google-cloud-security_center-v1 0.7.0 → 0.8.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/AUTHENTICATION.md +8 -8
- data/README.md +1 -1
- data/lib/google/cloud/security_center/v1/security_center/client.rb +143 -118
- data/lib/google/cloud/security_center/v1/security_center/operations.rb +34 -25
- data/lib/google/cloud/security_center/v1/version.rb +1 -1
- data/lib/google/cloud/securitycenter/v1/finding_pb.rb +11 -0
- data/lib/google/cloud/securitycenter/v1/indicator_pb.rb +24 -0
- data/lib/google/cloud/securitycenter/v1/securitycenter_service_services_pb.rb +1 -1
- data/proto_docs/google/api/field_behavior.rb +7 -1
- data/proto_docs/google/cloud/securitycenter/v1/finding.rb +30 -0
- data/proto_docs/google/cloud/securitycenter/v1/indicator.rb +41 -0
- data/proto_docs/google/cloud/securitycenter/v1/securitycenter_service.rb +33 -14
- data/proto_docs/google/type/expr.rb +35 -12
- metadata +16 -8
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 1b657e12d5e2a6bfbd159e01b4b1eecdf8bf3b0cfeb568132dd0e7243e60dfa2
|
|
4
|
+
data.tar.gz: b56ea7e9107c6e97921855134e4b80fd6b6293dddfa96fe53ba067a055d2ad28
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 2b30d63db862f8a776031257236e97491ba717e687f7db64809b6e0c6afbd18b636b1f0dd5b8c999aa17e089c4ac935d709140927855dea9fdbc779e08343cc0
|
|
7
|
+
data.tar.gz: a0ad157f2d483d34c2bb85b827d24e1327804e9de3732467928da3f5d50ca8fb283a5db12735c67dae3360e770e6c7bfc40def598225c4de3d4683de8892d3d0
|
data/AUTHENTICATION.md
CHANGED
|
@@ -66,11 +66,11 @@ The environment variables that google-cloud-security_center-v1
|
|
|
66
66
|
checks for credentials are configured on the service Credentials class (such as
|
|
67
67
|
{::Google::Cloud::SecurityCenter::V1::SecurityCenter::Credentials}):
|
|
68
68
|
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
|
|
73
|
-
|
|
69
|
+
* `SECURITY_CENTER_CREDENTIALS` - Path to JSON file, or JSON contents
|
|
70
|
+
* `SECURITY_CENTER_KEYFILE` - Path to JSON file, or JSON contents
|
|
71
|
+
* `GOOGLE_CLOUD_CREDENTIALS` - Path to JSON file, or JSON contents
|
|
72
|
+
* `GOOGLE_CLOUD_KEYFILE` - Path to JSON file, or JSON contents
|
|
73
|
+
* `GOOGLE_APPLICATION_CREDENTIALS` - Path to JSON file
|
|
74
74
|
|
|
75
75
|
```ruby
|
|
76
76
|
require "google/cloud/security_center/v1"
|
|
@@ -82,8 +82,8 @@ client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
|
|
|
82
82
|
|
|
83
83
|
### Configuration
|
|
84
84
|
|
|
85
|
-
The **Credentials JSON** can be configured instead of
|
|
86
|
-
environment
|
|
85
|
+
The path to the **Credentials JSON** file can be configured instead of storing
|
|
86
|
+
it in an environment variable. Either on an individual client initialization:
|
|
87
87
|
|
|
88
88
|
```ruby
|
|
89
89
|
require "google/cloud/security_center/v1"
|
|
@@ -93,7 +93,7 @@ client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new do |con
|
|
|
93
93
|
end
|
|
94
94
|
```
|
|
95
95
|
|
|
96
|
-
Or
|
|
96
|
+
Or globally for all clients:
|
|
97
97
|
|
|
98
98
|
```ruby
|
|
99
99
|
require "google/cloud/security_center/v1"
|
data/README.md
CHANGED
|
@@ -33,7 +33,7 @@ In order to use this library, you first need to go through the following steps:
|
|
|
33
33
|
require "google/cloud/security_center/v1"
|
|
34
34
|
|
|
35
35
|
client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
|
|
36
|
-
request =
|
|
36
|
+
request = ::Google::Cloud::SecurityCenter::V1::CreateSourceRequest.new # (request fields as keyword arguments...)
|
|
37
37
|
response = client.create_source request
|
|
38
38
|
```
|
|
39
39
|
|
|
@@ -41,13 +41,12 @@ module Google
|
|
|
41
41
|
# See {::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client::Configuration}
|
|
42
42
|
# for a description of the configuration fields.
|
|
43
43
|
#
|
|
44
|
-
#
|
|
44
|
+
# @example
|
|
45
45
|
#
|
|
46
|
-
#
|
|
47
|
-
#
|
|
48
|
-
#
|
|
49
|
-
#
|
|
50
|
-
# end
|
|
46
|
+
# # Modify the configuration for all SecurityCenter clients
|
|
47
|
+
# ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.configure do |config|
|
|
48
|
+
# config.timeout = 10.0
|
|
49
|
+
# end
|
|
51
50
|
#
|
|
52
51
|
# @yield [config] Configure the Client client.
|
|
53
52
|
# @yieldparam config [Client::Configuration]
|
|
@@ -75,82 +74,52 @@ module Google
|
|
|
75
74
|
|
|
76
75
|
default_config.rpcs.get_iam_policy.timeout = 60.0
|
|
77
76
|
default_config.rpcs.get_iam_policy.retry_policy = {
|
|
78
|
-
initial_delay: 0.1,
|
|
79
|
-
max_delay: 60.0,
|
|
80
|
-
multiplier: 1.3,
|
|
81
|
-
retry_codes: [4, 14]
|
|
77
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
82
78
|
}
|
|
83
79
|
|
|
84
80
|
default_config.rpcs.get_notification_config.timeout = 60.0
|
|
85
81
|
default_config.rpcs.get_notification_config.retry_policy = {
|
|
86
|
-
initial_delay: 0.1,
|
|
87
|
-
max_delay: 60.0,
|
|
88
|
-
multiplier: 1.3,
|
|
89
|
-
retry_codes: [4, 14]
|
|
82
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
90
83
|
}
|
|
91
84
|
|
|
92
85
|
default_config.rpcs.get_organization_settings.timeout = 60.0
|
|
93
86
|
default_config.rpcs.get_organization_settings.retry_policy = {
|
|
94
|
-
initial_delay: 0.1,
|
|
95
|
-
max_delay: 60.0,
|
|
96
|
-
multiplier: 1.3,
|
|
97
|
-
retry_codes: [4, 14]
|
|
87
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
98
88
|
}
|
|
99
89
|
|
|
100
90
|
default_config.rpcs.get_source.timeout = 60.0
|
|
101
91
|
default_config.rpcs.get_source.retry_policy = {
|
|
102
|
-
initial_delay: 0.1,
|
|
103
|
-
max_delay: 60.0,
|
|
104
|
-
multiplier: 1.3,
|
|
105
|
-
retry_codes: [4, 14]
|
|
92
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
106
93
|
}
|
|
107
94
|
|
|
108
95
|
default_config.rpcs.group_assets.timeout = 480.0
|
|
109
96
|
default_config.rpcs.group_assets.retry_policy = {
|
|
110
|
-
initial_delay: 0.1,
|
|
111
|
-
max_delay: 60.0,
|
|
112
|
-
multiplier: 1.3,
|
|
113
|
-
retry_codes: [4, 14]
|
|
97
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
114
98
|
}
|
|
115
99
|
|
|
116
100
|
