RubyGems - google-cloud-security_center-v2 - Versions diffs - 0.a → 0.2.0 - Mend

google-cloud-security_center-v2 0.a → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (119) hide show

data/proto_docs/google/cloud/securitycenter/v2/resource_value_config.rb ADDED Viewed

@@ -0,0 +1,122 @@
+# frozen_string_literal: true
+# Copyright 2024 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+module Google
+  module Cloud
+    module SecurityCenter
+      module V2
+        # A resource value config (RVC) is a mapping configuration of user's resources
+        # to resource values. Used in Attack path simulations.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     Name for the resource value config
+        # @!attribute [rw] resource_value
+        #   @return [::Google::Cloud::SecurityCenter::V2::ResourceValue]
+        #     Resource value level this expression represents
+        #     Only required when there is no SDP mapping in the request
+        # @!attribute [rw] tag_values
+        #   @return [::Array<::String>]
+        #     Required. Tag values combined with AND to check against.
+        #     Values in the form "tagValues/123"
+        #     E.g. [ "tagValues/123", "tagValues/456", "tagValues/789" ]
+        #     https://cloud.google.com/resource-manager/docs/tags/tags-creating-and-managing
+        # @!attribute [rw] resource_type
+        #   @return [::String]
+        #     Apply resource_value only to resources that match resource_type.
+        #     resource_type will be checked with "AND" of other resources.
+        #     E.g. "storage.googleapis.com/Bucket" with resource_value "HIGH" will
+        #     apply "HIGH" value only to "storage.googleapis.com/Bucket" resources.
+        # @!attribute [rw] scope
+        #   @return [::String]
+        #     Project or folder to scope this config to.
+        #     For example, "project/456" would apply this config only to resources in
+        #     "project/456"
+        #     scope will be checked with "AND" of other resources.
+        # @!attribute [rw] resource_labels_selector
+        #   @return [::Google::Protobuf::Map{::String => ::String}]
+        #     List of resource labels to search for, evaluated with AND.
+        #     E.g. "resource_labels_selector": \\{"key": "value", "env": "prod"}
+        #     will match resources with labels "key": "value" AND "env": "prod"
+        #     https://cloud.google.com/resource-manager/docs/creating-managing-labels
+        # @!attribute [rw] description
+        #   @return [::String]
+        #     Description of the resource value config.
+        # @!attribute [r] create_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     Output only. Timestamp this resource value config was created.
+        # @!attribute [r] update_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     Output only. Timestamp this resource value config was last updated.
+        # @!attribute [rw] sensitive_data_protection_mapping
+        #   @return [::Google::Cloud::SecurityCenter::V2::ResourceValueConfig::SensitiveDataProtectionMapping]
+        #     A mapping of the sensitivity on Sensitive Data Protection finding to
+        #     resource values. This mapping can only be used in combination with a
+        #     resource_type that is related to BigQuery, e.g.
+        #     "bigquery.googleapis.com/Dataset".
+        class ResourceValueConfig
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+          # Resource value mapping for Sensitive Data Protection findings
+          # If any of these mappings have a resource value that is not unspecified,
+          # the resource_value field will be ignored when reading this configuration.
+          # @!attribute [rw] high_sensitivity_mapping
+          #   @return [::Google::Cloud::SecurityCenter::V2::ResourceValue]
+          #     Resource value mapping for high-sensitivity Sensitive Data Protection
+          #     findings
+          # @!attribute [rw] medium_sensitivity_mapping
+          #   @return [::Google::Cloud::SecurityCenter::V2::ResourceValue]
+          #     Resource value mapping for medium-sensitivity Sensitive Data Protection
+          #     findings
+          class SensitiveDataProtectionMapping
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+          # @!attribute [rw] key
+          #   @return [::String]
+          # @!attribute [rw] value
+          #   @return [::String]
+          class ResourceLabelsSelectorEntry
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+        end
+        # Value enum to map to a resource
+        module ResourceValue
+          # Unspecific value
+          RESOURCE_VALUE_UNSPECIFIED = 0
+          # High resource value
+          HIGH = 1
+          # Medium resource value
+          MEDIUM = 2
+          # Low resource value
+          LOW = 3
+          # No resource value, e.g. ignore these resources
+          NONE = 4
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/securitycenter/v2/security_marks.rb ADDED Viewed

