadata: @config.metadata,
|
|
2187
2207
|
retry_policy: @config.retry_policy
|
|
2188
2208
|
|
|
2189
2209
|
@security_center_stub.call_rpc :update_notification_config, request, options: options do |response, operation|
|
|
@@ -2253,7 +2273,9 @@ module Google
|
|
|
2253
2273
|
options.apply_defaults timeout: @config.rpcs.update_organization_settings.timeout,
|
|
2254
2274
|
metadata: metadata,
|
|
2255
2275
|
retry_policy: @config.rpcs.update_organization_settings.retry_policy
|
|
2256
|
-
|
|
2276
|
+
|
|
2277
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2278
|
+
metadata: @config.metadata,
|
|
2257
2279
|
retry_policy: @config.retry_policy
|
|
2258
2280
|
|
|
2259
2281
|
@security_center_stub.call_rpc :update_organization_settings, request, options: options do |response, operation|
|
|
@@ -2323,7 +2345,9 @@ module Google
|
|
|
2323
2345
|
options.apply_defaults timeout: @config.rpcs.update_source.timeout,
|
|
2324
2346
|
metadata: metadata,
|
|
2325
2347
|
retry_policy: @config.rpcs.update_source.retry_policy
|
|
2326
|
-
|
|
2348
|
+
|
|
2349
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2350
|
+
metadata: @config.metadata,
|
|
2327
2351
|
retry_policy: @config.retry_policy
|
|
2328
2352
|
|
|
2329
2353
|
@security_center_stub.call_rpc :update_source, request, options: options do |response, operation|
|
|
@@ -2399,7 +2423,9 @@ module Google
|
|
|
2399
2423
|
options.apply_defaults timeout: @config.rpcs.update_security_marks.timeout,
|
|
2400
2424
|
metadata: metadata,
|
|
2401
2425
|
retry_policy: @config.rpcs.update_security_marks.retry_policy
|
|
2402
|
-
|
|
2426
|
+
|
|
2427
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2428
|
+
metadata: @config.metadata,
|
|
2403
2429
|
retry_policy: @config.retry_policy
|
|
2404
2430
|
|
|
2405
2431
|
@security_center_stub.call_rpc :update_security_marks, request, options: options do |response, operation|
