google-cloud-security_center-v2 0.1.0 → 0.3.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/google/cloud/security_center/v2/security_center/client.rb +87 -48
- data/lib/google/cloud/security_center/v2/security_center/operations.rb +13 -5
- data/lib/google/cloud/security_center/v2/security_center/paths.rb +118 -23
- data/lib/google/cloud/security_center/v2/security_center/rest/client.rb +87 -48
- data/lib/google/cloud/security_center/v2/security_center/rest/operations.rb +11 -4
- data/lib/google/cloud/security_center/v2/security_center/rest/service_stub.rb +65 -0
- data/lib/google/cloud/security_center/v2/version.rb +1 -1
- data/lib/google/cloud/securitycenter/v2/attack_path_pb.rb +1 -1
- data/lib/google/cloud/securitycenter/v2/cloud_armor_pb.rb +49 -0
- data/lib/google/cloud/securitycenter/v2/finding_pb.rb +9 -1
- data/lib/google/cloud/securitycenter/v2/folder_pb.rb +42 -0
- data/lib/google/cloud/securitycenter/v2/group_membership_pb.rb +43 -0
- data/lib/google/cloud/securitycenter/v2/mitre_attack_pb.rb +1 -1
- data/lib/google/cloud/securitycenter/v2/notebook_pb.rb +45 -0
- data/lib/google/cloud/securitycenter/v2/resource_pb.rb +16 -1
- data/lib/google/cloud/securitycenter/v2/resource_value_config_pb.rb +2 -1
- data/lib/google/cloud/securitycenter/v2/securitycenter_service_pb.rb +3 -1
- data/lib/google/cloud/securitycenter/v2/simulation_pb.rb +2 -1
- data/lib/google/cloud/securitycenter/v2/toxic_combination_pb.rb +42 -0
- data/lib/google/cloud/securitycenter/v2/valued_resource_pb.rb +1 -1
- data/proto_docs/google/cloud/securitycenter/v2/cloud_armor.rb +128 -0
- data/proto_docs/google/cloud/securitycenter/v2/finding.rb +22 -0
- data/proto_docs/google/cloud/securitycenter/v2/folder.rb +40 -0
- data/proto_docs/google/cloud/securitycenter/v2/group_membership.rb +48 -0
- data/proto_docs/google/cloud/securitycenter/v2/mitre_attack.rb +13 -1
- data/proto_docs/google/cloud/securitycenter/v2/notebook.rb +46 -0
- data/proto_docs/google/cloud/securitycenter/v2/resource.rb +247 -0
- data/proto_docs/google/cloud/securitycenter/v2/resource_value_config.rb +22 -18
- data/proto_docs/google/cloud/securitycenter/v2/securitycenter_service.rb +37 -8