default_config.rpcs.group_findings.timeout = 480.0
|
|
117
101
|
default_config.rpcs.group_findings.retry_policy = {
|
|
118
|
-
initial_delay: 0.1,
|
|
119
|
-
max_delay: 60.0,
|
|
120
|
-
multiplier: 1.3,
|
|
121
|
-
retry_codes: [4, 14]
|
|
102
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
122
103
|
}
|
|
123
104
|
|
|
124
105
|
default_config.rpcs.list_assets.timeout = 480.0
|
|
125
106
|
default_config.rpcs.list_assets.retry_policy = {
|
|
126
|
-
initial_delay: 0.1,
|
|
127
|
-
max_delay: 60.0,
|
|
128
|
-
multiplier: 1.3,
|
|
129
|
-
retry_codes: [4, 14]
|
|
107
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
130
108
|
}
|
|
131
109
|
|
|
132
110
|
default_config.rpcs.list_findings.timeout = 480.0
|
|
133
111
|
default_config.rpcs.list_findings.retry_policy = {
|
|
134
|
-
initial_delay: 0.1,
|
|
135
|
-
max_delay: 60.0,
|
|
136
|
-
multiplier: 1.3,
|
|
137
|
-
retry_codes: [4, 14]
|
|
112
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
138
113
|
}
|
|
139
114
|
|
|
140
115
|
default_config.rpcs.list_notification_configs.timeout = 60.0
|
|
141
116
|
default_config.rpcs.list_notification_configs.retry_policy = {
|
|
142
|
-
initial_delay: 0.1,
|
|
143
|
-
max_delay: 60.0,
|
|
144
|
-
multiplier: 1.3,
|
|
145
|
-
retry_codes: [4, 14]
|
|
117
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
146
118
|
}
|
|
147
119
|
|
|
148
120
|
default_config.rpcs.list_sources.timeout = 60.0
|
|
149
121
|
default_config.rpcs.list_sources.retry_policy = {
|
|
150
|
-
initial_delay: 0.1,
|
|
151
|
-
max_delay: 60.0,
|
|
152
|
-
multiplier: 1.3,
|
|
153
|
-
retry_codes: [4, 14]
|
|
122
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
154
123
|
}
|
|
155
124
|
|
|
156
125
|
default_config.rpcs.run_asset_discovery.timeout = 60.0
|
|
@@ -161,10 +130,7 @@ module Google
|
|
|
161
130
|
|
|
162
131
|
default_config.rpcs.test_iam_permissions.timeout = 60.0
|
|
163
132
|
default_config.rpcs.test_iam_permissions.retry_policy = {
|
|
164
|
-
initial_delay: 0.1,
|
|
165
|
-
max_delay: 60.0,
|
|
166
|
-
multiplier: 1.3,
|
|
167
|
-
retry_codes: [4, 14]
|
|
133
|
+
initial_delay: 0.1, max_delay: 60.0, multiplier: 1.3, retry_codes: [4, 14]
|
|
168
134
|
}
|
|
169
135
|
|
|
170
136
|
default_config.rpcs.update_finding.timeout = 60.0
|
|
@@ -206,19 +172,15 @@ module Google
|
|
|
206
172
|
##
|
|
207
173
|
# Create a new SecurityCenter client object.
|
|
208
174
|
#
|
|
209
|
-
#
|
|
210
|
-
#
|
|
211
|
-
# To create a new SecurityCenter client with the default
|
|
212
|
-
# configuration:
|
|
213
|
-
#
|
|
214
|
-
# client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
|
|
175
|
+
# @example
|
|
215
176
|
#
|
|
216
|
-
#
|
|
217
|
-
#
|
|
177
|
+
# # Create a client using the default configuration
|
|
178
|
+
# client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new
|
|
218
179
|
#
|
|
219
|
-
#
|
|
220
|
-
#
|
|
221
|
-
#
|
|
180
|
+
# # Create a client using a custom configuration
|
|
181
|
+
# client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new do |config|
|
|
182
|
+
# config.timeout = 10.0
|
|
183
|
+
# end
|
|
222
184
|
#
|
|
223
185
|
# @yield [config] Configure the SecurityCenter client.
|
|
224
186
|
# @yieldparam config [Client::Configuration]
|
|
@@ -238,14 +200,13 @@ module Google
|
|
|
238
200
|
|
|
239
201
|
# Create credentials
|
|
240
202
|
credentials = @config.credentials
|
|
241
|
-
# Use self-signed JWT if the
|
|
203
|
+
# Use self-signed JWT if the endpoint is unchanged from default,
|
|
242
204
|
# but only if the default endpoint does not have a region prefix.
|
|
243
|
-
enable_self_signed_jwt = @config.
|
|
244
|
-
@config.endpoint == Client.configure.endpoint &&
|
|
205
|
+
enable_self_signed_jwt = @config.endpoint == Client.configure.endpoint &&
|
|
245
206
|
!@config.endpoint.split(".").first.include?("-")
|
|
246
207
|
credentials ||= Credentials.default scope: @config.scope,
|
|
247
208
|
enable_self_signed_jwt: enable_self_signed_jwt
|
|
248
|
-
if credentials.is_a?(String) || credentials.is_a?(Hash)
|
|
209
|
+
if credentials.is_a?(::String) || credentials.is_a?(::Hash)
|
|
249
210
|
credentials = Credentials.new credentials, scope: @config.scope
|
|
250
211
|
end
|
|
251
212
|
@quota_project_id = @config.quota_project
|
|
@@ -333,7 +294,9 @@ module Google
|
|
|
333
294
|
options.apply_defaults timeout: @config.rpcs.create_source.timeout,
|
|
334
295
|
metadata: metadata,
|
|
335
296
|
retry_policy: @config.rpcs.create_source.retry_policy
|
|
336
|
-
|
|
297
|
+
|
|
298
|
+
options.apply_defaults timeout: @config.timeout,
|
|
299
|
+
metadata: @config.metadata,
|
|
337
300
|
retry_policy: @config.retry_policy
|
|
338
301
|
|
|
339
302
|
@security_center_stub.call_rpc :create_source, request, options: options do |response, operation|
|
|
@@ -408,7 +371,9 @@ module Google
|
|
|
408
371
|
options.apply_defaults timeout: @config.rpcs.create_finding.timeout,
|
|
409
372
|
metadata: metadata,
|
|
410
373
|
retry_policy: @config.rpcs.create_finding.retry_policy
|
|
411
|
-
|
|
374
|
+
|
|
375
|
+
options.apply_defaults timeout: @config.timeout,
|
|
376
|
+
metadata: @config.metadata,
|
|
412
377
|
retry_policy: @config.retry_policy
|
|
413
378
|
|
|
414
379
|
@security_center_stub.call_rpc :create_finding, request, options: options do |response, operation|
|
|
@@ -483,7 +448,9 @@ module Google
|
|
|
483
448
|
options.apply_defaults timeout: @config.rpcs.create_notification_config.timeout,
|
|
484
449
|
metadata: metadata,
|
|
485
450
|
retry_policy: @config.rpcs.create_notification_config.retry_policy
|
|
486
|
-
|
|
451
|
+
|
|
452
|
+
options.apply_defaults timeout: @config.timeout,
|
|
453
|
+
metadata: @config.metadata,
|
|
487
454
|
retry_policy: @config.retry_policy
|
|
488
455
|
|
|
489
456
|
@security_center_stub.call_rpc :create_notification_config, request, options: options do |response, operation|
|
|
@@ -550,7 +517,9 @@ module Google
|
|
|
550
517
|
options.apply_defaults timeout: @config.rpcs.delete_notification_config.timeout,