|
|
@@ -2423,22 +2449,21 @@ module Google
|
|
|
2423
2449
|
# Configuration can be applied globally to all clients, or to a single client
|
|
2424
2450
|
# on construction.
|
|
2425
2451
|
#
|
|
2426
|
-
#
|
|
2427
|
-
#
|
|
2428
|
-
#
|
|
2429
|
-
# to 20 seconds,
|
|
2430
|
-
#
|
|
2431
|
-
#
|
|
2432
|
-
#
|
|
2433
|
-
#
|
|
2434
|
-
#
|
|
2435
|
-
#
|
|
2436
|
-
#
|
|
2437
|
-
#
|
|
2438
|
-
#
|
|
2439
|
-
#
|
|
2440
|
-
#
|
|
2441
|
-
# end
|
|
2452
|
+
# @example
|
|
2453
|
+
#
|
|
2454
|
+
# # Modify the global config, setting the timeout for
|
|
2455
|
+
# # create_source to 20 seconds,
|
|
2456
|
+
# # and all remaining timeouts to 10 seconds.
|
|
2457
|
+
# ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.configure do |config|
|
|
2458
|
+
# config.timeout = 10.0
|
|
2459
|
+
# config.rpcs.create_source.timeout = 20.0
|
|
2460
|
+
# end
|
|
2461
|
+
#
|
|
2462
|
+
# # Apply the above configuration only to a new client.
|
|
2463
|
+
# client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new do |config|
|
|
2464
|
+
# config.timeout = 10.0
|
|
2465
|
+
# config.rpcs.create_source.timeout = 20.0
|
|
2466
|
+
# end
|
|
2442
2467
|
#
|
|
2443
2468
|
# @!attribute [rw] endpoint
|
|
2444
2469
|
# The hostname or hostname:port of the service endpoint.
|
|
@@ -82,7 +82,7 @@ module Google
|
|
|
82
82
|
# Create credentials
|
|
83
83
|
credentials = @config.credentials
|
|
84
84
|
credentials ||= Credentials.default scope: @config.scope
|
|
85
|
-
if credentials.is_a?(String) || credentials.is_a?(Hash)
|
|
85
|
+
if credentials.is_a?(::String) || credentials.is_a?(::Hash)
|
|
86
86
|
credentials = Credentials.new credentials, scope: @config.scope
|
|
87
87
|
end
|
|
88
88
|
@quota_project_id = @config.quota_project
|
|
@@ -169,7 +169,9 @@ module Google
|
|
|
169
169
|
options.apply_defaults timeout: @config.rpcs.list_operations.timeout,
|
|
170
170
|
metadata: metadata,
|
|
171
171
|
retry_policy: @config.rpcs.list_operations.retry_policy
|
|
172
|
-
|
|
172
|
+
|
|
173
|
+
options.apply_defaults timeout: @config.timeout,
|
|
174
|
+
metadata: @config.metadata,
|
|
173
175
|
retry_policy: @config.retry_policy
|
|
174
176
|
|
|
175
177
|
@operations_stub.call_rpc :list_operations, request, options: options do |response, operation|
|
|
@@ -239,7 +241,9 @@ module Google
|
|
|
239
241
|
options.apply_defaults timeout: @config.rpcs.get_operation.timeout,
|
|
240
242
|
metadata: metadata,
|
|
241
243
|
retry_policy: @config.rpcs.get_operation.retry_policy
|
|
242
|
-
|
|
244
|
+
|
|
245
|
+
options.apply_defaults timeout: @config.timeout,
|
|
246
|
+
metadata: @config.metadata,
|
|
243
247
|
retry_policy: @config.retry_policy
|
|
244
248
|
|
|
245
249
|
@operations_stub.call_rpc :get_operation, request, options: options do |response, operation|
|
|
@@ -309,7 +313,9 @@ module Google
|
|
|
309
313
|
options.apply_defaults timeout: @config.rpcs.delete_operation.timeout,
|
|
310
314
|
metadata: metadata,
|
|
311
315
|
retry_policy: @config.rpcs.delete_operation.retry_policy
|
|
312
|
-
|
|
316
|
+
|
|
317
|
+
options.apply_defaults timeout: @config.timeout,
|
|
318
|
+
metadata: @config.metadata,
|
|
313
319
|
retry_policy: @config.retry_policy
|
|
314
320
|
|
|
315
321
|
@operations_stub.call_rpc :delete_operation, request, options: options do |response, operation|
|
|
@@ -384,7 +390,9 @@ module Google
|
|
|
384
390
|
options.apply_defaults timeout: @config.rpcs.cancel_operation.timeout,
|
|
385
391
|
metadata: metadata,
|
|
386
392
|
retry_policy: @config.rpcs.cancel_operation.retry_policy
|
|
387
|
-
|
|
393
|
+
|
|
394
|
+
options.apply_defaults timeout: @config.timeout,
|
|
395
|
+
metadata: @config.metadata,
|
|
388
396
|
retry_policy: @config.retry_policy
|
|
389
397
|
|
|
390
398
|
@operations_stub.call_rpc :cancel_operation, request, options: options do |response, operation|