- data/proto_docs/google/cloud/securitycenter/v2/simulation.rb +3 -0
- data/proto_docs/google/cloud/securitycenter/v2/toxic_combination.rb +46 -0
- metadata +12 -2
@@ -32,10 +32,257 @@ module Google
|
|
32
32
|
# @!attribute [rw] type
|
33
33
|
# @return [::String]
|
34
34
|
# The full resource type of the resource.
|
35
|
+
# @!attribute [rw] cloud_provider
|
36
|
+
# @return [::Google::Cloud::SecurityCenter::V2::CloudProvider]
|
37
|
+
# Indicates which cloud provider the finding is from.
|
38
|
+
# @!attribute [rw] service
|
39
|
+
# @return [::String]
|
40
|
+
# The service or resource provider associated with the resource.
|
41
|
+
# @!attribute [rw] location
|
42
|
+
# @return [::String]
|
43
|
+
# The region or location of the service (if applicable).
|
44
|
+
# @!attribute [rw] gcp_metadata
|
45
|
+
# @return [::Google::Cloud::SecurityCenter::V2::GcpMetadata]
|
46
|
+
# The GCP metadata associated with the finding.
|
47
|
+
# @!attribute [rw] aws_metadata
|
48
|
+
# @return [::Google::Cloud::SecurityCenter::V2::AwsMetadata]
|
49
|
+
# The AWS metadata associated with the finding.
|
50
|
+
# @!attribute [rw] azure_metadata
|
51
|
+
# @return [::Google::Cloud::SecurityCenter::V2::AzureMetadata]
|
52
|
+
# The Azure metadata associated with the finding.
|
53
|
+
# @!attribute [rw] resource_path
|
54
|
+
# @return [::Google::Cloud::SecurityCenter::V2::ResourcePath]
|
55
|
+
# Provides the path to the resource within the resource hierarchy.
|
56
|
+
# @!attribute [rw] resource_path_string
|
57
|
+
# @return [::String]
|
58
|
+
# A string representation of the resource path.
|
59
|
+
# For Google Cloud, it has the format of
|
60
|
+
# organizations/\\{organization_id}/folders/\\{folder_id}/folders/\\{folder_id}/projects/\\{project_id}
|
61
|
+
# where there can be any number of folders.
|
62
|
+
# For AWS, it has the format of
|
63
|
+
# org/\\{organization_id}/ou/\\{organizational_unit_id}/ou/\\{organizational_unit_id}/account/\\{account_id}
|
64
|
+
# where there can be any number of organizational units.
|
65
|
+
# For Azure, it has the format of
|
66
|
+
# mg/\\{management_group_id}/mg/\\{management_group_id}/subscription/\\{subscription_id}/rg/\\{resource_group_name}
|
67
|
+
# where there can be any number of management groups.
|
35
68
|
class Resource
|
36
69
|
include ::Google::Protobuf::MessageExts
|
37
70
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
38
71
|
end
|
72
|
+
|
73
|
+
# GCP metadata associated with the resource, only applicable if the finding's
|
74
|
+
# cloud provider is Google Cloud Platform.
|
75
|
+
# @!attribute [rw] project
|
76
|
+
# @return [::String]
|
77
|
+
# The full resource name of project that the resource belongs to.
|
78
|
+
# @!attribute [rw] project_display_name
|
79
|
+
# @return [::String]
|
80
|
+
# The project ID that the resource belongs to.
|
81
|
+
# @!attribute [rw] parent
|
82
|
+
# @return [::String]
|
83
|
+
# The full resource name of resource's parent.
|
84
|
+
# @!attribute [rw] parent_display_name
|
85
|
+
# @return [::String]
|
86
|
+
# The human readable name of resource's parent.
|
87
|
+
# @!attribute [r] folders
|
88
|
+
# @return [::Array<::Google::Cloud::SecurityCenter::V2::Folder>]
|
89
|
+
# Output only. Contains a Folder message for each folder in the assets
|
90
|
+
# ancestry. The first folder is the deepest nested folder, and the last
|
91
|
+
# folder is the folder directly under the Organization.
|
92
|
+
# @!attribute [rw] organization
|
93
|
+
# @return [::String]
|
94
|
+
# The name of the organization that the resource belongs to.
|
95
|
+
class GcpMetadata
|
96
|
+
include ::Google::Protobuf::MessageExts
|
97
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
98
|
+
end
|
99
|
+
|
100
|
+
# AWS metadata associated with the resource, only applicable if the finding's
|
101
|
+
# cloud provider is Amazon Web Services.
|
102
|
+
# @!attribute [rw] organization
|
