RubyGems - google-cloud-web_security_scanner-v1 - Versions diffs - 0.4.1 → 0.5.0 - Mend

google-cloud-web_security_scanner-v1 0.4.1 → 0.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c9a24233cc850f8ffd6b725b57507e3bb09421ba7a94aec16e604cac82c4a42b
-  data.tar.gz: 2b263ff1c2915839b23f6ce19ba5fbbe5370c2da173c87a6c421432ad5680cb1
+  metadata.gz: aa863bbf83b3277121fc42b09ad751b5d0cc9bee8ea2aa53bd95a3900889d618
+  data.tar.gz: 28b341fad40c792bc86f9f50344e01509d4aa30d381d7362d90f516b9196faae
 SHA512:
-  metadata.gz: 6966d63070a5ea34f2e11f4d56ee049ad664de48dd198e70aa4d321887b95124cde583d7896c36902a90cbedaed553bf7fffbda27c1d1ced14beb5269363b190
-  data.tar.gz: 1b2303e966c373f2a3973d938ed04778cb57408e64b1d5215e6f38e376bc30e70b5b68c1b06ee62d63508e8d6ec864bb1ea3986e71da56ff352dce28e9f9381f
+  metadata.gz: 6a792b63d631653ca66ea93aa43459f9481995dfed267c42b2424790b0f58a1ff2e9c02a53e3a33bd3e5b59bf0c0cc80b94435f4156c770751ee5690a0b5cc96
+  data.tar.gz: 0d1b6afb49af0737ab7c67435d3b55746d804bd9865ede25fefc596ec2fc6ba82bb8ecf6153bfa7b420d4c0b4887ad576e4c962c6869146ef76c2ad6eb05ea8c

data/AUTHENTICATION.md CHANGED Viewed

@@ -114,7 +114,7 @@ credentials are discovered.
 To configure your system for this, simply:
 1. [Download and install the Cloud SDK](https://cloud.google.com/sdk)
-2. Authenticate using OAuth 2.0 `$ gcloud auth login`
+2. Authenticate using OAuth 2.0 `$ gcloud auth application-default login`
 3. Write code as if already authenticated.
 **NOTE:** This is _not_ recommended for running in production. The Cloud SDK

data/lib/google/cloud/web_security_scanner/v1/version.rb CHANGED Viewed

@@ -21,7 +21,7 @@ module Google
   module Cloud
     module WebSecurityScanner
       module V1
-        VERSION = "0.4.1"
+        VERSION = "0.5.0"
       end
     end
   end

data/lib/google/cloud/websecurityscanner/v1/finding_addon_pb.rb CHANGED Viewed

@@ -53,6 +53,14 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       value :SAME_ORIGIN, 14
       value :USER_CONTROLLABLE_URL, 15
     end
+    add_message "google.cloud.websecurityscanner.v1.Xxe" do
+      optional :payload_value, :string, 1
+      optional :payload_location, :enum, 2, "google.cloud.websecurityscanner.v1.Xxe.Location"
+    end
+    add_enum "google.cloud.websecurityscanner.v1.Xxe.Location" do
+      value :LOCATION_UNSPECIFIED, 0
+      value :COMPLETE_REQUEST_BODY, 1
+    end
   end
 end
@@ -68,6 +76,8 @@ module Google
         VulnerableHeaders::Header = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.websecurityscanner.v1.VulnerableHeaders.Header").msgclass
         Xss = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.websecurityscanner.v1.Xss").msgclass
         Xss::AttackVector = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.websecurityscanner.v1.Xss.AttackVector").enummodule
+        Xxe = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.websecurityscanner.v1.Xxe").msgclass
+        Xxe::Location = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.cloud.websecurityscanner.v1.Xxe.Location").enummodule
       end
     end
   end

data/lib/google/cloud/websecurityscanner/v1/finding_pb.rb CHANGED Viewed

@@ -27,6 +27,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :vulnerable_headers, :message, 15, "google.cloud.websecurityscanner.v1.VulnerableHeaders"
       optional :vulnerable_parameters, :message, 13, "google.cloud.websecurityscanner.v1.VulnerableParameters"
       optional :xss, :message, 14, "google.cloud.websecurityscanner.v1.Xss"
+      optional :xxe, :message, 18, "google.cloud.websecurityscanner.v1.Xxe"
     end
     add_enum "google.cloud.websecurityscanner.v1.Finding.Severity" do
       value :SEVERITY_UNSPECIFIED, 0

data/lib/google/cloud/websecurityscanner/v1/scan_config_pb.rb CHANGED Viewed

@@ -21,6 +21,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :risk_level, :enum, 12, "google.cloud.websecurityscanner.v1.ScanConfig.RiskLevel"
       optional :managed_scan, :bool, 13
       optional :static_ip_scan, :bool, 14
+      optional :ignore_http_status_errors, :bool, 15
     end
     add_message "google.cloud.websecurityscanner.v1.ScanConfig.Authentication" do
       oneof :authentication do

data/lib/google/cloud/websecurityscanner/v1/scan_run_warning_trace_pb.rb CHANGED Viewed