|
|
@@ -396,9 +404,9 @@ module Google
|
|
|
396
404
|
end
|
|
397
405
|
|
|
398
406
|
##
|
|
399
|
-
# Waits
|
|
400
|
-
#
|
|
401
|
-
#
|
|
407
|
+
# Waits until the specified long-running operation is done or reaches at most
|
|
408
|
+
# a specified timeout, returning the latest state. If the operation is
|
|
409
|
+
# already done, the latest state is immediately returned. If the timeout
|
|
402
410
|
# specified is greater than the default HTTP/RPC timeout, the HTTP/RPC
|
|
403
411
|
# timeout is used. If the server does not support this method, it returns
|
|
404
412
|
# `google.rpc.Code.UNIMPLEMENTED`.
|
|
@@ -456,7 +464,9 @@ module Google
|
|
|
456
464
|
options.apply_defaults timeout: @config.rpcs.wait_operation.timeout,
|
|
457
465
|
metadata: metadata,
|
|
458
466
|
retry_policy: @config.rpcs.wait_operation.retry_policy
|
|
459
|
-
|
|
467
|
+
|
|
468
|
+
options.apply_defaults timeout: @config.timeout,
|
|
469
|
+
metadata: @config.metadata,
|
|
460
470
|
retry_policy: @config.retry_policy
|
|
461
471
|
|
|
462
472
|
@operations_stub.call_rpc :wait_operation, request, options: options do |response, operation|