103
|
+
# @return [::Google::Cloud::SecurityCenter::V2::AwsMetadata::AwsOrganization]
|
104
|
+
# The AWS organization associated with the resource.
|
105
|
+
# @!attribute [rw] organizational_units
|
106
|
+
# @return [::Array<::Google::Cloud::SecurityCenter::V2::AwsMetadata::AwsOrganizationalUnit>]
|
107
|
+
# A list of AWS organizational units associated with the resource, ordered
|
108
|
+
# from lowest level (closest to the account) to highest level.
|
109
|
+
# @!attribute [rw] account
|
110
|
+
# @return [::Google::Cloud::SecurityCenter::V2::AwsMetadata::AwsAccount]
|
111
|
+
# The AWS account associated with the resource.
|
112
|
+
class AwsMetadata
|
113
|
+
include ::Google::Protobuf::MessageExts
|
114
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
115
|
+
|
116
|
+
# An organization is a collection of accounts that are centrally managed
|
117
|
+
# together using consolidated billing, organized hierarchically with
|
118
|
+
# organizational units (OUs), and controlled with policies.
|
119
|
+
# @!attribute [rw] id
|
120
|
+
# @return [::String]
|
121
|
+
# The unique identifier (ID) for the organization. The regex pattern for an
|
122
|
+
# organization ID string requires "o-" followed by from 10 to 32 lowercase
|
123
|
+
# letters or digits.
|
124
|
+
class AwsOrganization
|
125
|
+
include ::Google::Protobuf::MessageExts
|
126
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
127
|
+
end
|
128
|
+
|
129
|
+
# An Organizational Unit (OU) is a container of AWS accounts within a root of
|
130
|
+
# an organization. Policies that are attached to an OU apply to all accounts
|
131
|
+
# contained in that OU and in any child OUs.
|
132
|
+
# @!attribute [rw] id
|
133
|
+
# @return [::String]
|
134
|
+
# The unique identifier (ID) associated with this OU. The regex pattern for
|
135
|
+
# an organizational unit ID string requires "ou-" followed by from 4 to 32
|
136
|
+
# lowercase letters or digits (the ID of the root that contains the OU).
|
137
|
+
# This string is followed by a second "-" dash and from 8 to 32 additional
|
138
|
+
# lowercase letters or digits. For example, "ou-ab12-cd34ef56".
|
139
|
+
# @!attribute [rw] name
|
140
|
+
# @return [::String]
|
141
|
+
# The friendly name of the OU.
|
142
|
+
class AwsOrganizationalUnit
|
143
|
+
include ::Google::Protobuf::MessageExts
|
144
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
145
|
+
end
|
146
|
+
|
147
|
+
# An AWS account that is a member of an organization.
|
148
|
+
# @!attribute [rw] id
|
149
|
+
# @return [::String]
|
150
|
+
# The unique identifier (ID) of the account, containing exactly 12 digits.
|
151
|
+
# @!attribute [rw] name
|
152
|
+
# @return [::String]
|
153
|
+
# The friendly name of this account.
|
154
|
+
class AwsAccount
|
155
|
+
include ::Google::Protobuf::MessageExts
|
156
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
157
|
+
end
|
158
|
+
end
|
159
|
+
|
160
|
+
# Azure metadata associated with the resource, only applicable if the finding's
|
161
|
+
# cloud provider is Microsoft Azure.
|
162
|
+
# @!attribute [rw] management_groups
|
163
|
+
# @return [::Array<::Google::Cloud::SecurityCenter::V2::AzureMetadata::AzureManagementGroup>]
|
164
|
+
# A list of Azure management groups associated with the resource, ordered
|
165
|
+
# from lowest level (closest to the subscription) to highest level.
|
166
|
+
# @!attribute [rw] subscription
|
167
|
+
# @return [::Google::Cloud::SecurityCenter::V2::AzureMetadata::AzureSubscription]
|
168
|
+
# The Azure subscription associated with the resource.
|
169
|
+
# @!attribute [rw] resource_group
|
170
|
+
# @return [::Google::Cloud::SecurityCenter::V2::AzureMetadata::AzureResourceGroup]
|
171
|
+
# The Azure resource group associated with the resource.
|
172
|
+
class AzureMetadata
|
173
|
+
include ::Google::Protobuf::MessageExts
|
174
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
