google-cloud-web_security_scanner-v1 0.3.5 → 0.5.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 997545778c6e6aaf0112c79cc57050b12d5c4ab8d834c0520f23c1fde2c8b491
-  data.tar.gz: ce45ec9edee33a14e74b9cc92baf3e5c1b54391fa80640d78e245769bac18ce1
+  metadata.gz: aa863bbf83b3277121fc42b09ad751b5d0cc9bee8ea2aa53bd95a3900889d618
+  data.tar.gz: 28b341fad40c792bc86f9f50344e01509d4aa30d381d7362d90f516b9196faae
 SHA512:
-  metadata.gz: fc536ad25ebca8204866a752026576dc603fbca18f15a238c3373725bc64ec02711b1494297f2281b3102a1d57f47ea7bd42eb449d5bffab17d888d5cee566d6
-  data.tar.gz: 865cab29bafb2139bac5f25573fe9963a188e0bbcc6822b7bb7687132bf52ee87411800b7ec70129a5d688bcbc8889ded431f623189a7f9d7b1d59c6a6d0662b
+  metadata.gz: 6a792b63d631653ca66ea93aa43459f9481995dfed267c42b2424790b0f58a1ff2e9c02a53e3a33bd3e5b59bf0c0cc80b94435f4156c770751ee5690a0b5cc96
+  data.tar.gz: 0d1b6afb49af0737ab7c67435d3b55746d804bd9865ede25fefc596ec2fc6ba82bb8ecf6153bfa7b420d4c0b4887ad576e4c962c6869146ef76c2ad6eb05ea8c

data/AUTHENTICATION.md

@@ -114,7 +114,7 @@ credentials are discovered.
 To configure your system for this, simply:
 
 1. [Download and install the Cloud SDK](https://cloud.google.com/sdk)
-2. Authenticate using OAuth 2.0 `$ gcloud auth login`
+2. Authenticate using OAuth 2.0 `$ gcloud auth application-default login`
 3. Write code as if already authenticated.
 
 **NOTE:** This is _not_ recommended for running in production. The Cloud SDK

data/README.md

@@ -37,7 +37,7 @@ request = ::Google::Cloud::WebSecurityScanner::V1::CreateScanConfigRequest.new #
 response = client.create_scan_config request
 ```
 
-View the [Client Library Documentation](https://googleapis.dev/ruby/google-cloud-web_security_scanner-v1/latest)
+View the [Client Library Documentation](https://cloud.google.com/ruby/docs/reference/google-cloud-web_security_scanner-v1/latest)
 for class and method documentation.
 
 See also the [Product Documentation](https://cloud.google.com/security-command-center/docs/concepts-web-security-scanner-overview/)
@@ -69,16 +69,21 @@ module GRPC
 end
 ```
 
+
+## Google Cloud Samples
+
+To browse ready to use code samples check [Google Cloud Samples](https://cloud.google.com/docs/samples).
+
 ## Supported Ruby Versions
 
-This library is supported on Ruby 2.5+.
+This library is supported on Ruby 2.6+.
 
 Google provides official support for Ruby versions that are actively supported
 by Ruby Core—that is, Ruby versions that are either in normal maintenance or
-in security maintenance, and not end of life. Currently, this means Ruby 2.5
-and later. Older versions of Ruby _may_ still work, but are unsupported and not
-recommended. See https://www.ruby-lang.org/en/downloads/branches/ for details
-about the Ruby support schedule.
+in security maintenance, and not end of life. Older versions of Ruby _may_
+still work, but are unsupported and not recommended. See
+https://www.ruby-lang.org/en/downloads/branches/ for details about the Ruby
+support schedule.
 
 ## Which client should I use?
 

data/lib/google/cloud/web_security_scanner/v1/version.rb

@@ -21,7 +21,7 @@ module Google
   module Cloud
     module WebSecurityScanner
       module V1
-        VERSION = "0.3.5"
+        VERSION = "0.5.0"
       end
     end
   end

data/lib/google/cloud/web_security_scanner/v1.rb

@@ -25,6 +25,8 @@ module Google
       ##
       # To load this package, including all its services, and instantiate a client:
       #
+      # @example
+      #
       #     require "google/cloud/web_security_scanner/v1"
       #     client = ::Google::Cloud::WebSecurityScanner::V1::WebSecurityScanner::Client.new
       #

data/lib/google/cloud/websecurityscanner/v1/finding_addon_pb.rb

@@ -53,6 +53,14 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       value :SAME_ORIGIN, 14
       value :USER_CONTROLLABLE_URL, 15
     end
+    add_message "google.cloud.websecurityscanner.v1.Xxe" do
+      optional :payload_value, :string, 1
+      optional :payload_location, :enum, 2, "google.cloud.websecurityscanner.v1.Xxe.Location"
+    end
+    add_enum "google.cloud.websecurityscanner.v1.Xxe.Location" do
+      value :LOCATION_UNSPECIFIED, 0
+      value :COMPLETE_REQUEST_BODY, 1
+    end
   end
 end
 