@@ -14,6 +14,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       value :TOO_MANY_CRAWL_RESULTS, 2
       value :TOO_MANY_FUZZ_TASKS, 3
       value :BLOCKED_BY_IAP, 4
+      value :NO_STARTING_URL_FOUND_FOR_MANAGED_SCAN, 5
     end
   end
 end

data/lib/google/cloud/websecurityscanner/v1/web_security_scanner_pb.rb CHANGED Viewed

@@ -4,6 +4,7 @@
 require 'google/protobuf'
 require 'google/api/annotations_pb'
+require 'google/api/client_pb'
 require 'google/cloud/websecurityscanner/v1/crawled_url_pb'
 require 'google/cloud/websecurityscanner/v1/finding_pb'
 require 'google/cloud/websecurityscanner/v1/finding_type_stats_pb'
@@ -11,7 +12,6 @@ require 'google/cloud/websecurityscanner/v1/scan_config_pb'
 require 'google/cloud/websecurityscanner/v1/scan_run_pb'
 require 'google/protobuf/empty_pb'
 require 'google/protobuf/field_mask_pb'
-require 'google/api/client_pb'
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("google/cloud/websecurityscanner/v1/web_security_scanner.proto", :syntax => :proto3) do

data/proto_docs/google/cloud/websecurityscanner/v1/finding.rb CHANGED Viewed

@@ -86,6 +86,9 @@ module Google
         # @!attribute [rw] xss
         #   @return [::Google::Cloud::WebSecurityScanner::V1::Xss]
         #     Output only. An addon containing information reported for an XSS, if any.
+        # @!attribute [r] xxe
+        #   @return [::Google::Cloud::WebSecurityScanner::V1::Xxe]
+        #     Output only. An addon containing information reported for an XXE, if any.
         class Finding
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods

data/proto_docs/google/cloud/websecurityscanner/v1/finding_addon.rb CHANGED Viewed

@@ -163,6 +163,28 @@ module Google
             USER_CONTROLLABLE_URL = 15
           end
         end
+        # Information reported for an XXE.
+        # @!attribute [rw] payload_value
+        #   @return [::String]
+        #     The XML string that triggered the XXE vulnerability. Non-payload values
+        #     might be redacted.
+        # @!attribute [rw] payload_location
+        #   @return [::Google::Cloud::WebSecurityScanner::V1::Xxe::Location]
+        #     Location within the request where the payload was placed.
+        class Xxe
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+          # Locations within a request where XML was substituted.
+          module Location
+            # Unknown Location.
+            LOCATION_UNSPECIFIED = 0
+            # The XML payload replaced the complete request body.
+            COMPLETE_REQUEST_BODY = 1
+          end
+        end
       end
     end
   end

data/proto_docs/google/cloud/websecurityscanner/v1/scan_config.rb CHANGED Viewed

@@ -68,6 +68,9 @@ module Google
         #   @return [::Boolean]
         #     Whether the scan configuration has enabled static IP address scan feature.
         #     If enabled, the scanner will access applications from static IP addresses.
+        # @!attribute [rw] ignore_http_status_errors
+        #   @return [::Boolean]
+        #     Whether to keep scanning even if most requests return HTTP error codes.
         class ScanConfig
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods

data/proto_docs/google/cloud/websecurityscanner/v1/scan_run_error_trace.rb CHANGED Viewed

@@ -42,7 +42,7 @@ module Google
           # Output only.
           # Defines an error reason code.
-          # Next id: 7
+          # Next id: 8
           module Code
             # Default value is never used.
             CODE_UNSPECIFIED = 0

data/proto_docs/google/cloud/websecurityscanner/v1/scan_run_warning_trace.rb CHANGED Viewed

@@ -54,6 +54,9 @@ module Google
             # Indicates that a scan is blocked by IAP.
             BLOCKED_BY_IAP = 4
+            # Indicates that no seeds is found for a scan
+            NO_STARTING_URL_FOUND_FOR_MANAGED_SCAN = 5
           end
         end
       end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-cloud-web_security_scanner-v1
 version: !ruby/object:Gem::Version
-  version: 0.4.1
+  version: 0.5.0
 platform: ruby
 authors:
 - Google LLC
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-09-01 00:00:00.000000000 Z
+date: 2022-09-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: gapic-common