google-cloud-web_security_scanner-v1beta 0.1.0

data/proto_docs/google/cloud/websecurityscanner/v1beta/crawled_url.rb

@@ -0,0 +1,44 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module WebSecurityScanner
+      module V1beta
+        # A CrawledUrl resource represents a URL that was crawled during a ScanRun. Web
+        # Security Scanner Service crawls the web applications, following all links
+        # within the scope of sites, to find the URLs to test against.
+        # @!attribute [rw] http_method
+        #   @return [::String]
+        #     The http method of the request that was used to visit the URL, in
+        #     uppercase.
+        # @!attribute [rw] url
+        #   @return [::String]
+        #     The URL that was crawled.
+        # @!attribute [rw] body
+        #   @return [::String]
+        #     The body of the request that was used to visit the URL.
+        class CrawledUrl
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/websecurityscanner/v1beta/finding.rb

@@ -0,0 +1,93 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module WebSecurityScanner
+      module V1beta
+        # A Finding resource represents a vulnerability instance identified during a
+        # ScanRun.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     The resource name of the Finding. The name follows the format of
+        #     'projects/\\{projectId}/scanConfigs/\\{scanConfigId}/scanruns/\\{scanRunId}/findings/\\{findingId}'.
+        #     The finding IDs are generated by the system.
+        # @!attribute [rw] finding_type
+        #   @return [::String]
+        #     The type of the Finding.
+        #     Detailed and up-to-date information on findings can be found here:
+        #     https://cloud.google.com/security-scanner/docs/scan-result-details
+        # @!attribute [rw] http_method
+        #   @return [::String]
+        #     The http method of the request that triggered the vulnerability, in
+        #     uppercase.
+        # @!attribute [rw] fuzzed_url
+        #   @return [::String]
+        #     The URL produced by the server-side fuzzer and used in the request that
+        #     triggered the vulnerability.
+        # @!attribute [rw] body
+        #   @return [::String]
+        #     The body of the request that triggered the vulnerability.
+        # @!attribute [rw] description
+        #   @return [::String]
+        #     The description of the vulnerability.
+        # @!attribute [rw] reproduction_url
+        #   @return [::String]
+        #     The URL containing human-readable payload that user can leverage to
+        #     reproduce the vulnerability.
+        # @!attribute [rw] frame_url
+        #   @return [::String]
+        #     If the vulnerability was originated from nested IFrame, the immediate
+        #     parent IFrame is reported.
+        # @!attribute [rw] final_url
+        #   @return [::String]
+        #     The URL where the browser lands when the vulnerability is detected.
+        # @!attribute [rw] tracking_id
+        #   @return [::String]
+        #     The tracking ID uniquely identifies a vulnerability instance across
+        #     multiple ScanRuns.
+        # @!attribute [rw] form
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::Form]
+        #     An addon containing information reported for a vulnerability with an HTML
+        #     form, if any.
+        # @!attribute [rw] outdated_library
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::OutdatedLibrary]
+        #     An addon containing information about outdated libraries.
+        # @!attribute [rw] violating_resource
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::ViolatingResource]
+        #     An addon containing detailed information regarding any resource causing the
+        #     vulnerability such as JavaScript sources, image, audio files, etc.
+        # @!attribute [rw] vulnerable_headers
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::VulnerableHeaders]
+        #     An addon containing information about vulnerable or missing HTTP headers.
+        # @!attribute [rw] vulnerable_parameters
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::VulnerableParameters]
+        #     An addon containing information about request parameters which were found
+        #     to be vulnerable.
+        # @!attribute [rw] xss
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::Xss]
+        #     An addon containing information reported for an XSS, if any.
+        class Finding
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/websecurityscanner/v1beta/finding_addon.rb