|
|
551
518
|
metadata: metadata,
|
|
552
519
|
retry_policy: @config.rpcs.delete_notification_config.retry_policy
|
|
553
|
-
|
|
520
|
+
|
|
521
|
+
options.apply_defaults timeout: @config.timeout,
|
|
522
|
+
metadata: @config.metadata,
|
|
554
523
|
retry_policy: @config.retry_policy
|
|
555
524
|
|
|
556
525
|
@security_center_stub.call_rpc :delete_notification_config, request, options: options do |response, operation|
|
|
@@ -620,7 +589,9 @@ module Google
|
|
|
620
589
|
options.apply_defaults timeout: @config.rpcs.get_iam_policy.timeout,
|
|
621
590
|
metadata: metadata,
|
|
622
591
|
retry_policy: @config.rpcs.get_iam_policy.retry_policy
|
|
623
|
-
|
|
592
|
+
|
|
593
|
+
options.apply_defaults timeout: @config.timeout,
|
|
594
|
+
metadata: @config.metadata,
|
|
624
595
|
retry_policy: @config.retry_policy
|
|
625
596
|
|
|
626
597
|
@security_center_stub.call_rpc :get_iam_policy, request, options: options do |response, operation|
|
|
@@ -687,7 +658,9 @@ module Google
|
|
|
687
658
|
options.apply_defaults timeout: @config.rpcs.get_notification_config.timeout,
|
|
688
659
|
metadata: metadata,
|
|
689
660
|
retry_policy: @config.rpcs.get_notification_config.retry_policy
|
|
690
|
-
|
|
661
|
+
|
|
662
|
+
options.apply_defaults timeout: @config.timeout,
|
|
663
|
+
metadata: @config.metadata,
|
|
691
664
|
retry_policy: @config.retry_policy
|
|
692
665
|
|
|
693
666
|
@security_center_stub.call_rpc :get_notification_config, request, options: options do |response, operation|
|
|
@@ -754,7 +727,9 @@ module Google
|
|
|
754
727
|
options.apply_defaults timeout: @config.rpcs.get_organization_settings.timeout,
|
|
755
728
|
metadata: metadata,
|
|
756
729
|
retry_policy: @config.rpcs.get_organization_settings.retry_policy
|
|
757
|
-
|
|
730
|
+
|
|
731
|
+
options.apply_defaults timeout: @config.timeout,
|
|
732
|
+
metadata: @config.metadata,
|
|
758
733
|
retry_policy: @config.retry_policy
|
|
759
734
|
|
|
760
735
|
@security_center_stub.call_rpc :get_organization_settings, request, options: options do |response, operation|
|
|
@@ -821,7 +796,9 @@ module Google
|
|
|
821
796
|
options.apply_defaults timeout: @config.rpcs.get_source.timeout,
|
|
822
797
|
metadata: metadata,
|
|
823
798
|
retry_policy: @config.rpcs.get_source.retry_policy
|
|
824
|
-
|
|
799
|
+
|
|
800
|
+
options.apply_defaults timeout: @config.timeout,
|
|
801
|
+
metadata: @config.metadata,
|
|
825
802
|
retry_policy: @config.retry_policy
|
|
826
803
|
|
|
827
804
|
@security_center_stub.call_rpc :get_source, request, options: options do |response, operation|
|
|
@@ -1012,7 +989,9 @@ module Google
|
|
|
1012
989
|
options.apply_defaults timeout: @config.rpcs.group_assets.timeout,
|
|
1013
990
|
metadata: metadata,
|
|
1014
991
|
retry_policy: @config.rpcs.group_assets.retry_policy
|
|
1015
|
-
|
|
992
|
+
|
|
993
|
+
options.apply_defaults timeout: @config.timeout,
|
|
994
|
+
metadata: @config.metadata,
|
|
1016
995
|
retry_policy: @config.retry_policy
|
|
1017
996
|
|
|
1018
997
|
@security_center_stub.call_rpc :group_assets, request, options: options do |response, operation|
|
|
@@ -1090,23 +1069,32 @@ module Google
|
|
|
1090
1069
|
# * category: `=`, `:`
|
|
1091
1070
|
# * external_uri: `=`, `:`
|
|
1092
1071
|
# * event_time: `=`, `>`, `<`, `>=`, `<=`
|
|
1093
|
-
# * severity: `=`, `:`
|
|
1094
1072
|
#
|
|
1095
1073
|
# Usage: This should be milliseconds since epoch or an RFC3339 string.
|
|
1096
1074
|
# Examples:
|
|
1097
1075
|
# `event_time = "2019-06-10T16:07:18-07:00"`
|
|
1098
1076
|
# `event_time = 1560208038000`
|
|
1099
1077
|
#
|
|
1078
|
+
# * severity: `=`, `:`
|
|
1079
|
+
# * workflow_state: `=`, `:`
|
|
1100
1080
|
# * security_marks.marks: `=`, `:`
|
|
1101
1081
|
# * source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
|
|
1102
1082
|
#
|
|
1103
|
-
#
|
|
1083
|
+
# For example, `source_properties.size = 100` is a valid filter string.
|
|
1104
1084
|
#
|
|
1105
|
-
#
|
|
1106
|
-
#
|
|
1085
|
+
# Use a partial match on the empty string to filter based on a property
|
|
1086
|
+
# existing: `source_properties.my_property : ""`
|
|
1107
1087
|
#
|
|
1108
|
-
#
|
|
1109
|
-
#
|
|
1088
|
+
# Use a negated partial match on the empty string to filter based on a
|
|
1089
|
+
# property not existing: `-source_properties.my_property : ""`
|
|
1090
|
+
#
|
|
1091
|
+
# * resource:
|
|
1092
|
+
# * resource.name: `=`, `:`
|
|
1093
|
+
# * resource.parent_name: `=`, `:`
|
|
1094
|
+
# * resource.parent_display_name: `=`, `:`
|
|
1095
|
+
# * resource.project_name: `=`, `:`
|
|
1096
|
+
# * resource.project_display_name: `=`, `:`
|
|
1097
|
+
# * resource.type: `=`, `:`
|
|
1110
1098
|
# @param group_by [::String]
|
|
1111
1099
|
# Required. Expression that defines what assets fields to use for grouping (including
|
|
1112
1100
|
# `state_change`). The string value should follow SQL syntax: comma separated
|
|
@@ -1203,7 +1191,9 @@ module Google
|
|
|
1203
1191
|
options.apply_defaults timeout: @config.rpcs.group_findings.timeout,
|
|
1204
1192
|
metadata: metadata,
|
|
1205
1193
|
retry_policy: @config.rpcs.group_findings.retry_policy
|
|
1206
|
-
|
|
1194
|
+
|
|
1195
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1196
|
+
metadata: @config.metadata,
|
|
1207
1197
|
retry_policy: @config.retry_policy
|
|
1208
1198
|
|
|
1209
1199
|
@security_center_stub.call_rpc :group_findings, request, options: options do |response, operation|
|
|
@@ -1398,7 +1388,9 @@ module Google
|
|
|
1398
1388
|
options.apply_defaults timeout: @config.rpcs.list_assets.timeout,
|
|
1399
1389
|
metadata: metadata,
|
|
1400
1390
|
retry_policy: @config.rpcs.list_assets.retry_policy
|
|
1401
|
-
|
|
1391
|
+
|
|
1392
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1393
|
+
metadata: @config.metadata,
|
|
1402
1394
|
retry_policy: @config.retry_policy
|
|
1403
1395
|
|
|
1404
1396
|
@security_center_stub.call_rpc :list_assets, request, options: options do |response, operation|