175
|
+
|
176
|
+
# Represents an Azure management group.
|
177
|
+
# @!attribute [rw] id
|
178
|
+
# @return [::String]
|
179
|
+
# The UUID of the Azure management group, for example,
|
180
|
+
# "20000000-0001-0000-0000-000000000000".
|
181
|
+
# @!attribute [rw] display_name
|
182
|
+
# @return [::String]
|
183
|
+
# The display name of the Azure management group.
|
184
|
+
class AzureManagementGroup
|
185
|
+
include ::Google::Protobuf::MessageExts
|
186
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
187
|
+
end
|
188
|
+
|
189
|
+
# Represents an Azure subscription.
|
190
|
+
# @!attribute [rw] id
|
191
|
+
# @return [::String]
|
192
|
+
# The UUID of the Azure subscription, for example,
|
193
|
+
# "291bba3f-e0a5-47bc-a099-3bdcb2a50a05".
|
194
|
+
# @!attribute [rw] display_name
|
195
|
+
# @return [::String]
|
196
|
+
# The display name of the Azure subscription.
|
197
|
+
class AzureSubscription
|
198
|
+
include ::Google::Protobuf::MessageExts
|
199
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
200
|
+
end
|
201
|
+
|
202
|
+
# Represents an Azure resource group.
|
203
|
+
# @!attribute [rw] name
|
204
|
+
# @return [::String]
|
205
|
+
# The name of the Azure resource group. This is not a UUID.
|
206
|
+
class AzureResourceGroup
|
207
|
+
include ::Google::Protobuf::MessageExts
|
208
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
209
|
+
end
|
210
|
+
end
|
211
|
+
|
212
|
+
# Represents the path of resources leading up to the resource this finding is
|
213
|
+
# about.
|
214
|
+
# @!attribute [rw] nodes
|
215
|
+
# @return [::Array<::Google::Cloud::SecurityCenter::V2::ResourcePath::ResourcePathNode>]
|
216
|
+
# The list of nodes that make the up resource path, ordered from lowest
|
217
|
+
# level to highest level.
|
218
|
+
class ResourcePath
|
219
|
+
include ::Google::Protobuf::MessageExts
|
220
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
221
|
+
|
222
|
+
# A node within the resource path. Each node represents a resource within the
|
223
|
+
# resource hierarchy.
|
224
|
+
# @!attribute [rw] node_type
|
225
|
+
# @return [::Google::Cloud::SecurityCenter::V2::ResourcePath::ResourcePathNodeType]
|
226
|
+
# The type of resource this node represents.
|
227
|
+
# @!attribute [rw] id
|
228
|
+
# @return [::String]
|
229
|
+
# The ID of the resource this node represents.
|
230
|
+
# @!attribute [rw] display_name
|
231
|
+
# @return [::String]
|
232
|
+
# The display name of the resource this node represents.
|
233
|
+
class ResourcePathNode
|
234
|
+
include ::Google::Protobuf::MessageExts
|
235
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
236
|
+
end
|
237
|
+
|
238
|
+
# The type of resource the node represents.
|
239
|
+
module ResourcePathNodeType
|
240
|
+
# Node type is unspecified.
|
241
|
+
RESOURCE_PATH_NODE_TYPE_UNSPECIFIED = 0
|
242
|
+
|
243
|
+
# The node represents a Google Cloud organization.
|
244
|
+
GCP_ORGANIZATION = 1
|
245
|
+
|
246
|
+
# The node represents a Google Cloud folder.
|
247
|
+
GCP_FOLDER = 2
|
248
|
+
|
249
|
+
# The node represents a Google Cloud project.
|
250
|
+
GCP_PROJECT = 3
|
251
|
+
|
252
|
+
# The node represents an AWS organization.
|
253
|
+
AWS_ORGANIZATION = 4
|
254
|
+
|
255
|
+
# The node represents an AWS organizational unit.
|
256
|
+
AWS_ORGANIZATIONAL_UNIT = 5
|
257
|
+
|
258
|
+
# The node represents an AWS account.
|
259
|
+
AWS_ACCOUNT = 6
|
260
|
+
|
261
|
+
# The node represents an Azure management group.
|
262
|
+
AZURE_MANAGEMENT_GROUP = 7
|
263
|
+
|
264
|
+
# The node represents an Azure subscription.
|
265
|
+
AZURE_SUBSCRIPTION = 8
|
266
|
+
|
267
|
+
# The node represents an Azure resource group.
|
268
|
+
AZURE_RESOURCE_GROUP = 9
|
269
|
+
end
|
270
|
+
end
|
271
|
+
|
272
|
+
# The cloud provider the finding pertains to.
|
273
|
+
module CloudProvider
|
274
|
+
# The cloud provider is unspecified.
|