|
|
@@ -481,22 +491,21 @@ module Google
|
|
|
481
491
|
# Configuration can be applied globally to all clients, or to a single client
|
|
482
492
|
# on construction.
|
|
483
493
|
#
|
|
484
|
-
#
|
|
485
|
-
#
|
|
486
|
-
#
|
|
487
|
-
# to 20 seconds,
|
|
488
|
-
#
|
|
489
|
-
#
|
|
490
|
-
#
|
|
491
|
-
#
|
|
492
|
-
#
|
|
493
|
-
#
|
|
494
|
-
#
|
|
495
|
-
#
|
|
496
|
-
#
|
|
497
|
-
#
|
|
498
|
-
#
|
|
499
|
-
# end
|
|
494
|
+
# @example
|
|
495
|
+
#
|
|
496
|
+
# # Modify the global config, setting the timeout for
|
|
497
|
+
# # list_operations to 20 seconds,
|
|
498
|
+
# # and all remaining timeouts to 10 seconds.
|
|
499
|
+
# ::Google::Longrunning::Operations::Client.configure do |config|
|
|
500
|
+
# config.timeout = 10.0
|
|
501
|
+
# config.rpcs.list_operations.timeout = 20.0
|
|
502
|
+
# end
|
|
503
|
+
#
|
|
504
|
+
# # Apply the above configuration only to a new client.
|
|
505
|
+
# client = ::Google::Longrunning::Operations::Client.new do |config|
|
|
506
|
+
# config.timeout = 10.0
|
|
507
|
+
# config.rpcs.list_operations.timeout = 20.0
|
|
508
|
+
# end
|
|
500
509
|
#
|
|
501
510
|
# @!attribute [rw] endpoint
|
|
502
511
|
# The hostname or hostname:port of the service endpoint.
|
|
@@ -5,6 +5,7 @@ require 'google/protobuf'
|
|
|
5
5
|
|
|
6
6
|
require 'google/api/field_behavior_pb'
|
|
7
7
|
require 'google/api/resource_pb'
|
|
8
|
+
require 'google/cloud/securitycenter/v1/indicator_pb'
|
|
8
9
|
require 'google/cloud/securitycenter/v1/security_marks_pb'
|
|
9
10
|
require 'google/protobuf/struct_pb'
|
|
10
11
|
require 'google/protobuf/timestamp_pb'
|
|
@@ -24,6 +25,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
24
25
|
optional :create_time, :message, 10, "google.protobuf.Timestamp"
|
|
25
26
|
optional :severity, :enum, 12, "google.cloud.securitycenter.v1.Finding.Severity"
|
|
26
27
|
optional :canonical_name, :string, 14
|
|
28
|
+
optional :finding_class, :enum, 17, "google.cloud.securitycenter.v1.Finding.FindingClass"
|
|
29
|
+
optional :indicator, :message, 18, "google.cloud.securitycenter.v1.Indicator"
|
|
27
30
|
end
|
|
28
31
|
add_enum "google.cloud.securitycenter.v1.Finding.State" do
|
|
29
32
|
value :STATE_UNSPECIFIED, 0
|
|
@@ -37,6 +40,13 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
37
40
|
value :MEDIUM, 3
|
|
38
41
|
value :LOW, 4
|
|
39
42
|
end
|
|
43
|
+
add_enum "google.cloud.securitycenter.v1.Finding.FindingClass" do
|
|
44
|
+
value :FINDING_CLASS_UNSPECIFIED, 0
|
|
45
|
+
value :THREAT, 1
|
|
46
|
+
value :VULNERABILITY, 2
|
|
47
|
+
value :MISCONFIGURATION, 3
|
|
48
|
+
value :OBSERVATION, 4
|
|
49
|
+
end
|
|
40
50
|
end
|
|
41
51
|
end
|
|
42
52
|
|
|
@@ -47,6 +57,7 @@ module Google
|
|
|
47
57
|
Finding = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding").msgclass
|
|
48
58
|
Finding::State = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding.State").enummodule
|
|
49
59
|
Finding::Severity = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding.Severity").enummodule
|
|
60
|
+
Finding::FindingClass = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding.FindingClass").enummodule
|
|
50
61
|
end
|
|
51
62
|
end
|
|
52
63
|
end
|
|
@@ -0,0 +1,24 @@
|
|
|
1
|
+
# Generated by the protocol buffer compiler. DO NOT EDIT!
|
|
2
|
+
# source: google/cloud/securitycenter/v1/indicator.proto
|
|
3
|
+
|
|
4
|
+
require 'google/protobuf'
|
|
5
|
+
|
|
6
|
+
require 'google/api/annotations_pb'
|
|
7
|
+
Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
8
|
+
add_file("google/cloud/securitycenter/v1/indicator.proto", :syntax => :proto3) do
|
|
9
|
+
add_message "google.cloud.securitycenter.v1.Indicator" do
|
|
10
|
+
repeated :ip_addresses, :string, 1
|
|
11
|
+
repeated :domains, :string, 2
|
|
12
|
+
end
|
|
13
|
+
end
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
module Google
|
|
17
|
+
module Cloud
|
|
18
|
+
module SecurityCenter
|
|
19
|
+
module V1
|
|
20
|
+
Indicator = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Indicator").msgclass