@@ -0,0 +1,111 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module WebSecurityScanner
+      module V1beta
+        # ! Information about a vulnerability with an HTML.
+        # @!attribute [rw] action_uri
+        #   @return [::String]
+        #     ! The URI where to send the form when it's submitted.
+        # @!attribute [rw] fields
+        #   @return [::Array<::String>]
+        #     ! The names of form fields related to the vulnerability.
+        class Form
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Information reported for an outdated library.
+        # @!attribute [rw] library_name
+        #   @return [::String]
+        #     The name of the outdated library.
+        # @!attribute [rw] version
+        #   @return [::String]
+        #     The version number.
+        # @!attribute [rw] learn_more_urls
+        #   @return [::Array<::String>]
+        #     URLs to learn more information about the vulnerabilities in the library.
+        class OutdatedLibrary
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Information regarding any resource causing the vulnerability such
+        # as JavaScript sources, image, audio files, etc.
+        # @!attribute [rw] content_type
+        #   @return [::String]
+        #     The MIME type of this resource.
+        # @!attribute [rw] resource_url
+        #   @return [::String]
+        #     URL of this violating resource.
+        class ViolatingResource
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Information about vulnerable request parameters.
+        # @!attribute [rw] parameter_names
+        #   @return [::Array<::String>]
+        #     The vulnerable parameter names.
+        class VulnerableParameters
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Information about vulnerable or missing HTTP Headers.
+        # @!attribute [rw] headers
+        #   @return [::Array<::Google::Cloud::WebSecurityScanner::V1beta::VulnerableHeaders::Header>]
+        #     List of vulnerable headers.
+        # @!attribute [rw] missing_headers
+        #   @return [::Array<::Google::Cloud::WebSecurityScanner::V1beta::VulnerableHeaders::Header>]
+        #     List of missing headers.
+        class VulnerableHeaders
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # Describes a HTTP Header.
+          # @!attribute [rw] name
+          #   @return [::String]
+          #     Header name.
+          # @!attribute [rw] value
+          #   @return [::String]
+          #     Header value.
+          class Header
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+        end
+
+        # Information reported for an XSS.
+        # @!attribute [rw] stack_traces
+        #   @return [::Array<::String>]
+        #     Stack traces leading to the point where the XSS occurred.
+        # @!attribute [rw] error_message
+        #   @return [::String]
+        #     An error message generated by a javascript breakage.
+        class Xss
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/websecurityscanner/v1beta/finding_type_stats.rb

@@ -0,0 +1,39 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module WebSecurityScanner
+      module V1beta
+        # A FindingTypeStats resource represents stats regarding a specific FindingType
+        # of Findings under a given ScanRun.
+        # @!attribute [rw] finding_type
+        #   @return [::String]
+        #     The finding type associated with the stats.
+        # @!attribute [rw] finding_count
+        #   @return [::Integer]
+        #     The count of findings belonging to this finding type.
+        class FindingTypeStats
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end