275
|
+
CLOUD_PROVIDER_UNSPECIFIED = 0
|
276
|
+
|
277
|
+
# The cloud provider is Google Cloud Platform.
|
278
|
+
GOOGLE_CLOUD_PLATFORM = 1
|
279
|
+
|
280
|
+
# The cloud provider is Amazon Web Services.
|
281
|
+
AMAZON_WEB_SERVICES = 2
|
282
|
+
|
283
|
+
# The cloud provider is Microsoft Azure.
|
284
|
+
MICROSOFT_AZURE = 3
|
285
|
+
end
|
39
286
|
end
|
40
287
|
end
|
41
288
|
end
|
@@ -21,48 +21,52 @@ module Google
|
|
21
21
|
module Cloud
|
22
22
|
module SecurityCenter
|
23
23
|
module V2
|
24
|
-
# A resource value
|
25
|
-
# to resource values. Used in Attack path simulations.
|
24
|
+
# A resource value configuration (RVC) is a mapping configuration of user's
|
25
|
+
# resources to resource values. Used in Attack path simulations.
|
26
26
|
# @!attribute [rw] name
|
27
27
|
# @return [::String]
|
28
|
-
# Name for the resource value
|
28
|
+
# Name for the resource value configuration
|
29
29
|
# @!attribute [rw] resource_value
|
30
30
|
# @return [::Google::Cloud::SecurityCenter::V2::ResourceValue]
|
31
31
|
# Resource value level this expression represents
|
32
32
|
# Only required when there is no SDP mapping in the request
|
33
33
|
# @!attribute [rw] tag_values
|
34
34
|
# @return [::Array<::String>]
|
35
|
-
# Required. Tag values combined with AND to check against.
|
35
|
+
# Required. Tag values combined with <code>AND</code> to check against.
|
36
36
|
# Values in the form "tagValues/123"
|
37
|
-
#
|
37
|
+
# Example: [ "tagValues/123", "tagValues/456", "tagValues/789" ]
|
38
38
|
# https://cloud.google.com/resource-manager/docs/tags/tags-creating-and-managing
|
39
39
|
# @!attribute [rw] resource_type
|
40
40
|
# @return [::String]
|
41
41
|
# Apply resource_value only to resources that match resource_type.
|
42
|
-
# resource_type will be checked with
|
43
|
-
#
|
44
|
-
# apply "HIGH" value only to "storage.googleapis.com/Bucket" resources.
|
42
|
+
# resource_type will be checked with <code>AND</code> of other resources.
|
43
|
+
# For example, "storage.googleapis.com/Bucket" with resource_value "HIGH"
|
44
|
+
# will apply "HIGH" value only to "storage.googleapis.com/Bucket" resources.
|
45
45
|
# @!attribute [rw] scope
|
46
46
|
# @return [::String]
|
47
|
-
# Project or folder to scope this
|
48
|
-
# For example, "project/456" would apply this
|
49
|
-
# "project/456"
|
50
|
-
#
|
47
|
+
# Project or folder to scope this configuration to.
|
48
|
+
# For example, "project/456" would apply this configuration only to resources
|
49
|
+
# in "project/456" scope will be checked with <code>AND</code> of other
|
50
|
+
# resources.
|
51
51
|
# @!attribute [rw] resource_labels_selector
|
52
52
|
# @return [::Google::Protobuf::Map{::String => ::String}]
|
53
|
-
# List of resource labels to search for, evaluated with AND
|
54
|
-
#
|
55
|
-
# will match resources with labels "key": "value" AND "env":
|
53
|
+
# List of resource labels to search for, evaluated with <code>AND</code>.
|
54
|
+
# For example, "resource_labels_selector": \\{"key": "value", "env": "prod"}
|
55
|
+
# will match resources with labels "key": "value" <code>AND</code> "env":
|
56
|
+
# "prod"
|
56
57
|
# https://cloud.google.com/resource-manager/docs/creating-managing-labels
|
57
58
|
# @!attribute [rw] description
|
58
59
|
# @return [::String]
|
59
|
-
# Description of the resource value
|
60
|
+
# Description of the resource value configuration.
|
60
61
|
# @!attribute [r] create_time
|
61
62
|
# @return [::Google::Protobuf::Timestamp]
|
62
|
-
# Output only. Timestamp this resource value
|
63
|
+
# Output only. Timestamp this resource value configuration was created.
|
63
64
|
# @!attribute [r] update_time
|
64
65
|
# @return [::Google::Protobuf::Timestamp]
|
65
|
-
# Output only. Timestamp this resource value
|
66
|
+
# Output only. Timestamp this resource value configuration was last updated.
|
67
|
+
# @!attribute [rw] cloud_provider
|