@@ -68,6 +76,8 @@ module Google
         VulnerableHeaders::Header = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.websecurityscanner.v1.VulnerableHeaders.Header").msgclass
         Xss = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.websecurityscanner.v1.Xss").msgclass
         Xss::AttackVector = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.websecurityscanner.v1.Xss.AttackVector").enummodule
+        Xxe = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.websecurityscanner.v1.Xxe").msgclass
+        Xxe::Location = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.websecurityscanner.v1.Xxe.Location").enummodule
       end
     end
   end

data/lib/google/cloud/websecurityscanner/v1/finding_pb.rb

@@ -1,10 +1,11 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/websecurityscanner/v1/finding.proto
 
+require 'google/protobuf'
+
 require 'google/api/field_behavior_pb'
 require 'google/api/resource_pb'
 require 'google/cloud/websecurityscanner/v1/finding_addon_pb'
-require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/websecurityscanner/v1/finding.proto", :syntax => :proto3) do
@@ -26,6 +27,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :vulnerable_headers, :message, 15, "google.cloud.websecurityscanner.v1.VulnerableHeaders"
       optional :vulnerable_parameters, :message, 13, "google.cloud.websecurityscanner.v1.VulnerableParameters"
       optional :xss, :message, 14, "google.cloud.websecurityscanner.v1.Xss"
+      optional :xxe, :message, 18, "google.cloud.websecurityscanner.v1.Xxe"
     end
     add_enum "google.cloud.websecurityscanner.v1.Finding.Severity" do
       value :SEVERITY_UNSPECIFIED, 0

data/lib/google/cloud/websecurityscanner/v1/scan_config_pb.rb

@@ -1,9 +1,10 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/websecurityscanner/v1/scan_config.proto
 
+require 'google/protobuf'
+
 require 'google/api/field_behavior_pb'
 require 'google/protobuf/timestamp_pb'
-require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/websecurityscanner/v1/scan_config.proto", :syntax => :proto3) do
@@ -20,6 +21,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :risk_level, :enum, 12, "google.cloud.websecurityscanner.v1.ScanConfig.RiskLevel"
       optional :managed_scan, :bool, 13
       optional :static_ip_scan, :bool, 14
+      optional :ignore_http_status_errors, :bool, 15
     end
     add_message "google.cloud.websecurityscanner.v1.ScanConfig.Authentication" do
       oneof :authentication do

data/lib/google/cloud/websecurityscanner/v1/scan_run_error_trace_pb.rb

@@ -1,9 +1,10 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/websecurityscanner/v1/scan_run_error_trace.proto
 
-require 'google/cloud/websecurityscanner/v1/scan_config_error_pb'
 require 'google/protobuf'
 
+require 'google/cloud/websecurityscanner/v1/scan_config_error_pb'
+
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/websecurityscanner/v1/scan_run_error_trace.proto", :syntax => :proto3) do
     add_message "google.cloud.websecurityscanner.v1.ScanRunErrorTrace" do

data/lib/google/cloud/websecurityscanner/v1/scan_run_log_pb.rb

@@ -0,0 +1,32 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/cloud/websecurityscanner/v1/scan_run_log.proto
+
+require 'google/protobuf'
+
+require 'google/cloud/websecurityscanner/v1/scan_run_pb'
+require 'google/cloud/websecurityscanner/v1/scan_run_error_trace_pb'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/cloud/websecurityscanner/v1/scan_run_log.proto", :syntax => :proto3) do
+    add_message "google.cloud.websecurityscanner.v1.ScanRunLog" do
+      optional :summary, :string, 1
+      optional :name, :string, 2
+      optional :execution_state, :enum, 3, "google.cloud.websecurityscanner.v1.ScanRun.ExecutionState"
+      optional :result_state, :enum, 4, "google.cloud.websecurityscanner.v1.ScanRun.ResultState"
+      optional :urls_crawled_count, :int64, 5
+      optional :urls_tested_count, :int64, 6
+      optional :has_findings, :bool, 7
+      optional :error_trace, :message, 8, "google.cloud.websecurityscanner.v1.ScanRunErrorTrace"
+    end
+  end
+end
+
+module Google
+  module Cloud
+    module WebSecurityScanner
+      module V1
+        ScanRunLog = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.websecurityscanner.v1.ScanRunLog").msgclass
+      end
+    end
+  end
+end

data/lib/google/cloud/websecurityscanner/v1/scan_run_pb.rb

@@ -1,10 +1,11 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/websecurityscanner/v1/scan_run.proto
 