|
|
@@ -1473,23 +1465,33 @@ module Google
|
|
|
1473
1465
|
# * category: `=`, `:`
|
|
1474
1466
|
# * external_uri: `=`, `:`
|
|
1475
1467
|
# * event_time: `=`, `>`, `<`, `>=`, `<=`
|
|
1476
|
-
# * severity: `=`, `:`
|
|
1477
1468
|
#
|
|
1478
1469
|
# Usage: This should be milliseconds since epoch or an RFC3339 string.
|
|
1479
1470
|
# Examples:
|
|
1480
1471
|
# `event_time = "2019-06-10T16:07:18-07:00"`
|
|
1481
1472
|
# `event_time = 1560208038000`
|
|
1482
1473
|
#
|
|
1483
|
-
#
|
|
1484
|
-
#
|
|
1474
|
+
# * severity: `=`, `:`
|
|
1475
|
+
# * workflow_state: `=`, `:`
|
|
1476
|
+
# * security_marks.marks: `=`, `:`
|
|
1477
|
+
# * source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
|
|
1478
|
+
#
|
|
1479
|
+
# For example, `source_properties.size = 100` is a valid filter string.
|
|
1485
1480
|
#
|
|
1486
|
-
#
|
|
1481
|
+
# Use a partial match on the empty string to filter based on a property
|
|
1482
|
+
# existing: `source_properties.my_property : ""`
|
|
1487
1483
|
#
|
|
1488
|
-
#
|
|
1489
|
-
#
|
|
1484
|
+
# Use a negated partial match on the empty string to filter based on a
|
|
1485
|
+
# property not existing: `-source_properties.my_property : ""`
|
|
1490
1486
|
#
|
|
1491
|
-
#
|
|
1492
|
-
#
|
|
1487
|
+
# * resource:
|
|
1488
|
+
# * resource.name: `=`, `:`
|
|
1489
|
+
# * resource.parent_name: `=`, `:`
|
|
1490
|
+
# * resource.parent_display_name: `=`, `:`
|
|
1491
|
+
# * resource.project_name: `=`, `:`
|
|
1492
|
+
# * resource.project_display_name: `=`, `:`
|
|
1493
|
+
# * resource.type: `=`, `:`
|
|
1494
|
+
# * resource.folders.resource_folder: `=`, `:`
|
|
1493
1495
|
# @param order_by [::String]
|
|
1494
1496
|
# Expression that defines what fields and order to use for sorting. The
|
|
1495
1497
|
# string value should follow SQL syntax: comma separated list of fields. For
|
|
@@ -1590,7 +1592,9 @@ module Google
|
|
|
1590
1592
|
options.apply_defaults timeout: @config.rpcs.list_findings.timeout,
|
|
1591
1593
|
metadata: metadata,
|
|
1592
1594
|
retry_policy: @config.rpcs.list_findings.retry_policy
|
|
1593
|
-
|
|
1595
|
+
|
|
1596
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1597
|
+
metadata: @config.metadata,
|
|
1594
1598
|
retry_policy: @config.retry_policy
|
|
1595
1599
|
|
|
1596
1600
|
@security_center_stub.call_rpc :list_findings, request, options: options do |response, operation|
|
|
@@ -1665,7 +1669,9 @@ module Google
|
|
|
1665
1669
|
options.apply_defaults timeout: @config.rpcs.list_notification_configs.timeout,
|
|
1666
1670
|
metadata: metadata,
|
|
1667
1671
|
retry_policy: @config.rpcs.list_notification_configs.retry_policy
|
|
1668
|
-
|
|
1672
|
+
|
|
1673
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1674
|
+
metadata: @config.metadata,
|
|
1669
1675
|
retry_policy: @config.retry_policy
|
|
1670
1676
|
|
|
1671
1677
|
@security_center_stub.call_rpc :list_notification_configs, request, options: options do |response, operation|
|
|
@@ -1741,7 +1747,9 @@ module Google
|
|
|
1741
1747
|
options.apply_defaults timeout: @config.rpcs.list_sources.timeout,
|
|
1742
1748
|
metadata: metadata,
|
|
1743
1749
|
retry_policy: @config.rpcs.list_sources.retry_policy
|
|
1744
|
-
|
|
1750
|
+
|
|
1751
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1752
|
+
metadata: @config.metadata,
|
|
1745
1753
|
retry_policy: @config.retry_policy
|
|
1746
1754
|
|
|
1747
1755
|
@security_center_stub.call_rpc :list_sources, request, options: options do |response, operation|
|
|
@@ -1814,7 +1822,9 @@ module Google
|
|
|
1814
1822
|
options.apply_defaults timeout: @config.rpcs.run_asset_discovery.timeout,
|
|
1815
1823
|
metadata: metadata,
|
|
1816
1824
|
retry_policy: @config.rpcs.run_asset_discovery.retry_policy
|
|
1817
|
-
|
|
1825
|
+
|
|
1826
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1827
|
+
metadata: @config.metadata,
|
|
1818
1828
|
retry_policy: @config.retry_policy
|
|
1819
1829
|
|
|
1820
1830
|
@security_center_stub.call_rpc :run_asset_discovery, request, options: options do |response, operation|
|
|
@@ -1888,7 +1898,9 @@ module Google
|
|
|
1888
1898
|
options.apply_defaults timeout: @config.rpcs.set_finding_state.timeout,
|
|
1889
1899
|
metadata: metadata,
|
|
1890
1900
|
retry_policy: @config.rpcs.set_finding_state.retry_policy
|
|
1891
|
-
|
|
1901
|
+
|
|
1902
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1903
|
+
metadata: @config.metadata,
|
|
1892
1904
|
retry_policy: @config.retry_policy
|
|
1893
1905
|
|
|
1894
1906
|
@security_center_stub.call_rpc :set_finding_state, request, options: options do |response, operation|
|
|
@@ -1960,7 +1972,9 @@ module Google
|
|
|
1960
1972
|
options.apply_defaults timeout: @config.rpcs.set_iam_policy.timeout,
|
|
1961
1973
|
metadata: metadata,
|
|
1962
1974
|
retry_policy: @config.rpcs.set_iam_policy.retry_policy
|
|
1963
|
-
|
|
1975
|
+
|
|
1976
|
+
options.apply_defaults timeout: @config.timeout,
|
|
1977
|
+
metadata: @config.metadata,
|
|
1964
1978
|
retry_policy: @config.retry_policy
|
|
1965
1979
|
|
|
1966
1980
|
@security_center_stub.call_rpc :set_iam_policy, request, options: options do |response, operation|
|
|
@@ -2032,7 +2046,9 @@ module Google
|
|
|
2032
2046
|
options.apply_defaults timeout: @config.rpcs.test_iam_permissions.timeout,
|
|
2033
2047
|
metadata: metadata,
|
|
2034
2048
|
retry_policy: @config.rpcs.test_iam_permissions.retry_policy
|
|
2035
|
-
|
|
2049
|
+
|
|
2050
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2051
|
+
metadata: @config.metadata,
|
|
2036
2052
|
retry_policy: @config.retry_policy
|
|
2037
2053
|
|
|
2038
2054
|
@security_center_stub.call_rpc :test_iam_permissions, request, options: options do |response, operation|
|
|
@@ -2112,7 +2128,9 @@ module Google
|
|
|
2112
2128
|
options.apply_defaults timeout: @config.rpcs.update_finding.timeout,
|
|
2113
2129
|
metadata: metadata,
|
|
2114
2130
|
retry_policy: @config.rpcs.update_finding.retry_policy
|
|
2115
|
-
|
|
2131
|
+
|
|
2132
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2133
|
+
metadata: @config.metadata,
|
|
2116
2134
|
retry_policy: @config.retry_policy
|
|
2117
2135
|
|
|
2118
2136
|