|
|
21
|
+
end
|
|
22
|
+
end
|
|
23
|
+
end
|
|
24
|
+
end
|
|
@@ -57,9 +57,15 @@ module Google
|
|
|
57
57
|
|
|
58
58
|
# Denotes that a (repeated) field is an unordered list.
|
|
59
59
|
# This indicates that the service may provide the elements of the list
|
|
60
|
-
# in any arbitrary
|
|
60
|
+
# in any arbitrary order, rather than the order the user originally
|
|
61
61
|
# provided. Additionally, the list's order may or may not be stable.
|
|
62
62
|
UNORDERED_LIST = 6
|
|
63
|
+
|
|
64
|
+
# Denotes that this field returns a non-empty default value if not set.
|
|
65
|
+
# This indicates that if the user provides the empty value in a request,
|
|
66
|
+
# a non-empty value will be returned. The user will not be aware of what
|
|
67
|
+
# non-empty value to expect.
|
|
68
|
+
NON_EMPTY_DEFAULT = 7
|
|
63
69
|
end
|
|
64
70
|
end
|
|
65
71
|
end
|
|
@@ -96,6 +96,16 @@ module Google
|
|
|
96
96
|
# "projects/\\{project_number}/sources/\\{source_id}/findings/\\{finding_id}",
|
|
97
97
|
# depending on the closest CRM ancestor of the resource associated with the
|
|
98
98
|
# finding.
|
|
99
|
+
# @!attribute [rw] finding_class
|
|
100
|
+
# @return [::Google::Cloud::SecurityCenter::V1::Finding::FindingClass]
|
|
101
|
+
# The class of the finding.
|
|
102
|
+
# @!attribute [rw] indicator
|
|
103
|
+
# @return [::Google::Cloud::SecurityCenter::V1::Indicator]
|
|
104
|
+
# Represents what's commonly known as an Indicator of compromise (IoC) in
|
|
105
|
+
# computer forensics. This is an artifact observed on a network or in an
|
|
106
|
+
# operating system that, with high confidence, indicates a computer
|
|
107
|
+
# intrusion.
|
|
108
|
+
# Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
|
|
99
109
|
class Finding
|
|
100
110
|
include ::Google::Protobuf::MessageExts
|
|
101
111
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
@@ -180,6 +190,26 @@ module Google
|
|
|
180
190
|
# is not able to access data, execute code, or create resources.
|
|
181
191
|
LOW = 4
|
|
182
192
|
end
|
|
193
|
+
|
|
194
|
+
# Represents what kind of Finding it is.
|
|
195
|
+
module FindingClass
|
|
196
|
+
# Unspecified finding class.
|
|
197
|
+
FINDING_CLASS_UNSPECIFIED = 0
|
|
198
|
+
|
|
199
|
+
# Describes unwanted or malicious activity.
|
|
200
|
+
THREAT = 1
|
|
201
|
+
|
|
202
|
+
# Describes a potential weakness in software that increases risk to
|
|
203
|
+
# Confidentiality & Integrity & Availability.
|
|
204
|
+
VULNERABILITY = 2
|
|
205
|
+
|
|
206
|
+
# Describes a potential weakness in cloud resource/asset configuration that
|
|
207
|
+
# increases risk.
|
|
208
|
+
MISCONFIGURATION = 3
|
|
209
|
+
|
|
210
|
+
# Describes a security observation that is for informational purposes.
|
|
211
|
+
OBSERVATION = 4
|
|
212
|
+
end
|
|
183
213
|
end
|
|
184
214
|
end
|
|
185
215
|
end
|
|
@@ -0,0 +1,41 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
# Copyright 2021 Google LLC
|
|
4
|
+
#
|
|
5
|
+
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
6
|
+
# you may not use this file except in compliance with the License.
|
|
7
|
+
# You may obtain a copy of the License at
|
|
8
|
+
#
|
|
9
|
+
# https://www.apache.org/licenses/LICENSE-2.0
|
|
10
|
+
#
|
|
11
|
+
# Unless required by applicable law or agreed to in writing, software
|
|
12
|
+
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
13
|
+
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