68
|
+
# @return [::Google::Cloud::SecurityCenter::V2::CloudProvider]
|
69
|
+
# Cloud provider this configuration applies to
|
66
70
|
# @!attribute [rw] sensitive_data_protection_mapping
|
67
71
|
# @return [::Google::Cloud::SecurityCenter::V2::ResourceValueConfig::SensitiveDataProtectionMapping]
|
68
72
|
# A mapping of the sensitivity on Sensitive Data Protection finding to
|
@@ -418,14 +418,6 @@ module Google
|
|
418
418
|
# Required. Expression that defines what assets fields to use for grouping.
|
419
419
|
# The string value should follow SQL syntax: comma separated list of fields.
|
420
420
|
# For example: "parent,resource_name".
|
421
|
-
#
|
422
|
-
# The following fields are supported:
|
423
|
-
#
|
424
|
-
# * resource_name
|
425
|
-
# * category
|
426
|
-
# * state
|
427
|
-
# * parent
|
428
|
-
# * severity
|
429
421
|
# @!attribute [rw] page_token
|
430
422
|
# @return [::String]
|
431
423
|
# The value returned by the last `GroupFindingsResponse`; indicates
|
@@ -738,6 +730,39 @@ module Google
|
|
738
730
|
# @!attribute [rw] type
|
739
731
|
# @return [::String]
|
740
732
|
# The full resource type of the resource.
|
733
|
+
# @!attribute [rw] cloud_provider
|
734
|
+
# @return [::Google::Cloud::SecurityCenter::V2::CloudProvider]
|
735
|
+
# Indicates which cloud provider the finding is from.
|
736
|
+
# @!attribute [rw] service
|
737
|
+
# @return [::String]
|
738
|
+
# The service or resource provider associated with the resource.
|
739
|
+
# @!attribute [rw] location
|
740
|
+
# @return [::String]
|
741
|
+
# The region or location of the service (if applicable).
|
742
|
+
# @!attribute [rw] gcp_metadata
|
743
|
+
# @return [::Google::Cloud::SecurityCenter::V2::GcpMetadata]
|
744
|
+
# The GCP metadata associated with the finding.
|
745
|
+
# @!attribute [rw] aws_metadata
|
746
|
+
# @return [::Google::Cloud::SecurityCenter::V2::AwsMetadata]
|
747
|
+
# The AWS metadata associated with the finding.
|
748
|
+
# @!attribute [rw] azure_metadata
|
749
|
+
# @return [::Google::Cloud::SecurityCenter::V2::AzureMetadata]
|
750
|
+
# The Azure metadata associated with the finding.
|
751
|
+
# @!attribute [rw] resource_path
|
752
|
+
# @return [::Google::Cloud::SecurityCenter::V2::ResourcePath]
|
753
|
+
# Provides the path to the resource within the resource hierarchy.
|
754
|
+
# @!attribute [rw] resource_path_string
|
755
|
+
# @return [::String]
|
756
|
+
# A string representation of the resource path.
|
757
|
+
# For Google Cloud, it has the format of
|
758
|
+
# organizations/\\{organization_id}/folders/\\{folder_id}/folders/\\{folder_id}/projects/\\{project_id}
|
759
|
+
# where there can be any number of folders.
|
760
|
+
# For AWS, it has the format of
|
761
|
+
# org/\\{organization_id}/ou/\\{organizational_unit_id}/ou/\\{organizational_unit_id}/account/\\{account_id}
|
762
|
+
# where there can be any number of organizational units.
|
763
|
+
# For Azure, it has the format of
|
764
|
+
# mg/\\{management_group_id}/mg/\\{management_group_id}/subscription/\\{subscription_id}/rg/\\{resource_group_name}
|
765
|
+
# where there can be any number of management groups.
|
741
766
|
class Resource
|
742
767
|
include ::Google::Protobuf::MessageExts
|
743
768
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -1096,6 +1121,10 @@ module Google
|
|
1096
1121
|
# @return [::Google::Protobuf::FieldMask]
|
1097
1122
|
# The list of fields to be updated.
|
1098
1123
|
# If empty all mutable fields will be updated.
|
1124
|
+
#
|
1125
|
+
# To update nested fields, include the top level field in the mask
|
1126
|
+
# For example, to update gcp_metadata.resource_type, include the
|
1127
|
+
# "gcp_metadata" field mask
|
1099
1128
|
class UpdateResourceValueConfigRequest
|
1100
1129
|
include ::Google::Protobuf::MessageExts
|
1101
1130
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -33,6 +33,9 @@ module Google