@@ -0,0 +1,84 @@
+# frozen_string_literal: true
+# Copyright 2024 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+module Google
+  module Cloud
+    module SecurityCenter
+      module V2
+        # User specified security marks that are attached to the parent Security
+        # Command Center resource. Security marks are scoped within a Security Command
+        # Center organization -- they can be modified and viewed by all users who have
+        # proper permissions on the organization.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     The relative resource name of the SecurityMarks. See:
+        #     https://cloud.google.com/apis/design/resource_names#relative_resource_name
+        #     The following list shows some examples:
+        #
+        #     + `organizations/{organization_id}/assets/{asset_id}/securityMarks`
+        #     +
+        #     `organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks`
+        #     +
+        #     `organizations/{organization_id}/sources/{source_id}/locations/{location}/findings/{finding_id}/securityMarks`
+        # @!attribute [rw] marks
+        #   @return [::Google::Protobuf::Map{::String => ::String}]
+        #     Mutable user specified security marks belonging to the parent resource.
+        #     Constraints are as follows:
+        #
+        #       * Keys and values are treated as case insensitive
+        #       * Keys must be between 1 - 256 characters (inclusive)
+        #       * Keys must be letters, numbers, underscores, or dashes
+        #       * Values have leading and trailing whitespace trimmed, remaining
+        #         characters must be between 1 - 4096 characters (inclusive)
+        # @!attribute [rw] canonical_name
+        #   @return [::String]
+        #     The canonical name of the marks. The following list shows some examples:
+        #
+        #     + `organizations/{organization_id}/assets/{asset_id}/securityMarks`
+        #     +
+        #     `organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks`
+        #     +
+        #     `organizations/{organization_id}/sources/{source_id}/locations/{location}/findings/{finding_id}/securityMarks`
+        #     + `folders/{folder_id}/assets/{asset_id}/securityMarks`
+        #     +
+        #     `folders/{folder_id}/sources/{source_id}/findings/{finding_id}/securityMarks`
+        #     +
+        #     `folders/{folder_id}/sources/{source_id}/locations/{location}/findings/{finding_id}/securityMarks`
+        #     + `projects/{project_number}/assets/{asset_id}/securityMarks`
+        #     +
+        #     `projects/{project_number}/sources/{source_id}/findings/{finding_id}/securityMarks`
+        #     +
+        #     `projects/{project_number}/sources/{source_id}/locations/{location}/findings/{finding_id}/securityMarks`
+        class SecurityMarks
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+          # @!attribute [rw] key
+          #   @return [::String]
+          # @!attribute [rw] value
+          #   @return [::String]
+          class MarksEntry
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/securitycenter/v2/security_posture.rb ADDED Viewed

@@ -0,0 +1,83 @@
+# frozen_string_literal: true
+# Copyright 2024 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+module Google
+  module Cloud
+    module SecurityCenter
+      module V2
+        # Represents a posture that is deployed on Google Cloud by the
+        # Security Command Center Posture Management service.
+        # A posture contains one or more policy sets. A policy set is a
+        # group of policies that enforce a set of security rules on Google
+        # Cloud.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     Name of the posture, for example, `CIS-Posture`.
+        # @!attribute [rw] revision_id
+        #   @return [::String]
+        #     The version of the posture, for example, `c7cfa2a8`.
+        # @!attribute [rw] posture_deployment_resource
+        #   @return [::String]
+        #     The project, folder, or organization on which the posture is deployed,
+        #     for example, `projects/{project_number}`.
+        # @!attribute [rw] posture_deployment
+        #   @return [::String]
+        #     The name of the posture deployment, for example,
+        #     `organizations/{org_id}/posturedeployments/{posture_deployment_id}`.
+        # @!attribute [rw] changed_policy
+        #   @return [::String]
+        #     The name of the updated policy, for example,
+        #     `projects/{project_id}/policies/{constraint_name}`.
+        # @!attribute [rw] policy_set
+        #   @return [::String]
+        #     The name of the updated policy set, for example, `cis-policyset`.
+        # @!attribute [rw] policy
+        #   @return [::String]
+        #     The ID of the updated policy, for example, `compute-policy-1`.
+        # @!attribute [rw] policy_drift_details
+        #   @return [::Array<::Google::Cloud::SecurityCenter::V2::SecurityPosture::PolicyDriftDetails>]
+        #     The details about a change in an updated policy that violates the deployed
+        #     posture.
+        class SecurityPosture
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+          # The policy field that violates the deployed posture and its expected and
+          # detected values.
+          # @!attribute [rw] field
+          #   @return [::String]
+          #     The name of the updated field, for example
+          #     constraint.implementation.policy_rules[0].enforce
+          # @!attribute [rw] expected_value
+          #   @return [::String]
+          #     The value of this field that was configured in a posture, for example,
+          #     `true` or `allowed_values={"projects/29831892"}`.
+          # @!attribute [rw] detected_value
+          #   @return [::String]
+          #     The detected value that violates the deployed posture, for example,
+          #     `false` or `allowed_values={"projects/22831892"}`.
+          class PolicyDriftDetails
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+        end
+      end
+    end
+  end
+end