@security_center_stub.call_rpc :update_finding, request, options: options do |response, operation|
|
|
@@ -2183,7 +2201,9 @@ module Google
|
|
|
2183
2201
|
options.apply_defaults timeout: @config.rpcs.update_notification_config.timeout,
|
|
2184
2202
|
metadata: metadata,
|
|
2185
2203
|
retry_policy: @config.rpcs.update_notification_config.retry_policy
|
|
2186
|
-
|
|
2204
|
+
|
|
2205
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2206
|
+
metadata: @config.metadata,
|
|
2187
2207
|
retry_policy: @config.retry_policy
|
|
2188
2208
|
|
|
2189
2209
|
@security_center_stub.call_rpc :update_notification_config, request, options: options do |response, operation|
|
|
@@ -2253,7 +2273,9 @@ module Google
|
|
|
2253
2273
|
options.apply_defaults timeout: @config.rpcs.update_organization_settings.timeout,
|
|
2254
2274
|
metadata: metadata,
|
|
2255
2275
|
retry_policy: @config.rpcs.update_organization_settings.retry_policy
|
|
2256
|
-
|
|
2276
|
+
|
|
2277
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2278
|
+
metadata: @config.metadata,
|
|
2257
2279
|
retry_policy: @config.retry_policy
|
|
2258
2280
|
|
|
2259
2281
|
@security_center_stub.call_rpc :update_organization_settings, request, options: options do |response, operation|
|
|
@@ -2323,7 +2345,9 @@ module Google
|
|
|
2323
2345
|
options.apply_defaults timeout: @config.rpcs.update_source.timeout,
|
|
2324
2346
|
metadata: metadata,
|
|
2325
2347
|
retry_policy: @config.rpcs.update_source.retry_policy
|
|
2326
|
-
|
|
2348
|
+
|
|
2349
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2350
|
+
metadata: @config.metadata,
|
|
2327
2351
|
retry_policy: @config.retry_policy
|
|
2328
2352
|
|
|
2329
2353
|
@security_center_stub.call_rpc :update_source, request, options: options do |response, operation|
|
|
@@ -2399,7 +2423,9 @@ module Google
|
|
|
2399
2423
|
options.apply_defaults timeout: @config.rpcs.update_security_marks.timeout,
|
|
2400
2424
|
metadata: metadata,
|
|
2401
2425
|
retry_policy: @config.rpcs.update_security_marks.retry_policy
|
|
2402
|
-
|
|
2426
|
+
|
|
2427
|
+
options.apply_defaults timeout: @config.timeout,
|
|
2428
|
+
metadata: @config.metadata,
|
|
2403
2429
|
retry_policy: @config.retry_policy
|
|
2404
2430
|
|
|
2405
2431
|
@security_center_stub.call_rpc :update_security_marks, request, options: options do |response, operation|
|
|
@@ -2423,22 +2449,21 @@ module Google
|
|
|
2423
2449
|
# Configuration can be applied globally to all clients, or to a single client
|
|
2424
2450
|
# on construction.
|
|
2425
2451
|
#
|
|
2426
|
-
#
|
|
2427
|
-
#
|
|
2428
|
-
#
|
|
2429
|
-
# to 20 seconds,
|
|
2430
|
-
#
|
|
2431
|
-
#
|
|
2432
|
-
#
|
|
2433
|
-
#
|
|
2434
|
-
#
|
|
2435
|
-
#
|
|
2436
|
-
#
|
|
2437
|
-
#
|
|
2438
|
-
#
|
|
2439
|
-
#
|
|
2440
|
-
#
|
|
2441
|
-
# end
|
|
2452
|
+
# @example
|
|
2453
|
+
#
|
|
2454
|
+
# # Modify the global config, setting the timeout for
|
|
2455
|
+
# # create_source to 20 seconds,
|
|
2456
|
+
# # and all remaining timeouts to 10 seconds.
|
|
2457
|
+
# ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.configure do |config|
|
|
2458
|
+
# config.timeout = 10.0
|
|
2459
|
+
# config.rpcs.create_source.timeout = 20.0
|
|
2460
|
+
# end
|
|
2461
|
+
#
|
|
2462
|
+
# # Apply the above configuration only to a new client.
|
|
2463
|
+
# client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Client.new do |config|
|
|
2464
|
+
# config.timeout = 10.0
|
|
2465
|
+
# config.rpcs.create_source.timeout = 20.0
|
|
2466
|
+
# end
|
|
2442
2467
|
#
|
|
2443
2468
|
# @!attribute [rw] endpoint
|
|
2444
2469
|
# The hostname or hostname:port of the service endpoint.
|
|
@@ -82,7 +82,7 @@ module Google
|
|
|
82
82
|
# Create credentials
|
|
83
83
|
credentials = @config.credentials
|
|
84
84
|
credentials ||= Credentials.default scope: @config.scope
|
|
85
|
-
if credentials.is_a?(String) || credentials.is_a?(Hash)
|
|
85
|
+
if credentials.is_a?(::String) || credentials.is_a?(::Hash)
|
|
86
86
|
credentials = Credentials.new credentials, scope: @config.scope
|
|
87
87
|
end
|
|
88
88
|
@quota_project_id = @config.quota_project
|
|
@@ -169,7 +169,9 @@ module Google
|
|
|
169
169
|
options.apply_defaults timeout: @config.rpcs.list_operations.timeout,
|
|
170
170
|
metadata: metadata,
|
|
171
171
|
retry_policy: @config.rpcs.list_operations.retry_policy
|
|
172
|
-
|
|
172
|
+
|
|
173
|
+
options.apply_defaults timeout: @config.timeout,
|
|
174
|
+
metadata: @config.metadata,
|
|
173
175
|
retry_policy: @config.retry_policy
|
|
174
176
|
|
|
175
177
|
@operations_stub.call_rpc :list_operations, request, options: options do |response, operation|
|
|
@@ -239,7 +241,9 @@ module Google
|
|
|
239
241
|
options.apply_defaults timeout: @config.rpcs.get_operation.timeout,
|
|
240
242
|
metadata: metadata,
|
|
241
243
|
retry_policy: @config.rpcs.get_operation.retry_policy
|
|
242
|
-
|
|
244
|
+
|
|
245
|
+
options.apply_defaults timeout: @config.timeout,
|
|
246
|
+
metadata: @config.metadata,
|
|
243
247
|
retry_policy: @config.retry_policy
|
|
244
248
|
|
|
245
249
|
@operations_stub.call_rpc :get_operation, request, options: options do |response, operation|
|
|
@@ -309,7 +313,9 @@ module Google
|
|
|
309
313
|
options.apply_defaults timeout: @config.rpcs.delete_operation.timeout,
|
|
310
314
|
metadata: metadata,
|
|
311
315
|
retry_policy: @config.rpcs.delete_operation.retry_policy
|
|
312
|
-
|
|
316
|
+
|
|
317
|
+
options.apply_defaults timeout: @config.timeout,
|
|
318
|
+
metadata: @config.metadata,
|
|
313
319
|
retry_policy: @config.retry_policy
|
|
314
320
|
|
|
315
321
|
@operations_stub.call_rpc :delete_operation, request, options: options do |response, operation|
|
|
@@ -384,7 +390,9 @@ module Google
|
|
|
384
390
|
options.apply_defaults timeout: @config.rpcs.cancel_operation.timeout,
|
|
385
391
|
metadata: metadata,
|
|
386
392
|
retry_policy: @config.rpcs.cancel_operation.retry_policy
|
|
387
|
-
|
|
393
|
+
|
|
394
|
+
options.apply_defaults timeout: @config.timeout,
|
|
395
|
+
metadata: @config.metadata,
|
|
388
396
|
retry_policy: @config.retry_policy
|
|
389
397
|
|
|
390
398
|
@operations_stub.call_rpc :cancel_operation, request, options: options do |response, operation|