|
|
33
33
|
# @return [::Array<::Google::Cloud::SecurityCenter::V2::ResourceValueConfigMetadata>]
|
34
34
|
# Resource value configurations' metadata used in this simulation. Maximum of
|
35
35
|
# 100.
|
36
|
+
# @!attribute [rw] cloud_provider
|
37
|
+
# @return [::Google::Cloud::SecurityCenter::V2::CloudProvider]
|
38
|
+
# Indicates which cloud provider was used in this simulation.
|
36
39
|
class Simulation
|
37
40
|
include ::Google::Protobuf::MessageExts
|
38
41
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -0,0 +1,46 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# Copyright 2024 Google LLC
|
4
|
+
#
|
5
|
+
# Licensed under the Apache License, Version 2.0 (the "License");
|
6
|
+
# you may not use this file except in compliance with the License.
|
7
|
+
# You may obtain a copy of the License at
|
8
|
+
#
|
9
|
+
# https://www.apache.org/licenses/LICENSE-2.0
|
10
|
+
#
|
11
|
+
# Unless required by applicable law or agreed to in writing, software
|
12
|
+
# distributed under the License is distributed on an "AS IS" BASIS,
|
13
|
+
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
14
|
+
# See the License for the specific language governing permissions and
|
15
|
+
# limitations under the License.
|
16
|
+
|
17
|
+
# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
|
18
|
+
|
19
|
+
|
20
|
+
module Google
|
21
|
+
module Cloud
|
22
|
+
module SecurityCenter
|
23
|
+
module V2
|
24
|
+
# Contains details about a group of security issues that, when the issues
|
25
|
+
# occur together, represent a greater risk than when the issues occur
|
26
|
+
# independently. A group of such issues is referred to as a toxic
|
27
|
+
# combination.
|
28
|
+
# @!attribute [rw] attack_exposure_score
|
29
|
+
# @return [::Float]
|
30
|
+
# The
|
31
|
+
# [Attack exposure
|
32
|
+
# score](https://cloud.google.com/security-command-center/docs/attack-exposure-learn#attack_exposure_scores)
|
33
|
+
# of this toxic combination. The score is a measure of how much this toxic
|
34
|
+
# combination exposes one or more high-value resources to potential attack.
|
35
|
+
# @!attribute [rw] related_findings
|
36
|
+
# @return [::Array<::String>]
|
37
|
+
# List of resource names of findings associated with this toxic combination.
|
38
|
+
# For example, `organizations/123/sources/456/findings/789`.
|
39
|
+
class ToxicCombination
|
40
|
+
include ::Google::Protobuf::MessageExts
|
41
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
42
|
+
end
|
43
|
+
end
|
44
|
+
end
|
45
|
+
end
|
46
|
+
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-cloud-security_center-v2
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.3.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2024-
|
11
|
+
date: 2024-06-28 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: gapic-common
|
@@ -90,6 +90,7 @@ files:
|
|
90
90
|
- lib/google/cloud/securitycenter/v2/attack_path_pb.rb
|
91
91
|
- lib/google/cloud/securitycenter/v2/backup_disaster_recovery_pb.rb
|
92
92
|
- lib/google/cloud/securitycenter/v2/bigquery_export_pb.rb
|
93
|
+
- lib/google/cloud/securitycenter/v2/cloud_armor_pb.rb
|
93
94
|
- lib/google/cloud/securitycenter/v2/cloud_dlp_data_profile_pb.rb
|
94
95
|
- lib/google/cloud/securitycenter/v2/cloud_dlp_inspection_pb.rb
|
95
96
|
- lib/google/cloud/securitycenter/v2/compliance_pb.rb
|
@@ -101,6 +102,8 @@ files:
|
|
101
102
|
- lib/google/cloud/securitycenter/v2/external_system_pb.rb
|
102
103
|
- lib/google/cloud/securitycenter/v2/file_pb.rb
|
103
104
|
- lib/google/cloud/securitycenter/v2/finding_pb.rb