14
|
+
# See the License for the specific language governing permissions and
|
|
15
|
+
# limitations under the License.
|
|
16
|
+
|
|
17
|
+
# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
|
|
18
|
+
|
|
19
|
+
|
|
20
|
+
module Google
|
|
21
|
+
module Cloud
|
|
22
|
+
module SecurityCenter
|
|
23
|
+
module V1
|
|
24
|
+
# Represents what's commonly known as an Indicator of compromise (IoC) in
|
|
25
|
+
# computer forensics. This is an artifact observed on a network or in an
|
|
26
|
+
# operating system that, with high confidence, indicates a computer intrusion.
|
|
27
|
+
# Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
|
|
28
|
+
# @!attribute [rw] ip_addresses
|
|
29
|
+
# @return [::Array<::String>]
|
|
30
|
+
# List of ip addresses associated to the Finding.
|
|
31
|
+
# @!attribute [rw] domains
|
|
32
|
+
# @return [::Array<::String>]
|
|
33
|
+
# List of domains associated to the Finding.
|
|
34
|
+
class Indicator
|
|
35
|
+
include ::Google::Protobuf::MessageExts
|
|
36
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
37
|
+
end
|
|
38
|
+
end
|
|
39
|
+
end
|
|
40
|
+
end
|
|
41
|
+
end
|
|
@@ -319,23 +319,32 @@ module Google
|
|
|
319
319
|
# * category: `=`, `:`
|
|
320
320
|
# * external_uri: `=`, `:`
|
|
321
321
|
# * event_time: `=`, `>`, `<`, `>=`, `<=`
|
|
322
|
-
# * severity: `=`, `:`
|
|
323
322
|
#
|
|
324
323
|
# Usage: This should be milliseconds since epoch or an RFC3339 string.
|
|
325
324
|
# Examples:
|
|
326
325
|
# `event_time = "2019-06-10T16:07:18-07:00"`
|
|
327
326
|
# `event_time = 1560208038000`
|
|
328
327
|
#
|
|
328
|
+
# * severity: `=`, `:`
|
|
329
|
+
# * workflow_state: `=`, `:`
|
|
329
330
|
# * security_marks.marks: `=`, `:`
|
|
330
331
|
# * source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
|
|
331
332
|
#
|
|
332
|
-
#
|
|
333
|
+
# For example, `source_properties.size = 100` is a valid filter string.
|
|
333
334
|
#
|
|
334
|
-
#
|
|
335
|
-
#
|
|
335
|
+
# Use a partial match on the empty string to filter based on a property
|
|
336
|
+
# existing: `source_properties.my_property : ""`
|
|
336
337
|
#
|
|
337
|
-
#
|
|
338
|
-
#
|
|
338
|
+
# Use a negated partial match on the empty string to filter based on a
|
|
339
|
+
# property not existing: `-source_properties.my_property : ""`
|
|
340
|
+
#
|
|
341
|
+
# * resource:
|
|
342
|
+
# * resource.name: `=`, `:`
|
|
343
|
+
# * resource.parent_name: `=`, `:`
|
|
344
|
+
# * resource.parent_display_name: `=`, `:`
|
|
345
|
+
# * resource.project_name: `=`, `:`
|
|
346
|
+
# * resource.project_display_name: `=`, `:`
|
|
347
|
+
# * resource.type: `=`, `:`
|
|
339
348
|
# @!attribute [rw] group_by
|
|
340
349
|
# @return [::String]
|
|
341
350
|
# Required. Expression that defines what assets fields to use for grouping (including
|
|
@@ -754,23 +763,33 @@ module Google
|
|
|
754
763
|
# * category: `=`, `:`
|
|
755
764
|
# * external_uri: `=`, `:`
|
|
756
765
|
# * event_time: `=`, `>`, `<`, `>=`, `<=`
|
|
757
|
-
# * severity: `=`, `:`
|
|
758
766
|
#
|
|
759
767
|
# Usage: This should be milliseconds since epoch or an RFC3339 string.
|
|
760
768
|
# Examples:
|
|
761
769
|
# `event_time = "2019-06-10T16:07:18-07:00"`
|
|
762
770
|
# `event_time = 1560208038000`
|
|
763
771
|
#
|
|
764
|
-
#
|
|
765
|
-
#
|
|
772
|
+
# * severity: `=`, `:`
|
|
773
|
+
# * workflow_state: `=`, `:`
|
|
774
|
+
# * security_marks.marks: `=`, `:`
|