|
|
@@ -396,9 +404,9 @@ module Google
|
|
|
396
404
|
end
|
|
397
405
|
|
|
398
406
|
##
|
|
399
|
-
# Waits
|
|
400
|
-
#
|
|
401
|
-
#
|
|
407
|
+
# Waits until the specified long-running operation is done or reaches at most
|
|
408
|
+
# a specified timeout, returning the latest state. If the operation is
|
|
409
|
+
# already done, the latest state is immediately returned. If the timeout
|
|
402
410
|
# specified is greater than the default HTTP/RPC timeout, the HTTP/RPC
|
|
403
411
|
# timeout is used. If the server does not support this method, it returns
|
|
404
412
|
# `google.rpc.Code.UNIMPLEMENTED`.
|
|
@@ -456,7 +464,9 @@ module Google
|
|
|
456
464
|
options.apply_defaults timeout: @config.rpcs.wait_operation.timeout,
|
|
457
465
|
metadata: metadata,
|
|
458
466
|
retry_policy: @config.rpcs.wait_operation.retry_policy
|
|
459
|
-
|
|
467
|
+
|
|
468
|
+
options.apply_defaults timeout: @config.timeout,
|
|
469
|
+
metadata: @config.metadata,
|
|
460
470
|
retry_policy: @config.retry_policy
|
|
461
471
|
|
|
462
472
|
@operations_stub.call_rpc :wait_operation, request, options: options do |response, operation|
|
|
@@ -481,22 +491,21 @@ module Google
|
|
|
481
491
|
# Configuration can be applied globally to all clients, or to a single client
|
|
482
492
|
# on construction.
|
|
483
493
|
#
|
|
484
|
-
#
|
|
485
|
-
#
|
|
486
|
-
#
|
|
487
|
-
# to 20 seconds,
|
|
488
|
-
#
|
|
489
|
-
#
|
|
490
|
-
#
|
|
491
|
-
#
|
|
492
|
-
#
|
|
493
|
-
#
|
|
494
|
-
#
|
|
495
|
-
#
|
|
496
|
-
#
|
|
497
|
-
#
|
|
498
|
-
#
|
|
499
|
-
# end
|
|
494
|
+
# @example
|
|
495
|
+
#
|
|
496
|
+
# # Modify the global config, setting the timeout for
|
|
497
|
+
# # list_operations to 20 seconds,
|
|
498
|
+
# # and all remaining timeouts to 10 seconds.
|
|
499
|
+
# ::Google::Longrunning::Operations::Client.configure do |config|
|
|
500
|
+
# config.timeout = 10.0
|
|
501
|
+
# config.rpcs.list_operations.timeout = 20.0
|
|
502
|
+
# end
|
|
503
|
+
#
|
|
504
|
+
# # Apply the above configuration only to a new client.
|
|
505
|
+
# client = ::Google::Longrunning::Operations::Client.new do |config|
|
|
506
|
+
# config.timeout = 10.0
|
|
507
|
+
# config.rpcs.list_operations.timeout = 20.0
|
|
508
|
+
# end
|
|
500
509
|
#
|
|
501
510
|
# @!attribute [rw] endpoint
|
|
502
511
|
# The hostname or hostname:port of the service endpoint.
|
|
@@ -5,6 +5,7 @@ require 'google/protobuf'
|
|
|
5
5
|
|
|
6
6
|
require 'google/api/field_behavior_pb'
|
|
7
7
|
require 'google/api/resource_pb'
|
|
8
|
+
require 'google/cloud/securitycenter/v1/indicator_pb'
|
|
8
9
|
require 'google/cloud/securitycenter/v1/security_marks_pb'
|
|
9
10
|
require 'google/protobuf/struct_pb'
|
|
10
11
|
require 'google/protobuf/timestamp_pb'
|
|
@@ -24,6 +25,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
24
25
|
optional :create_time, :message, 10, "google.protobuf.Timestamp"
|
|
25
26
|
optional :severity, :enum, 12, "google.cloud.securitycenter.v1.Finding.Severity"
|
|
26
27
|
optional :canonical_name, :string, 14
|
|
28
|
+
optional :finding_class, :enum, 17, "google.cloud.securitycenter.v1.Finding.FindingClass"
|
|
29
|
+
optional :indicator, :message, 18, "google.cloud.securitycenter.v1.Indicator"
|
|
27
30
|
end
|
|
28
31
|
add_enum "google.cloud.securitycenter.v1.Finding.State" do
|
|
29
32
|
value :STATE_UNSPECIFIED, 0
|
|
@@ -37,6 +40,13 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
37
40
|
value :MEDIUM, 3
|
|
38
41
|
value :LOW, 4
|
|
39
42
|
end
|
|
43
|
+
add_enum "google.cloud.securitycenter.v1.Finding.FindingClass" do
|
|
44
|
+
value :FINDING_CLASS_UNSPECIFIED, 0
|
|
45
|
+
value :THREAT, 1
|
|
46
|
+
value :VULNERABILITY, 2
|
|
47
|
+
value :MISCONFIGURATION, 3
|
|
48
|
+
value :OBSERVATION, 4
|
|
49
|
+
end
|
|
40
50
|
end
|
|
41
51
|
end
|
|
42
52
|
|
|
@@ -47,6 +57,7 @@ module Google
|
|
|
47
57
|
Finding = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding").msgclass
|
|
48
58
|
Finding::State = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding.State").enummodule
|
|
49
59
|
Finding::Severity = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding.Severity").enummodule
|
|
60
|
+
Finding::FindingClass = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Finding.FindingClass").enummodule
|
|
50
61
|
end
|
|
51
62
|
end
|
|
52
63
|
end
|
|
@@ -0,0 +1,24 @@
|
|
|
1
|
+
# Generated by the protocol buffer compiler. DO NOT EDIT!
|
|
2
|
+
# source: google/cloud/securitycenter/v1/indicator.proto
|
|
3
|
+
|
|
4
|
+
require 'google/protobuf'
|
|
5
|
+
|
|
6
|
+
require 'google/api/annotations_pb'
|
|
7
|
+
Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
8
|
+
add_file("google/cloud/securitycenter/v1/indicator.proto", :syntax => :proto3) do
|
|
9
|
+
add_message "google.cloud.securitycenter.v1.Indicator" do
|
|
10
|
+
repeated :ip_addresses, :string, 1
|
|
11
|
+
repeated :domains, :string, 2
|
|
12
|
+
end
|
|
13
|
+
end
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
module Google
|
|
17
|
+
module Cloud
|
|
18
|
+
module SecurityCenter
|
|
19
|
+
module V1
|
|
20
|
+
Indicator = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.securitycenter.v1.Indicator").msgclass