|
105
|
+
- lib/google/cloud/securitycenter/v2/folder_pb.rb
|
106
|
+
- lib/google/cloud/securitycenter/v2/group_membership_pb.rb
|
104
107
|
- lib/google/cloud/securitycenter/v2/iam_binding_pb.rb
|
105
108
|
- lib/google/cloud/securitycenter/v2/indicator_pb.rb
|
106
109
|
- lib/google/cloud/securitycenter/v2/kernel_rootkit_pb.rb
|
@@ -110,6 +113,7 @@ files:
|
|
110
113
|
- lib/google/cloud/securitycenter/v2/log_entry_pb.rb
|
111
114
|
- lib/google/cloud/securitycenter/v2/mitre_attack_pb.rb
|
112
115
|
- lib/google/cloud/securitycenter/v2/mute_config_pb.rb
|
116
|
+
- lib/google/cloud/securitycenter/v2/notebook_pb.rb
|
113
117
|
- lib/google/cloud/securitycenter/v2/notification_config_pb.rb
|
114
118
|
- lib/google/cloud/securitycenter/v2/notification_message_pb.rb
|
115
119
|
- lib/google/cloud/securitycenter/v2/org_policy_pb.rb
|
@@ -122,6 +126,7 @@ files:
|
|
122
126
|
- lib/google/cloud/securitycenter/v2/securitycenter_service_services_pb.rb
|
123
127
|
- lib/google/cloud/securitycenter/v2/simulation_pb.rb
|
124
128
|
- lib/google/cloud/securitycenter/v2/source_pb.rb
|
129
|
+
- lib/google/cloud/securitycenter/v2/toxic_combination_pb.rb
|
125
130
|
- lib/google/cloud/securitycenter/v2/valued_resource_pb.rb
|
126
131
|
- lib/google/cloud/securitycenter/v2/vulnerability_pb.rb
|
127
132
|
- proto_docs/README.md
|
@@ -136,6 +141,7 @@ files:
|
|
136
141
|
- proto_docs/google/cloud/securitycenter/v2/attack_path.rb
|
137
142
|
- proto_docs/google/cloud/securitycenter/v2/backup_disaster_recovery.rb
|
138
143
|
- proto_docs/google/cloud/securitycenter/v2/bigquery_export.rb
|
144
|
+
- proto_docs/google/cloud/securitycenter/v2/cloud_armor.rb
|
139
145
|
- proto_docs/google/cloud/securitycenter/v2/cloud_dlp_data_profile.rb
|
140
146
|
- proto_docs/google/cloud/securitycenter/v2/cloud_dlp_inspection.rb
|
141
147
|
- proto_docs/google/cloud/securitycenter/v2/compliance.rb
|
@@ -147,6 +153,8 @@ files:
|
|
147
153
|
- proto_docs/google/cloud/securitycenter/v2/external_system.rb
|
148
154
|
- proto_docs/google/cloud/securitycenter/v2/file.rb
|
149
155
|
- proto_docs/google/cloud/securitycenter/v2/finding.rb
|
156
|
+
- proto_docs/google/cloud/securitycenter/v2/folder.rb
|
157
|
+
- proto_docs/google/cloud/securitycenter/v2/group_membership.rb
|
150
158
|
- proto_docs/google/cloud/securitycenter/v2/iam_binding.rb
|
151
159
|
- proto_docs/google/cloud/securitycenter/v2/indicator.rb
|
152
160
|
- proto_docs/google/cloud/securitycenter/v2/kernel_rootkit.rb
|
@@ -156,6 +164,7 @@ files:
|
|
156
164
|
- proto_docs/google/cloud/securitycenter/v2/log_entry.rb
|
157
165
|
- proto_docs/google/cloud/securitycenter/v2/mitre_attack.rb
|
158
166
|
- proto_docs/google/cloud/securitycenter/v2/mute_config.rb
|
167
|
+
- proto_docs/google/cloud/securitycenter/v2/notebook.rb
|
159
168
|
- proto_docs/google/cloud/securitycenter/v2/notification_config.rb
|
160
169
|
- proto_docs/google/cloud/securitycenter/v2/notification_message.rb
|
161
170
|
- proto_docs/google/cloud/securitycenter/v2/org_policy.rb
|
@@ -167,6 +176,7 @@ files:
|
|
167
176
|
- proto_docs/google/cloud/securitycenter/v2/securitycenter_service.rb
|
168
177
|
- proto_docs/google/cloud/securitycenter/v2/simulation.rb
|
169
178
|
- proto_docs/google/cloud/securitycenter/v2/source.rb
|
179
|
+
- proto_docs/google/cloud/securitycenter/v2/toxic_combination.rb
|
170
180
|
- proto_docs/google/cloud/securitycenter/v2/valued_resource.rb
|
171
181
|
- proto_docs/google/cloud/securitycenter/v2/vulnerability.rb
|
172
182
|
- proto_docs/google/iam/v1/iam_policy.rb
|