data/proto_docs/google/cloud/websecurityscanner/v1beta/scan_config.rb

@@ -0,0 +1,188 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module WebSecurityScanner
+      module V1beta
+        # A ScanConfig resource contains the configurations to launch a scan.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     The resource name of the ScanConfig. The name follows the format of
+        #     'projects/\\{projectId}/scanConfigs/\\{scanConfigId}'. The ScanConfig IDs are
+        #     generated by the system.
+        # @!attribute [rw] display_name
+        #   @return [::String]
+        #     Required. The user provided display name of the ScanConfig.
+        # @!attribute [rw] max_qps
+        #   @return [::Integer]
+        #     The maximum QPS during scanning. A valid value ranges from 5 to 20
+        #     inclusively. If the field is unspecified or its value is set 0, server will
+        #     default to 15. Other values outside of [5, 20] range will be rejected with
+        #     INVALID_ARGUMENT error.
+        # @!attribute [rw] starting_urls
+        #   @return [::Array<::String>]
+        #     Required. The starting URLs from which the scanner finds site pages.
+        # @!attribute [rw] authentication
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::ScanConfig::Authentication]
+        #     The authentication configuration. If specified, service will use the
+        #     authentication configuration during scanning.
+        # @!attribute [rw] user_agent
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::ScanConfig::UserAgent]
+        #     The user agent used during scanning.
+        # @!attribute [rw] blacklist_patterns
+        #   @return [::Array<::String>]
+        #     The blacklist URL patterns as described in
+        #     https://cloud.google.com/security-scanner/docs/excluded-urls
+        # @!attribute [rw] schedule
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::ScanConfig::Schedule]
+        #     The schedule of the ScanConfig.
+        # @!attribute [rw] target_platforms
+        #   @return [::Array<::Google::Cloud::WebSecurityScanner::V1beta::ScanConfig::TargetPlatform>]
+        #     Set of Cloud Platforms targeted by the scan. If empty, APP_ENGINE will be
+        #     used as a default.
+        # @!attribute [rw] export_to_security_command_center
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::ScanConfig::ExportToSecurityCommandCenter]
+        #     Controls export of scan configurations and results to Cloud Security
+        #     Command Center.
+        # @!attribute [rw] latest_run
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::ScanRun]
+        #     Latest ScanRun if available.
+        # @!attribute [rw] risk_level
+        #   @return [::Google::Cloud::WebSecurityScanner::V1beta::ScanConfig::RiskLevel]
+        #     The risk level selected for the scan
+        class ScanConfig
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # Scan authentication configuration.
+          # @!attribute [rw] google_account
+          #   @return [::Google::Cloud::WebSecurityScanner::V1beta::ScanConfig::Authentication::GoogleAccount]
+          #     Authentication using a Google account.
+          # @!attribute [rw] custom_account
+          #   @return [::Google::Cloud::WebSecurityScanner::V1beta::ScanConfig::Authentication::CustomAccount]
+          #     Authentication using a custom account.
+          class Authentication
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+
+            # Describes authentication configuration that uses a Google account.
+            # @!attribute [rw] username
+            #   @return [::String]
+            #     Required. The user name of the Google account.
+            # @!attribute [rw] password
+            #   @return [::String]
+            #     Required. Input only. The password of the Google account. The credential is stored encrypted
+            #     and not returned in any response nor included in audit logs.
+            class GoogleAccount
+              include ::Google::Protobuf::MessageExts
+              extend ::Google::Protobuf::MessageExts::ClassMethods
+            end
+
+            # Describes authentication configuration that uses a custom account.
+            # @!attribute [rw] username
+            #   @return [::String]
+            #     Required. The user name of the custom account.
+            # @!attribute [rw] password
+            #   @return [::String]
+            #     Required. Input only. The password of the custom account. The credential is stored encrypted
+            #     and not returned in any response nor included in audit logs.
+            # @!attribute [rw] login_url
+            #   @return [::String]
+            #     Required. The login form URL of the website.
+            class CustomAccount
+              include ::Google::Protobuf::MessageExts
+              extend ::Google::Protobuf::MessageExts::ClassMethods
+            end
+          end
+
+          # Scan schedule configuration.
+          # @!attribute [rw] schedule_time
+          #   @return [::Google::Protobuf::Timestamp]
+          #     A timestamp indicates when the next run will be scheduled. The value is
+          #     refreshed by the server after each run. If unspecified, it will default
+          #     to current server time, which means the scan will be scheduled to start
+          #     immediately.
+          # @!attribute [rw] interval_duration_days
+          #   @return [::Integer]
+          #     Required. The duration of time between executions in days.
+          class Schedule
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+
+          # Type of user agents used for scanning.
+          module UserAgent
+            # The user agent is unknown. Service will default to CHROME_LINUX.
+            USER_AGENT_UNSPECIFIED = 0
+
+            # Chrome on Linux. This is the service default if unspecified.
+            CHROME_LINUX = 1
+
+            # Chrome on Android.
+            CHROME_ANDROID = 2
+
+            # Safari on IPhone.
+            SAFARI_IPHONE = 3
+          end
+
+          # Cloud platforms supported by Cloud Web Security Scanner.
+          module TargetPlatform
+            # The target platform is unknown. Requests with this enum value will be
+            # rejected with INVALID_ARGUMENT error.
+            TARGET_PLATFORM_UNSPECIFIED = 0
+
+            # Google App Engine service.
+            APP_ENGINE = 1
+
+            # Google Compute Engine service.
+            COMPUTE = 2
+          end
+
+          # Scan risk levels supported by Cloud Web Security Scanner. LOW impact
+          # scanning will minimize requests with the potential to modify data. To
+          # achieve the maximum scan coverage, NORMAL risk level is recommended.
+          module RiskLevel
+            # Use default, which is NORMAL.
+            RISK_LEVEL_UNSPECIFIED = 0
+
+            # Normal scanning (Recommended)
+            NORMAL = 1
+
+            # Lower impact scanning
+            LOW = 2
+          end
+
+          # Controls export of scan configurations and results to Cloud Security
+          # Command Center.
+          module ExportToSecurityCommandCenter
+            # Use default, which is ENABLED.
+            EXPORT_TO_SECURITY_COMMAND_CENTER_UNSPECIFIED = 0
+
+            # Export results of this scan to Cloud Security Command Center.
+            ENABLED = 1
+
+            # Do not export results of this scan to Cloud Security Command Center.
+            DISABLED = 2
+          end
+        end
+      end
+    end
+  end
+end