|
|
21
|
+
end
|
|
22
|
+
end
|
|
23
|
+
end
|
|
24
|
+
end
|
|
@@ -57,9 +57,15 @@ module Google
|
|
|
57
57
|
|
|
58
58
|
# Denotes that a (repeated) field is an unordered list.
|
|
59
59
|
# This indicates that the service may provide the elements of the list
|
|
60
|
-
# in any arbitrary
|
|
60
|
+
# in any arbitrary order, rather than the order the user originally
|
|
61
61
|
# provided. Additionally, the list's order may or may not be stable.
|
|
62
62
|
UNORDERED_LIST = 6
|
|
63
|
+
|
|
64
|
+
# Denotes that this field returns a non-empty default value if not set.
|
|
65
|
+
# This indicates that if the user provides the empty value in a request,
|
|
66
|
+
# a non-empty value will be returned. The user will not be aware of what
|
|
67
|
+
# non-empty value to expect.
|
|
68
|
+
NON_EMPTY_DEFAULT = 7
|
|
63
69
|
end
|
|
64
70
|
end
|
|
65
71
|
end
|
|
@@ -96,6 +96,16 @@ module Google
|
|
|
96
96
|
# "projects/\\{project_number}/sources/\\{source_id}/findings/\\{finding_id}",
|
|
97
97
|
# depending on the closest CRM ancestor of the resource associated with the
|
|
98
98
|
# finding.
|
|
99
|
+
# @!attribute [rw] finding_class
|
|
100
|
+
# @return [::Google::Cloud::SecurityCenter::V1::Finding::FindingClass]
|
|
101
|
+
# The class of the finding.
|
|
102
|
+
# @!attribute [rw] indicator
|
|
103
|
+
# @return [::Google::Cloud::SecurityCenter::V1::Indicator]
|
|
104
|
+
# Represents what's commonly known as an Indicator of compromise (IoC) in
|
|
105
|
+
# computer forensics. This is an artifact observed on a network or in an
|
|
106
|
+
# operating system that, with high confidence, indicates a computer
|
|
107
|
+
# intrusion.
|
|
108
|
+
# Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
|
|
99
109
|
class Finding
|
|
100
110
|
include ::Google::Protobuf::MessageExts
|
|
101
111
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
@@ -180,6 +190,26 @@ module Google
|
|
|
180
190
|
# is not able to access data, execute code, or create resources.
|
|
181
191
|
LOW = 4
|
|
182
192
|
end
|
|
193
|
+
|
|
194
|
+
# Represents what kind of Finding it is.
|
|
195
|
+
module FindingClass
|
|
196
|
+
# Unspecified finding class.
|
|
197
|
+
FINDING_CLASS_UNSPECIFIED = 0
|
|
198
|
+
|
|
199
|
+
# Describes unwanted or malicious activity.
|
|
200
|
+
THREAT = 1
|
|
201
|
+
|
|
202
|
+
# Describes a potential weakness in software that increases risk to
|
|
203
|
+
# Confidentiality & Integrity & Availability.
|
|
204
|
+
VULNERABILITY = 2
|
|
205
|
+
|
|
206
|
+
# Describes a potential weakness in cloud resource/asset configuration that
|
|
207
|
+
# increases risk.
|
|
208
|
+
MISCONFIGURATION = 3
|
|
209
|
+
|
|
210
|
+
# Describes a security observation that is for informational purposes.
|
|
211
|
+
OBSERVATION = 4
|
|
212
|
+
end
|
|
183
213
|
end
|
|
184
214
|
end
|
|
185
215
|
end
|
|
@@ -0,0 +1,41 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
# Copyright 2021 Google LLC
|
|
4
|
+
#
|
|
5
|
+
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
6
|
+
# you may not use this file except in compliance with the License.
|
|
7
|
+
# You may obtain a copy of the License at
|
|
8
|
+
#
|
|
9
|
+
# https://www.apache.org/licenses/LICENSE-2.0
|
|
10
|
+
#
|
|
11
|
+
# Unless required by applicable law or agreed to in writing, software
|
|
12
|
+
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
13
|
+
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
14
|
+
# See the License for the specific language governing permissions and
|
|
15
|
+
# limitations under the License.
|
|
16
|
+
|
|
17
|
+
# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
|
|
18
|
+
|
|
19
|
+
|
|
20
|
+
module Google
|
|
21
|
+
module Cloud
|
|
22
|
+
module SecurityCenter
|
|
23
|
+
module V1
|
|
24
|
+
# Represents what's commonly known as an Indicator of compromise (IoC) in
|
|
25
|
+
# computer forensics. This is an artifact observed on a network or in an
|
|
26
|
+
# operating system that, with high confidence, indicates a computer intrusion.
|
|
27
|
+
# Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
|
|
28
|
+
# @!attribute [rw] ip_addresses
|
|
29
|
+
# @return [::Array<::String>]
|
|
30
|
+
# List of ip addresses associated to the Finding.
|
|
31
|
+
# @!attribute [rw] domains
|
|
32
|
+
# @return [::Array<::String>]
|
|
33
|
+
# List of domains associated to the Finding.
|
|
34
|
+
class Indicator
|
|
35
|
+
include ::Google::Protobuf::MessageExts
|
|
36
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
|
37
|
+
end
|
|
38
|
+
end
|
|
39
|
+
end
|
|
40
|
+
end
|
|
41
|
+
end
|
|
@@ -319,23 +319,32 @@ module Google
|
|
|
319
319
|
# * category: `=`, `:`
|
|
320
320
|
# * external_uri: `=`, `:`
|
|
321
321
|
# * event_time: `=`, `>`, `<`, `>=`, `<=`
|
|
322
|
-
# * severity: `=`, `:`
|
|
323
322
|
#
|
|
324
323
|
# Usage: This should be milliseconds since epoch or an RFC3339 string.
|
|
325
324
|
# Examples:
|
|
326
325
|
# `event_time = "2019-06-10T16:07:18-07:00"`
|
|
327
326
|
# `event_time = 1560208038000`
|
|
328
327
|
#
|
|
328
|
+
# * severity: `=`, `:`
|
|
329
|
+
# * workflow_state: `=`, `:`
|
|
329
330
|
# * security_marks.marks: `=`, `:`
|
|
330
331
|
# * source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
|
|
331
332
|
#
|
|
332
|
-
#
|
|
333
|
+
# For example, `source_properties.size = 100` is a valid filter string.
|
|
333
334
|
#
|
|
334
|
-
#
|
|
335
|
-
#
|
|
335
|
+
# Use a partial match on the empty string to filter based on a property
|
|
336
|
+
# existing: `source_properties.my_property : ""`
|
|
336
337
|
#
|
|
337
|
-
#
|
|
338
|
-
#
|
|
338
|
+
# Use a negated partial match on the empty string to filter based on a
|
|
339
|
+
# property not existing: `-source_properties.my_property : ""`
|
|
340
|
+
#
|
|
341
|
+
# * resource:
|
|
342
|
+
# * resource.name: `=`, `:`
|
|
343
|
+
# * resource.parent_name: `=`, `:`
|
|
344
|
+
# * resource.parent_display_name: `=`, `:`
|
|
345
|
+
# * resource.project_name: `=`, `:`
|
|
346
|
+
# * resource.project_display_name: `=`, `:`
|
|
347
|
+
# * resource.type: `=`, `:`
|
|
339
348
|
# @!attribute [rw] group_by
|
|
340
349
|
# @return [::String]
|
|
341
350
|
# Required. Expression that defines what assets fields to use for grouping (including
|
|
@@ -754,23 +763,33 @@ module Google
|
|
|
754
763
|
# * category: `=`, `:`
|
|
755
764
|
# * external_uri: `=`, `:`
|
|
756
765
|
# * event_time: `=`, `>`, `<`, `>=`, `<=`
|
|
757
|
-
# * severity: `=`, `:`
|
|
758
766
|
#
|
|
759
767
|
# Usage: This should be milliseconds since epoch or an RFC3339 string.
|
|
760
768
|
# Examples:
|
|
761
769
|
# `event_time = "2019-06-10T16:07:18-07:00"`
|
|
762
770
|
# `event_time = 1560208038000`
|
|
763
771
|
#
|
|
764
|
-
#
|
|
765
|
-
#
|
|
772
|
+
# * severity: `=`, `:`
|
|
773
|
+
# * workflow_state: `=`, `:`
|
|
774
|
+
# * security_marks.marks: `=`, `:`
|