|
775
|
+
# * source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
|
|
766
776
|
#
|
|
767
|
-
#
|
|
777
|
+
# For example, `source_properties.size = 100` is a valid filter string.
|
|
768
778
|
#
|
|
769
|
-
#
|
|
770
|
-
#
|
|
779
|
+
# Use a partial match on the empty string to filter based on a property
|
|
780
|
+
# existing: `source_properties.my_property : ""`
|
|
771
781
|
#
|
|
772
|
-
#
|
|
773
|
-
#
|
|
782
|
+
# Use a negated partial match on the empty string to filter based on a
|
|
783
|
+
# property not existing: `-source_properties.my_property : ""`
|
|
784
|
+
#
|
|
785
|
+
# * resource:
|
|
786
|
+
# * resource.name: `=`, `:`
|
|
787
|
+
# * resource.parent_name: `=`, `:`
|
|
788
|
+
# * resource.parent_display_name: `=`, `:`
|
|
789
|
+
# * resource.project_name: `=`, `:`
|
|
790
|
+
# * resource.project_display_name: `=`, `:`
|
|
791
|
+
# * resource.type: `=`, `:`
|
|
792
|
+
# * resource.folders.resource_folder: `=`, `:`
|
|
774
793
|
# @!attribute [rw] order_by
|
|
775
794
|
# @return [::String]
|
|
776
795
|
# Expression that defines what fields and order to use for sorting. The
|
|
@@ -19,30 +19,53 @@
|
|
|
19
19
|
|
|
20
20
|
module Google
|
|
21
21
|
module Type
|
|
22
|
-
# Represents
|
|
22
|
+
# Represents a textual expression in the Common Expression Language (CEL)
|
|
23
|
+
# syntax. CEL is a C-like expression language. The syntax and semantics of CEL
|
|
24
|
+
# are documented at https://github.com/google/cel-spec.
|
|
23
25
|
#
|
|
24
|
-
#
|
|
25
|
-
#
|
|
26
|
-
#
|
|
26
|
+
# Example (Comparison):
|
|
27
|
+
#
|
|
28
|
+
# title: "Summary size limit"
|
|
29
|
+
# description: "Determines if a summary is less than 100 chars"
|
|
30
|
+
# expression: "document.summary.size() < 100"
|
|
31
|
+
#
|
|
32
|
+
# Example (Equality):
|
|
33
|
+
#
|
|
34
|
+
# title: "Requestor is owner"
|
|
35
|
+
# description: "Determines if requestor is the document owner"
|
|
36
|
+
# expression: "document.owner == request.auth.claims.email"
|
|
37
|
+
#
|
|
38
|
+
# Example (Logic):
|
|
39
|
+
#
|
|
40
|
+
# title: "Public documents"
|
|
41
|
+
# description: "Determine whether the document should be publicly visible"
|
|
42
|
+
# expression: "document.type != 'private' && document.type != 'internal'"
|
|
43
|
+
#
|
|
44
|
+
# Example (Data Manipulation):
|
|
45
|
+
#
|
|
46
|
+
# title: "Notification string"
|
|
47
|
+
# description: "Create a notification string with a timestamp."
|
|
48
|
+
# expression: "'New message received at ' + string(document.create_time)"
|
|
49
|
+
#
|
|
50
|
+
# The exact variables and functions that may be referenced within an expression
|
|
51
|
+
# are determined by the service that evaluates it. See the service
|
|
52
|
+
# documentation for additional information.
|
|
27
53
|
# @!attribute [rw] expression
|
|
28
54
|
# @return [::String]
|
|
29
|
-
# Textual representation of an expression in
|
|
30
|
-
#
|
|
31
|
-
#
|
|
32
|
-
# The application context of the containing message determines which
|
|
33
|
-
# well-known feature set of CEL is supported.
|
|
55
|
+
# Textual representation of an expression in Common Expression Language
|
|
56
|
+
# syntax.
|
|
34
57
|
# @!attribute [rw] title
|
|
35
58
|
# @return [::String]
|
|
36
|
-
#
|
|
59
|
+
# Optional. Title for the expression, i.e. a short string describing
|
|
37
60
|
# its purpose. This can be used e.g. in UIs which allow to enter the
|