+require 'google/protobuf'
+
 require 'google/cloud/websecurityscanner/v1/scan_run_error_trace_pb'
 require 'google/cloud/websecurityscanner/v1/scan_run_warning_trace_pb'
 require 'google/protobuf/timestamp_pb'
-require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/websecurityscanner/v1/scan_run.proto", :syntax => :proto3) do

data/lib/google/cloud/websecurityscanner/v1/scan_run_warning_trace_pb.rb

@@ -14,6 +14,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       value :TOO_MANY_CRAWL_RESULTS, 2
       value :TOO_MANY_FUZZ_TASKS, 3
       value :BLOCKED_BY_IAP, 4
+      value :NO_STARTING_URL_FOUND_FOR_MANAGED_SCAN, 5
     end
   end
 end

data/lib/google/cloud/websecurityscanner/v1/web_security_scanner_pb.rb

@@ -1,7 +1,10 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: google/cloud/websecurityscanner/v1/web_security_scanner.proto
 
+require 'google/protobuf'
+
 require 'google/api/annotations_pb'
+require 'google/api/client_pb'
 require 'google/cloud/websecurityscanner/v1/crawled_url_pb'
 require 'google/cloud/websecurityscanner/v1/finding_pb'
 require 'google/cloud/websecurityscanner/v1/finding_type_stats_pb'
@@ -9,8 +12,6 @@ require 'google/cloud/websecurityscanner/v1/scan_config_pb'
 require 'google/cloud/websecurityscanner/v1/scan_run_pb'
 require 'google/protobuf/empty_pb'
 require 'google/protobuf/field_mask_pb'
-require 'google/api/client_pb'
-require 'google/protobuf'
 
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/websecurityscanner/v1/web_security_scanner.proto", :syntax => :proto3) do

data/proto_docs/google/cloud/websecurityscanner/v1/finding.rb

@@ -86,6 +86,9 @@ module Google
         # @!attribute [rw] xss
         #   @return [::Google::Cloud::WebSecurityScanner::V1::Xss]
         #     Output only. An addon containing information reported for an XSS, if any.
+        # @!attribute [r] xxe
+        #   @return [::Google::Cloud::WebSecurityScanner::V1::Xxe]
+        #     Output only. An addon containing information reported for an XXE, if any.
         class Finding
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods

data/proto_docs/google/cloud/websecurityscanner/v1/finding_addon.rb

@@ -163,6 +163,28 @@ module Google
             USER_CONTROLLABLE_URL = 15
           end
         end
+
+        # Information reported for an XXE.
+        # @!attribute [rw] payload_value
+        #   @return [::String]
+        #     The XML string that triggered the XXE vulnerability. Non-payload values
+        #     might be redacted.
+        # @!attribute [rw] payload_location
+        #   @return [::Google::Cloud::WebSecurityScanner::V1::Xxe::Location]
+        #     Location within the request where the payload was placed.
+        class Xxe
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # Locations within a request where XML was substituted.
+          module Location
+            # Unknown Location.
+            LOCATION_UNSPECIFIED = 0
+
+            # The XML payload replaced the complete request body.
+            COMPLETE_REQUEST_BODY = 1
+          end
+        end
       end
     end
   end

data/proto_docs/google/cloud/websecurityscanner/v1/scan_config.rb

@@ -68,6 +68,9 @@ module Google
         #   @return [::Boolean]
         #     Whether the scan configuration has enabled static IP address scan feature.
         #     If enabled, the scanner will access applications from static IP addresses.
+        # @!attribute [rw] ignore_http_status_errors
+        #   @return [::Boolean]
+        #     Whether to keep scanning even if most requests return HTTP error codes.
         class ScanConfig
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods

data/proto_docs/google/cloud/websecurityscanner/v1/scan_run_error_trace.rb

@@ -42,7 +42,7 @@ module Google
 
           # Output only.
           # Defines an error reason code.
-          # Next id: 7
+          # Next id: 8
           module Code
             # Default value is never used.
             CODE_UNSPECIFIED = 0