|
775
|
+
# * source_properties: `=`, `:`, `>`, `<`, `>=`, `<=`
|
|
766
776
|
#
|
|
767
|
-
#
|
|
777
|
+
# For example, `source_properties.size = 100` is a valid filter string.
|
|
768
778
|
#
|
|
769
|
-
#
|
|
770
|
-
#
|
|
779
|
+
# Use a partial match on the empty string to filter based on a property
|
|
780
|
+
# existing: `source_properties.my_property : ""`
|
|
771
781
|
#
|
|
772
|
-
#
|
|
773
|
-
#
|
|
782
|
+
# Use a negated partial match on the empty string to filter based on a
|
|
783
|
+
# property not existing: `-source_properties.my_property : ""`
|
|
784
|
+
#
|
|
785
|
+
# * resource:
|
|
786
|
+
# * resource.name: `=`, `:`
|
|
787
|
+
# * resource.parent_name: `=`, `:`
|
|
788
|
+
# * resource.parent_display_name: `=`, `:`
|
|
789
|
+
# * resource.project_name: `=`, `:`
|
|
790
|
+
# * resource.project_display_name: `=`, `:`
|
|
791
|
+
# * resource.type: `=`, `:`
|
|
792
|
+
# * resource.folders.resource_folder: `=`, `:`
|
|
774
793
|
# @!attribute [rw] order_by
|
|
775
794
|
# @return [::String]
|
|
776
795
|
# Expression that defines what fields and order to use for sorting. The
|
|
@@ -19,30 +19,53 @@
|
|
|
19
19
|
|
|
20
20
|
module Google
|
|
21
21
|
module Type
|
|
22
|
-
# Represents
|
|
22
|
+
# Represents a textual expression in the Common Expression Language (CEL)
|
|
23
|
+
# syntax. CEL is a C-like expression language. The syntax and semantics of CEL
|
|
24
|
+
# are documented at https://github.com/google/cel-spec.
|
|
23
25
|
#
|
|
24
|
-
#
|
|
25
|
-
#
|
|
26
|
-
#
|
|
26
|
+
# Example (Comparison):
|
|
27
|
+
#
|
|
28
|
+
# title: "Summary size limit"
|
|
29
|
+
# description: "Determines if a summary is less than 100 chars"
|
|
30
|
+
# expression: "document.summary.size() < 100"
|
|
31
|
+
#
|
|
32
|
+
# Example (Equality):
|
|
33
|
+
#
|
|
34
|
+
# title: "Requestor is owner"
|
|
35
|
+
# description: "Determines if requestor is the document owner"
|
|
36
|
+
# expression: "document.owner == request.auth.claims.email"
|
|
37
|
+
#
|
|
38
|
+
# Example (Logic):
|
|
39
|
+
#
|
|
40
|
+
# title: "Public documents"
|
|
41
|
+
# description: "Determine whether the document should be publicly visible"
|
|
42
|
+
# expression: "document.type != 'private' && document.type != 'internal'"
|
|
43
|
+
#
|
|
44
|
+
# Example (Data Manipulation):
|
|
45
|
+
#
|
|
46
|
+
# title: "Notification string"
|
|
47
|
+
# description: "Create a notification string with a timestamp."
|
|
48
|
+
# expression: "'New message received at ' + string(document.create_time)"
|
|
49
|
+
#
|
|
50
|
+
# The exact variables and functions that may be referenced within an expression
|
|
51
|
+
# are determined by the service that evaluates it. See the service
|
|
52
|
+
# documentation for additional information.
|
|
27
53
|
# @!attribute [rw] expression
|
|
28
54
|
# @return [::String]
|
|
29
|
-
# Textual representation of an expression in
|
|
30
|
-
#
|
|
31
|
-
#
|
|
32
|
-
# The application context of the containing message determines which
|
|
33
|
-
# well-known feature set of CEL is supported.
|
|
55
|
+
# Textual representation of an expression in Common Expression Language
|
|
56
|
+
# syntax.
|
|
34
57
|
# @!attribute [rw] title
|
|
35
58
|
# @return [::String]
|
|
36
|
-
#
|
|
59
|
+
# Optional. Title for the expression, i.e. a short string describing
|
|
37
60
|
# its purpose. This can be used e.g. in UIs which allow to enter the
|
|
38
61
|
# expression.
|
|
39
62
|
# @!attribute [rw] description
|
|
40
63
|
# @return [::String]
|
|
41
|
-
#
|
|
64
|
+
# Optional. Description of the expression. This is a longer text which
|
|
42
65
|
# describes the expression, e.g. when hovered over it in a UI.
|
|
43
66
|
# @!attribute [rw] location
|
|
44
67
|
# @return [::String]
|
|
45
|
-
#
|
|
68
|
+
# Optional. String indicating the location of the expression for error
|
|
46
69
|
# reporting, e.g. a file name and a position in the file.
|
|
47
70
|
class Expr
|
|
48
71
|
include ::Google::Protobuf::MessageExts
|
metadata
CHANGED
|
@@ -1,29 +1,35 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: google-cloud-security_center-v1
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.8.1
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Google LLC
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2021-
|
|
11
|
+
date: 2021-08-11 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: gapic-common
|
|
15
15
|
requirement: !ruby/object:Gem::Requirement
|
|
16
16
|
requirements:
|
|
17
|
-
- - "
|
|
17
|
+
- - ">="
|
|
18
|
+
- !ruby/object:Gem::Version
|
|
19
|
+
version: '0.7'
|
|
20
|
+
- - "<"
|
|
18
21
|
- !ruby/object:Gem::Version
|
|
19
|
-
version:
|
|
22
|
+
version: 2.a
|
|
20
23
|
type: :runtime
|
|
21
24
|
prerelease: false
|
|
22
25
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
26
|
requirements:
|
|
24
|
-
- - "
|
|
27
|
+
- - ">="
|
|
28
|
+
- !ruby/object:Gem::Version
|
|
29
|
+
version: '0.7'
|
|
30
|
+
- - "<"
|
|
25
31
|
- !ruby/object:Gem::Version
|
|
26
|
-
version:
|
|
32
|
+
version: 2.a
|
|
27
33
|
- !ruby/object:Gem::Dependency
|
|
28
34
|
name: google-cloud-errors
|
|
29
35
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -47,7 +53,7 @@ dependencies:
|
|
|
47
53
|
version: 0.6.10
|
|
48
54
|
- - "<"
|
|
49
55
|
- !ruby/object:Gem::Version
|
|
50
|
-
version:
|
|
56
|
+
version: 2.a
|
|
51
57
|
type: :runtime
|
|
52
58
|
prerelease: false
|
|
53
59
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -57,7 +63,7 @@ dependencies:
|
|
|
57
63
|
version: 0.6.10
|
|
58
64
|
- - "<"
|
|
59
65
|
- !ruby/object:Gem::Version
|
|
60
|
-
version:
|
|
66
|
+
version: 2.a
|
|
61
67
|
- !ruby/object:Gem::Dependency
|
|
62
68
|
name: google-style
|
|
63
69
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -194,6 +200,7 @@ files:
|
|
|
194
200
|
- lib/google/cloud/securitycenter/v1/asset_pb.rb
|
|
195
201
|
- lib/google/cloud/securitycenter/v1/finding_pb.rb
|
|
196
202
|
- lib/google/cloud/securitycenter/v1/folder_pb.rb
|
|
203
|
+
- lib/google/cloud/securitycenter/v1/indicator_pb.rb
|
|
197
204
|
- lib/google/cloud/securitycenter/v1/notification_config_pb.rb
|
|
198
205
|
- lib/google/cloud/securitycenter/v1/notification_message_pb.rb
|
|
199
206
|
- lib/google/cloud/securitycenter/v1/organization_settings_pb.rb
|
|
@@ -209,6 +216,7 @@ files:
|
|
|
209
216
|
- proto_docs/google/cloud/securitycenter/v1/asset.rb
|
|
210
217
|
- proto_docs/google/cloud/securitycenter/v1/finding.rb
|
|
211
218
|
- proto_docs/google/cloud/securitycenter/v1/folder.rb
|
|
219
|
+
- proto_docs/google/cloud/securitycenter/v1/indicator.rb
|
|
212
220
|
- proto_docs/google/cloud/securitycenter/v1/notification_config.rb
|
|
213
221
|
- proto_docs/google/cloud/securitycenter/v1/notification_message.rb
|
|
214
222
|
- proto_docs/google/cloud/securitycenter/v1/organization_settings.rb
|