|
38
61
|
# expression.
|
|
39
62
|
# @!attribute [rw] description
|
|
40
63
|
# @return [::String]
|
|
41
|
-
#
|
|
64
|
+
# Optional. Description of the expression. This is a longer text which
|
|
42
65
|
# describes the expression, e.g. when hovered over it in a UI.
|
|
43
66
|
# @!attribute [rw] location
|
|
44
67
|
# @return [::String]
|
|
45
|
-
#
|
|
68
|
+
# Optional. String indicating the location of the expression for error
|
|
46
69
|
# reporting, e.g. a file name and a position in the file.
|
|
47
70
|
class Expr
|
|
48
71
|
include ::Google::Protobuf::MessageExts
|
metadata
CHANGED
|
@@ -1,29 +1,35 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: google-cloud-security_center-v1
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.8.1
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Google LLC
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2021-
|
|
11
|
+
date: 2021-08-11 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: gapic-common
|
|
15
15
|
requirement: !ruby/object:Gem::Requirement
|
|
16
16
|
requirements:
|
|
17
|
-
- - "
|
|
17
|
+
- - ">="
|
|
18
|
+
- !ruby/object:Gem::Version
|
|
19
|
+
version: '0.7'
|
|
20
|
+
- - "<"
|
|
18
21
|
- !ruby/object:Gem::Version
|
|
19
|
-
version:
|
|
22
|
+
version: 2.a
|
|
20
23
|
type: :runtime
|
|
21
24
|
prerelease: false
|
|
22
25
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
26
|
requirements:
|
|
24
|
-
- - "
|
|
27
|
+
- - ">="
|
|
28
|
+
- !ruby/object:Gem::Version
|
|
29
|
+
version: '0.7'
|
|
30
|
+
- - "<"
|
|
25
31
|
- !ruby/object:Gem::Version
|
|
26
|
-
version:
|
|
32
|
+
version: 2.a
|
|
27
33
|
- !ruby/object:Gem::Dependency
|
|
28
34
|
name: google-cloud-errors
|
|
29
35
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -47,7 +53,7 @@ dependencies:
|
|
|
47
53
|
version: 0.6.10
|
|
48
54
|
- - "<"
|
|
49
55
|
- !ruby/object:Gem::Version
|
|
50
|
-
version:
|
|
56
|
+
version: 2.a
|
|
51
57
|
type: :runtime
|
|
52
58
|
prerelease: false
|
|
53
59
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -57,7 +63,7 @@ dependencies:
|
|
|
57
63
|
version: 0.6.10
|
|
58
64
|
- - "<"
|
|
59
65
|
- !ruby/object:Gem::Version
|
|
60
|
-
version:
|
|
66
|
+
version: 2.a
|
|
61
67
|
- !ruby/object:Gem::Dependency
|
|
62
68
|
name: google-style
|
|
63
69
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -194,6 +200,7 @@ files:
|
|
|
194
200
|
- lib/google/cloud/securitycenter/v1/asset_pb.rb
|
|
195
201
|
- lib/google/cloud/securitycenter/v1/finding_pb.rb
|
|
196
202
|
- lib/google/cloud/securitycenter/v1/folder_pb.rb
|
|
203
|
+
- lib/google/cloud/securitycenter/v1/indicator_pb.rb
|
|
197
204
|
- lib/google/cloud/securitycenter/v1/notification_config_pb.rb
|
|
198
205
|
- lib/google/cloud/securitycenter/v1/notification_message_pb.rb
|
|
199
206
|
- lib/google/cloud/securitycenter/v1/organization_settings_pb.rb
|
|
@@ -209,6 +216,7 @@ files:
|
|
|
209
216
|
- proto_docs/google/cloud/securitycenter/v1/asset.rb
|
|
210
217
|
- proto_docs/google/cloud/securitycenter/v1/finding.rb
|
|
211
218
|
- proto_docs/google/cloud/securitycenter/v1/folder.rb
|
|
219
|
+
- proto_docs/google/cloud/securitycenter/v1/indicator.rb
|
|
212
220
|
- proto_docs/google/cloud/securitycenter/v1/notification_config.rb
|
|
213
221
|
- proto_docs/google/cloud/securitycenter/v1/notification_message.rb
|
|
214
222
|
- proto_docs/google/cloud/securitycenter/v1/organization_settings.rb
|