data/proto_docs/google/cloud/websecurityscanner/v1/scan_run_log.rb

@@ -0,0 +1,56 @@
+# frozen_string_literal: true
+
+# Copyright 2022 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module WebSecurityScanner
+      module V1
+        # A ScanRunLog is an output-only proto used for Stackdriver customer logging.
+        # It is used for logs covering the start and end of scan pipelines.
+        # Other than an added summary, this is a subset of the ScanRun.
+        # Representation in logs is either a proto Struct, or converted to JSON.
+        # Next id: 9
+        # @!attribute [rw] summary
+        #   @return [::String]
+        #     Human friendly message about the event.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     The resource name of the ScanRun being logged.
+        # @!attribute [rw] execution_state
+        #   @return [::Google::Cloud::WebSecurityScanner::V1::ScanRun::ExecutionState]
+        #     The execution state of the ScanRun.
+        # @!attribute [rw] result_state
+        #   @return [::Google::Cloud::WebSecurityScanner::V1::ScanRun::ResultState]
+        #     The result state of the ScanRun.
+        # @!attribute [rw] urls_crawled_count
+        #   @return [::Integer]
+        # @!attribute [rw] urls_tested_count
+        #   @return [::Integer]
+        # @!attribute [rw] has_findings
+        #   @return [::Boolean]
+        # @!attribute [rw] error_trace
+        #   @return [::Google::Cloud::WebSecurityScanner::V1::ScanRunErrorTrace]
+        class ScanRunLog
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/websecurityscanner/v1/scan_run_warning_trace.rb

@@ -54,6 +54,9 @@ module Google
 
             # Indicates that a scan is blocked by IAP.
             BLOCKED_BY_IAP = 4
+
+            # Indicates that no seeds is found for a scan
+            NO_STARTING_URL_FOUND_FOR_MANAGED_SCAN = 5
           end
         end
       end

data/proto_docs/google/protobuf/empty.rb

@@ -26,8 +26,6 @@ module Google
     #     service Foo {
     #       rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty);
     #     }
-    #
-    # The JSON representation for `Empty` is empty JSON object `{}`.
     class Empty
       include ::Google::Protobuf::MessageExts
       extend ::Google::Protobuf::MessageExts::ClassMethods

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-cloud-web_security_scanner-v1
 version: !ruby/object:Gem::Version
-  version: 0.3.5
+  version: 0.5.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-01-11 00:00:00.000000000 Z
+date: 2022-09-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: gapic-common
@@ -16,7 +16,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0.7'
+        version: '0.10'
     - - "<"
       - !ruby/object:Gem::Version
         version: 2.a
@@ -26,7 +26,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0.7'
+        version: '0.10'
     - - "<"
       - !ruby/object:Gem::Version
         version: 2.a
@@ -50,28 +50,28 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.25.1
+        version: 1.26.1
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.25.1
+        version: 1.26.1
 - !ruby/object:Gem::Dependency
   name: minitest
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '5.14'
+        version: '5.16'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '5.14'
+        version: '5.16'
 - !ruby/object:Gem::Dependency
   name: minitest-focus
   requirement: !ruby/object:Gem::Requirement
@@ -106,14 +106,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '12.0'
+        version: '13.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '12.0'
+        version: '13.0'
 - !ruby/object:Gem::Dependency
   name: redcarpet
   requirement: !ruby/object:Gem::Requirement
@@ -182,6 +182,7 @@ files:
 - lib/google/cloud/websecurityscanner/v1/scan_config_error_pb.rb
 - lib/google/cloud/websecurityscanner/v1/scan_config_pb.rb
 - lib/google/cloud/websecurityscanner/v1/scan_run_error_trace_pb.rb
+- lib/google/cloud/websecurityscanner/v1/scan_run_log_pb.rb
 - lib/google/cloud/websecurityscanner/v1/scan_run_pb.rb
 - lib/google/cloud/websecurityscanner/v1/scan_run_warning_trace_pb.rb
 - lib/google/cloud/websecurityscanner/v1/web_security_scanner_pb.rb
@@ -197,6 +198,7 @@ files:
 - proto_docs/google/cloud/websecurityscanner/v1/scan_config_error.rb
 - proto_docs/google/cloud/websecurityscanner/v1/scan_run.rb
 - proto_docs/google/cloud/websecurityscanner/v1/scan_run_error_trace.rb
+- proto_docs/google/cloud/websecurityscanner/v1/scan_run_log.rb
 - proto_docs/google/cloud/websecurityscanner/v1/scan_run_warning_trace.rb
 - proto_docs/google/cloud/websecurityscanner/v1/web_security_scanner.rb
 - proto_docs/google/protobuf/empty.rb
@@ -214,14 +216,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '2.5'
+      version: '2.6'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.4
+rubygems_version: 3.3.14
 signing_key: 
 specification_version: 4
 summary: API Client library for the Web Security Scanner V1 API